codeslick-cli 1.3.0 → 1.4.1

package/README.md

@@ -1,6 +1,6 @@
 # @codeslick/cli
 
-**CodeSlick CLI** - Pre-commit security scanner for JavaScript, TypeScript, Python, Java, and Go.
+**CodeSlick CLI** - Pre-commit security scanner for JavaScript, TypeScript, Python, Java, Go, and Terraform.
 
 Catch security vulnerabilities before they enter your codebase with automated pre-commit scanning.
 
@@ -9,11 +9,12 @@ Catch security vulnerabilities before they enter your codebase with automated pr
 - **Local Security Scanning** - No API calls required, fully offline
 - **Pre-commit Hook Integration** - Automatically scans staged files before each commit
 - **Fast Analysis** - <3s for 10 files using CodeSlick's analyzer engine
-- **Multi-language Support** - JavaScript, TypeScript, Python, Java, Go
+- **Multi-language Support** - JavaScript, TypeScript, Python, Java, Go, Terraform
+- **IaC Security** - Detects AWS misconfigurations in Terraform (S3, IAM, and more)
 - **Configurable Thresholds** - Block commits on CRITICAL, HIGH, MEDIUM, or LOW severity
 - **Beautiful Terminal Output** - Color-coded results with CVSS scores and fix suggestions
 - **CI/CD Ready** - JSON output mode for automation
-- **OWASP Top 10:2025 Compliant** - 294 comprehensive security checks
+- **OWASP Top 10:2025 Compliant** - 304 comprehensive security checks
 
 ## Prerequisites
 
@@ -252,7 +253,7 @@ The `.codeslick.json` file controls how CodeSlick scans your code.
     "**/test/**",
     "**/tests/**"
   ],
-  "languages": ["javascript", "typescript", "python", "java", "go"],
+  "languages": ["javascript", "typescript", "python", "java", "go", "terraform"],
 
   // NEW: Pass/Fail Thresholds (v1.3)
   "thresholdEnabled": true,
@@ -276,7 +277,7 @@ The `.codeslick.json` file controls how CodeSlick scans your code.
 | `severity` | string | `"critical"` | Severity threshold: `critical`, `high`, `medium`, `low` |
 | `autofix` | boolean | `false` | Enable auto-fix (experimental) |
 | `exclude` | string[] | See above | Glob patterns to exclude from scanning |
-| `languages` | string[] | All | Languages to scan: `javascript`, `typescript`, `python`, `java`, `go` |
+| `languages` | string[] | All | Languages to scan: `javascript`, `typescript`, `python`, `java`, `go`, `terraform` |
 | `telemetry` | boolean | `true` | Enable anonymous usage analytics |
 | **Thresholds (v1.3)** | | | |
 | `thresholdEnabled` | boolean | `true` | Enable pass/fail threshold enforcement |
@@ -311,8 +312,9 @@ CodeSlick CLI uses the same analysis engine as the GitHub App and WebTool.
 | **Python** | 47 checks | Django/Flask security, pickle, exec(), secrets |
 | **Java** | 32 checks | Log4j, Spring Security, SQL injection, deserialization |
 | **Go** | 26 checks | SQL injection, command injection, TLS misconfig, race conditions |
+| **Terraform** | 10 checks | S3 public ACL, IAM wildcards, encryption, versioning, logging |
 
-**Total**: 294 comprehensive security checks
+**Total**: 304 comprehensive security checks
 
 ### OWASP Top 10:2025 Compliance
 
@@ -559,6 +561,41 @@ MIT License - see [LICENSE](../../LICENSE) for details.
 - **Issues**: https://github.com/VitorLourenco/codeslick2/issues
 - **Email**: support@codeslick.dev
 
+## What's New in v1.4 🚀
+
+**Terraform IaC Security Scanning** (February 2026)
+
+- **Terraform Language Support** - Full Infrastructure as Code security analysis
+- **10 AWS Security Checks** - S3 buckets (public ACL, encryption, versioning, logging) + IAM policies (wildcard actions/resources, privilege escalation)
+- **Multiline HCL Parsing** - Correctly handles multiline `jsonencode()` and nested objects
+- **OWASP A01:2021 Compliance** - Detects Broken Access Control in cloud infrastructure
+- **Pre-commit IaC Validation** - Block insecure Terraform before deployment
+- **304 Total Security Checks** - Now supporting 6 languages
+
+**Example:**
+```bash
+cs scan infrastructure/*.tf
+# ✖ CRITICAL: S3 bucket has public ACL: "public-read"
+# ✖ CRITICAL: IAM policy allows wildcard actions (Action: "*")
+# ⚠ HIGH: S3 bucket does not have encryption enabled
+# Exit code: 1 (blocked - 3 critical issues)
+```
+
+### Detected Terraform Vulnerabilities
+
+| Check | Severity | OWASP | Description |
+|-------|----------|-------|-------------|
+| S3 Public ACL | CRITICAL | A01:2021 | Detects `acl = "public-read"` |
+| S3 Encryption | HIGH | A02:2021 | Missing server-side encryption |
+| S3 Versioning | MEDIUM | A09:2021 | No versioning enabled |
+| S3 Logging | MEDIUM | A09:2021 | No access logs |
+| IAM Wildcard Actions | CRITICAL | A01:2021 | `Action = "*"` detected |
+| IAM Wildcard Resources | HIGH | A01:2021 | `Resource = "*"` detected |
+| IAM Admin Policy | CRITICAL | A01:2021 | AdministratorAccess equivalent |
+| IAM Privilege Escalation | CRITICAL | A01:2021 | Can grant self permissions |
+
+---
+
 ## What's New in v1.3 ⭐
 
 **Pass/Fail Thresholds + Test Execution Integration** (February 2026)
@@ -603,11 +640,13 @@ cs scan --verify  # Run security scan + tests
 
 ## Roadmap
 
-### v1.4 (Coming Q2 2026)
-- Custom rule configuration
-- IDE integration (VS Code extension)
-- Enhanced auto-fix support
-- Smart exemption suggestions (ML-based)
+### v1.5 (Coming Q2 2026)
+- **More Terraform Providers** - Azure (azurerm_), GCP (google_) resources
+- **Expanded IaC Coverage** - EC2, RDS, Lambda, VPC security checks (15+ new)
+- **Custom Rule Configuration** - Define your own security rules via YAML/JSON
+- **IDE Integration** - VS Code extension with inline security hints
+- **Enhanced Auto-fix** - More intelligent fix suggestions for complex issues
+- **Smart Exemptions** - ML-based false positive detection
 
 ---
 

package/dist/packages/cli/src/commands/scan.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"scan.d.ts","sourceRoot":"","sources":["../../../../../src/commands/scan.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAkCH;;;;GAIG;AACH,UAAU,QAAQ;IAChB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,GAAG,CAAC,EAAE,OAAO,CAAC;IACd,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,QAAQ,CAAC,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IAClD,GAAG,CAAC,EAAE,OAAO,CAAC;IACd,IAAI,CAAC,EAAE,OAAO,CAAC;IAGf,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,sBAAsB,CAAC,EAAE,OAAO,CAAC;IACjC,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,2BAA2B,CAAC,EAAE,MAAM,CAAC;IACrC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,oBAAoB,CAAC,EAAE,MAAM,EAAE,CAAC;IAChC,uBAAuB,CAAC,EAAE,MAAM,CAAC;IAGjC,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAwCD;;;;;;;;;GASG;AACH,wBAAsB,WAAW,CAAC,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC,CAoR/D"}
+{"version":3,"file":"scan.d.ts","sourceRoot":"","sources":["../../../../../src/commands/scan.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;GAgBG;AAkCH;;;;GAIG;AACH,UAAU,QAAQ;IAChB,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,GAAG,CAAC,EAAE,OAAO,CAAC;IACd,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,QAAQ,CAAC,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IAClD,GAAG,CAAC,EAAE,OAAO,CAAC;IACd,IAAI,CAAC,EAAE,OAAO,CAAC;IAGf,gBAAgB,CAAC,EAAE,OAAO,CAAC;IAC3B,sBAAsB,CAAC,EAAE,OAAO,CAAC;IACjC,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,2BAA2B,CAAC,EAAE,MAAM,CAAC;IACrC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,oBAAoB,CAAC,EAAE,MAAM,EAAE,CAAC;IAChC,uBAAuB,CAAC,EAAE,MAAM,CAAC;IAGjC,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAwCD;;;;;;;;;GASG;AACH,wBAAsB,WAAW,CAAC,IAAI,EAAE,QAAQ,GAAG,OAAO,CAAC,IAAI,CAAC,CAwR/D"}

package/dist/packages/cli/src/commands/scan.js

@@ -262,8 +262,10 @@ async function scanCommand(args) {
         const totalLow = results.reduce((sum, r) => sum + r.low, 0);
         // Collect unique languages scanned
         const languages = [...new Set(results.map(r => r.language))];
-        // Send telemetry (fire-and-forget, won't block exit)
-        (0, telemetry_1.trackScan)({
+        // Send telemetry — store the promise so we can await it before process.exit.
+        // process.exit() terminates all pending async ops, so fire-and-forget never
+        // completes. The telemetry function has a 3-second timeout built in.
+        const telemetryDone = (0, telemetry_1.trackScan)({
             filesScanned: results.length,
             languages,
             vulnerabilities: {
@@ -273,7 +275,7 @@ async function scanCommand(args) {
                 low: totalLow,
             },
             scanDuration: duration,
-        }).catch(() => { }); // Ignore telemetry errors
+        }).catch(() => { }); // Never let telemetry errors surface
         // WR2: Build threshold configuration from CLI args or use defaults
         // NOTE: For CLI, thresholds are ENABLED by default (unlike dashboard which is opt-in)
         // This ensures pre-commit hooks block on security issues
@@ -346,6 +348,7 @@ async function scanCommand(args) {
                     console.log(chalk_1.default.red.bold('\n  Tests failed - commit blocked\n'));
                 }
             }
+            await telemetryDone; // Wait for telemetry before terminating process
             process.exit(1); // Exit with failure
         }
         else {
@@ -355,6 +358,7 @@ async function scanCommand(args) {
                     console.log(chalk_1.default.green('  ✓ Tests passed'));
                 }
             }
+            await telemetryDone; // Wait for telemetry before terminating process
             process.exit(0); // Exit with success
         }
     }

package/dist/packages/cli/src/commands/scan.js.map

@@ -1 +1 @@
-{"version":3,"file":"scan.js","sourceRoot":"","sources":["../../../../../src/commands/scan.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;GAgBG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA+GH,kCAoRC;AAjYD,iDAAqC;AACrC,+BAAiC;AACjC,+BAA+B;AAC/B,+BAA4B;AAC5B,8CAAsB;AACtB,kDAA0B;AAC1B,4DAAyE;AACzE,4DAamC;AACnC,sDAAmE;AACnE,2DAAqD;AACrD,kDAA+C;AAC/C,kEAGoC;AACpC,0FAAkH;AAElH,MAAM,SAAS,GAAG,IAAA,gBAAS,EAAC,oBAAI,CAAC,CAAC;AA+BlC;;GAEG;AACH,KAAK,UAAU,cAAc;IAC3B,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,SAAS,CAAC,iDAAiD,CAAC,CAAC;QACtF,OAAO,MAAM;aACV,IAAI,EAAE;aACN,KAAK,CAAC,IAAI,CAAC;aACX,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;aAC3B,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAA,cAAO,EAAC,OAAO,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC;IAC3C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAC;IAC9E,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,KAAK,UAAU,kBAAkB,CAAC,QAAkB,EAAE,OAAkB;IACtE,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAG,MAAM,IAAA,WAAI,EAAC,OAAO,EAAE;YAChC,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE;YAClB,QAAQ,EAAE,IAAI;YACd,KAAK,EAAE,IAAI;YACX,MAAM,EAAE,OAAO,IAAI,EAAE,EAAE,yCAAyC;SACjE,CAAC,CAAC;QACH,QAAQ,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC;IAC1B,CAAC;IAED,oBAAoB;IACpB,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC;AAChC,CAAC;AAED;;;;;;;;;GASG;AACI,KAAK,UAAU,WAAW,CAAC,IAAc;IAC9C,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE7B,IAAI,CAAC;QACH,qBAAqB;QACrB,MAAM,MAAM,GAAG,MAAM,IAAA,0BAAU,GAAE,CAAC;QAElC,sCAAsC;QACtC,MAAM,aAAa,GAAkB;YACnC,iBAAiB,EAAE,IAAI,CAAC,QAAQ,IAAI,MAAM,CAAC,QAAQ,IAAI,UAAU;YACjE,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,EAAE;YAC7B,OAAO,EAAE,IAAI,CAAC,GAAG,IAAI,MAAM,CAAC,OAAO,IAAI,KAAK;YAC5C,SAAS,EAAE,IAAI,CAAC,KAAK,IAAI,KAAK;SAC/B,CAAC;QAEF,gCAAgC;QAChC,wDAAwD;QACxD,IAAI,SAAS,GAAa,EAAE,CAAC;QAE7B,IAAI,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxC,4DAA4D;YAC5D,SAAS,GAAG,MAAM,kBAAkB,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;YAEjE,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC3B,IAAA,yBAAU,EAAC,8BAA8B,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;gBAClE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;aAAM,IAAI,IAAI,CAAC,GAAG,EAAE,CAAC;YACpB,wDAAwD;YACxD,MAAM,eAAe,GAAG,MAAM,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE;gBACrD,QAAQ,IAAI,EAAE,CAAC;oBACb,KAAK,YAAY;wBACf,OAAO,eAAe,CAAC;oBACzB,KAAK,YAAY;wBACf,OAAO,eAAe,CAAC;oBACzB,KAAK,QAAQ;wBACX,OAAO,SAAS,CAAC;oBACnB,KAAK,MAAM;wBACT,OAAO,WAAW,CAAC;oBACrB,KAAK,IAAI;wBACP,OAAO,SAAS,CAAC;oBACnB;wBACE,OAAO,EAAE,CAAC;gBACd,CAAC;YACH,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;YAE1D,SAAS,GAAG,MAAM,kBAAkB,CAAC,eAAe,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;YAEtE,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC3B,IAAA,yBAAU,EAAC,yBAAyB,CAAC,CAAC;gBACtC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;aAAM,CAAC;YACN,+CAA+C;YAC/C,MAAM,WAAW,GAAG,MAAM,cAAc,EAAE,CAAC;YAE3C,mCAAmC;YACnC,IAAI,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAChD,MAAM,EAAE,aAAa,EAAE,GAAG,wDAAa,0BAA0B,GAAC,CAAC;gBACnE,SAAS,GAAG,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,aAAa,CAAC,IAAI,EAAE,MAAM,CAAC,OAAQ,CAAC,CAAC,CAAC;YAChF,CAAC;iBAAM,CAAC;gBACN,SAAS,GAAG,WAAW,CAAC;YAC1B,CAAC;YAED,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC3B,sEAAsE;gBACtE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAAC,CAAC;gBACtD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,8DAA8D,CAAC,CAAC,CAAC;gBACxF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC;gBACvC,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,qBAAqB,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC,CAAC;gBACpG,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,mBAAmB,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC,CAAC;gBAC7F,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,kBAAkB,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC,CAAC;gBACzF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QAED,wCAAwC;QACxC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YACf,IAAA,6BAAc,EAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YAEjC,8BAA8B;YAC9B,IAAI,SAAS,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;gBAC1B,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,MAAM,CAAC,0BAA0B,SAAS,CAAC,MAAM,SAAS,CAAC,CAAC,CAAC;gBAC/E,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;oBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,2EAA2E,CAAC,CAAC,CAAC;oBACrG,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,2DAA2D,CAAC,CAAC,CAAC;gBACvF,CAAC;gBACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QAED,wBAAwB;QACxB,MAAM,OAAO,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,IAAA,aAAG,EAAC;YAC/B,IAAI,EAAE,aAAa,SAAS,CAAC,MAAM,WAAW;YAC9C,OAAO,EAAE,MAAM;SAChB,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;QAElB,iBAAiB;QACjB,MAAM,OAAO,GAAG,MAAM,IAAA,yBAAS,EAAC,SAAS,EAAE,aAAa,CAAC,CAAC;QAE1D,4BAA4B;QAC5B,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO,CAAC,OAAO,CAAC,YAAY,OAAO,CAAC,MAAM,QAAQ,CAAC,CAAC;QACtD,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAExC,wEAAwE;QACxE,MAAM,YAAY,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;QAC3D,MAAM,YAAY,GAAG,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;QAEnE,sDAAsD;QACtD,MAAM,oBAAoB,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;QAEzG,iBAAiB;QACjB,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;YACd,+BAA+B;YAC/B,IAAA,+BAAgB,EAAC,OAAO,CAAC,CAAC;QAC5B,CAAC;aAAM,IAAI,OAAO,CAAC,MAAM,GAAG,EAAE,IAAI,oBAAoB,GAAG,EAAE,EAAE,CAAC;YAC5D,mEAAmE;YACnE,wDAAwD;YACxD,MAAM,UAAU,GAAG,IAAA,qCAAsB,EAAC,OAAO,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC;YAC3E,IAAA,gCAAiB,EAAC,OAAO,EAAE,UAAU,EAAE,QAAQ,CAAC,CAAC;QACnD,CAAC;aAAM,CAAC;YACN,iDAAiD;YACjD,IAAA,gCAAiB,EAAC,QAAQ,CAAC,CAAC;YAC5B,IAAA,gCAAiB,EAAC,OAAO,CAAC,CAAC;YAC3B,IAAA,mCAAoB,EAAC,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;QAC9C,CAAC;QAED,0DAA0D;QAC1D,IAAI,IAAI,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAC3B,IAAI,oBAAoB,GAAG,CAAC,EAAE,CAAC;gBAC7B,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,IAAI,CAAC,kCAAkC,CAAC,CAAC,CAAC;gBACjE,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;gBACxC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,SAAS,oBAAoB,IAAI,oBAAoB,KAAK,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,iBAAiB,6BAA6B,CAAC,CAAC,CAAC;gBACzJ,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,MAAM,CAAC,gCAAgC,CAAC,CAAC,CAAC;gBAC5D,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,eAAe,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC,CAAC;gBACzF,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,iDAAiD,CAAC,CAAC,CAAC;gBAC3E,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,kBAAkB,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC,CAAC;gBACjF,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,6EAA6E,CAAC,CAAC,CAAC;gBACvG,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC,CAAC;gBACpD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QAED,6CAA6C;QAC7C,MAAM,aAAa,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;QACtE,MAAM,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;QAC9D,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QAClE,MAAM,QAAQ,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;QAE5D,mCAAmC;QACnC,MAAM,SAAS,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;QAE7D,qDAAqD;QACrD,IAAA,qBAAS,EAAC;YACR,YAAY,EAAE,OAAO,CAAC,MAAM;YAC5B,SAAS;YACT,eAAe,EAAE;gBACf,QAAQ,EAAE,aAAa;gBACvB,IAAI,EAAE,SAAS;gBACf,MAAM,EAAE,WAAW;gBACnB,GAAG,EAAE,QAAQ;aACd;YACD,YAAY,EAAE,QAAQ;SACvB,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC,CAAC,0BAA0B;QAE9C,mEAAmE;QACnE,sFAAsF;QACtF,yDAAyD;QACzD,MAAM,eAAe,GAAoB;YACvC,OAAO,EAAE,IAAI,CAAC,gBAAgB,IAAI,MAAM,CAAC,gBAAgB,IAAI,IAAI,EAAE,uBAAuB;YAC1F,eAAe,EAAE,IAAI,CAAC,sBAAsB,IAAI,MAAM,CAAC,sBAAsB,IAAI,8CAAwB,CAAC,eAAe;YACzH,WAAW,EAAE,IAAI,CAAC,kBAAkB,IAAI,MAAM,CAAC,kBAAkB,IAAI,8CAAwB,CAAC,WAAW;YACzG,kBAAkB,EAAE,IAAI,CAAC,2BAA2B,IAAI,MAAM,CAAC,2BAA2B,IAAI,8CAAwB,CAAC,kBAAkB;YACzI,OAAO,EAAE,IAAI,CAAC,gBAAgB,IAAI,MAAM,CAAC,gBAAgB,IAAI,8CAAwB,CAAC,OAAO;YAC7F,WAAW,EAAE,IAAI,CAAC,oBAAoB,IAAI,MAAM,CAAC,oBAAoB,IAAI,8CAAwB,CAAC,WAAW;YAC7G,cAAc,EAAE,IAAI,CAAC,uBAAuB,IAAI,MAAM,CAAC,uBAAuB;SAC/E,CAAC;QAEF,gEAAgE;QAChE,MAAM,eAAe,GAAG,IAAA,yCAAqB,EAAC,OAAO,EAAE,eAAe,CAAC,CAAC;QAExE,8EAA8E;QAC9E,IAAI,eAAe,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAC1C,IAAA,wCAAoB,EAAC,eAAe,CAAC,CAAC;QACxC,CAAC;QAED,qDAAqD;QACrD,MAAM,WAAW,GAAG,CAAC,eAAe,CAAC,MAAM,CAAC;QAE5C,kDAAkD;QAClD,IAAI,WAAW,GAAG,IAAI,CAAC;QACvB,IAAI,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAC9B,IAAI,CAAC;gBACH,qDAAqD;gBACrD,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,MAAM,CAAC,WAAW,IAAI,IAAA,+BAAiB,GAAE,CAAC;gBAElF,IAAI,CAAC,WAAW,EAAE,CAAC;oBACjB,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;oBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,MAAM,CAAC,2BAA2B,CAAC,CAAC,CAAC;oBACvD,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,uFAAuF,CAAC,CAAC,CAAC;oBACjH,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAClB,CAAC;qBAAM,CAAC;oBACN,IAAA,6BAAc,EAAC,WAAW,CAAC,CAAC;oBAE5B,MAAM,UAAU,GAAG,MAAM,IAAA,sBAAQ,EAAC,WAAW,EAAE;wBAC7C,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE;wBAClB,OAAO,EAAE,MAAM,CAAC,WAAW,IAAI,MAAM,EAAE,oBAAoB;wBAC3D,OAAO,EAAE,IAAI,CAAC,OAAO;qBACtB,CAAC,CAAC;oBAEH,IAAA,8BAAe,EAAC,UAAU,CAAC,CAAC;oBAC5B,WAAW,GAAG,UAAU,CAAC,OAAO,CAAC;gBACnC,CAAC;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC,CAAC;gBACzD,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,KAAK,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,CAAC,CAAC,CAAC;gBACxF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,WAAW,GAAG,KAAK,CAAC;YACtB,CAAC;QACH,CAAC;QAED,4BAA4B;QAC5B,yCAAyC;QACzC,MAAM,YAAY,GAAG,CAAC,WAAW,IAAI,WAAW,CAAC;QAEjD,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;gBACf,wBAAwB;gBACxB,IAAI,WAAW,IAAI,CAAC,WAAW,EAAE,CAAC;oBAChC,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,IAAI,CAAC,2CAA2C,CAAC,CAAC,CAAC;gBAC3E,CAAC;qBAAM,IAAI,WAAW,EAAE,CAAC;oBACvB,oEAAoE;oBACpE,qEAAqE;oBACrE,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,CAAC;wBAC7B,MAAM,SAAS,GAAG,aAAa,CAAC,iBAAiB,IAAI,UAAU,CAAC;wBAChE,IAAA,iCAAkB,EAAC,SAAS,EAAE,aAAa,EAAE,SAAS,EAAE,WAAW,EAAE,QAAQ,CAAC,CAAC;oBACjF,CAAC;gBACH,CAAC;qBAAM,IAAI,CAAC,WAAW,EAAE,CAAC;oBACxB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC,CAAC;gBACrE,CAAC;YACH,CAAC;YAED,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,oBAAoB;QACvC,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;gBACf,IAAA,iCAAkB,GAAE,CAAC;gBACrB,IAAI,IAAI,CAAC,MAAM,IAAI,WAAW,EAAE,CAAC;oBAC/B,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC,CAAC;gBAC/C,CAAC;YACH,CAAC;YAED,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,oBAAoB;QACvC,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;YAC3B,IAAA,yBAAU,EAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC5B,CAAC;aAAM,CAAC;YACN,IAAA,yBAAU,EAAC,2BAA2B,CAAC,CAAC;QAC1C,CAAC;QACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}
+{"version":3,"file":"scan.js","sourceRoot":"","sources":["../../../../../src/commands/scan.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;GAgBG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA+GH,kCAwRC;AArYD,iDAAqC;AACrC,+BAAiC;AACjC,+BAA+B;AAC/B,+BAA4B;AAC5B,8CAAsB;AACtB,kDAA0B;AAC1B,4DAAyE;AACzE,4DAamC;AACnC,sDAAmE;AACnE,2DAAqD;AACrD,kDAA+C;AAC/C,kEAGoC;AACpC,0FAAkH;AAElH,MAAM,SAAS,GAAG,IAAA,gBAAS,EAAC,oBAAI,CAAC,CAAC;AA+BlC;;GAEG;AACH,KAAK,UAAU,cAAc;IAC3B,IAAI,CAAC;QACH,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,SAAS,CAAC,iDAAiD,CAAC,CAAC;QACtF,OAAO,MAAM;aACV,IAAI,EAAE;aACN,KAAK,CAAC,IAAI,CAAC;aACX,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC;aAC3B,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAA,cAAO,EAAC,OAAO,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC;IAC3C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,0DAA0D,CAAC,CAAC;IAC9E,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,KAAK,UAAU,kBAAkB,CAAC,QAAkB,EAAE,OAAkB;IACtE,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,KAAK,GAAG,MAAM,IAAA,WAAI,EAAC,OAAO,EAAE;YAChC,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE;YAClB,QAAQ,EAAE,IAAI;YACd,KAAK,EAAE,IAAI;YACX,MAAM,EAAE,OAAO,IAAI,EAAE,EAAE,yCAAyC;SACjE,CAAC,CAAC;QACH,QAAQ,CAAC,IAAI,CAAC,GAAG,KAAK,CAAC,CAAC;IAC1B,CAAC;IAED,oBAAoB;IACpB,OAAO,CAAC,GAAG,IAAI,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC;AAChC,CAAC;AAED;;;;;;;;;GASG;AACI,KAAK,UAAU,WAAW,CAAC,IAAc;IAC9C,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAE7B,IAAI,CAAC;QACH,qBAAqB;QACrB,MAAM,MAAM,GAAG,MAAM,IAAA,0BAAU,GAAE,CAAC;QAElC,sCAAsC;QACtC,MAAM,aAAa,GAAkB;YACnC,iBAAiB,EAAE,IAAI,CAAC,QAAQ,IAAI,MAAM,CAAC,QAAQ,IAAI,UAAU;YACjE,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,EAAE;YAC7B,OAAO,EAAE,IAAI,CAAC,GAAG,IAAI,MAAM,CAAC,OAAO,IAAI,KAAK;YAC5C,SAAS,EAAE,IAAI,CAAC,KAAK,IAAI,KAAK;SAC/B,CAAC;QAEF,gCAAgC;QAChC,wDAAwD;QACxD,IAAI,SAAS,GAAa,EAAE,CAAC;QAE7B,IAAI,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxC,4DAA4D;YAC5D,SAAS,GAAG,MAAM,kBAAkB,CAAC,IAAI,CAAC,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;YAEjE,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC3B,IAAA,yBAAU,EAAC,8BAA8B,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;gBAClE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;aAAM,IAAI,IAAI,CAAC,GAAG,EAAE,CAAC;YACpB,wDAAwD;YACxD,MAAM,eAAe,GAAG,MAAM,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE;gBACrD,QAAQ,IAAI,EAAE,CAAC;oBACb,KAAK,YAAY;wBACf,OAAO,eAAe,CAAC;oBACzB,KAAK,YAAY;wBACf,OAAO,eAAe,CAAC;oBACzB,KAAK,QAAQ;wBACX,OAAO,SAAS,CAAC;oBACnB,KAAK,MAAM;wBACT,OAAO,WAAW,CAAC;oBACrB,KAAK,IAAI;wBACP,OAAO,SAAS,CAAC;oBACnB;wBACE,OAAO,EAAE,CAAC;gBACd,CAAC;YACH,CAAC,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;YAE1D,SAAS,GAAG,MAAM,kBAAkB,CAAC,eAAe,EAAE,MAAM,CAAC,OAAO,CAAC,CAAC;YAEtE,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC3B,IAAA,yBAAU,EAAC,yBAAyB,CAAC,CAAC;gBACtC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;aAAM,CAAC;YACN,+CAA+C;YAC/C,MAAM,WAAW,GAAG,MAAM,cAAc,EAAE,CAAC;YAE3C,mCAAmC;YACnC,IAAI,MAAM,CAAC,OAAO,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAChD,MAAM,EAAE,aAAa,EAAE,GAAG,wDAAa,0BAA0B,GAAC,CAAC;gBACnE,SAAS,GAAG,WAAW,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,aAAa,CAAC,IAAI,EAAE,MAAM,CAAC,OAAQ,CAAC,CAAC,CAAC;YAChF,CAAC;iBAAM,CAAC;gBACN,SAAS,GAAG,WAAW,CAAC;YAC1B,CAAC;YAED,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC3B,sEAAsE;gBACtE,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAAC,CAAC;gBACtD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,8DAA8D,CAAC,CAAC,CAAC;gBACxF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC;gBACvC,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,qBAAqB,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC,CAAC;gBACpG,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,mBAAmB,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC,CAAC;gBAC7F,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,kBAAkB,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,6BAA6B,CAAC,CAAC,CAAC;gBACzF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QAED,wCAAwC;QACxC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YACf,IAAA,6BAAc,EAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YAEjC,8BAA8B;YAC9B,IAAI,SAAS,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;gBAC1B,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,MAAM,CAAC,0BAA0B,SAAS,CAAC,MAAM,SAAS,CAAC,CAAC,CAAC;gBAC/E,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;oBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,2EAA2E,CAAC,CAAC,CAAC;oBACrG,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,2DAA2D,CAAC,CAAC,CAAC;gBACvF,CAAC;gBACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QAED,wBAAwB;QACxB,MAAM,OAAO,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,IAAA,aAAG,EAAC;YAC/B,IAAI,EAAE,aAAa,SAAS,CAAC,MAAM,WAAW;YAC9C,OAAO,EAAE,MAAM;SAChB,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;QAElB,iBAAiB;QACjB,MAAM,OAAO,GAAG,MAAM,IAAA,yBAAS,EAAC,SAAS,EAAE,aAAa,CAAC,CAAC;QAE1D,4BAA4B;QAC5B,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO,CAAC,OAAO,CAAC,YAAY,OAAO,CAAC,MAAM,QAAQ,CAAC,CAAC;QACtD,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;QAExC,wEAAwE;QACxE,MAAM,YAAY,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;QAC3D,MAAM,YAAY,GAAG,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;QAEnE,sDAAsD;QACtD,MAAM,oBAAoB,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;QAEzG,iBAAiB;QACjB,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;YACd,+BAA+B;YAC/B,IAAA,+BAAgB,EAAC,OAAO,CAAC,CAAC;QAC5B,CAAC;aAAM,IAAI,OAAO,CAAC,MAAM,GAAG,EAAE,IAAI,oBAAoB,GAAG,EAAE,EAAE,CAAC;YAC5D,mEAAmE;YACnE,wDAAwD;YACxD,MAAM,UAAU,GAAG,IAAA,qCAAsB,EAAC,OAAO,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC;YAC3E,IAAA,gCAAiB,EAAC,OAAO,EAAE,UAAU,EAAE,QAAQ,CAAC,CAAC;QACnD,CAAC;aAAM,CAAC;YACN,iDAAiD;YACjD,IAAA,gCAAiB,EAAC,QAAQ,CAAC,CAAC;YAC5B,IAAA,gCAAiB,EAAC,OAAO,CAAC,CAAC;YAC3B,IAAA,mCAAoB,EAAC,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;QAC9C,CAAC;QAED,0DAA0D;QAC1D,IAAI,IAAI,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAC3B,IAAI,oBAAoB,GAAG,CAAC,EAAE,CAAC;gBAC7B,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,IAAI,CAAC,kCAAkC,CAAC,CAAC,CAAC;gBACjE,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;gBACxC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,SAAS,oBAAoB,IAAI,oBAAoB,KAAK,CAAC,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,iBAAiB,6BAA6B,CAAC,CAAC,CAAC;gBACzJ,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,MAAM,CAAC,gCAAgC,CAAC,CAAC,CAAC;gBAC5D,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,eAAe,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,gCAAgC,CAAC,CAAC,CAAC;gBACzF,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,iDAAiD,CAAC,CAAC,CAAC;gBAC3E,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,kBAAkB,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC,CAAC;gBACjF,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,6EAA6E,CAAC,CAAC,CAAC;gBACvG,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAC,CAAC;gBACpD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QAED,6CAA6C;QAC7C,MAAM,aAAa,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC;QACtE,MAAM,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;QAC9D,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;QAClE,MAAM,QAAQ,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;QAE5D,mCAAmC;QACnC,MAAM,SAAS,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;QAE7D,6EAA6E;QAC7E,4EAA4E;QAC5E,qEAAqE;QACrE,MAAM,aAAa,GAAG,IAAA,qBAAS,EAAC;YAC9B,YAAY,EAAE,OAAO,CAAC,MAAM;YAC5B,SAAS;YACT,eAAe,EAAE;gBACf,QAAQ,EAAE,aAAa;gBACvB,IAAI,EAAE,SAAS;gBACf,MAAM,EAAE,WAAW;gBACnB,GAAG,EAAE,QAAQ;aACd;YACD,YAAY,EAAE,QAAQ;SACvB,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,GAAE,CAAC,CAAC,CAAC,CAAC,qCAAqC;QAEzD,mEAAmE;QACnE,sFAAsF;QACtF,yDAAyD;QACzD,MAAM,eAAe,GAAoB;YACvC,OAAO,EAAE,IAAI,CAAC,gBAAgB,IAAI,MAAM,CAAC,gBAAgB,IAAI,IAAI,EAAE,uBAAuB;YAC1F,eAAe,EAAE,IAAI,CAAC,sBAAsB,IAAI,MAAM,CAAC,sBAAsB,IAAI,8CAAwB,CAAC,eAAe;YACzH,WAAW,EAAE,IAAI,CAAC,kBAAkB,IAAI,MAAM,CAAC,kBAAkB,IAAI,8CAAwB,CAAC,WAAW;YACzG,kBAAkB,EAAE,IAAI,CAAC,2BAA2B,IAAI,MAAM,CAAC,2BAA2B,IAAI,8CAAwB,CAAC,kBAAkB;YACzI,OAAO,EAAE,IAAI,CAAC,gBAAgB,IAAI,MAAM,CAAC,gBAAgB,IAAI,8CAAwB,CAAC,OAAO;YAC7F,WAAW,EAAE,IAAI,CAAC,oBAAoB,IAAI,MAAM,CAAC,oBAAoB,IAAI,8CAAwB,CAAC,WAAW;YAC7G,cAAc,EAAE,IAAI,CAAC,uBAAuB,IAAI,MAAM,CAAC,uBAAuB;SAC/E,CAAC;QAEF,gEAAgE;QAChE,MAAM,eAAe,GAAG,IAAA,yCAAqB,EAAC,OAAO,EAAE,eAAe,CAAC,CAAC;QAExE,8EAA8E;QAC9E,IAAI,eAAe,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAC1C,IAAA,wCAAoB,EAAC,eAAe,CAAC,CAAC;QACxC,CAAC;QAED,qDAAqD;QACrD,MAAM,WAAW,GAAG,CAAC,eAAe,CAAC,MAAM,CAAC;QAE5C,kDAAkD;QAClD,IAAI,WAAW,GAAG,IAAI,CAAC;QACvB,IAAI,IAAI,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAC9B,IAAI,CAAC;gBACH,qDAAqD;gBACrD,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,IAAI,MAAM,CAAC,WAAW,IAAI,IAAA,+BAAiB,GAAE,CAAC;gBAElF,IAAI,CAAC,WAAW,EAAE,CAAC;oBACjB,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;oBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,MAAM,CAAC,2BAA2B,CAAC,CAAC,CAAC;oBACvD,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,uFAAuF,CAAC,CAAC,CAAC;oBACjH,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAClB,CAAC;qBAAM,CAAC;oBACN,IAAA,6BAAc,EAAC,WAAW,CAAC,CAAC;oBAE5B,MAAM,UAAU,GAAG,MAAM,IAAA,sBAAQ,EAAC,WAAW,EAAE;wBAC7C,GAAG,EAAE,OAAO,CAAC,GAAG,EAAE;wBAClB,OAAO,EAAE,MAAM,CAAC,WAAW,IAAI,MAAM,EAAE,oBAAoB;wBAC3D,OAAO,EAAE,IAAI,CAAC,OAAO;qBACtB,CAAC,CAAC;oBAEH,IAAA,8BAAe,EAAC,UAAU,CAAC,CAAC;oBAC5B,WAAW,GAAG,UAAU,CAAC,OAAO,CAAC;gBACnC,CAAC;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,IAAI,CAAC,2BAA2B,CAAC,CAAC,CAAC;gBACzD,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,KAAK,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,EAAE,CAAC,CAAC,CAAC;gBACxF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,WAAW,GAAG,KAAK,CAAC;YACtB,CAAC;QACH,CAAC;QAED,4BAA4B;QAC5B,yCAAyC;QACzC,MAAM,YAAY,GAAG,CAAC,WAAW,IAAI,WAAW,CAAC;QAEjD,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;gBACf,wBAAwB;gBACxB,IAAI,WAAW,IAAI,CAAC,WAAW,EAAE,CAAC;oBAChC,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,IAAI,CAAC,2CAA2C,CAAC,CAAC,CAAC;gBAC3E,CAAC;qBAAM,IAAI,WAAW,EAAE,CAAC;oBACvB,oEAAoE;oBACpE,qEAAqE;oBACrE,IAAI,CAAC,eAAe,CAAC,OAAO,EAAE,CAAC;wBAC7B,MAAM,SAAS,GAAG,aAAa,CAAC,iBAAiB,IAAI,UAAU,CAAC;wBAChE,IAAA,iCAAkB,EAAC,SAAS,EAAE,aAAa,EAAE,SAAS,EAAE,WAAW,EAAE,QAAQ,CAAC,CAAC;oBACjF,CAAC;gBACH,CAAC;qBAAM,IAAI,CAAC,WAAW,EAAE,CAAC;oBACxB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,GAAG,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC,CAAC;gBACrE,CAAC;YACH,CAAC;YAED,MAAM,aAAa,CAAC,CAAC,gDAAgD;YACrE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,oBAAoB;QACvC,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;gBACf,IAAA,iCAAkB,GAAE,CAAC;gBACrB,IAAI,IAAI,CAAC,MAAM,IAAI,WAAW,EAAE,CAAC;oBAC/B,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,kBAAkB,CAAC,CAAC,CAAC;gBAC/C,CAAC;YACH,CAAC;YAED,MAAM,aAAa,CAAC,CAAC,gDAAgD;YACrE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,oBAAoB;QACvC,CAAC;IACH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,KAAK,EAAE,CAAC;YAC3B,IAAA,yBAAU,EAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QAC5B,CAAC;aAAM,CAAC;YACN,IAAA,yBAAU,EAAC,2BAA2B,CAAC,CAAC;QAC1C,CAAC;QACD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}

package/dist/packages/cli/src/reporters/cli-reporter.d.ts

@@ -24,6 +24,9 @@ export declare function getSeverityColor(severity: string): (text: string) => st
 export declare function getSeveritySymbol(severity: string): string;
 /**
  * Print scan results summary table
+ *
+ * IMPORTANT: Recalculates counts from actual filtered vulnerabilities
+ * to ensure summary reflects false-positive filtering.
  */
 export declare function printSummaryTable(results: FileScanResult[]): void;
 /**
@@ -67,6 +70,8 @@ export declare function printCommitAllowed(): void;
 /**
  * Print summary table grouped by language
  * Shows files scanned, issues found, and critical count per language
+ *
+ * IMPORTANT: Recalculates counts from actual filtered vulnerabilities.
  */
 export declare function printLanguageSummary(results: FileScanResult[]): void;
 /**
@@ -81,6 +86,10 @@ export declare function printUnsupportedFiles(skippedFiles: string[]): void;
 export declare function printTop10Critical(results: FileScanResult[]): void;
 /**
  * Output results as JSON
+ *
+ * IMPORTANT: Summary counts are calculated from ACTUAL filtered vulnerabilities,
+ * not from pre-calculated counts. This ensures the summary reflects
+ * false-positive filtering applied during analysis.
  */
 export declare function printJSONResults(results: FileScanResult[]): void;
 /**
@@ -90,6 +99,8 @@ export declare function printJSONResults(results: FileScanResult[]): void;
 export declare function generateMarkdownReport(results: FileScanResult[], skippedFiles: string[], duration: number): string;
 /**
  * Print brief summary for screen (when report is generated)
+ *
+ * IMPORTANT: Recalculates counts from actual filtered vulnerabilities.
  */
 export declare function printBriefSummary(results: FileScanResult[], reportPath: string, duration: number): void;
 /**

package/dist/packages/cli/src/reporters/cli-reporter.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"cli-reporter.d.ts","sourceRoot":"","sources":["../../../../../src/reporters/cli-reporter.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAMH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAC;AAG/D;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,CAAC,IAAI,EAAE,MAAM,KAAK,MAAM,CAa3E;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAa1D;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,cAAc,EAAE,GAAG,IAAI,CAqCjE;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,MAAM,EAAE,cAAc,EAAE,OAAO,UAAQ,GAAG,IAAI,CAgDtF;AAED;;;;GAIG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,cAAc,EAAE,EAAE,OAAO,UAAQ,GAAG,IAAI,CA8BrF;AAED;;GAEG;AACH,wBAAgB,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI,CAItD;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI,CAGxD;AAED;;GAEG;AACH,wBAAgB,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAIhD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAIlD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAIlD;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,GAAG,EAAE,MAAM,GACV,IAAI,CAwBN;AAED;;GAEG;AACH,wBAAgB,kBAAkB,IAAI,IAAI,CAKzC;AAED;;;GAGG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,cAAc,EAAE,GAAG,IAAI,CAwDpE;AAED;;;GAGG;AACH,wBAAgB,qBAAqB,CAAC,YAAY,EAAE,MAAM,EAAE,GAAG,IAAI,CAkClE;AA4BD;;;GAGG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,cAAc,EAAE,GAAG,IAAI,CAwDlE;AAUD;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,cAAc,EAAE,GAAG,IAAI,CAyBhE;AAED;;;GAGG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,EAAE,cAAc,EAAE,EACzB,YAAY,EAAE,MAAM,EAAE,EACtB,QAAQ,EAAE,MAAM,GACf,MAAM,CA+KR;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAC/B,OAAO,EAAE,cAAc,EAAE,EACzB,UAAU,EAAE,MAAM,EAClB,QAAQ,EAAE,MAAM,GACf,IAAI,CAgCN;AAED;;;GAGG;AACH,wBAAgB,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAMpD;AAED;;;GAGG;AACH,wBAAgB,eAAe,CAAC,MAAM,EAAE;IACtC,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,OAAO,CAAC;CACnB,GAAG,IAAI,CAuDP"}
+{"version":3,"file":"cli-reporter.d.ts","sourceRoot":"","sources":["../../../../../src/reporters/cli-reporter.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAMH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAC;AAG/D;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,CAAC,IAAI,EAAE,MAAM,KAAK,MAAM,CAa3E;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAa1D;AAED;;;;;GAKG;AACH,wBAAgB,iBAAiB,CAAC,OAAO,EAAE,cAAc,EAAE,GAAG,IAAI,CAsDjE;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,MAAM,EAAE,cAAc,EAAE,OAAO,UAAQ,GAAG,IAAI,CAgDtF;AAED;;;;GAIG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,cAAc,EAAE,EAAE,OAAO,UAAQ,GAAG,IAAI,CA8BrF;AAED;;GAEG;AACH,wBAAgB,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI,CAItD;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI,CAGxD;AAED;;GAEG;AACH,wBAAgB,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAIhD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAIlD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAIlD;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,MAAM,EAChB,IAAI,EAAE,MAAM,EACZ,MAAM,EAAE,MAAM,EACd,GAAG,EAAE,MAAM,GACV,IAAI,CAwBN;AAED;;GAEG;AACH,wBAAgB,kBAAkB,IAAI,IAAI,CAKzC;AAED;;;;;GAKG;AACH,wBAAgB,oBAAoB,CAAC,OAAO,EAAE,cAAc,EAAE,GAAG,IAAI,CAgEpE;AAED;;;GAGG;AACH,wBAAgB,qBAAqB,CAAC,YAAY,EAAE,MAAM,EAAE,GAAG,IAAI,CAkClE;AA4BD;;;GAGG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,cAAc,EAAE,GAAG,IAAI,CAwDlE;AAUD;;;;;;GAMG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,EAAE,cAAc,EAAE,GAAG,IAAI,CAoEhE;AAED;;;GAGG;AACH,wBAAgB,sBAAsB,CACpC,OAAO,EAAE,cAAc,EAAE,EACzB,YAAY,EAAE,MAAM,EAAE,EACtB,QAAQ,EAAE,MAAM,GACf,MAAM,CAoNR;AAED;;;;GAIG;AACH,wBAAgB,iBAAiB,CAC/B,OAAO,EAAE,cAAc,EAAE,EACzB,UAAU,EAAE,MAAM,EAClB,QAAQ,EAAE,MAAM,GACf,IAAI,CA0CN;AAED;;;GAGG;AACH,wBAAgB,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI,CAMpD;AAED;;;GAGG;AACH,wBAAgB,eAAe,CAAC,MAAM,EAAE;IACtC,OAAO,EAAE,OAAO,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,OAAO,CAAC;CACnB,GAAG,IAAI,CAuDP"}

package/dist/packages/cli/src/reporters/cli-reporter.js

@@ -78,15 +78,33 @@ function getSeveritySymbol(severity) {
 }
 /**
  * Print scan results summary table
+ *
+ * IMPORTANT: Recalculates counts from actual filtered vulnerabilities
+ * to ensure summary reflects false-positive filtering.
  */
 function printSummaryTable(results) {
     const totalFiles = results.length;
-    const totalCritical = results.reduce((sum, r) => sum + r.critical, 0);
-    const totalHigh = results.reduce((sum, r) => sum + r.high, 0);
-    const totalMedium = results.reduce((sum, r) => sum + r.medium, 0);
-    const totalLow = results.reduce((sum, r) => sum + r.low, 0);
+    // Recalculate from actual vulnerabilities (post-filtering)
+    let totalCritical = 0;
+    let totalHigh = 0;
+    let totalMedium = 0;
+    let totalLow = 0;
+    let filesWithIssues = 0;
+    results.forEach((r) => {
+        const vulns = r.result.security?.vulnerabilities || [];
+        const crit = vulns.filter((v) => v.severity?.toLowerCase() === 'critical').length;
+        const high = vulns.filter((v) => v.severity?.toLowerCase() === 'high').length;
+        const med = vulns.filter((v) => v.severity?.toLowerCase() === 'medium').length;
+        const low = vulns.filter((v) => v.severity?.toLowerCase() === 'low').length;
+        totalCritical += crit;
+        totalHigh += high;
+        totalMedium += med;
+        totalLow += low;
+        if (crit + high + med + low > 0) {
+            filesWithIssues++;
+        }
+    });
     const totalVulns = totalCritical + totalHigh + totalMedium + totalLow;
-    const filesWithIssues = results.filter((r) => r.critical > 0 || r.high > 0 || r.medium > 0 || r.low > 0).length;
     console.log('');
     console.log(chalk_1.default.bold('Scan Summary'));
     console.log(chalk_1.default.gray('─'.repeat(50)));
@@ -244,6 +262,8 @@ function printCommitAllowed() {
 /**
  * Print summary table grouped by language
  * Shows files scanned, issues found, and critical count per language
+ *
+ * IMPORTANT: Recalculates counts from actual filtered vulnerabilities.
  */
 function printLanguageSummary(results) {
     // Group results by language
@@ -251,12 +271,18 @@ function printLanguageSummary(results) {
     for (const result of results) {
         const lang = result.language;
         const existing = byLanguage.get(lang) || { files: 0, issues: 0, critical: 0, high: 0, medium: 0, low: 0 };
+        // Recalculate from actual vulnerabilities
+        const vulns = result.result.security?.vulnerabilities || [];
+        const crit = vulns.filter((v) => v.severity?.toLowerCase() === 'critical').length;
+        const high = vulns.filter((v) => v.severity?.toLowerCase() === 'high').length;
+        const med = vulns.filter((v) => v.severity?.toLowerCase() === 'medium').length;
+        const low = vulns.filter((v) => v.severity?.toLowerCase() === 'low').length;
         existing.files++;
-        existing.critical += result.critical;
-        existing.high += result.high;
-        existing.medium += result.medium;
-        existing.low += result.low;
-        existing.issues += result.critical + result.high + result.medium + result.low;
+        existing.critical += crit;
+        existing.high += high;
+        existing.medium += med;
+        existing.low += low;
+        existing.issues += crit + high + med + low;
         byLanguage.set(lang, existing);
     }
     if (byLanguage.size === 0) {
@@ -413,29 +439,67 @@ function truncateMessage(message, maxLength) {
 }
 /**
  * Output results as JSON
+ *
+ * IMPORTANT: Summary counts are calculated from ACTUAL filtered vulnerabilities,
+ * not from pre-calculated counts. This ensures the summary reflects
+ * false-positive filtering applied during analysis.
  */
 function printJSONResults(results) {
+    // Recalculate counts from actual filtered vulnerabilities
+    // This ensures summary matches the vulnerabilities array after false-positive filtering
+    const recalculateCountsFromVulnerabilities = (r) => {
+        const vulns = r.result.security?.vulnerabilities || [];
+        const counts = {
+            critical: vulns.filter((v) => v.severity?.toLowerCase() === 'critical').length,
+            high: vulns.filter((v) => v.severity?.toLowerCase() === 'high').length,
+            medium: vulns.filter((v) => v.severity?.toLowerCase() === 'medium').length,
+            low: vulns.filter((v) => v.severity?.toLowerCase() === 'low').length,
+        };
+        // Debug first file
+        if (process.env.DEBUG_COUNTS && r.relativePath === 'scripts/reset-quota.ts') {
+            console.error(`[DEBUG] ${r.relativePath}: old_high=${r.high}, new_high=${counts.high}, total_vulns=${vulns.length}`);
+        }
+        return counts;
+    };
+    // Calculate accurate summary from filtered vulnerabilities
+    let totalCritical = 0;
+    let totalHigh = 0;
+    let totalMedium = 0;
+    let totalLow = 0;
+    let filesWithIssues = 0;
+    const filesOutput = results.map((r) => {
+        const counts = recalculateCountsFromVulnerabilities(r);
+        // Debug: Log first mismatch
+        if (counts.high !== r.high && process.env.DEBUG_COUNTS) {
+            console.error(`[DEBUG] Mismatch in ${r.relativePath}: old=${r.high}, new=${counts.high}, vulns=${r.result.security?.vulnerabilities?.length || 0}`);
+        }
+        // Accumulate totals
+        totalCritical += counts.critical;
+        totalHigh += counts.high;
+        totalMedium += counts.medium;
+        totalLow += counts.low;
+        // Count files with issues
+        if (counts.critical + counts.high + counts.medium + counts.low > 0) {
+            filesWithIssues++;
+        }
+        return {
+            path: r.relativePath,
+            language: r.language,
+            vulnerabilities: r.result.security?.vulnerabilities || [],
+            counts,
+        };
+    });
     const output = {
         summary: {
             filesScanned: results.length,
-            filesWithIssues: results.filter((r) => r.critical > 0 || r.high > 0 || r.medium > 0 || r.low > 0).length,
-            totalVulnerabilities: results.reduce((sum, r) => r.critical + r.high + r.medium + r.low + sum, 0),
-            critical: results.reduce((sum, r) => sum + r.critical, 0),
-            high: results.reduce((sum, r) => sum + r.high, 0),
-            medium: results.reduce((sum, r) => sum + r.medium, 0),
-            low: results.reduce((sum, r) => sum + r.low, 0),
+            filesWithIssues,
+            totalVulnerabilities: totalCritical + totalHigh + totalMedium + totalLow,
+            critical: totalCritical,
+            high: totalHigh,
+            medium: totalMedium,
+            low: totalLow,
         },
-        files: results.map((r) => ({
-            path: r.relativePath,
-            language: r.language,
-            vulnerabilities: r.result.security?.vulnerabilities || [],
-            counts: {
-                critical: r.critical,
-                high: r.high,
-                medium: r.medium,
-                low: r.low,
-            },
-        })),
+        files: filesOutput,
     };
     console.log(JSON.stringify(output, null, 2));
 }
@@ -448,26 +512,41 @@ function generateMarkdownReport(results, skippedFiles, duration) {
     const timestamp = now.toISOString().replace(/[:.]/g, '-').slice(0, 19);
     const filename = `codeslick-report-${timestamp}.md`;
     const filepath = (0, path_1.join)(process.cwd(), filename);
-    // Calculate totals
+    // Calculate totals from actual vulnerabilities (post-filtering)
     const totalFiles = results.length;
-    const totalCritical = results.reduce((sum, r) => sum + r.critical, 0);
-    const totalHigh = results.reduce((sum, r) => sum + r.high, 0);
-    const totalMedium = results.reduce((sum, r) => sum + r.medium, 0);
-    const totalLow = results.reduce((sum, r) => sum + r.low, 0);
-    const totalVulns = totalCritical + totalHigh + totalMedium + totalLow;
-    const filesWithIssues = results.filter(r => r.critical + r.high + r.medium + r.low > 0).length;
-    // Group by language
+    let totalCritical = 0;
+    let totalHigh = 0;
+    let totalMedium = 0;
+    let totalLow = 0;
+    let filesWithIssues = 0;
+    // Group by language and recalculate counts
     const byLanguage = new Map();
     for (const result of results) {
         const lang = result.language;
         const existing = byLanguage.get(lang) || { files: 0, critical: 0, high: 0, medium: 0, low: 0 };
+        // Recalculate from actual vulnerabilities
+        const vulns = result.result.security?.vulnerabilities || [];
+        const crit = vulns.filter((v) => v.severity?.toLowerCase() === 'critical').length;
+        const high = vulns.filter((v) => v.severity?.toLowerCase() === 'high').length;
+        const med = vulns.filter((v) => v.severity?.toLowerCase() === 'medium').length;
+        const low = vulns.filter((v) => v.severity?.toLowerCase() === 'low').length;
         existing.files++;
-        existing.critical += result.critical;
-        existing.high += result.high;
-        existing.medium += result.medium;
-        existing.low += result.low;
+        existing.critical += crit;
+        existing.high += high;
+        existing.medium += med;
+        existing.low += low;
         byLanguage.set(lang, existing);
+        // Accumulate totals
+        totalCritical += crit;
+        totalHigh += high;
+        totalMedium += med;
+        totalLow += low;
+        // Count files with issues
+        if (crit + high + med + low > 0) {
+            filesWithIssues++;
+        }
     }
+    const totalVulns = totalCritical + totalHigh + totalMedium + totalLow;
     // Collect all vulnerabilities for Top 10
     const allVulns = [];
     for (const result of results) {
@@ -574,8 +653,24 @@ function generateMarkdownReport(results, skippedFiles, duration) {
         }
         md += `\n*Supported: .js, .jsx, .ts, .tsx, .py, .java*\n`;
     }
-    // Files with issues (detailed)
-    const filesWithProblems = results.filter(r => r.critical + r.high + r.medium + r.low > 0);
+    // Files with issues (detailed) - recalculate counts from actual vulnerabilities
+    const filesWithProblems = results
+        .map((r) => {
+        const vulns = r.result.security?.vulnerabilities || [];
+        const crit = vulns.filter((v) => v.severity?.toLowerCase() === 'critical').length;
+        const high = vulns.filter((v) => v.severity?.toLowerCase() === 'high').length;
+        const med = vulns.filter((v) => v.severity?.toLowerCase() === 'medium').length;
+        const low = vulns.filter((v) => v.severity?.toLowerCase() === 'low').length;
+        return {
+            relativePath: r.relativePath,
+            critical: crit,
+            high,
+            medium: med,
+            low,
+            total: crit + high + med + low,
+        };
+    })
+        .filter((f) => f.total > 0);
     if (filesWithProblems.length > 0) {
         md += `
 ---
@@ -607,12 +702,22 @@ function generateMarkdownReport(results, skippedFiles, duration) {
 }
 /**
  * Print brief summary for screen (when report is generated)
+ *
+ * IMPORTANT: Recalculates counts from actual filtered vulnerabilities.
  */
 function printBriefSummary(results, reportPath, duration) {
-    const totalCritical = results.reduce((sum, r) => sum + r.critical, 0);
-    const totalHigh = results.reduce((sum, r) => sum + r.high, 0);
-    const totalMedium = results.reduce((sum, r) => sum + r.medium, 0);
-    const totalLow = results.reduce((sum, r) => sum + r.low, 0);
+    // Recalculate from actual vulnerabilities (post-filtering)
+    let totalCritical = 0;
+    let totalHigh = 0;
+    let totalMedium = 0;
+    let totalLow = 0;
+    results.forEach((r) => {
+        const vulns = r.result.security?.vulnerabilities || [];
+        totalCritical += vulns.filter((v) => v.severity?.toLowerCase() === 'critical').length;
+        totalHigh += vulns.filter((v) => v.severity?.toLowerCase() === 'high').length;
+        totalMedium += vulns.filter((v) => v.severity?.toLowerCase() === 'medium').length;
+        totalLow += vulns.filter((v) => v.severity?.toLowerCase() === 'low').length;
+    });
     const totalVulns = totalCritical + totalHigh + totalMedium + totalLow;
     console.log('');
     console.log(chalk_1.default.bold('Scan Complete') + chalk_1.default.gray(` (${(duration / 1000).toFixed(1)}s)`));