erosolar-cli 2.1.269 → 2.1.271

package/dist/core/unifiedOrchestrator.js

@@ -1,284 +1,945 @@
 /**
- * Unified Orchestrator
+ * Unified Orchestrator - Comprehensive Real Tool Execution
  *
- * Lean orchestration combining RL and non-RL modes:
- * - Single pass: Standard execution
- * - Dual-RL: Self-improving with refinement
- * - Auto: Execute to completion
- * - APT: Full kill-chain execution
+ * REAL EXECUTION ONLY - NO SIMULATIONS
  *
- * Features:
- * - Mode-agnostic interface
- * - RL reward tracking
- * - Real technique execution via TAO
- * - Deliverable generation
+ * Provides comprehensive tools for AI to use naturally.
+ * AI decides what to do during confirmation/planning phase.
+ * All tools execute real commands - no mocks, no fakes.
+ *
+ * Tool Categories:
+ * - Execution: Run commands, scripts, processes
+ * - Engineering: Build, test, lint, typecheck, format, deps
+ * - Security: Audit, scan, recon, enumerate, analyze
+ * - Investigation: Files, processes, network, forensics
+ * - Analysis: Code quality, performance, patterns
+ * - Git: Status, commits, branches, diffs
  */
-import { AgentOrchestrator, } from './agentOrchestrator.js';
-import { scoreOutcome, recordDualOutcome, planAttackChain, selectNextTechnique, executeTechniqueInChain, getChainStats, getRLState, parseNaturalLanguageIntent, } from '../tools/tao/index.js';
+import { execSync, spawn } from 'child_process';
+import * as fs from 'fs';
+import * as path from 'path';
+import * as crypto from 'crypto';
+import * as os from 'os';
 // ============================================================================
-// UNIFIED ORCHESTRATOR
+// UNIFIED ORCHESTRATOR - Comprehensive Tool Set
 // ============================================================================
 export class UnifiedOrchestrator {
-    agent;
-    baseOrchestrator;
-    constructor(agent) {
-        this.agent = agent;
-        this.baseOrchestrator = new AgentOrchestrator(agent);
+    workingDir;
+    results = [];
+    findings = [];
+    backgroundProcesses = new Map();
+    constructor(workingDir) {
+        this.workingDir = workingDir || process.cwd();
     }
-    /**
-     * Run orchestration with specified mode
-     */
-    async run(objective, options = {}) {
-        const mode = options.mode ?? 'single';
-        const startTime = Date.now();
-        switch (mode) {
-            case 'dual-rl':
-                return this.runDualRL(objective, options, startTime);
-            case 'auto':
-                return this.runAuto(objective, options, startTime);
-            case 'apt':
-                return this.runAPT(objective, options, startTime);
-            case 'security':
-                return this.runSecurity(objective, options, startTime);
-            case 'single':
-            default:
-                return this.runSingle(objective, options, startTime);
+    // ==========================================================================
+    // CORE EXECUTION TOOLS
+    // ==========================================================================
+    /** Execute a shell command */
+    exec(command, timeout = 60000) {
+        const start = Date.now();
+        try {
+            const output = execSync(command, {
+                cwd: this.workingDir,
+                encoding: 'utf-8',
+                timeout,
+                maxBuffer: 50 * 1024 * 1024,
+                stdio: ['pipe', 'pipe', 'pipe'],
+            });
+            const result = { success: true, output: output || '', duration: Date.now() - start, command, exitCode: 0 };
+            this.results.push(result);
+            return result;
+        }
+        catch (e) {
+            const err = e;
+            const output = (err.stdout || err.stderr || err.message || '');
+            const result = { success: false, output, error: err.message, duration: Date.now() - start, command, exitCode: err.status };
+            this.results.push(result);
+            return result;
         }
     }
-    /**
-     * Single-pass orchestration
-     */
-    async runSingle(objective, options, startTime) {
-        const orchestratorOpts = this.toOrchestratorOptions(options);
-        const result = await this.baseOrchestrator.runToCompletion(objective, orchestratorOpts);
-        const reward = scoreOutcome(result);
-        return {
-            ...result,
-            mode: 'single',
-            rl: {
-                primaryReward: reward,
-                chosenAction: 'primary',
-                snapshot: { avgReward: reward, primaryReward: reward, refineReward: reward, chosen: 'primary', historySize: 1 },
-            },
-            stats: {
-                duration: Date.now() - startTime,
-                cycles: 1,
-                toolCalls: result.toolsUsed.length,
-            },
-        };
+    /** Execute multiple commands sequentially */
+    execMany(commands, timeout) {
+        return commands.map(cmd => this.exec(cmd, timeout));
     }
-    /**
-     * Dual-agent RL orchestration
-     */
-    async runDualRL(objective, options, startTime) {
-        const orchestratorOpts = this.toOrchestratorOptions(options);
-        // Primary pass
-        const primary = await this.baseOrchestrator.runToCompletion(objective, orchestratorOpts);
-        const primaryReward = scoreOutcome(primary);
-        options.onProgress?.('primary', 0.5);
-        // Refinement pass
-        const refinementPrompt = this.buildRefinementPrompt(objective, primary);
-        const refinement = await this.baseOrchestrator.runToCompletion(refinementPrompt, {
-            ...orchestratorOpts,
-            singlePassFocus: true,
-        });
-        const refinementReward = scoreOutcome(refinement);
-        // Choose best result
-        const chosenAction = refinementReward > primaryReward ? 'refine' : 'primary';
-        const chosen = chosenAction === 'refine' ? refinement : primary;
-        const snapshot = recordDualOutcome(primaryReward, refinementReward, chosenAction);
-        options.onProgress?.('complete', 1.0);
-        return {
-            ...chosen,
-            mode: 'dual-rl',
-            statusSummary: `${chosen.statusSummary || ''} | RL: primary=${primaryReward.toFixed(2)}, refine=${refinementReward.toFixed(2)}, chosen=${chosenAction}`,
-            rl: {
-                primaryReward,
-                refinementReward,
-                chosenAction,
-                snapshot,
-            },
-            stats: {
-                duration: Date.now() - startTime,
-                cycles: 2,
-                toolCalls: primary.toolsUsed.length + refinement.toolsUsed.length,
-            },
+    /** Execute multiple commands in parallel */
+    async execParallel(commands, timeout) {
+        return Promise.all(commands.map(cmd => Promise.resolve(this.exec(cmd, timeout))));
+    }
+    /** Start a background process */
+    execBackground(command, id) {
+        const processId = id || `bg-${Date.now()}`;
+        const [cmd, ...args] = command.split(' ');
+        const proc = spawn(cmd, args, { cwd: this.workingDir, detached: true, stdio: 'pipe' });
+        this.backgroundProcesses.set(processId, proc);
+        return processId;
+    }
+    /** Kill a background process */
+    killProcess(id) {
+        const proc = this.backgroundProcesses.get(id);
+        if (proc) {
+            proc.kill();
+            this.backgroundProcesses.delete(id);
+            return true;
+        }
+        return false;
+    }
+    // ==========================================================================
+    // SOFTWARE ENGINEERING TOOLS
+    // ==========================================================================
+    /** Run npm/yarn build */
+    build() {
+        return this.exec('npm run build 2>&1', 300000);
+    }
+    /** Run tests */
+    test(pattern) {
+        const cmd = pattern ? `npm test -- --grep "${pattern}" 2>&1` : 'npm test 2>&1';
+        return this.exec(cmd, 300000);
+    }
+    /** Run linter */
+    lint(fix = false) {
+        const cmd = fix ? 'npm run lint -- --fix 2>&1 || npx eslint . --fix 2>&1' : 'npm run lint 2>&1 || npx eslint . 2>&1';
+        return this.exec(cmd, 120000);
+    }
+    /** TypeScript type checking */
+    typecheck() {
+        return this.exec('npx tsc --noEmit 2>&1', 120000);
+    }
+    /** Format code */
+    format(check = false) {
+        const cmd = check ? 'npx prettier --check . 2>&1' : 'npx prettier --write . 2>&1';
+        return this.exec(cmd, 60000);
+    }
+    /** Dependency operations */
+    deps(action = 'audit') {
+        const cmds = {
+            install: 'npm install 2>&1',
+            update: 'npm update 2>&1',
+            audit: 'npm audit 2>&1',
+            outdated: 'npm outdated 2>&1',
+            dedupe: 'npm dedupe 2>&1',
         };
+        return this.exec(cmds[action] || cmds.audit, 180000);
     }
-    /**
-     * Auto-execute to completion
-     */
-    async runAuto(objective, options, startTime) {
-        const maxCycles = options.maxCycles ?? (options.depth === 'deep' ? 10 : options.depth === 'quick' ? 3 : 5);
-        const orchestratorOpts = this.toOrchestratorOptions(options);
-        let cycle = 0;
-        let lastResult = null;
-        let totalToolCalls = 0;
-        while (cycle < maxCycles) {
-            cycle++;
-            options.onProgress?.(`cycle-${cycle}`, cycle / maxCycles);
-            const prompt = cycle === 1 ? objective : this.buildContinuationPrompt(objective, lastResult);
-            const result = await this.baseOrchestrator.runToCompletion(prompt, orchestratorOpts);
-            totalToolCalls += result.toolsUsed.length;
-            lastResult = result;
-            // Check completion
-            if (result.finalResponse?.includes('TASK_FULLY_COMPLETE')) {
-                break;
+    /** Clean build artifacts */
+    clean() {
+        return this.exec('rm -rf node_modules dist .tsbuildinfo .eslintcache coverage 2>&1; echo "Cleaned"', 30000);
+    }
+    /** Run full CI pipeline */
+    ci() {
+        return [
+            this.lint(),
+            this.typecheck(),
+            this.test(),
+            this.build(),
+        ];
+    }
+    // ==========================================================================
+    // SECURITY TOOLS
+    // ==========================================================================
+    /** Security audit */
+    securityAudit() {
+        return this.execMany([
+            'npm audit 2>&1 | head -50',
+            'grep -rn "password\\|secret\\|api.key\\|token" --include="*.ts" --include="*.js" --include="*.json" . 2>/dev/null | grep -v node_modules | head -30 || echo "No secrets"',
+            'find . -name ".env*" -o -name "*.pem" -o -name "*.key" 2>/dev/null | grep -v node_modules | head -20',
+        ]);
+    }
+    /** Scan for vulnerabilities in code */
+    vulnerabilityScan() {
+        return this.execMany([
+            'grep -rn "eval\\|exec\\|execSync\\|spawn" --include="*.ts" --include="*.js" . 2>/dev/null | grep -v node_modules | head -30 || echo "No dangerous patterns"',
+            'grep -rn "innerHTML\\|dangerouslySetInnerHTML" --include="*.ts" --include="*.tsx" . 2>/dev/null | grep -v node_modules | head -20 || echo "No XSS patterns"',
+            'grep -rn "SELECT.*\\$\\|INSERT.*\\$\\|UPDATE.*\\$" --include="*.ts" --include="*.js" . 2>/dev/null | grep -v node_modules | head -20 || echo "No SQL injection patterns"',
+        ]);
+    }
+    /** Network reconnaissance */
+    recon(target) {
+        const cmds = [
+            'ifconfig 2>/dev/null || ip addr 2>/dev/null',
+            'netstat -an 2>/dev/null | head -30 || ss -an 2>/dev/null | head -30',
+            'lsof -i -P -n 2>/dev/null | head -30',
+            'arp -a 2>/dev/null | head -20',
+        ];
+        if (target) {
+            cmds.push(`dig +short ${target} A 2>/dev/null; dig +short ${target} MX 2>/dev/null`);
+            cmds.push(`whois ${target} 2>/dev/null | head -50`);
+        }
+        return this.execMany(cmds);
+    }
+    /** System enumeration */
+    enumerate() {
+        return this.execMany([
+            'whoami; id; groups 2>/dev/null',
+            'uname -a',
+            'ps aux | head -30',
+            'env | grep -iE "path|home|user|shell" | head -20',
+            'cat /etc/passwd 2>/dev/null | head -20 || dscl . list /Users 2>/dev/null | head -20',
+            'sudo -l 2>/dev/null || echo "Sudo not available"',
+            'find /usr -perm -4000 -type f 2>/dev/null | head -20',
+        ]);
+    }
+    /** Check for persistence mechanisms */
+    persistenceCheck() {
+        return this.execMany([
+            'crontab -l 2>/dev/null || echo "No crontab"',
+            'ls -la ~/.ssh 2>/dev/null',
+            'cat ~/.ssh/authorized_keys 2>/dev/null | head -10 || echo "No authorized_keys"',
+            'ls -la /Library/LaunchDaemons 2>/dev/null | head -20',
+            'ls -la ~/Library/LaunchAgents 2>/dev/null | head -20',
+            'grep -l "curl\\|wget\\|python\\|bash" ~/.bashrc ~/.zshrc ~/.bash_profile 2>/dev/null || echo "No suspicious profile entries"',
+        ]);
+    }
+    /** Defensive security checks */
+    defenseCheck() {
+        return this.execMany([
+            '/usr/libexec/ApplicationFirewall/socketfilterfw --getglobalstate 2>/dev/null || echo "Firewall check unavailable"',
+            'csrutil status 2>/dev/null || echo "SIP check unavailable"',
+            'fdesetup status 2>/dev/null || echo "FileVault check unavailable"',
+            'spctl --status 2>/dev/null || echo "Gatekeeper check unavailable"',
+            'system_profiler SPFirewallDataType 2>/dev/null | head -20 || echo "Firewall data unavailable"',
+        ]);
+    }
+    // ==========================================================================
+    // OFFENSIVE SECURITY TOOLS
+    // ==========================================================================
+    /** Target reconnaissance and OSINT */
+    targetRecon(target) {
+        const cmds = [
+            `host ${target} 2>/dev/null || dig +short ${target} 2>/dev/null`,
+            `dig ${target} ANY 2>/dev/null | head -50`,
+            `dig ${target} MX 2>/dev/null | head -20`,
+            `dig ${target} TXT 2>/dev/null | head -20`,
+            `dig ${target} NS 2>/dev/null | head -20`,
+            `whois ${target} 2>/dev/null | head -100`,
+            `curl -sI "https://${target}" 2>/dev/null | head -30 || echo "HTTPS unavailable"`,
+            `curl -sI "http://${target}" 2>/dev/null | head -30 || echo "HTTP unavailable"`,
+        ];
+        return this.execMany(cmds, 30000);
+    }
+    /** Subdomain enumeration */
+    subdomainEnum(domain) {
+        return this.execMany([
+            `dig ${domain} ANY 2>/dev/null | grep -v "^;" | head -50`,
+            `curl -s "https://crt.sh/?q=%25.${domain}&output=json" 2>/dev/null | grep -oE '"name_value":"[^"]*"' | cut -d'"' -f4 | sort -u | head -50 || echo "crt.sh unavailable"`,
+            `host -t NS ${domain} 2>/dev/null`,
+            `host -t MX ${domain} 2>/dev/null`,
+        ], 60000);
+    }
+    /** Port scanning (local/network) */
+    portScan(target, ports = '22,80,443,8080,8443,3000,5000') {
+        return this.exec(`nc -zvw3 ${target} ${ports.split(',').join(' ')} 2>&1 | head -50 || echo "Scan complete"`, 60000);
+    }
+    /** Service detection */
+    serviceDetect(target) {
+        return this.execMany([
+            `curl -sI "https://${target}" 2>/dev/null | grep -iE "server:|x-powered-by:|x-aspnet|x-drupal|x-generator" || echo "No server headers"`,
+            `curl -s "https://${target}/robots.txt" 2>/dev/null | head -30 || echo "No robots.txt"`,
+            `curl -s "https://${target}/.well-known/security.txt" 2>/dev/null | head -30 || echo "No security.txt"`,
+            `curl -s "https://${target}/sitemap.xml" 2>/dev/null | head -30 || echo "No sitemap"`,
+        ], 30000);
+    }
+    /** Web technology fingerprinting */
+    webFingerprint(url) {
+        return this.execMany([
+            `curl -sI "${url}" 2>/dev/null | head -30`,
+            `curl -s "${url}" 2>/dev/null | grep -oE '<meta[^>]*>' | head -20 || echo "No meta tags"`,
+            `curl -s "${url}" 2>/dev/null | grep -oE 'src="[^"]*\\.js"' | head -20 || echo "No JS files"`,
+            `curl -s "${url}" 2>/dev/null | grep -oE 'href="[^"]*\\.css"' | head -20 || echo "No CSS files"`,
+        ], 30000);
+    }
+    /** Directory/path enumeration */
+    pathEnum(baseUrl) {
+        const commonPaths = [
+            'admin', 'login', 'api', 'dashboard', 'config', 'backup', '.git', '.env',
+            'wp-admin', 'wp-login.php', 'administrator', 'phpmyadmin', 'console',
+        ];
+        const cmds = commonPaths.map(p => `curl -sI "${baseUrl}/${p}" 2>/dev/null | head -1 | grep -q "200\\|301\\|302" && echo "Found: ${p}" || true`);
+        return this.execMany(cmds, 60000);
+    }
+    /** SSL/TLS analysis */
+    sslAnalyze(host) {
+        return this.execMany([
+            `echo | openssl s_client -connect ${host}:443 -servername ${host} 2>/dev/null | openssl x509 -noout -dates -subject -issuer 2>/dev/null || echo "SSL unavailable"`,
+            `echo | openssl s_client -connect ${host}:443 -servername ${host} 2>/dev/null | grep -E "Protocol|Cipher" | head -10 || echo "Cipher info unavailable"`,
+            `curl -sI "https://${host}" 2>/dev/null | grep -iE "strict-transport|content-security|x-frame|x-content-type|x-xss" || echo "No security headers"`,
+        ], 30000);
+    }
+    /** Cloud service detection */
+    cloudDetect(target) {
+        return this.execMany([
+            `dig ${target} 2>/dev/null | grep -iE "amazonaws|azure|cloudflare|fastly|akamai|google" || echo "No cloud indicators in DNS"`,
+            `curl -sI "https://${target}" 2>/dev/null | grep -iE "cloudflare|cloudfront|azure|x-amz|google" || echo "No cloud headers"`,
+            `whois ${target} 2>/dev/null | grep -iE "amazon|microsoft|google|cloudflare" | head -10 || echo "No cloud in whois"`,
+        ], 30000);
+    }
+    /** Local privilege escalation checks */
+    privescCheck() {
+        return this.execMany([
+            'sudo -l 2>/dev/null || echo "sudo list unavailable"',
+            'find / -perm -4000 -type f 2>/dev/null | head -30',
+            'find / -perm -2000 -type f 2>/dev/null | head -30',
+            'cat /etc/sudoers 2>/dev/null | grep -v "^#" | head -20 || echo "sudoers unreadable"',
+            'ls -la /etc/passwd /etc/shadow 2>/dev/null',
+            'getcap -r / 2>/dev/null | head -20 || echo "capabilities unavailable"',
+            'cat /etc/crontab 2>/dev/null | head -20 || echo "crontab unreadable"',
+            'ls -la /var/spool/cron/crontabs 2>/dev/null || ls -la /etc/cron.d 2>/dev/null | head -20',
+        ]);
+    }
+    /** macOS-specific offensive checks */
+    macosOffensive() {
+        return this.execMany([
+            'security find-identity -v -p codesigning 2>/dev/null | head -20 || echo "No signing identities"',
+            'security list-keychains 2>/dev/null',
+            'sqlite3 ~/Library/Keychains/login.keychain-db ".tables" 2>/dev/null || echo "Keychain query unavailable"',
+            'sqlite3 ~/Library/Messages/chat.db "SELECT COUNT(*) FROM message" 2>/dev/null || echo "iMessage db unavailable"',
+            'sqlite3 ~/Library/Application\\ Support/Google/Chrome/Default/Login\\ Data ".tables" 2>/dev/null || echo "Chrome data unavailable"',
+            'plutil -p ~/Library/Preferences/com.apple.LaunchServices/com.apple.launchservices.secure.plist 2>/dev/null | head -30 || echo "Launch services unavailable"',
+            'sqlite3 ~/Library/Safari/History.db "SELECT url FROM history_items LIMIT 20" 2>/dev/null || echo "Safari history unavailable"',
+            'ls -la ~/Library/Application\\ Support/com.apple.TCC/TCC.db 2>/dev/null || echo "TCC db path"',
+        ]);
+    }
+    /** Credential hunting */
+    credentialHunt() {
+        return this.execMany([
+            'grep -rn "password\\|passwd\\|secret\\|api.key\\|apikey\\|token\\|credential" --include="*.json" --include="*.yml" --include="*.yaml" --include="*.conf" --include="*.config" --include="*.env" . 2>/dev/null | grep -v node_modules | head -30 || echo "No credentials in config files"',
+            'find ~ -name ".env" -o -name ".env.*" -o -name "*.pem" -o -name "*.key" 2>/dev/null | head -20',
+            'find ~ -name "id_rsa" -o -name "id_ed25519" -o -name "*.ppk" 2>/dev/null | head -10',
+            'ls -la ~/.aws/credentials 2>/dev/null; cat ~/.aws/credentials 2>/dev/null | head -10 || echo "No AWS credentials"',
+            'ls -la ~/.ssh 2>/dev/null',
+            'cat ~/.gitconfig 2>/dev/null | head -20',
+            'cat ~/.netrc 2>/dev/null || echo "No .netrc"',
+        ]);
+    }
+    /** Network attack surface mapping */
+    networkMap() {
+        return this.execMany([
+            'ifconfig 2>/dev/null || ip addr 2>/dev/null',
+            'route -n 2>/dev/null || netstat -rn 2>/dev/null',
+            'arp -a 2>/dev/null',
+            'netstat -tulpn 2>/dev/null | head -30 || lsof -i -P -n 2>/dev/null | head -30',
+            'cat /etc/hosts',
+            'cat /etc/resolv.conf 2>/dev/null',
+        ]);
+    }
+    /** Container/Docker enumeration */
+    containerEnum() {
+        return this.execMany([
+            'docker ps -a 2>/dev/null | head -20 || echo "Docker not available"',
+            'docker images 2>/dev/null | head -20 || echo "No docker images"',
+            'docker network ls 2>/dev/null || echo "No docker networks"',
+            'cat /.dockerenv 2>/dev/null && echo "Running in container" || echo "Not in container"',
+            'cat /proc/1/cgroup 2>/dev/null | head -10 || echo "cgroup info unavailable"',
+        ]);
+    }
+    /** Full offensive assessment */
+    fullOffensive(target) {
+        const results = [];
+        results.push(...this.enumerate());
+        results.push(...this.networkMap());
+        results.push(...this.privescCheck());
+        results.push(...this.credentialHunt());
+        results.push(...this.persistenceCheck());
+        if (os.platform() === 'darwin') {
+            results.push(...this.macosOffensive());
+        }
+        if (target) {
+            results.push(...this.targetRecon(target));
+            results.push(...this.serviceDetect(target));
+        }
+        return results;
+    }
+    /** Attack chain execution */
+    attackChain(target, depth = 'medium') {
+        const results = [];
+        // Phase 1: Recon
+        results.push(...this.targetRecon(target));
+        // Phase 2: Enumeration
+        results.push(...this.subdomainEnum(target));
+        if (depth !== 'light') {
+            // Phase 3: Service detection
+            results.push(...this.serviceDetect(target));
+            results.push(...this.sslAnalyze(target));
+        }
+        if (depth === 'deep') {
+            // Phase 4: Deep analysis
+            results.push(...this.webFingerprint(`https://${target}`));
+            results.push(...this.pathEnum(`https://${target}`));
+            results.push(...this.cloudDetect(target));
+        }
+        return results;
+    }
+    // ==========================================================================
+    // INVESTIGATION & FORENSICS TOOLS
+    // ==========================================================================
+    /** File system investigation */
+    investigateFiles(pattern, days = 7) {
+        const cmds = [
+            `find . -type f -mtime -${days} 2>/dev/null | head -50`,
+            `find ~ -type f -mtime -${days} 2>/dev/null | grep -v "Library/Caches" | head -30`,
+            'ls -lt ~/Downloads 2>/dev/null | head -20',
+            'ls -la ~/.Trash 2>/dev/null | head -20',
+        ];
+        if (pattern) {
+            cmds.push(`find . -name "${pattern}" 2>/dev/null | head -30`);
+        }
+        return this.execMany(cmds);
+    }
+    /** Process investigation */
+    investigateProcesses() {
+        return this.execMany([
+            'ps aux --sort=-%mem | head -20',
+            'ps aux --sort=-%cpu | head -20',
+            'lsof -i -P -n 2>/dev/null | grep ESTABLISHED | head -20',
+            'top -l 1 -n 10 2>/dev/null || top -bn1 | head -20 2>/dev/null',
+        ]);
+    }
+    /** Network investigation */
+    investigateNetwork() {
+        return this.execMany([
+            'netstat -an | grep ESTABLISHED | head -20',
+            'lsof -i -P -n 2>/dev/null | head -30',
+            'cat /etc/hosts',
+            'cat /etc/resolv.conf 2>/dev/null',
+            'scutil --dns 2>/dev/null | head -30',
+        ]);
+    }
+    /** Browser history investigation */
+    investigateBrowser() {
+        return this.execMany([
+            'sqlite3 ~/Library/Application\\ Support/Google/Chrome/Default/History "SELECT url FROM urls ORDER BY last_visit_time DESC LIMIT 20" 2>/dev/null || echo "Chrome unavailable"',
+            'sqlite3 ~/Library/Safari/History.db "SELECT url FROM history_items ORDER BY visit_count DESC LIMIT 20" 2>/dev/null || echo "Safari unavailable"',
+            'ls ~/Library/Application\\ Support/Google/Chrome/Default/Extensions 2>/dev/null | head -10',
+        ]);
+    }
+    /** Email investigation */
+    investigateEmail() {
+        return this.execMany([
+            'ls -la ~/Library/Mail/V*/MailData/*.db 2>/dev/null | head -10 || echo "No Mail database"',
+            'find ~/Library/Mail -name "*.pdf" -o -name "*.docx" 2>/dev/null | head -20',
+            'mdfind "kMDItemContentType == \'com.apple.mail.emlx\'" 2>/dev/null | head -20',
+        ]);
+    }
+    /** iMessage investigation */
+    investigateIMessage() {
+        return this.execMany([
+            'ls -la ~/Library/Messages/chat.db 2>/dev/null || echo "No iMessage database"',
+            'sqlite3 ~/Library/Messages/chat.db "SELECT COUNT(*) FROM message" 2>/dev/null || echo "Count unavailable"',
+            'find ~/Library/Messages/Attachments -type f -mtime -7 2>/dev/null | wc -l',
+        ]);
+    }
+    // ==========================================================================
+    // CODE ANALYSIS TOOLS
+    // ==========================================================================
+    /** Analyze code quality */
+    analyzeQuality() {
+        return this.execMany([
+            'npx tsc --noEmit 2>&1 | grep -c "error" || echo "0"',
+            'npm run lint 2>&1 | grep -cE "error|warning" || echo "0"',
+            'grep -rn "TODO\\|FIXME\\|HACK\\|XXX\\|BUG" src/ --include="*.ts" 2>/dev/null | head -30 || echo "No markers"',
+            'grep -rn "console\\.log\\|console\\.error\\|console\\.warn" src/ --include="*.ts" 2>/dev/null | grep -v node_modules | head -20 || echo "No console statements"',
+        ]);
+    }
+    /** Find code patterns */
+    findPatterns(pattern, fileTypes = '*.ts') {
+        return this.exec(`grep -rn "${pattern}" --include="${fileTypes}" . 2>/dev/null | grep -v node_modules | head -50 || echo "No matches"`);
+    }
+    /** Analyze code complexity */
+    analyzeComplexity() {
+        return this.execMany([
+            'find src -name "*.ts" | xargs wc -l 2>/dev/null | tail -10',
+            'find src -type f | wc -l',
+            'find src -name "*.ts" -size +50k 2>/dev/null | head -10 || echo "No large files"',
+            'find src -type d -empty 2>/dev/null | head -10 || echo "No empty directories"',
+        ]);
+    }
+    /** Find unused/dead code patterns */
+    findDeadCode() {
+        return this.execMany([
+            'grep -rn "@ts-ignore\\|@ts-expect-error\\|eslint-disable" src/ --include="*.ts" 2>/dev/null | head -20 || echo "No suppressions"',
+            'grep -rn "// TODO.*remove\\|// DEPRECATED\\|// LEGACY" src/ --include="*.ts" 2>/dev/null | head -20 || echo "No legacy markers"',
+            'npx ts-unused-exports tsconfig.json 2>&1 | head -30 || echo "ts-unused-exports not available"',
+        ]);
+    }
+    /** Find simulation/mock patterns for removal */
+    findSimulation() {
+        return this.exec('grep -rn "simulat\\|mock\\|fake\\|stub" src/ --include="*.ts" 2>/dev/null | grep -v node_modules | head -50 || echo "No simulation patterns"');
+    }
+    // ==========================================================================
+    // GIT TOOLS
+    // ==========================================================================
+    /** Git status */
+    gitStatus() {
+        return this.exec('git status 2>&1');
+    }
+    /** Git log */
+    gitLog(count = 10) {
+        return this.exec(`git log --oneline -${count} 2>&1`);
+    }
+    /** Git diff */
+    gitDiff(staged = false) {
+        const cmd = staged ? 'git diff --staged 2>&1' : 'git diff 2>&1';
+        return this.exec(cmd);
+    }
+    /** Git branches */
+    gitBranches() {
+        return this.exec('git branch -a 2>&1');
+    }
+    /** Git stash */
+    gitStash(action = 'list') {
+        return this.exec(`git stash ${action} 2>&1`);
+    }
+    // ==========================================================================
+    // FILE SYSTEM TOOLS
+    // ==========================================================================
+    /** Read file contents */
+    readFile(filePath) {
+        const fullPath = path.isAbsolute(filePath) ? filePath : path.join(this.workingDir, filePath);
+        return fs.readFileSync(fullPath, 'utf-8');
+    }
+    /** Write file contents */
+    writeFile(filePath, content) {
+        const fullPath = path.isAbsolute(filePath) ? filePath : path.join(this.workingDir, filePath);
+        fs.writeFileSync(fullPath, content, 'utf-8');
+    }
+    /** Check if file exists */
+    fileExists(filePath) {
+        const fullPath = path.isAbsolute(filePath) ? filePath : path.join(this.workingDir, filePath);
+        return fs.existsSync(fullPath);
+    }
+    /** List directory */
+    listDir(dirPath = '.', recursive = false) {
+        const fullPath = path.isAbsolute(dirPath) ? dirPath : path.join(this.workingDir, dirPath);
+        if (recursive) {
+            const result = this.exec(`find "${fullPath}" -type f 2>/dev/null | head -100`);
+            return result.output.split('\n').filter(Boolean);
+        }
+        return fs.readdirSync(fullPath);
+    }
+    /** Get file stats */
+    fileStats(filePath) {
+        const fullPath = path.isAbsolute(filePath) ? filePath : path.join(this.workingDir, filePath);
+        try {
+            return fs.statSync(fullPath);
+        }
+        catch {
+            return null;
+        }
+    }
+    /** Delete file or directory */
+    delete(targetPath, recursive = false) {
+        const fullPath = path.isAbsolute(targetPath) ? targetPath : path.join(this.workingDir, targetPath);
+        try {
+            if (recursive) {
+                fs.rmSync(fullPath, { recursive: true, force: true });
+            }
+            else {
+                fs.unlinkSync(fullPath);
             }
+            return true;
         }
-        const reward = scoreOutcome(lastResult);
+        catch {
+            return false;
+        }
+    }
+    // ==========================================================================
+    // SYSTEM INFO TOOLS
+    // ==========================================================================
+    /** Get system information */
+    systemInfo() {
         return {
-            ...lastResult,
-            mode: 'auto',
-            rl: {
-                primaryReward: reward,
-                chosenAction: 'primary',
-                snapshot: { avgReward: reward, primaryReward: reward, refineReward: reward, chosen: 'primary', historySize: cycle },
-            },
-            stats: {
-                duration: Date.now() - startTime,
-                cycles: cycle,
-                toolCalls: totalToolCalls,
+            platform: os.platform(),
+            arch: os.arch(),
+            hostname: os.hostname(),
+            cpus: os.cpus().length,
+            memory: {
+                total: Math.round(os.totalmem() / 1024 / 1024 / 1024) + 'GB',
+                free: Math.round(os.freemem() / 1024 / 1024 / 1024) + 'GB',
             },
+            uptime: Math.round(os.uptime() / 3600) + ' hours',
+            user: os.userInfo().username,
+            home: os.homedir(),
+            cwd: this.workingDir,
         };
     }
-    /**
-     * APT kill-chain orchestration
-     */
-    async runAPT(objective, options, startTime) {
-        const target = options.targets?.[0] ?? 'target';
-        const goal = options.goal ?? 'all';
-        // Parse intent and plan attack chain
-        const intent = parseNaturalLanguageIntent(`${goal} attack on ${target}: ${objective}`);
-        const chain = planAttackChain(intent, objective);
-        const techniques = [];
-        // Execute techniques in chain
-        let phaseIndex = 0;
-        const totalPhases = chain.phases.length;
-        while (chain.currentPhase < totalPhases) {
-            options.onProgress?.(`phase-${phaseIndex}`, phaseIndex / totalPhases);
-            const action = selectNextTechnique(chain);
-            if (!action) {
-                chain.currentPhase++;
-                phaseIndex++;
-                continue;
-            }
-            const params = {
-                target,
-                depth: options.depth ?? 'standard',
-                stealth: options.stealthMode ?? false,
-                timeout: 30000,
-                context: {},
-            };
-            try {
-                const executionResult = await executeTechniqueInChain(chain, action, params);
-                techniques.push(executionResult.result);
-                options.onTechnique?.(action.id, executionResult.result);
-                if (!executionResult.result.success && phaseIndex <= 3) {
-                    // Critical phase failed (recon through exploitation)
-                    break;
-                }
-            }
-            catch {
-                // Technique failed, move to next phase
-            }
-            chain.currentPhase++;
-            phaseIndex++;
-        }
-        // Generate summary via agent
-        const orchestratorOpts = this.toOrchestratorOptions(options);
-        const summaryPrompt = `Summarize APT operation results:\nChain: ${chain.id}\nPhases: ${phaseIndex}/${totalPhases}\nTechniques: ${techniques.length}\nGoal: ${goal}`;
-        const agentResult = await this.baseOrchestrator.runToCompletion(summaryPrompt, { ...orchestratorOpts, maxAttempts: 1 });
-        const reward = scoreOutcome(agentResult);
-        const goalAchieved = techniques.filter(t => t.success).length >= totalPhases * 0.7;
+    /** Get environment variables */
+    getEnv(key) {
+        if (key)
+            return process.env[key] || '';
+        return process.env;
+    }
+    // ==========================================================================
+    // ANALYSIS & FINDINGS
+    // ==========================================================================
+    /** Analyze output and extract findings */
+    analyze(output, context) {
+        const findings = [];
+        const lower = output.toLowerCase();
+        // TypeScript errors
+        const tsMatches = output.match(/error TS\d+:/g);
+        if (tsMatches) {
+            findings.push({
+                severity: 'high',
+                category: 'TypeScript',
+                title: `${tsMatches.length} TypeScript error(s)`,
+                description: 'Compilation errors found',
+                evidence: output.slice(0, 500),
+                recommendation: 'Fix type errors before proceeding',
+            });
+        }
+        // Security vulnerabilities
+        if (lower.includes('vulnerabilit') && (lower.includes('high') || lower.includes('critical'))) {
+            findings.push({
+                severity: 'critical',
+                category: 'Security',
+                title: 'Security vulnerabilities detected',
+                description: 'High/critical vulnerabilities in dependencies',
+                evidence: output.slice(0, 500),
+                recommendation: 'Run npm audit fix or update packages',
+            });
+        }
+        // Secrets exposure
+        if ((lower.includes('password') || lower.includes('secret') || lower.includes('api_key') || lower.includes('token')) &&
+            !lower.includes('no secret') && !lower.includes('no password') && output.includes(':')) {
+            findings.push({
+                severity: 'critical',
+                category: 'Security',
+                title: 'Potential secrets in code',
+                description: 'Credentials or secrets may be exposed',
+                evidence: output.slice(0, 300),
+                recommendation: 'Remove secrets, use environment variables',
+            });
+        }
+        // Test failures
+        if (lower.includes('fail') && (lower.includes('test') || lower.includes('spec') || lower.includes('assert'))) {
+            findings.push({
+                severity: 'high',
+                category: 'Testing',
+                title: 'Test failures',
+                description: 'One or more tests failed',
+                evidence: output.slice(0, 500),
+                recommendation: 'Fix failing tests',
+            });
+        }
+        // ESLint errors
+        const eslintErrors = output.match(/\d+ error/);
+        if (eslintErrors) {
+            findings.push({
+                severity: 'medium',
+                category: 'Code Quality',
+                title: 'Linting errors',
+                description: `ESLint found issues: ${eslintErrors[0]}`,
+                evidence: output.slice(0, 500),
+                recommendation: 'Run lint with --fix or address manually',
+            });
+        }
+        this.findings.push(...findings);
+        return findings;
+    }
+    /** Add a custom finding */
+    addFinding(finding) {
+        this.findings.push(finding);
+    }
+    /** Get all findings */
+    getFindings() {
+        return this.findings;
+    }
+    /** Get all results */
+    getResults() {
+        return this.results;
+    }
+    /** Reset state */
+    reset() {
+        this.results = [];
+        this.findings = [];
+    }
+    // ==========================================================================
+    // REPORT GENERATION
+    // ==========================================================================
+    /** Generate comprehensive report */
+    generateReport(objective = 'Operation') {
+        const successCount = this.results.filter(r => r.success).length;
+        const totalDuration = this.results.reduce((sum, r) => sum + r.duration, 0);
+        const criticalFindings = this.findings.filter(f => f.severity === 'critical').length;
+        const isSuccess = successCount === this.results.length && criticalFindings === 0;
         return {
-            ...agentResult,
-            mode: 'apt',
-            rl: {
-                primaryReward: reward,
-                chosenAction: 'primary',
-                snapshot: { avgReward: reward, primaryReward: reward, refineReward: reward, chosen: 'primary', historySize: techniques.length },
-            },
-            apt: {
-                chain,
-                techniques,
-                goalAchieved,
-            },
-            stats: {
-                duration: Date.now() - startTime,
-                cycles: techniques.length,
-                toolCalls: agentResult.toolsUsed.length,
-            },
+            id: `OP-${Date.now()}-${crypto.randomBytes(4).toString('hex').toUpperCase()}`,
+            objective,
+            startTime: Date.now() - totalDuration,
+            endTime: Date.now(),
+            duration: totalDuration,
+            results: this.results,
+            findings: this.findings,
+            summary: `${successCount}/${this.results.length} succeeded, ${this.findings.length} findings (${criticalFindings} critical)`,
+            success: isSuccess,
+            mode: objective,
+            phasesCompleted: [...new Set(this.results.filter(r => r.success).map(r => (r.command || '').split(' ')[0]))],
+            recommendations: this.findings.filter(f => f.recommendation).map(f => f.recommendation),
+            limitations: [],
+            toolsUsed: [...new Set(this.results.map(r => (r.command || '').split(' ')[0]))],
+            exitReason: isSuccess ? 'complete' : 'incomplete',
+            statusSummary: `${successCount}/${this.results.length} commands succeeded`,
+            finalResponse: this.results.slice(-3).map(r => r.output).join('\n').slice(0, 2000),
+            completed: isSuccess,
+            evidence: [],
         };
     }
+    // ==========================================================================
+    // INTELLIGENT EXECUTION - AI Flow Integration
+    // ==========================================================================
     /**
-     * Security assessment orchestration
+     * Execute operations based on objective analysis.
+     * Automatically selects and runs appropriate tools based on the objective.
      */
-    async runSecurity(objective, options, startTime) {
-        const securityPrompt = `Security Assessment Objective: ${objective}
-
-Execute a thorough security assessment:
-1. Reconnaissance - gather target information
-2. Vulnerability scanning - identify weaknesses
-3. Exploitation testing - verify vulnerabilities
-4. Documentation - produce findings report
-
-Targets: ${options.targets?.join(', ') ?? 'as specified'}
-Stealth mode: ${options.stealthMode ? 'enabled' : 'disabled'}
-
-Provide concrete findings with severity ratings.`;
-        // Run with RL if enabled
-        if (options.useRL) {
-            return this.runDualRL(securityPrompt, { ...options, mode: 'dual-rl' }, startTime);
-        }
-        return this.runAuto(securityPrompt, { ...options, mode: 'auto', depth: 'deep' }, startTime);
-    }
-    // ============================================================================
-    // HELPERS
-    // ============================================================================
-    toOrchestratorOptions(options) {
-        return {
-            streaming: options.streaming,
-            enforceActions: options.enforceActions,
-            maxAttempts: options.maxAttempts,
-        };
+    async execute(config) {
+        this.reset();
+        const objective = (config.objective || config.mode || 'operation').toLowerCase();
+        const target = config.target;
+        // Analyze objective and execute appropriate tools
+        if (this.matchesIntent(objective, ['build', 'compile', 'typescript', 'tsc'])) {
+            this.typecheck();
+            this.build();
+        }
+        if (this.matchesIntent(objective, ['test', 'spec', 'jest', 'mocha'])) {
+            this.test();
+        }
+        if (this.matchesIntent(objective, ['lint', 'eslint', 'format', 'prettier'])) {
+            this.lint();
+            this.format(true);
+        }
+        if (this.matchesIntent(objective, ['security', 'audit', 'vulnerab', 'scan'])) {
+            this.securityAudit();
+            this.vulnerabilityScan();
+        }
+        if (this.matchesIntent(objective, ['attack', 'offensive', 'pentest', 'red team', 'recon'])) {
+            if (target) {
+                this.targetRecon(target);
+                this.serviceDetect(target);
+                this.sslAnalyze(target);
+            }
+            this.enumerate();
+            this.credentialHunt();
+            this.persistenceCheck();
+        }
+        if (this.matchesIntent(objective, ['defense', 'blue team', 'harden', 'protect'])) {
+            this.defenseCheck();
+            this.securityAudit();
+            this.persistenceCheck();
+        }
+        if (this.matchesIntent(objective, ['investigate', 'forensic', 'analyze'])) {
+            this.investigateFiles();
+            this.investigateProcesses();
+            this.investigateNetwork();
+        }
+        if (this.matchesIntent(objective, ['bug', 'fix', 'error', 'issue', 'problem'])) {
+            this.typecheck();
+            this.lint();
+            this.analyzeQuality();
+            this.findDeadCode();
+        }
+        if (this.matchesIntent(objective, ['ci', 'pipeline', 'full', 'complete', 'all'])) {
+            this.ci();
+            this.securityAudit();
+            this.analyzeQuality();
+        }
+        if (this.matchesIntent(objective, ['git', 'status', 'commit', 'branch'])) {
+            this.gitStatus();
+            this.gitLog(10);
+            this.gitDiff();
+        }
+        if (this.matchesIntent(objective, ['clean', 'remove', 'delete', 'clear'])) {
+            this.clean();
+        }
+        if (this.matchesIntent(objective, ['health', 'check', 'status'])) {
+            this.gitStatus();
+            this.typecheck();
+            this.deps('audit');
+        }
+        // Analyze all results for findings
+        for (const result of this.results) {
+            this.analyze(result.output, objective);
+        }
+        const report = this.generateReport(config.objective || 'Operation');
+        report.finalResponse = this.generateFinalResponse(report);
+        return report;
     }
-    buildRefinementPrompt(objective, primary) {
-        return `You are refining another agent's work.
-
-Original objective: ${objective}
-
-Primary output:
-${primary.finalResponse}
-
-${primary.limitations.length ? `Limitations: ${primary.limitations.join(', ')}` : ''}
-${primary.recommendations.length ? `Recommendations: ${primary.recommendations.join(', ')}` : ''}
-
-Your task:
-- Verify the output is correct
-- Fix any gaps or errors
-- Run minimal tools to validate
-- End with TASK_FULLY_COMPLETE if verified`;
-    }
-    buildContinuationPrompt(objective, previous) {
-        return `Continue working on: ${objective}
-
-Previous progress:
-${previous.statusSummary || previous.finalResponse}
-
-${previous.limitations.length ? `Remaining issues: ${previous.limitations.join(', ')}` : ''}
-
-Continue until complete. End with TASK_FULLY_COMPLETE when done.`;
+    /** Check if objective matches any of the intent keywords */
+    matchesIntent(objective, keywords) {
+        return keywords.some(kw => objective.includes(kw));
+    }
+    /** Generate a human-readable final response from the report */
+    generateFinalResponse(report) {
+        const lines = [];
+        lines.push(`## ${report.objective}`);
+        lines.push('');
+        lines.push(`**Status:** ${report.success ? '✓ Success' : '⚠ Issues Found'}`);
+        lines.push(`**Duration:** ${report.duration}ms`);
+        lines.push(`**Commands Executed:** ${report.results.length}`);
+        lines.push('');
+        if (report.findings.length > 0) {
+            lines.push('### Findings');
+            report.findings.forEach(f => {
+                lines.push(`- **${f.severity.toUpperCase()}**: ${f.title}`);
+                if (f.recommendation)
+                    lines.push(`  - Recommendation: ${f.recommendation}`);
+            });
+            lines.push('');
+        }
+        const failed = report.results.filter(r => !r.success);
+        if (failed.length > 0) {
+            lines.push('### Failed Commands');
+            failed.slice(0, 5).forEach(r => {
+                lines.push(`- \`${r.command}\`: ${r.error || 'Unknown error'}`);
+            });
+            lines.push('');
+        }
+        lines.push(`### Summary`);
+        lines.push(report.summary);
+        return lines.join('\n');
+    }
+    async runUnified(objective, options) {
+        return this.execute({ objective, ...options });
+    }
+    async runToCompletion(objective, options) {
+        return this.execute({ objective, ...options });
+    }
+    // ==========================================================================
+    // STATIC METHODS
+    // ==========================================================================
+    static run(command, workingDir) {
+        return new UnifiedOrchestrator(workingDir).exec(command);
+    }
+    static runMany(commands, workingDir) {
+        return new UnifiedOrchestrator(workingDir).execMany(commands);
     }
 }
 // ============================================================================
-// FACTORY
-// ============================================================================
-export function createUnifiedOrchestrator(agent) {
-    return new UnifiedOrchestrator(agent);
-}
-// ============================================================================
-// UTILITY EXPORTS
+// CONVENIENCE EXPORTS
 // ============================================================================
-export { getChainStats, getRLState };
+export const orchestrator = new UnifiedOrchestrator();
+// Direct execution
+export const exec = (cmd, dir) => UnifiedOrchestrator.run(cmd, dir);
+export const execMany = (cmds, dir) => UnifiedOrchestrator.runMany(cmds, dir);
+// Engineering
+export const build = (dir) => new UnifiedOrchestrator(dir).build();
+export const test = (dir) => new UnifiedOrchestrator(dir).test();
+export const lint = (dir) => new UnifiedOrchestrator(dir).lint();
+export const typecheck = (dir) => new UnifiedOrchestrator(dir).typecheck();
+export const format = (dir) => new UnifiedOrchestrator(dir).format();
+export const ci = (dir) => new UnifiedOrchestrator(dir).ci();
+// Security
+export const securityAudit = (dir) => new UnifiedOrchestrator(dir).securityAudit();
+export const vulnerabilityScan = (dir) => new UnifiedOrchestrator(dir).vulnerabilityScan();
+export const recon = (target, dir) => new UnifiedOrchestrator(dir).recon(target);
+export const enumerate = (dir) => new UnifiedOrchestrator(dir).enumerate();
+// Analysis
+export const analyzeQuality = (dir) => new UnifiedOrchestrator(dir).analyzeQuality();
+export const findPatterns = (pattern, dir) => new UnifiedOrchestrator(dir).findPatterns(pattern);
+export const findSimulation = (dir) => new UnifiedOrchestrator(dir).findSimulation();
+export const findDeadCode = (dir) => new UnifiedOrchestrator(dir).findDeadCode();
+// Investigation
+export const investigateFiles = (dir) => new UnifiedOrchestrator(dir).investigateFiles();
+export const investigateProcesses = (dir) => new UnifiedOrchestrator(dir).investigateProcesses();
+export const investigateNetwork = (dir) => new UnifiedOrchestrator(dir).investigateNetwork();
+// Git
+export const gitStatus = (dir) => new UnifiedOrchestrator(dir).gitStatus();
+export const gitLog = (dir) => new UnifiedOrchestrator(dir).gitLog();
+export const gitDiff = (dir) => new UnifiedOrchestrator(dir).gitDiff();
+// Offensive Security
+export const targetRecon = (target, dir) => new UnifiedOrchestrator(dir).targetRecon(target);
+export const subdomainEnum = (domain, dir) => new UnifiedOrchestrator(dir).subdomainEnum(domain);
+export const portScan = (target, ports, dir) => new UnifiedOrchestrator(dir).portScan(target, ports);
+export const serviceDetect = (target, dir) => new UnifiedOrchestrator(dir).serviceDetect(target);
+export const webFingerprint = (url, dir) => new UnifiedOrchestrator(dir).webFingerprint(url);
+export const pathEnum = (baseUrl, dir) => new UnifiedOrchestrator(dir).pathEnum(baseUrl);
+export const sslAnalyze = (host, dir) => new UnifiedOrchestrator(dir).sslAnalyze(host);
+export const cloudDetect = (target, dir) => new UnifiedOrchestrator(dir).cloudDetect(target);
+export const privescCheck = (dir) => new UnifiedOrchestrator(dir).privescCheck();
+export const macosOffensive = (dir) => new UnifiedOrchestrator(dir).macosOffensive();
+export const credentialHunt = (dir) => new UnifiedOrchestrator(dir).credentialHunt();
+export const networkMap = (dir) => new UnifiedOrchestrator(dir).networkMap();
+export const containerEnum = (dir) => new UnifiedOrchestrator(dir).containerEnum();
+export const fullOffensive = (target, dir) => new UnifiedOrchestrator(dir).fullOffensive(target);
+export const attackChain = (target, depth, dir) => new UnifiedOrchestrator(dir).attackChain(target, depth);
+// Composite Operations - Full Pipelines
+export const fullEngineering = (dir) => {
+    const o = new UnifiedOrchestrator(dir);
+    o.exec('npm run clean 2>&1 || true');
+    o.deps('install');
+    o.ci();
+    o.analyzeQuality();
+    for (const r of o.getResults())
+        o.analyze(r.output, 'engineering');
+    return o.generateReport('Full Engineering');
+};
+export const fullSecurity = (dir) => {
+    const o = new UnifiedOrchestrator(dir);
+    o.securityAudit();
+    o.vulnerabilityScan();
+    o.defenseCheck();
+    o.persistenceCheck();
+    for (const r of o.getResults())
+        o.analyze(r.output, 'security');
+    return o.generateReport('Full Security');
+};
+export const fullDefensive = (dir) => {
+    const o = new UnifiedOrchestrator(dir);
+    o.defenseCheck();
+    o.persistenceCheck();
+    o.securityAudit();
+    for (const r of o.getResults())
+        o.analyze(r.output, 'defensive');
+    return o.generateReport('Full Defensive');
+};
+export const fullInvestigation = (dir) => {
+    const o = new UnifiedOrchestrator(dir);
+    o.investigateFiles();
+    o.investigateProcesses();
+    o.investigateNetwork();
+    o.investigateBrowser();
+    o.investigateEmail();
+    o.investigateIMessage();
+    for (const r of o.getResults())
+        o.analyze(r.output, 'investigation');
+    return o.generateReport('Full Investigation');
+};
+export const redTeam = (target, dir) => {
+    const o = new UnifiedOrchestrator(dir);
+    if (target)
+        o.targetRecon(target);
+    o.enumerate();
+    o.vulnerabilityScan();
+    o.persistenceCheck();
+    o.credentialHunt();
+    o.networkMap();
+    if (os.platform() === 'darwin')
+        o.macosOffensive();
+    for (const r of o.getResults())
+        o.analyze(r.output, 'redteam');
+    return o.generateReport('Red Team Operation');
+};
+export const blueTeam = (dir) => {
+    const o = new UnifiedOrchestrator(dir);
+    o.defenseCheck();
+    o.securityAudit();
+    o.persistenceCheck();
+    o.investigateProcesses();
+    o.investigateNetwork();
+    for (const r of o.getResults())
+        o.analyze(r.output, 'blueteam');
+    return o.generateReport('Blue Team Operation');
+};
+export const intelligence = (target, dir) => {
+    const o = new UnifiedOrchestrator(dir);
+    o.recon(target);
+    if (target)
+        o.targetRecon(target);
+    o.enumerate();
+    o.investigateNetwork();
+    for (const r of o.getResults())
+        o.analyze(r.output, 'intelligence');
+    return o.generateReport('Intelligence Collection');
+};
+// Legacy compatibility
+export const run = (objective, options) => new UnifiedOrchestrator(options?.target).execute({ objective, ...options });
+export const healthCheck = (dir) => new UnifiedOrchestrator(dir).execute({ objective: 'health' });
 //# sourceMappingURL=unifiedOrchestrator.js.map