npm - deepseek-coder-cli - Versions diffs - 1.0.0 - Mend

deepseek-coder-cli 1.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (824) hide show

package/LICENSE +21 -0
package/README.md +422 -0
package/agents/agi-code.rules.json +87 -0
package/agents/general.rules.json +171 -0
package/dist/bin/cliMode.d.ts +8 -0
package/dist/bin/cliMode.d.ts.map +1 -0
package/dist/bin/cliMode.js +20 -0
package/dist/bin/cliMode.js.map +1 -0
package/dist/bin/deepseek.d.ts +16 -0
package/dist/bin/deepseek.d.ts.map +1 -0
package/dist/bin/deepseek.js +737 -0
package/dist/bin/deepseek.js.map +1 -0
package/dist/bin/erosolar.d.ts +7 -0
package/dist/bin/erosolar.d.ts.map +1 -0
package/dist/bin/erosolar.js +7 -0
package/dist/bin/erosolar.js.map +1 -0
package/dist/bin/selfTest.d.ts +14 -0
package/dist/bin/selfTest.d.ts.map +1 -0
package/dist/bin/selfTest.js +304 -0
package/dist/bin/selfTest.js.map +1 -0
package/dist/capabilities/appleSecurityCapability.d.ts +57 -0
package/dist/capabilities/appleSecurityCapability.d.ts.map +1 -0
package/dist/capabilities/appleSecurityCapability.js +197 -0
package/dist/capabilities/appleSecurityCapability.js.map +1 -0
package/dist/capabilities/authorizedSecurityCapability.d.ts +17 -0
package/dist/capabilities/authorizedSecurityCapability.d.ts.map +1 -0
package/dist/capabilities/authorizedSecurityCapability.js +333 -0
package/dist/capabilities/authorizedSecurityCapability.js.map +1 -0
package/dist/capabilities/autoEnhancementCapability.d.ts +98 -0
package/dist/capabilities/autoEnhancementCapability.d.ts.map +1 -0
package/dist/capabilities/autoEnhancementCapability.js +455 -0
package/dist/capabilities/autoEnhancementCapability.js.map +1 -0
package/dist/capabilities/baseCapability.d.ts +72 -0
package/dist/capabilities/baseCapability.d.ts.map +1 -0
package/dist/capabilities/baseCapability.js +183 -0
package/dist/capabilities/baseCapability.js.map +1 -0
package/dist/capabilities/bashCapability.d.ts +13 -0
package/dist/capabilities/bashCapability.d.ts.map +1 -0
package/dist/capabilities/bashCapability.js +24 -0
package/dist/capabilities/bashCapability.js.map +1 -0
package/dist/capabilities/biocognitiveWarfare.d.ts +136 -0
package/dist/capabilities/biocognitiveWarfare.d.ts.map +1 -0
package/dist/capabilities/biocognitiveWarfare.js +603 -0
package/dist/capabilities/biocognitiveWarfare.js.map +1 -0
package/dist/capabilities/chineseCnoIntegration.d.ts +60 -0
package/dist/capabilities/chineseCnoIntegration.d.ts.map +1 -0
package/dist/capabilities/chineseCnoIntegration.js +253 -0
package/dist/capabilities/chineseCnoIntegration.js.map +1 -0
package/dist/capabilities/cnoCapability.d.ts +110 -0
package/dist/capabilities/cnoCapability.d.ts.map +1 -0
package/dist/capabilities/cnoCapability.js +785 -0
package/dist/capabilities/cnoCapability.js.map +1 -0
package/dist/capabilities/editCapability.d.ts +17 -0
package/dist/capabilities/editCapability.d.ts.map +1 -0
package/dist/capabilities/editCapability.js +27 -0
package/dist/capabilities/editCapability.js.map +1 -0
package/dist/capabilities/eliteCryptoMilitaryCapability.d.ts +99 -0
package/dist/capabilities/eliteCryptoMilitaryCapability.d.ts.map +1 -0
package/dist/capabilities/eliteCryptoMilitaryCapability.js +618 -0
package/dist/capabilities/eliteCryptoMilitaryCapability.js.map +1 -0
package/dist/capabilities/enhancedGitCapability.d.ts +7 -0
package/dist/capabilities/enhancedGitCapability.d.ts.map +1 -0
package/dist/capabilities/enhancedGitCapability.js +220 -0
package/dist/capabilities/enhancedGitCapability.js.map +1 -0
package/dist/capabilities/filesystemCapability.d.ts +13 -0
package/dist/capabilities/filesystemCapability.d.ts.map +1 -0
package/dist/capabilities/filesystemCapability.js +24 -0
package/dist/capabilities/filesystemCapability.js.map +1 -0
package/dist/capabilities/gitHistoryCapability.d.ts +6 -0
package/dist/capabilities/gitHistoryCapability.d.ts.map +1 -0
package/dist/capabilities/gitHistoryCapability.js +160 -0
package/dist/capabilities/gitHistoryCapability.js.map +1 -0
package/dist/capabilities/index.d.ts +26 -0
package/dist/capabilities/index.d.ts.map +1 -0
package/dist/capabilities/index.js +26 -0
package/dist/capabilities/index.js.map +1 -0
package/dist/capabilities/integratedUnifiedCapability.d.ts +105 -0
package/dist/capabilities/integratedUnifiedCapability.d.ts.map +1 -0
package/dist/capabilities/integratedUnifiedCapability.js +422 -0
package/dist/capabilities/integratedUnifiedCapability.js.map +1 -0
package/dist/capabilities/maxOffensiveUkraineCapability.d.ts +46 -0
package/dist/capabilities/maxOffensiveUkraineCapability.d.ts.map +1 -0
package/dist/capabilities/maxOffensiveUkraineCapability.js +725 -0
package/dist/capabilities/maxOffensiveUkraineCapability.js.map +1 -0
package/dist/capabilities/migrationUtilities.d.ts +128 -0
package/dist/capabilities/migrationUtilities.d.ts.map +1 -0
package/dist/capabilities/migrationUtilities.js +658 -0
package/dist/capabilities/migrationUtilities.js.map +1 -0
package/dist/capabilities/offensiveDestructionCapability.d.ts +98 -0
package/dist/capabilities/offensiveDestructionCapability.d.ts.map +1 -0
package/dist/capabilities/offensiveDestructionCapability.js +848 -0
package/dist/capabilities/offensiveDestructionCapability.js.map +1 -0
package/dist/capabilities/quantumSpaceWarfare.d.ts +108 -0
package/dist/capabilities/quantumSpaceWarfare.d.ts.map +1 -0
package/dist/capabilities/quantumSpaceWarfare.js +342 -0
package/dist/capabilities/quantumSpaceWarfare.js.map +1 -0
package/dist/capabilities/readmeIntegration.d.ts +161 -0
package/dist/capabilities/readmeIntegration.d.ts.map +1 -0
package/dist/capabilities/readmeIntegration.js +1034 -0
package/dist/capabilities/readmeIntegration.js.map +1 -0
package/dist/capabilities/searchCapability.d.ts +19 -0
package/dist/capabilities/searchCapability.d.ts.map +1 -0
package/dist/capabilities/searchCapability.js +29 -0
package/dist/capabilities/searchCapability.js.map +1 -0
package/dist/capabilities/selfUpdateSystem.d.ts +122 -0
package/dist/capabilities/selfUpdateSystem.d.ts.map +1 -0
package/dist/capabilities/selfUpdateSystem.js +725 -0
package/dist/capabilities/selfUpdateSystem.js.map +1 -0
package/dist/capabilities/sharedMilitaryInfrastructure.d.ts +89 -0
package/dist/capabilities/sharedMilitaryInfrastructure.d.ts.map +1 -0
package/dist/capabilities/sharedMilitaryInfrastructure.js +233 -0
package/dist/capabilities/sharedMilitaryInfrastructure.js.map +1 -0
package/dist/capabilities/simpleSecurityCapability.d.ts +36 -0
package/dist/capabilities/simpleSecurityCapability.d.ts.map +1 -0
package/dist/capabilities/simpleSecurityCapability.js +271 -0
package/dist/capabilities/simpleSecurityCapability.js.map +1 -0
package/dist/capabilities/toolManifest.d.ts +3 -0
package/dist/capabilities/toolManifest.d.ts.map +1 -0
package/dist/capabilities/toolManifest.js +163 -0
package/dist/capabilities/toolManifest.js.map +1 -0
package/dist/capabilities/toolRegistry.d.ts +25 -0
package/dist/capabilities/toolRegistry.d.ts.map +1 -0
package/dist/capabilities/toolRegistry.js +150 -0
package/dist/capabilities/toolRegistry.js.map +1 -0
package/dist/capabilities/ultimateChineseCno.d.ts +115 -0
package/dist/capabilities/ultimateChineseCno.d.ts.map +1 -0
package/dist/capabilities/ultimateChineseCno.js +516 -0
package/dist/capabilities/ultimateChineseCno.js.map +1 -0
package/dist/capabilities/ultimateIntegrationDemo.d.ts +54 -0
package/dist/capabilities/ultimateIntegrationDemo.d.ts.map +1 -0
package/dist/capabilities/ultimateIntegrationDemo.js +423 -0
package/dist/capabilities/ultimateIntegrationDemo.js.map +1 -0
package/dist/capabilities/unifiedMilitaryCapability.d.ts +63 -0
package/dist/capabilities/unifiedMilitaryCapability.d.ts.map +1 -0
package/dist/capabilities/unifiedMilitaryCapability.js +384 -0
package/dist/capabilities/unifiedMilitaryCapability.js.map +1 -0
package/dist/capabilities/universalCapabilityFramework.d.ts +352 -0
package/dist/capabilities/universalCapabilityFramework.d.ts.map +1 -0
package/dist/capabilities/universalCapabilityFramework.js +1056 -0
package/dist/capabilities/universalCapabilityFramework.js.map +1 -0
package/dist/capabilities/universalSecurityCapability.d.ts +46 -0
package/dist/capabilities/universalSecurityCapability.d.ts.map +1 -0
package/dist/capabilities/universalSecurityCapability.js +580 -0
package/dist/capabilities/universalSecurityCapability.js.map +1 -0
package/dist/capabilities/webCapability.d.ts +23 -0
package/dist/capabilities/webCapability.d.ts.map +1 -0
package/dist/capabilities/webCapability.js +33 -0
package/dist/capabilities/webCapability.js.map +1 -0
package/dist/capabilities/zeroDayDiscoveryCapability.d.ts +31 -0
package/dist/capabilities/zeroDayDiscoveryCapability.d.ts.map +1 -0
package/dist/capabilities/zeroDayDiscoveryCapability.js +183 -0
package/dist/capabilities/zeroDayDiscoveryCapability.js.map +1 -0
package/dist/config.d.ts +25 -0
package/dist/config.d.ts.map +1 -0
package/dist/config.js +155 -0
package/dist/config.js.map +1 -0
package/dist/contracts/agent-profiles.schema.json +43 -0
package/dist/contracts/agent-schemas.json +466 -0
package/dist/contracts/models.schema.json +9 -0
package/dist/contracts/module-schema.json +430 -0
package/dist/contracts/schemas/agent-profile.schema.json +157 -0
package/dist/contracts/schemas/agent-rules.schema.json +238 -0
package/dist/contracts/schemas/agent-schemas.schema.json +528 -0
package/dist/contracts/schemas/agent.schema.json +90 -0
package/dist/contracts/schemas/tool-selection.schema.json +174 -0
package/dist/contracts/tools.schema.json +82 -0
package/dist/contracts/unified-schema.json +757 -0
package/dist/contracts/v1/agent.d.ts +179 -0
package/dist/contracts/v1/agent.d.ts.map +1 -0
package/dist/contracts/v1/agent.js +8 -0
package/dist/contracts/v1/agent.js.map +1 -0
package/dist/contracts/v1/agentProfileManifest.d.ts +60 -0
package/dist/contracts/v1/agentProfileManifest.d.ts.map +1 -0
package/dist/contracts/v1/agentProfileManifest.js +9 -0
package/dist/contracts/v1/agentProfileManifest.js.map +1 -0
package/dist/contracts/v1/agentRules.d.ts +60 -0
package/dist/contracts/v1/agentRules.d.ts.map +1 -0
package/dist/contracts/v1/agentRules.js +10 -0
package/dist/contracts/v1/agentRules.js.map +1 -0
package/dist/contracts/v1/provider.d.ts +149 -0
package/dist/contracts/v1/provider.d.ts.map +1 -0
package/dist/contracts/v1/provider.js +7 -0
package/dist/contracts/v1/provider.js.map +1 -0
package/dist/contracts/v1/tool.d.ts +136 -0
package/dist/contracts/v1/tool.d.ts.map +1 -0
package/dist/contracts/v1/tool.js +7 -0
package/dist/contracts/v1/tool.js.map +1 -0
package/dist/contracts/v1/toolAccess.d.ts +43 -0
package/dist/contracts/v1/toolAccess.d.ts.map +1 -0
package/dist/contracts/v1/toolAccess.js +9 -0
package/dist/contracts/v1/toolAccess.js.map +1 -0
package/dist/core/agent.d.ts +287 -0
package/dist/core/agent.d.ts.map +1 -0
package/dist/core/agent.js +1563 -0
package/dist/core/agent.js.map +1 -0
package/dist/core/agentProfileManifest.d.ts +3 -0
package/dist/core/agentProfileManifest.d.ts.map +1 -0
package/dist/core/agentProfileManifest.js +188 -0
package/dist/core/agentProfileManifest.js.map +1 -0
package/dist/core/agentProfiles.d.ts +22 -0
package/dist/core/agentProfiles.d.ts.map +1 -0
package/dist/core/agentProfiles.js +35 -0
package/dist/core/agentProfiles.js.map +1 -0
package/dist/core/agentRulebook.d.ts +11 -0
package/dist/core/agentRulebook.d.ts.map +1 -0
package/dist/core/agentRulebook.js +136 -0
package/dist/core/agentRulebook.js.map +1 -0
package/dist/core/agentSchemaLoader.d.ts +131 -0
package/dist/core/agentSchemaLoader.d.ts.map +1 -0
package/dist/core/agentSchemaLoader.js +235 -0
package/dist/core/agentSchemaLoader.js.map +1 -0
package/dist/core/agiCore.d.ts +290 -0
package/dist/core/agiCore.d.ts.map +1 -0
package/dist/core/agiCore.js +1348 -0
package/dist/core/agiCore.js.map +1 -0
package/dist/core/aiErrorFixer.d.ts +57 -0
package/dist/core/aiErrorFixer.d.ts.map +1 -0
package/dist/core/aiErrorFixer.js +214 -0
package/dist/core/aiErrorFixer.js.map +1 -0
package/dist/core/antiTermination.d.ts +226 -0
package/dist/core/antiTermination.d.ts.map +1 -0
package/dist/core/antiTermination.js +713 -0
package/dist/core/antiTermination.js.map +1 -0
package/dist/core/appleSecurityAudit.d.ts +98 -0
package/dist/core/appleSecurityAudit.d.ts.map +1 -0
package/dist/core/appleSecurityAudit.js +505 -0
package/dist/core/appleSecurityAudit.js.map +1 -0
package/dist/core/appleSecurityIntegration.d.ts +130 -0
package/dist/core/appleSecurityIntegration.d.ts.map +1 -0
package/dist/core/appleSecurityIntegration.js +697 -0
package/dist/core/appleSecurityIntegration.js.map +1 -0
package/dist/core/bashCommandGuidance.d.ts +16 -0
package/dist/core/bashCommandGuidance.d.ts.map +1 -0
package/dist/core/bashCommandGuidance.js +40 -0
package/dist/core/bashCommandGuidance.js.map +1 -0
package/dist/core/constants.d.ts +31 -0
package/dist/core/constants.d.ts.map +1 -0
package/dist/core/constants.js +62 -0
package/dist/core/constants.js.map +1 -0
package/dist/core/contextManager.d.ts +271 -0
package/dist/core/contextManager.d.ts.map +1 -0
package/dist/core/contextManager.js +1073 -0
package/dist/core/contextManager.js.map +1 -0
package/dist/core/contextWindow.d.ts +42 -0
package/dist/core/contextWindow.d.ts.map +1 -0
package/dist/core/contextWindow.js +123 -0
package/dist/core/contextWindow.js.map +1 -0
package/dist/core/customCommands.d.ts +19 -0
package/dist/core/customCommands.d.ts.map +1 -0
package/dist/core/customCommands.js +85 -0
package/dist/core/customCommands.js.map +1 -0
package/dist/core/deepBugAnalyzer.d.ts +25 -0
package/dist/core/deepBugAnalyzer.d.ts.map +1 -0
package/dist/core/deepBugAnalyzer.js +44 -0
package/dist/core/deepBugAnalyzer.js.map +1 -0
package/dist/core/dualTournament.d.ts +110 -0
package/dist/core/dualTournament.d.ts.map +1 -0
package/dist/core/dualTournament.js +270 -0
package/dist/core/dualTournament.js.map +1 -0
package/dist/core/dynamicGuardrails.d.ts +207 -0
package/dist/core/dynamicGuardrails.d.ts.map +1 -0
package/dist/core/dynamicGuardrails.js +516 -0
package/dist/core/dynamicGuardrails.js.map +1 -0
package/dist/core/embeddingProviders.d.ts +80 -0
package/dist/core/embeddingProviders.d.ts.map +1 -0
package/dist/core/embeddingProviders.js +241 -0
package/dist/core/embeddingProviders.js.map +1 -0
package/dist/core/episodicMemory.d.ts +259 -0
package/dist/core/episodicMemory.d.ts.map +1 -0
package/dist/core/episodicMemory.js +833 -0
package/dist/core/episodicMemory.js.map +1 -0
package/dist/core/errors/apiKeyErrors.d.ts +11 -0
package/dist/core/errors/apiKeyErrors.d.ts.map +1 -0
package/dist/core/errors/apiKeyErrors.js +159 -0
package/dist/core/errors/apiKeyErrors.js.map +1 -0
package/dist/core/errors/errorTypes.d.ts +111 -0
package/dist/core/errors/errorTypes.d.ts.map +1 -0
package/dist/core/errors/errorTypes.js +345 -0
package/dist/core/errors/errorTypes.js.map +1 -0
package/dist/core/errors/index.d.ts +50 -0
package/dist/core/errors/index.d.ts.map +1 -0
package/dist/core/errors/index.js +156 -0
package/dist/core/errors/index.js.map +1 -0
package/dist/core/errors/networkErrors.d.ts +14 -0
package/dist/core/errors/networkErrors.d.ts.map +1 -0
package/dist/core/errors/networkErrors.js +53 -0
package/dist/core/errors/networkErrors.js.map +1 -0
package/dist/core/errors/safetyValidator.d.ts +115 -0
package/dist/core/errors/safetyValidator.d.ts.map +1 -0
package/dist/core/errors/safetyValidator.js +302 -0
package/dist/core/errors/safetyValidator.js.map +1 -0
package/dist/core/errors.d.ts +4 -0
package/dist/core/errors.d.ts.map +1 -0
package/dist/core/errors.js +33 -0
package/dist/core/errors.js.map +1 -0
package/dist/core/finalResponseFormatter.d.ts +10 -0
package/dist/core/finalResponseFormatter.d.ts.map +1 -0
package/dist/core/finalResponseFormatter.js +14 -0
package/dist/core/finalResponseFormatter.js.map +1 -0
package/dist/core/flowProtection.d.ts +154 -0
package/dist/core/flowProtection.d.ts.map +1 -0
package/dist/core/flowProtection.js +436 -0
package/dist/core/flowProtection.js.map +1 -0
package/dist/core/gitWorktreeManager.d.ts +126 -0
package/dist/core/gitWorktreeManager.d.ts.map +1 -0
package/dist/core/gitWorktreeManager.js +403 -0
package/dist/core/gitWorktreeManager.js.map +1 -0
package/dist/core/guardrails.d.ts +150 -0
package/dist/core/guardrails.d.ts.map +1 -0
package/dist/core/guardrails.js +360 -0
package/dist/core/guardrails.js.map +1 -0
package/dist/core/hallucinationGuard.d.ts +57 -0
package/dist/core/hallucinationGuard.d.ts.map +1 -0
package/dist/core/hallucinationGuard.js +237 -0
package/dist/core/hallucinationGuard.js.map +1 -0
package/dist/core/hooks.d.ts +113 -0
package/dist/core/hooks.d.ts.map +1 -0
package/dist/core/hooks.js +364 -0
package/dist/core/hooks.js.map +1 -0
package/dist/core/hotReload.d.ts +154 -0
package/dist/core/hotReload.d.ts.map +1 -0
package/dist/core/hotReload.js +451 -0
package/dist/core/hotReload.js.map +1 -0
package/dist/core/hypothesisEngine.d.ts +27 -0
package/dist/core/hypothesisEngine.d.ts.map +1 -0
package/dist/core/hypothesisEngine.js +58 -0
package/dist/core/hypothesisEngine.js.map +1 -0
package/dist/core/index.d.ts +26 -0
package/dist/core/index.d.ts.map +1 -0
package/dist/core/index.js +54 -0
package/dist/core/index.js.map +1 -0
package/dist/core/inputProtection.d.ts +122 -0
package/dist/core/inputProtection.d.ts.map +1 -0
package/dist/core/inputProtection.js +421 -0
package/dist/core/inputProtection.js.map +1 -0
package/dist/core/liveGCPVerification.d.ts +41 -0
package/dist/core/liveGCPVerification.d.ts.map +1 -0
package/dist/core/liveGCPVerification.js +745 -0
package/dist/core/liveGCPVerification.js.map +1 -0
package/dist/core/modelDiscovery.d.ts +105 -0
package/dist/core/modelDiscovery.d.ts.map +1 -0
package/dist/core/modelDiscovery.js +740 -0
package/dist/core/modelDiscovery.js.map +1 -0
package/dist/core/multilinePasteHandler.d.ts +35 -0
package/dist/core/multilinePasteHandler.d.ts.map +1 -0
package/dist/core/multilinePasteHandler.js +80 -0
package/dist/core/multilinePasteHandler.js.map +1 -0
package/dist/core/parallel.d.ts +85 -0
package/dist/core/parallel.d.ts.map +1 -0
package/dist/core/parallel.js +150 -0
package/dist/core/parallel.js.map +1 -0
package/dist/core/parallelCoordinator.d.ts +21 -0
package/dist/core/parallelCoordinator.d.ts.map +1 -0
package/dist/core/parallelCoordinator.js +42 -0
package/dist/core/parallelCoordinator.js.map +1 -0
package/dist/core/parallelExecutor.d.ts +215 -0
package/dist/core/parallelExecutor.d.ts.map +1 -0
package/dist/core/parallelExecutor.js +584 -0
package/dist/core/parallelExecutor.js.map +1 -0
package/dist/core/preferences.d.ts +71 -0
package/dist/core/preferences.d.ts.map +1 -0
package/dist/core/preferences.js +341 -0
package/dist/core/preferences.js.map +1 -0
package/dist/core/productTestHarness.d.ts +46 -0
package/dist/core/productTestHarness.d.ts.map +1 -0
package/dist/core/productTestHarness.js +128 -0
package/dist/core/productTestHarness.js.map +1 -0
package/dist/core/providerKeys.d.ts +20 -0
package/dist/core/providerKeys.d.ts.map +1 -0
package/dist/core/providerKeys.js +40 -0
package/dist/core/providerKeys.js.map +1 -0
package/dist/core/realityScore.d.ts +159 -0
package/dist/core/realityScore.d.ts.map +1 -0
package/dist/core/realityScore.js +734 -0
package/dist/core/realityScore.js.map +1 -0
package/dist/core/repoUpgradeOrchestrator.d.ts +223 -0
package/dist/core/repoUpgradeOrchestrator.d.ts.map +1 -0
package/dist/core/repoUpgradeOrchestrator.js +1003 -0
package/dist/core/repoUpgradeOrchestrator.js.map +1 -0
package/dist/core/resultVerification.d.ts +47 -0
package/dist/core/resultVerification.d.ts.map +1 -0
package/dist/core/resultVerification.js +126 -0
package/dist/core/resultVerification.js.map +1 -0
package/dist/core/revenueEnvValidator.d.ts +30 -0
package/dist/core/revenueEnvValidator.d.ts.map +1 -0
package/dist/core/revenueEnvValidator.js +241 -0
package/dist/core/revenueEnvValidator.js.map +1 -0
package/dist/core/schemaValidator.d.ts +49 -0
package/dist/core/schemaValidator.d.ts.map +1 -0
package/dist/core/schemaValidator.js +234 -0
package/dist/core/schemaValidator.js.map +1 -0
package/dist/core/secretStore.d.ts +48 -0
package/dist/core/secretStore.d.ts.map +1 -0
package/dist/core/secretStore.js +295 -0
package/dist/core/secretStore.js.map +1 -0
package/dist/core/securityTournament.d.ts +83 -0
package/dist/core/securityTournament.d.ts.map +1 -0
package/dist/core/securityTournament.js +357 -0
package/dist/core/securityTournament.js.map +1 -0
package/dist/core/selfUpgrade.d.ts +253 -0
package/dist/core/selfUpgrade.d.ts.map +1 -0
package/dist/core/selfUpgrade.js +669 -0
package/dist/core/selfUpgrade.js.map +1 -0
package/dist/core/sessionStorage.d.ts +10 -0
package/dist/core/sessionStorage.d.ts.map +1 -0
package/dist/core/sessionStorage.js +46 -0
package/dist/core/sessionStorage.js.map +1 -0
package/dist/core/sessionStore.d.ts +35 -0
package/dist/core/sessionStore.d.ts.map +1 -0
package/dist/core/sessionStore.js +191 -0
package/dist/core/sessionStore.js.map +1 -0
package/dist/core/taskCompletionDetector.d.ts +112 -0
package/dist/core/taskCompletionDetector.d.ts.map +1 -0
package/dist/core/taskCompletionDetector.js +469 -0
package/dist/core/taskCompletionDetector.js.map +1 -0
package/dist/core/toolPreconditions.d.ts +34 -0
package/dist/core/toolPreconditions.d.ts.map +1 -0
package/dist/core/toolPreconditions.js +242 -0
package/dist/core/toolPreconditions.js.map +1 -0
package/dist/core/toolRuntime.d.ts +185 -0
package/dist/core/toolRuntime.d.ts.map +1 -0
package/dist/core/toolRuntime.js +412 -0
package/dist/core/toolRuntime.js.map +1 -0
package/dist/core/tournamentStrategy.d.ts +12 -0
package/dist/core/tournamentStrategy.d.ts.map +1 -0
package/dist/core/tournamentStrategy.js +41 -0
package/dist/core/tournamentStrategy.js.map +1 -0
package/dist/core/types/utilityTypes.d.ts +192 -0
package/dist/core/types/utilityTypes.d.ts.map +1 -0
package/dist/core/types/utilityTypes.js +272 -0
package/dist/core/types/utilityTypes.js.map +1 -0
package/dist/core/types.d.ts +334 -0
package/dist/core/types.d.ts.map +1 -0
package/dist/core/types.js +76 -0
package/dist/core/types.js.map +1 -0
package/dist/core/unifiedOrchestrator.d.ts +47 -0
package/dist/core/unifiedOrchestrator.d.ts.map +1 -0
package/dist/core/unifiedOrchestrator.js +103 -0
package/dist/core/unifiedOrchestrator.js.map +1 -0
package/dist/core/universalSecurityAudit.d.ts +104 -0
package/dist/core/universalSecurityAudit.d.ts.map +1 -0
package/dist/core/universalSecurityAudit.js +2190 -0
package/dist/core/universalSecurityAudit.js.map +1 -0
package/dist/core/updateChecker.d.ts +148 -0
package/dist/core/updateChecker.d.ts.map +1 -0
package/dist/core/updateChecker.js +593 -0
package/dist/core/updateChecker.js.map +1 -0
package/dist/core/variantExecution.d.ts +23 -0
package/dist/core/variantExecution.d.ts.map +1 -0
package/dist/core/variantExecution.js +58 -0
package/dist/core/variantExecution.js.map +1 -0
package/dist/core/winnerStrategy.d.ts +15 -0
package/dist/core/winnerStrategy.d.ts.map +1 -0
package/dist/core/winnerStrategy.js +18 -0
package/dist/core/winnerStrategy.js.map +1 -0
package/dist/core/zeroDayDiscovery.d.ts +96 -0
package/dist/core/zeroDayDiscovery.d.ts.map +1 -0
package/dist/core/zeroDayDiscovery.js +358 -0
package/dist/core/zeroDayDiscovery.js.map +1 -0
package/dist/headless/interactiveShell.d.ts +22 -0
package/dist/headless/interactiveShell.d.ts.map +1 -0
package/dist/headless/interactiveShell.js +3799 -0
package/dist/headless/interactiveShell.js.map +1 -0
package/dist/headless/quickMode.d.ts +26 -0
package/dist/headless/quickMode.d.ts.map +1 -0
package/dist/headless/quickMode.js +226 -0
package/dist/headless/quickMode.js.map +1 -0
package/dist/orchestration/index.d.ts +10 -0
package/dist/orchestration/index.d.ts.map +1 -0
package/dist/orchestration/index.js +13 -0
package/dist/orchestration/index.js.map +1 -0
package/dist/orchestration/repoUpgradeRunner.d.ts +44 -0
package/dist/orchestration/repoUpgradeRunner.d.ts.map +1 -0
package/dist/orchestration/repoUpgradeRunner.js +375 -0
package/dist/orchestration/repoUpgradeRunner.js.map +1 -0
package/dist/orchestration/securityAuditRunner.d.ts +144 -0
package/dist/orchestration/securityAuditRunner.d.ts.map +1 -0
package/dist/orchestration/securityAuditRunner.js +526 -0
package/dist/orchestration/securityAuditRunner.js.map +1 -0
package/dist/plugins/index.d.ts +49 -0
package/dist/plugins/index.d.ts.map +1 -0
package/dist/plugins/index.js +105 -0
package/dist/plugins/index.js.map +1 -0
package/dist/plugins/providers/deepseek/index.d.ts +11 -0
package/dist/plugins/providers/deepseek/index.d.ts.map +1 -0
package/dist/plugins/providers/deepseek/index.js +54 -0
package/dist/plugins/providers/deepseek/index.js.map +1 -0
package/dist/plugins/providers/index.d.ts +2 -0
package/dist/plugins/providers/index.d.ts.map +1 -0
package/dist/plugins/providers/index.js +11 -0
package/dist/plugins/providers/index.js.map +1 -0
package/dist/plugins/tools/agentSpawning/agentSpawningPlugin.d.ts +3 -0
package/dist/plugins/tools/agentSpawning/agentSpawningPlugin.d.ts.map +1 -0
package/dist/plugins/tools/agentSpawning/agentSpawningPlugin.js +27 -0
package/dist/plugins/tools/agentSpawning/agentSpawningPlugin.js.map +1 -0
package/dist/plugins/tools/apple/secureApplePlugin.d.ts +3 -0
package/dist/plugins/tools/apple/secureApplePlugin.d.ts.map +1 -0
package/dist/plugins/tools/apple/secureApplePlugin.js +26 -0
package/dist/plugins/tools/apple/secureApplePlugin.js.map +1 -0
package/dist/plugins/tools/authorizedSecurity/authorizedSecurityPlugin.d.ts +3 -0
package/dist/plugins/tools/authorizedSecurity/authorizedSecurityPlugin.d.ts.map +1 -0
package/dist/plugins/tools/authorizedSecurity/authorizedSecurityPlugin.js +9 -0
package/dist/plugins/tools/authorizedSecurity/authorizedSecurityPlugin.js.map +1 -0
package/dist/plugins/tools/bash/localBashPlugin.d.ts +3 -0
package/dist/plugins/tools/bash/localBashPlugin.d.ts.map +1 -0
package/dist/plugins/tools/bash/localBashPlugin.js +14 -0
package/dist/plugins/tools/bash/localBashPlugin.js.map +1 -0
package/dist/plugins/tools/bidirectionalAudit/bidirectionalAuditPlugin.d.ts +3 -0
package/dist/plugins/tools/bidirectionalAudit/bidirectionalAuditPlugin.d.ts.map +1 -0
package/dist/plugins/tools/bidirectionalAudit/bidirectionalAuditPlugin.js +27 -0
package/dist/plugins/tools/bidirectionalAudit/bidirectionalAuditPlugin.js.map +1 -0
package/dist/plugins/tools/edit/editPlugin.d.ts +9 -0
package/dist/plugins/tools/edit/editPlugin.d.ts.map +1 -0
package/dist/plugins/tools/edit/editPlugin.js +15 -0
package/dist/plugins/tools/edit/editPlugin.js.map +1 -0
package/dist/plugins/tools/enhancedGit/enhancedGitPlugin.d.ts +3 -0
package/dist/plugins/tools/enhancedGit/enhancedGitPlugin.d.ts.map +1 -0
package/dist/plugins/tools/enhancedGit/enhancedGitPlugin.js +9 -0
package/dist/plugins/tools/enhancedGit/enhancedGitPlugin.js.map +1 -0
package/dist/plugins/tools/filesystem/localFilesystemPlugin.d.ts +3 -0
package/dist/plugins/tools/filesystem/localFilesystemPlugin.d.ts.map +1 -0
package/dist/plugins/tools/filesystem/localFilesystemPlugin.js +14 -0
package/dist/plugins/tools/filesystem/localFilesystemPlugin.js.map +1 -0
package/dist/plugins/tools/gitHistory/gitHistoryPlugin.d.ts +3 -0
package/dist/plugins/tools/gitHistory/gitHistoryPlugin.d.ts.map +1 -0
package/dist/plugins/tools/gitHistory/gitHistoryPlugin.js +9 -0
package/dist/plugins/tools/gitHistory/gitHistoryPlugin.js.map +1 -0
package/dist/plugins/tools/index.d.ts +3 -0
package/dist/plugins/tools/index.d.ts.map +1 -0
package/dist/plugins/tools/index.js +3 -0
package/dist/plugins/tools/index.js.map +1 -0
package/dist/plugins/tools/integrity/integrityPlugin.d.ts +3 -0
package/dist/plugins/tools/integrity/integrityPlugin.d.ts.map +1 -0
package/dist/plugins/tools/integrity/integrityPlugin.js +31 -0
package/dist/plugins/tools/integrity/integrityPlugin.js.map +1 -0
package/dist/plugins/tools/mcp/mcpPlugin.d.ts +3 -0
package/dist/plugins/tools/mcp/mcpPlugin.d.ts.map +1 -0
package/dist/plugins/tools/mcp/mcpPlugin.js +27 -0
package/dist/plugins/tools/mcp/mcpPlugin.js.map +1 -0
package/dist/plugins/tools/nodeDefaults.d.ts +15 -0
package/dist/plugins/tools/nodeDefaults.d.ts.map +1 -0
package/dist/plugins/tools/nodeDefaults.js +37 -0
package/dist/plugins/tools/nodeDefaults.js.map +1 -0
package/dist/plugins/tools/offensiveDestruction/offensiveDestructionPlugin.d.ts +3 -0
package/dist/plugins/tools/offensiveDestruction/offensiveDestructionPlugin.d.ts.map +1 -0
package/dist/plugins/tools/offensiveDestruction/offensiveDestructionPlugin.js +9 -0
package/dist/plugins/tools/offensiveDestruction/offensiveDestructionPlugin.js.map +1 -0
package/dist/plugins/tools/orchestration/orchestrationPlugin.d.ts +3 -0
package/dist/plugins/tools/orchestration/orchestrationPlugin.d.ts.map +1 -0
package/dist/plugins/tools/orchestration/orchestrationPlugin.js +340 -0
package/dist/plugins/tools/orchestration/orchestrationPlugin.js.map +1 -0
package/dist/plugins/tools/registry.d.ts +22 -0
package/dist/plugins/tools/registry.d.ts.map +1 -0
package/dist/plugins/tools/registry.js +58 -0
package/dist/plugins/tools/registry.js.map +1 -0
package/dist/plugins/tools/search/localSearchPlugin.d.ts +3 -0
package/dist/plugins/tools/search/localSearchPlugin.d.ts.map +1 -0
package/dist/plugins/tools/search/localSearchPlugin.js +14 -0
package/dist/plugins/tools/search/localSearchPlugin.js.map +1 -0
package/dist/plugins/tools/skills/skillPlugin.d.ts +3 -0
package/dist/plugins/tools/skills/skillPlugin.d.ts.map +1 -0
package/dist/plugins/tools/skills/skillPlugin.js +27 -0
package/dist/plugins/tools/skills/skillPlugin.js.map +1 -0
package/dist/plugins/tools/tao/secureTaoPlugin.d.ts +3 -0
package/dist/plugins/tools/tao/secureTaoPlugin.d.ts.map +1 -0
package/dist/plugins/tools/tao/secureTaoPlugin.js +37 -0
package/dist/plugins/tools/tao/secureTaoPlugin.js.map +1 -0
package/dist/providers/baseProvider.d.ts +148 -0
package/dist/providers/baseProvider.d.ts.map +1 -0
package/dist/providers/baseProvider.js +284 -0
package/dist/providers/baseProvider.js.map +1 -0
package/dist/providers/openaiChatCompletionsProvider.d.ts +64 -0
package/dist/providers/openaiChatCompletionsProvider.d.ts.map +1 -0
package/dist/providers/openaiChatCompletionsProvider.js +1000 -0
package/dist/providers/openaiChatCompletionsProvider.js.map +1 -0
package/dist/providers/providerFactory.d.ts +22 -0
package/dist/providers/providerFactory.d.ts.map +1 -0
package/dist/providers/providerFactory.js +25 -0
package/dist/providers/providerFactory.js.map +1 -0
package/dist/providers/resilientProvider.d.ts +103 -0
package/dist/providers/resilientProvider.d.ts.map +1 -0
package/dist/providers/resilientProvider.js +462 -0
package/dist/providers/resilientProvider.js.map +1 -0
package/dist/runtime/agentController.d.ts +114 -0
package/dist/runtime/agentController.d.ts.map +1 -0
package/dist/runtime/agentController.js +693 -0
package/dist/runtime/agentController.js.map +1 -0
package/dist/runtime/agentHost.d.ts +61 -0
package/dist/runtime/agentHost.d.ts.map +1 -0
package/dist/runtime/agentHost.js +157 -0
package/dist/runtime/agentHost.js.map +1 -0
package/dist/runtime/agentSession.d.ts +45 -0
package/dist/runtime/agentSession.d.ts.map +1 -0
package/dist/runtime/agentSession.js +210 -0
package/dist/runtime/agentSession.js.map +1 -0
package/dist/runtime/agentWorkerPool.d.ts +167 -0
package/dist/runtime/agentWorkerPool.d.ts.map +1 -0
package/dist/runtime/agentWorkerPool.js +435 -0
package/dist/runtime/agentWorkerPool.js.map +1 -0
package/dist/runtime/node.d.ts +7 -0
package/dist/runtime/node.d.ts.map +1 -0
package/dist/runtime/node.js +24 -0
package/dist/runtime/node.js.map +1 -0
package/dist/runtime/universal.d.ts +18 -0
package/dist/runtime/universal.d.ts.map +1 -0
package/dist/runtime/universal.js +21 -0
package/dist/runtime/universal.js.map +1 -0
package/dist/shell/autoExecutor.d.ts +70 -0
package/dist/shell/autoExecutor.d.ts.map +1 -0
package/dist/shell/autoExecutor.js +320 -0
package/dist/shell/autoExecutor.js.map +1 -0
package/dist/shell/commandRegistry.d.ts +122 -0
package/dist/shell/commandRegistry.d.ts.map +1 -0
package/dist/shell/commandRegistry.js +386 -0
package/dist/shell/commandRegistry.js.map +1 -0
package/dist/shell/composableMessage.d.ts +183 -0
package/dist/shell/composableMessage.d.ts.map +1 -0
package/dist/shell/composableMessage.js +420 -0
package/dist/shell/composableMessage.js.map +1 -0
package/dist/shell/liveStatus.d.ts +27 -0
package/dist/shell/liveStatus.d.ts.map +1 -0
package/dist/shell/liveStatus.js +53 -0
package/dist/shell/liveStatus.js.map +1 -0
package/dist/shell/systemPrompt.d.ts +12 -0
package/dist/shell/systemPrompt.d.ts.map +1 -0
package/dist/shell/systemPrompt.js +16 -0
package/dist/shell/systemPrompt.js.map +1 -0
package/dist/shell/vimMode.d.ts +66 -0
package/dist/shell/vimMode.d.ts.map +1 -0
package/dist/shell/vimMode.js +435 -0
package/dist/shell/vimMode.js.map +1 -0
package/dist/tools/bashTools.d.ts +6 -0
package/dist/tools/bashTools.d.ts.map +1 -0
package/dist/tools/bashTools.js +485 -0
package/dist/tools/bashTools.js.map +1 -0
package/dist/tools/diffUtils.d.ts +43 -0
package/dist/tools/diffUtils.d.ts.map +1 -0
package/dist/tools/diffUtils.js +607 -0
package/dist/tools/diffUtils.js.map +1 -0
package/dist/tools/editTools.d.ts +29 -0
package/dist/tools/editTools.d.ts.map +1 -0
package/dist/tools/editTools.js +702 -0
package/dist/tools/editTools.js.map +1 -0
package/dist/tools/emailTools.d.ts +140 -0
package/dist/tools/emailTools.d.ts.map +1 -0
package/dist/tools/emailTools.js +792 -0
package/dist/tools/emailTools.js.map +1 -0
package/dist/tools/fileReadTracker.d.ts +69 -0
package/dist/tools/fileReadTracker.d.ts.map +1 -0
package/dist/tools/fileReadTracker.js +213 -0
package/dist/tools/fileReadTracker.js.map +1 -0
package/dist/tools/fileTools.d.ts +3 -0
package/dist/tools/fileTools.d.ts.map +1 -0
package/dist/tools/fileTools.js +342 -0
package/dist/tools/fileTools.js.map +1 -0
package/dist/tools/grepTools.d.ts +3 -0
package/dist/tools/grepTools.d.ts.map +1 -0
package/dist/tools/grepTools.js +129 -0
package/dist/tools/grepTools.js.map +1 -0
package/dist/tools/humanOpsTools.d.ts +3 -0
package/dist/tools/humanOpsTools.d.ts.map +1 -0
package/dist/tools/humanOpsTools.js +86 -0
package/dist/tools/humanOpsTools.js.map +1 -0
package/dist/tools/localExplore.d.ts +38 -0
package/dist/tools/localExplore.d.ts.map +1 -0
package/dist/tools/localExplore.js +30 -0
package/dist/tools/localExplore.js.map +1 -0
package/dist/tools/metaTools.d.ts +3 -0
package/dist/tools/metaTools.d.ts.map +1 -0
package/dist/tools/metaTools.js +148 -0
package/dist/tools/metaTools.js.map +1 -0
package/dist/tools/planningTools.d.ts +12 -0
package/dist/tools/planningTools.d.ts.map +1 -0
package/dist/tools/planningTools.js +75 -0
package/dist/tools/planningTools.js.map +1 -0
package/dist/tools/searchTools.d.ts +12 -0
package/dist/tools/searchTools.d.ts.map +1 -0
package/dist/tools/searchTools.js +370 -0
package/dist/tools/searchTools.js.map +1 -0
package/dist/tools/secureAppleExploitation.d.ts +29 -0
package/dist/tools/secureAppleExploitation.d.ts.map +1 -0
package/dist/tools/secureAppleExploitation.js +518 -0
package/dist/tools/secureAppleExploitation.js.map +1 -0
package/dist/tools/telemetryTools.d.ts +5 -0
package/dist/tools/telemetryTools.d.ts.map +1 -0
package/dist/tools/telemetryTools.js +9 -0
package/dist/tools/telemetryTools.js.map +1 -0
package/dist/tools/unifiedOps.d.ts +3 -0
package/dist/tools/unifiedOps.d.ts.map +1 -0
package/dist/tools/unifiedOps.js +57 -0
package/dist/tools/unifiedOps.js.map +1 -0
package/dist/tools/webTools.d.ts +26 -0
package/dist/tools/webTools.d.ts.map +1 -0
package/dist/tools/webTools.js +227 -0
package/dist/tools/webTools.js.map +1 -0
package/dist/ui/PromptController.d.ts +174 -0
package/dist/ui/PromptController.d.ts.map +1 -0
package/dist/ui/PromptController.js +351 -0
package/dist/ui/PromptController.js.map +1 -0
package/dist/ui/UnifiedUIRenderer.d.ts +779 -0
package/dist/ui/UnifiedUIRenderer.d.ts.map +1 -0
package/dist/ui/UnifiedUIRenderer.js +5458 -0
package/dist/ui/UnifiedUIRenderer.js.map +1 -0
package/dist/ui/animatedStatus.d.ts +140 -0
package/dist/ui/animatedStatus.d.ts.map +1 -0
package/dist/ui/animatedStatus.js +480 -0
package/dist/ui/animatedStatus.js.map +1 -0
package/dist/ui/animation/AnimationScheduler.d.ts +197 -0
package/dist/ui/animation/AnimationScheduler.d.ts.map +1 -0
package/dist/ui/animation/AnimationScheduler.js +440 -0
package/dist/ui/animation/AnimationScheduler.js.map +1 -0
package/dist/ui/codeHighlighter.d.ts +6 -0
package/dist/ui/codeHighlighter.d.ts.map +1 -0
package/dist/ui/codeHighlighter.js +855 -0
package/dist/ui/codeHighlighter.js.map +1 -0
package/dist/ui/designSystem.d.ts +26 -0
package/dist/ui/designSystem.d.ts.map +1 -0
package/dist/ui/designSystem.js +114 -0
package/dist/ui/designSystem.js.map +1 -0
package/dist/ui/errorFormatter.d.ts +64 -0
package/dist/ui/errorFormatter.d.ts.map +1 -0
package/dist/ui/errorFormatter.js +316 -0
package/dist/ui/errorFormatter.js.map +1 -0
package/dist/ui/globalWriteLock.d.ts +63 -0
package/dist/ui/globalWriteLock.d.ts.map +1 -0
package/dist/ui/globalWriteLock.js +173 -0
package/dist/ui/globalWriteLock.js.map +1 -0
package/dist/ui/index.d.ts +32 -0
package/dist/ui/index.d.ts.map +1 -0
package/dist/ui/index.js +54 -0
package/dist/ui/index.js.map +1 -0
package/dist/ui/interrupts/InterruptManager.d.ts +157 -0
package/dist/ui/interrupts/InterruptManager.d.ts.map +1 -0
package/dist/ui/interrupts/InterruptManager.js +501 -0
package/dist/ui/interrupts/InterruptManager.js.map +1 -0
package/dist/ui/layout.d.ts +27 -0
package/dist/ui/layout.d.ts.map +1 -0
package/dist/ui/layout.js +184 -0
package/dist/ui/layout.js.map +1 -0
package/dist/ui/maxOffensiveUkraineUI.d.ts +94 -0
package/dist/ui/maxOffensiveUkraineUI.d.ts.map +1 -0
package/dist/ui/maxOffensiveUkraineUI.js +316 -0
package/dist/ui/maxOffensiveUkraineUI.js.map +1 -0
package/dist/ui/outputMode.d.ts +44 -0
package/dist/ui/outputMode.d.ts.map +1 -0
package/dist/ui/outputMode.js +123 -0
package/dist/ui/outputMode.js.map +1 -0
package/dist/ui/overlay/OverlayManager.d.ts +105 -0
package/dist/ui/overlay/OverlayManager.d.ts.map +1 -0
package/dist/ui/overlay/OverlayManager.js +291 -0
package/dist/ui/overlay/OverlayManager.js.map +1 -0
package/dist/ui/premiumComponents.d.ts +54 -0
package/dist/ui/premiumComponents.d.ts.map +1 -0
package/dist/ui/premiumComponents.js +241 -0
package/dist/ui/premiumComponents.js.map +1 -0
package/dist/ui/richText.d.ts +13 -0
package/dist/ui/richText.d.ts.map +1 -0
package/dist/ui/richText.js +443 -0
package/dist/ui/richText.js.map +1 -0
package/dist/ui/telemetry/ResponseTracker.d.ts +22 -0
package/dist/ui/telemetry/ResponseTracker.d.ts.map +1 -0
package/dist/ui/telemetry/ResponseTracker.js +60 -0
package/dist/ui/telemetry/ResponseTracker.js.map +1 -0
package/dist/ui/telemetry/UITelemetry.d.ts +181 -0
package/dist/ui/telemetry/UITelemetry.d.ts.map +1 -0
package/dist/ui/telemetry/UITelemetry.js +446 -0
package/dist/ui/telemetry/UITelemetry.js.map +1 -0
package/dist/ui/textHighlighter.d.ts +83 -0
package/dist/ui/textHighlighter.d.ts.map +1 -0
package/dist/ui/textHighlighter.js +267 -0
package/dist/ui/textHighlighter.js.map +1 -0
package/dist/ui/theme.d.ts +364 -0
package/dist/ui/theme.d.ts.map +1 -0
package/dist/ui/theme.js +471 -0
package/dist/ui/theme.js.map +1 -0
package/dist/ui/toolDisplay.d.ts +221 -0
package/dist/ui/toolDisplay.d.ts.map +1 -0
package/dist/ui/toolDisplay.js +1654 -0
package/dist/ui/toolDisplay.js.map +1 -0
package/dist/ui/uiConstants.d.ts +288 -0
package/dist/ui/uiConstants.d.ts.map +1 -0
package/dist/ui/uiConstants.js +472 -0
package/dist/ui/uiConstants.js.map +1 -0
package/dist/utils/askUserPrompt.d.ts +21 -0
package/dist/utils/askUserPrompt.d.ts.map +1 -0
package/dist/utils/askUserPrompt.js +87 -0
package/dist/utils/askUserPrompt.js.map +1 -0
package/dist/utils/asyncUtils.d.ts +95 -0
package/dist/utils/asyncUtils.d.ts.map +1 -0
package/dist/utils/asyncUtils.js +286 -0
package/dist/utils/asyncUtils.js.map +1 -0
package/dist/utils/debugLogger.d.ts +6 -0
package/dist/utils/debugLogger.d.ts.map +1 -0
package/dist/utils/debugLogger.js +39 -0
package/dist/utils/debugLogger.js.map +1 -0
package/dist/utils/errorUtils.d.ts +12 -0
package/dist/utils/errorUtils.d.ts.map +1 -0
package/dist/utils/errorUtils.js +83 -0
package/dist/utils/errorUtils.js.map +1 -0
package/dist/utils/frontmatter.d.ts +10 -0
package/dist/utils/frontmatter.d.ts.map +1 -0
package/dist/utils/frontmatter.js +78 -0
package/dist/utils/frontmatter.js.map +1 -0
package/dist/utils/packageInfo.d.ts +14 -0
package/dist/utils/packageInfo.d.ts.map +1 -0
package/dist/utils/packageInfo.js +45 -0
package/dist/utils/packageInfo.js.map +1 -0
package/dist/utils/planFormatter.d.ts +34 -0
package/dist/utils/planFormatter.d.ts.map +1 -0
package/dist/utils/planFormatter.js +141 -0
package/dist/utils/planFormatter.js.map +1 -0
package/dist/utils/securityUtils.d.ts +132 -0
package/dist/utils/securityUtils.d.ts.map +1 -0
package/dist/utils/securityUtils.js +324 -0
package/dist/utils/securityUtils.js.map +1 -0
package/dist/workspace.d.ts +8 -0
package/dist/workspace.d.ts.map +1 -0
package/dist/workspace.js +134 -0
package/dist/workspace.js.map +1 -0
package/dist/workspace.validator.d.ts +49 -0
package/dist/workspace.validator.d.ts.map +1 -0
package/dist/workspace.validator.js +215 -0
package/dist/workspace.validator.js.map +1 -0
package/package.json +108 -0

package/dist/core/liveGCPVerification.js ADDED Viewed

@@ -0,0 +1,745 @@
+/**
+ * Live GCP Verification Engine
+ *
+ * REAL verification against live Google Cloud infrastructure.
+ * Uses actual API calls, real timing measurements, and live configuration checks.
+ *
+ * For authorized red team operations only.
+ */
+import { exec } from 'child_process';
+import { promisify } from 'util';
+import https from 'https';
+import http from 'http';
+const execAsync = promisify(exec);
+// ═══════════════════════════════════════════════════════════════════════════════
+// GCP API Helper
+// ═══════════════════════════════════════════════════════════════════════════════
+async function getAccessToken() {
+    try {
+        const { stdout } = await execAsync('gcloud auth print-access-token');
+        return stdout.trim();
+    }
+    catch (error) {
+        throw new Error(`Failed to get access token: ${error}`);
+    }
+}
+async function gcpApiCall(endpoint, method = 'GET', body, accessToken) {
+    const token = accessToken || await getAccessToken();
+    const url = new URL(endpoint);
+    const startTime = performance.now();
+    return new Promise((resolve, reject) => {
+        const options = {
+            hostname: url.hostname,
+            path: url.pathname + url.search,
+            method,
+            headers: {
+                'Authorization': `Bearer ${token}`,
+                'Content-Type': 'application/json',
+                'User-Agent': 'agi-core-security-audit/1.0',
+            },
+        };
+        const req = https.request(options, (res) => {
+            let data = '';
+            res.on('data', chunk => data += chunk);
+            res.on('end', () => {
+                const timingMs = performance.now() - startTime;
+                try {
+                    resolve({
+                        data: data ? JSON.parse(data) : {},
+                        timingMs,
+                        statusCode: res.statusCode || 0,
+                        headers: res.headers,
+                    });
+                }
+                catch {
+                    resolve({
+                        data: { raw: data },
+                        timingMs,
+                        statusCode: res.statusCode || 0,
+                        headers: res.headers,
+                    });
+                }
+            });
+        });
+        req.on('error', reject);
+        req.setTimeout(30000, () => {
+            req.destroy();
+            reject(new Error('Request timeout'));
+        });
+        if (body) {
+            req.write(JSON.stringify(body));
+        }
+        req.end();
+    });
+}
+// ═══════════════════════════════════════════════════════════════════════════════
+// Live Verification Tests
+// ═══════════════════════════════════════════════════════════════════════════════
+/**
+ * Test 1: IAM Policy Update Race Condition
+ * Measures timing variance in IAM permission checks
+ */
+async function verifyIAMRaceCondition(config) {
+    console.log('  [TEST] IAM Policy Update Race Condition...');
+    const timings = [];
+    const evidence = [];
+    const token = await getAccessToken();
+    // Make multiple permission check requests and measure timing variance
+    const testCases = [
+        { resource: `//cloudresourcemanager.googleapis.com/projects/${config.projectId}`, permission: 'resourcemanager.projects.get' },
+        { resource: `//cloudresourcemanager.googleapis.com/projects/${config.projectId}`, permission: 'resourcemanager.projects.delete' },
+        { resource: `//cloudresourcemanager.googleapis.com/projects/nonexistent-project-12345`, permission: 'resourcemanager.projects.get' },
+        { resource: `//cloudresourcemanager.googleapis.com/projects/${config.projectId}`, permission: 'iam.roles.create' },
+    ];
+    for (const testCase of testCases) {
+        try {
+            const result = await gcpApiCall(`https://cloudresourcemanager.googleapis.com/v1/projects/${config.projectId}:testIamPermissions`, 'POST', { permissions: [testCase.permission] }, token);
+            timings.push(result.timingMs);
+            evidence.push(`${testCase.permission}: ${result.timingMs.toFixed(2)}ms (status: ${result.statusCode})`);
+        }
+        catch (error) {
+            evidence.push(`${testCase.permission}: ERROR - ${error}`);
+        }
+    }
+    // Calculate timing variance
+    const validTimings = timings.filter(t => t > 0);
+    const mean = validTimings.reduce((a, b) => a + b, 0) / validTimings.length;
+    const variance = validTimings.reduce((a, b) => a + Math.pow(b - mean, 2), 0) / validTimings.length;
+    const stdDev = Math.sqrt(variance);
+    const coefficientOfVariation = (stdDev / mean) * 100;
+    // High variance suggests different code paths (potential timing oracle)
+    const vulnerable = coefficientOfVariation > 25; // >25% CV indicates potential oracle
+    evidence.push(`Mean: ${mean.toFixed(2)}ms, StdDev: ${stdDev.toFixed(2)}ms, CV: ${coefficientOfVariation.toFixed(1)}%`);
+    evidence.push(vulnerable ? 'TIMING ORACLE DETECTED - High variance in permission checks' : 'Normal timing variance');
+    return {
+        id: 'LIVE-IAM-RACE-001',
+        vulnerability: 'IAM Policy Update Race Condition / Timing Oracle',
+        verified: vulnerable,
+        confidence: vulnerable ? 0.75 + (coefficientOfVariation / 400) : 0.3,
+        evidence,
+        timingMs: mean,
+        technique: 'Timing Oracle Analysis',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: vulnerable ? 'high' : 'info',
+    };
+}
+/**
+ * Test 2: Service Account Key Race
+ * Tests the window between key creation and audit logging
+ */
+async function verifyServiceAccountKeyRace(config) {
+    console.log('  [TEST] Service Account Key Creation Race...');
+    const evidence = [];
+    const token = await getAccessToken();
+    // List service accounts to find one we can test with
+    try {
+        const saListResult = await gcpApiCall(`https://iam.googleapis.com/v1/projects/${config.projectId}/serviceAccounts`, 'GET', undefined, token);
+        evidence.push(`Found ${saListResult.data.accounts?.length || 0} service accounts`);
+        evidence.push(`API response time: ${saListResult.timingMs.toFixed(2)}ms`);
+        if (saListResult.data.accounts?.length > 0) {
+            // Check key listing timing for each SA
+            const keyTimings = [];
+            for (const sa of saListResult.data.accounts.slice(0, 3)) {
+                const keyResult = await gcpApiCall(`https://iam.googleapis.com/v1/${sa.name}/keys`, 'GET', undefined, token);
+                keyTimings.push(keyResult.timingMs);
+                evidence.push(`${sa.email}: ${keyResult.data.keys?.length || 0} keys, ${keyResult.timingMs.toFixed(2)}ms`);
+            }
+            // Check if we have permission to create keys (don't actually create)
+            const createPermCheck = await gcpApiCall(`https://cloudresourcemanager.googleapis.com/v1/projects/${config.projectId}:testIamPermissions`, 'POST', { permissions: ['iam.serviceAccountKeys.create'] }, token);
+            const canCreateKeys = createPermCheck.data.permissions?.includes('iam.serviceAccountKeys.create');
+            evidence.push(`Can create SA keys: ${canCreateKeys}`);
+            if (canCreateKeys) {
+                evidence.push('VULNERABLE: Key creation permission exists - race window exploitable');
+            }
+            return {
+                id: 'LIVE-SA-KEY-RACE-001',
+                vulnerability: 'Service Account Key Creation Race Condition',
+                verified: canCreateKeys,
+                confidence: canCreateKeys ? 0.85 : 0.4,
+                evidence,
+                timingMs: saListResult.timingMs,
+                technique: 'Permission Enumeration + Race Analysis',
+                timestamp: new Date().toISOString(),
+                projectId: config.projectId,
+                severity: canCreateKeys ? 'critical' : 'info',
+            };
+        }
+    }
+    catch (error) {
+        evidence.push(`Error: ${error}`);
+    }
+    return {
+        id: 'LIVE-SA-KEY-RACE-001',
+        vulnerability: 'Service Account Key Creation Race Condition',
+        verified: false,
+        confidence: 0.2,
+        evidence,
+        technique: 'Permission Enumeration + Race Analysis',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: 'info',
+    };
+}
+/**
+ * Test 3: Storage Bucket ACL Configuration
+ * Checks for legacy ACL mode and public access
+ */
+async function verifyStorageACLConfig(config) {
+    console.log('  [TEST] Storage Bucket ACL Configuration...');
+    const evidence = [];
+    const token = await getAccessToken();
+    const vulnerabilities = [];
+    try {
+        // List all buckets
+        const bucketsResult = await gcpApiCall(`https://storage.googleapis.com/storage/v1/b?project=${config.projectId}`, 'GET', undefined, token);
+        evidence.push(`Found ${bucketsResult.data.items?.length || 0} buckets`);
+        if (bucketsResult.data.items) {
+            for (const bucket of bucketsResult.data.items.slice(0, 5)) {
+                // Get detailed bucket info
+                const bucketDetail = await gcpApiCall(`https://storage.googleapis.com/storage/v1/b/${bucket.name}?projection=full`, 'GET', undefined, token);
+                const iamConfig = bucketDetail.data.iamConfiguration;
+                const uniformAccess = iamConfig?.uniformBucketLevelAccess?.enabled;
+                const publicPrevention = iamConfig?.publicAccessPrevention;
+                evidence.push(`Bucket: ${bucket.name}`);
+                evidence.push(`  Uniform bucket-level access: ${uniformAccess}`);
+                evidence.push(`  Public access prevention: ${publicPrevention}`);
+                if (!uniformAccess) {
+                    vulnerabilities.push(`${bucket.name}: Legacy ACL mode enabled`);
+                }
+                if (publicPrevention !== 'enforced') {
+                    vulnerabilities.push(`${bucket.name}: Public access prevention not enforced`);
+                }
+                // Check for public ACLs
+                if (bucketDetail.data.acl) {
+                    for (const acl of bucketDetail.data.acl) {
+                        if (acl.entity === 'allUsers' || acl.entity === 'allAuthenticatedUsers') {
+                            vulnerabilities.push(`${bucket.name}: PUBLIC ACCESS via ${acl.entity}`);
+                        }
+                    }
+                }
+            }
+        }
+    }
+    catch (error) {
+        evidence.push(`Error: ${error}`);
+    }
+    const verified = vulnerabilities.length > 0;
+    evidence.push(...vulnerabilities.map(v => `VULN: ${v}`));
+    return {
+        id: 'LIVE-STORAGE-ACL-001',
+        vulnerability: 'Storage Bucket ACL Misconfiguration',
+        verified,
+        confidence: verified ? 0.95 : 0.1,
+        evidence,
+        technique: 'Configuration Audit',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: verified ? 'high' : 'info',
+    };
+}
+/**
+ * Test 4: Metadata Server Access (for GCE/GKE contexts)
+ * Tests if metadata server is accessible and what's exposed
+ */
+async function verifyMetadataServerAccess(config) {
+    console.log('  [TEST] Metadata Server Access...');
+    const evidence = [];
+    // Try to access metadata server (will only work if running on GCP)
+    const metadataEndpoints = [
+        { path: '/computeMetadata/v1/project/project-id', header: true },
+        { path: '/computeMetadata/v1/instance/service-accounts/', header: true },
+        { path: '/0.1/meta-data/project/project-id', header: false }, // Legacy endpoint
+    ];
+    let vulnerable = false;
+    for (const endpoint of metadataEndpoints) {
+        try {
+            const result = await new Promise((resolve, reject) => {
+                const startTime = performance.now();
+                const options = {
+                    hostname: 'metadata.google.internal',
+                    port: 80,
+                    path: endpoint.path,
+                    method: 'GET',
+                    headers: endpoint.header ? { 'Metadata-Flavor': 'Google' } : {},
+                    timeout: 2000,
+                };
+                const req = http.request(options, (res) => {
+                    let data = '';
+                    res.on('data', chunk => data += chunk);
+                    res.on('end', () => {
+                        resolve({
+                            status: res.statusCode || 0,
+                            data,
+                            timingMs: performance.now() - startTime,
+                        });
+                    });
+                });
+                req.on('error', () => resolve({ status: 0, data: 'Not accessible', timingMs: 0 }));
+                req.on('timeout', () => {
+                    req.destroy();
+                    resolve({ status: 0, data: 'Timeout', timingMs: 2000 });
+                });
+                req.end();
+            });
+            evidence.push(`${endpoint.path}: status=${result.status}, ${result.timingMs.toFixed(0)}ms`);
+            if (result.status === 200) {
+                evidence.push(`  Response: ${result.data.substring(0, 100)}`);
+                if (!endpoint.header) {
+                    vulnerable = true;
+                    evidence.push('  CRITICAL: Legacy metadata endpoint accessible without header!');
+                }
+            }
+        }
+        catch (error) {
+            evidence.push(`${endpoint.path}: ${error}`);
+        }
+    }
+    if (evidence.every(e => e.includes('Not accessible') || e.includes('Timeout'))) {
+        evidence.push('Not running on GCP - metadata server not accessible');
+    }
+    return {
+        id: 'LIVE-METADATA-001',
+        vulnerability: 'Metadata Server Exposure',
+        verified: vulnerable,
+        confidence: vulnerable ? 0.95 : 0.1,
+        evidence,
+        technique: 'Direct Endpoint Probing',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: vulnerable ? 'critical' : 'info',
+    };
+}
+/**
+ * Test 5: Cross-Project IAM Bindings
+ * Checks for overly permissive cross-project access
+ */
+async function verifyCrossProjectBindings(config) {
+    console.log('  [TEST] Cross-Project IAM Bindings...');
+    const evidence = [];
+    const token = await getAccessToken();
+    const vulnerabilities = [];
+    try {
+        // Get project IAM policy
+        const policyResult = await gcpApiCall(`https://cloudresourcemanager.googleapis.com/v1/projects/${config.projectId}:getIamPolicy`, 'POST', { options: { requestedPolicyVersion: 3 } }, token);
+        evidence.push(`Retrieved IAM policy in ${policyResult.timingMs.toFixed(2)}ms`);
+        if (policyResult.data.bindings) {
+            for (const binding of policyResult.data.bindings) {
+                for (const member of binding.members || []) {
+                    // Check for cross-project service accounts
+                    if (member.startsWith('serviceAccount:') && !member.includes(config.projectId)) {
+                        vulnerabilities.push(`Cross-project SA: ${member} has ${binding.role}`);
+                    }
+                    // Check for allUsers/allAuthenticatedUsers
+                    if (member === 'allUsers' || member === 'allAuthenticatedUsers') {
+                        vulnerabilities.push(`PUBLIC ACCESS: ${member} has ${binding.role}`);
+                    }
+                    // Check for domain-wide access
+                    if (member.startsWith('domain:')) {
+                        evidence.push(`Domain binding: ${member} has ${binding.role}`);
+                    }
+                }
+            }
+        }
+        evidence.push(`Total bindings: ${policyResult.data.bindings?.length || 0}`);
+    }
+    catch (error) {
+        evidence.push(`Error: ${error}`);
+    }
+    const verified = vulnerabilities.length > 0;
+    evidence.push(...vulnerabilities.map(v => `VULN: ${v}`));
+    return {
+        id: 'LIVE-CROSS-PROJECT-001',
+        vulnerability: 'Cross-Project IAM Binding Exposure',
+        verified,
+        confidence: verified ? 0.9 : 0.2,
+        evidence,
+        technique: 'IAM Policy Analysis',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: verified ? 'high' : 'info',
+    };
+}
+/**
+ * Test 6: Cloud Functions SSRF Potential
+ * Enumerates Cloud Functions that might be vulnerable to SSRF
+ */
+async function verifyCloudFunctionsSSRF(config) {
+    console.log('  [TEST] Cloud Functions SSRF Potential...');
+    const evidence = [];
+    const token = await getAccessToken();
+    const potentialVulns = [];
+    try {
+        // List Cloud Functions (v1 and v2)
+        const functionsResult = await gcpApiCall(`https://cloudfunctions.googleapis.com/v1/projects/${config.projectId}/locations/-/functions`, 'GET', undefined, token);
+        evidence.push(`Found ${functionsResult.data.functions?.length || 0} Cloud Functions`);
+        if (functionsResult.data.functions) {
+            for (const fn of functionsResult.data.functions) {
+                evidence.push(`Function: ${fn.name}`);
+                evidence.push(`  Runtime: ${fn.runtime}`);
+                evidence.push(`  Trigger: ${fn.httpsTrigger ? 'HTTP' : fn.eventTrigger?.eventType || 'Unknown'}`);
+                // HTTP-triggered functions with Pub/Sub triggers are SSRF candidates
+                if (fn.httpsTrigger || fn.eventTrigger?.eventType?.includes('pubsub')) {
+                    potentialVulns.push(`${fn.name}: HTTP/Pub/Sub triggered - potential SSRF vector`);
+                }
+                // Check if function has broad network access
+                if (!fn.vpcConnector) {
+                    evidence.push(`  VPC Connector: None (public internet access)`);
+                    potentialVulns.push(`${fn.name}: No VPC connector - can reach metadata server`);
+                }
+            }
+        }
+    }
+    catch (error) {
+        if (String(error).includes('403')) {
+            evidence.push('Cloud Functions API not enabled or no permission');
+        }
+        else {
+            evidence.push(`Error: ${error}`);
+        }
+    }
+    const verified = potentialVulns.length > 0;
+    evidence.push(...potentialVulns.map(v => `POTENTIAL: ${v}`));
+    return {
+        id: 'LIVE-FUNCTIONS-SSRF-001',
+        vulnerability: 'Cloud Functions SSRF Potential',
+        verified,
+        confidence: verified ? 0.7 : 0.1,
+        evidence,
+        technique: 'Function Enumeration + Architecture Analysis',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: verified ? 'medium' : 'info',
+    };
+}
+/**
+ * Test 7: BigQuery Dataset Exposure
+ * Checks for publicly accessible datasets and authorized views
+ */
+async function verifyBigQueryExposure(config) {
+    console.log('  [TEST] BigQuery Dataset Exposure...');
+    const evidence = [];
+    const token = await getAccessToken();
+    const vulnerabilities = [];
+    try {
+        // List datasets
+        const datasetsResult = await gcpApiCall(`https://bigquery.googleapis.com/bigquery/v2/projects/${config.projectId}/datasets`, 'GET', undefined, token);
+        evidence.push(`Found ${datasetsResult.data.datasets?.length || 0} datasets`);
+        if (datasetsResult.data.datasets) {
+            for (const dataset of datasetsResult.data.datasets.slice(0, 5)) {
+                const datasetId = dataset.datasetReference.datasetId;
+                // Get dataset details with ACLs
+                const detailResult = await gcpApiCall(`https://bigquery.googleapis.com/bigquery/v2/projects/${config.projectId}/datasets/${datasetId}`, 'GET', undefined, token);
+                evidence.push(`Dataset: ${datasetId}`);
+                // Check ACLs for public access
+                if (detailResult.data.access) {
+                    for (const access of detailResult.data.access) {
+                        if (access.specialGroup === 'allAuthenticatedUsers' || access.specialGroup === 'allUsers') {
+                            vulnerabilities.push(`${datasetId}: PUBLIC ACCESS via ${access.specialGroup}`);
+                        }
+                        if (access.iamMember?.startsWith('allUsers') || access.iamMember?.startsWith('allAuthenticatedUsers')) {
+                            vulnerabilities.push(`${datasetId}: PUBLIC ACCESS via ${access.iamMember}`);
+                        }
+                    }
+                }
+                // Check for column-level security
+                evidence.push(`  Labels: ${JSON.stringify(detailResult.data.labels || {})}`);
+            }
+        }
+    }
+    catch (error) {
+        if (String(error).includes('403')) {
+            evidence.push('BigQuery API not enabled or no permission');
+        }
+        else {
+            evidence.push(`Error: ${error}`);
+        }
+    }
+    const verified = vulnerabilities.length > 0;
+    evidence.push(...vulnerabilities.map(v => `VULN: ${v}`));
+    return {
+        id: 'LIVE-BIGQUERY-001',
+        vulnerability: 'BigQuery Dataset Exposure',
+        verified,
+        confidence: verified ? 0.95 : 0.1,
+        evidence,
+        technique: 'Dataset ACL Analysis',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: verified ? 'critical' : 'info',
+    };
+}
+/**
+ * Test 8: GKE Cluster Security Configuration
+ * Checks for insecure GKE configurations
+ */
+async function verifyGKESecurityConfig(config) {
+    console.log('  [TEST] GKE Cluster Security Configuration...');
+    const evidence = [];
+    const token = await getAccessToken();
+    const vulnerabilities = [];
+    try {
+        // List GKE clusters
+        const clustersResult = await gcpApiCall(`https://container.googleapis.com/v1/projects/${config.projectId}/locations/-/clusters`, 'GET', undefined, token);
+        evidence.push(`Found ${clustersResult.data.clusters?.length || 0} GKE clusters`);
+        if (clustersResult.data.clusters) {
+            for (const cluster of clustersResult.data.clusters) {
+                evidence.push(`Cluster: ${cluster.name} (${cluster.location})`);
+                // Check Workload Identity
+                if (!cluster.workloadIdentityConfig?.workloadPool) {
+                    vulnerabilities.push(`${cluster.name}: Workload Identity not enabled`);
+                }
+                // Check Shielded Nodes
+                if (!cluster.shieldedNodes?.enabled) {
+                    vulnerabilities.push(`${cluster.name}: Shielded Nodes not enabled`);
+                }
+                // Check Network Policy
+                if (!cluster.networkPolicy?.enabled) {
+                    vulnerabilities.push(`${cluster.name}: Network Policy not enabled`);
+                }
+                // Check Binary Authorization
+                if (!cluster.binaryAuthorization?.enabled) {
+                    evidence.push(`  Binary Authorization: disabled`);
+                }
+                // Check legacy metadata
+                if (cluster.nodeConfig?.metadata?.['disable-legacy-endpoints'] !== 'true') {
+                    vulnerabilities.push(`${cluster.name}: Legacy metadata endpoints may be enabled`);
+                }
+                // Check master authorized networks
+                if (!cluster.masterAuthorizedNetworksConfig?.enabled) {
+                    vulnerabilities.push(`${cluster.name}: Master authorized networks not configured`);
+                }
+                evidence.push(`  Version: ${cluster.currentMasterVersion}`);
+                evidence.push(`  Node pools: ${cluster.nodePools?.length || 0}`);
+            }
+        }
+    }
+    catch (error) {
+        if (String(error).includes('403')) {
+            evidence.push('GKE API not enabled or no permission');
+        }
+        else {
+            evidence.push(`Error: ${error}`);
+        }
+    }
+    const verified = vulnerabilities.length > 0;
+    evidence.push(...vulnerabilities.map(v => `VULN: ${v}`));
+    return {
+        id: 'LIVE-GKE-001',
+        vulnerability: 'GKE Cluster Security Misconfiguration',
+        verified,
+        confidence: verified ? 0.9 : 0.1,
+        evidence,
+        technique: 'Cluster Configuration Audit',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: verified ? 'high' : 'info',
+    };
+}
+/**
+ * Test 9: VPC Service Controls Check
+ * Verifies if VPC Service Controls are properly configured
+ */
+async function verifyVPCServiceControls(config) {
+    console.log('  [TEST] VPC Service Controls...');
+    const evidence = [];
+    const token = await getAccessToken();
+    try {
+        // Try to get access policy
+        const policyResult = await gcpApiCall(`https://accesscontextmanager.googleapis.com/v1/accessPolicies`, 'GET', undefined, token);
+        if (policyResult.data.accessPolicies?.length > 0) {
+            evidence.push(`Found ${policyResult.data.accessPolicies.length} access policies`);
+            for (const policy of policyResult.data.accessPolicies) {
+                evidence.push(`Policy: ${policy.name}`);
+                // Get service perimeters
+                const perimetersResult = await gcpApiCall(`https://accesscontextmanager.googleapis.com/v1/${policy.name}/servicePerimeters`, 'GET', undefined, token);
+                evidence.push(`  Service perimeters: ${perimetersResult.data.servicePerimeters?.length || 0}`);
+            }
+        }
+        else {
+            evidence.push('No VPC Service Controls configured');
+            evidence.push('VULN: Project not protected by service perimeter');
+        }
+    }
+    catch (error) {
+        if (String(error).includes('403')) {
+            evidence.push('Access Context Manager API not enabled or no permission');
+            evidence.push('Cannot verify VPC Service Controls status');
+        }
+        else {
+            evidence.push(`Error: ${error}`);
+        }
+    }
+    const verified = evidence.some(e => e.includes('VULN:'));
+    return {
+        id: 'LIVE-VPC-SC-001',
+        vulnerability: 'VPC Service Controls Not Configured',
+        verified,
+        confidence: verified ? 0.85 : 0.3,
+        evidence,
+        technique: 'Service Perimeter Analysis',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: verified ? 'medium' : 'info',
+    };
+}
+/**
+ * Test 10: Pub/Sub Topic Permissions
+ * Checks for overly permissive Pub/Sub configurations
+ */
+async function verifyPubSubPermissions(config) {
+    console.log('  [TEST] Pub/Sub Topic Permissions...');
+    const evidence = [];
+    const token = await getAccessToken();
+    const vulnerabilities = [];
+    try {
+        // List topics
+        const topicsResult = await gcpApiCall(`https://pubsub.googleapis.com/v1/projects/${config.projectId}/topics`, 'GET', undefined, token);
+        evidence.push(`Found ${topicsResult.data.topics?.length || 0} Pub/Sub topics`);
+        if (topicsResult.data.topics) {
+            for (const topic of topicsResult.data.topics.slice(0, 5)) {
+                const topicName = topic.name;
+                // Get IAM policy for topic
+                const policyResult = await gcpApiCall(`https://pubsub.googleapis.com/v1/${topicName}:getIamPolicy`, 'GET', undefined, token);
+                evidence.push(`Topic: ${topicName.split('/').pop()}`);
+                if (policyResult.data.bindings) {
+                    for (const binding of policyResult.data.bindings) {
+                        for (const member of binding.members || []) {
+                            if (member === 'allUsers' || member === 'allAuthenticatedUsers') {
+                                vulnerabilities.push(`${topicName.split('/').pop()}: ${member} has ${binding.role}`);
+                            }
+                        }
+                    }
+                }
+            }
+        }
+    }
+    catch (error) {
+        if (String(error).includes('403')) {
+            evidence.push('Pub/Sub API not enabled or no permission');
+        }
+        else {
+            evidence.push(`Error: ${error}`);
+        }
+    }
+    const verified = vulnerabilities.length > 0;
+    evidence.push(...vulnerabilities.map(v => `VULN: ${v}`));
+    return {
+        id: 'LIVE-PUBSUB-001',
+        vulnerability: 'Pub/Sub Topic Public Access',
+        verified,
+        confidence: verified ? 0.95 : 0.1,
+        evidence,
+        technique: 'Topic IAM Policy Analysis',
+        timestamp: new Date().toISOString(),
+        projectId: config.projectId,
+        severity: verified ? 'high' : 'info',
+    };
+}
+// ═══════════════════════════════════════════════════════════════════════════════
+// Main Export
+// ═══════════════════════════════════════════════════════════════════════════════
+/**
+ * Run all live GCP verification tests
+ */
+export async function runLiveGCPVerification(projectId) {
+    console.log('\n');
+    console.log('████████████████████████████████████████████████████████████████████████████████');
+    console.log('██                                                                            ██');
+    console.log('██              LIVE GCP VERIFICATION - REAL API TESTING                      ██');
+    console.log('██                   Authorized Red Team Operations                           ██');
+    console.log('██                                                                            ██');
+    console.log('████████████████████████████████████████████████████████████████████████████████\n');
+    // Get project ID from arg, env, or gcloud config
+    let resolvedProjectId = projectId;
+    if (!resolvedProjectId) {
+        try {
+            const { stdout } = await execAsync('gcloud config get-value project');
+            resolvedProjectId = stdout.trim();
+        }
+        catch {
+            throw new Error('No project ID provided and could not get from gcloud config');
+        }
+    }
+    console.log(`Target Project: ${resolvedProjectId}`);
+    console.log(`Timestamp: ${new Date().toISOString()}`);
+    console.log('\n');
+    const config = { projectId: resolvedProjectId };
+    const results = [];
+    // Run all tests
+    const tests = [
+        verifyIAMRaceCondition,
+        verifyServiceAccountKeyRace,
+        verifyStorageACLConfig,
+        verifyMetadataServerAccess,
+        verifyCrossProjectBindings,
+        verifyCloudFunctionsSSRF,
+        verifyBigQueryExposure,
+        verifyGKESecurityConfig,
+        verifyVPCServiceControls,
+        verifyPubSubPermissions,
+    ];
+    console.log('┌─────────────────────────────────────────────────────────────────────────────┐');
+    console.log('│ EXECUTING LIVE VERIFICATION TESTS                                          │');
+    console.log('└─────────────────────────────────────────────────────────────────────────────┘\n');
+    for (const test of tests) {
+        try {
+            const result = await test(config);
+            results.push(result);
+            const status = result.verified ? '⚠ VULNERABLE' : '✓ OK';
+            const severity = result.verified ? `[${result.severity.toUpperCase()}]` : '';
+            console.log(`    ${status} ${severity} ${result.vulnerability}`);
+            console.log(`      Confidence: ${(result.confidence * 100).toFixed(1)}%`);
+            console.log('');
+        }
+        catch (error) {
+            console.log(`    ✗ ERROR: ${test.name} - ${error}`);
+            console.log('');
+        }
+    }
+    // Summary
+    const verified = results.filter(r => r.verified);
+    const critical = verified.filter(r => r.severity === 'critical');
+    const high = verified.filter(r => r.severity === 'high');
+    const medium = verified.filter(r => r.severity === 'medium');
+    console.log('\n');
+    console.log('████████████████████████████████████████████████████████████████████████████████');
+    console.log('██                        LIVE VERIFICATION COMPLETE                          ██');
+    console.log('████████████████████████████████████████████████████████████████████████████████');
+    console.log('');
+    console.log(`  Total Tests: ${results.length}`);
+    console.log(`  Vulnerabilities Found: ${verified.length}`);
+    console.log(`    Critical: ${critical.length}`);
+    console.log(`    High: ${high.length}`);
+    console.log(`    Medium: ${medium.length}`);
+    console.log('');
+    if (verified.length > 0) {
+        console.log('┌─────────────────────────────────────────────────────────────────────────────┐');
+        console.log('│ CONFIRMED VULNERABILITIES                                                  │');
+        console.log('└─────────────────────────────────────────────────────────────────────────────┘\n');
+        for (const v of verified) {
+            console.log(`  ⚠ [${v.severity.toUpperCase()}] ${v.vulnerability}`);
+            console.log(`    ID: ${v.id}`);
+            console.log(`    Confidence: ${(v.confidence * 100).toFixed(1)}%`);
+            console.log(`    Technique: ${v.technique}`);
+            console.log(`    Evidence:`);
+            for (const e of v.evidence.slice(0, 5)) {
+                console.log(`      - ${e}`);
+            }
+            console.log('');
+        }
+    }
+    console.log('████████████████████████████████████████████████████████████████████████████████\n');
+    return {
+        results,
+        summary: {
+            total: results.length,
+            verified: verified.length,
+            critical: critical.length,
+            high: high.length,
+            medium: medium.length,
+        },
+    };
+}
+export default runLiveGCPVerification;
+//# sourceMappingURL=liveGCPVerification.js.map