codeslick-cli 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (455) hide show
  1. package/README.md +458 -0
  2. package/__tests__/cli-reporter.test.ts +86 -0
  3. package/__tests__/config-loader.test.ts +247 -0
  4. package/__tests__/local-scanner.test.ts +245 -0
  5. package/bin/codeslick.cjs +153 -0
  6. package/dist/packages/cli/src/commands/auth.d.ts +36 -0
  7. package/dist/packages/cli/src/commands/auth.d.ts.map +1 -0
  8. package/dist/packages/cli/src/commands/auth.js +226 -0
  9. package/dist/packages/cli/src/commands/auth.js.map +1 -0
  10. package/dist/packages/cli/src/commands/config.d.ts +37 -0
  11. package/dist/packages/cli/src/commands/config.d.ts.map +1 -0
  12. package/dist/packages/cli/src/commands/config.js +196 -0
  13. package/dist/packages/cli/src/commands/config.js.map +1 -0
  14. package/dist/packages/cli/src/commands/init.d.ts +32 -0
  15. package/dist/packages/cli/src/commands/init.d.ts.map +1 -0
  16. package/dist/packages/cli/src/commands/init.js +171 -0
  17. package/dist/packages/cli/src/commands/init.js.map +1 -0
  18. package/dist/packages/cli/src/commands/scan.d.ts +40 -0
  19. package/dist/packages/cli/src/commands/scan.d.ts.map +1 -0
  20. package/dist/packages/cli/src/commands/scan.js +204 -0
  21. package/dist/packages/cli/src/commands/scan.js.map +1 -0
  22. package/dist/packages/cli/src/config/config-loader.d.ts +67 -0
  23. package/dist/packages/cli/src/config/config-loader.d.ts.map +1 -0
  24. package/dist/packages/cli/src/config/config-loader.js +146 -0
  25. package/dist/packages/cli/src/config/config-loader.js.map +1 -0
  26. package/dist/packages/cli/src/reporters/cli-reporter.d.ts +69 -0
  27. package/dist/packages/cli/src/reporters/cli-reporter.d.ts.map +1 -0
  28. package/dist/packages/cli/src/reporters/cli-reporter.js +244 -0
  29. package/dist/packages/cli/src/reporters/cli-reporter.js.map +1 -0
  30. package/dist/packages/cli/src/scanner/local-scanner.d.ts +92 -0
  31. package/dist/packages/cli/src/scanner/local-scanner.d.ts.map +1 -0
  32. package/dist/packages/cli/src/scanner/local-scanner.js +221 -0
  33. package/dist/packages/cli/src/scanner/local-scanner.js.map +1 -0
  34. package/dist/src/lib/analyzers/helpers/ai-code-detection-utils.d.ts +88 -0
  35. package/dist/src/lib/analyzers/helpers/ai-code-detection-utils.d.ts.map +1 -0
  36. package/dist/src/lib/analyzers/helpers/ai-code-detection-utils.js +371 -0
  37. package/dist/src/lib/analyzers/helpers/ai-code-detection-utils.js.map +1 -0
  38. package/dist/src/lib/analyzers/helpers/jsx-helpers.d.ts +63 -0
  39. package/dist/src/lib/analyzers/helpers/jsx-helpers.d.ts.map +1 -0
  40. package/dist/src/lib/analyzers/helpers/jsx-helpers.js +95 -0
  41. package/dist/src/lib/analyzers/helpers/jsx-helpers.js.map +1 -0
  42. package/dist/src/lib/analyzers/helpers/variable-tracker.d.ts +59 -0
  43. package/dist/src/lib/analyzers/helpers/variable-tracker.d.ts.map +1 -0
  44. package/dist/src/lib/analyzers/helpers/variable-tracker.js +231 -0
  45. package/dist/src/lib/analyzers/helpers/variable-tracker.js.map +1 -0
  46. package/dist/src/lib/analyzers/java/security-checks/access-control.d.ts +20 -0
  47. package/dist/src/lib/analyzers/java/security-checks/access-control.d.ts.map +1 -0
  48. package/dist/src/lib/analyzers/java/security-checks/access-control.js +129 -0
  49. package/dist/src/lib/analyzers/java/security-checks/access-control.js.map +1 -0
  50. package/dist/src/lib/analyzers/java/security-checks/ai-generated-code.d.ts +25 -0
  51. package/dist/src/lib/analyzers/java/security-checks/ai-generated-code.d.ts.map +1 -0
  52. package/dist/src/lib/analyzers/java/security-checks/ai-generated-code.js +221 -0
  53. package/dist/src/lib/analyzers/java/security-checks/ai-generated-code.js.map +1 -0
  54. package/dist/src/lib/analyzers/java/security-checks/code-quality.d.ts +18 -0
  55. package/dist/src/lib/analyzers/java/security-checks/code-quality.d.ts.map +1 -0
  56. package/dist/src/lib/analyzers/java/security-checks/code-quality.js +84 -0
  57. package/dist/src/lib/analyzers/java/security-checks/code-quality.js.map +1 -0
  58. package/dist/src/lib/analyzers/java/security-checks/crypto-validation.d.ts +18 -0
  59. package/dist/src/lib/analyzers/java/security-checks/crypto-validation.d.ts.map +1 -0
  60. package/dist/src/lib/analyzers/java/security-checks/crypto-validation.js +161 -0
  61. package/dist/src/lib/analyzers/java/security-checks/crypto-validation.js.map +1 -0
  62. package/dist/src/lib/analyzers/java/security-checks/deserialization-xxe.d.ts +20 -0
  63. package/dist/src/lib/analyzers/java/security-checks/deserialization-xxe.d.ts.map +1 -0
  64. package/dist/src/lib/analyzers/java/security-checks/deserialization-xxe.js +163 -0
  65. package/dist/src/lib/analyzers/java/security-checks/deserialization-xxe.js.map +1 -0
  66. package/dist/src/lib/analyzers/java/security-checks/enhanced-supply-chain.d.ts +24 -0
  67. package/dist/src/lib/analyzers/java/security-checks/enhanced-supply-chain.d.ts.map +1 -0
  68. package/dist/src/lib/analyzers/java/security-checks/enhanced-supply-chain.js +178 -0
  69. package/dist/src/lib/analyzers/java/security-checks/enhanced-supply-chain.js.map +1 -0
  70. package/dist/src/lib/analyzers/java/security-checks/exception-handling.d.ts +25 -0
  71. package/dist/src/lib/analyzers/java/security-checks/exception-handling.d.ts.map +1 -0
  72. package/dist/src/lib/analyzers/java/security-checks/exception-handling.js +179 -0
  73. package/dist/src/lib/analyzers/java/security-checks/exception-handling.js.map +1 -0
  74. package/dist/src/lib/analyzers/java/security-checks/file-operations.d.ts +17 -0
  75. package/dist/src/lib/analyzers/java/security-checks/file-operations.d.ts.map +1 -0
  76. package/dist/src/lib/analyzers/java/security-checks/file-operations.js +67 -0
  77. package/dist/src/lib/analyzers/java/security-checks/file-operations.js.map +1 -0
  78. package/dist/src/lib/analyzers/java/security-checks/framework-security.d.ts +25 -0
  79. package/dist/src/lib/analyzers/java/security-checks/framework-security.d.ts.map +1 -0
  80. package/dist/src/lib/analyzers/java/security-checks/framework-security.js +396 -0
  81. package/dist/src/lib/analyzers/java/security-checks/framework-security.js.map +1 -0
  82. package/dist/src/lib/analyzers/java/security-checks/hardcoded-credentials.d.ts +20 -0
  83. package/dist/src/lib/analyzers/java/security-checks/hardcoded-credentials.d.ts.map +1 -0
  84. package/dist/src/lib/analyzers/java/security-checks/hardcoded-credentials.js +123 -0
  85. package/dist/src/lib/analyzers/java/security-checks/hardcoded-credentials.js.map +1 -0
  86. package/dist/src/lib/analyzers/java/security-checks/injection-attacks.d.ts +23 -0
  87. package/dist/src/lib/analyzers/java/security-checks/injection-attacks.d.ts.map +1 -0
  88. package/dist/src/lib/analyzers/java/security-checks/injection-attacks.js +201 -0
  89. package/dist/src/lib/analyzers/java/security-checks/injection-attacks.js.map +1 -0
  90. package/dist/src/lib/analyzers/java/security-checks/insecure-design.d.ts +20 -0
  91. package/dist/src/lib/analyzers/java/security-checks/insecure-design.d.ts.map +1 -0
  92. package/dist/src/lib/analyzers/java/security-checks/insecure-design.js +121 -0
  93. package/dist/src/lib/analyzers/java/security-checks/insecure-design.js.map +1 -0
  94. package/dist/src/lib/analyzers/java/security-checks/logging-failures.d.ts +20 -0
  95. package/dist/src/lib/analyzers/java/security-checks/logging-failures.d.ts.map +1 -0
  96. package/dist/src/lib/analyzers/java/security-checks/logging-failures.js +89 -0
  97. package/dist/src/lib/analyzers/java/security-checks/logging-failures.js.map +1 -0
  98. package/dist/src/lib/analyzers/java/security-checks/security-misconfiguration.d.ts +26 -0
  99. package/dist/src/lib/analyzers/java/security-checks/security-misconfiguration.d.ts.map +1 -0
  100. package/dist/src/lib/analyzers/java/security-checks/security-misconfiguration.js +309 -0
  101. package/dist/src/lib/analyzers/java/security-checks/security-misconfiguration.js.map +1 -0
  102. package/dist/src/lib/analyzers/java/security-checks/unsafe-patterns.d.ts +18 -0
  103. package/dist/src/lib/analyzers/java/security-checks/unsafe-patterns.d.ts.map +1 -0
  104. package/dist/src/lib/analyzers/java/security-checks/unsafe-patterns.js +114 -0
  105. package/dist/src/lib/analyzers/java/security-checks/unsafe-patterns.js.map +1 -0
  106. package/dist/src/lib/analyzers/java/utils/createVulnerability.d.ts +58 -0
  107. package/dist/src/lib/analyzers/java/utils/createVulnerability.d.ts.map +1 -0
  108. package/dist/src/lib/analyzers/java/utils/createVulnerability.js +71 -0
  109. package/dist/src/lib/analyzers/java/utils/createVulnerability.js.map +1 -0
  110. package/dist/src/lib/analyzers/java-analyzer.d.ts +209 -0
  111. package/dist/src/lib/analyzers/java-analyzer.d.ts.map +1 -0
  112. package/dist/src/lib/analyzers/java-analyzer.js +1720 -0
  113. package/dist/src/lib/analyzers/java-analyzer.js.map +1 -0
  114. package/dist/src/lib/analyzers/javascript/quality-checks/ai-hallucinations.d.ts +27 -0
  115. package/dist/src/lib/analyzers/javascript/quality-checks/ai-hallucinations.d.ts.map +1 -0
  116. package/dist/src/lib/analyzers/javascript/quality-checks/ai-hallucinations.js +123 -0
  117. package/dist/src/lib/analyzers/javascript/quality-checks/ai-hallucinations.js.map +1 -0
  118. package/dist/src/lib/analyzers/javascript/quality-checks/async-patterns.d.ts +44 -0
  119. package/dist/src/lib/analyzers/javascript/quality-checks/async-patterns.d.ts.map +1 -0
  120. package/dist/src/lib/analyzers/javascript/quality-checks/async-patterns.js +224 -0
  121. package/dist/src/lib/analyzers/javascript/quality-checks/async-patterns.js.map +1 -0
  122. package/dist/src/lib/analyzers/javascript/quality-checks/code-patterns.d.ts +50 -0
  123. package/dist/src/lib/analyzers/javascript/quality-checks/code-patterns.d.ts.map +1 -0
  124. package/dist/src/lib/analyzers/javascript/quality-checks/code-patterns.js +284 -0
  125. package/dist/src/lib/analyzers/javascript/quality-checks/code-patterns.js.map +1 -0
  126. package/dist/src/lib/analyzers/javascript/quality-checks/comparison-issues.d.ts +27 -0
  127. package/dist/src/lib/analyzers/javascript/quality-checks/comparison-issues.d.ts.map +1 -0
  128. package/dist/src/lib/analyzers/javascript/quality-checks/comparison-issues.js +86 -0
  129. package/dist/src/lib/analyzers/javascript/quality-checks/comparison-issues.js.map +1 -0
  130. package/dist/src/lib/analyzers/javascript/quality-checks/reference-errors.d.ts +32 -0
  131. package/dist/src/lib/analyzers/javascript/quality-checks/reference-errors.d.ts.map +1 -0
  132. package/dist/src/lib/analyzers/javascript/quality-checks/reference-errors.js +44 -0
  133. package/dist/src/lib/analyzers/javascript/quality-checks/reference-errors.js.map +1 -0
  134. package/dist/src/lib/analyzers/javascript/security-checks/access-control.d.ts +22 -0
  135. package/dist/src/lib/analyzers/javascript/security-checks/access-control.d.ts.map +1 -0
  136. package/dist/src/lib/analyzers/javascript/security-checks/access-control.js +168 -0
  137. package/dist/src/lib/analyzers/javascript/security-checks/access-control.js.map +1 -0
  138. package/dist/src/lib/analyzers/javascript/security-checks/ai-generated-code.d.ts +25 -0
  139. package/dist/src/lib/analyzers/javascript/security-checks/ai-generated-code.d.ts.map +1 -0
  140. package/dist/src/lib/analyzers/javascript/security-checks/ai-generated-code.js +232 -0
  141. package/dist/src/lib/analyzers/javascript/security-checks/ai-generated-code.js.map +1 -0
  142. package/dist/src/lib/analyzers/javascript/security-checks/authentication-failures.d.ts +27 -0
  143. package/dist/src/lib/analyzers/javascript/security-checks/authentication-failures.d.ts.map +1 -0
  144. package/dist/src/lib/analyzers/javascript/security-checks/authentication-failures.js +222 -0
  145. package/dist/src/lib/analyzers/javascript/security-checks/authentication-failures.js.map +1 -0
  146. package/dist/src/lib/analyzers/javascript/security-checks/credential-crypto.d.ts +28 -0
  147. package/dist/src/lib/analyzers/javascript/security-checks/credential-crypto.d.ts.map +1 -0
  148. package/dist/src/lib/analyzers/javascript/security-checks/credential-crypto.js +176 -0
  149. package/dist/src/lib/analyzers/javascript/security-checks/credential-crypto.js.map +1 -0
  150. package/dist/src/lib/analyzers/javascript/security-checks/enhanced-supply-chain.d.ts +23 -0
  151. package/dist/src/lib/analyzers/javascript/security-checks/enhanced-supply-chain.d.ts.map +1 -0
  152. package/dist/src/lib/analyzers/javascript/security-checks/enhanced-supply-chain.js +113 -0
  153. package/dist/src/lib/analyzers/javascript/security-checks/enhanced-supply-chain.js.map +1 -0
  154. package/dist/src/lib/analyzers/javascript/security-checks/exception-handling.d.ts +28 -0
  155. package/dist/src/lib/analyzers/javascript/security-checks/exception-handling.d.ts.map +1 -0
  156. package/dist/src/lib/analyzers/javascript/security-checks/exception-handling.js +227 -0
  157. package/dist/src/lib/analyzers/javascript/security-checks/exception-handling.js.map +1 -0
  158. package/dist/src/lib/analyzers/javascript/security-checks/injection-attacks.d.ts +32 -0
  159. package/dist/src/lib/analyzers/javascript/security-checks/injection-attacks.d.ts.map +1 -0
  160. package/dist/src/lib/analyzers/javascript/security-checks/injection-attacks.js +260 -0
  161. package/dist/src/lib/analyzers/javascript/security-checks/injection-attacks.js.map +1 -0
  162. package/dist/src/lib/analyzers/javascript/security-checks/insecure-design.d.ts +26 -0
  163. package/dist/src/lib/analyzers/javascript/security-checks/insecure-design.d.ts.map +1 -0
  164. package/dist/src/lib/analyzers/javascript/security-checks/insecure-design.js +164 -0
  165. package/dist/src/lib/analyzers/javascript/security-checks/insecure-design.js.map +1 -0
  166. package/dist/src/lib/analyzers/javascript/security-checks/security-misconfiguration.d.ts +26 -0
  167. package/dist/src/lib/analyzers/javascript/security-checks/security-misconfiguration.d.ts.map +1 -0
  168. package/dist/src/lib/analyzers/javascript/security-checks/security-misconfiguration.js +775 -0
  169. package/dist/src/lib/analyzers/javascript/security-checks/security-misconfiguration.js.map +1 -0
  170. package/dist/src/lib/analyzers/javascript/security-checks/software-integrity.d.ts +25 -0
  171. package/dist/src/lib/analyzers/javascript/security-checks/software-integrity.d.ts.map +1 -0
  172. package/dist/src/lib/analyzers/javascript/security-checks/software-integrity.js +168 -0
  173. package/dist/src/lib/analyzers/javascript/security-checks/software-integrity.js.map +1 -0
  174. package/dist/src/lib/analyzers/javascript/security-checks/storage-security.d.ts +27 -0
  175. package/dist/src/lib/analyzers/javascript/security-checks/storage-security.d.ts.map +1 -0
  176. package/dist/src/lib/analyzers/javascript/security-checks/storage-security.js +108 -0
  177. package/dist/src/lib/analyzers/javascript/security-checks/storage-security.js.map +1 -0
  178. package/dist/src/lib/analyzers/javascript/security-checks/xss-dom-security.d.ts +28 -0
  179. package/dist/src/lib/analyzers/javascript/security-checks/xss-dom-security.d.ts.map +1 -0
  180. package/dist/src/lib/analyzers/javascript/security-checks/xss-dom-security.js +143 -0
  181. package/dist/src/lib/analyzers/javascript/security-checks/xss-dom-security.js.map +1 -0
  182. package/dist/src/lib/analyzers/javascript/syntax/syntax-helpers.d.ts +53 -0
  183. package/dist/src/lib/analyzers/javascript/syntax/syntax-helpers.d.ts.map +1 -0
  184. package/dist/src/lib/analyzers/javascript/syntax/syntax-helpers.js +144 -0
  185. package/dist/src/lib/analyzers/javascript/syntax/syntax-helpers.js.map +1 -0
  186. package/dist/src/lib/analyzers/javascript/syntax/typescript-syntax.d.ts +72 -0
  187. package/dist/src/lib/analyzers/javascript/syntax/typescript-syntax.d.ts.map +1 -0
  188. package/dist/src/lib/analyzers/javascript/syntax/typescript-syntax.js +314 -0
  189. package/dist/src/lib/analyzers/javascript/syntax/typescript-syntax.js.map +1 -0
  190. package/dist/src/lib/analyzers/javascript/utils/createVulnerability.d.ts +58 -0
  191. package/dist/src/lib/analyzers/javascript/utils/createVulnerability.d.ts.map +1 -0
  192. package/dist/src/lib/analyzers/javascript/utils/createVulnerability.js +71 -0
  193. package/dist/src/lib/analyzers/javascript/utils/createVulnerability.js.map +1 -0
  194. package/dist/src/lib/analyzers/javascript/utils/metrics-calculator.d.ts +36 -0
  195. package/dist/src/lib/analyzers/javascript/utils/metrics-calculator.d.ts.map +1 -0
  196. package/dist/src/lib/analyzers/javascript/utils/metrics-calculator.js +70 -0
  197. package/dist/src/lib/analyzers/javascript/utils/metrics-calculator.js.map +1 -0
  198. package/dist/src/lib/analyzers/javascript/utils/performance-analyzer.d.ts +29 -0
  199. package/dist/src/lib/analyzers/javascript/utils/performance-analyzer.d.ts.map +1 -0
  200. package/dist/src/lib/analyzers/javascript/utils/performance-analyzer.js +55 -0
  201. package/dist/src/lib/analyzers/javascript/utils/performance-analyzer.js.map +1 -0
  202. package/dist/src/lib/analyzers/javascript-analyzer.d.ts +95 -0
  203. package/dist/src/lib/analyzers/javascript-analyzer.d.ts.map +1 -0
  204. package/dist/src/lib/analyzers/javascript-analyzer.js +2141 -0
  205. package/dist/src/lib/analyzers/javascript-analyzer.js.map +1 -0
  206. package/dist/src/lib/analyzers/python/security-checks/access-control.d.ts +21 -0
  207. package/dist/src/lib/analyzers/python/security-checks/access-control.d.ts.map +1 -0
  208. package/dist/src/lib/analyzers/python/security-checks/access-control.js +305 -0
  209. package/dist/src/lib/analyzers/python/security-checks/access-control.js.map +1 -0
  210. package/dist/src/lib/analyzers/python/security-checks/ai-generated-code.d.ts +25 -0
  211. package/dist/src/lib/analyzers/python/security-checks/ai-generated-code.d.ts.map +1 -0
  212. package/dist/src/lib/analyzers/python/security-checks/ai-generated-code.js +242 -0
  213. package/dist/src/lib/analyzers/python/security-checks/ai-generated-code.js.map +1 -0
  214. package/dist/src/lib/analyzers/python/security-checks/authentication-flaws.d.ts +24 -0
  215. package/dist/src/lib/analyzers/python/security-checks/authentication-flaws.d.ts.map +1 -0
  216. package/dist/src/lib/analyzers/python/security-checks/authentication-flaws.js +207 -0
  217. package/dist/src/lib/analyzers/python/security-checks/authentication-flaws.js.map +1 -0
  218. package/dist/src/lib/analyzers/python/security-checks/code-quality.d.ts +27 -0
  219. package/dist/src/lib/analyzers/python/security-checks/code-quality.d.ts.map +1 -0
  220. package/dist/src/lib/analyzers/python/security-checks/code-quality.js +206 -0
  221. package/dist/src/lib/analyzers/python/security-checks/code-quality.js.map +1 -0
  222. package/dist/src/lib/analyzers/python/security-checks/credentials-crypto.d.ts +24 -0
  223. package/dist/src/lib/analyzers/python/security-checks/credentials-crypto.d.ts.map +1 -0
  224. package/dist/src/lib/analyzers/python/security-checks/credentials-crypto.js +113 -0
  225. package/dist/src/lib/analyzers/python/security-checks/credentials-crypto.js.map +1 -0
  226. package/dist/src/lib/analyzers/python/security-checks/crypto-failures.d.ts +20 -0
  227. package/dist/src/lib/analyzers/python/security-checks/crypto-failures.d.ts.map +1 -0
  228. package/dist/src/lib/analyzers/python/security-checks/crypto-failures.js +129 -0
  229. package/dist/src/lib/analyzers/python/security-checks/crypto-failures.js.map +1 -0
  230. package/dist/src/lib/analyzers/python/security-checks/data-integrity.d.ts +19 -0
  231. package/dist/src/lib/analyzers/python/security-checks/data-integrity.d.ts.map +1 -0
  232. package/dist/src/lib/analyzers/python/security-checks/data-integrity.js +90 -0
  233. package/dist/src/lib/analyzers/python/security-checks/data-integrity.js.map +1 -0
  234. package/dist/src/lib/analyzers/python/security-checks/deserialization.d.ts +20 -0
  235. package/dist/src/lib/analyzers/python/security-checks/deserialization.d.ts.map +1 -0
  236. package/dist/src/lib/analyzers/python/security-checks/deserialization.js +68 -0
  237. package/dist/src/lib/analyzers/python/security-checks/deserialization.js.map +1 -0
  238. package/dist/src/lib/analyzers/python/security-checks/django-security.d.ts +25 -0
  239. package/dist/src/lib/analyzers/python/security-checks/django-security.d.ts.map +1 -0
  240. package/dist/src/lib/analyzers/python/security-checks/django-security.js +180 -0
  241. package/dist/src/lib/analyzers/python/security-checks/django-security.js.map +1 -0
  242. package/dist/src/lib/analyzers/python/security-checks/enhanced-supply-chain.d.ts +23 -0
  243. package/dist/src/lib/analyzers/python/security-checks/enhanced-supply-chain.d.ts.map +1 -0
  244. package/dist/src/lib/analyzers/python/security-checks/enhanced-supply-chain.js +127 -0
  245. package/dist/src/lib/analyzers/python/security-checks/enhanced-supply-chain.js.map +1 -0
  246. package/dist/src/lib/analyzers/python/security-checks/exception-handling.d.ts +23 -0
  247. package/dist/src/lib/analyzers/python/security-checks/exception-handling.d.ts.map +1 -0
  248. package/dist/src/lib/analyzers/python/security-checks/exception-handling.js +120 -0
  249. package/dist/src/lib/analyzers/python/security-checks/exception-handling.js.map +1 -0
  250. package/dist/src/lib/analyzers/python/security-checks/flask-security.d.ts +24 -0
  251. package/dist/src/lib/analyzers/python/security-checks/flask-security.d.ts.map +1 -0
  252. package/dist/src/lib/analyzers/python/security-checks/flask-security.js +143 -0
  253. package/dist/src/lib/analyzers/python/security-checks/flask-security.js.map +1 -0
  254. package/dist/src/lib/analyzers/python/security-checks/injection-attacks.d.ts +28 -0
  255. package/dist/src/lib/analyzers/python/security-checks/injection-attacks.d.ts.map +1 -0
  256. package/dist/src/lib/analyzers/python/security-checks/injection-attacks.js +174 -0
  257. package/dist/src/lib/analyzers/python/security-checks/injection-attacks.js.map +1 -0
  258. package/dist/src/lib/analyzers/python/security-checks/insecure-design.d.ts +20 -0
  259. package/dist/src/lib/analyzers/python/security-checks/insecure-design.d.ts.map +1 -0
  260. package/dist/src/lib/analyzers/python/security-checks/insecure-design.js +160 -0
  261. package/dist/src/lib/analyzers/python/security-checks/insecure-design.js.map +1 -0
  262. package/dist/src/lib/analyzers/python/security-checks/logging-failures.d.ts +20 -0
  263. package/dist/src/lib/analyzers/python/security-checks/logging-failures.d.ts.map +1 -0
  264. package/dist/src/lib/analyzers/python/security-checks/logging-failures.js +121 -0
  265. package/dist/src/lib/analyzers/python/security-checks/logging-failures.js.map +1 -0
  266. package/dist/src/lib/analyzers/python/security-checks/nosql-injection.d.ts +26 -0
  267. package/dist/src/lib/analyzers/python/security-checks/nosql-injection.d.ts.map +1 -0
  268. package/dist/src/lib/analyzers/python/security-checks/nosql-injection.js +248 -0
  269. package/dist/src/lib/analyzers/python/security-checks/nosql-injection.js.map +1 -0
  270. package/dist/src/lib/analyzers/python/security-checks/security-misconfiguration.d.ts +26 -0
  271. package/dist/src/lib/analyzers/python/security-checks/security-misconfiguration.d.ts.map +1 -0
  272. package/dist/src/lib/analyzers/python/security-checks/security-misconfiguration.js +375 -0
  273. package/dist/src/lib/analyzers/python/security-checks/security-misconfiguration.js.map +1 -0
  274. package/dist/src/lib/analyzers/python/security-checks/ssrf-detection.d.ts +26 -0
  275. package/dist/src/lib/analyzers/python/security-checks/ssrf-detection.d.ts.map +1 -0
  276. package/dist/src/lib/analyzers/python/security-checks/ssrf-detection.js +160 -0
  277. package/dist/src/lib/analyzers/python/security-checks/ssrf-detection.js.map +1 -0
  278. package/dist/src/lib/analyzers/python/security-checks/web-security.d.ts +23 -0
  279. package/dist/src/lib/analyzers/python/security-checks/web-security.d.ts.map +1 -0
  280. package/dist/src/lib/analyzers/python/security-checks/web-security.js +117 -0
  281. package/dist/src/lib/analyzers/python/security-checks/web-security.js.map +1 -0
  282. package/dist/src/lib/analyzers/python/utils/createVulnerability.d.ts +58 -0
  283. package/dist/src/lib/analyzers/python/utils/createVulnerability.d.ts.map +1 -0
  284. package/dist/src/lib/analyzers/python/utils/createVulnerability.js +71 -0
  285. package/dist/src/lib/analyzers/python/utils/createVulnerability.js.map +1 -0
  286. package/dist/src/lib/analyzers/python-analyzer.d.ts +111 -0
  287. package/dist/src/lib/analyzers/python-analyzer.d.ts.map +1 -0
  288. package/dist/src/lib/analyzers/python-analyzer.js +1600 -0
  289. package/dist/src/lib/analyzers/python-analyzer.js.map +1 -0
  290. package/dist/src/lib/analyzers/secrets/patterns/api-keys/ai-providers.d.ts +14 -0
  291. package/dist/src/lib/analyzers/secrets/patterns/api-keys/ai-providers.d.ts.map +1 -0
  292. package/dist/src/lib/analyzers/secrets/patterns/api-keys/ai-providers.js +47 -0
  293. package/dist/src/lib/analyzers/secrets/patterns/api-keys/ai-providers.js.map +1 -0
  294. package/dist/src/lib/analyzers/secrets/patterns/api-keys/aws.d.ts +13 -0
  295. package/dist/src/lib/analyzers/secrets/patterns/api-keys/aws.d.ts.map +1 -0
  296. package/dist/src/lib/analyzers/secrets/patterns/api-keys/aws.js +36 -0
  297. package/dist/src/lib/analyzers/secrets/patterns/api-keys/aws.js.map +1 -0
  298. package/dist/src/lib/analyzers/secrets/patterns/api-keys/cloud-providers.d.ts +15 -0
  299. package/dist/src/lib/analyzers/secrets/patterns/api-keys/cloud-providers.d.ts.map +1 -0
  300. package/dist/src/lib/analyzers/secrets/patterns/api-keys/cloud-providers.js +68 -0
  301. package/dist/src/lib/analyzers/secrets/patterns/api-keys/cloud-providers.js.map +1 -0
  302. package/dist/src/lib/analyzers/secrets/patterns/api-keys/communication.d.ts +15 -0
  303. package/dist/src/lib/analyzers/secrets/patterns/api-keys/communication.d.ts.map +1 -0
  304. package/dist/src/lib/analyzers/secrets/patterns/api-keys/communication.js +68 -0
  305. package/dist/src/lib/analyzers/secrets/patterns/api-keys/communication.js.map +1 -0
  306. package/dist/src/lib/analyzers/secrets/patterns/api-keys/generic.d.ts +12 -0
  307. package/dist/src/lib/analyzers/secrets/patterns/api-keys/generic.d.ts.map +1 -0
  308. package/dist/src/lib/analyzers/secrets/patterns/api-keys/generic.js +45 -0
  309. package/dist/src/lib/analyzers/secrets/patterns/api-keys/generic.js.map +1 -0
  310. package/dist/src/lib/analyzers/secrets/patterns/api-keys/github.d.ts +14 -0
  311. package/dist/src/lib/analyzers/secrets/patterns/api-keys/github.d.ts.map +1 -0
  312. package/dist/src/lib/analyzers/secrets/patterns/api-keys/github.js +47 -0
  313. package/dist/src/lib/analyzers/secrets/patterns/api-keys/github.js.map +1 -0
  314. package/dist/src/lib/analyzers/secrets/patterns/api-keys/stripe.d.ts +13 -0
  315. package/dist/src/lib/analyzers/secrets/patterns/api-keys/stripe.d.ts.map +1 -0
  316. package/dist/src/lib/analyzers/secrets/patterns/api-keys/stripe.js +36 -0
  317. package/dist/src/lib/analyzers/secrets/patterns/api-keys/stripe.js.map +1 -0
  318. package/dist/src/lib/analyzers/secrets/patterns/api-keys.d.ts +15 -0
  319. package/dist/src/lib/analyzers/secrets/patterns/api-keys.d.ts.map +1 -0
  320. package/dist/src/lib/analyzers/secrets/patterns/api-keys.js +32 -0
  321. package/dist/src/lib/analyzers/secrets/patterns/api-keys.js.map +1 -0
  322. package/dist/src/lib/analyzers/secrets/patterns/credentials.d.ts +15 -0
  323. package/dist/src/lib/analyzers/secrets/patterns/credentials.d.ts.map +1 -0
  324. package/dist/src/lib/analyzers/secrets/patterns/credentials.js +68 -0
  325. package/dist/src/lib/analyzers/secrets/patterns/credentials.js.map +1 -0
  326. package/dist/src/lib/analyzers/secrets/patterns/private-keys.d.ts +16 -0
  327. package/dist/src/lib/analyzers/secrets/patterns/private-keys.d.ts.map +1 -0
  328. package/dist/src/lib/analyzers/secrets/patterns/private-keys.js +79 -0
  329. package/dist/src/lib/analyzers/secrets/patterns/private-keys.js.map +1 -0
  330. package/dist/src/lib/analyzers/secrets/patterns/tokens.d.ts +15 -0
  331. package/dist/src/lib/analyzers/secrets/patterns/tokens.d.ts.map +1 -0
  332. package/dist/src/lib/analyzers/secrets/patterns/tokens.js +58 -0
  333. package/dist/src/lib/analyzers/secrets/patterns/tokens.js.map +1 -0
  334. package/dist/src/lib/analyzers/secrets/secrets-analyzer.d.ts +88 -0
  335. package/dist/src/lib/analyzers/secrets/secrets-analyzer.d.ts.map +1 -0
  336. package/dist/src/lib/analyzers/secrets/secrets-analyzer.js +162 -0
  337. package/dist/src/lib/analyzers/secrets/secrets-analyzer.js.map +1 -0
  338. package/dist/src/lib/analyzers/secrets/validators/context-checker.d.ts +56 -0
  339. package/dist/src/lib/analyzers/secrets/validators/context-checker.d.ts.map +1 -0
  340. package/dist/src/lib/analyzers/secrets/validators/context-checker.js +199 -0
  341. package/dist/src/lib/analyzers/secrets/validators/context-checker.js.map +1 -0
  342. package/dist/src/lib/analyzers/secrets/validators/entropy-checker.d.ts +56 -0
  343. package/dist/src/lib/analyzers/secrets/validators/entropy-checker.d.ts.map +1 -0
  344. package/dist/src/lib/analyzers/secrets/validators/entropy-checker.js +102 -0
  345. package/dist/src/lib/analyzers/secrets/validators/entropy-checker.js.map +1 -0
  346. package/dist/src/lib/analyzers/security-checks/es6-security.d.ts +38 -0
  347. package/dist/src/lib/analyzers/security-checks/es6-security.d.ts.map +1 -0
  348. package/dist/src/lib/analyzers/security-checks/es6-security.js +125 -0
  349. package/dist/src/lib/analyzers/security-checks/es6-security.js.map +1 -0
  350. package/dist/src/lib/analyzers/security-checks/python-async-security.d.ts +46 -0
  351. package/dist/src/lib/analyzers/security-checks/python-async-security.d.ts.map +1 -0
  352. package/dist/src/lib/analyzers/security-checks/python-async-security.js +92 -0
  353. package/dist/src/lib/analyzers/security-checks/python-async-security.js.map +1 -0
  354. package/dist/src/lib/analyzers/security-checks/react-security.d.ts +49 -0
  355. package/dist/src/lib/analyzers/security-checks/react-security.d.ts.map +1 -0
  356. package/dist/src/lib/analyzers/security-checks/react-security.js +125 -0
  357. package/dist/src/lib/analyzers/security-checks/react-security.js.map +1 -0
  358. package/dist/src/lib/analyzers/types.d.ts +92 -0
  359. package/dist/src/lib/analyzers/types.d.ts.map +1 -0
  360. package/dist/src/lib/analyzers/types.js +3 -0
  361. package/dist/src/lib/analyzers/types.js.map +1 -0
  362. package/dist/src/lib/analyzers/typescript/security-checks/access-control.d.ts +19 -0
  363. package/dist/src/lib/analyzers/typescript/security-checks/access-control.d.ts.map +1 -0
  364. package/dist/src/lib/analyzers/typescript/security-checks/access-control.js +210 -0
  365. package/dist/src/lib/analyzers/typescript/security-checks/access-control.js.map +1 -0
  366. package/dist/src/lib/analyzers/typescript/security-checks/ai-generated-code.d.ts +25 -0
  367. package/dist/src/lib/analyzers/typescript/security-checks/ai-generated-code.d.ts.map +1 -0
  368. package/dist/src/lib/analyzers/typescript/security-checks/ai-generated-code.js +242 -0
  369. package/dist/src/lib/analyzers/typescript/security-checks/ai-generated-code.js.map +1 -0
  370. package/dist/src/lib/analyzers/typescript/security-checks/authentication.d.ts +28 -0
  371. package/dist/src/lib/analyzers/typescript/security-checks/authentication.d.ts.map +1 -0
  372. package/dist/src/lib/analyzers/typescript/security-checks/authentication.js +357 -0
  373. package/dist/src/lib/analyzers/typescript/security-checks/authentication.js.map +1 -0
  374. package/dist/src/lib/analyzers/typescript/security-checks/code-injection.d.ts +26 -0
  375. package/dist/src/lib/analyzers/typescript/security-checks/code-injection.d.ts.map +1 -0
  376. package/dist/src/lib/analyzers/typescript/security-checks/code-injection.js +380 -0
  377. package/dist/src/lib/analyzers/typescript/security-checks/code-injection.js.map +1 -0
  378. package/dist/src/lib/analyzers/typescript/security-checks/code-quality.d.ts +23 -0
  379. package/dist/src/lib/analyzers/typescript/security-checks/code-quality.d.ts.map +1 -0
  380. package/dist/src/lib/analyzers/typescript/security-checks/code-quality.js +109 -0
  381. package/dist/src/lib/analyzers/typescript/security-checks/code-quality.js.map +1 -0
  382. package/dist/src/lib/analyzers/typescript/security-checks/credentials-crypto.d.ts +21 -0
  383. package/dist/src/lib/analyzers/typescript/security-checks/credentials-crypto.d.ts.map +1 -0
  384. package/dist/src/lib/analyzers/typescript/security-checks/credentials-crypto.js +153 -0
  385. package/dist/src/lib/analyzers/typescript/security-checks/credentials-crypto.js.map +1 -0
  386. package/dist/src/lib/analyzers/typescript/security-checks/enhanced-supply-chain.d.ts +23 -0
  387. package/dist/src/lib/analyzers/typescript/security-checks/enhanced-supply-chain.d.ts.map +1 -0
  388. package/dist/src/lib/analyzers/typescript/security-checks/enhanced-supply-chain.js +146 -0
  389. package/dist/src/lib/analyzers/typescript/security-checks/enhanced-supply-chain.js.map +1 -0
  390. package/dist/src/lib/analyzers/typescript/security-checks/exception-handling.d.ts +23 -0
  391. package/dist/src/lib/analyzers/typescript/security-checks/exception-handling.d.ts.map +1 -0
  392. package/dist/src/lib/analyzers/typescript/security-checks/exception-handling.js +187 -0
  393. package/dist/src/lib/analyzers/typescript/security-checks/exception-handling.js.map +1 -0
  394. package/dist/src/lib/analyzers/typescript/security-checks/information-disclosure.d.ts +19 -0
  395. package/dist/src/lib/analyzers/typescript/security-checks/information-disclosure.d.ts.map +1 -0
  396. package/dist/src/lib/analyzers/typescript/security-checks/information-disclosure.js +97 -0
  397. package/dist/src/lib/analyzers/typescript/security-checks/information-disclosure.js.map +1 -0
  398. package/dist/src/lib/analyzers/typescript/security-checks/injection-attacks.d.ts +29 -0
  399. package/dist/src/lib/analyzers/typescript/security-checks/injection-attacks.d.ts.map +1 -0
  400. package/dist/src/lib/analyzers/typescript/security-checks/injection-attacks.js +319 -0
  401. package/dist/src/lib/analyzers/typescript/security-checks/injection-attacks.js.map +1 -0
  402. package/dist/src/lib/analyzers/typescript/security-checks/logging-failures.d.ts +21 -0
  403. package/dist/src/lib/analyzers/typescript/security-checks/logging-failures.d.ts.map +1 -0
  404. package/dist/src/lib/analyzers/typescript/security-checks/logging-failures.js +121 -0
  405. package/dist/src/lib/analyzers/typescript/security-checks/logging-failures.js.map +1 -0
  406. package/dist/src/lib/analyzers/typescript/security-checks/security-misconfiguration.d.ts +27 -0
  407. package/dist/src/lib/analyzers/typescript/security-checks/security-misconfiguration.d.ts.map +1 -0
  408. package/dist/src/lib/analyzers/typescript/security-checks/security-misconfiguration.js +213 -0
  409. package/dist/src/lib/analyzers/typescript/security-checks/security-misconfiguration.js.map +1 -0
  410. package/dist/src/lib/analyzers/typescript/security-checks/type-security.d.ts +19 -0
  411. package/dist/src/lib/analyzers/typescript/security-checks/type-security.d.ts.map +1 -0
  412. package/dist/src/lib/analyzers/typescript/security-checks/type-security.js +59 -0
  413. package/dist/src/lib/analyzers/typescript/security-checks/type-security.js.map +1 -0
  414. package/dist/src/lib/analyzers/typescript/type-checker.d.ts +17 -0
  415. package/dist/src/lib/analyzers/typescript/type-checker.d.ts.map +1 -0
  416. package/dist/src/lib/analyzers/typescript/type-checker.js +515 -0
  417. package/dist/src/lib/analyzers/typescript/type-checker.js.map +1 -0
  418. package/dist/src/lib/analyzers/typescript/utils/createVulnerability.d.ts +58 -0
  419. package/dist/src/lib/analyzers/typescript/utils/createVulnerability.d.ts.map +1 -0
  420. package/dist/src/lib/analyzers/typescript/utils/createVulnerability.js +71 -0
  421. package/dist/src/lib/analyzers/typescript/utils/createVulnerability.js.map +1 -0
  422. package/dist/src/lib/analyzers/typescript-analyzer.d.ts +116 -0
  423. package/dist/src/lib/analyzers/typescript-analyzer.d.ts.map +1 -0
  424. package/dist/src/lib/analyzers/typescript-analyzer.js +1660 -0
  425. package/dist/src/lib/analyzers/typescript-analyzer.js.map +1 -0
  426. package/dist/src/lib/security/compliance-mapping.d.ts +29 -0
  427. package/dist/src/lib/security/compliance-mapping.d.ts.map +1 -0
  428. package/dist/src/lib/security/compliance-mapping.js +1342 -0
  429. package/dist/src/lib/security/compliance-mapping.js.map +1 -0
  430. package/dist/src/lib/security/severity-scoring.d.ts +47 -0
  431. package/dist/src/lib/security/severity-scoring.d.ts.map +1 -0
  432. package/dist/src/lib/security/severity-scoring.js +965 -0
  433. package/dist/src/lib/security/severity-scoring.js.map +1 -0
  434. package/dist/src/lib/standards/references.d.ts +16 -0
  435. package/dist/src/lib/standards/references.d.ts.map +1 -0
  436. package/dist/src/lib/standards/references.js +1161 -0
  437. package/dist/src/lib/standards/references.js.map +1 -0
  438. package/dist/src/lib/types/index.d.ts +167 -0
  439. package/dist/src/lib/types/index.d.ts.map +1 -0
  440. package/dist/src/lib/types/index.js +3 -0
  441. package/dist/src/lib/types/index.js.map +1 -0
  442. package/dist/src/lib/utils/code-cleaner.d.ts +59 -0
  443. package/dist/src/lib/utils/code-cleaner.d.ts.map +1 -0
  444. package/dist/src/lib/utils/code-cleaner.js +283 -0
  445. package/dist/src/lib/utils/code-cleaner.js.map +1 -0
  446. package/package.json +51 -0
  447. package/src/commands/auth.ts +308 -0
  448. package/src/commands/config.ts +226 -0
  449. package/src/commands/init.ts +202 -0
  450. package/src/commands/scan.ts +238 -0
  451. package/src/config/config-loader.ts +175 -0
  452. package/src/reporters/cli-reporter.ts +282 -0
  453. package/src/scanner/local-scanner.ts +250 -0
  454. package/tsconfig.json +24 -0
  455. package/tsconfig.tsbuildinfo +1 -0
package/src/reporters/cli-reporter.ts ADDED
@@ -0,0 +1,282 @@
1
+ /**
2
+ * CLI Reporter - Terminal Output Formatting
3
+ *
4
+ * This module provides beautiful, colored terminal output for scan results.
5
+ * It uses chalk for colors, ora for spinners, and cli-table3 for tables.
6
+ *
7
+ * Output Features:
8
+ * - Color-coded severity levels
9
+ * - Progress spinners during scanning
10
+ * - Summary tables with statistics
11
+ * - Clickable file paths (VS Code terminal support)
12
+ * - JSON output mode for CI/CD
13
+ *
14
+ * @module packages/cli/src/reporters/cli-reporter
15
+ */
16
+
17
+ import chalk from 'chalk';
18
+ import Table from 'cli-table3';
19
+ import type { FileScanResult } from '../scanner/local-scanner';
20
+ import type { SecurityVulnerability } from '../../../../src/lib/analyzers/types';
21
+
22
+ /**
23
+ * Get severity color for terminal output
24
+ */
25
+ export function getSeverityColor(severity: string): (text: string) => string {
26
+ switch (severity.toUpperCase()) {
27
+ case 'CRITICAL':
28
+ return chalk.red.bold;
29
+ case 'HIGH':
30
+ return chalk.red;
31
+ case 'MEDIUM':
32
+ return chalk.yellow;
33
+ case 'LOW':
34
+ return chalk.blue;
35
+ default:
36
+ return chalk.gray;
37
+ }
38
+ }
39
+
40
+ /**
41
+ * Get severity symbol/emoji
42
+ */
43
+ export function getSeveritySymbol(severity: string): string {
44
+ switch (severity.toUpperCase()) {
45
+ case 'CRITICAL':
46
+ return '✖';
47
+ case 'HIGH':
48
+ return '⚠';
49
+ case 'MEDIUM':
50
+ return '◆';
51
+ case 'LOW':
52
+ return '○';
53
+ default:
54
+ return '·';
55
+ }
56
+ }
57
+
58
+ /**
59
+ * Print scan results summary table
60
+ */
61
+ export function printSummaryTable(results: FileScanResult[]): void {
62
+ const totalFiles = results.length;
63
+ const totalCritical = results.reduce((sum, r) => sum + r.critical, 0);
64
+ const totalHigh = results.reduce((sum, r) => sum + r.high, 0);
65
+ const totalMedium = results.reduce((sum, r) => sum + r.medium, 0);
66
+ const totalLow = results.reduce((sum, r) => sum + r.low, 0);
67
+ const totalVulns = totalCritical + totalHigh + totalMedium + totalLow;
68
+
69
+ const filesWithIssues = results.filter(
70
+ (r) => r.critical > 0 || r.high > 0 || r.medium > 0 || r.low > 0
71
+ ).length;
72
+
73
+ console.log('');
74
+ console.log(chalk.bold('Scan Summary'));
75
+ console.log(chalk.gray('─'.repeat(50)));
76
+
77
+ const table = new Table({
78
+ head: [chalk.bold('Metric'), chalk.bold('Count')],
79
+ colWidths: [30, 15],
80
+ style: {
81
+ head: [],
82
+ border: ['gray'],
83
+ },
84
+ });
85
+
86
+ table.push(
87
+ ['Files Scanned', chalk.white(totalFiles.toString())],
88
+ ['Files with Issues', filesWithIssues > 0 ? chalk.yellow(filesWithIssues.toString()) : chalk.green('0')],
89
+ ['Total Vulnerabilities', totalVulns > 0 ? chalk.red(totalVulns.toString()) : chalk.green('0')],
90
+ ['', ''],
91
+ [chalk.red('✖ CRITICAL'), totalCritical > 0 ? chalk.red.bold(totalCritical.toString()) : chalk.gray('0')],
92
+ [chalk.red('⚠ HIGH'), totalHigh > 0 ? chalk.red(totalHigh.toString()) : chalk.gray('0')],
93
+ [chalk.yellow('◆ MEDIUM'), totalMedium > 0 ? chalk.yellow(totalMedium.toString()) : chalk.gray('0')],
94
+ [chalk.blue('○ LOW'), totalLow > 0 ? chalk.blue(totalLow.toString()) : chalk.gray('0')]
95
+ );
96
+
97
+ console.log(table.toString());
98
+ }
99
+
100
+ /**
101
+ * Print detailed vulnerabilities for a file
102
+ */
103
+ export function printFileVulnerabilities(result: FileScanResult): void {
104
+ const vulnerabilities = result.result.security?.vulnerabilities || [];
105
+
106
+ if (vulnerabilities.length === 0) {
107
+ return;
108
+ }
109
+
110
+ console.log('');
111
+ console.log(chalk.bold(`📄 ${result.relativePath}`) + chalk.gray(` (${result.language})`));
112
+
113
+ vulnerabilities.forEach((vuln: SecurityVulnerability, index: number) => {
114
+ const colorFn = getSeverityColor(vuln.severity);
115
+ const symbol = getSeveritySymbol(vuln.severity);
116
+
117
+ console.log('');
118
+ console.log(
119
+ ` ${colorFn(symbol)} ${colorFn(vuln.severity)}` +
120
+ chalk.gray(` (Line ${vuln.line})`) +
121
+ (vuln.cvssScore ? chalk.gray(` - CVSS ${vuln.cvssScore}`) : '')
122
+ );
123
+
124
+ console.log(` ${chalk.white(vuln.message)}`);
125
+
126
+ if (vuln.suggestion) {
127
+ console.log(` ${chalk.green('Fix:')} ${vuln.suggestion}`);
128
+ }
129
+
130
+ if (vuln.owasp) {
131
+ console.log(` ${chalk.gray('OWASP:')} ${vuln.owasp}`);
132
+ }
133
+
134
+ if (vuln.cwe) {
135
+ console.log(` ${chalk.gray('CWE:')} ${vuln.cwe}`);
136
+ }
137
+ });
138
+
139
+ console.log('');
140
+ }
141
+
142
+ /**
143
+ * Print all scan results with details
144
+ */
145
+ export function printDetailedResults(results: FileScanResult[]): void {
146
+ console.log('');
147
+ console.log(chalk.bold.underline('Detailed Results'));
148
+
149
+ const resultsWithIssues = results.filter(
150
+ (r) => r.critical > 0 || r.high > 0 || r.medium > 0 || r.low > 0
151
+ );
152
+
153
+ if (resultsWithIssues.length === 0) {
154
+ console.log('');
155
+ console.log(chalk.green('✓ No vulnerabilities found!'));
156
+ console.log('');
157
+ return;
158
+ }
159
+
160
+ resultsWithIssues.forEach((result) => {
161
+ printFileVulnerabilities(result);
162
+ });
163
+ }
164
+
165
+ /**
166
+ * Print scan start message
167
+ */
168
+ export function printScanStart(fileCount: number): void {
169
+ console.log('');
170
+ console.log(chalk.bold.cyan('🔍 CodeSlick Security Scanner'));
171
+ console.log(chalk.gray(`Scanning ${fileCount} file(s)...`));
172
+ }
173
+
174
+ /**
175
+ * Print scan completion message
176
+ */
177
+ export function printScanComplete(duration: number): void {
178
+ console.log('');
179
+ console.log(chalk.gray(`Scan completed in ${duration}ms`));
180
+ }
181
+
182
+ /**
183
+ * Print error message
184
+ */
185
+ export function printError(message: string): void {
186
+ console.log('');
187
+ console.log(chalk.red.bold('✖ Error:'), chalk.red(message));
188
+ console.log('');
189
+ }
190
+
191
+ /**
192
+ * Print warning message
193
+ */
194
+ export function printWarning(message: string): void {
195
+ console.log('');
196
+ console.log(chalk.yellow.bold('⚠ Warning:'), chalk.yellow(message));
197
+ console.log('');
198
+ }
199
+
200
+ /**
201
+ * Print success message
202
+ */
203
+ export function printSuccess(message: string): void {
204
+ console.log('');
205
+ console.log(chalk.green.bold('✓'), chalk.green(message));
206
+ console.log('');
207
+ }
208
+
209
+ /**
210
+ * Print commit blocked message
211
+ */
212
+ export function printCommitBlocked(
213
+ threshold: string,
214
+ critical: number,
215
+ high: number,
216
+ medium: number,
217
+ low: number
218
+ ): void {
219
+ console.log('');
220
+ console.log(chalk.red.bold('❌ Commit Blocked'));
221
+ console.log('');
222
+ console.log(chalk.red(`Security vulnerabilities found that meet or exceed the "${threshold}" threshold.`));
223
+ console.log('');
224
+
225
+ if (critical > 0) {
226
+ console.log(chalk.red(` ✖ ${critical} CRITICAL ${critical === 1 ? 'issue' : 'issues'}`));
227
+ }
228
+ if (high > 0) {
229
+ console.log(chalk.red(` ⚠ ${high} HIGH ${high === 1 ? 'issue' : 'issues'}`));
230
+ }
231
+ if (medium > 0) {
232
+ console.log(chalk.yellow(` ◆ ${medium} MEDIUM ${medium === 1 ? 'issue' : 'issues'}`));
233
+ }
234
+ if (low > 0) {
235
+ console.log(chalk.blue(` ○ ${low} LOW ${low === 1 ? 'issue' : 'issues'}`));
236
+ }
237
+
238
+ console.log('');
239
+ console.log(chalk.gray('Fix the issues above or use:'));
240
+ console.log(chalk.gray(' git commit --no-verify'));
241
+ console.log('');
242
+ }
243
+
244
+ /**
245
+ * Print commit allowed message
246
+ */
247
+ export function printCommitAllowed(): void {
248
+ console.log('');
249
+ console.log(chalk.green.bold('✓ Commit Allowed'));
250
+ console.log(chalk.green('No vulnerabilities meet the configured severity threshold.'));
251
+ console.log('');
252
+ }
253
+
254
+ /**
255
+ * Output results as JSON
256
+ */
257
+ export function printJSONResults(results: FileScanResult[]): void {
258
+ const output = {
259
+ summary: {
260
+ filesScanned: results.length,
261
+ filesWithIssues: results.filter((r) => r.critical > 0 || r.high > 0 || r.medium > 0 || r.low > 0).length,
262
+ totalVulnerabilities: results.reduce((sum, r) => r.critical + r.high + r.medium + r.low + sum, 0),
263
+ critical: results.reduce((sum, r) => sum + r.critical, 0),
264
+ high: results.reduce((sum, r) => sum + r.high, 0),
265
+ medium: results.reduce((sum, r) => sum + r.medium, 0),
266
+ low: results.reduce((sum, r) => sum + r.low, 0),
267
+ },
268
+ files: results.map((r) => ({
269
+ path: r.relativePath,
270
+ language: r.language,
271
+ vulnerabilities: r.result.security?.vulnerabilities || [],
272
+ counts: {
273
+ critical: r.critical,
274
+ high: r.high,
275
+ medium: r.medium,
276
+ low: r.low,
277
+ },
278
+ })),
279
+ };
280
+
281
+ console.log(JSON.stringify(output, null, 2));
282
+ }
package/src/scanner/local-scanner.ts ADDED
@@ -0,0 +1,250 @@
1
+ /**
2
+ * Local Scanner - Offline Security Analysis
3
+ *
4
+ * This scanner runs security analysis locally without making API calls.
5
+ * It reuses the existing CodeSlick analyzers for maximum compatibility.
6
+ *
7
+ * Key Features:
8
+ * - No API calls required (fully offline)
9
+ * - Fast scanning (<3s for 10 files)
10
+ * - Same analysis engine as GitHub App and WebTool
11
+ * - Supports JavaScript, TypeScript, Python, Java
12
+ *
13
+ * @module packages/cli/src/scanner/local-scanner
14
+ */
15
+
16
+ import { readFile } from 'fs/promises';
17
+ import { relative } from 'path';
18
+ import type { AnalyzerResult } from '../../../../src/lib/analyzers/types';
19
+
20
+ /**
21
+ * Supported programming languages
22
+ */
23
+ export type SupportedLanguage = 'javascript' | 'typescript' | 'python' | 'java';
24
+
25
+ /**
26
+ * Result of scanning a single file
27
+ */
28
+ export interface FileScanResult {
29
+ filePath: string;
30
+ relativePath: string;
31
+ language: SupportedLanguage;
32
+ result: AnalyzerResult;
33
+ critical: number;
34
+ high: number;
35
+ medium: number;
36
+ low: number;
37
+ }
38
+
39
+ /**
40
+ * Configuration for local scanner
41
+ */
42
+ export interface ScannerConfig {
43
+ severityThreshold?: 'critical' | 'high' | 'medium' | 'low';
44
+ exclude?: string[];
45
+ autofix?: boolean;
46
+ }
47
+
48
+ /**
49
+ * Detect programming language from file extension
50
+ */
51
+ export function detectLanguage(filePath: string): SupportedLanguage | null {
52
+ const ext = filePath.toLowerCase();
53
+
54
+ if (ext.endsWith('.js') || ext.endsWith('.jsx')) {
55
+ return 'javascript';
56
+ }
57
+
58
+ if (ext.endsWith('.ts') || ext.endsWith('.tsx')) {
59
+ return 'typescript';
60
+ }
61
+
62
+ if (ext.endsWith('.py')) {
63
+ return 'python';
64
+ }
65
+
66
+ if (ext.endsWith('.java')) {
67
+ return 'java';
68
+ }
69
+
70
+ return null;
71
+ }
72
+
73
+ /**
74
+ * Check if file should be excluded based on patterns
75
+ */
76
+ export function shouldExclude(filePath: string, excludePatterns: string[]): boolean {
77
+ const relativePath = relative(process.cwd(), filePath);
78
+
79
+ for (const pattern of excludePatterns) {
80
+ // Convert glob pattern to regex
81
+ const regex = new RegExp(
82
+ pattern
83
+ .replace(/\./g, '\\.')
84
+ .replace(/\*\*/g, '.*')
85
+ .replace(/\*/g, '[^/]*')
86
+ .replace(/\?/g, '.')
87
+ );
88
+
89
+ if (regex.test(relativePath)) {
90
+ return true;
91
+ }
92
+ }
93
+
94
+ return false;
95
+ }
96
+
97
+ /**
98
+ * Count vulnerabilities by severity
99
+ */
100
+ export function countVulnerabilities(result: AnalyzerResult) {
101
+ const vulnerabilities = result.security?.vulnerabilities || [];
102
+
103
+ return {
104
+ critical: vulnerabilities.filter((v: any) => v.severity.toLowerCase() === 'critical').length,
105
+ high: vulnerabilities.filter((v: any) => v.severity.toLowerCase() === 'high').length,
106
+ medium: vulnerabilities.filter((v: any) => v.severity.toLowerCase() === 'medium').length,
107
+ low: vulnerabilities.filter((v: any) => v.severity.toLowerCase() === 'low').length,
108
+ };
109
+ }
110
+
111
+ /**
112
+ * Scan a single file for security vulnerabilities
113
+ *
114
+ * This function:
115
+ * 1. Reads the file content
116
+ * 2. Detects the programming language
117
+ * 3. Runs the appropriate analyzer
118
+ * 4. Returns the analysis result
119
+ *
120
+ * @param filePath - Absolute path to the file
121
+ * @param config - Scanner configuration
122
+ * @returns Scan result or null if file should be skipped
123
+ */
124
+ export async function scanFile(
125
+ filePath: string,
126
+ config: ScannerConfig = {}
127
+ ): Promise<FileScanResult | null> {
128
+ try {
129
+ // Detect language
130
+ const language = detectLanguage(filePath);
131
+ if (!language) {
132
+ return null; // Unsupported file type
133
+ }
134
+
135
+ // Check exclusions
136
+ if (config.exclude && shouldExclude(filePath, config.exclude)) {
137
+ return null; // File excluded by pattern
138
+ }
139
+
140
+ // Read file content
141
+ const code = await readFile(filePath, 'utf-8');
142
+
143
+ // Import analyzer dynamically based on language
144
+ let result: AnalyzerResult;
145
+
146
+ switch (language) {
147
+ case 'javascript': {
148
+ const { JavaScriptAnalyzer } = await import(
149
+ '../../../../src/lib/analyzers/javascript-analyzer'
150
+ );
151
+ const analyzer = new JavaScriptAnalyzer();
152
+ result = await analyzer.analyze({ code, filename: filePath });
153
+ break;
154
+ }
155
+
156
+ case 'typescript': {
157
+ const { TypeScriptAnalyzer } = await import(
158
+ '../../../../src/lib/analyzers/typescript-analyzer'
159
+ );
160
+ const analyzer = new TypeScriptAnalyzer();
161
+ result = await analyzer.analyze({ code, filename: filePath });
162
+ break;
163
+ }
164
+
165
+ case 'python': {
166
+ const { PythonAnalyzer } = await import('../../../../src/lib/analyzers/python-analyzer');
167
+ const analyzer = new PythonAnalyzer();
168
+ result = await analyzer.analyze({ code, filename: filePath });
169
+ break;
170
+ }
171
+
172
+ case 'java': {
173
+ const { JavaAnalyzer } = await import('../../../../src/lib/analyzers/java-analyzer');
174
+ const analyzer = new JavaAnalyzer();
175
+ result = await analyzer.analyze({ code, filename: filePath });
176
+ break;
177
+ }
178
+
179
+ default:
180
+ return null;
181
+ }
182
+
183
+ // Count vulnerabilities by severity
184
+ const counts = countVulnerabilities(result);
185
+
186
+ return {
187
+ filePath,
188
+ relativePath: relative(process.cwd(), filePath),
189
+ language,
190
+ result,
191
+ ...counts,
192
+ };
193
+ } catch (error) {
194
+ // If file cannot be read or analyzed, skip it
195
+ console.error(`Error scanning ${filePath}:`, error);
196
+ return null;
197
+ }
198
+ }
199
+
200
+ /**
201
+ * Scan multiple files for security vulnerabilities
202
+ *
203
+ * This function scans multiple files in parallel for better performance.
204
+ *
205
+ * @param filePaths - Array of absolute file paths
206
+ * @param config - Scanner configuration
207
+ * @returns Array of scan results (excluding skipped files)
208
+ */
209
+ export async function scanFiles(
210
+ filePaths: string[],
211
+ config: ScannerConfig = {}
212
+ ): Promise<FileScanResult[]> {
213
+ // Scan all files in parallel
214
+ const results = await Promise.all(filePaths.map((path) => scanFile(path, config)));
215
+
216
+ // Filter out null results (skipped files)
217
+ return results.filter((r): r is FileScanResult => r !== null);
218
+ }
219
+
220
+ /**
221
+ * Check if scan results meet severity threshold
222
+ *
223
+ * Returns true if any vulnerabilities meet or exceed the threshold.
224
+ *
225
+ * @param results - Array of scan results
226
+ * @param threshold - Severity threshold ('critical' | 'high' | 'medium' | 'low')
227
+ * @returns True if threshold is exceeded, false otherwise
228
+ */
229
+ export function exceedsThreshold(
230
+ results: FileScanResult[],
231
+ threshold: 'critical' | 'high' | 'medium' | 'low'
232
+ ): boolean {
233
+ const totalCritical = results.reduce((sum, r) => sum + r.critical, 0);
234
+ const totalHigh = results.reduce((sum, r) => sum + r.high, 0);
235
+ const totalMedium = results.reduce((sum, r) => sum + r.medium, 0);
236
+ const totalLow = results.reduce((sum, r) => sum + r.low, 0);
237
+
238
+ switch (threshold) {
239
+ case 'critical':
240
+ return totalCritical > 0;
241
+ case 'high':
242
+ return totalCritical > 0 || totalHigh > 0;
243
+ case 'medium':
244
+ return totalCritical > 0 || totalHigh > 0 || totalMedium > 0;
245
+ case 'low':
246
+ return totalCritical > 0 || totalHigh > 0 || totalMedium > 0 || totalLow > 0;
247
+ default:
248
+ return totalCritical > 0;
249
+ }
250
+ }
package/tsconfig.json ADDED
@@ -0,0 +1,24 @@
1
+ {
2
+ "compilerOptions": {
3
+ "outDir": "./dist",
4
+ "rootDir": "../../",
5
+ "module": "CommonJS",
6
+ "moduleResolution": "node",
7
+ "target": "ES2020",
8
+ "lib": ["ES2020"],
9
+ "declaration": true,
10
+ "declarationMap": true,
11
+ "sourceMap": true,
12
+ "esModuleInterop": true,
13
+ "skipLibCheck": true,
14
+ "strict": false,
15
+ "resolveJsonModule": true,
16
+ "types": ["node"],
17
+ "baseUrl": "../../",
18
+ "paths": {
19
+ "@/*": ["src/*"]
20
+ }
21
+ },
22
+ "include": ["src/**/*"],
23
+ "exclude": ["node_modules", "dist", "__tests__", "../../src/**/__tests__/**", "../../src/**/*.test.ts"]
24
+ }