npm - fivosense - Versions diffs - 0.1.5 → 0.2.0 - Mend

fivosense 0.1.5 → 0.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (136) hide show

package/.kilo/skill/fivosense/skill.json +5 -5
package/COMPLETE_SUMMARY.md +412 -0
package/DEPLOYMENT_GUIDE.md +2 -2
package/FINAL_VERIFICATION.md +316 -0
package/GITHUB_PUSH.md +4 -4
package/LICENSE +1 -1
package/README.md +290 -208
package/RELEASE_READY.md +3 -3
package/bin/fivosense.mjs +6 -0
package/dist/ai/client.d.ts +33 -0
package/dist/ai/client.d.ts.map +1 -0
package/dist/ai/client.js +170 -0
package/dist/ai/client.js.map +1 -0
package/dist/ai/judge.d.ts +9 -3
package/dist/ai/judge.d.ts.map +1 -1
package/dist/ai/judge.js +49 -14
package/dist/ai/judge.js.map +1 -1
package/dist/cli/index.d.ts +3 -1
package/dist/cli/index.d.ts.map +1 -1
package/dist/cli/index.js +6 -1
package/dist/cli/index.js.map +1 -1
package/dist/core/orchestrator.d.ts +34 -0
package/dist/core/orchestrator.d.ts.map +1 -0
package/dist/core/orchestrator.js +211 -0
package/dist/core/orchestrator.js.map +1 -0
package/dist/core/scope.d.ts +32 -0
package/dist/core/scope.d.ts.map +1 -0
package/dist/core/scope.js +149 -0
package/dist/core/scope.js.map +1 -0
package/dist/editors/vscode.d.ts +4 -2
package/dist/editors/vscode.d.ts.map +1 -1
package/dist/editors/vscode.js +6 -0
package/dist/editors/vscode.js.map +1 -1
package/dist/engine/adversary.d.ts +9 -2
package/dist/engine/adversary.d.ts.map +1 -1
package/dist/engine/adversary.js +47 -13
package/dist/engine/adversary.js.map +1 -1
package/dist/engine/graph.d.ts +4 -1
package/dist/engine/graph.d.ts.map +1 -1
package/dist/engine/graph.js +6 -0
package/dist/engine/graph.js.map +1 -1
package/dist/engine/poc.d.ts +26 -0
package/dist/engine/poc.d.ts.map +1 -0
package/dist/engine/poc.js +179 -0
package/dist/engine/poc.js.map +1 -0
package/dist/engine/reach.d.ts +4 -2
package/dist/engine/reach.d.ts.map +1 -1
package/dist/engine/reach.js +6 -0
package/dist/engine/reach.js.map +1 -1
package/dist/engine/sinks.d.ts +22 -32
package/dist/engine/sinks.d.ts.map +1 -1
package/dist/engine/sinks.js +338 -44
package/dist/engine/sinks.js.map +1 -1
package/dist/engine/sources.d.ts +11 -19
package/dist/engine/sources.d.ts.map +1 -1
package/dist/engine/sources.js +100 -24
package/dist/engine/sources.js.map +1 -1
package/dist/engine/taint.d.ts +6 -0
package/dist/engine/taint.d.ts.map +1 -1
package/dist/engine/taint.js +6 -0
package/dist/engine/taint.js.map +1 -1
package/dist/engine/verify.d.ts +4 -1
package/dist/engine/verify.d.ts.map +1 -1
package/dist/engine/verify.js +6 -0
package/dist/engine/verify.js.map +1 -1
package/dist/features/badge.d.ts +6 -0
package/dist/features/badge.d.ts.map +1 -1
package/dist/features/badge.js +4 -1
package/dist/features/badge.js.map +1 -1
package/dist/features/fix.d.ts +6 -0
package/dist/features/fix.d.ts.map +1 -1
package/dist/features/fix.js +4 -1
package/dist/features/fix.js.map +1 -1
package/dist/features/index.d.ts +6 -0
package/dist/features/index.d.ts.map +1 -1
package/dist/features/index.js +6 -0
package/dist/features/index.js.map +1 -1
package/dist/features/roast.d.ts +6 -0
package/dist/features/roast.d.ts.map +1 -1
package/dist/features/roast.js +4 -1
package/dist/features/roast.js.map +1 -1
package/dist/hooks/agent.d.ts +4 -1
package/dist/hooks/agent.d.ts.map +1 -1
package/dist/hooks/agent.js +6 -0
package/dist/hooks/agent.js.map +1 -1
package/dist/hooks/git.d.ts +34 -0
package/dist/hooks/git.d.ts.map +1 -0
package/dist/hooks/git.js +161 -0
package/dist/hooks/git.js.map +1 -0
package/dist/index.d.ts +4 -2
package/dist/index.d.ts.map +1 -1
package/dist/index.js +6 -0
package/dist/index.js.map +1 -1
package/dist/rules/destructive.d.ts +12 -21
package/dist/rules/destructive.d.ts.map +1 -1
package/dist/rules/destructive.js +306 -24
package/dist/rules/destructive.js.map +1 -1
package/dist/rules/secrets.d.ts +8 -10
package/dist/rules/secrets.d.ts.map +1 -1
package/dist/rules/secrets.js +294 -17
package/dist/rules/secrets.js.map +1 -1
package/mcp/index.js +55 -20
package/mcp/package-lock.json +382 -0
package/mcp/package.json +21 -4
package/package.json +5 -5
package/src/ai/client.ts +226 -0
package/src/ai/judge.ts +58 -14
package/src/cli/index.ts +7 -1
package/src/core/orchestrator.ts +266 -0
package/src/core/scope.ts +175 -0
package/src/editors/vscode.ts +7 -0
package/src/engine/adversary.ts +55 -12
package/src/engine/graph.ts +7 -0
package/src/engine/poc.ts +219 -0
package/src/engine/reach.ts +7 -0
package/src/engine/sinks.ts +358 -45
package/src/engine/sources.ts +109 -24
package/src/engine/taint.ts +7 -0
package/src/engine/verify.ts +7 -0
package/src/features/badge.ts +7 -0
package/src/features/fix.ts +7 -0
package/src/features/index.ts +7 -0
package/src/features/roast.ts +7 -0
package/src/hooks/agent.ts +7 -0
package/src/hooks/git.ts +194 -0
package/src/index.ts +7 -0
package/src/rules/destructive.ts +316 -26
package/src/rules/secrets.ts +306 -17
package/vscode-extension/CHANGELOG.md +14 -2
package/vscode-extension/LICENSE +1 -1
package/vscode-extension/README.md +28 -23
package/vscode-extension/fivosense-vscode-0.1.0.vsix +0 -0
package/vscode-extension/fivosense-vscode-0.1.1.vsix +0 -0
package/vscode-extension/package-lock.json +6 -6
package/vscode-extension/package.json +7 -5
package/vscode-extension/src/extension.ts +65 -11

package/mcp/package-lock.json ADDED Viewed

@@ -0,0 +1,382 @@
+{
+  "name": "fivosense-mcp",
+  "version": "0.1.1",
+  "lockfileVersion": 3,
+  "requires": true,
+  "packages": {
+    "": {
+      "name": "fivosense-mcp",
+      "version": "0.1.1",
+      "license": "MIT",
+      "dependencies": {
+        "@modelcontextprotocol/sdk": "^0.5.0",
+        "fivosense": "^0.1.5"
+      },
+      "bin": {
+        "fivosense-mcp": "index.js"
+      },
+      "engines": {
+        "node": ">=20.0.0"
+      }
+    },
+    "node_modules/@babel/code-frame": {
+      "version": "7.29.7",
+      "resolved": "https://registry.npmjs.org/@babel/code-frame/-/code-frame-7.29.7.tgz",
+      "integrity": "sha512-Aup7aUOfpbAUg2ROOJN6Iw5f9DMBlzu0mIkm/malLQFN/YQgO48wCj0Kxa3sEHJvPVFg7siR+qRInwXd2qhQKw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-validator-identifier": "^7.29.7",
+        "js-tokens": "^4.0.0",
+        "picocolors": "^1.1.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/generator": {
+      "version": "7.29.7",
+      "resolved": "https://registry.npmjs.org/@babel/generator/-/generator-7.29.7.tgz",
+      "integrity": "sha512-DkXD5OJQaAQIdZ1bt3UZdEnHAn9Imd3IVBdX03UFe+ony9Ojw5pzr9YVKGDY1jt+Gcn/FnGkNf8r+Vj5NOJWtQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/parser": "^7.29.7",
+        "@babel/types": "^7.29.7",
+        "@jridgewell/gen-mapping": "^0.3.12",
+        "@jridgewell/trace-mapping": "^0.3.28",
+        "jsesc": "^3.0.2"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-globals": {
+      "version": "7.29.7",
+      "resolved": "https://registry.npmjs.org/@babel/helper-globals/-/helper-globals-7.29.7.tgz",
+      "integrity": "sha512-3nQVUAtvkKH9zahfWgw96Jc/uFOmjACE1kQz82E2lqWmHBgjzbNlsC22nuQTfahmWeQtTq5nQ/4Nnd2A1wj4zA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-string-parser": {
+      "version": "7.29.7",
+      "resolved": "https://registry.npmjs.org/@babel/helper-string-parser/-/helper-string-parser-7.29.7.tgz",
+      "integrity": "sha512-Pb5ijPrZ89GDH8223L4UP8i6QApWxs04RbPQJTeWDV0/keR2E36MeKnyr6LYmUUvqRRI+Iv87SuF1W6ErINzYw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/helper-validator-identifier": {
+      "version": "7.29.7",
+      "resolved": "https://registry.npmjs.org/@babel/helper-validator-identifier/-/helper-validator-identifier-7.29.7.tgz",
+      "integrity": "sha512-qehxGkRj55h/ff8EMaJ+cYhyaKlHIxqYDn682wQD7RNp9UujOQsHog2uS0r2vzr4pW+sXf90NeeayjcNaX3fFg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/parser": {
+      "version": "7.29.7",
+      "resolved": "https://registry.npmjs.org/@babel/parser/-/parser-7.29.7.tgz",
+      "integrity": "sha512-hnORnjP/1P/zFEndoeX+n+t1RwWRJiJpM/jO7FW32Kn9r5+sJB2JWOdYo4L6k78j15eCwY3Gm/7364B1EMwtNg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/types": "^7.29.7"
+      },
+      "bin": {
+        "parser": "bin/babel-parser.js"
+      },
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/@babel/template": {
+      "version": "7.29.7",
+      "resolved": "https://registry.npmjs.org/@babel/template/-/template-7.29.7.tgz",
+      "integrity": "sha512-puq+Gf35oI24FeN11LkoUQFqv9uwNeWpxXZi/Ji3rRIoKAzKnxRaZ+Gkj0vKS9ZCiTESfng1N9LyOyXvo+m+Gg==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/code-frame": "^7.29.7",
+        "@babel/parser": "^7.29.7",
+        "@babel/types": "^7.29.7"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/traverse": {
+      "version": "7.29.7",
+      "resolved": "https://registry.npmjs.org/@babel/traverse/-/traverse-7.29.7.tgz",
+      "integrity": "sha512-EhlfNQtZ+NK22w5BM61ciuiq1m58ed33Wr1Xan//ZRTy6hgjnwyCffRYwzsGXdASJSUJ1guZILsErh1eQcl+zw==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/code-frame": "^7.29.7",
+        "@babel/generator": "^7.29.7",
+        "@babel/helper-globals": "^7.29.7",
+        "@babel/parser": "^7.29.7",
+        "@babel/template": "^7.29.7",
+        "@babel/types": "^7.29.7",
+        "debug": "^4.3.1"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@babel/types": {
+      "version": "7.29.7",
+      "resolved": "https://registry.npmjs.org/@babel/types/-/types-7.29.7.tgz",
+      "integrity": "sha512-4zBIxpPzowiZpusoFkyGVwakdRJUyuH5PxQ/PrqghfdFWWasvnCdPfQXHrenDai+gyLARulZjZowCOj6fjT4pA==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/helper-string-parser": "^7.29.7",
+        "@babel/helper-validator-identifier": "^7.29.7"
+      },
+      "engines": {
+        "node": ">=6.9.0"
+      }
+    },
+    "node_modules/@jridgewell/gen-mapping": {
+      "version": "0.3.13",
+      "resolved": "https://registry.npmjs.org/@jridgewell/gen-mapping/-/gen-mapping-0.3.13.tgz",
+      "integrity": "sha512-2kkt/7niJ6MgEPxF0bYdQ6etZaA+fQvDcLKckhy1yIQOzaoKjBBjSj63/aLVjYE3qhRt5dvM+uUyfCg6UKCBbA==",
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/sourcemap-codec": "^1.5.0",
+        "@jridgewell/trace-mapping": "^0.3.24"
+      }
+    },
+    "node_modules/@jridgewell/resolve-uri": {
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/@jridgewell/resolve-uri/-/resolve-uri-3.1.2.tgz",
+      "integrity": "sha512-bRISgCIjP20/tbWSPWMEi54QVPRZExkuD9lJL+UIxUKtwVJA8wW1Trb1jMs1RFXo1CBTNZ/5hpC9QvmKWdopKw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=6.0.0"
+      }
+    },
+    "node_modules/@jridgewell/sourcemap-codec": {
+      "version": "1.5.5",
+      "resolved": "https://registry.npmjs.org/@jridgewell/sourcemap-codec/-/sourcemap-codec-1.5.5.tgz",
+      "integrity": "sha512-cYQ9310grqxueWbl+WuIUIaiUaDcj7WOq5fVhEljNVgRfOUhY9fy2zTvfoqWsnebh8Sl70VScFbICvJnLKB0Og==",
+      "license": "MIT"
+    },
+    "node_modules/@jridgewell/trace-mapping": {
+      "version": "0.3.31",
+      "resolved": "https://registry.npmjs.org/@jridgewell/trace-mapping/-/trace-mapping-0.3.31.tgz",
+      "integrity": "sha512-zzNR+SdQSDJzc8joaeP8QQoCQr8NuYx2dIIytl1QeBEZHJ9uW6hebsrYgbz8hJwUQao3TWCMtmfV8Nu1twOLAw==",
+      "license": "MIT",
+      "dependencies": {
+        "@jridgewell/resolve-uri": "^3.1.0",
+        "@jridgewell/sourcemap-codec": "^1.4.14"
+      }
+    },
+    "node_modules/@modelcontextprotocol/sdk": {
+      "version": "0.5.0",
+      "resolved": "https://registry.npmjs.org/@modelcontextprotocol/sdk/-/sdk-0.5.0.tgz",
+      "integrity": "sha512-RXgulUX6ewvxjAG0kOpLMEdXXWkzWgaoCGaA2CwNW7cQCIphjpJhjpHSiaPdVCnisjRF/0Cm9KWHUuIoeiAblQ==",
+      "license": "MIT",
+      "dependencies": {
+        "content-type": "^1.0.5",
+        "raw-body": "^3.0.0",
+        "zod": "^3.23.8"
+      }
+    },
+    "node_modules/bytes": {
+      "version": "3.1.2",
+      "resolved": "https://registry.npmjs.org/bytes/-/bytes-3.1.2.tgz",
+      "integrity": "sha512-/Nf7TyzTx6S3yRJObOAV7956r8cr2+Oj8AC5dt8wSP3BQAoeX58NoHyCU8P8zGkNXStjTSi6fzO6F0pBdcYbEg==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/content-type": {
+      "version": "1.0.5",
+      "resolved": "https://registry.npmjs.org/content-type/-/content-type-1.0.5.tgz",
+      "integrity": "sha512-nTjqfcBFEipKdXCv4YDQWCfmcLZKm81ldF0pAopTvyrFGVbcR6P/VAAd5G7N+0tTr8QqiU0tFadD6FK4NtJwOA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.6"
+      }
+    },
+    "node_modules/debug": {
+      "version": "4.4.3",
+      "resolved": "https://registry.npmjs.org/debug/-/debug-4.4.3.tgz",
+      "integrity": "sha512-RGwwWnwQvkVfavKVt22FGLw+xYSdzARwm0ru6DhTVA3umU5hZc28V3kO4stgYryrTlLpuvgI9GiijltAjNbcqA==",
+      "license": "MIT",
+      "dependencies": {
+        "ms": "^2.1.3"
+      },
+      "engines": {
+        "node": ">=6.0"
+      },
+      "peerDependenciesMeta": {
+        "supports-color": {
+          "optional": true
+        }
+      }
+    },
+    "node_modules/depd": {
+      "version": "2.0.0",
+      "resolved": "https://registry.npmjs.org/depd/-/depd-2.0.0.tgz",
+      "integrity": "sha512-g7nH6P6dyDioJogAAGprGpCtVImJhpPk/roCzdb3fIh61/s/nPsfR6onyMwkCAR/OlC3yBC0lESvUoQEAssIrw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/fivosense": {
+      "version": "0.1.5",
+      "resolved": "https://registry.npmjs.org/fivosense/-/fivosense-0.1.5.tgz",
+      "integrity": "sha512-82s3pGQQF4MOfqYkZsSPxFPkhjDcA4PJJ2wS1hzEqaPwKDsxLkRtuXl3mG64jT/I4hXStYOhu8Ui366LLJkegQ==",
+      "license": "MIT",
+      "dependencies": {
+        "@babel/parser": "^7.23.0",
+        "@babel/traverse": "^7.23.0",
+        "@babel/types": "^7.23.0"
+      },
+      "bin": {
+        "fivosense": "bin/fivosense.mjs"
+      },
+      "engines": {
+        "node": ">=20.0.0"
+      }
+    },
+    "node_modules/http-errors": {
+      "version": "2.0.1",
+      "resolved": "https://registry.npmjs.org/http-errors/-/http-errors-2.0.1.tgz",
+      "integrity": "sha512-4FbRdAX+bSdmo4AUFuS0WNiPz8NgFt+r8ThgNWmlrjQjt1Q7ZR9+zTlce2859x4KSXrwIsaeTqDoKQmtP8pLmQ==",
+      "license": "MIT",
+      "dependencies": {
+        "depd": "~2.0.0",
+        "inherits": "~2.0.4",
+        "setprototypeof": "~1.2.0",
+        "statuses": "~2.0.2",
+        "toidentifier": "~1.0.1"
+      },
+      "engines": {
+        "node": ">= 0.8"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/iconv-lite": {
+      "version": "0.7.2",
+      "resolved": "https://registry.npmjs.org/iconv-lite/-/iconv-lite-0.7.2.tgz",
+      "integrity": "sha512-im9DjEDQ55s9fL4EYzOAv0yMqmMBSZp6G0VvFyTMPKWxiSBHUj9NW/qqLmXUwXrrM7AvqSlTCfvqRb0cM8yYqw==",
+      "license": "MIT",
+      "dependencies": {
+        "safer-buffer": ">= 2.1.2 < 3.0.0"
+      },
+      "engines": {
+        "node": ">=0.10.0"
+      },
+      "funding": {
+        "type": "opencollective",
+        "url": "https://opencollective.com/express"
+      }
+    },
+    "node_modules/inherits": {
+      "version": "2.0.4",
+      "resolved": "https://registry.npmjs.org/inherits/-/inherits-2.0.4.tgz",
+      "integrity": "sha512-k/vGaX4/Yla3WzyMCvTQOXYeIHvqOKtnqBduzTHpzpQZzAskKMhZ2K+EnBiSM9zGSoIFeMpXKxa4dYeZIQqewQ==",
+      "license": "ISC"
+    },
+    "node_modules/js-tokens": {
+      "version": "4.0.0",
+      "resolved": "https://registry.npmjs.org/js-tokens/-/js-tokens-4.0.0.tgz",
+      "integrity": "sha512-RdJUflcE3cUzKiMqQgsCu06FPu9UdIJO0beYbPhHN4k6apgJtifcoCtT9bcxOpYBtpD2kCM6Sbzg4CausW/PKQ==",
+      "license": "MIT"
+    },
+    "node_modules/jsesc": {
+      "version": "3.1.0",
+      "resolved": "https://registry.npmjs.org/jsesc/-/jsesc-3.1.0.tgz",
+      "integrity": "sha512-/sM3dO2FOzXjKQhJuo0Q173wf2KOo8t4I8vHy6lF9poUp7bKT0/NHE8fPX23PwfhnykfqnC2xRxOnVw5XuGIaA==",
+      "license": "MIT",
+      "bin": {
+        "jsesc": "bin/jsesc"
+      },
+      "engines": {
+        "node": ">=6"
+      }
+    },
+    "node_modules/ms": {
+      "version": "2.1.3",
+      "resolved": "https://registry.npmjs.org/ms/-/ms-2.1.3.tgz",
+      "integrity": "sha512-6FlzubTLZG3J2a/NVCAleEhjzq5oxgHyaCU9yYXvcLsvoVaHJq/s5xXI6/XXP6tz7R9xAOtHnSO/tXtF3WRTlA==",
+      "license": "MIT"
+    },
+    "node_modules/picocolors": {
+      "version": "1.1.1",
+      "resolved": "https://registry.npmjs.org/picocolors/-/picocolors-1.1.1.tgz",
+      "integrity": "sha512-xceH2snhtb5M9liqDsmEw56le376mTZkEX/jEb/RxNFyegNul7eNslCXP9FDj/Lcu0X8KEyMceP2ntpaHrDEVA==",
+      "license": "ISC"
+    },
+    "node_modules/raw-body": {
+      "version": "3.0.2",
+      "resolved": "https://registry.npmjs.org/raw-body/-/raw-body-3.0.2.tgz",
+      "integrity": "sha512-K5zQjDllxWkf7Z5xJdV0/B0WTNqx6vxG70zJE4N0kBs4LovmEYWJzQGxC9bS9RAKu3bgM40lrd5zoLJ12MQ5BA==",
+      "license": "MIT",
+      "dependencies": {
+        "bytes": "~3.1.2",
+        "http-errors": "~2.0.1",
+        "iconv-lite": "~0.7.0",
+        "unpipe": "~1.0.0"
+      },
+      "engines": {
+        "node": ">= 0.10"
+      }
+    },
+    "node_modules/safer-buffer": {
+      "version": "2.1.2",
+      "resolved": "https://registry.npmjs.org/safer-buffer/-/safer-buffer-2.1.2.tgz",
+      "integrity": "sha512-YZo3K82SD7Riyi0E1EQPojLz7kpepnSQI9IyPbHHg1XXXevb5dJI7tpyN2ADxGcQbHG7vcyRHk0cbwqcQriUtg==",
+      "license": "MIT"
+    },
+    "node_modules/setprototypeof": {
+      "version": "1.2.0",
+      "resolved": "https://registry.npmjs.org/setprototypeof/-/setprototypeof-1.2.0.tgz",
+      "integrity": "sha512-E5LDX7Wrp85Kil5bhZv46j8jOeboKq5JMmYM3gVGdGH8xFpPWXUMsNrlODCrkoxMEeNi/XZIwuRvY4XNwYMJpw==",
+      "license": "ISC"
+    },
+    "node_modules/statuses": {
+      "version": "2.0.2",
+      "resolved": "https://registry.npmjs.org/statuses/-/statuses-2.0.2.tgz",
+      "integrity": "sha512-DvEy55V3DB7uknRo+4iOGT5fP1slR8wQohVdknigZPMpMstaKJQWhwiYBACJE3Ul2pTnATihhBYnRhZQHGBiRw==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/toidentifier": {
+      "version": "1.0.1",
+      "resolved": "https://registry.npmjs.org/toidentifier/-/toidentifier-1.0.1.tgz",
+      "integrity": "sha512-o5sSPKEkg/DIQNmH43V0/uerLrpzVedkUh8tGNvaeXpfpuwjKenlSox/2O/BTlZUtEe+JG7s5YhEz608PlAHRA==",
+      "license": "MIT",
+      "engines": {
+        "node": ">=0.6"
+      }
+    },
+    "node_modules/unpipe": {
+      "version": "1.0.0",
+      "resolved": "https://registry.npmjs.org/unpipe/-/unpipe-1.0.0.tgz",
+      "integrity": "sha512-pjy2bYhSsufwWlKwPc+l3cN7+wuJlK6uz0YdJEOlQDbl6jo/YlPi4mb8agUkVC8BF7V8NuzeyPNqRksA3hztKQ==",
+      "license": "MIT",
+      "engines": {
+        "node": ">= 0.8"
+      }
+    },
+    "node_modules/zod": {
+      "version": "3.25.76",
+      "resolved": "https://registry.npmjs.org/zod/-/zod-3.25.76.tgz",
+      "integrity": "sha512-gzUt/qt81nXsFGKIFcC3YnfEAx5NkunCfnDlvuBSSFS02bcXu4Lmea0AFIUwbLWxWPx3d9p8S5QoaujKcNQxcQ==",
+      "license": "MIT",
+      "funding": {
+        "url": "https://github.com/sponsors/colinhacks"
+      }
+    }
+  }
+}

package/mcp/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "fivosense-mcp",
-  "version": "0.1.0",
+  "version": "0.1.1",
   "description": "MCP server for FivoSense security scanner",
   "type": "module",
   "main": "index.js",
@@ -10,12 +10,29 @@
   "scripts": {
     "start": "node index.js"
   },
-  "keywords": ["mcp", "security", "fivosense", "ai-agent"],
-  "author": "Fivo Sense Contributors",
+  "keywords": [
+    "mcp",
+    "security",
+    "fivosense",
+    "ai-agent",
+    "claude",
+    "gpt",
+    "vulnerability-scanner"
+  ],
+  "author": "thevinsoni",
   "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/thevinsoni/sense.git",
+    "directory": "mcp"
+  },
+  "bugs": {
+    "url": "https://github.com/thevinsoni/sense/issues"
+  },
+  "homepage": "https://github.com/thevinsoni/sense#readme",
   "dependencies": {
     "@modelcontextprotocol/sdk": "^0.5.0",
-    "fivosense": "^0.1.3"
+    "fivosense": "^0.1.6"
   },
   "engines": {
     "node": ">=20.0.0"

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "fivosense",
-  "version": "0.1.5",
+  "version": "0.2.0",
   "description": "Neuro-symbolic AI security plugin with taint-trace proof generation",
   "main": "dist/index.js",
   "type": "module",
@@ -25,16 +25,16 @@
     "vscode-extension",
     "code-scanner"
   ],
-  "author": "Fivo Sense Contributors",
+  "author": "thevinsoni",
   "license": "MIT",
   "repository": {
     "type": "git",
-    "url": "git+https://github.com/itsvinsoni/sense.git"
+    "url": "git+https://github.com/thevinsoni/sense.git"
   },
   "bugs": {
-    "url": "https://github.com/itsvinsoni/sense/issues"
+    "url": "https://github.com/thevinsoni/sense/issues"
   },
-  "homepage": "https://github.com/itsvinsoni/sense#readme",
+  "homepage": "https://github.com/thevinsoni/sense#readme",
   "devDependencies": {
     "@types/babel__core": "^7.20.5",
     "@types/babel__traverse": "^7.20.6",

package/src/ai/client.ts ADDED Viewed

@@ -0,0 +1,226 @@
+/**
+ * FivoSense - AI Security Scanner
+ * Copyright (c) 2026 thevinsoni
+ * Licensed under the MIT License
+ * https://github.com/thevinsoni/sense
+ */
+/**
+ * AI Client - BYOK (Bring Your Own Key) support for multiple AI providers
+ */
+export interface AIProvider {
+  name: string;
+  endpoint?: string;
+  apiKey?: string;
+  model?: string;
+}
+export interface AIResponse {
+  text: string;
+  model: string;
+  usage?: {
+    promptTokens: number;
+    completionTokens: number;
+    totalTokens: number;
+  };
+}
+/**
+ * Call OpenAI-compatible API
+ */
+async function callOpenAI(
+  provider: AIProvider,
+  prompt: string
+): Promise<AIResponse> {
+  const endpoint = provider.endpoint || 'https://api.openai.com/v1/chat/completions';
+  const model = provider.model || 'gpt-4o-mini';
+  const response = await fetch(endpoint, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/json',
+      'Authorization': `Bearer ${provider.apiKey}`,
+    },
+    body: JSON.stringify({
+      model,
+      messages: [
+        {
+          role: 'system',
+          content: 'You are a security expert analyzing code vulnerabilities. Respond only with valid JSON.',
+        },
+        {
+          role: 'user',
+          content: prompt,
+        },
+      ],
+      temperature: 0.3,
+      max_tokens: 500,
+    }),
+  });
+  if (!response.ok) {
+    throw new Error(`OpenAI API error: ${response.status} ${response.statusText}`);
+  }
+  const data: any = await response.json();
+  return {
+    text: data.choices[0].message.content,
+    model: data.model,
+    usage: {
+      promptTokens: data.usage.prompt_tokens,
+      completionTokens: data.usage.completion_tokens,
+      totalTokens: data.usage.total_tokens,
+    },
+  };
+}
+/**
+ * Call Anthropic Claude API
+ */
+async function callClaude(
+  provider: AIProvider,
+  prompt: string
+): Promise<AIResponse> {
+  const endpoint = provider.endpoint || 'https://api.anthropic.com/v1/messages';
+  const model = provider.model || 'claude-3-5-sonnet-20241022';
+  const response = await fetch(endpoint, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/json',
+      'x-api-key': provider.apiKey!,
+      'anthropic-version': '2023-06-01',
+    },
+    body: JSON.stringify({
+      model,
+      max_tokens: 500,
+      temperature: 0.3,
+      system: 'You are a security expert analyzing code vulnerabilities. Respond only with valid JSON.',
+      messages: [
+        {
+          role: 'user',
+          content: prompt,
+        },
+      ],
+    }),
+  });
+  if (!response.ok) {
+    throw new Error(`Claude API error: ${response.status} ${response.statusText}`);
+  }
+  const data: any = await response.json();
+  return {
+    text: data.content[0].text,
+    model: data.model,
+    usage: {
+      promptTokens: data.usage.input_tokens,
+      completionTokens: data.usage.output_tokens,
+      totalTokens: data.usage.input_tokens + data.usage.output_tokens,
+    },
+  };
+}
+/**
+ * Call Ollama (local)
+ */
+async function callOllama(
+  provider: AIProvider,
+  prompt: string
+): Promise<AIResponse> {
+  const endpoint = provider.endpoint || 'http://localhost:11434/api/generate';
+  const model = provider.model || 'llama3.2';
+  const response = await fetch(endpoint, {
+    method: 'POST',
+    headers: {
+      'Content-Type': 'application/json',
+    },
+    body: JSON.stringify({
+      model,
+      prompt: `You are a security expert. ${prompt}`,
+      stream: false,
+      options: {
+        temperature: 0.3,
+        num_predict: 500,
+      },
+    }),
+  });
+  if (!response.ok) {
+    throw new Error(`Ollama API error: ${response.status} ${response.statusText}`);
+  }
+  const data: any = await response.json();
+  return {
+    text: data.response,
+    model: data.model,
+  };
+}
+/**
+ * Main AI client - routes to correct provider
+ */
+export async function callAI(
+  provider: AIProvider,
+  prompt: string
+): Promise<AIResponse> {
+  if (!provider.apiKey && provider.name !== 'ollama') {
+    throw new Error(`API key required for provider: ${provider.name}`);
+  }
+  switch (provider.name.toLowerCase()) {
+    case 'openai':
+      return callOpenAI(provider, prompt);
+    case 'claude':
+    case 'anthropic':
+      return callClaude(provider, prompt);
+    case 'ollama':
+      return callOllama(provider, prompt);
+    default:
+      throw new Error(`Unsupported AI provider: ${provider.name}`);
+  }
+}
+/**
+ * Get AI provider from environment variables
+ */
+export function getAIProviderFromEnv(): AIProvider | null {
+  // Check for OpenAI
+  if (process.env.OPENAI_API_KEY) {
+    return {
+      name: 'openai',
+      apiKey: process.env.OPENAI_API_KEY,
+      model: process.env.OPENAI_MODEL || 'gpt-4o-mini',
+      endpoint: process.env.OPENAI_ENDPOINT,
+    };
+  }
+  // Check for Claude
+  if (process.env.ANTHROPIC_API_KEY) {
+    return {
+      name: 'claude',
+      apiKey: process.env.ANTHROPIC_API_KEY,
+      model: process.env.ANTHROPIC_MODEL || 'claude-3-5-sonnet-20241022',
+      endpoint: process.env.ANTHROPIC_ENDPOINT,
+    };
+  }
+  // Check for Ollama
+  if (process.env.OLLAMA_ENDPOINT || process.env.OLLAMA_HOST) {
+    return {
+      name: 'ollama',
+      model: process.env.OLLAMA_MODEL || 'llama3.2',
+      endpoint: process.env.OLLAMA_ENDPOINT || process.env.OLLAMA_HOST || 'http://localhost:11434/api/generate',
+    };
+  }
+  return null;
+}