npm - clawsec - Versions diffs - 0.0.1 - Mend

clawsec 0.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (361) hide show

package/README.md +560 -0
package/dist/bin/clawsec.d.ts +7 -0
package/dist/bin/clawsec.d.ts.map +1 -0
package/dist/bin/clawsec.js +12 -0
package/dist/bin/clawsec.js.map +1 -0
package/dist/src/actions/block.d.ts +22 -0
package/dist/src/actions/block.d.ts.map +1 -0
package/dist/src/actions/block.js +83 -0
package/dist/src/actions/block.js.map +1 -0
package/dist/src/actions/confirm.d.ts +35 -0
package/dist/src/actions/confirm.d.ts.map +1 -0
package/dist/src/actions/confirm.js +156 -0
package/dist/src/actions/confirm.js.map +1 -0
package/dist/src/actions/executor.d.ts +64 -0
package/dist/src/actions/executor.d.ts.map +1 -0
package/dist/src/actions/executor.js +114 -0
package/dist/src/actions/executor.js.map +1 -0
package/dist/src/actions/index.d.ts +13 -0
package/dist/src/actions/index.d.ts.map +1 -0
package/dist/src/actions/index.js +15 -0
package/dist/src/actions/index.js.map +1 -0
package/dist/src/actions/log.d.ts +19 -0
package/dist/src/actions/log.d.ts.map +1 -0
package/dist/src/actions/log.js +63 -0
package/dist/src/actions/log.js.map +1 -0
package/dist/src/actions/types.d.ts +85 -0
package/dist/src/actions/types.d.ts.map +1 -0
package/dist/src/actions/types.js +78 -0
package/dist/src/actions/types.js.map +1 -0
package/dist/src/actions/warn.d.ts +22 -0
package/dist/src/actions/warn.d.ts.map +1 -0
package/dist/src/actions/warn.js +84 -0
package/dist/src/actions/warn.js.map +1 -0
package/dist/src/approval/agent-confirm.d.ts +104 -0
package/dist/src/approval/agent-confirm.d.ts.map +1 -0
package/dist/src/approval/agent-confirm.js +173 -0
package/dist/src/approval/agent-confirm.js.map +1 -0
package/dist/src/approval/index.d.ts +14 -0
package/dist/src/approval/index.d.ts.map +1 -0
package/dist/src/approval/index.js +9 -0
package/dist/src/approval/index.js.map +1 -0
package/dist/src/approval/native.d.ts +56 -0
package/dist/src/approval/native.d.ts.map +1 -0
package/dist/src/approval/native.js +196 -0
package/dist/src/approval/native.js.map +1 -0
package/dist/src/approval/store.d.ts +88 -0
package/dist/src/approval/store.d.ts.map +1 -0
package/dist/src/approval/store.js +192 -0
package/dist/src/approval/store.js.map +1 -0
package/dist/src/approval/types.d.ts +119 -0
package/dist/src/approval/types.d.ts.map +1 -0
package/dist/src/approval/types.js +6 -0
package/dist/src/approval/types.js.map +1 -0
package/dist/src/approval/webhook.d.ts +170 -0
package/dist/src/approval/webhook.d.ts.map +1 -0
package/dist/src/approval/webhook.js +362 -0
package/dist/src/approval/webhook.js.map +1 -0
package/dist/src/cli/commands/audit.d.ts +43 -0
package/dist/src/cli/commands/audit.d.ts.map +1 -0
package/dist/src/cli/commands/audit.js +115 -0
package/dist/src/cli/commands/audit.js.map +1 -0
package/dist/src/cli/commands/feedback.d.ts +27 -0
package/dist/src/cli/commands/feedback.d.ts.map +1 -0
package/dist/src/cli/commands/feedback.js +228 -0
package/dist/src/cli/commands/feedback.js.map +1 -0
package/dist/src/cli/commands/index.d.ts +11 -0
package/dist/src/cli/commands/index.d.ts.map +1 -0
package/dist/src/cli/commands/index.js +13 -0
package/dist/src/cli/commands/index.js.map +1 -0
package/dist/src/cli/commands/status.d.ts +20 -0
package/dist/src/cli/commands/status.d.ts.map +1 -0
package/dist/src/cli/commands/status.js +122 -0
package/dist/src/cli/commands/status.js.map +1 -0
package/dist/src/cli/commands/test.d.ts +23 -0
package/dist/src/cli/commands/test.d.ts.map +1 -0
package/dist/src/cli/commands/test.js +134 -0
package/dist/src/cli/commands/test.js.map +1 -0
package/dist/src/cli/commands/types.d.ts +81 -0
package/dist/src/cli/commands/types.d.ts.map +1 -0
package/dist/src/cli/commands/types.js +6 -0
package/dist/src/cli/commands/types.js.map +1 -0
package/dist/src/cli/index.d.ts +17 -0
package/dist/src/cli/index.d.ts.map +1 -0
package/dist/src/cli/index.js +267 -0
package/dist/src/cli/index.js.map +1 -0
package/dist/src/config/defaults.d.ts +20 -0
package/dist/src/config/defaults.d.ts.map +1 -0
package/dist/src/config/defaults.js +123 -0
package/dist/src/config/defaults.js.map +1 -0
package/dist/src/config/index.d.ts +8 -0
package/dist/src/config/index.d.ts.map +1 -0
package/dist/src/config/index.js +41 -0
package/dist/src/config/index.js.map +1 -0
package/dist/src/config/loader.d.ts +99 -0
package/dist/src/config/loader.d.ts.map +1 -0
package/dist/src/config/loader.js +242 -0
package/dist/src/config/loader.js.map +1 -0
package/dist/src/config/schema.d.ts +627 -0
package/dist/src/config/schema.d.ts.map +1 -0
package/dist/src/config/schema.js +585 -0
package/dist/src/config/schema.js.map +1 -0
package/dist/src/detectors/destructive/cloud-detector.d.ts +51 -0
package/dist/src/detectors/destructive/cloud-detector.d.ts.map +1 -0
package/dist/src/detectors/destructive/cloud-detector.js +556 -0
package/dist/src/detectors/destructive/cloud-detector.js.map +1 -0
package/dist/src/detectors/destructive/code-detector.d.ts +59 -0
package/dist/src/detectors/destructive/code-detector.d.ts.map +1 -0
package/dist/src/detectors/destructive/code-detector.js +558 -0
package/dist/src/detectors/destructive/code-detector.js.map +1 -0
package/dist/src/detectors/destructive/index.d.ts +54 -0
package/dist/src/detectors/destructive/index.d.ts.map +1 -0
package/dist/src/detectors/destructive/index.js +168 -0
package/dist/src/detectors/destructive/index.js.map +1 -0
package/dist/src/detectors/destructive/shell-detector.d.ts +43 -0
package/dist/src/detectors/destructive/shell-detector.d.ts.map +1 -0
package/dist/src/detectors/destructive/shell-detector.js +302 -0
package/dist/src/detectors/destructive/shell-detector.js.map +1 -0
package/dist/src/detectors/destructive/types.d.ts +143 -0
package/dist/src/detectors/destructive/types.d.ts.map +1 -0
package/dist/src/detectors/destructive/types.js +6 -0
package/dist/src/detectors/destructive/types.js.map +1 -0
package/dist/src/detectors/exfiltration/cloud-detector.d.ts +51 -0
package/dist/src/detectors/exfiltration/cloud-detector.d.ts.map +1 -0
package/dist/src/detectors/exfiltration/cloud-detector.js +427 -0
package/dist/src/detectors/exfiltration/cloud-detector.js.map +1 -0
package/dist/src/detectors/exfiltration/http-detector.d.ts +47 -0
package/dist/src/detectors/exfiltration/http-detector.d.ts.map +1 -0
package/dist/src/detectors/exfiltration/http-detector.js +429 -0
package/dist/src/detectors/exfiltration/http-detector.js.map +1 -0
package/dist/src/detectors/exfiltration/index.d.ts +44 -0
package/dist/src/detectors/exfiltration/index.d.ts.map +1 -0
package/dist/src/detectors/exfiltration/index.js +118 -0
package/dist/src/detectors/exfiltration/index.js.map +1 -0
package/dist/src/detectors/exfiltration/network-detector.d.ts +55 -0
package/dist/src/detectors/exfiltration/network-detector.d.ts.map +1 -0
package/dist/src/detectors/exfiltration/network-detector.js +504 -0
package/dist/src/detectors/exfiltration/network-detector.js.map +1 -0
package/dist/src/detectors/exfiltration/types.d.ts +139 -0
package/dist/src/detectors/exfiltration/types.d.ts.map +1 -0
package/dist/src/detectors/exfiltration/types.js +6 -0
package/dist/src/detectors/exfiltration/types.js.map +1 -0
package/dist/src/detectors/purchase/domain-detector.d.ts +44 -0
package/dist/src/detectors/purchase/domain-detector.d.ts.map +1 -0
package/dist/src/detectors/purchase/domain-detector.js +296 -0
package/dist/src/detectors/purchase/domain-detector.js.map +1 -0
package/dist/src/detectors/purchase/form-detector.d.ts +27 -0
package/dist/src/detectors/purchase/form-detector.d.ts.map +1 -0
package/dist/src/detectors/purchase/form-detector.js +344 -0
package/dist/src/detectors/purchase/form-detector.js.map +1 -0
package/dist/src/detectors/purchase/index.d.ts +65 -0
package/dist/src/detectors/purchase/index.d.ts.map +1 -0
package/dist/src/detectors/purchase/index.js +216 -0
package/dist/src/detectors/purchase/index.js.map +1 -0
package/dist/src/detectors/purchase/spend-tracker.d.ts +132 -0
package/dist/src/detectors/purchase/spend-tracker.d.ts.map +1 -0
package/dist/src/detectors/purchase/spend-tracker.js +313 -0
package/dist/src/detectors/purchase/spend-tracker.js.map +1 -0
package/dist/src/detectors/purchase/types.d.ts +139 -0
package/dist/src/detectors/purchase/types.d.ts.map +1 -0
package/dist/src/detectors/purchase/types.js +6 -0
package/dist/src/detectors/purchase/types.js.map +1 -0
package/dist/src/detectors/purchase/url-detector.d.ts +31 -0
package/dist/src/detectors/purchase/url-detector.d.ts.map +1 -0
package/dist/src/detectors/purchase/url-detector.js +292 -0
package/dist/src/detectors/purchase/url-detector.js.map +1 -0
package/dist/src/detectors/secrets/api-key-detector.d.ts +30 -0
package/dist/src/detectors/secrets/api-key-detector.d.ts.map +1 -0
package/dist/src/detectors/secrets/api-key-detector.js +297 -0
package/dist/src/detectors/secrets/api-key-detector.js.map +1 -0
package/dist/src/detectors/secrets/index.d.ts +43 -0
package/dist/src/detectors/secrets/index.d.ts.map +1 -0
package/dist/src/detectors/secrets/index.js +261 -0
package/dist/src/detectors/secrets/index.js.map +1 -0
package/dist/src/detectors/secrets/pii-detector.d.ts +54 -0
package/dist/src/detectors/secrets/pii-detector.d.ts.map +1 -0
package/dist/src/detectors/secrets/pii-detector.js +286 -0
package/dist/src/detectors/secrets/pii-detector.js.map +1 -0
package/dist/src/detectors/secrets/token-detector.d.ts +51 -0
package/dist/src/detectors/secrets/token-detector.d.ts.map +1 -0
package/dist/src/detectors/secrets/token-detector.js +233 -0
package/dist/src/detectors/secrets/token-detector.js.map +1 -0
package/dist/src/detectors/secrets/types.d.ts +157 -0
package/dist/src/detectors/secrets/types.d.ts.map +1 -0
package/dist/src/detectors/secrets/types.js +6 -0
package/dist/src/detectors/secrets/types.js.map +1 -0
package/dist/src/detectors/website/category-detector.d.ts +22 -0
package/dist/src/detectors/website/category-detector.d.ts.map +1 -0
package/dist/src/detectors/website/category-detector.js +162 -0
package/dist/src/detectors/website/category-detector.js.map +1 -0
package/dist/src/detectors/website/index.d.ts +53 -0
package/dist/src/detectors/website/index.d.ts.map +1 -0
package/dist/src/detectors/website/index.js +232 -0
package/dist/src/detectors/website/index.js.map +1 -0
package/dist/src/detectors/website/pattern-matcher.d.ts +33 -0
package/dist/src/detectors/website/pattern-matcher.d.ts.map +1 -0
package/dist/src/detectors/website/pattern-matcher.js +121 -0
package/dist/src/detectors/website/pattern-matcher.js.map +1 -0
package/dist/src/detectors/website/types.d.ts +105 -0
package/dist/src/detectors/website/types.d.ts.map +1 -0
package/dist/src/detectors/website/types.js +6 -0
package/dist/src/detectors/website/types.js.map +1 -0
package/dist/src/engine/analyzer.d.ts +87 -0
package/dist/src/engine/analyzer.d.ts.map +1 -0
package/dist/src/engine/analyzer.js +427 -0
package/dist/src/engine/analyzer.js.map +1 -0
package/dist/src/engine/cache.d.ts +80 -0
package/dist/src/engine/cache.d.ts.map +1 -0
package/dist/src/engine/cache.js +167 -0
package/dist/src/engine/cache.js.map +1 -0
package/dist/src/engine/index.d.ts +11 -0
package/dist/src/engine/index.d.ts.map +1 -0
package/dist/src/engine/index.js +11 -0
package/dist/src/engine/index.js.map +1 -0
package/dist/src/engine/llm-client.d.ts +210 -0
package/dist/src/engine/llm-client.d.ts.map +1 -0
package/dist/src/engine/llm-client.js +506 -0
package/dist/src/engine/llm-client.js.map +1 -0
package/dist/src/engine/types.d.ts +163 -0
package/dist/src/engine/types.d.ts.map +1 -0
package/dist/src/engine/types.js +21 -0
package/dist/src/engine/types.js.map +1 -0
package/dist/src/feedback/index.d.ts +9 -0
package/dist/src/feedback/index.d.ts.map +1 -0
package/dist/src/feedback/index.js +8 -0
package/dist/src/feedback/index.js.map +1 -0
package/dist/src/feedback/learner.d.ts +222 -0
package/dist/src/feedback/learner.d.ts.map +1 -0
package/dist/src/feedback/learner.js +401 -0
package/dist/src/feedback/learner.js.map +1 -0
package/dist/src/feedback/store.d.ts +113 -0
package/dist/src/feedback/store.d.ts.map +1 -0
package/dist/src/feedback/store.js +228 -0
package/dist/src/feedback/store.js.map +1 -0
package/dist/src/feedback/types.d.ts +126 -0
package/dist/src/feedback/types.d.ts.map +1 -0
package/dist/src/feedback/types.js +6 -0
package/dist/src/feedback/types.js.map +1 -0
package/dist/src/hooks/before-agent-start/handler.d.ts +37 -0
package/dist/src/hooks/before-agent-start/handler.d.ts.map +1 -0
package/dist/src/hooks/before-agent-start/handler.js +109 -0
package/dist/src/hooks/before-agent-start/handler.js.map +1 -0
package/dist/src/hooks/before-agent-start/index.d.ts +8 -0
package/dist/src/hooks/before-agent-start/index.d.ts.map +1 -0
package/dist/src/hooks/before-agent-start/index.js +7 -0
package/dist/src/hooks/before-agent-start/index.js.map +1 -0
package/dist/src/hooks/before-agent-start/prompts.d.ts +48 -0
package/dist/src/hooks/before-agent-start/prompts.d.ts.map +1 -0
package/dist/src/hooks/before-agent-start/prompts.js +103 -0
package/dist/src/hooks/before-agent-start/prompts.js.map +1 -0
package/dist/src/hooks/before-tool-call/handler.d.ts +42 -0
package/dist/src/hooks/before-tool-call/handler.d.ts.map +1 -0
package/dist/src/hooks/before-tool-call/handler.js +226 -0
package/dist/src/hooks/before-tool-call/handler.js.map +1 -0
package/dist/src/hooks/before-tool-call/index.d.ts +7 -0
package/dist/src/hooks/before-tool-call/index.d.ts.map +1 -0
package/dist/src/hooks/before-tool-call/index.js +6 -0
package/dist/src/hooks/before-tool-call/index.js.map +1 -0
package/dist/src/hooks/tool-result-persist/filter.d.ts +72 -0
package/dist/src/hooks/tool-result-persist/filter.d.ts.map +1 -0
package/dist/src/hooks/tool-result-persist/filter.js +305 -0
package/dist/src/hooks/tool-result-persist/filter.js.map +1 -0
package/dist/src/hooks/tool-result-persist/handler.d.ts +49 -0
package/dist/src/hooks/tool-result-persist/handler.d.ts.map +1 -0
package/dist/src/hooks/tool-result-persist/handler.js +217 -0
package/dist/src/hooks/tool-result-persist/handler.js.map +1 -0
package/dist/src/hooks/tool-result-persist/index.d.ts +11 -0
package/dist/src/hooks/tool-result-persist/index.d.ts.map +1 -0
package/dist/src/hooks/tool-result-persist/index.js +11 -0
package/dist/src/hooks/tool-result-persist/index.js.map +1 -0
package/dist/src/index.d.ts +256 -0
package/dist/src/index.d.ts.map +1 -0
package/dist/src/index.js +222 -0
package/dist/src/index.js.map +1 -0
package/dist/src/notifications/discord.d.ts +10 -0
package/dist/src/notifications/discord.d.ts.map +1 -0
package/dist/src/notifications/discord.js +218 -0
package/dist/src/notifications/discord.js.map +1 -0
package/dist/src/notifications/index.d.ts +37 -0
package/dist/src/notifications/index.d.ts.map +1 -0
package/dist/src/notifications/index.js +68 -0
package/dist/src/notifications/index.js.map +1 -0
package/dist/src/notifications/slack.d.ts +10 -0
package/dist/src/notifications/slack.d.ts.map +1 -0
package/dist/src/notifications/slack.js +218 -0
package/dist/src/notifications/slack.js.map +1 -0
package/dist/src/notifications/telegram.d.ts +10 -0
package/dist/src/notifications/telegram.d.ts.map +1 -0
package/dist/src/notifications/telegram.js +242 -0
package/dist/src/notifications/telegram.js.map +1 -0
package/dist/src/notifications/types.d.ts +119 -0
package/dist/src/notifications/types.d.ts.map +1 -0
package/dist/src/notifications/types.js +6 -0
package/dist/src/notifications/types.js.map +1 -0
package/dist/src/proxy/index.d.ts +8 -0
package/dist/src/proxy/index.d.ts.map +1 -0
package/dist/src/proxy/index.js +9 -0
package/dist/src/proxy/index.js.map +1 -0
package/dist/src/proxy/middleware.d.ts +55 -0
package/dist/src/proxy/middleware.d.ts.map +1 -0
package/dist/src/proxy/middleware.js +215 -0
package/dist/src/proxy/middleware.js.map +1 -0
package/dist/src/proxy/server.d.ts +57 -0
package/dist/src/proxy/server.d.ts.map +1 -0
package/dist/src/proxy/server.js +298 -0
package/dist/src/proxy/server.js.map +1 -0
package/dist/src/proxy/types.d.ts +136 -0
package/dist/src/proxy/types.d.ts.map +1 -0
package/dist/src/proxy/types.js +6 -0
package/dist/src/proxy/types.js.map +1 -0
package/dist/src/sanitization/index.d.ts +10 -0
package/dist/src/sanitization/index.d.ts.map +1 -0
package/dist/src/sanitization/index.js +9 -0
package/dist/src/sanitization/index.js.map +1 -0
package/dist/src/sanitization/patterns.d.ts +51 -0
package/dist/src/sanitization/patterns.d.ts.map +1 -0
package/dist/src/sanitization/patterns.js +266 -0
package/dist/src/sanitization/patterns.js.map +1 -0
package/dist/src/sanitization/scanner.d.ts +29 -0
package/dist/src/sanitization/scanner.d.ts.map +1 -0
package/dist/src/sanitization/scanner.js +328 -0
package/dist/src/sanitization/scanner.js.map +1 -0
package/dist/src/sanitization/types.d.ts +57 -0
package/dist/src/sanitization/types.d.ts.map +1 -0
package/dist/src/sanitization/types.js +5 -0
package/dist/src/sanitization/types.js.map +1 -0
package/openclaw.plugin.json +114 -0
package/package.json +63 -0
package/rules/builtin/README.md +139 -0
package/rules/builtin/ai-services.yaml +70 -0
package/rules/builtin/api-keys.yaml +64 -0
package/rules/builtin/authentication.yaml +56 -0
package/rules/builtin/aws-security.yaml +57 -0
package/rules/builtin/azure-security.yaml +58 -0
package/rules/builtin/cicd-security.yaml +64 -0
package/rules/builtin/cloud-storage.yaml +64 -0
package/rules/builtin/container-registry.yaml +55 -0
package/rules/builtin/crypto-wallets.yaml +71 -0
package/rules/builtin/database-nosql.yaml +58 -0
package/rules/builtin/database-sql.yaml +62 -0
package/rules/builtin/development-env.yaml +67 -0
package/rules/builtin/docker.yaml +57 -0
package/rules/builtin/filesystem.yaml +71 -0
package/rules/builtin/financial-pci.yaml +61 -0
package/rules/builtin/gcp-security.yaml +57 -0
package/rules/builtin/git-operations.yaml +68 -0
package/rules/builtin/healthcare-hipaa.yaml +64 -0
package/rules/builtin/kubernetes.yaml +60 -0
package/rules/builtin/messaging-services.yaml +53 -0
package/rules/builtin/minimal.yaml +47 -0
package/rules/builtin/mobile-development.yaml +61 -0
package/rules/builtin/monitoring.yaml +63 -0
package/rules/builtin/network-security.yaml +57 -0
package/rules/builtin/package-managers.yaml +74 -0
package/rules/builtin/payment-processing.yaml +66 -0
package/rules/builtin/pii-protection.yaml +48 -0
package/rules/builtin/production-strict.yaml +55 -0
package/rules/builtin/secrets-management.yaml +63 -0
package/rules/builtin/serverless.yaml +74 -0
package/rules/builtin/ssh-security.yaml +66 -0
package/rules/builtin/terraform.yaml +51 -0
package/rules/builtin/web-security.yaml +62 -0

package/dist/src/detectors/destructive/code-detector.js ADDED Viewed

@@ -0,0 +1,558 @@
+/**
+ * Code Detector
+ * Detects dangerous code patterns for file/directory deletion across multiple languages
+ */
+/**
+ * Python destructive patterns
+ */
+const PYTHON_PATTERNS = [
+    // shutil.rmtree
+    {
+        pattern: /\bshutil\.rmtree\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))/i,
+        operation: 'shutil.rmtree',
+        description: 'Recursive directory deletion',
+    },
+    // os.remove / os.unlink
+    {
+        pattern: /\bos\.(?:remove|unlink)\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))/i,
+        operation: 'os.remove',
+        description: 'File deletion',
+    },
+    // os.rmdir
+    {
+        pattern: /\bos\.rmdir\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))/i,
+        operation: 'os.rmdir',
+        description: 'Directory deletion',
+    },
+    // pathlib rmdir/unlink
+    {
+        pattern: /\.rmdir\s*\(\s*\)/i,
+        operation: 'Path.rmdir',
+        description: 'Directory deletion via pathlib',
+    },
+    {
+        pattern: /\.unlink\s*\(\s*(?:missing_ok\s*=\s*(?:True|False))?\s*\)/i,
+        operation: 'Path.unlink',
+        description: 'File deletion via pathlib',
+    },
+    // os.removedirs
+    {
+        pattern: /\bos\.removedirs\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))/i,
+        operation: 'os.removedirs',
+        description: 'Recursive directory deletion',
+    },
+    // subprocess/os.system with rm
+    {
+        pattern: /(?:subprocess\.(?:run|call|Popen)|os\.system)\s*\(\s*['"`].*\brm\s+-r/i,
+        operation: 'subprocess rm -r',
+        description: 'Subprocess recursive deletion',
+    },
+];
+/**
+ * Node.js/JavaScript destructive patterns
+ */
+const NODEJS_PATTERNS = [
+    // fs.rm with recursive
+    {
+        pattern: /\bfs(?:Promises)?\.rm\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))\s*,\s*\{[^}]*recursive\s*:\s*true/i,
+        operation: 'fs.rm(recursive)',
+        description: 'Recursive deletion',
+    },
+    // fs.rmdir with recursive (deprecated but still used)
+    {
+        pattern: /\bfs(?:Promises)?\.rmdir\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))\s*,\s*\{[^}]*recursive\s*:\s*true/i,
+        operation: 'fs.rmdir(recursive)',
+        description: 'Recursive directory deletion',
+    },
+    // fs.rmSync with recursive
+    {
+        pattern: /\bfs\.rmSync\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))\s*,\s*\{[^}]*recursive\s*:\s*true/i,
+        operation: 'fs.rmSync(recursive)',
+        description: 'Synchronous recursive deletion',
+    },
+    // fs.rmdirSync with recursive
+    {
+        pattern: /\bfs\.rmdirSync\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))\s*,\s*\{[^}]*recursive\s*:\s*true/i,
+        operation: 'fs.rmdirSync(recursive)',
+        description: 'Synchronous recursive directory deletion',
+    },
+    // fs.unlink / fs.unlinkSync
+    {
+        pattern: /\bfs(?:Promises)?\.unlink(?:Sync)?\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))/i,
+        operation: 'fs.unlink',
+        description: 'File deletion',
+    },
+    // rimraf
+    {
+        pattern: /\brimraf(?:Sync)?\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))/i,
+        operation: 'rimraf',
+        description: 'Recursive deletion (rimraf)',
+    },
+    // del / del-cli
+    {
+        pattern: /\bdel(?:Sync)?\s*\(\s*\[?\s*['"`]([^'"`]+)['"`]/i,
+        operation: 'del',
+        description: 'File/directory deletion (del)',
+    },
+    // fs-extra remove/emptyDir
+    {
+        pattern: /\b(?:fs-extra|fse?)\.(?:remove|emptyDir)(?:Sync)?\s*\(\s*(?:['"`]([^'"`]+)['"`]|(\w+))/i,
+        operation: 'fs-extra.remove',
+        description: 'Recursive deletion (fs-extra)',
+    },
+    // exec/spawn with rm
+    {
+        pattern: /(?:exec|spawn)(?:Sync)?\s*\(\s*['"`].*\brm\s+-r/i,
+        operation: 'exec rm -r',
+        description: 'Child process recursive deletion',
+    },
+];
+/**
+ * Go destructive patterns
+ */
+const GO_PATTERNS = [
+    // os.RemoveAll
+    {
+        pattern: /\bos\.RemoveAll\s*\(\s*(?:"([^"]+)"|(\w+))/i,
+        operation: 'os.RemoveAll',
+        description: 'Recursive deletion',
+    },
+    // os.Remove
+    {
+        pattern: /\bos\.Remove\s*\(\s*(?:"([^"]+)"|(\w+))/i,
+        operation: 'os.Remove',
+        description: 'File/directory deletion',
+    },
+    // filepath.Walk + os.Remove pattern
+    {
+        pattern: /filepath\.Walk.*os\.Remove/is,
+        operation: 'filepath.Walk + Remove',
+        description: 'Walking deletion pattern',
+    },
+];
+/**
+ * Rust destructive patterns
+ */
+const RUST_PATTERNS = [
+    // std::fs::remove_dir_all
+    {
+        pattern: /\bstd::fs::remove_dir_all\s*\(\s*(?:"([^"]+)"|(\w+))/i,
+        operation: 'remove_dir_all',
+        description: 'Recursive directory deletion',
+    },
+    {
+        pattern: /\bfs::remove_dir_all\s*\(\s*(?:"([^"]+)"|(\w+))/i,
+        operation: 'remove_dir_all',
+        description: 'Recursive directory deletion',
+    },
+    // std::fs::remove_file
+    {
+        pattern: /\bstd::fs::remove_file\s*\(\s*(?:"([^"]+)"|(\w+))/i,
+        operation: 'remove_file',
+        description: 'File deletion',
+    },
+    {
+        pattern: /\bfs::remove_file\s*\(\s*(?:"([^"]+)"|(\w+))/i,
+        operation: 'remove_file',
+        description: 'File deletion',
+    },
+    // std::fs::remove_dir
+    {
+        pattern: /\bstd::fs::remove_dir\s*\(\s*(?:"([^"]+)"|(\w+))/i,
+        operation: 'remove_dir',
+        description: 'Directory deletion',
+    },
+    {
+        pattern: /\bfs::remove_dir\s*\(\s*(?:"([^"]+)"|(\w+))/i,
+        operation: 'remove_dir',
+        description: 'Directory deletion',
+    },
+];
+/**
+ * Ruby destructive patterns
+ */
+const RUBY_PATTERNS = [
+    // FileUtils.rm_rf
+    {
+        pattern: /\bFileUtils\.rm_rf\s*\(?['"`]?([^'"`\s,)]+)/i,
+        operation: 'FileUtils.rm_rf',
+        description: 'Recursive force deletion',
+    },
+    // FileUtils.rm_r
+    {
+        pattern: /\bFileUtils\.rm_r\s*\(?['"`]?([^'"`\s,)]+)/i,
+        operation: 'FileUtils.rm_r',
+        description: 'Recursive deletion',
+    },
+    // FileUtils.remove_entry
+    {
+        pattern: /\bFileUtils\.remove_entry(?:_secure)?\s*\(?['"`]?([^'"`\s,)]+)/i,
+        operation: 'FileUtils.remove_entry',
+        description: 'Entry removal',
+    },
+    // File.delete
+    {
+        pattern: /\bFile\.delete\s*\(?['"`]?([^'"`\s,)]+)/i,
+        operation: 'File.delete',
+        description: 'File deletion',
+    },
+    // Dir.rmdir
+    {
+        pattern: /\bDir\.rmdir\s*\(?['"`]?([^'"`\s,)]+)/i,
+        operation: 'Dir.rmdir',
+        description: 'Directory deletion',
+    },
+];
+/**
+ * Java/Kotlin destructive patterns
+ */
+const JAVA_PATTERNS = [
+    // Files.delete / Files.deleteIfExists
+    {
+        pattern: /\bFiles\.delete(?:IfExists)?\s*\(\s*(?:Paths\.get\s*\(\s*)?["']?([^"')\s]+)/i,
+        operation: 'Files.delete',
+        description: 'File/directory deletion',
+    },
+    // FileUtils.deleteDirectory (Apache Commons)
+    {
+        pattern: /\bFileUtils\.(?:deleteDirectory|deleteQuietly|forceDelete)\s*\(\s*(?:new\s+File\s*\(\s*)?["']?([^"')\s]+)/i,
+        operation: 'FileUtils.deleteDirectory',
+        description: 'Recursive directory deletion',
+    },
+    // file.delete()
+    {
+        pattern: /\.delete\s*\(\s*\)/i,
+        operation: 'File.delete()',
+        description: 'File deletion',
+    },
+    // Files.walk + delete pattern
+    {
+        pattern: /Files\.walk.*\.delete/is,
+        operation: 'Files.walk + delete',
+        description: 'Walking deletion pattern',
+    },
+];
+/**
+ * C# destructive patterns
+ */
+const CSHARP_PATTERNS = [
+    // Directory.Delete with recursive
+    {
+        pattern: /\bDirectory\.Delete\s*\(\s*(?:@)?["']([^"']+)["']\s*,\s*true/i,
+        operation: 'Directory.Delete(recursive)',
+        description: 'Recursive directory deletion',
+    },
+    // File.Delete
+    {
+        pattern: /\bFile\.Delete\s*\(\s*(?:@)?["']([^"']+)/i,
+        operation: 'File.Delete',
+        description: 'File deletion',
+    },
+    // DirectoryInfo.Delete
+    {
+        pattern: /\.Delete\s*\(\s*true\s*\)/i,
+        operation: 'DirectoryInfo.Delete(recursive)',
+        description: 'Recursive deletion via DirectoryInfo',
+    },
+];
+/**
+ * PHP destructive patterns
+ */
+const PHP_PATTERNS = [
+    // unlink
+    {
+        pattern: /\bunlink\s*\(\s*(?:\$\w+|['"`]([^'"`]+))/i,
+        operation: 'unlink',
+        description: 'File deletion',
+    },
+    // rmdir
+    {
+        pattern: /\brmdir\s*\(\s*(?:\$\w+|['"`]([^'"`]+))/i,
+        operation: 'rmdir',
+        description: 'Directory deletion',
+    },
+    // array_map + unlink pattern (recursive deletion)
+    {
+        pattern: /array_map\s*\(\s*['"`]unlink['"`]/i,
+        operation: 'array_map unlink',
+        description: 'Batch file deletion',
+    },
+    // RecursiveIterator + unlink/rmdir
+    {
+        pattern: /RecursiveIteratorIterator.*(?:unlink|rmdir)/is,
+        operation: 'recursive unlink',
+        description: 'Recursive deletion',
+    },
+];
+/**
+ * Match Python code patterns
+ */
+export function matchPythonCode(code) {
+    for (const { pattern, operation } of PYTHON_PATTERNS) {
+        const match = code.match(pattern);
+        if (match) {
+            return {
+                matched: true,
+                code,
+                language: 'python',
+                operation,
+                affectedResource: match[1] || match[2] || undefined,
+                confidence: operation.includes('rmtree') || operation.includes('removedirs') ? 0.9 : 0.8,
+            };
+        }
+    }
+    return { matched: false, confidence: 0 };
+}
+/**
+ * Match Node.js code patterns
+ */
+export function matchNodeCode(code) {
+    for (const { pattern, operation } of NODEJS_PATTERNS) {
+        const match = code.match(pattern);
+        if (match) {
+            return {
+                matched: true,
+                code,
+                language: 'javascript',
+                operation,
+                affectedResource: match[1] || match[2] || undefined,
+                confidence: operation.includes('recursive') || operation === 'rimraf' ? 0.9 : 0.8,
+            };
+        }
+    }
+    return { matched: false, confidence: 0 };
+}
+/**
+ * Match Go code patterns
+ */
+export function matchGoCode(code) {
+    for (const { pattern, operation } of GO_PATTERNS) {
+        const match = code.match(pattern);
+        if (match) {
+            return {
+                matched: true,
+                code,
+                language: 'go',
+                operation,
+                affectedResource: match[1] || match[2] || undefined,
+                confidence: operation === 'os.RemoveAll' ? 0.9 : 0.8,
+            };
+        }
+    }
+    return { matched: false, confidence: 0 };
+}
+/**
+ * Match Rust code patterns
+ */
+export function matchRustCode(code) {
+    for (const { pattern, operation } of RUST_PATTERNS) {
+        const match = code.match(pattern);
+        if (match) {
+            return {
+                matched: true,
+                code,
+                language: 'rust',
+                operation,
+                affectedResource: match[1] || match[2] || undefined,
+                confidence: operation === 'remove_dir_all' ? 0.9 : 0.8,
+            };
+        }
+    }
+    return { matched: false, confidence: 0 };
+}
+/**
+ * Match Ruby code patterns
+ */
+export function matchRubyCode(code) {
+    for (const { pattern, operation } of RUBY_PATTERNS) {
+        const match = code.match(pattern);
+        if (match) {
+            return {
+                matched: true,
+                code,
+                language: 'ruby',
+                operation,
+                affectedResource: match[1] || undefined,
+                confidence: operation.includes('rm_rf') || operation.includes('rm_r') ? 0.9 : 0.8,
+            };
+        }
+    }
+    return { matched: false, confidence: 0 };
+}
+/**
+ * Match Java/Kotlin code patterns
+ */
+export function matchJavaCode(code) {
+    for (const { pattern, operation } of JAVA_PATTERNS) {
+        const match = code.match(pattern);
+        if (match) {
+            return {
+                matched: true,
+                code,
+                language: 'java',
+                operation,
+                affectedResource: match[1] || undefined,
+                confidence: operation.includes('Directory') || operation.includes('walk') ? 0.9 : 0.75,
+            };
+        }
+    }
+    return { matched: false, confidence: 0 };
+}
+/**
+ * Match C# code patterns
+ */
+export function matchCSharpCode(code) {
+    for (const { pattern, operation } of CSHARP_PATTERNS) {
+        const match = code.match(pattern);
+        if (match) {
+            return {
+                matched: true,
+                code,
+                language: 'csharp',
+                operation,
+                affectedResource: match[1] || undefined,
+                confidence: operation.includes('recursive') ? 0.9 : 0.8,
+            };
+        }
+    }
+    return { matched: false, confidence: 0 };
+}
+/**
+ * Match PHP code patterns
+ */
+export function matchPhpCode(code) {
+    for (const { pattern, operation } of PHP_PATTERNS) {
+        const match = code.match(pattern);
+        if (match) {
+            return {
+                matched: true,
+                code,
+                language: 'php',
+                operation,
+                affectedResource: match[1] || undefined,
+                confidence: operation.includes('recursive') || operation.includes('array_map') ? 0.85 : 0.8,
+            };
+        }
+    }
+    return { matched: false, confidence: 0 };
+}
+/**
+ * Comprehensive code pattern matching
+ */
+export function matchCodePattern(code) {
+    // Try all language patterns
+    const pythonResult = matchPythonCode(code);
+    if (pythonResult.matched)
+        return pythonResult;
+    const nodeResult = matchNodeCode(code);
+    if (nodeResult.matched)
+        return nodeResult;
+    const goResult = matchGoCode(code);
+    if (goResult.matched)
+        return goResult;
+    const rustResult = matchRustCode(code);
+    if (rustResult.matched)
+        return rustResult;
+    const rubyResult = matchRubyCode(code);
+    if (rubyResult.matched)
+        return rubyResult;
+    const javaResult = matchJavaCode(code);
+    if (javaResult.matched)
+        return javaResult;
+    const csharpResult = matchCSharpCode(code);
+    if (csharpResult.matched)
+        return csharpResult;
+    const phpResult = matchPhpCode(code);
+    if (phpResult.matched)
+        return phpResult;
+    return { matched: false, confidence: 0 };
+}
+/**
+ * Code detector class
+ */
+export class CodeDetector {
+    severity;
+    constructor(severity = 'critical') {
+        this.severity = severity;
+    }
+    /**
+     * Extract code from tool context
+     */
+    extractCode(context) {
+        const input = context.toolInput;
+        // Direct code field
+        if (typeof input.code === 'string') {
+            return input.code;
+        }
+        // Script field
+        if (typeof input.script === 'string') {
+            return input.script;
+        }
+        // Content field (for file writes)
+        if (typeof input.content === 'string') {
+            return input.content;
+        }
+        // Source field
+        if (typeof input.source === 'string') {
+            return input.source;
+        }
+        // Body field (for requests)
+        if (typeof input.body === 'string') {
+            return input.body;
+        }
+        // Text field
+        if (typeof input.text === 'string') {
+            return input.text;
+        }
+        // New source for replacements
+        if (typeof input.new_source === 'string') {
+            return input.new_source;
+        }
+        // Function field (for eval)
+        if (typeof input.function === 'string') {
+            return input.function;
+        }
+        return null;
+    }
+    detect(context) {
+        const code = this.extractCode(context);
+        if (!code) {
+            return null;
+        }
+        const result = matchCodePattern(code);
+        if (!result.matched) {
+            return null;
+        }
+        const languageNames = {
+            python: 'Python',
+            javascript: 'JavaScript/Node.js',
+            go: 'Go',
+            rust: 'Rust',
+            ruby: 'Ruby',
+            java: 'Java/Kotlin',
+            csharp: 'C#',
+            php: 'PHP',
+        };
+        const langName = languageNames[result.language || 'unknown'] || result.language;
+        return {
+            detected: true,
+            category: 'destructive',
+            severity: this.severity,
+            confidence: result.confidence,
+            reason: `Dangerous ${langName} file deletion operation detected: ${result.operation}`,
+            metadata: {
+                command: result.code,
+                type: 'code',
+                operation: result.operation,
+                affectedResource: result.affectedResource,
+            },
+        };
+    }
+}
+/**
+ * Create a code detector with the given severity
+ */
+export function createCodeDetector(severity = 'critical') {
+    return new CodeDetector(severity);
+}
+//# sourceMappingURL=code-detector.js.map

package/dist/src/detectors/destructive/code-detector.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"code-detector.js","sourceRoot":"","sources":["../../../../src/detectors/destructive/code-detector.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAUH;;GAEG;AACH,MAAM,eAAe,GAAG;IACtB,gBAAgB;IAChB;QACE,OAAO,EAAE,wDAAwD;QACjE,SAAS,EAAE,eAAe;QAC1B,WAAW,EAAE,8BAA8B;KAC5C;IACD,wBAAwB;IACxB;QACE,OAAO,EAAE,+DAA+D;QACxE,SAAS,EAAE,WAAW;QACtB,WAAW,EAAE,eAAe;KAC7B;IACD,WAAW;IACX;QACE,OAAO,EAAE,mDAAmD;QAC5D,SAAS,EAAE,UAAU;QACrB,WAAW,EAAE,oBAAoB;KAClC;IACD,uBAAuB;IACvB;QACE,OAAO,EAAE,oBAAoB;QAC7B,SAAS,EAAE,YAAY;QACvB,WAAW,EAAE,gCAAgC;KAC9C;IACD;QACE,OAAO,EAAE,4DAA4D;QACrE,SAAS,EAAE,aAAa;QACxB,WAAW,EAAE,2BAA2B;KACzC;IACD,gBAAgB;IAChB;QACE,OAAO,EAAE,wDAAwD;QACjE,SAAS,EAAE,eAAe;QAC1B,WAAW,EAAE,8BAA8B;KAC5C;IACD,+BAA+B;IAC/B;QACE,OAAO,EAAE,wEAAwE;QACjF,SAAS,EAAE,kBAAkB;QAC7B,WAAW,EAAE,+BAA+B;KAC7C;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,eAAe,GAAG;IACtB,uBAAuB;IACvB;QACE,OAAO,EAAE,+FAA+F;QACxG,SAAS,EAAE,kBAAkB;QAC7B,WAAW,EAAE,oBAAoB;KAClC;IACD,sDAAsD;IACtD;QACE,OAAO,EAAE,kGAAkG;QAC3G,SAAS,EAAE,qBAAqB;QAChC,WAAW,EAAE,8BAA8B;KAC5C;IACD,2BAA2B;IAC3B;QACE,OAAO,EAAE,sFAAsF;QAC/F,SAAS,EAAE,sBAAsB;QACjC,WAAW,EAAE,gCAAgC;KAC9C;IACD,8BAA8B;IAC9B;QACE,OAAO,EAAE,yFAAyF;QAClG,SAAS,EAAE,yBAAyB;QACpC,WAAW,EAAE,0CAA0C;KACxD;IACD,4BAA4B;IAC5B;QACE,OAAO,EAAE,0EAA0E;QACnF,SAAS,EAAE,WAAW;QACtB,WAAW,EAAE,eAAe;KAC7B;IACD,SAAS;IACT;QACE,OAAO,EAAE,yDAAyD;QAClE,SAAS,EAAE,QAAQ;QACnB,WAAW,EAAE,6BAA6B;KAC3C;IACD,gBAAgB;IAChB;QACE,OAAO,EAAE,kDAAkD;QAC3D,SAAS,EAAE,KAAK;QAChB,WAAW,EAAE,+BAA+B;KAC7C;IACD,2BAA2B;IAC3B;QACE,OAAO,EAAE,yFAAyF;QAClG,SAAS,EAAE,iBAAiB;QAC5B,WAAW,EAAE,+BAA+B;KAC7C;IACD,qBAAqB;IACrB;QACE,OAAO,EAAE,kDAAkD;QAC3D,SAAS,EAAE,YAAY;QACvB,WAAW,EAAE,kCAAkC;KAChD;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,WAAW,GAAG;IAClB,eAAe;IACf;QACE,OAAO,EAAE,6CAA6C;QACtD,SAAS,EAAE,cAAc;QACzB,WAAW,EAAE,oBAAoB;KAClC;IACD,YAAY;IACZ;QACE,OAAO,EAAE,0CAA0C;QACnD,SAAS,EAAE,WAAW;QACtB,WAAW,EAAE,yBAAyB;KACvC;IACD,oCAAoC;IACpC;QACE,OAAO,EAAE,8BAA8B;QACvC,SAAS,EAAE,wBAAwB;QACnC,WAAW,EAAE,0BAA0B;KACxC;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,aAAa,GAAG;IACpB,0BAA0B;IAC1B;QACE,OAAO,EAAE,uDAAuD;QAChE,SAAS,EAAE,gBAAgB;QAC3B,WAAW,EAAE,8BAA8B;KAC5C;IACD;QACE,OAAO,EAAE,kDAAkD;QAC3D,SAAS,EAAE,gBAAgB;QAC3B,WAAW,EAAE,8BAA8B;KAC5C;IACD,uBAAuB;IACvB;QACE,OAAO,EAAE,oDAAoD;QAC7D,SAAS,EAAE,aAAa;QACxB,WAAW,EAAE,eAAe;KAC7B;IACD;QACE,OAAO,EAAE,+CAA+C;QACxD,SAAS,EAAE,aAAa;QACxB,WAAW,EAAE,eAAe;KAC7B;IACD,sBAAsB;IACtB;QACE,OAAO,EAAE,mDAAmD;QAC5D,SAAS,EAAE,YAAY;QACvB,WAAW,EAAE,oBAAoB;KAClC;IACD;QACE,OAAO,EAAE,8CAA8C;QACvD,SAAS,EAAE,YAAY;QACvB,WAAW,EAAE,oBAAoB;KAClC;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,aAAa,GAAG;IACpB,kBAAkB;IAClB;QACE,OAAO,EAAE,8CAA8C;QACvD,SAAS,EAAE,iBAAiB;QAC5B,WAAW,EAAE,0BAA0B;KACxC;IACD,iBAAiB;IACjB;QACE,OAAO,EAAE,6CAA6C;QACtD,SAAS,EAAE,gBAAgB;QAC3B,WAAW,EAAE,oBAAoB;KAClC;IACD,yBAAyB;IACzB;QACE,OAAO,EAAE,iEAAiE;QAC1E,SAAS,EAAE,wBAAwB;QACnC,WAAW,EAAE,eAAe;KAC7B;IACD,cAAc;IACd;QACE,OAAO,EAAE,0CAA0C;QACnD,SAAS,EAAE,aAAa;QACxB,WAAW,EAAE,eAAe;KAC7B;IACD,YAAY;IACZ;QACE,OAAO,EAAE,wCAAwC;QACjD,SAAS,EAAE,WAAW;QACtB,WAAW,EAAE,oBAAoB;KAClC;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,aAAa,GAAG;IACpB,sCAAsC;IACtC;QACE,OAAO,EAAE,8EAA8E;QACvF,SAAS,EAAE,cAAc;QACzB,WAAW,EAAE,yBAAyB;KACvC;IACD,6CAA6C;IAC7C;QACE,OAAO,EAAE,4GAA4G;QACrH,SAAS,EAAE,2BAA2B;QACtC,WAAW,EAAE,8BAA8B;KAC5C;IACD,gBAAgB;IAChB;QACE,OAAO,EAAE,qBAAqB;QAC9B,SAAS,EAAE,eAAe;QAC1B,WAAW,EAAE,eAAe;KAC7B;IACD,8BAA8B;IAC9B;QACE,OAAO,EAAE,yBAAyB;QAClC,SAAS,EAAE,qBAAqB;QAChC,WAAW,EAAE,0BAA0B;KACxC;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,eAAe,GAAG;IACtB,kCAAkC;IAClC;QACE,OAAO,EAAE,+DAA+D;QACxE,SAAS,EAAE,6BAA6B;QACxC,WAAW,EAAE,8BAA8B;KAC5C;IACD,cAAc;IACd;QACE,OAAO,EAAE,2CAA2C;QACpD,SAAS,EAAE,aAAa;QACxB,WAAW,EAAE,eAAe;KAC7B;IACD,uBAAuB;IACvB;QACE,OAAO,EAAE,4BAA4B;QACrC,SAAS,EAAE,iCAAiC;QAC5C,WAAW,EAAE,sCAAsC;KACpD;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,YAAY,GAAG;IACnB,SAAS;IACT;QACE,OAAO,EAAE,2CAA2C;QACpD,SAAS,EAAE,QAAQ;QACnB,WAAW,EAAE,eAAe;KAC7B;IACD,QAAQ;IACR;QACE,OAAO,EAAE,0CAA0C;QACnD,SAAS,EAAE,OAAO;QAClB,WAAW,EAAE,oBAAoB;KAClC;IACD,kDAAkD;IAClD;QACE,OAAO,EAAE,oCAAoC;QAC7C,SAAS,EAAE,kBAAkB;QAC7B,WAAW,EAAE,qBAAqB;KACnC;IACD,mCAAmC;IACnC;QACE,OAAO,EAAE,+CAA+C;QACxD,SAAS,EAAE,kBAAkB;QAC7B,WAAW,EAAE,oBAAoB;KAClC;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,IAAY;IAC1C,KAAK,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,eAAe,EAAE,CAAC;QACrD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,IAAI;gBACJ,QAAQ,EAAE,QAAQ;gBAClB,SAAS;gBACT,gBAAgB,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,SAAS;gBACnD,UAAU,EAAE,SAAS,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;aACzF,CAAC;QACJ,CAAC;IACH,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,KAAK,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,eAAe,EAAE,CAAC;QACrD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,IAAI;gBACJ,QAAQ,EAAE,YAAY;gBACtB,SAAS;gBACT,gBAAgB,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,SAAS;gBACnD,UAAU,EAAE,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,SAAS,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;aAClF,CAAC;QACJ,CAAC;IACH,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,IAAY;IACtC,KAAK,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,WAAW,EAAE,CAAC;QACjD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,IAAI;gBACJ,QAAQ,EAAE,IAAI;gBACd,SAAS;gBACT,gBAAgB,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,SAAS;gBACnD,UAAU,EAAE,SAAS,KAAK,cAAc,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;aACrD,CAAC;QACJ,CAAC;IACH,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,KAAK,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,aAAa,EAAE,CAAC;QACnD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,IAAI;gBACJ,QAAQ,EAAE,MAAM;gBAChB,SAAS;gBACT,gBAAgB,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,IAAI,SAAS;gBACnD,UAAU,EAAE,SAAS,KAAK,gBAAgB,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;aACvD,CAAC;QACJ,CAAC;IACH,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,KAAK,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,aAAa,EAAE,CAAC;QACnD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,IAAI;gBACJ,QAAQ,EAAE,MAAM;gBAChB,SAAS;gBACT,gBAAgB,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,SAAS;gBACvC,UAAU,EAAE,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;aAClF,CAAC;QACJ,CAAC;IACH,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,KAAK,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,aAAa,EAAE,CAAC;QACnD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,IAAI;gBACJ,QAAQ,EAAE,MAAM;gBAChB,SAAS;gBACT,gBAAgB,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,SAAS;gBACvC,UAAU,EAAE,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI;aACvF,CAAC;QACJ,CAAC;IACH,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,IAAY;IAC1C,KAAK,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,eAAe,EAAE,CAAC;QACrD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,IAAI;gBACJ,QAAQ,EAAE,QAAQ;gBAClB,SAAS;gBACT,gBAAgB,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,SAAS;gBACvC,UAAU,EAAE,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG;aACxD,CAAC;QACJ,CAAC;IACH,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,IAAY;IACvC,KAAK,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,IAAI,YAAY,EAAE,CAAC;QAClD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAClC,IAAI,KAAK,EAAE,CAAC;YACV,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,IAAI;gBACJ,QAAQ,EAAE,KAAK;gBACf,SAAS;gBACT,gBAAgB,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,SAAS;gBACvC,UAAU,EAAE,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG;aAC5F,CAAC;QACJ,CAAC;IACH,CAAC;IACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,IAAY;IAC3C,4BAA4B;IAC5B,MAAM,YAAY,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC;IAC3C,IAAI,YAAY,CAAC,OAAO;QAAE,OAAO,YAAY,CAAC;IAE9C,MAAM,UAAU,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;IACvC,IAAI,UAAU,CAAC,OAAO;QAAE,OAAO,UAAU,CAAC;IAE1C,MAAM,QAAQ,GAAG,WAAW,CAAC,IAAI,CAAC,CAAC;IACnC,IAAI,QAAQ,CAAC,OAAO;QAAE,OAAO,QAAQ,CAAC;IAEtC,MAAM,UAAU,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;IACvC,IAAI,UAAU,CAAC,OAAO;QAAE,OAAO,UAAU,CAAC;IAE1C,MAAM,UAAU,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;IACvC,IAAI,UAAU,CAAC,OAAO;QAAE,OAAO,UAAU,CAAC;IAE1C,MAAM,UAAU,GAAG,aAAa,CAAC,IAAI,CAAC,CAAC;IACvC,IAAI,UAAU,CAAC,OAAO;QAAE,OAAO,UAAU,CAAC;IAE1C,MAAM,YAAY,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC;IAC3C,IAAI,YAAY,CAAC,OAAO;QAAE,OAAO,YAAY,CAAC;IAE9C,MAAM,SAAS,GAAG,YAAY,CAAC,IAAI,CAAC,CAAC;IACrC,IAAI,SAAS,CAAC,OAAO;QAAE,OAAO,SAAS,CAAC;IAExC,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EAAE,CAAC;AAC3C,CAAC;AAED;;GAEG;AACH,MAAM,OAAO,YAAY;IACf,QAAQ,CAAW;IAE3B,YAAY,WAAqB,UAAU;QACzC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;IAC3B,CAAC;IAED;;OAEG;IACK,WAAW,CAAC,OAAyB;QAC3C,MAAM,KAAK,GAAG,OAAO,CAAC,SAAS,CAAC;QAEhC,oBAAoB;QACpB,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YACnC,OAAO,KAAK,CAAC,IAAI,CAAC;QACpB,CAAC;QAED,eAAe;QACf,IAAI,OAAO,KAAK,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;YACrC,OAAO,KAAK,CAAC,MAAM,CAAC;QACtB,CAAC;QAED,kCAAkC;QAClC,IAAI,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;YACtC,OAAO,KAAK,CAAC,OAAO,CAAC;QACvB,CAAC;QAED,eAAe;QACf,IAAI,OAAO,KAAK,CAAC,MAAM,KAAK,QAAQ,EAAE,CAAC;YACrC,OAAO,KAAK,CAAC,MAAM,CAAC;QACtB,CAAC;QAED,4BAA4B;QAC5B,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YACnC,OAAO,KAAK,CAAC,IAAI,CAAC;QACpB,CAAC;QAED,aAAa;QACb,IAAI,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YACnC,OAAO,KAAK,CAAC,IAAI,CAAC;QACpB,CAAC;QAED,8BAA8B;QAC9B,IAAI,OAAO,KAAK,CAAC,UAAU,KAAK,QAAQ,EAAE,CAAC;YACzC,OAAO,KAAK,CAAC,UAAU,CAAC;QAC1B,CAAC;QAED,4BAA4B;QAC5B,IAAI,OAAO,KAAK,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;YACvC,OAAO,KAAK,CAAC,QAAQ,CAAC;QACxB,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,CAAC,OAAyB;QAC9B,MAAM,IAAI,GAAG,IAAI,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QACvC,IAAI,CAAC,IAAI,EAAE,CAAC;YACV,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,MAAM,GAAG,gBAAgB,CAAC,IAAI,CAAC,CAAC;QAEtC,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,aAAa,GAA2B;YAC5C,MAAM,EAAE,QAAQ;YAChB,UAAU,EAAE,oBAAoB;YAChC,EAAE,EAAE,IAAI;YACR,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,MAAM;YACZ,IAAI,EAAE,aAAa;YACnB,MAAM,EAAE,IAAI;YACZ,GAAG,EAAE,KAAK;SACX,CAAC;QAEF,MAAM,QAAQ,GAAG,aAAa,CAAC,MAAM,CAAC,QAAQ,IAAI,SAAS,CAAC,IAAI,MAAM,CAAC,QAAQ,CAAC;QAEhF,OAAO;YACL,QAAQ,EAAE,IAAI;YACd,QAAQ,EAAE,aAAa;YACvB,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,MAAM,EAAE,aAAa,QAAQ,sCAAsC,MAAM,CAAC,SAAS,EAAE;YACrF,QAAQ,EAAE;gBACR,OAAO,EAAE,MAAM,CAAC,IAAI;gBACpB,IAAI,EAAE,MAAM;gBACZ,SAAS,EAAE,MAAM,CAAC,SAAS;gBAC3B,gBAAgB,EAAE,MAAM,CAAC,gBAAgB;aAC1C;SACF,CAAC;IACJ,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,kBAAkB,CAAC,WAAqB,UAAU;IAChE,OAAO,IAAI,YAAY,CAAC,QAAQ,CAAC,CAAC;AACpC,CAAC"}

package/dist/src/detectors/destructive/index.d.ts ADDED Viewed

@@ -0,0 +1,54 @@
+/**
+ * Destructive Detector
+ * Main detector that combines shell, cloud, git, and code pattern detection
+ */
+import type { DetectionContext, DestructiveDetectionResult, DestructiveDetector as IDestructiveDetector, DestructiveDetectorConfig } from './types.js';
+import type { DestructiveRule } from '../../config/index.js';
+export * from './types.js';
+export { ShellDetector, createShellDetector } from './shell-detector.js';
+export { CloudDetector, createCloudDetector } from './cloud-detector.js';
+export { CodeDetector, createCodeDetector } from './code-detector.js';
+export { isDangerousPath, matchRmCommand, matchSqlCommand, matchSystemCommand, matchShellCommand, } from './shell-detector.js';
+export { matchAwsCommand, matchGcpCommand, matchAzureCommand, matchKubernetesCommand, matchTerraformCommand, matchGitCommand, matchCloudCommand, } from './cloud-detector.js';
+export { matchPythonCode, matchNodeCode, matchGoCode, matchRustCode, matchRubyCode, matchJavaCode, matchCSharpCode, matchPhpCode, matchCodePattern, } from './code-detector.js';
+/**
+ * Main destructive detector implementation
+ */
+export declare class DestructiveDetectorImpl implements IDestructiveDetector {
+    private config;
+    private shellDetector;
+    private cloudDetector;
+    private codeDetector;
+    constructor(config: DestructiveDetectorConfig);
+    detect(context: DetectionContext): Promise<DestructiveDetectionResult>;
+    /**
+     * Get the configured action for detected destructive operations
+     */
+    getAction(): "block" | "confirm" | "agent-confirm" | "warn" | "log";
+    /**
+     * Check if the detector is enabled
+     */
+    isEnabled(): boolean;
+    /**
+     * Check if shell detection is enabled
+     */
+    isShellEnabled(): boolean;
+    /**
+     * Check if cloud detection is enabled
+     */
+    isCloudEnabled(): boolean;
+    /**
+     * Check if code detection is enabled
+     */
+    isCodeEnabled(): boolean;
+}
+/**
+ * Create a destructive detector from DestructiveRule configuration
+ */
+export declare function createDestructiveDetector(rule: DestructiveRule): DestructiveDetectorImpl;
+/**
+ * Create a destructive detector with default configuration
+ */
+export declare function createDefaultDestructiveDetector(): DestructiveDetectorImpl;
+export default DestructiveDetectorImpl;
+//# sourceMappingURL=index.d.ts.map

package/dist/src/detectors/destructive/index.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../../src/detectors/destructive/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EACV,gBAAgB,EAChB,0BAA0B,EAC1B,mBAAmB,IAAI,oBAAoB,EAC3C,yBAAyB,EAC1B,MAAM,YAAY,CAAC;AAIpB,OAAO,KAAK,EAAE,eAAe,EAAY,MAAM,uBAAuB,CAAC;AAGvE,cAAc,YAAY,CAAC;AAG3B,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AACzE,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AACzE,OAAO,EAAE,YAAY,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AAGtE,OAAO,EACL,eAAe,EACf,cAAc,EACd,eAAe,EACf,kBAAkB,EAClB,iBAAiB,GAClB,MAAM,qBAAqB,CAAC;AAE7B,OAAO,EACL,eAAe,EACf,eAAe,EACf,iBAAiB,EACjB,sBAAsB,EACtB,qBAAqB,EACrB,eAAe,EACf,iBAAiB,GAClB,MAAM,qBAAqB,CAAC;AAE7B,OAAO,EACL,eAAe,EACf,aAAa,EACb,WAAW,EACX,aAAa,EACb,aAAa,EACb,aAAa,EACb,eAAe,EACf,YAAY,EACZ,gBAAgB,GACjB,MAAM,oBAAoB,CAAC;AA4D5B;;GAEG;AACH,qBAAa,uBAAwB,YAAW,oBAAoB;IAClE,OAAO,CAAC,MAAM,CAA4B;IAC1C,OAAO,CAAC,aAAa,CAAuB;IAC5C,OAAO,CAAC,aAAa,CAAuB;IAC5C,OAAO,CAAC,YAAY,CAAsB;gBAE9B,MAAM,EAAE,yBAAyB;IAoBvC,MAAM,CAAC,OAAO,EAAE,gBAAgB,GAAG,OAAO,CAAC,0BAA0B,CAAC;IA2B5E;;OAEG;IACH,SAAS;IAIT;;OAEG;IACH,SAAS,IAAI,OAAO;IAIpB;;OAEG;IACH,cAAc,IAAI,OAAO;IAIzB;;OAEG;IACH,cAAc,IAAI,OAAO;IAIzB;;OAEG;IACH,aAAa,IAAI,OAAO;CAGzB;AAED;;GAEG;AACH,wBAAgB,yBAAyB,CACvC,IAAI,EAAE,eAAe,GACpB,uBAAuB,CAWzB;AAED;;GAEG;AACH,wBAAgB,gCAAgC,IAAI,uBAAuB,CAS1E;AAGD,eAAe,uBAAuB,CAAC"}