clawhatch 0.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Richard / Clawhatch
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -0,0 +1,348 @@
+# clawhatch
+
+> Security scanner for OpenClaw AI agents — 100-point audit with auto-fix.
+
+[![npm version](https://img.shields.io/npm/v/clawhatch.svg)](https://www.npmjs.com/package/clawhatch)
+[![license](https://img.shields.io/npm/l/clawhatch.svg)](https://opensource.org/licenses/MIT)
+[![node](https://img.shields.io/node/v/clawhatch.svg)](https://nodejs.org/)
+
+Clawhatch runs **100 automated security checks** against your [OpenClaw](https://openclaw.com) installation, scores it on a 100-point scale (A+ to F), and can auto-fix safe issues. Think of it as `npm audit` for your AI agent.
+
+## Quick Start
+
+```bash
+npx clawhatch scan
+```
+
+No installation required. Clawhatch auto-detects your OpenClaw installation at `~/.openclaw` (or `%APPDATA%\openclaw` on Windows).
+
+## Installation
+
+```bash
+npm install -g clawhatch
+```
+
+## Usage
+
+```bash
+# Basic scan — auto-detects your OpenClaw config
+clawhatch scan
+
+# Scan with workspace files (SOUL.md, skills, markdown)
+clawhatch scan --workspace .
+
+# Deep scan — analyze full session logs (slower)
+clawhatch scan --deep
+
+# JSON output for scripting and CI
+clawhatch scan --json
+
+# HTML report
+clawhatch scan --format html
+
+# Auto-fix safe issues (prompts for behavioral changes)
+clawhatch scan --fix
+
+# Custom OpenClaw installation path
+clawhatch scan --path /custom/path
+
+# Combine flags
+clawhatch scan --workspace . --deep --fix
+```
+
+## Example Output
+
+```
+  Clawhatch Security Scanner v0.1.0
+
+  Clawhatch Security Scan
+  ==================================================
+
+  Security Score: 72/100 (B — Acceptable)
+
+  Platform: win32
+  OpenClaw: 1.2.0
+  Checks: 100 run, 94 passed, 6 findings
+  Duration: 842ms
+  Scanned: 14 files
+
+  --------------------------------------------------
+
+  HIGH (2 findings)
+
+  ! Gateway auth token is weak
+     Auth token is short or low-entropy (< 32 characters)
+     Risk: Weak tokens can be brute-forced
+     Fix: Generate a strong token: openssl rand -hex 32
+
+  ! Session logs contain potential secrets
+     API keys or tokens detected in session log files
+     Risk: Secrets persisted in plaintext logs
+     Fix: Enable log sanitization and rotate exposed keys
+
+  MEDIUM (3 findings)
+
+  ~ DM policy set to "open"
+     Channel accepts messages from any sender
+     Risk: Unauthorized users can interact with the agent
+     Fix: Set dmPolicy to "allowlist" and configure allowFrom
+
+  ~ No tool rate limiting configured
+     Tool execution has no throttle (tools.rateLimit missing)
+     Risk: Rapid tool invocation can spam external APIs
+     Fix: Set tools.rateLimit in openclaw.json (e.g., 60)
+
+  ~ Session log retention not configured
+     No sessionLogTTL set — logs kept indefinitely
+     Risk: Stale data accumulation and potential compliance issues
+     Fix: Set retention.sessionLogTTL (e.g., 30 days)
+
+  LOW (1 finding)
+
+  - No health check endpoint configured
+     Gateway has no monitoring.enabled setting
+     Risk: No automated way to verify agent is running correctly
+     Fix: Enable monitoring in openclaw.json
+
+  ==================================================
+
+  3 issue(s) can be auto-fixed. Run with --fix
+  Run with --json for machine-readable output
+  Run with --deep for thorough session log scanning
+```
+
+## What It Checks
+
+Clawhatch runs 100 checks across **10 security categories**:
+
+| Category | Checks | What It Covers |
+|----------|--------|----------------|
+| **Identity & Access** | 15 | DM policies, allowlists, pairing config, access groups, OAuth, API key rotation |
+| **Network Exposure** | 10 | Gateway binding, auth mode, TLS, trusted proxies, insecure auth flags |
+| **Sandbox Configuration** | 8 | Sandbox mode, workspace access, Docker isolation, browser host control |
+| **Secret Scanning** | 10 | Hardcoded API keys, .env permissions, secrets in markdown, session log leakage |
+| **Model Security** | 7 | Model config, legacy models, injection resistance, SOUL.md analysis, fallback order |
+| **Cloud Sync** | 1 | iCloud, OneDrive, Dropbox, Google Drive detection |
+| **Tool Security** | 20 | Elevated tools, command injection, Docker socket exposure, audit logging |
+| **Skill Security** | 12 | Untrusted sources, dangerous dependencies, native modules, sandboxing |
+| **Data Protection** | 10 | PII in logs, retention policies, encryption at rest, log rotation |
+| **Operational** | 7 | Logging config, monitoring, git secrets, health checks, dependency staleness |
+
+## Scoring
+
+Clawhatch uses a **100-point scoring system** with severity-based penalties:
+
+| Severity | Penalty per finding |
+|----------|---------------------|
+| Critical | −15 points |
+| High | −8 points |
+| Medium | −3 points |
+| Low | −1 point |
+
+**Critical cap:** Any critical finding hard-caps the score at **40**, regardless of calculated total. Fix critical issues first.
+
+### Grade Scale
+
+| Score | Grade | Label |
+|-------|-------|-------|
+| 90–100 | A+ | Excellent |
+| 80–89 | A | Good |
+| 70–79 | B | Acceptable |
+| 50–69 | C | Needs Work |
+| 30–49 | D | Poor |
+| 0–29 | F | Critical |
+
+## Auto-Fix (`--fix`)
+
+When you run `clawhatch scan --fix`, the scanner applies fixes in two tiers:
+
+**Safe fixes** — applied automatically:
+- File permission corrections (e.g., tightening `.env` to 600)
+- Adding secrets to `.gitignore`
+- Generating strong replacement tokens
+
+**Behavioral fixes** — prompts for confirmation:
+- Changing DM policies from "open" to "allowlist"
+- Enabling sandbox mode
+- Modifying gateway bind addresses
+
+All fixes create timestamped backups (`.bak.<timestamp>`) before modifying any file.
+
+## JSON Export (`--json`)
+
+```bash
+clawhatch scan --json > report.json
+```
+
+Outputs a structured `ScanResult` object:
+
+```json
+{
+  "timestamp": "2026-02-06T12:00:00.000Z",
+  "openclawVersion": "1.2.0",
+  "score": 82,
+  "findings": [
+    {
+      "id": "NETWORK-001",
+      "severity": "CRITICAL",
+      "confidence": "high",
+      "category": "Network Exposure",
+      "title": "Gateway bound to 0.0.0.0",
+      "description": "...",
+      "risk": "...",
+      "remediation": "...",
+      "autoFixable": true,
+      "fixType": "behavioral"
+    }
+  ],
+  "suggestions": [],
+  "summary": {
+    "score": 82,
+    "grade": "A",
+    "label": "Good",
+    "critical": 0,
+    "high": 1,
+    "medium": 2,
+    "low": 0,
+    "suggestions": 3,
+    "autoFixable": 1
+  },
+  "filesScanned": 14,
+  "checksRun": 100,
+  "checksPassed": 97,
+  "duration": 1234,
+  "platform": "win32"
+}
+```
+
+### Exit Codes
+
+| Code | Meaning |
+|------|---------|
+| `0` | Scan passed (no critical findings) |
+| `1` | Critical findings detected |
+
+## Findings vs. Suggestions
+
+Clawhatch separates output into two groups:
+
+- **Findings** (high/medium confidence) — count toward your score and represent actionable security issues.
+- **Suggestions** (low confidence) — informational recommendations that do not affect your score.
+
+## CI/CD Integration
+
+### GitHub Actions
+
+```yaml
+name: Security Audit
+on: [push, pull_request]
+
+jobs:
+  clawhatch:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - uses: actions/setup-node@v4
+        with:
+          node-version: '18'
+
+      - name: Run Clawhatch scan
+        run: npx clawhatch scan --workspace . --json > clawhatch-report.json
+
+      - name: Check score
+        run: |
+          score=$(jq '.score' clawhatch-report.json)
+          echo "Security score: $score"
+          [ "$score" -ge 50 ] || exit 1
+
+      - uses: actions/upload-artifact@v4
+        if: always()
+        with:
+          name: clawhatch-report
+          path: clawhatch-report.json
+```
+
+## Platform Support
+
+| Platform | Status | Notes |
+|----------|--------|-------|
+| **Windows** | ✅ Supported | Full support including `%APPDATA%\openclaw` detection |
+| **Linux** | 🔄 Coming soon | Core checks work, platform-specific checks in progress |
+| **macOS** | 🔄 Coming soon | Core checks work, platform-specific checks in progress |
+
+## Other Commands
+
+### `clawhatch init`
+
+Generate a secure baseline OpenClaw configuration:
+
+```bash
+clawhatch init
+clawhatch init --path /custom/path
+```
+
+Creates a hardened `openclaw.json` and `.env` template with secure defaults.
+
+## Community Threat Intelligence
+
+Clawhatch includes a community threat intelligence network. When you share your scan results, they're anonymized and aggregated to protect everyone:
+
+### Share your results
+
+```bash
+clawhatch scan --share              # Anonymize and share with community
+clawhatch scan --upload             # Same as --share
+```
+
+Only check IDs, severity levels, and categories are shared. **No file paths, secrets, or descriptions ever leave your machine.**
+
+### View community threats
+
+```bash
+clawhatch threats                   # View the community threat feed
+```
+
+Shows the top threats across all users, trending attacks, new advisories, and the community average score.
+
+### Subscribe to alerts
+
+```bash
+clawhatch subscribe --webhook https://discord.com/api/webhooks/...   # Discord
+clawhatch subscribe --webhook https://hooks.slack.com/services/...   # Slack
+clawhatch subscribe --threshold CRITICAL                             # Only critical alerts
+```
+
+When a new threat is detected across the community, subscribers are notified instantly via their configured webhook.
+
+### How it works
+
+1. You run `clawhatch scan --share`
+2. Findings are stripped to just check IDs + severity (no file paths, no secrets)
+3. Anonymized report is uploaded to the community feed
+4. If 45% of users suddenly have NETWORK-001, that's flagged as trending
+5. Subscribers with that vulnerability get an instant webhook alert
+
+### Privacy
+
+- Instance ID is a SHA-256 hash of your hostname -- we never see your actual machine name
+- No file paths, descriptions, or secret values are ever transmitted
+- You can inspect exactly what's sent with `clawhatch scan --json --share`
+
+## Requirements
+
+- **Node.js** >= 18.0.0
+- **OpenClaw** installed (auto-detected or specify with `--path`)
+
+## Contributing
+
+Contributions welcome! Please see the [GitHub repository](https://github.com/wlshlad85/clawhatch) for details.
+
+1. Fork the repo
+2. Create a feature branch (`git checkout -b feat/my-check`)
+3. Add your checks following the existing pattern in `src/checks/`
+4. Run tests: `npm test`
+5. Submit a PR
+
+## License
+
+[MIT](LICENSE) © Clawhatch

package/dist/checks/cloud-sync.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Cloud Sync Detection check (51).
+ *
+ * Detects if ~/.openclaw/ is inside a known cloud sync directory
+ * (iCloud, OneDrive, Dropbox, Google Drive). If so, credentials
+ * are being uploaded to the cloud in plaintext.
+ */
+import { type Finding } from "../types.js";
+export declare function runCloudSyncCheck(openclawDir: string): Promise<Finding[]>;
+//# sourceMappingURL=cloud-sync.d.ts.map

package/dist/checks/cloud-sync.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cloud-sync.d.ts","sourceRoot":"","sources":["../../src/checks/cloud-sync.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAY,KAAK,OAAO,EAAE,MAAM,aAAa,CAAC;AA4CrD,wBAAsB,iBAAiB,CACrC,WAAW,EAAE,MAAM,GAClB,OAAO,CAAC,OAAO,EAAE,CAAC,CAgCpB"}

package/dist/checks/cloud-sync.js

@@ -0,0 +1,62 @@
+/**
+ * Cloud Sync Detection check (51).
+ *
+ * Detects if ~/.openclaw/ is inside a known cloud sync directory
+ * (iCloud, OneDrive, Dropbox, Google Drive). If so, credentials
+ * are being uploaded to the cloud in plaintext.
+ */
+import { Severity } from "../types.js";
+import { platform, homedir } from "node:os";
+import { resolve } from "node:path";
+import { stat } from "node:fs/promises";
+function getCloudServices() {
+    const home = homedir();
+    const os = platform();
+    const services = [];
+    if (os === "darwin") {
+        services.push({ name: "iCloud Drive", paths: [`${home}/Library/Mobile Documents`] }, { name: "Dropbox", paths: [`${home}/Dropbox`, `${home}/Library/CloudStorage/Dropbox`] }, { name: "OneDrive", paths: [`${home}/OneDrive`, `${home}/Library/CloudStorage/OneDrive-Personal`] }, { name: "Google Drive", paths: [`${home}/Google Drive`, `${home}/Library/CloudStorage/GoogleDrive`] });
+    }
+    else if (os === "win32") {
+        // FIX: Removed duplicate path — `home` already contains the full path like C:\Users\RICHARD
+        // so we don't need to construct C:\Users\<username> separately
+        services.push({ name: "OneDrive", paths: [`${home}\\OneDrive`] }, { name: "Dropbox", paths: [`${home}\\Dropbox`] }, { name: "Google Drive", paths: [`${home}\\Google Drive`] }, { name: "iCloud Drive", paths: [`${home}\\iCloudDrive`] });
+    }
+    else {
+        // Linux
+        services.push({ name: "Dropbox", paths: [`${home}/Dropbox`] }, { name: "Google Drive", paths: [`${home}/Google Drive`] }, { name: "OneDrive", paths: [`${home}/OneDrive`] });
+    }
+    return services;
+}
+export async function runCloudSyncCheck(openclawDir) {
+    const findings = [];
+    const resolvedOcDir = resolve(openclawDir).toLowerCase();
+    const services = getCloudServices();
+    for (const service of services) {
+        for (const syncPath of service.paths) {
+            try {
+                await stat(syncPath);
+                // Sync directory exists — check if openclaw dir is inside it
+                const resolvedSync = resolve(syncPath).toLowerCase();
+                if (resolvedOcDir.startsWith(resolvedSync)) {
+                    findings.push({
+                        id: "CLOUD-001",
+                        severity: Severity.High,
+                        confidence: "high",
+                        category: "Cloud Sync",
+                        title: `OpenClaw directory is inside ${service.name}`,
+                        description: `${openclawDir} is inside ${syncPath} — credentials are being synced to the cloud`,
+                        risk: "API keys, OAuth tokens, and session logs are uploaded to cloud storage in plaintext",
+                        remediation: `Move ~/.openclaw/ outside of ${service.name} or exclude it from sync`,
+                        autoFixable: false,
+                    });
+                    break; // One finding per service
+                }
+            }
+            catch {
+                // Sync dir doesn't exist — skip
+            }
+        }
+    }
+    return findings;
+}
+//# sourceMappingURL=cloud-sync.js.map

package/dist/checks/cloud-sync.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cloud-sync.js","sourceRoot":"","sources":["../../src/checks/cloud-sync.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,QAAQ,EAAgB,MAAM,aAAa,CAAC;AACrD,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAC5C,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AAOxC,SAAS,gBAAgB;IACvB,MAAM,IAAI,GAAG,OAAO,EAAE,CAAC;IACvB,MAAM,EAAE,GAAG,QAAQ,EAAE,CAAC;IAEtB,MAAM,QAAQ,GAAmB,EAAE,CAAC;IAEpC,IAAI,EAAE,KAAK,QAAQ,EAAE,CAAC;QACpB,QAAQ,CAAC,IAAI,CACX,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,2BAA2B,CAAC,EAAE,EACrE,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,UAAU,EAAE,GAAG,IAAI,+BAA+B,CAAC,EAAE,EACvF,EAAE,IAAI,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,WAAW,EAAE,GAAG,IAAI,yCAAyC,CAAC,EAAE,EACnG,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,eAAe,EAAE,GAAG,IAAI,mCAAmC,CAAC,EAAE,CACtG,CAAC;IACJ,CAAC;SAAM,IAAI,EAAE,KAAK,OAAO,EAAE,CAAC;QAC1B,4FAA4F;QAC5F,+DAA+D;QAC/D,QAAQ,CAAC,IAAI,CACX,EAAE,IAAI,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,YAAY,CAAC,EAAE,EAClD,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,WAAW,CAAC,EAAE,EAChD,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,gBAAgB,CAAC,EAAE,EAC1D,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,eAAe,CAAC,EAAE,CAC1D,CAAC;IACJ,CAAC;SAAM,CAAC;QACN,QAAQ;QACR,QAAQ,CAAC,IAAI,CACX,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,UAAU,CAAC,EAAE,EAC/C,EAAE,IAAI,EAAE,cAAc,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,eAAe,CAAC,EAAE,EACzD,EAAE,IAAI,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC,GAAG,IAAI,WAAW,CAAC,EAAE,CAClD,CAAC;IACJ,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,WAAmB;IAEnB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAC/B,MAAM,aAAa,GAAG,OAAO,CAAC,WAAW,CAAC,CAAC,WAAW,EAAE,CAAC;IACzD,MAAM,QAAQ,GAAG,gBAAgB,EAAE,CAAC;IAEpC,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,KAAK,MAAM,QAAQ,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YACrC,IAAI,CAAC;gBACH,MAAM,IAAI,CAAC,QAAQ,CAAC,CAAC;gBACrB,6DAA6D;gBAC7D,MAAM,YAAY,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;gBACrD,IAAI,aAAa,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;oBAC3C,QAAQ,CAAC,IAAI,CAAC;wBACZ,EAAE,EAAE,WAAW;wBACf,QAAQ,EAAE,QAAQ,CAAC,IAAI;wBACvB,UAAU,EAAE,MAAM;wBAClB,QAAQ,EAAE,YAAY;wBACtB,KAAK,EAAE,gCAAgC,OAAO,CAAC,IAAI,EAAE;wBACrD,WAAW,EAAE,GAAG,WAAW,cAAc,QAAQ,8CAA8C;wBAC/F,IAAI,EAAE,qFAAqF;wBAC3F,WAAW,EAAE,gCAAgC,OAAO,CAAC,IAAI,0BAA0B;wBACnF,WAAW,EAAE,KAAK;qBACnB,CAAC,CAAC;oBACH,MAAM,CAAC,0BAA0B;gBACnC,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,gCAAgC;YAClC,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}

package/dist/checks/data-protection.d.ts

@@ -0,0 +1,9 @@
+/**
+ * Data Protection checks (DATA-001 to DATA-010).
+ *
+ * Checks for PII in logs, data retention policies, encryption,
+ * log rotation, and data access audit trails.
+ */
+import { type Finding, type OpenClawConfig, type DiscoveredFiles } from "../types.js";
+export declare function runDataProtectionChecks(config: OpenClawConfig, files: DiscoveredFiles): Promise<Finding[]>;
+//# sourceMappingURL=data-protection.d.ts.map

package/dist/checks/data-protection.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"data-protection.d.ts","sourceRoot":"","sources":["../../src/checks/data-protection.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAY,KAAK,OAAO,EAAE,KAAK,cAAc,EAAE,KAAK,eAAe,EAAE,MAAM,aAAa,CAAC;AAahG,wBAAsB,uBAAuB,CAC3C,MAAM,EAAE,cAAc,EACtB,KAAK,EAAE,eAAe,GACrB,OAAO,CAAC,OAAO,EAAE,CAAC,CA8LpB"}

package/dist/checks/data-protection.js

@@ -0,0 +1,197 @@
+/**
+ * Data Protection checks (DATA-001 to DATA-010).
+ *
+ * Checks for PII in logs, data retention policies, encryption,
+ * log rotation, and data access audit trails.
+ */
+import { Severity } from "../types.js";
+import { readFile, stat } from "node:fs/promises";
+import { basename } from "node:path";
+// FIX: Tightened PII patterns to reduce false positives.
+// Phone/SSN patterns removed — they match timestamps, version numbers, ports, etc.
+// with extremely high false-positive rates. Kept email and credit-card (Luhn check
+// would be ideal but is out of scope; the 4-group pattern is reasonably specific).
+const PII_PATTERNS = [
+    /\b[A-Za-z0-9._%+-]+@[A-Za-z0-9.-]+\.[A-Za-z]{2,}\b/, // email (FIX: [A-Za-z] not [A-Z|a-z])
+    /\b\d{4}[\s-]\d{4}[\s-]\d{4}[\s-]\d{4}\b/, // credit card-like (require separators to avoid matching hex/ids)
+];
+export async function runDataProtectionChecks(config, files) {
+    const findings = [];
+    // DATA-001: Session logs contain PII
+    for (const logFile of files.sessionLogFiles.slice(0, 5)) {
+        try {
+            const content = await readFile(logFile, "utf-8").then((c) => c.slice(0, 512 * 1024));
+            const hasPII = PII_PATTERNS.some((p) => p.test(content));
+            if (hasPII) {
+                findings.push({
+                    id: "DATA-001",
+                    severity: Severity.High,
+                    confidence: "medium",
+                    category: "Data Protection",
+                    title: "Session log may contain PII",
+                    description: `${basename(logFile)} contains patterns resembling personal data (email, phone, etc.)`,
+                    risk: "PII in logs may violate privacy regulations (GDPR, CCPA) and expose user data",
+                    remediation: "Enable PII scrubbing in session logs or reduce log verbosity",
+                    autoFixable: false,
+                    file: logFile,
+                });
+                break;
+            }
+        }
+        catch {
+            // Can't read
+        }
+    }
+    // DATA-002: No data retention policy
+    if (!config.retention?.sessionLogTTL) {
+        findings.push({
+            id: "DATA-002",
+            severity: Severity.Medium,
+            confidence: "medium",
+            category: "Data Protection",
+            title: "No data retention policy",
+            description: "No session log TTL configured — logs accumulate indefinitely",
+            risk: "Unbounded log retention increases data breach exposure window",
+            remediation: "Set retention.sessionLogTTL to a reasonable period (e.g., 30 days)",
+            autoFixable: false,
+        });
+    }
+    // DATA-003: Logs not encrypted at rest
+    if (!config.retention?.encryptAtRest) {
+        findings.push({
+            id: "DATA-003",
+            severity: Severity.Low,
+            confidence: "low",
+            category: "Data Protection",
+            title: "Session logs not encrypted at rest",
+            description: "retention.encryptAtRest is not enabled for session logs",
+            risk: "Logs stored in plaintext can be read if the disk is accessed by unauthorized parties",
+            remediation: "Set retention.encryptAtRest: true or use full-disk encryption",
+            autoFixable: false,
+        });
+    }
+    // DATA-004: No log rotation
+    if (!config.retention?.logRotation) {
+        // Also flag if session logs are large
+        let hasLargeLog = false;
+        for (const logFile of files.sessionLogFiles.slice(0, 5)) {
+            try {
+                const s = await stat(logFile);
+                if (s.size > 50 * 1024 * 1024) {
+                    hasLargeLog = true;
+                    break;
+                }
+            }
+            catch {
+                // Can't stat
+            }
+        }
+        findings.push({
+            id: "DATA-004",
+            severity: hasLargeLog ? Severity.Medium : Severity.Low,
+            confidence: hasLargeLog ? "high" : "medium",
+            category: "Data Protection",
+            title: "No log rotation configured",
+            description: hasLargeLog
+                ? "Log rotation disabled and session logs exceed 50MB"
+                : "retention.logRotation is not enabled",
+            risk: "Unrotated logs consume disk space and increase exposure in case of breach",
+            remediation: "Set retention.logRotation: true to enable automatic log rotation",
+            autoFixable: false,
+        });
+    }
+    // DATA-005: Backups not encrypted
+    if (config.retention && !config.retention.encryptAtRest) {
+        findings.push({
+            id: "DATA-005",
+            severity: Severity.Low,
+            confidence: "low",
+            category: "Data Protection",
+            title: "Backups not encrypted",
+            description: "Data retention is configured but encryption at rest is not enabled",
+            risk: "Backup files containing session data are stored in plaintext",
+            remediation: "Enable retention.encryptAtRest: true to encrypt stored data",
+            autoFixable: false,
+        });
+    }
+    // DATA-006: No data anonymization
+    if (files.sessionLogFiles.length > 0 && !config.retention?.sessionLogTTL) {
+        findings.push({
+            id: "DATA-006",
+            severity: Severity.Low,
+            confidence: "low",
+            category: "Data Protection",
+            title: "No data anonymization",
+            description: "Session logs exist with no retention policy or anonymization configured",
+            risk: "Historical logs contain identifiable conversation data",
+            remediation: "Configure data anonymization or set a retention TTL to limit data lifespan",
+            autoFixable: false,
+        });
+    }
+    // DATA-007: Third-party data sharing
+    if (config.monitoring?.enabled && config.monitoring?.provider) {
+        findings.push({
+            id: "DATA-007",
+            severity: Severity.Medium,
+            confidence: "medium",
+            category: "Data Protection",
+            title: "Third-party monitoring enabled",
+            description: `Monitoring data is sent to third-party provider: ${config.monitoring.provider}`,
+            risk: "Session data, tool invocations, or PII may be shared with external services",
+            remediation: "Review monitoring configuration to ensure only necessary data is shared",
+            autoFixable: false,
+        });
+    }
+    // DATA-008: No right-to-deletion
+    if (files.sessionLogFiles.length > 0 && !config.retention?.sessionLogTTL) {
+        findings.push({
+            id: "DATA-008",
+            severity: Severity.Low,
+            confidence: "low",
+            category: "Data Protection",
+            title: "No data deletion mechanism",
+            description: "No retention TTL or deletion mechanism for user session data",
+            risk: "Cannot fulfil data deletion requests (GDPR Article 17) without manual cleanup",
+            remediation: "Configure retention.sessionLogTTL or provide a data deletion workflow",
+            autoFixable: false,
+        });
+    }
+    // DATA-009: Logs in public directory
+    if (files.workspaceDir) {
+        const publicDirs = ["public", "static", "dist", "build", "www"];
+        for (const logFile of files.sessionLogFiles) {
+            const inPublic = publicDirs.some((d) => logFile.toLowerCase().includes(`${d}/`) || logFile.toLowerCase().includes(`${d}\\`));
+            if (inPublic) {
+                findings.push({
+                    id: "DATA-009",
+                    severity: Severity.High,
+                    confidence: "high",
+                    category: "Data Protection",
+                    title: "Session logs in public directory",
+                    description: `${basename(logFile)} is inside a public/static directory`,
+                    risk: "Logs in public directories may be served by web servers and accessible via URL",
+                    remediation: "Move session logs out of public-facing directories",
+                    autoFixable: false,
+                    file: logFile,
+                });
+                break;
+            }
+        }
+    }
+    // DATA-010: No audit trail for data access
+    if (!config.tools?.auditLog && files.sessionLogFiles.length > 0) {
+        findings.push({
+            id: "DATA-010",
+            severity: Severity.Low,
+            confidence: "low",
+            category: "Data Protection",
+            title: "No audit trail for data access",
+            description: "No audit logging configured to track who accesses session data",
+            risk: "Cannot determine who accessed, modified, or exported conversation data",
+            remediation: "Enable tools.auditLog: true to track data access operations",
+            autoFixable: false,
+        });
+    }
+    return findings;
+}
+//# sourceMappingURL=data-protection.js.map

package/dist/checks/data-protection.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"data-protection.js","sourceRoot":"","sources":["../../src/checks/data-protection.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,QAAQ,EAA2D,MAAM,aAAa,CAAC;AAChG,OAAO,EAAE,QAAQ,EAAE,IAAI,EAAE,MAAM,kBAAkB,CAAC;AAClD,OAAO,EAAE,QAAQ,EAAQ,MAAM,WAAW,CAAC;AAE3C,yDAAyD;AACzD,mFAAmF;AACnF,mFAAmF;AACnF,mFAAmF;AACnF,MAAM,YAAY,GAAG;IACnB,oDAAoD,EAAI,sCAAsC;IAC9F,yCAAyC,EAAgB,kEAAkE;CAC5H,CAAC;AAEF,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,MAAsB,EACtB,KAAsB;IAEtB,MAAM,QAAQ,GAAc,EAAE,CAAC;IAE/B,qCAAqC;IACrC,KAAK,MAAM,OAAO,IAAI,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;QACxD,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,GAAG,IAAI,CAAC,CAAC,CAAC;YACrF,MAAM,MAAM,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC;YACzD,IAAI,MAAM,EAAE,CAAC;gBACX,QAAQ,CAAC,IAAI,CAAC;oBACZ,EAAE,EAAE,UAAU;oBACd,QAAQ,EAAE,QAAQ,CAAC,IAAI;oBACvB,UAAU,EAAE,QAAQ;oBACpB,QAAQ,EAAE,iBAAiB;oBAC3B,KAAK,EAAE,6BAA6B;oBACpC,WAAW,EAAE,GAAG,QAAQ,CAAC,OAAO,CAAC,kEAAkE;oBACnG,IAAI,EAAE,+EAA+E;oBACrF,WAAW,EAAE,8DAA8D;oBAC3E,WAAW,EAAE,KAAK;oBAClB,IAAI,EAAE,OAAO;iBACd,CAAC,CAAC;gBACH,MAAM;YACR,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,aAAa;QACf,CAAC;IACH,CAAC;IAED,qCAAqC;IACrC,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,aAAa,EAAE,CAAC;QACrC,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,UAAU;YACd,QAAQ,EAAE,QAAQ,CAAC,MAAM;YACzB,UAAU,EAAE,QAAQ;YACpB,QAAQ,EAAE,iBAAiB;YAC3B,KAAK,EAAE,0BAA0B;YACjC,WAAW,EAAE,8DAA8D;YAC3E,IAAI,EAAE,+DAA+D;YACrE,WAAW,EAAE,oEAAoE;YACjF,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAED,uCAAuC;IACvC,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,aAAa,EAAE,CAAC;QACrC,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,UAAU;YACd,QAAQ,EAAE,QAAQ,CAAC,GAAG;YACtB,UAAU,EAAE,KAAK;YACjB,QAAQ,EAAE,iBAAiB;YAC3B,KAAK,EAAE,oCAAoC;YAC3C,WAAW,EAAE,yDAAyD;YACtE,IAAI,EAAE,sFAAsF;YAC5F,WAAW,EAAE,+DAA+D;YAC5E,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAED,4BAA4B;IAC5B,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,WAAW,EAAE,CAAC;QACnC,sCAAsC;QACtC,IAAI,WAAW,GAAG,KAAK,CAAC;QACxB,KAAK,MAAM,OAAO,IAAI,KAAK,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;YACxD,IAAI,CAAC;gBACH,MAAM,CAAC,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,CAAC;gBAC9B,IAAI,CAAC,CAAC,IAAI,GAAG,EAAE,GAAG,IAAI,GAAG,IAAI,EAAE,CAAC;oBAC9B,WAAW,GAAG,IAAI,CAAC;oBACnB,MAAM;gBACR,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,aAAa;YACf,CAAC;QACH,CAAC;QAED,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,UAAU;YACd,QAAQ,EAAE,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG;YACtD,UAAU,EAAE,WAAW,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ;YAC3C,QAAQ,EAAE,iBAAiB;YAC3B,KAAK,EAAE,4BAA4B;YACnC,WAAW,EAAE,WAAW;gBACtB,CAAC,CAAC,oDAAoD;gBACtD,CAAC,CAAC,sCAAsC;YAC1C,IAAI,EAAE,2EAA2E;YACjF,WAAW,EAAE,kEAAkE;YAC/E,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAED,kCAAkC;IAClC,IAAI,MAAM,CAAC,SAAS,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,aAAa,EAAE,CAAC;QACxD,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,UAAU;YACd,QAAQ,EAAE,QAAQ,CAAC,GAAG;YACtB,UAAU,EAAE,KAAK;YACjB,QAAQ,EAAE,iBAAiB;YAC3B,KAAK,EAAE,uBAAuB;YAC9B,WAAW,EAAE,oEAAoE;YACjF,IAAI,EAAE,8DAA8D;YACpE,WAAW,EAAE,6DAA6D;YAC1E,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAED,kCAAkC;IAClC,IAAI,KAAK,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,aAAa,EAAE,CAAC;QACzE,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,UAAU;YACd,QAAQ,EAAE,QAAQ,CAAC,GAAG;YACtB,UAAU,EAAE,KAAK;YACjB,QAAQ,EAAE,iBAAiB;YAC3B,KAAK,EAAE,uBAAuB;YAC9B,WAAW,EAAE,yEAAyE;YACtF,IAAI,EAAE,wDAAwD;YAC9D,WAAW,EAAE,4EAA4E;YACzF,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAED,qCAAqC;IACrC,IAAI,MAAM,CAAC,UAAU,EAAE,OAAO,IAAI,MAAM,CAAC,UAAU,EAAE,QAAQ,EAAE,CAAC;QAC9D,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,UAAU;YACd,QAAQ,EAAE,QAAQ,CAAC,MAAM;YACzB,UAAU,EAAE,QAAQ;YACpB,QAAQ,EAAE,iBAAiB;YAC3B,KAAK,EAAE,gCAAgC;YACvC,WAAW,EAAE,oDAAoD,MAAM,CAAC,UAAU,CAAC,QAAQ,EAAE;YAC7F,IAAI,EAAE,6EAA6E;YACnF,WAAW,EAAE,yEAAyE;YACtF,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAED,iCAAiC;IACjC,IAAI,KAAK,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,EAAE,aAAa,EAAE,CAAC;QACzE,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,UAAU;YACd,QAAQ,EAAE,QAAQ,CAAC,GAAG;YACtB,UAAU,EAAE,KAAK;YACjB,QAAQ,EAAE,iBAAiB;YAC3B,KAAK,EAAE,4BAA4B;YACnC,WAAW,EAAE,8DAA8D;YAC3E,IAAI,EAAE,+EAA+E;YACrF,WAAW,EAAE,uEAAuE;YACpF,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAED,qCAAqC;IACrC,IAAI,KAAK,CAAC,YAAY,EAAE,CAAC;QACvB,MAAM,UAAU,GAAG,CAAC,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC;QAChE,KAAK,MAAM,OAAO,IAAI,KAAK,CAAC,eAAe,EAAE,CAAC;YAC5C,MAAM,QAAQ,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CACrC,OAAO,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,CACpF,CAAC;YACF,IAAI,QAAQ,EAAE,CAAC;gBACb,QAAQ,CAAC,IAAI,CAAC;oBACZ,EAAE,EAAE,UAAU;oBACd,QAAQ,EAAE,QAAQ,CAAC,IAAI;oBACvB,UAAU,EAAE,MAAM;oBAClB,QAAQ,EAAE,iBAAiB;oBAC3B,KAAK,EAAE,kCAAkC;oBACzC,WAAW,EAAE,GAAG,QAAQ,CAAC,OAAO,CAAC,sCAAsC;oBACvE,IAAI,EAAE,gFAAgF;oBACtF,WAAW,EAAE,oDAAoD;oBACjE,WAAW,EAAE,KAAK;oBAClB,IAAI,EAAE,OAAO;iBACd,CAAC,CAAC;gBACH,MAAM;YACR,CAAC;QACH,CAAC;IACH,CAAC;IAED,2CAA2C;IAC3C,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,QAAQ,IAAI,KAAK,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAChE,QAAQ,CAAC,IAAI,CAAC;YACZ,EAAE,EAAE,UAAU;YACd,QAAQ,EAAE,QAAQ,CAAC,GAAG;YACtB,UAAU,EAAE,KAAK;YACjB,QAAQ,EAAE,iBAAiB;YAC3B,KAAK,EAAE,gCAAgC;YACvC,WAAW,EAAE,gEAAgE;YAC7E,IAAI,EAAE,wEAAwE;YAC9E,WAAW,EAAE,6DAA6D;YAC1E,WAAW,EAAE,KAAK;SACnB,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}