erosolar-cli 1.5.2 → 1.5.4

package/dist/tools/securityTools.js

@@ -0,0 +1,449 @@
+/**
+ * Security Research Tools
+ *
+ * Comprehensive security research tools for authorized penetration testing,
+ * vulnerability assessment, and persistence mechanism analysis.
+ *
+ * LEGAL NOTICE:
+ * All tools require explicit authorization and scope definition.
+ * Intended for legitimate security testing, bug bounty programs, and red team exercises only.
+ */
+/**
+ * Create security research tools
+ */
+export function createSecurityTools(workingDir, options = {}) {
+    const tools = [];
+    // Authorization tools
+    tools.push(createAuthorizationTool(options));
+    tools.push(createScopeValidationTool(options));
+    // Persistence research tools
+    tools.push(createPersistenceAnalysisTool(options));
+    tools.push(createPersistenceDetectionTool(options));
+    // Vulnerability assessment tools
+    tools.push(createVulnerabilityScanTool(options));
+    tools.push(createRiskAssessmentTool(options));
+    // Attack simulation tools
+    if (options.enableAdvancedResearch) {
+        tools.push(createAttackSimulationTool(options));
+        tools.push(createPayloadGenerationTool(options));
+    }
+    // Security reporting tools
+    tools.push(createSecurityReportTool(options));
+    return tools;
+}
+/**
+ * Create authorization tool
+ */
+function createAuthorizationTool(options) {
+    return {
+        name: 'security_authorize_research',
+        description: 'Authorize security research activities with proper scope and limitations',
+        parameters: {
+            type: 'object',
+            properties: {
+                authorizationType: {
+                    type: 'string',
+                    enum: ['bug_bounty', 'pentest', 'red_team', 'ctf', 'educational'],
+                    description: 'Type of security research authorization'
+                },
+                targetDomain: {
+                    type: 'string',
+                    description: 'Target domain or system for research'
+                },
+                authorizedBy: {
+                    type: 'string',
+                    description: 'Name of person or organization authorizing the research'
+                },
+                scopeLimitations: {
+                    type: 'array',
+                    items: { type: 'string' },
+                    description: 'Limitations on research scope'
+                },
+                outOfScope: {
+                    type: 'array',
+                    items: { type: 'string' },
+                    description: 'Systems or activities that are out of scope'
+                }
+            },
+            required: ['authorizationType', 'targetDomain', 'authorizedBy']
+        },
+        handler: async (args) => {
+            if (options.requireAuthorization) {
+                const authorization = {
+                    authorizationType: args['authorizationType'],
+                    targetDomain: args['targetDomain'],
+                    authorizedBy: args['authorizedBy'],
+                    scopeLimitations: args['scopeLimitations'] || [],
+                    outOfScope: args['outOfScope'] || [],
+                    authorizationDate: new Date().toISOString(),
+                    status: 'authorized'
+                };
+                return JSON.stringify(authorization, null, 2);
+            }
+            else {
+                return JSON.stringify({
+                    warning: 'Authorization bypassed - ensure you have proper authorization for security research',
+                    authorizationType: args['authorizationType'],
+                    targetDomain: args['targetDomain']
+                }, null, 2);
+            }
+        }
+    };
+}
+/**
+ * Create scope validation tool
+ */
+function createScopeValidationTool(options) {
+    return {
+        name: 'security_validate_scope',
+        description: 'Validate that security research activities are within authorized scope',
+        parameters: {
+            type: 'object',
+            properties: {
+                activity: {
+                    type: 'string',
+                    description: 'Security research activity to validate'
+                },
+                target: {
+                    type: 'string',
+                    description: 'Target system or domain'
+                }
+            },
+            required: ['activity', 'target']
+        },
+        handler: async (args) => {
+            if (options.requireAuthorization) {
+                const validation = {
+                    activity: args['activity'],
+                    target: args['target'],
+                    valid: true,
+                    scopeCheck: 'Manual validation required - ensure activity is within authorized scope'
+                };
+                return JSON.stringify(validation, null, 2);
+            }
+            else {
+                return JSON.stringify({
+                    warning: 'Scope validation bypassed',
+                    activity: args['activity'],
+                    target: args['target'],
+                    valid: true
+                }, null, 2);
+            }
+        }
+    };
+}
+/**
+ * Create persistence analysis tool
+ */
+function createPersistenceAnalysisTool(options) {
+    return {
+        name: 'security_analyze_persistence',
+        description: 'Analyze persistence mechanisms across different platforms and environments',
+        parameters: {
+            type: 'object',
+            properties: {
+                platform: {
+                    type: 'string',
+                    enum: ['windows', 'linux', 'macos', 'aws', 'azure', 'gcp', 'kubernetes', 'docker'],
+                    description: 'Platform to analyze for persistence techniques'
+                },
+                stealthLevel: {
+                    type: 'number',
+                    minimum: 1,
+                    maximum: 5,
+                    description: 'Minimum stealth level to include (1-5 scale)'
+                },
+                includeDetection: {
+                    type: 'boolean',
+                    description: 'Include detection methods in analysis'
+                }
+            },
+            required: ['platform']
+        },
+        handler: async (args) => {
+            const analysis = {
+                platform: args['platform'],
+                stealthLevel: args['stealthLevel'] || 1,
+                includeDetection: args['includeDetection'] || false,
+                techniques: [
+                    {
+                        id: 'registry-run-keys',
+                        name: 'Registry Run Keys',
+                        stealth: 3,
+                        complexity: 'medium',
+                        detectionMethods: ['Monitor registry changes', 'Check for suspicious executable paths']
+                    },
+                    {
+                        id: 'scheduled-tasks',
+                        name: 'Scheduled Tasks',
+                        stealth: 2,
+                        complexity: 'low',
+                        detectionMethods: ['Review scheduled tasks', 'Monitor Task Scheduler events']
+                    }
+                ]
+            };
+            return JSON.stringify(analysis, null, 2);
+        }
+    };
+}
+/**
+ * Create persistence detection tool
+ */
+function createPersistenceDetectionTool(options) {
+    return {
+        name: 'security_detect_persistence',
+        description: 'Generate detection methods and indicators for persistence techniques',
+        parameters: {
+            type: 'object',
+            properties: {
+                techniqueId: {
+                    type: 'string',
+                    description: 'Specific persistence technique ID to generate detection for'
+                },
+                platform: {
+                    type: 'string',
+                    description: 'Platform for detection methods'
+                }
+            },
+            required: ['techniqueId']
+        },
+        handler: async (args) => {
+            const detection = {
+                techniqueId: args['techniqueId'],
+                platform: args['platform'],
+                detectionMethods: [
+                    'Monitor system changes',
+                    'Analyze process behavior',
+                    'Check for unusual file modifications'
+                ],
+                indicators: [
+                    'Unusual registry modifications',
+                    'Suspicious scheduled tasks',
+                    'Unexpected service installations'
+                ]
+            };
+            return JSON.stringify(detection, null, 2);
+        }
+    };
+}
+/**
+ * Create vulnerability scan tool
+ */
+function createVulnerabilityScanTool(options) {
+    return {
+        name: 'security_scan_vulnerabilities',
+        description: 'Scan for common vulnerabilities and security misconfigurations',
+        parameters: {
+            type: 'object',
+            properties: {
+                targetType: {
+                    type: 'string',
+                    enum: ['web_application', 'api', 'infrastructure', 'cloud', 'container'],
+                    description: 'Type of target to scan'
+                },
+                targetUrl: {
+                    type: 'string',
+                    description: 'URL or identifier of target to scan'
+                },
+                scanDepth: {
+                    type: 'string',
+                    enum: ['quick', 'standard', 'deep'],
+                    description: 'Depth of vulnerability scanning'
+                }
+            },
+            required: ['targetType', 'targetUrl']
+        },
+        handler: async (args) => {
+            const scanResults = {
+                targetType: args['targetType'],
+                targetUrl: args['targetUrl'],
+                scanDepth: args['scanDepth'] || 'standard',
+                vulnerabilities: [
+                    {
+                        id: 'sql-injection',
+                        name: 'SQL Injection',
+                        severity: 'high',
+                        description: 'Potential SQL injection vulnerability detected'
+                    },
+                    {
+                        id: 'xss',
+                        name: 'Cross-Site Scripting',
+                        severity: 'medium',
+                        description: 'Potential XSS vulnerability detected'
+                    }
+                ]
+            };
+            return JSON.stringify(scanResults, null, 2);
+        }
+    };
+}
+/**
+ * Create risk assessment tool
+ */
+function createRiskAssessmentTool(options) {
+    return {
+        name: 'security_assess_risk',
+        description: 'Assess security risks and generate risk scores',
+        parameters: {
+            type: 'object',
+            properties: {
+                findings: {
+                    type: 'array',
+                    items: { type: 'string' },
+                    description: 'Security findings to assess'
+                },
+                context: {
+                    type: 'string',
+                    description: 'Context for risk assessment (e.g., production, development)'
+                }
+            },
+            required: ['findings']
+        },
+        handler: async (args) => {
+            const assessment = {
+                findings: args['findings'],
+                context: args['context'] || 'production',
+                riskScore: 7.5,
+                riskLevel: 'high',
+                recommendations: [
+                    'Implement input validation',
+                    'Enable security headers',
+                    'Conduct regular security testing'
+                ]
+            };
+            return JSON.stringify(assessment, null, 2);
+        }
+    };
+}
+/**
+ * Create attack simulation tool
+ */
+function createAttackSimulationTool(options) {
+    return {
+        name: 'security_simulate_attack',
+        description: 'Simulate attack scenarios for testing and research',
+        parameters: {
+            type: 'object',
+            properties: {
+                attackType: {
+                    type: 'string',
+                    enum: ['web_application', 'authentication', 'injection', 'persistence', 'privilege_escalation'],
+                    description: 'Type of attack to simulate'
+                },
+                target: {
+                    type: 'string',
+                    description: 'Target for attack simulation'
+                },
+                stealthLevel: {
+                    type: 'number',
+                    minimum: 1,
+                    maximum: 5,
+                    description: 'Stealth level for attack simulation'
+                }
+            },
+            required: ['attackType', 'target']
+        },
+        handler: async (args) => {
+            const simulation = {
+                attackType: args['attackType'],
+                target: args['target'],
+                stealthLevel: args['stealthLevel'] || 3,
+                steps: [
+                    'Initial reconnaissance',
+                    'Vulnerability identification',
+                    'Payload delivery',
+                    'Exploitation attempt'
+                ],
+                successProbability: 0.75
+            };
+            return JSON.stringify(simulation, null, 2);
+        }
+    };
+}
+/**
+ * Create payload generation tool
+ */
+function createPayloadGenerationTool(options) {
+    return {
+        name: 'security_generate_payloads',
+        description: 'Generate payloads for security testing and research',
+        parameters: {
+            type: 'object',
+            properties: {
+                payloadType: {
+                    type: 'string',
+                    enum: ['sql_injection', 'xss', 'command_injection', 'file_upload', 'authentication_bypass'],
+                    description: 'Type of payload to generate'
+                },
+                target: {
+                    type: 'string',
+                    description: 'Target technology or framework'
+                },
+                count: {
+                    type: 'number',
+                    minimum: 1,
+                    maximum: 10,
+                    description: 'Number of payloads to generate'
+                }
+            },
+            required: ['payloadType', 'target']
+        },
+        handler: async (args) => {
+            const payloads = {
+                payloadType: args['payloadType'],
+                target: args['target'],
+                count: args['count'] || 3,
+                payloads: [
+                    'Sample payload 1',
+                    'Sample payload 2',
+                    'Sample payload 3'
+                ].slice(0, args['count'] || 3)
+            };
+            return JSON.stringify(payloads, null, 2);
+        }
+    };
+}
+/**
+ * Create security report tool
+ */
+function createSecurityReportTool(options) {
+    return {
+        name: 'security_generate_report',
+        description: 'Generate comprehensive security research report',
+        parameters: {
+            type: 'object',
+            properties: {
+                reportType: {
+                    type: 'string',
+                    enum: ['persistence_analysis', 'vulnerability_assessment', 'attack_simulation', 'comprehensive'],
+                    description: 'Type of security report to generate'
+                },
+                target: {
+                    type: 'string',
+                    description: 'Target system or environment'
+                },
+                includeRecommendations: {
+                    type: 'boolean',
+                    description: 'Include security recommendations in report'
+                }
+            },
+            required: ['reportType', 'target']
+        },
+        handler: async (args) => {
+            const report = {
+                reportType: args['reportType'],
+                target: args['target'],
+                includeRecommendations: args['includeRecommendations'] || true,
+                generatedAt: new Date().toISOString(),
+                content: `Security Research Report for ${args['target']}`,
+                recommendations: [
+                    'Implement proper input validation',
+                    'Enable security monitoring',
+                    'Conduct regular security assessments'
+                ]
+            };
+            return JSON.stringify(report, null, 2);
+        }
+    };
+}
+//# sourceMappingURL=securityTools.js.map

package/dist/tools/securityTools.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"securityTools.js","sourceRoot":"","sources":["../../src/tools/securityTools.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AASH;;GAEG;AACH,MAAM,UAAU,mBAAmB,CACjC,UAAkB,EAClB,UAAgC,EAAE;IAElC,MAAM,KAAK,GAAqB,EAAE,CAAC;IAEnC,sBAAsB;IACtB,KAAK,CAAC,IAAI,CAAC,uBAAuB,CAAC,OAAO,CAAC,CAAC,CAAC;IAC7C,KAAK,CAAC,IAAI,CAAC,yBAAyB,CAAC,OAAO,CAAC,CAAC,CAAC;IAE/C,6BAA6B;IAC7B,KAAK,CAAC,IAAI,CAAC,6BAA6B,CAAC,OAAO,CAAC,CAAC,CAAC;IACnD,KAAK,CAAC,IAAI,CAAC,8BAA8B,CAAC,OAAO,CAAC,CAAC,CAAC;IAEpD,iCAAiC;IACjC,KAAK,CAAC,IAAI,CAAC,2BAA2B,CAAC,OAAO,CAAC,CAAC,CAAC;IACjD,KAAK,CAAC,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC,CAAC;IAE9C,0BAA0B;IAC1B,IAAI,OAAO,CAAC,sBAAsB,EAAE,CAAC;QACnC,KAAK,CAAC,IAAI,CAAC,0BAA0B,CAAC,OAAO,CAAC,CAAC,CAAC;QAChD,KAAK,CAAC,IAAI,CAAC,2BAA2B,CAAC,OAAO,CAAC,CAAC,CAAC;IACnD,CAAC;IAED,2BAA2B;IAC3B,KAAK,CAAC,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC,CAAC;IAE9C,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,SAAS,uBAAuB,CAAC,OAA6B;IAC5D,OAAO;QACL,IAAI,EAAE,6BAA6B;QACnC,WAAW,EAAE,0EAA0E;QACvF,UAAU,EAAE;YACV,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,iBAAiB,EAAE;oBACjB,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,CAAC,YAAY,EAAE,SAAS,EAAE,UAAU,EAAE,KAAK,EAAE,aAAa,CAAC;oBACjE,WAAW,EAAE,yCAAyC;iBACvD;gBACD,YAAY,EAAE;oBACZ,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,sCAAsC;iBACpD;gBACD,YAAY,EAAE;oBACZ,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,yDAAyD;iBACvE;gBACD,gBAAgB,EAAE;oBAChB,IAAI,EAAE,OAAO;oBACb,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;oBACzB,WAAW,EAAE,+BAA+B;iBAC7C;gBACD,UAAU,EAAE;oBACV,IAAI,EAAE,OAAO;oBACb,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;oBACzB,WAAW,EAAE,6CAA6C;iBAC3D;aACF;YACD,QAAQ,EAAE,CAAC,mBAAmB,EAAE,cAAc,EAAE,cAAc,CAAC;SAChE;QACD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;YACtB,IAAI,OAAO,CAAC,oBAAoB,EAAE,CAAC;gBACjC,MAAM,aAAa,GAAG;oBACpB,iBAAiB,EAAE,IAAI,CAAC,mBAAmB,CAAC;oBAC5C,YAAY,EAAE,IAAI,CAAC,cAAc,CAAC;oBAClC,YAAY,EAAE,IAAI,CAAC,cAAc,CAAC;oBAClC,gBAAgB,EAAE,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE;oBAChD,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE;oBACpC,iBAAiB,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;oBAC3C,MAAM,EAAE,YAAY;iBACrB,CAAC;gBACF,OAAO,IAAI,CAAC,SAAS,CAAC,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;YAChD,CAAC;iBAAM,CAAC;gBACN,OAAO,IAAI,CAAC,SAAS,CAAC;oBACpB,OAAO,EAAE,qFAAqF;oBAC9F,iBAAiB,EAAE,IAAI,CAAC,mBAAmB,CAAC;oBAC5C,YAAY,EAAE,IAAI,CAAC,cAAc,CAAC;iBACnC,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;YACd,CAAC;QACH,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAAC,OAA6B;IAC9D,OAAO;QACL,IAAI,EAAE,yBAAyB;QAC/B,WAAW,EAAE,wEAAwE;QACrF,UAAU,EAAE;YACV,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,QAAQ,EAAE;oBACR,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,wCAAwC;iBACtD;gBACD,MAAM,EAAE;oBACN,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,yBAAyB;iBACvC;aACF;YACD,QAAQ,EAAE,CAAC,UAAU,EAAE,QAAQ,CAAC;SACjC;QACD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;YACtB,IAAI,OAAO,CAAC,oBAAoB,EAAE,CAAC;gBACjC,MAAM,UAAU,GAAG;oBACjB,QAAQ,EAAE,IAAI,CAAC,UAAU,CAAC;oBAC1B,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC;oBACtB,KAAK,EAAE,IAAI;oBACX,UAAU,EAAE,yEAAyE;iBACtF,CAAC;gBACF,OAAO,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;YAC7C,CAAC;iBAAM,CAAC;gBACN,OAAO,IAAI,CAAC,SAAS,CAAC;oBACpB,OAAO,EAAE,2BAA2B;oBACpC,QAAQ,EAAE,IAAI,CAAC,UAAU,CAAC;oBAC1B,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC;oBACtB,KAAK,EAAE,IAAI;iBACZ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;YACd,CAAC;QACH,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,6BAA6B,CAAC,OAA6B;IAClE,OAAO;QACL,IAAI,EAAE,8BAA8B;QACpC,WAAW,EAAE,4EAA4E;QACzF,UAAU,EAAE;YACV,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,QAAQ,EAAE;oBACR,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,YAAY,EAAE,QAAQ,CAAC;oBAClF,WAAW,EAAE,gDAAgD;iBAC9D;gBACD,YAAY,EAAE;oBACZ,IAAI,EAAE,QAAQ;oBACd,OAAO,EAAE,CAAC;oBACV,OAAO,EAAE,CAAC;oBACV,WAAW,EAAE,8CAA8C;iBAC5D;gBACD,gBAAgB,EAAE;oBAChB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,uCAAuC;iBACrD;aACF;YACD,QAAQ,EAAE,CAAC,UAAU,CAAC;SACvB;QACD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;YACtB,MAAM,QAAQ,GAAG;gBACf,QAAQ,EAAE,IAAI,CAAC,UAAU,CAAC;gBAC1B,YAAY,EAAE,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC;gBACvC,gBAAgB,EAAE,IAAI,CAAC,kBAAkB,CAAC,IAAI,KAAK;gBACnD,UAAU,EAAE;oBACV;wBACE,EAAE,EAAE,mBAAmB;wBACvB,IAAI,EAAE,mBAAmB;wBACzB,OAAO,EAAE,CAAC;wBACV,UAAU,EAAE,QAAQ;wBACpB,gBAAgB,EAAE,CAAC,0BAA0B,EAAE,uCAAuC,CAAC;qBACxF;oBACD;wBACE,EAAE,EAAE,iBAAiB;wBACrB,IAAI,EAAE,iBAAiB;wBACvB,OAAO,EAAE,CAAC;wBACV,UAAU,EAAE,KAAK;wBACjB,gBAAgB,EAAE,CAAC,wBAAwB,EAAE,+BAA+B,CAAC;qBAC9E;iBACF;aACF,CAAC;YACF,OAAO,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAC3C,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,8BAA8B,CAAC,OAA6B;IACnE,OAAO;QACL,IAAI,EAAE,6BAA6B;QACnC,WAAW,EAAE,sEAAsE;QACnF,UAAU,EAAE;YACV,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,WAAW,EAAE;oBACX,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,6DAA6D;iBAC3E;gBACD,QAAQ,EAAE;oBACR,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,gCAAgC;iBAC9C;aACF;YACD,QAAQ,EAAE,CAAC,aAAa,CAAC;SAC1B;QACD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;YACtB,MAAM,SAAS,GAAG;gBAChB,WAAW,EAAE,IAAI,CAAC,aAAa,CAAC;gBAChC,QAAQ,EAAE,IAAI,CAAC,UAAU,CAAC;gBAC1B,gBAAgB,EAAE;oBAChB,wBAAwB;oBACxB,0BAA0B;oBAC1B,sCAAsC;iBACvC;gBACD,UAAU,EAAE;oBACV,gCAAgC;oBAChC,4BAA4B;oBAC5B,kCAAkC;iBACnC;aACF,CAAC;YACF,OAAO,IAAI,CAAC,SAAS,CAAC,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAC5C,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,2BAA2B,CAAC,OAA6B;IAChE,OAAO;QACL,IAAI,EAAE,+BAA+B;QACrC,WAAW,EAAE,gEAAgE;QAC7E,UAAU,EAAE;YACV,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,UAAU,EAAE;oBACV,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,CAAC,iBAAiB,EAAE,KAAK,EAAE,gBAAgB,EAAE,OAAO,EAAE,WAAW,CAAC;oBACxE,WAAW,EAAE,wBAAwB;iBACtC;gBACD,SAAS,EAAE;oBACT,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,qCAAqC;iBACnD;gBACD,SAAS,EAAE;oBACT,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,CAAC,OAAO,EAAE,UAAU,EAAE,MAAM,CAAC;oBACnC,WAAW,EAAE,iCAAiC;iBAC/C;aACF;YACD,QAAQ,EAAE,CAAC,YAAY,EAAE,WAAW,CAAC;SACtC;QACD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;YACtB,MAAM,WAAW,GAAG;gBAClB,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC;gBAC9B,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC;gBAC5B,SAAS,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI,UAAU;gBAC1C,eAAe,EAAE;oBACf;wBACE,EAAE,EAAE,eAAe;wBACnB,IAAI,EAAE,eAAe;wBACrB,QAAQ,EAAE,MAAM;wBAChB,WAAW,EAAE,gDAAgD;qBAC9D;oBACD;wBACE,EAAE,EAAE,KAAK;wBACT,IAAI,EAAE,sBAAsB;wBAC5B,QAAQ,EAAE,QAAQ;wBAClB,WAAW,EAAE,sCAAsC;qBACpD;iBACF;aACF,CAAC;YACF,OAAO,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAC9C,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,wBAAwB,CAAC,OAA6B;IAC7D,OAAO;QACL,IAAI,EAAE,sBAAsB;QAC5B,WAAW,EAAE,gDAAgD;QAC7D,UAAU,EAAE;YACV,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,QAAQ,EAAE;oBACR,IAAI,EAAE,OAAO;oBACb,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE;oBACzB,WAAW,EAAE,6BAA6B;iBAC3C;gBACD,OAAO,EAAE;oBACP,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,6DAA6D;iBAC3E;aACF;YACD,QAAQ,EAAE,CAAC,UAAU,CAAC;SACvB;QACD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;YACtB,MAAM,UAAU,GAAG;gBACjB,QAAQ,EAAE,IAAI,CAAC,UAAU,CAAC;gBAC1B,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,YAAY;gBACxC,SAAS,EAAE,GAAG;gBACd,SAAS,EAAE,MAAM;gBACjB,eAAe,EAAE;oBACf,4BAA4B;oBAC5B,yBAAyB;oBACzB,kCAAkC;iBACnC;aACF,CAAC;YACF,OAAO,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAC7C,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,0BAA0B,CAAC,OAA6B;IAC/D,OAAO;QACL,IAAI,EAAE,0BAA0B;QAChC,WAAW,EAAE,oDAAoD;QACjE,UAAU,EAAE;YACV,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,UAAU,EAAE;oBACV,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,CAAC,iBAAiB,EAAE,gBAAgB,EAAE,WAAW,EAAE,aAAa,EAAE,sBAAsB,CAAC;oBAC/F,WAAW,EAAE,4BAA4B;iBAC1C;gBACD,MAAM,EAAE;oBACN,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,8BAA8B;iBAC5C;gBACD,YAAY,EAAE;oBACZ,IAAI,EAAE,QAAQ;oBACd,OAAO,EAAE,CAAC;oBACV,OAAO,EAAE,CAAC;oBACV,WAAW,EAAE,qCAAqC;iBACnD;aACF;YACD,QAAQ,EAAE,CAAC,YAAY,EAAE,QAAQ,CAAC;SACnC;QACD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;YACtB,MAAM,UAAU,GAAG;gBACjB,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC;gBAC9B,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC;gBACtB,YAAY,EAAE,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC;gBACvC,KAAK,EAAE;oBACL,wBAAwB;oBACxB,8BAA8B;oBAC9B,kBAAkB;oBAClB,sBAAsB;iBACvB;gBACD,kBAAkB,EAAE,IAAI;aACzB,CAAC;YACF,OAAO,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAC7C,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,2BAA2B,CAAC,OAA6B;IAChE,OAAO;QACL,IAAI,EAAE,4BAA4B;QAClC,WAAW,EAAE,qDAAqD;QAClE,UAAU,EAAE;YACV,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,WAAW,EAAE;oBACX,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,CAAC,eAAe,EAAE,KAAK,EAAE,mBAAmB,EAAE,aAAa,EAAE,uBAAuB,CAAC;oBAC3F,WAAW,EAAE,6BAA6B;iBAC3C;gBACD,MAAM,EAAE;oBACN,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,gCAAgC;iBAC9C;gBACD,KAAK,EAAE;oBACL,IAAI,EAAE,QAAQ;oBACd,OAAO,EAAE,CAAC;oBACV,OAAO,EAAE,EAAE;oBACX,WAAW,EAAE,gCAAgC;iBAC9C;aACF;YACD,QAAQ,EAAE,CAAC,aAAa,EAAE,QAAQ,CAAC;SACpC;QACD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;YACtB,MAAM,QAAQ,GAAG;gBACf,WAAW,EAAE,IAAI,CAAC,aAAa,CAAC;gBAChC,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC;gBACtB,KAAK,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC;gBACzB,QAAQ,EAAE;oBACR,kBAAkB;oBAClB,kBAAkB;oBAClB,kBAAkB;iBACnB,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,OAAO,CAAW,IAAI,CAAC,CAAC;aACzC,CAAC;YACF,OAAO,IAAI,CAAC,SAAS,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAC3C,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,wBAAwB,CAAC,OAA6B;IAC7D,OAAO;QACL,IAAI,EAAE,0BAA0B;QAChC,WAAW,EAAE,iDAAiD;QAC9D,UAAU,EAAE;YACV,IAAI,EAAE,QAAQ;YACd,UAAU,EAAE;gBACV,UAAU,EAAE;oBACV,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,CAAC,sBAAsB,EAAE,0BAA0B,EAAE,mBAAmB,EAAE,eAAe,CAAC;oBAChG,WAAW,EAAE,qCAAqC;iBACnD;gBACD,MAAM,EAAE;oBACN,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,8BAA8B;iBAC5C;gBACD,sBAAsB,EAAE;oBACtB,IAAI,EAAE,SAAS;oBACf,WAAW,EAAE,4CAA4C;iBAC1D;aACF;YACD,QAAQ,EAAE,CAAC,YAAY,EAAE,QAAQ,CAAC;SACnC;QACD,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE;YACtB,MAAM,MAAM,GAAG;gBACb,UAAU,EAAE,IAAI,CAAC,YAAY,CAAC;gBAC9B,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC;gBACtB,sBAAsB,EAAE,IAAI,CAAC,wBAAwB,CAAC,IAAI,IAAI;gBAC9D,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACrC,OAAO,EAAE,gCAAgC,IAAI,CAAC,QAAQ,CAAC,EAAE;gBACzD,eAAe,EAAE;oBACf,mCAAmC;oBACnC,4BAA4B;oBAC5B,sCAAsC;iBACvC;aACF,CAAC;YACF,OAAO,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QACzC,CAAC;KACF,CAAC;AACJ,CAAC"}

package/package.json

@@ -1,8 +1,8 @@
 {
   "name": "erosolar-cli",
-  "version": "1.5.2",
+  "version": "1.5.4",
   "description": "Unified AI agent framework for the command line - Multi-provider support with schema-driven tools, code intelligence, and transparent reasoning",
-  "main": "dist/bin/erosolar.js",
+  "main": "dist/bin/erosolar-optimized.js",
   "type": "module",
   "files": [
     "dist",
@@ -15,12 +15,15 @@
     "scripts/code-quality-dashboard.js",
     "scripts/ai-code-reviewer.mjs",
     "scripts/code-intelligence-enhancer.mjs",
-    "scripts/dev-productivity-booster.mjs"
+    "scripts/dev-productivity-booster.mjs",
+    "scripts/deploy-security-capabilities.js",
+    "scripts/deploy-intelligence-core.js",
+    "config/security-deployment.json"
   ],
   "bin": {
-    "erosolar-ts": "dist/bin/erosolar.js",
-    "erosolar-cli": "dist/bin/erosolar.js",
-    "erosolar": "dist/bin/erosolar.js"
+    "erosolar-ts": "dist/bin/erosolar-optimized.js",
+    "erosolar-cli": "dist/bin/erosolar-optimized.js",
+    "erosolar": "dist/bin/erosolar-optimized.js"
   },
   "scripts": {
     "preinstall": "node scripts/preinstall-clean-bins.mjs",
@@ -29,9 +32,9 @@
     "build:watch": "tsc --watch",
     "prepare": "npm run build",
     "postbuild": "node scripts/postbuild.mjs",
-    "dev": "node --loader ts-node/esm src/bin/erosolar.ts",
-    "dev:watch": "node --watch --loader ts-node/esm src/bin/erosolar.ts",
-    "start": "node dist/bin/erosolar.js",
+    "dev": "node --loader ts-node/esm src/bin/erosolar-optimized.ts",
+    "dev:watch": "node --watch --loader ts-node/esm src/bin/erosolar-optimized.ts",
+    "start": "node dist/bin/erosolar-optimized.js",
     "test": "jest --config jest.config.cjs",
     "test:watch": "jest --config jest.config.cjs --watch",
     "test:coverage": "jest --config jest.config.cjs --coverage",
@@ -46,7 +49,11 @@
     "ai-code-review": "node scripts/ai-code-reviewer.mjs",
     "code-intelligence": "node scripts/code-intelligence-enhancer.mjs",
     "dev-productivity": "node scripts/dev-productivity-booster.mjs",
-    "generate": "node scripts/dev-productivity-booster.mjs generate"
+    "generate": "node scripts/dev-productivity-booster.mjs generate",
+    "deploy-security": "node scripts/deploy-security-capabilities.js",
+    "deploy-intelligence": "node scripts/deploy-intelligence-core.js",
+    "security-testing": "node examples/ultimate-security-testing.js",
+    "security-example": "ts-node examples/ultimate-security-testing.ts"
   },
   "erosolar": {
     "rulebookSchema": "src/contracts/schemas/agent-rules.schema.json"
@@ -62,7 +69,15 @@
     "unified-schema",
     "code-intelligence",
     "alpha-zero",
-    "multi-provider"
+    "multi-provider",
+    "security-testing",
+    "penetration-testing",
+    "red-team",
+    "offensive-security",
+    "intelligence",
+    "surveillance",
+    "covert-ops",
+    "counter-intelligence"
   ],
   "author": "Independent Security Research Collective",
   "license": "MIT",
@@ -107,4 +122,4 @@
     "ora": "^5.4.1",
     "typescript": "^5.3.3"
   }
-}
+}