npm - codehere - Versions diffs - 0.2.0 → 0.4.0 - Mend

codehere 0.2.0 → 0.4.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Potentially problematic release.

This version of codehere might be problematic. Click here for more details.

Files changed (405) hide show

package/dist/infrastructure/providers/provider-config-loader.js ADDED Viewed

@@ -0,0 +1,120 @@
+/**
+ * Provider Layer: Provider Config Loader
+ * Loads user-facing provider configuration from JSON files
+ *
+ * Phase 4G: User-facing provider config files
+ */
+import { existsSync, readFileSync } from 'fs';
+import { join, resolve } from 'path';
+import { findCodebaseRoot } from '../../domain/services/codebase-detector.js';
+/**
+ * Load provider configuration from file
+ *
+ * @param options - Optional configuration
+ * @param options.cwd - Working directory (defaults to process.cwd())
+ * @returns ProviderConfig if file exists and is valid, undefined otherwise
+ */
+export function loadProviderConfig(options) {
+    const cwd = options?.cwd || process.cwd();
+    // Determine config file path
+    let configPath;
+    // Check for explicit path override
+    if (process.env.CODEHERE_PROVIDER_CONFIG_PATH) {
+        configPath = resolve(process.env.CODEHERE_PROVIDER_CONFIG_PATH);
+    }
+    else {
+        // Find codebase root
+        const codebaseInfo = findCodebaseRoot(cwd);
+        if (codebaseInfo) {
+            // Default path: .codehere/providers.json
+            configPath = join(codebaseInfo.rootPath, '.codehere', 'providers.json');
+        }
+        else {
+            // Fallback to cwd if codebase root not found
+            configPath = join(cwd, '.codehere', 'providers.json');
+        }
+    }
+    // If file doesn't exist, return undefined (not an error)
+    if (!configPath || !existsSync(configPath)) {
+        return undefined;
+    }
+    try {
+        // Read and parse JSON
+        const fileContent = readFileSync(configPath, 'utf-8');
+        const rawConfig = JSON.parse(fileContent);
+        // Validate and normalize config
+        return validateAndNormalizeConfig(rawConfig);
+    }
+    catch (error) {
+        // Log warning but don't throw (non-fatal)
+        const errorMessage = error instanceof Error ? error.message : String(error);
+        console.warn(`[ProviderConfigLoader] Failed to load config from ${configPath}: ${errorMessage}`);
+        return undefined;
+    }
+}
+/**
+ * Validate and normalize raw config object
+ * Ignores unknown fields and invalid values gracefully
+ */
+function validateAndNormalizeConfig(raw) {
+    if (!raw || typeof raw !== 'object') {
+        return undefined;
+    }
+    const config = {};
+    const obj = raw;
+    // Extract default provider
+    if (obj.default !== undefined) {
+        if (typeof obj.default === 'string' && obj.default.trim()) {
+            config.default = obj.default.trim();
+        }
+    }
+    // Extract operations
+    if (obj.operations !== undefined && typeof obj.operations === 'object' && obj.operations !== null) {
+        const operations = obj.operations;
+        const normalizedOps = {};
+        // Known operation types
+        const validOperations = ['chat', 'embedding', 'rerank'];
+        for (const op of validOperations) {
+            if (operations[op] !== undefined) {
+                const providerId = operations[op];
+                if (typeof providerId === 'string' && providerId.trim()) {
+                    normalizedOps[op] = providerId.trim();
+                }
+            }
+        }
+        // Only set operations if at least one is valid
+        if (Object.keys(normalizedOps).length > 0) {
+            config.operations = normalizedOps;
+        }
+    }
+    // Return config only if it has at least one meaningful field
+    if (config.default || config.operations) {
+        return config;
+    }
+    return undefined;
+}
+/**
+ * Convert ProviderConfig to OperationProviderConfig
+ * Used to pass config to OperationProviderResolver
+ */
+export function configToOperationConfig(config) {
+    const operationConfig = {};
+    // Set default if present
+    if (config.default) {
+        operationConfig.default = config.default;
+    }
+    // Map operations
+    if (config.operations) {
+        if (config.operations.chat) {
+            operationConfig.chat = config.operations.chat;
+        }
+        if (config.operations.embedding) {
+            operationConfig.embedding = config.operations.embedding;
+        }
+        if (config.operations.rerank) {
+            operationConfig.rerank = config.operations.rerank;
+        }
+    }
+    return operationConfig;
+}
+//# sourceMappingURL=provider-config-loader.js.map

package/dist/infrastructure/providers/provider-config-loader.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"provider-config-loader.js","sourceRoot":"","sources":["../../../src/infrastructure/providers/provider-config-loader.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,IAAI,CAAC;AAC9C,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AACrC,OAAO,EAAE,gBAAgB,EAAE,MAAM,4CAA4C,CAAC;AAmB9E;;;;;;GAMG;AACH,MAAM,UAAU,kBAAkB,CAAC,OAA0B;IAC3D,MAAM,GAAG,GAAG,OAAO,EAAE,GAAG,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;IAE1C,6BAA6B;IAC7B,IAAI,UAA8B,CAAC;IAEnC,mCAAmC;IACnC,IAAI,OAAO,CAAC,GAAG,CAAC,6BAA6B,EAAE,CAAC;QAC9C,UAAU,GAAG,OAAO,CAAC,OAAO,CAAC,GAAG,CAAC,6BAA6B,CAAC,CAAC;IAClE,CAAC;SAAM,CAAC;QACN,qBAAqB;QACrB,MAAM,YAAY,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAC;QAC3C,IAAI,YAAY,EAAE,CAAC;YACjB,yCAAyC;YACzC,UAAU,GAAG,IAAI,CAAC,YAAY,CAAC,QAAQ,EAAE,WAAW,EAAE,gBAAgB,CAAC,CAAC;QAC1E,CAAC;aAAM,CAAC;YACN,6CAA6C;YAC7C,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,WAAW,EAAE,gBAAgB,CAAC,CAAC;QACxD,CAAC;IACH,CAAC;IAED,yDAAyD;IACzD,IAAI,CAAC,UAAU,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC3C,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,IAAI,CAAC;QACH,sBAAsB;QACtB,MAAM,WAAW,GAAG,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QACtD,MAAM,SAAS,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAY,CAAC;QAErD,gCAAgC;QAChC,OAAO,0BAA0B,CAAC,SAAS,CAAC,CAAC;IAC/C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,0CAA0C;QAC1C,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAC5E,OAAO,CAAC,IAAI,CAAC,qDAAqD,UAAU,KAAK,YAAY,EAAE,CAAC,CAAC;QACjG,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,SAAS,0BAA0B,CAAC,GAAY;IAC9C,IAAI,CAAC,GAAG,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QACpC,OAAO,SAAS,CAAC;IACnB,CAAC;IAED,MAAM,MAAM,GAAmB,EAAE,CAAC;IAClC,MAAM,GAAG,GAAG,GAA8B,CAAC;IAE3C,2BAA2B;IAC3B,IAAI,GAAG,CAAC,OAAO,KAAK,SAAS,EAAE,CAAC;QAC9B,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,IAAI,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC;YAC1D,MAAM,CAAC,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QACtC,CAAC;IACH,CAAC;IAED,qBAAqB;IACrB,IAAI,GAAG,CAAC,UAAU,KAAK,SAAS,IAAI,OAAO,GAAG,CAAC,UAAU,KAAK,QAAQ,IAAI,GAAG,CAAC,UAAU,KAAK,IAAI,EAAE,CAAC;QAClG,MAAM,UAAU,GAAG,GAAG,CAAC,UAAqC,CAAC;QAC7D,MAAM,aAAa,GAAiC,EAAE,CAAC;QAEvD,wBAAwB;QACxB,MAAM,eAAe,GAAG,CAAC,MAAM,EAAE,WAAW,EAAE,QAAQ,CAAU,CAAC;QAEjE,KAAK,MAAM,EAAE,IAAI,eAAe,EAAE,CAAC;YACjC,IAAI,UAAU,CAAC,EAAE,CAAC,KAAK,SAAS,EAAE,CAAC;gBACjC,MAAM,UAAU,GAAG,UAAU,CAAC,EAAE,CAAC,CAAC;gBAClC,IAAI,OAAO,UAAU,KAAK,QAAQ,IAAI,UAAU,CAAC,IAAI,EAAE,EAAE,CAAC;oBACxD,aAAa,CAAC,EAAE,CAAC,GAAG,UAAU,CAAC,IAAI,EAAE,CAAC;gBACxC,CAAC;YACH,CAAC;QACH,CAAC;QAED,+CAA+C;QAC/C,IAAI,MAAM,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC1C,MAAM,CAAC,UAAU,GAAG,aAAa,CAAC;QACpC,CAAC;IACH,CAAC;IAED,6DAA6D;IAC7D,IAAI,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;QACxC,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,uBAAuB,CAAC,MAAsB;IAC5D,MAAM,eAAe,GAA4B,EAAE,CAAC;IAEpD,yBAAyB;IACzB,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,eAAe,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,CAAC;IAC3C,CAAC;IAED,iBAAiB;IACjB,IAAI,MAAM,CAAC,UAAU,EAAE,CAAC;QACtB,IAAI,MAAM,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC;YAC3B,eAAe,CAAC,IAAI,GAAG,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC;QAChD,CAAC;QACD,IAAI,MAAM,CAAC,UAAU,CAAC,SAAS,EAAE,CAAC;YAChC,eAAe,CAAC,SAAS,GAAG,MAAM,CAAC,UAAU,CAAC,SAAS,CAAC;QAC1D,CAAC;QACD,IAAI,MAAM,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YAC7B,eAAe,CAAC,MAAM,GAAG,MAAM,CAAC,UAAU,CAAC,MAAM,CAAC;QACpD,CAAC;IACH,CAAC;IAED,OAAO,eAAe,CAAC;AACzB,CAAC"}

package/dist/infrastructure/providers/provider-registry.d.ts ADDED Viewed

@@ -0,0 +1,53 @@
+/**
+ * Provider Layer: ProviderRegistry
+ * Central registry for all model providers
+ *
+ * Phase 4A: Foundation Implementation (No Behavior Change)
+ */
+import type { IModelProvider } from './model-provider.interface.js';
+/**
+ * Provider Registry
+ * Singleton registry for managing model providers
+ */
+export declare class ProviderRegistry {
+    private static instance;
+    private providers;
+    private defaultProviderId?;
+    /**
+     * Get singleton instance
+     */
+    static getInstance(): ProviderRegistry;
+    /**
+     * Register a provider
+     */
+    register(provider: IModelProvider): void;
+    /**
+     * Get provider by ID
+     */
+    get(providerId: string): IModelProvider | undefined;
+    /**
+     * Get default provider
+     */
+    getDefault(): IModelProvider;
+    /**
+     * Set default provider
+     */
+    setDefault(providerId: string): void;
+    /**
+     * Get all registered providers
+     */
+    getAll(): IModelProvider[];
+    /**
+     * Find providers by capability
+     */
+    findByCapability(capability: keyof import('./model-provider.interface.js').ProviderCapabilities): IModelProvider[];
+    /**
+     * Check if provider is registered
+     */
+    has(providerId: string): boolean;
+    /**
+     * Clear all providers (mainly for testing)
+     */
+    clear(): void;
+}
+//# sourceMappingURL=provider-registry.d.ts.map

package/dist/infrastructure/providers/provider-registry.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"provider-registry.d.ts","sourceRoot":"","sources":["../../../src/infrastructure/providers/provider-registry.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,+BAA+B,CAAC;AAEpE;;;GAGG;AACH,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAiC;IACxD,OAAO,CAAC,SAAS,CAA0C;IAC3D,OAAO,CAAC,iBAAiB,CAAC,CAAS;IAEnC;;OAEG;IACH,MAAM,CAAC,WAAW,IAAI,gBAAgB;IAOtC;;OAEG;IACH,QAAQ,CAAC,QAAQ,EAAE,cAAc,GAAG,IAAI;IASxC;;OAEG;IACH,GAAG,CAAC,UAAU,EAAE,MAAM,GAAG,cAAc,GAAG,SAAS;IAInD;;OAEG;IACH,UAAU,IAAI,cAAc;IAW5B;;OAEG;IACH,UAAU,CAAC,UAAU,EAAE,MAAM,GAAG,IAAI;IAOpC;;OAEG;IACH,MAAM,IAAI,cAAc,EAAE;IAI1B;;OAEG;IACH,gBAAgB,CAAC,UAAU,EAAE,MAAM,OAAO,+BAA+B,EAAE,oBAAoB,GAAG,cAAc,EAAE;IAIlH;;OAEG;IACH,GAAG,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO;IAIhC;;OAEG;IACH,KAAK,IAAI,IAAI;CAId"}

package/dist/infrastructure/providers/provider-registry.js ADDED Viewed

@@ -0,0 +1,88 @@
+/**
+ * Provider Layer: ProviderRegistry
+ * Central registry for all model providers
+ *
+ * Phase 4A: Foundation Implementation (No Behavior Change)
+ */
+/**
+ * Provider Registry
+ * Singleton registry for managing model providers
+ */
+export class ProviderRegistry {
+    static instance = null;
+    providers = new Map();
+    defaultProviderId;
+    /**
+     * Get singleton instance
+     */
+    static getInstance() {
+        if (!ProviderRegistry.instance) {
+            ProviderRegistry.instance = new ProviderRegistry();
+        }
+        return ProviderRegistry.instance;
+    }
+    /**
+     * Register a provider
+     */
+    register(provider) {
+        this.providers.set(provider.id, provider);
+        // Auto-set as default if this is the first provider
+        if (!this.defaultProviderId) {
+            this.defaultProviderId = provider.id;
+        }
+    }
+    /**
+     * Get provider by ID
+     */
+    get(providerId) {
+        return this.providers.get(providerId);
+    }
+    /**
+     * Get default provider
+     */
+    getDefault() {
+        if (!this.defaultProviderId) {
+            throw new Error('No default provider configured');
+        }
+        const provider = this.get(this.defaultProviderId);
+        if (!provider) {
+            throw new Error(`Default provider '${this.defaultProviderId}' not found`);
+        }
+        return provider;
+    }
+    /**
+     * Set default provider
+     */
+    setDefault(providerId) {
+        if (!this.providers.has(providerId)) {
+            throw new Error(`Provider '${providerId}' not registered`);
+        }
+        this.defaultProviderId = providerId;
+    }
+    /**
+     * Get all registered providers
+     */
+    getAll() {
+        return Array.from(this.providers.values());
+    }
+    /**
+     * Find providers by capability
+     */
+    findByCapability(capability) {
+        return this.getAll().filter(p => p.capabilities[capability]);
+    }
+    /**
+     * Check if provider is registered
+     */
+    has(providerId) {
+        return this.providers.has(providerId);
+    }
+    /**
+     * Clear all providers (mainly for testing)
+     */
+    clear() {
+        this.providers.clear();
+        this.defaultProviderId = undefined;
+    }
+}
+//# sourceMappingURL=provider-registry.js.map

package/dist/infrastructure/providers/provider-registry.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"provider-registry.js","sourceRoot":"","sources":["../../../src/infrastructure/providers/provider-registry.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH;;;GAGG;AACH,MAAM,OAAO,gBAAgB;IACnB,MAAM,CAAC,QAAQ,GAA4B,IAAI,CAAC;IAChD,SAAS,GAAgC,IAAI,GAAG,EAAE,CAAC;IACnD,iBAAiB,CAAU;IAEnC;;OAEG;IACH,MAAM,CAAC,WAAW;QAChB,IAAI,CAAC,gBAAgB,CAAC,QAAQ,EAAE,CAAC;YAC/B,gBAAgB,CAAC,QAAQ,GAAG,IAAI,gBAAgB,EAAE,CAAC;QACrD,CAAC;QACD,OAAO,gBAAgB,CAAC,QAAQ,CAAC;IACnC,CAAC;IAED;;OAEG;IACH,QAAQ,CAAC,QAAwB;QAC/B,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,EAAE,QAAQ,CAAC,CAAC;QAE1C,oDAAoD;QACpD,IAAI,CAAC,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC5B,IAAI,CAAC,iBAAiB,GAAG,QAAQ,CAAC,EAAE,CAAC;QACvC,CAAC;IACH,CAAC;IAED;;OAEG;IACH,GAAG,CAAC,UAAkB;QACpB,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IACxC,CAAC;IAED;;OAEG;IACH,UAAU;QACR,IAAI,CAAC,IAAI,CAAC,iBAAiB,EAAE,CAAC;YAC5B,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACpD,CAAC;QACD,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAClD,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,MAAM,IAAI,KAAK,CAAC,qBAAqB,IAAI,CAAC,iBAAiB,aAAa,CAAC,CAAC;QAC5E,CAAC;QACD,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,UAAU,CAAC,UAAkB;QAC3B,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;YACpC,MAAM,IAAI,KAAK,CAAC,aAAa,UAAU,kBAAkB,CAAC,CAAC;QAC7D,CAAC;QACD,IAAI,CAAC,iBAAiB,GAAG,UAAU,CAAC;IACtC,CAAC;IAED;;OAEG;IACH,MAAM;QACJ,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC,CAAC;IAC7C,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,UAA8E;QAC7F,OAAO,IAAI,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,YAAY,CAAC,UAAU,CAAC,CAAC,CAAC;IAC/D,CAAC;IAED;;OAEG;IACH,GAAG,CAAC,UAAkB;QACpB,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IACxC,CAAC;IAED;;OAEG;IACH,KAAK;QACH,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC;QACvB,IAAI,CAAC,iBAAiB,GAAG,SAAS,CAAC;IACrC,CAAC"}

package/dist/infrastructure/security/ai-sast-scanner.d.ts CHANGED Viewed

@@ -32,6 +32,10 @@ export declare class AISASTScanner {
      * This is a quick heuristic check to reject dangerous instructions early
      */
     scanInstruction(instruction: string): Promise<SASTResult | null>;
+    /**
+     * Fast pattern-based check for dangerous code patterns
+     */
+    private checkDangerousPatterns;
     /**
      * Scan code for security vulnerabilities
      */

package/dist/infrastructure/security/ai-sast-scanner.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"ai-sast-scanner.d.ts","sourceRoot":"","sources":["../../../src/infrastructure/security/ai-sast-scanner.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iDAAiD,CAAC;AAGlF,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IACjD,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,cAAc,EAAE,MAAM,CAAC;IACvB,GAAG,CAAC,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,WAAW,EAAE,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,OAAO,CAAC;CACjB;AAED,qBAAa,aAAa;IACZ,OAAO,CAAC,SAAS;gBAAT,SAAS,EAAE,UAAU;IAEzC;;;OAGG;IACG,eAAe,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IA6CtE;;OAEG;IACG,IAAI,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;~~IA2B~~/D;;OAEG;IACG,SAAS,CAAC,KAAK,EAAE,KAAK,CAAC;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC,GAAG,OAAO,CAAC,UAAU,CAAC;IA0BtF;;OAEG;YACW,aAAa;~~IAmD3B~~;;OAEG;IACG,mBAAmB,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;CAI5E"}
1	+ {"version":3,"file":"ai-sast-scanner.d.ts","sourceRoot":"","sources":["../../../src/infrastructure/security/ai-sast-scanner.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,iDAAiD,CAAC;AAGlF,MAAM,WAAW,WAAW;IAC1B,QAAQ,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IACjD,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,cAAc,EAAE,MAAM,CAAC;IACvB,GAAG,CAAC,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,WAAW,EAAE,CAAC;IACxB,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,OAAO,CAAC;CACjB;AAED,qBAAa,aAAa;IACZ,OAAO,CAAC,SAAS;gBAAT,SAAS,EAAE,UAAU;IAEzC;;;OAGG;IACG,eAAe,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,GAAG,IAAI,CAAC;IA6CtE;;OAEG;IACH,OAAO,CAAC,sBAAsB;IA2D9B;;OAEG;IACG,IAAI,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC;IA+C/D;;OAEG;IACG,SAAS,CAAC,KAAK,EAAE,KAAK,CAAC;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC,GAAG,OAAO,CAAC,UAAU,CAAC;IA0BtF;;OAEG;YACW,aAAa;IAoD3B;;OAEG;IACG,mBAAmB,CAAC,QAAQ,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;CAI5E"}

package/dist/infrastructure/security/ai-sast-scanner.js CHANGED Viewed

@@ -53,14 +53,91 @@ export class AISASTScanner {
             passed: criticalCount === 0 && highCount === 0,
         };
     }
+    /**
+     * Fast pattern-based check for dangerous code patterns
+     */
+    checkDangerousPatterns(code) {
+        const findings = [];
+        const dangerousPatterns = [
+            {
+                pattern: /\beval\s*\(/gi,
+                category: 'Code Injection',
+                description: 'Use of eval() allows arbitrary code execution',
+                severity: 'critical',
+                cwe: 'CWE-95',
+            },
+            {
+                pattern: /\bFunction\s*\(/gi,
+                category: 'Code Injection',
+                description: 'Use of Function() constructor allows arbitrary code execution',
+                severity: 'critical',
+                cwe: 'CWE-95',
+            },
+            {
+                pattern: /\.innerHTML\s*=\s*[^=]/gi,
+                category: 'Cross-Site Scripting',
+                description: 'Direct innerHTML assignment can lead to XSS',
+                severity: 'high',
+                cwe: 'CWE-79',
+            },
+            {
+                pattern: /setTimeout\s*\(\s*[^,)]+\s*\)/gi,
+                category: 'Code Injection',
+                description: 'setTimeout with user input can execute arbitrary code',
+                severity: 'high',
+                cwe: 'CWE-95',
+            },
+            {
+                pattern: /setInterval\s*\(\s*[^,)]+\s*\)/gi,
+                category: 'Code Injection',
+                description: 'setInterval with user input can execute arbitrary code',
+                severity: 'high',
+                cwe: 'CWE-95',
+            },
+        ];
+        dangerousPatterns.forEach(({ pattern, category, description, severity, cwe }) => {
+            const matches = code.matchAll(pattern);
+            for (const match of matches) {
+                const line = code.substring(0, match.index || 0).split('\n').length;
+                findings.push({
+                    severity,
+                    category,
+                    description,
+                    line,
+                    recommendation: `Avoid ${category.toLowerCase()}. Use safer alternatives.`,
+                    cwe,
+                    filepath: '', // Will be set by caller
+                });
+            }
+        });
+        return findings;
+    }
     /**
      * Scan code for security vulnerabilities
      */
     async scan(filepath, code) {
         const findings = [];
-        // Use AI to analyze code for security vulnerabilities
-        const analysis = await this.analyzeWithAI(filepath, code);
-        findings.push(...analysis);
+        // Fast pattern-based checks first (before expensive AI analysis)
+        const patternFindings = this.checkDangerousPatterns(code);
+        // Set filepath for pattern findings
+        patternFindings.forEach(f => { f.filepath = filepath; });
+        findings.push(...patternFindings);
+        // If critical patterns found, return early (don't need AI analysis)
+        const criticalPatternFindings = patternFindings.filter(f => f.severity === 'critical');
+        if (criticalPatternFindings.length > 0) {
+            return {
+                findings,
+                totalFindings: findings.length,
+                criticalCount: criticalPatternFindings.length,
+                highCount: findings.filter(f => f.severity === 'high').length,
+                mediumCount: findings.filter(f => f.severity === 'medium').length,
+                lowCount: findings.filter(f => f.severity === 'low').length,
+                passed: false,
+            };
+        }
+        // AI-based analysis (only if no critical patterns found)
+        const aiFindings = await this.analyzeWithAI(filepath, code);
+        findings.push(...aiFindings);
         // Count by severity
         const criticalCount = findings.filter(f => f.severity === 'critical').length;
         const highCount = findings.filter(f => f.severity === 'high').length;
@@ -109,13 +186,14 @@ export class AISASTScanner {
         const prompt = `Analyze the following code for security vulnerabilities. Focus on:
 - SQL Injection (CWE-89)
 - Cross-Site Scripting / XSS (CWE-79)
-- Code Injection (CWE-94, CWE-95)
+- Code Injection (CWE-94, CWE-95) - including eval(), Function(), setTimeout/setInterval with user input
 - Command Injection (CWE-78)
 - Path Traversal (CWE-22)
 - Insecure Deserialization (CWE-502)
 - Authentication/Authorization flaws
 - Sensitive data exposure
 - Insecure dependencies
+- Dangerous JavaScript patterns: eval(), Function(), innerHTML with user input, dangerous regex
 Code from ${filepath}:
 \`\`\`

package/dist/infrastructure/security/ai-sast-scanner.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"ai-sast-scanner.js","sourceRoot":"","sources":["../../../src/infrastructure/security/ai-sast-scanner.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAyBH,MAAM,OAAO,aAAa;IACJ;IAApB,YAAoB,SAAqB;QAArB,cAAS,GAAT,SAAS,CAAY;IAAG,CAAC;IAE7C;;;OAGG;IACH,KAAK,CAAC,eAAe,CAAC,WAAmB;QACvC,uDAAuD;QACvD,MAAM,KAAK,GAAG,WAAW,CAAC,WAAW,EAAE,CAAC;QAExC,wDAAwD;QACxD,MAAM,iBAAiB,GAAG;YACxB,EAAE,OAAO,EAAE,6CAA6C,EAAE,QAAQ,EAAE,UAAU,EAAE,QAAQ,EAAE,gBAAgB,EAAE;YAC5G,EAAE,OAAO,EAAE,4CAA4C,EAAE,QAAQ,EAAE,UAAU,EAAE,QAAQ,EAAE,mBAAmB,EAAE;YAC9G,EAAE,OAAO,EAAE,iCAAiC,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,eAAe,EAAE;YAC3F,EAAE,OAAO,EAAE,wDAAwD,EAAE,QAAQ,EAAE,UAAU,EAAE,QAAQ,EAAE,iBAAiB,EAAE;YACxH,EAAE,OAAO,EAAE,yDAAyD,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,mBAAmB,EAAE;SACxH,CAAC;QAEF,MAAM,QAAQ,GAAkB,EAAE,CAAC;QACnC,KAAK,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,IAAI,iBAAiB,EAAE,CAAC;YAChE,IAAI,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;gBAC9B,QAAQ,CAAC,IAAI,CAAC;oBACZ,QAAQ,EAAE,QAA+B;oBACzC,QAAQ;oBACR,WAAW,EAAE,2CAA2C,QAAQ,EAAE;oBAClE,QAAQ,EAAE,aAAa;oBACvB,IAAI,EAAE,CAAC;oBACP,cAAc,EAAE,sEAAsE,QAAQ,EAAE;iBACjG,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,OAAO,IAAI,CAAC,CAAC,oCAAoC;QACnD,CAAC;QAED,MAAM,aAAa,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAC7E,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QAErE,OAAO;YACL,QAAQ;YACR,aAAa,EAAE,QAAQ,CAAC,MAAM;YAC9B,aAAa;YACb,SAAS;YACT,WAAW,EAAE,CAAC;YACd,QAAQ,EAAE,CAAC;YACX,MAAM,EAAE,aAAa,KAAK,CAAC,IAAI,SAAS,KAAK,CAAC;SAC/C,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI,CAAC,QAAgB,EAAE,IAAY;QACvC,MAAM,QAAQ,GAAkB,EAAE,CAAC;QAEnC,~~sDAAsD~~;~~QACtD~~,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;~~QAC1D~~,QAAQ,CAAC,IAAI,CAAC,GAAG,~~QAAQ~~,CAAC,CAAC;~~QAE3B~~,oBAAoB;QACpB,MAAM,aAAa,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAC7E,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QACrE,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QACzE,MAAM,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM,CAAC;QAEnE,gDAAgD;QAChD,MAAM,MAAM,GAAG,aAAa,KAAK,CAAC,IAAI,SAAS,KAAK,CAAC,CAAC;QAEtD,OAAO;YACL,QAAQ;YACR,aAAa,EAAE,QAAQ,CAAC,MAAM;YAC9B,aAAa;YACb,SAAS;YACT,WAAW;YACX,QAAQ;YACR,MAAM;SACP,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,SAAS,CAAC,KAAgD;QAC9D,MAAM,WAAW,GAAkB,EAAE,CAAC;QAEtC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;YACzD,WAAW,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC;QACvC,CAAC;QAED,MAAM,aAAa,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAChF,MAAM,SAAS,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QACxE,MAAM,WAAW,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QAC5E,MAAM,QAAQ,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM,CAAC;QAEtE,MAAM,MAAM,GAAG,aAAa,KAAK,CAAC,IAAI,SAAS,KAAK,CAAC,CAAC;QAEtD,OAAO;YACL,QAAQ,EAAE,WAAW;YACrB,aAAa,EAAE,WAAW,CAAC,MAAM;YACjC,aAAa;YACb,SAAS;YACT,WAAW;YACX,QAAQ;YACR,MAAM;SACP,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,aAAa,CAAC,QAAgB,EAAE,IAAY;QACxD,MAAM,MAAM,GAAG~~;;;;;;;;;;;YAWP~~,QAAQ;;EAElB,IAAI;;;;;;;;;;;;;0BAaoB,CAAC;QAEvB,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;YAEvD,6BAA6B;YAC7B,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;YAChD,IAAI,CAAC,SAAS,EAAE,CAAC;gBACf,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAkB,CAAC;YAE3D,+BAA+B;YAC/B,OAAO,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACxB,GAAG,CAAC;gBACJ,QAAQ;aACT,CAAC,CAAC,CAAC;QACN,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,IAAI,CAAC,0BAA0B,EAAE,KAAK,CAAC,CAAC;YAChD,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,mBAAmB,CAAC,QAAgB,EAAE,IAAY;QACtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QAC/C,OAAO,MAAM,CAAC,MAAM,CAAC;IACvB,CAAC;CACF"}
1	+ {"version":3,"file":"ai-sast-scanner.js","sourceRoot":"","sources":["../../../src/infrastructure/security/ai-sast-scanner.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAyBH,MAAM,OAAO,aAAa;IACJ;IAApB,YAAoB,SAAqB;QAArB,cAAS,GAAT,SAAS,CAAY;IAAG,CAAC;IAE7C;;;OAGG;IACH,KAAK,CAAC,eAAe,CAAC,WAAmB;QACvC,uDAAuD;QACvD,MAAM,KAAK,GAAG,WAAW,CAAC,WAAW,EAAE,CAAC;QAExC,wDAAwD;QACxD,MAAM,iBAAiB,GAAG;YACxB,EAAE,OAAO,EAAE,6CAA6C,EAAE,QAAQ,EAAE,UAAU,EAAE,QAAQ,EAAE,gBAAgB,EAAE;YAC5G,EAAE,OAAO,EAAE,4CAA4C,EAAE,QAAQ,EAAE,UAAU,EAAE,QAAQ,EAAE,mBAAmB,EAAE;YAC9G,EAAE,OAAO,EAAE,iCAAiC,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,eAAe,EAAE;YAC3F,EAAE,OAAO,EAAE,wDAAwD,EAAE,QAAQ,EAAE,UAAU,EAAE,QAAQ,EAAE,iBAAiB,EAAE;YACxH,EAAE,OAAO,EAAE,yDAAyD,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,mBAAmB,EAAE;SACxH,CAAC;QAEF,MAAM,QAAQ,GAAkB,EAAE,CAAC;QACnC,KAAK,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,IAAI,iBAAiB,EAAE,CAAC;YAChE,IAAI,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,EAAE,CAAC;gBAC9B,QAAQ,CAAC,IAAI,CAAC;oBACZ,QAAQ,EAAE,QAA+B;oBACzC,QAAQ;oBACR,WAAW,EAAE,2CAA2C,QAAQ,EAAE;oBAClE,QAAQ,EAAE,aAAa;oBACvB,IAAI,EAAE,CAAC;oBACP,cAAc,EAAE,sEAAsE,QAAQ,EAAE;iBACjG,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1B,OAAO,IAAI,CAAC,CAAC,oCAAoC;QACnD,CAAC;QAED,MAAM,aAAa,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAC7E,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QAErE,OAAO;YACL,QAAQ;YACR,aAAa,EAAE,QAAQ,CAAC,MAAM;YAC9B,aAAa;YACb,SAAS;YACT,WAAW,EAAE,CAAC;YACd,QAAQ,EAAE,CAAC;YACX,MAAM,EAAE,aAAa,KAAK,CAAC,IAAI,SAAS,KAAK,CAAC;SAC/C,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,sBAAsB,CAAC,IAAY;QACzC,MAAM,QAAQ,GAAkB,EAAE,CAAC;QACnC,MAAM,iBAAiB,GAAG;YACxB;gBACE,OAAO,EAAE,eAAe;gBACxB,QAAQ,EAAE,gBAAgB;gBAC1B,WAAW,EAAE,+CAA+C;gBAC5D,QAAQ,EAAE,UAAmB;gBAC7B,GAAG,EAAE,QAAQ;aACd;YACD;gBACE,OAAO,EAAE,mBAAmB;gBAC5B,QAAQ,EAAE,gBAAgB;gBAC1B,WAAW,EAAE,+DAA+D;gBAC5E,QAAQ,EAAE,UAAmB;gBAC7B,GAAG,EAAE,QAAQ;aACd;YACD;gBACE,OAAO,EAAE,0BAA0B;gBACnC,QAAQ,EAAE,sBAAsB;gBAChC,WAAW,EAAE,6CAA6C;gBAC1D,QAAQ,EAAE,MAAe;gBACzB,GAAG,EAAE,QAAQ;aACd;YACD;gBACE,OAAO,EAAE,iCAAiC;gBAC1C,QAAQ,EAAE,gBAAgB;gBAC1B,WAAW,EAAE,uDAAuD;gBACpE,QAAQ,EAAE,MAAe;gBACzB,GAAG,EAAE,QAAQ;aACd;YACD;gBACE,OAAO,EAAE,kCAAkC;gBAC3C,QAAQ,EAAE,gBAAgB;gBAC1B,WAAW,EAAE,wDAAwD;gBACrE,QAAQ,EAAE,MAAe;gBACzB,GAAG,EAAE,QAAQ;aACd;SACF,CAAC;QAEF,iBAAiB,CAAC,OAAO,CAAC,CAAC,EAAE,OAAO,EAAE,QAAQ,EAAE,WAAW,EAAE,QAAQ,EAAE,GAAG,EAAE,EAAE,EAAE;YAC9E,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;YACvC,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;gBAC5B,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;gBACpE,QAAQ,CAAC,IAAI,CAAC;oBACZ,QAAQ;oBACR,QAAQ;oBACR,WAAW;oBACX,IAAI;oBACJ,cAAc,EAAE,SAAS,QAAQ,CAAC,WAAW,EAAE,2BAA2B;oBAC1E,GAAG;oBACH,QAAQ,EAAE,EAAE,EAAE,wBAAwB;iBACvC,CAAC,CAAC;YACL,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,IAAI,CAAC,QAAgB,EAAE,IAAY;QACvC,MAAM,QAAQ,GAAkB,EAAE,CAAC;QAEnC,iEAAiE;QACjE,MAAM,eAAe,GAAG,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,CAAC;QAC1D,oCAAoC;QACpC,eAAe,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,QAAQ,GAAG,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;QACzD,QAAQ,CAAC,IAAI,CAAC,GAAG,eAAe,CAAC,CAAC;QAElC,oEAAoE;QACpE,MAAM,uBAAuB,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC;QACvF,IAAI,uBAAuB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACvC,OAAO;gBACL,QAAQ;gBACR,aAAa,EAAE,QAAQ,CAAC,MAAM;gBAC9B,aAAa,EAAE,uBAAuB,CAAC,MAAM;gBAC7C,SAAS,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM;gBAC7D,WAAW,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM;gBACjE,QAAQ,EAAE,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM;gBAC3D,MAAM,EAAE,KAAK;aACd,CAAC;QACJ,CAAC;QAED,yDAAyD;QACzD,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QAC5D,QAAQ,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,CAAC;QAE7B,oBAAoB;QACpB,MAAM,aAAa,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAC7E,MAAM,SAAS,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QACrE,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QACzE,MAAM,QAAQ,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM,CAAC;QAEnE,gDAAgD;QAChD,MAAM,MAAM,GAAG,aAAa,KAAK,CAAC,IAAI,SAAS,KAAK,CAAC,CAAC;QAEtD,OAAO;YACL,QAAQ;YACR,aAAa,EAAE,QAAQ,CAAC,MAAM;YAC9B,aAAa;YACb,SAAS;YACT,WAAW;YACX,QAAQ;YACR,MAAM;SACP,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,SAAS,CAAC,KAAgD;QAC9D,MAAM,WAAW,GAAkB,EAAE,CAAC;QAEtC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,CAAC,CAAC;YACzD,WAAW,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC;QACvC,CAAC;QAED,MAAM,aAAa,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;QAChF,MAAM,SAAS,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QACxE,MAAM,WAAW,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QAC5E,MAAM,QAAQ,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM,CAAC;QAEtE,MAAM,MAAM,GAAG,aAAa,KAAK,CAAC,IAAI,SAAS,KAAK,CAAC,CAAC;QAEtD,OAAO;YACL,QAAQ,EAAE,WAAW;YACrB,aAAa,EAAE,WAAW,CAAC,MAAM;YACjC,aAAa;YACb,SAAS;YACT,WAAW;YACX,QAAQ;YACR,MAAM;SACP,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,aAAa,CAAC,QAAgB,EAAE,IAAY;QACxD,MAAM,MAAM,GAAG;;;;;;;;;;;;YAYP,QAAQ;;EAElB,IAAI;;;;;;;;;;;;;0BAaoB,CAAC;QAEvB,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;YAEvD,6BAA6B;YAC7B,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;YAChD,IAAI,CAAC,SAAS,EAAE,CAAC;gBACf,OAAO,EAAE,CAAC;YACZ,CAAC;YAED,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAkB,CAAC;YAE3D,+BAA+B;YAC/B,OAAO,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACxB,GAAG,CAAC;gBACJ,QAAQ;aACT,CAAC,CAAC,CAAC;QACN,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,IAAI,CAAC,0BAA0B,EAAE,KAAK,CAAC,CAAC;YAChD,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,mBAAmB,CAAC,QAAgB,EAAE,IAAY;QACtD,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QAC/C,OAAO,MAAM,CAAC,MAAM,CAAC;IACvB,CAAC;CACF"}

package/dist/infrastructure/security/enhanced-security-gate.d.ts CHANGED Viewed

@@ -32,9 +32,11 @@ export declare class EnhancedSecurityGate {
     private licenseScanner;
     private providerBiasDetector;
     private uncertaintyQuantifier?;
+    private scanCache;
     constructor(sastScanner: AISASTScanner, licenseScanner: LicenseScanner, providerBiasDetector: ProviderBiasDetector, uncertaintyQuantifier?: UncertaintyQuantifier | undefined);
     /**
      * Comprehensive security scan
+     * PERFORMANCE OPTIMIZATION: Parallelizes independent scans for ~3x speedup
      */
     scan(filepath: string, code: string, instruction?: string, context?: {
         query?: string;

package/dist/infrastructure/security/enhanced-security-gate.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"enhanced-security-gate.d.ts","sourceRoot":"","sources":["../../../src/infrastructure/security/enhanced-security-gate.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,aAAa,EAAE,KAAK,UAAU,EAAE,MAAM,sBAAsB,CAAC;AACtE,OAAO,EAAE,cAAc,EAAE,KAAK,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAC9E,OAAO,EAAE,oBAAoB,EAAE,KAAK,kBAAkB,EAAE,MAAM,6BAA6B,CAAC;AAC5F,OAAO,EAAE,qBAAqB,EAAE,KAAK,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;~~AAEjG~~,MAAM,WAAW,sBAAsB;IACrC,MAAM,EAAE,OAAO,CAAC;IAChB,IAAI,EAAE,UAAU,CAAC;IACjB,OAAO,EAAE,iBAAiB,CAAC;IAC3B,YAAY,EAAE,kBAAkB,CAAC;IACjC,WAAW,CAAC,EAAE,iBAAiB,CAAC;IAChC,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;;GAGG;AACH,qBAAa,oBAAoB;~~IAE7B~~,OAAO,CAAC,WAAW;IACnB,OAAO,CAAC,cAAc;IACtB,OAAO,CAAC,oBAAoB;IAC5B,OAAO,CAAC,qBAAqB,CAAC;~~gBAHtB~~,WAAW,EAAE,aAAa,EAC1B,cAAc,EAAE,cAAc,EAC9B,oBAAoB,EAAE,oBAAoB,EAC1C,qBAAqB,CAAC,EAAE,qBAAqB,YAAA;IAGvD~~;;OAEG~~;IACG,IAAI,CACR,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,MAAM,EACZ,WAAW,CAAC,EAAE,MAAM,EACpB,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,GAAG,EAAE,CAAA;KAAE,GAC3C,OAAO,CAAC,sBAAsB,CAAC;~~IA2DlC~~;;OAEG;IACG,SAAS,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,QAAQ,EAAE,MAAM,EAAE,CAAA;KAAE,CAAC;CAaxF"}
1	+ {"version":3,"file":"enhanced-security-gate.d.ts","sourceRoot":"","sources":["../../../src/infrastructure/security/enhanced-security-gate.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,aAAa,EAAE,KAAK,UAAU,EAAE,MAAM,sBAAsB,CAAC;AACtE,OAAO,EAAE,cAAc,EAAE,KAAK,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAC9E,OAAO,EAAE,oBAAoB,EAAE,KAAK,kBAAkB,EAAE,MAAM,6BAA6B,CAAC;AAC5F,OAAO,EAAE,qBAAqB,EAAE,KAAK,iBAAiB,EAAE,MAAM,kCAAkC,CAAC;AAGjG,MAAM,WAAW,sBAAsB;IACrC,MAAM,EAAE,OAAO,CAAC;IAChB,IAAI,EAAE,UAAU,CAAC;IACjB,OAAO,EAAE,iBAAiB,CAAC;IAC3B,YAAY,EAAE,kBAAkB,CAAC;IACjC,WAAW,CAAC,EAAE,iBAAiB,CAAC;IAChC,MAAM,EAAE,MAAM,EAAE,CAAC;IACjB,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAED;;;GAGG;AACH,qBAAa,oBAAoB;IAI7B,OAAO,CAAC,WAAW;IACnB,OAAO,CAAC,cAAc;IACtB,OAAO,CAAC,oBAAoB;IAC5B,OAAO,CAAC,qBAAqB,CAAC;IANhC,OAAO,CAAC,SAAS,CAA0B;gBAGjC,WAAW,EAAE,aAAa,EAC1B,cAAc,EAAE,cAAc,EAC9B,oBAAoB,EAAE,oBAAoB,EAC1C,qBAAqB,CAAC,EAAE,qBAAqB,YAAA;IAGvD;;;OAGG;IACG,IAAI,CACR,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,MAAM,EACZ,WAAW,CAAC,EAAE,MAAM,EACpB,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,GAAG,EAAE,CAAA;KAAE,GAC3C,OAAO,CAAC,sBAAsB,CAAC;IAkIlC;;OAEG;IACG,SAAS,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,QAAQ,EAAE,MAAM,EAAE,CAAA;KAAE,CAAC;CAaxF"}

package/dist/infrastructure/security/enhanced-security-gate.js CHANGED Viewed

@@ -10,6 +10,7 @@
  *
  * All checks must pass before code generation/editing
  */
+import { getSecurityScanCache } from '../cache/security-scan-cache.js';
 /**
  * Enhanced Security Gate
  * Orchestrates all security scanners
@@ -19,6 +20,7 @@ export class EnhancedSecurityGate {
     licenseScanner;
     providerBiasDetector;
     uncertaintyQuantifier;
+    scanCache = getSecurityScanCache();
     constructor(sastScanner, licenseScanner, providerBiasDetector, uncertaintyQuantifier) {
         this.sastScanner = sastScanner;
         this.licenseScanner = licenseScanner;
@@ -27,43 +29,100 @@ export class EnhancedSecurityGate {
     }
     /**
      * Comprehensive security scan
+     * PERFORMANCE OPTIMIZATION: Parallelizes independent scans for ~3x speedup
      */
     async scan(filepath, code, instruction, context) {
         const errors = [];
         const warnings = [];
-        // 1. Fast security check on instruction (if provided)
-        let instructionSast = null;
-        if (instruction) {
-            instructionSast = await this.sastScanner.scanInstruction(instruction);
-            if (instructionSast && !instructionSast.passed) {
-                errors.push(`Security vulnerabilities in instruction: ${instructionSast.findings.length} findings`);
+        // PERFORMANCE: Check cache first (bypasses expensive scans for unchanged files)
+        const cachedResults = this.scanCache.get(filepath, code);
+        if (cachedResults) {
+            // Return cached results (skip expensive scans)
+            const passed = cachedResults.sast.passed && cachedResults.license.passed;
+            if (!cachedResults.sast.passed) {
+                errors.push(`Security vulnerabilities: ${cachedResults.sast.criticalCount} critical, ${cachedResults.sast.highCount} high`);
             }
+            if (!cachedResults.license.passed) {
+                errors.push(`License conflicts: ${cachedResults.license.criticalCount} critical issues`);
+            }
+            if (!cachedResults.providerBias.passed) {
+                warnings.push(`Provider bias detected: ${cachedResults.providerBias.criticalCount} critical issues`);
+            }
+            // Still run uncertainty quantification if needed (it's fast and context-dependent)
+            let uncertainty;
+            if (this.uncertaintyQuantifier && context?.query && code) {
+                uncertainty = await this.uncertaintyQuantifier.quantifyUncertainty(context.query, code, { chunks: context.chunks }).catch(() => undefined);
+                if (uncertainty?.isHallucinationRisk) {
+                    warnings.push(`High epistemic uncertainty detected: Possible hallucination risk`);
+                }
+            }
+            return {
+                passed: errors.length === 0,
+                sast: cachedResults.sast,
+                license: cachedResults.license,
+                providerBias: cachedResults.providerBias,
+                uncertainty,
+                errors,
+                warnings,
+            };
+        }
+        // PERFORMANCE: Parallelize independent scans (SAST, License, Provider Bias)
+        // These scans are independent and can run concurrently
+        const scanPromises = [
+            // 1. Fast security check on instruction (if provided)
+            instruction
+                ? this.sastScanner.scanInstruction(instruction).catch(err => {
+                    console.warn(`[EnhancedSecurityGate] Instruction scan failed: ${err instanceof Error ? err.message : String(err)}`);
+                    return null;
+                })
+                : Promise.resolve(null),
+            // 2. SAST scan on code
+            this.sastScanner.scan(filepath, code).catch(err => {
+                console.warn(`[EnhancedSecurityGate] SAST scan failed: ${err instanceof Error ? err.message : String(err)}`);
+                return { passed: true, findings: [], criticalCount: 0, highCount: 0 };
+            }),
+            // 3. License scan
+            this.licenseScanner.scan(filepath, code).catch(err => {
+                console.warn(`[EnhancedSecurityGate] License scan failed: ${err instanceof Error ? err.message : String(err)}`);
+                return { passed: true, findings: [], criticalCount: 0 };
+            }),
+            // 4. Provider bias detection
+            this.providerBiasDetector.scan(filepath, code).catch(err => {
+                console.warn(`[EnhancedSecurityGate] Provider bias scan failed: ${err instanceof Error ? err.message : String(err)}`);
+                return { passed: true, findings: [], criticalCount: 0 };
+            }),
+        ];
+        // Execute all scans in parallel
+        const [instructionSast, sast, license, providerBias] = await Promise.all(scanPromises);
+        // Process results
+        if (instructionSast && !instructionSast.passed) {
+            errors.push(`Security vulnerabilities in instruction: ${instructionSast.findings.length} findings`);
         }
-        // 2. SAST scan on code
-        const sast = await this.sastScanner.scan(filepath, code);
         if (!sast.passed) {
             errors.push(`Security vulnerabilities: ${sast.criticalCount} critical, ${sast.highCount} high`);
         }
-        // 3. License scan
-        const license = await this.licenseScanner.scan(filepath, code);
         if (!license.passed) {
             errors.push(`License conflicts: ${license.criticalCount} critical issues`);
         }
-        // 4. Provider bias detection
-        const providerBias = await this.providerBiasDetector.scan(filepath, code);
         if (!providerBias.passed) {
             warnings.push(`Provider bias detected: ${providerBias.criticalCount} critical issues`);
             // Provider bias is a warning, not blocking (unless policy enforces)
         }
-        // 5. Uncertainty quantification (if context provided)
+        // 5. Uncertainty quantification (runs after parallel scans, depends on context)
+        // This is independent but typically faster, so can run in parallel with scans if needed
         let uncertainty;
         if (this.uncertaintyQuantifier && context?.query && code) {
-            uncertainty = await this.uncertaintyQuantifier.quantifyUncertainty(context.query, code, { chunks: context.chunks });
-            if (uncertainty.isHallucinationRisk) {
+            uncertainty = await this.uncertaintyQuantifier.quantifyUncertainty(context.query, code, { chunks: context.chunks }).catch(err => {
+                console.warn(`[EnhancedSecurityGate] Uncertainty quantification failed: ${err instanceof Error ? err.message : String(err)}`);
+                return undefined;
+            });
+            if (uncertainty?.isHallucinationRisk) {
                 warnings.push(`High epistemic uncertainty detected: Possible hallucination risk`);
             }
         }
         const passed = errors.length === 0; // Only fail on critical errors
+        // Cache results for future use (performance optimization)
+        this.scanCache.set(filepath, code, sast, license, providerBias);
         return {
             passed,
             sast,

package/dist/infrastructure/security/enhanced-security-gate.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"enhanced-security-gate.js","sourceRoot":"","sources":["../../../src/infrastructure/security/enhanced-security-gate.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;~~AAiBH~~;;;GAGG;AACH,MAAM,OAAO,oBAAoB;~~IAErB~~;IACA;IACA;IACA;~~IAJV~~,YACU,WAA0B,EAC1B,cAA8B,EAC9B,oBAA0C,EAC1C,qBAA6C;QAH7C,gBAAW,GAAX,WAAW,CAAe;QAC1B,mBAAc,GAAd,cAAc,CAAgB;QAC9B,yBAAoB,GAApB,oBAAoB,CAAsB;QAC1C,0BAAqB,GAArB,qBAAqB,CAAwB;IACpD,CAAC;IAEJ~~;;OAEG~~;IACH,KAAK,CAAC,IAAI,CACR,QAAgB,EAChB,IAAY,EACZ,WAAoB,EACpB,OAA4C;QAE5C,MAAM,MAAM,GAAa,EAAE,CAAC;QAC5B,MAAM,QAAQ,GAAa,EAAE,CAAC;QAE9B,~~sDAAsD~~;~~QACtD~~,IAAI,~~eAAe~~,~~GAAsB~~,IAAI,CAAC;~~QAC9C~~,IAAI,~~WAAW~~,EAAE,CAAC;~~YAChB~~,~~eAAe~~,GAAG,MAAM,IAAI,CAAC,~~WAAW~~,CAAC,~~eAAe~~,CAAC,~~WAAW~~,CAAC,CAAC;~~YACtE~~,IAAI,~~eAAe~~,IAAI,CAAC,~~eAAe~~,CAAC,MAAM,EAAE,CAAC;~~gBAC~~/C,MAAM,CAAC,IAAI,CAAC,~~4CAA4C~~,~~eAAe~~,CAAC,QAAQ,CAAC,MAAM,~~WAAW~~,CAAC,CAAC;~~YACtG~~,CAAC;~~QACH~~,CAAC;QAED,~~uBAAuB~~;~~QACvB~~,MAAM,IAAI,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;~~QACzD~~,~~IAAI~~,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;~~YACjB~~,MAAM,CAAC,IAAI,CAAC,~~6BAA6B~~,IAAI,CAAC,~~aAAa~~,~~cAAc~~,IAAI,CAAC,~~SAAS~~,~~OAAO~~,CAAC,CAAC;~~QAClG~~,CAAC~~;QAED~~,~~kBAAkB;QAClB~~,~~MAAM~~,OAAO,GAAG,MAAM,IAAI,CAAC,~~cAAc~~,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;~~QAC/D~~,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;~~YACpB~~,MAAM,CAAC,IAAI,CAAC,~~sBAAsB~~,OAAO,CAAC,~~aAAa~~,kBAAkB,CAAC,CAAC;~~QAC7E~~,CAAC;~~QAED~~,~~6BAA6B~~;~~QAC7B~~,MAAM,~~YAAY~~,~~GAAG~~,MAAM,IAAI,CAAC,~~oBAAoB~~,CAAC,IAAI,CAAC,~~QAAQ~~,EAAE,IAAI,CAAC,CAAC;~~QAC1E~~,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,CAAC;YACzB,QAAQ,CAAC,IAAI,CAAC,2BAA2B,YAAY,CAAC,aAAa,kBAAkB,CAAC,CAAC;YACvF,oEAAoE;QACtE,CAAC;QAED,~~sDAAsD~~;~~QACtD~~,IAAI,WAA0C,CAAC;QAC/C,IAAI,IAAI,CAAC,qBAAqB,IAAI,OAAO,EAAE,KAAK,IAAI,IAAI,EAAE,CAAC;YACzD,WAAW,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,mBAAmB,CAChE,OAAO,CAAC,KAAK,EACb,IAAI,EACJ,EAAE,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,CAC3B,CAAC;~~YAEF~~,IAAI,~~WAAW~~,CAAC,mBAAmB,EAAE,CAAC;~~gBACpC~~,QAAQ,CAAC,IAAI,CAAC,kEAAkE,CAAC,CAAC;YACpF,CAAC;QACH,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,+BAA+B;QAEnE,OAAO;YACL,MAAM;YACN,IAAI;YACJ,OAAO;YACP,YAAY;YACZ,WAAW;YACX,MAAM;YACN,QAAQ;SACT,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,SAAS,CAAC,WAAmB;QACjC,MAAM,QAAQ,GAAa,EAAE,CAAC;QAE9B,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC;QACvE,IAAI,UAAU,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACrC,QAAQ,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;QACpF,CAAC;QAED,OAAO;YACL,OAAO,EAAE,QAAQ,CAAC,MAAM,KAAK,CAAC;YAC9B,QAAQ;SACT,CAAC;IACJ,CAAC;CACF"}
1	+ {"version":3,"file":"enhanced-security-gate.js","sourceRoot":"","sources":["../../../src/infrastructure/security/enhanced-security-gate.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAMH,OAAO,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC;AAYvE;;;GAGG;AACH,MAAM,OAAO,oBAAoB;IAIrB;IACA;IACA;IACA;IANF,SAAS,GAAG,oBAAoB,EAAE,CAAC;IAE3C,YACU,WAA0B,EAC1B,cAA8B,EAC9B,oBAA0C,EAC1C,qBAA6C;QAH7C,gBAAW,GAAX,WAAW,CAAe;QAC1B,mBAAc,GAAd,cAAc,CAAgB;QAC9B,yBAAoB,GAApB,oBAAoB,CAAsB;QAC1C,0BAAqB,GAArB,qBAAqB,CAAwB;IACpD,CAAC;IAEJ;;;OAGG;IACH,KAAK,CAAC,IAAI,CACR,QAAgB,EAChB,IAAY,EACZ,WAAoB,EACpB,OAA4C;QAE5C,MAAM,MAAM,GAAa,EAAE,CAAC;QAC5B,MAAM,QAAQ,GAAa,EAAE,CAAC;QAE9B,gFAAgF;QAChF,MAAM,aAAa,GAAG,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;QACzD,IAAI,aAAa,EAAE,CAAC;YAClB,+CAA+C;YAC/C,MAAM,MAAM,GAAG,aAAa,CAAC,IAAI,CAAC,MAAM,IAAI,aAAa,CAAC,OAAO,CAAC,MAAM,CAAC;YAEzE,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;gBAC/B,MAAM,CAAC,IAAI,CAAC,6BAA6B,aAAa,CAAC,IAAI,CAAC,aAAa,cAAc,aAAa,CAAC,IAAI,CAAC,SAAS,OAAO,CAAC,CAAC;YAC9H,CAAC;YACD,IAAI,CAAC,aAAa,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;gBAClC,MAAM,CAAC,IAAI,CAAC,sBAAsB,aAAa,CAAC,OAAO,CAAC,aAAa,kBAAkB,CAAC,CAAC;YAC3F,CAAC;YACD,IAAI,CAAC,aAAa,CAAC,YAAY,CAAC,MAAM,EAAE,CAAC;gBACvC,QAAQ,CAAC,IAAI,CAAC,2BAA2B,aAAa,CAAC,YAAY,CAAC,aAAa,kBAAkB,CAAC,CAAC;YACvG,CAAC;YAED,mFAAmF;YACnF,IAAI,WAA0C,CAAC;YAC/C,IAAI,IAAI,CAAC,qBAAqB,IAAI,OAAO,EAAE,KAAK,IAAI,IAAI,EAAE,CAAC;gBACzD,WAAW,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,mBAAmB,CAChE,OAAO,CAAC,KAAK,EACb,IAAI,EACJ,EAAE,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,CAC3B,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,SAAS,CAAC,CAAC;gBAEzB,IAAI,WAAW,EAAE,mBAAmB,EAAE,CAAC;oBACrC,QAAQ,CAAC,IAAI,CAAC,kEAAkE,CAAC,CAAC;gBACpF,CAAC;YACH,CAAC;YAED,OAAO;gBACL,MAAM,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC;gBAC3B,IAAI,EAAE,aAAa,CAAC,IAAI;gBACxB,OAAO,EAAE,aAAa,CAAC,OAAO;gBAC9B,YAAY,EAAE,aAAa,CAAC,YAAY;gBACxC,WAAW;gBACX,MAAM;gBACN,QAAQ;aACT,CAAC;QACJ,CAAC;QAED,4EAA4E;QAC5E,uDAAuD;QACvD,MAAM,YAAY,GAAmB;YACnC,sDAAsD;YACtD,WAAW;gBACT,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE;oBACxD,OAAO,CAAC,IAAI,CAAC,mDAAmD,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;oBACpH,OAAO,IAAI,CAAC;gBACd,CAAC,CAAC;gBACJ,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC;YAEzB,uBAAuB;YACvB,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE;gBAChD,OAAO,CAAC,IAAI,CAAC,4CAA4C,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAC7G,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE,aAAa,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,CAAC;YACxE,CAAC,CAAC;YAEF,kBAAkB;YAClB,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE;gBACnD,OAAO,CAAC,IAAI,CAAC,+CAA+C,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChH,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE,aAAa,EAAE,CAAC,EAAE,CAAC;YAC1D,CAAC,CAAC;YAEF,6BAA6B;YAC7B,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE;gBACzD,OAAO,CAAC,IAAI,CAAC,qDAAqD,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBACtH,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE,aAAa,EAAE,CAAC,EAAE,CAAC;YAC1D,CAAC,CAAC;SACH,CAAC;QAEF,gCAAgC;QAChC,MAAM,CAAC,eAAe,EAAE,IAAI,EAAE,OAAO,EAAE,YAAY,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAEvF,kBAAkB;QAClB,IAAI,eAAe,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,CAAC;YAC/C,MAAM,CAAC,IAAI,CAAC,4CAA4C,eAAe,CAAC,QAAQ,CAAC,MAAM,WAAW,CAAC,CAAC;QACtG,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,CAAC;YACjB,MAAM,CAAC,IAAI,CAAC,6BAA6B,IAAI,CAAC,aAAa,cAAc,IAAI,CAAC,SAAS,OAAO,CAAC,CAAC;QAClG,CAAC;QAED,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YACpB,MAAM,CAAC,IAAI,CAAC,sBAAsB,OAAO,CAAC,aAAa,kBAAkB,CAAC,CAAC;QAC7E,CAAC;QAED,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,CAAC;YACzB,QAAQ,CAAC,IAAI,CAAC,2BAA2B,YAAY,CAAC,aAAa,kBAAkB,CAAC,CAAC;YACvF,oEAAoE;QACtE,CAAC;QAED,gFAAgF;QAChF,wFAAwF;QACxF,IAAI,WAA0C,CAAC;QAC/C,IAAI,IAAI,CAAC,qBAAqB,IAAI,OAAO,EAAE,KAAK,IAAI,IAAI,EAAE,CAAC;YACzD,WAAW,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,mBAAmB,CAChE,OAAO,CAAC,KAAK,EACb,IAAI,EACJ,EAAE,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,CAC3B,CAAC,KAAK,CAAC,GAAG,CAAC,EAAE;gBACZ,OAAO,CAAC,IAAI,CAAC,6DAA6D,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAC9H,OAAO,SAAS,CAAC;YACnB,CAAC,CAAC,CAAC;YAEH,IAAI,WAAW,EAAE,mBAAmB,EAAE,CAAC;gBACrC,QAAQ,CAAC,IAAI,CAAC,kEAAkE,CAAC,CAAC;YACpF,CAAC;QACH,CAAC;QAED,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,+BAA+B;QAEnE,0DAA0D;QAC1D,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,EAAE,IAAI,EAAE,OAAO,EAAE,YAAY,CAAC,CAAC;QAEhE,OAAO;YACL,MAAM;YACN,IAAI;YACJ,OAAO;YACP,YAAY;YACZ,WAAW;YACX,MAAM;YACN,QAAQ;SACT,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,SAAS,CAAC,WAAmB;QACjC,MAAM,QAAQ,GAAa,EAAE,CAAC;QAE9B,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC;QACvE,IAAI,UAAU,IAAI,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC;YACrC,QAAQ,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,QAAQ,KAAK,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;QACpF,CAAC;QAED,OAAO;YACL,OAAO,EAAE,QAAQ,CAAC,MAAM,KAAK,CAAC;YAC9B,QAAQ;SACT,CAAC;IACJ,CAAC;CACF"}