fivosense 0.1.5 → 0.2.0

package/dist/rules/destructive.js

@@ -1,10 +1,10 @@
 /**
- * Destructive command detection
- * Blocks dangerous operations: rm -rf, DROP TABLE, mass deletes, etc.
- */
-/**
- * Filesystem destructive patterns
+ * FivoSense - AI Security Scanner
+ * Copyright (c) 2026 thevinsoni
+ * Licensed under the MIT License
+ * https://github.com/thevinsoni/sense
  */
+// === Filesystem Destructive ===
 export const FS_DESTRUCTIVE = [
     {
         pattern: /rm\s+-rf\s+[\/~]/,
@@ -18,6 +18,12 @@ export const FS_DESTRUCTIVE = [
         severity: 'critical',
         category: 'filesystem',
     },
+    {
+        pattern: /rm\s+-rf\s+["']?\//,
+        description: 'Recursive force delete from absolute path',
+        severity: 'critical',
+        category: 'filesystem',
+    },
     {
         pattern: /unlink\s*\(\s*['"]\/['"]\s*\)/,
         description: 'Unlink root directory',
@@ -30,10 +36,56 @@ export const FS_DESTRUCTIVE = [
         severity: 'critical',
         category: 'filesystem',
     },
+    {
+        pattern: /shred\s+/,
+        description: 'Secure file deletion (shred)',
+        severity: 'critical',
+        category: 'filesystem',
+    },
+    {
+        pattern: /mkfs\./,
+        description: 'Format filesystem',
+        severity: 'critical',
+        category: 'filesystem',
+    },
+    {
+        pattern: /dd\s+if=.*of=\/dev\//,
+        description: 'dd write to device',
+        severity: 'critical',
+        category: 'filesystem',
+    },
+    {
+        pattern: />\s*\/dev\/sd[a-z]/,
+        description: 'Write directly to disk device',
+        severity: 'critical',
+        category: 'filesystem',
+    },
+    {
+        pattern: /wipefs\s+/,
+        description: 'Wipe filesystem signatures',
+        severity: 'critical',
+        category: 'filesystem',
+    },
+    {
+        pattern: /truncate\s+-s\s+0/,
+        description: 'Truncate file to zero bytes',
+        severity: 'high',
+        category: 'filesystem',
+    },
+    {
+        pattern: /del\s+\/[sfq]/i,
+        description: 'Windows force delete',
+        severity: 'critical',
+        category: 'filesystem',
+    },
+    {
+        pattern: /rmdir\s+\/s\s+\/q/i,
+        description: 'Windows recursive directory delete',
+        severity: 'critical',
+        category: 'filesystem',
+    },
 ];
-/**
- * Database destructive patterns
- */
+// === Database Destructive ===
 export const DB_DESTRUCTIVE = [
     {
         pattern: /DROP\s+TABLE/i,
@@ -47,10 +99,16 @@ export const DB_DESTRUCTIVE = [
         severity: 'critical',
         category: 'database',
     },
+    {
+        pattern: /DROP\s+SCHEMA/i,
+        description: 'SQL DROP SCHEMA',
+        severity: 'critical',
+        category: 'database',
+    },
     {
         pattern: /TRUNCATE\s+TABLE/i,
         description: 'SQL TRUNCATE TABLE',
-        severity: 'high',
+        severity: 'critical',
         category: 'database',
     },
     {
@@ -59,41 +117,268 @@ export const DB_DESTRUCTIVE = [
         severity: 'critical',
         category: 'database',
     },
+    {
+        pattern: /UPDATE\s+\w+\s+SET.*WHERE\s+1\s*=\s*1/i,
+        description: 'SQL UPDATE all rows',
+        severity: 'critical',
+        category: 'database',
+    },
+    {
+        pattern: /db\.dropDatabase/,
+        description: 'MongoDB drop database',
+        severity: 'critical',
+        category: 'database',
+    },
     {
         pattern: /db\.collection\(\w+\)\.drop\(\)/,
         description: 'MongoDB collection drop',
+        severity: 'critical',
+        category: 'database',
+    },
+    {
+        pattern: /FLUSH\s+(PRIVILEGES|TABLES|LOGS)/i,
+        description: 'MySQL FLUSH command',
         severity: 'high',
         category: 'database',
     },
+    {
+        pattern: /ALTER\s+TABLE.*DROP\s+COLUMN/i,
+        description: 'SQL DROP COLUMN',
+        severity: 'high',
+        category: 'database',
+    },
+    {
+        pattern: /db\.users\.remove/,
+        description: 'MongoDB mass remove',
+        severity: 'critical',
+        category: 'database',
+    },
+    {
+        pattern: /\.remove\(\{\}\)/,
+        description: 'MongoDB remove all documents',
+        severity: 'critical',
+        category: 'database',
+    },
 ];
-/**
- * System destructive patterns
- */
+// === System Destructive ===
 export const SYSTEM_DESTRUCTIVE = [
     {
-        pattern: /shutdown|reboot|halt/i,
+        pattern: /shutdown\s+(-[hprs])?\s*(now|\+[0-9])/i,
         description: 'System shutdown command',
         severity: 'critical',
         category: 'system',
     },
     {
-        pattern: /kill\s+-9\s+1/,
-        description: 'Kill init process',
+        pattern: /reboot\s*(-[f])?/i,
+        description: 'System reboot',
+        severity: 'critical',
+        category: 'system',
+    },
+    {
+        pattern: /halt\s*(-[f])?/i,
+        description: 'System halt',
+        severity: 'critical',
+        category: 'system',
+    },
+    {
+        pattern: /poweroff/i,
+        description: 'System power off',
+        severity: 'critical',
+        category: 'system',
+    },
+    {
+        pattern: /kill\s+-9\s+1\b/,
+        description: 'Kill init process (PID 1)',
+        severity: 'critical',
+        category: 'system',
+    },
+    {
+        pattern: /killall\s+-9/,
+        description: 'Force kill all processes',
+        severity: 'critical',
+        category: 'system',
+    },
+    {
+        pattern: /:(){ :\|:& };:/,
+        description: 'Fork bomb',
+        severity: 'critical',
+        category: 'system',
+    },
+    {
+        pattern: /init\s+0/,
+        description: 'Init shutdown',
         severity: 'critical',
         category: 'system',
     },
+    {
+        pattern: /systemctl\s+(stop|disable)\s+/,
+        description: 'Stop/disable systemd service',
+        severity: 'high',
+        category: 'system',
+    },
+    {
+        pattern: /service\s+\w+\s+stop/,
+        description: 'Stop system service',
+        severity: 'high',
+        category: 'system',
+    },
 ];
-/**
- * All destructive patterns
- */
+// === Network Destructive ===
+export const NETWORK_DESTRUCTIVE = [
+    {
+        pattern: /iptables\s+-F/,
+        description: 'Flush all firewall rules',
+        severity: 'critical',
+        category: 'network',
+    },
+    {
+        pattern: /iptables\s+--flush/,
+        description: 'Flush firewall rules',
+        severity: 'critical',
+        category: 'network',
+    },
+    {
+        pattern: /ufw\s+disable/,
+        description: 'Disable UFW firewall',
+        severity: 'critical',
+        category: 'network',
+    },
+    {
+        pattern: /netsh\s+firewall\s+set\s+opmode\s+disable/i,
+        description: 'Windows disable firewall',
+        severity: 'critical',
+        category: 'network',
+    },
+    {
+        pattern: /ip\s+link\s+set\s+\w+\s+down/,
+        description: 'Disable network interface',
+        severity: 'high',
+        category: 'network',
+    },
+    {
+        pattern: /ifconfig\s+\w+\s+down/,
+        description: 'Disable network interface (ifconfig)',
+        severity: 'high',
+        category: 'network',
+    },
+    {
+        pattern: /route\s+(del|flush)/,
+        description: 'Delete/flush routing table',
+        severity: 'high',
+        category: 'network',
+    },
+    {
+        pattern: /curl\s+.*\|\s*(bash|sh)/,
+        description: 'Remote code execution via curl pipe',
+        severity: 'critical',
+        category: 'network',
+    },
+    {
+        pattern: /wget\s+.*\|\s*(bash|sh)/,
+        description: 'Remote code execution via wget pipe',
+        severity: 'critical',
+        category: 'network',
+    },
+];
+// === Container / Cloud Destructive ===
+export const CONTAINER_DESTRUCTIVE = [
+    {
+        pattern: /docker\s+rm\s+-f\s+\$\(docker\s+ps/,
+        description: 'Force remove all Docker containers',
+        severity: 'critical',
+        category: 'container',
+    },
+    {
+        pattern: /docker\s+rmi\s+-f\s+\$\(docker\s+images/,
+        description: 'Force remove all Docker images',
+        severity: 'critical',
+        category: 'container',
+    },
+    {
+        pattern: /docker\s+system\s+prune\s+-a/,
+        description: 'Prune all Docker data',
+        severity: 'high',
+        category: 'container',
+    },
+    {
+        pattern: /kubectl\s+delete\s+(pods|deployment|namespace)\s+--all/,
+        description: 'Delete all Kubernetes resources',
+        severity: 'critical',
+        category: 'container',
+    },
+    {
+        pattern: /kubectl\s+delete\s+namespace/,
+        description: 'Delete Kubernetes namespace',
+        severity: 'critical',
+        category: 'container',
+    },
+];
+// === Privilege Escalation ===
+export const PRIVILEGE_DESTRUCTIVE = [
+    {
+        pattern: /chmod\s+777\s+[\/~]/,
+        description: 'Set full permissions (chmod 777)',
+        severity: 'critical',
+        category: 'privilege',
+    },
+    {
+        pattern: /chmod\s+-R\s+777/,
+        description: 'Recursive full permissions',
+        severity: 'critical',
+        category: 'privilege',
+    },
+    {
+        pattern: /chown\s+-R\s+root/,
+        description: 'Recursive ownership to root',
+        severity: 'critical',
+        category: 'privilege',
+    },
+    {
+        pattern: /chmod\s+\+s/,
+        description: 'Set SUID/SGID bit',
+        severity: 'critical',
+        category: 'privilege',
+    },
+    {
+        pattern: /chmod\s+u\+s/,
+        description: 'Set SUID bit',
+        severity: 'critical',
+        category: 'privilege',
+    },
+    {
+        pattern: /visudo/,
+        description: 'Edit sudoers file',
+        severity: 'critical',
+        category: 'privilege',
+    },
+    {
+        pattern: /echo\s+.*>>\s*\/etc\/sudoers/,
+        description: 'Append to sudoers file',
+        severity: 'critical',
+        category: 'privilege',
+    },
+    {
+        pattern: /usermod\s+-aG\s+sudo/,
+        description: 'Add user to sudo group',
+        severity: 'high',
+        category: 'privilege',
+    },
+    {
+        pattern: /passwd\s+(root|-e)/,
+        description: 'Change root password or expire',
+        severity: 'critical',
+        category: 'privilege',
+    },
+];
+// === All destructive patterns combined ===
 export const ALL_DESTRUCTIVE = [
     ...FS_DESTRUCTIVE,
     ...DB_DESTRUCTIVE,
     ...SYSTEM_DESTRUCTIVE,
+    ...NETWORK_DESTRUCTIVE,
+    ...CONTAINER_DESTRUCTIVE,
+    ...PRIVILEGE_DESTRUCTIVE,
 ];
-/**
- * Check if code contains destructive patterns
- */
 export function detectDestructive(code) {
     const matches = [];
     for (const pattern of ALL_DESTRUCTIVE) {
@@ -103,9 +388,6 @@ export function detectDestructive(code) {
     }
     return matches;
 }
-/**
- * Check if specific line contains destructive command
- */
 export function isDestructiveLine(line) {
     for (const pattern of ALL_DESTRUCTIVE) {
         if (pattern.pattern.test(line)) {

package/dist/rules/destructive.js.map

@@ -1 +1 @@
-{"version":3,"file":"destructive.js","sourceRoot":"","sources":["../../src/rules/destructive.ts"],"names":[],"mappings":"AAAA;;;GAGG;AASH;;GAEG;AACH,MAAM,CAAC,MAAM,cAAc,GAAyB;IAClD;QACE,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EAAE,kCAAkC;QAC/C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,eAAe;QACxB,WAAW,EAAE,sCAAsC;QACnD,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,uBAAuB;QACpC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,6BAA6B;QACtC,WAAW,EAAE,uBAAuB;QACpC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,cAAc,GAAyB;IAClD;QACE,OAAO,EAAE,eAAe;QACxB,WAAW,EAAE,gBAAgB;QAC7B,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EAAE,mBAAmB;QAChC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,mBAAmB;QAC5B,WAAW,EAAE,oBAAoB;QACjC,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,0BAA0B;QACnC,WAAW,EAAE,iCAAiC;QAC9C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,iCAAiC;QAC1C,WAAW,EAAE,yBAAyB;QACtC,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,UAAU;KACrB;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAyB;IACtD;QACE,OAAO,EAAE,uBAAuB;QAChC,WAAW,EAAE,yBAAyB;QACtC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,eAAe;QACxB,WAAW,EAAE,mBAAmB;QAChC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;CACF,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,eAAe,GAAG;IAC7B,GAAG,cAAc;IACjB,GAAG,cAAc;IACjB,GAAG,kBAAkB;CACtB,CAAC;AAEF;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,IAAY;IAC5C,MAAM,OAAO,GAAyB,EAAE,CAAC;IAEzC,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;QACtC,IAAI,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxB,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,IAAY;IAC5C,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;QACtC,IAAI,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/B,OAAO,OAAO,CAAC;QACjB,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC"}
+{"version":3,"file":"destructive.js","sourceRoot":"","sources":["../../src/rules/destructive.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAcH,iCAAiC;AACjC,MAAM,CAAC,MAAM,cAAc,GAAyB;IAClD;QACE,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EAAE,kCAAkC;QAC/C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,eAAe;QACxB,WAAW,EAAE,sCAAsC;QACnD,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,oBAAoB;QAC7B,WAAW,EAAE,2CAA2C;QACxD,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,uBAAuB;QACpC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,6BAA6B;QACtC,WAAW,EAAE,uBAAuB;QACpC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,UAAU;QACnB,WAAW,EAAE,8BAA8B;QAC3C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,QAAQ;QACjB,WAAW,EAAE,mBAAmB;QAChC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,sBAAsB;QAC/B,WAAW,EAAE,oBAAoB;QACjC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,oBAAoB;QAC7B,WAAW,EAAE,+BAA+B;QAC5C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,WAAW,EAAE,4BAA4B;QACzC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,mBAAmB;QAC5B,WAAW,EAAE,6BAA6B;QAC1C,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,gBAAgB;QACzB,WAAW,EAAE,sBAAsB;QACnC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;IACD;QACE,OAAO,EAAE,oBAAoB;QAC7B,WAAW,EAAE,oCAAoC;QACjD,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,YAAY;KACvB;CACF,CAAC;AAEF,+BAA+B;AAC/B,MAAM,CAAC,MAAM,cAAc,GAAyB;IAClD;QACE,OAAO,EAAE,eAAe;QACxB,WAAW,EAAE,gBAAgB;QAC7B,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EAAE,mBAAmB;QAChC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,gBAAgB;QACzB,WAAW,EAAE,iBAAiB;QAC9B,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,mBAAmB;QAC5B,WAAW,EAAE,oBAAoB;QACjC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,0BAA0B;QACnC,WAAW,EAAE,iCAAiC;QAC9C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,wCAAwC;QACjD,WAAW,EAAE,qBAAqB;QAClC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EAAE,uBAAuB;QACpC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,iCAAiC;QAC1C,WAAW,EAAE,yBAAyB;QACtC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,qBAAqB;QAClC,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,iBAAiB;QAC9B,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,mBAAmB;QAC5B,WAAW,EAAE,qBAAqB;QAClC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EAAE,8BAA8B;QAC3C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,UAAU;KACrB;CACF,CAAC;AAEF,6BAA6B;AAC7B,MAAM,CAAC,MAAM,kBAAkB,GAAyB;IACtD;QACE,OAAO,EAAE,wCAAwC;QACjD,WAAW,EAAE,yBAAyB;QACtC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,mBAAmB;QAC5B,WAAW,EAAE,eAAe;QAC5B,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,iBAAiB;QAC1B,WAAW,EAAE,aAAa;QAC1B,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,WAAW;QACpB,WAAW,EAAE,kBAAkB;QAC/B,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,iBAAiB;QAC1B,WAAW,EAAE,2BAA2B;QACxC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,cAAc;QACvB,WAAW,EAAE,0BAA0B;QACvC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,gBAAgB;QACzB,WAAW,EAAE,WAAW;QACxB,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,UAAU;QACnB,WAAW,EAAE,eAAe;QAC5B,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,8BAA8B;QAC3C,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,OAAO,EAAE,sBAAsB;QAC/B,WAAW,EAAE,qBAAqB;QAClC,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,QAAQ;KACnB;CACF,CAAC;AAEF,8BAA8B;AAC9B,MAAM,CAAC,MAAM,mBAAmB,GAAyB;IACvD;QACE,OAAO,EAAE,eAAe;QACxB,WAAW,EAAE,0BAA0B;QACvC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,SAAS;KACpB;IACD;QACE,OAAO,EAAE,oBAAoB;QAC7B,WAAW,EAAE,sBAAsB;QACnC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,SAAS;KACpB;IACD;QACE,OAAO,EAAE,eAAe;QACxB,WAAW,EAAE,sBAAsB;QACnC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,SAAS;KACpB;IACD;QACE,OAAO,EAAE,4CAA4C;QACrD,WAAW,EAAE,0BAA0B;QACvC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,SAAS;KACpB;IACD;QACE,OAAO,EAAE,8BAA8B;QACvC,WAAW,EAAE,2BAA2B;QACxC,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,SAAS;KACpB;IACD;QACE,OAAO,EAAE,uBAAuB;QAChC,WAAW,EAAE,sCAAsC;QACnD,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,SAAS;KACpB;IACD;QACE,OAAO,EAAE,qBAAqB;QAC9B,WAAW,EAAE,4BAA4B;QACzC,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,SAAS;KACpB;IACD;QACE,OAAO,EAAE,yBAAyB;QAClC,WAAW,EAAE,qCAAqC;QAClD,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,SAAS;KACpB;IACD;QACE,OAAO,EAAE,yBAAyB;QAClC,WAAW,EAAE,qCAAqC;QAClD,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,SAAS;KACpB;CACF,CAAC;AAEF,wCAAwC;AACxC,MAAM,CAAC,MAAM,qBAAqB,GAAyB;IACzD;QACE,OAAO,EAAE,oCAAoC;QAC7C,WAAW,EAAE,oCAAoC;QACjD,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,yCAAyC;QAClD,WAAW,EAAE,gCAAgC;QAC7C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,8BAA8B;QACvC,WAAW,EAAE,uBAAuB;QACpC,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,wDAAwD;QACjE,WAAW,EAAE,iCAAiC;QAC9C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,8BAA8B;QACvC,WAAW,EAAE,6BAA6B;QAC1C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;CACF,CAAC;AAEF,+BAA+B;AAC/B,MAAM,CAAC,MAAM,qBAAqB,GAAyB;IACzD;QACE,OAAO,EAAE,qBAAqB;QAC9B,WAAW,EAAE,kCAAkC;QAC/C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EAAE,4BAA4B;QACzC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,mBAAmB;QAC5B,WAAW,EAAE,6BAA6B;QAC1C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,aAAa;QACtB,WAAW,EAAE,mBAAmB;QAChC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,cAAc;QACvB,WAAW,EAAE,cAAc;QAC3B,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,QAAQ;QACjB,WAAW,EAAE,mBAAmB;QAChC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,8BAA8B;QACvC,WAAW,EAAE,wBAAwB;QACrC,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,sBAAsB;QAC/B,WAAW,EAAE,wBAAwB;QACrC,QAAQ,EAAE,MAAM;QAChB,QAAQ,EAAE,WAAW;KACtB;IACD;QACE,OAAO,EAAE,oBAAoB;QAC7B,WAAW,EAAE,gCAAgC;QAC7C,QAAQ,EAAE,UAAU;QACpB,QAAQ,EAAE,WAAW;KACtB;CACF,CAAC;AAEF,4CAA4C;AAC5C,MAAM,CAAC,MAAM,eAAe,GAAyB;IACnD,GAAG,cAAc;IACjB,GAAG,cAAc;IACjB,GAAG,kBAAkB;IACrB,GAAG,mBAAmB;IACtB,GAAG,qBAAqB;IACxB,GAAG,qBAAqB;CACzB,CAAC;AAEF,MAAM,UAAU,iBAAiB,CAAC,IAAY;IAC5C,MAAM,OAAO,GAAyB,EAAE,CAAC;IAEzC,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;QACtC,IAAI,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACxB,CAAC;IACH,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,MAAM,UAAU,iBAAiB,CAAC,IAAY;IAC5C,KAAK,MAAM,OAAO,IAAI,eAAe,EAAE,CAAC;QACtC,IAAI,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/B,OAAO,OAAO,CAAC;QACjB,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/rules/secrets.d.ts

@@ -1,5 +1,12 @@
 /**
- * Secret detection - finds hardcoded API keys, tokens, passwords
+ * FivoSense - AI Security Scanner
+ * Copyright (c) 2026 thevinsoni
+ * Licensed under the MIT License
+ * https://github.com/thevinsoni/sense
+ */
+/**
+ * Secret detection — finds hardcoded API keys, tokens, passwords
+ * 55+ patterns covering AI, cloud, SaaS, payments, databases, and dev tools
  */
 export interface SecretPattern {
     pattern: RegExp;
@@ -7,9 +14,6 @@ export interface SecretPattern {
     description: string;
     severity: 'high' | 'medium';
 }
-/**
- * Common secret patterns
- */
 export declare const SECRET_PATTERNS: SecretPattern[];
 export interface SecretMatch {
     type: string;
@@ -18,12 +22,6 @@ export interface SecretMatch {
     line: number;
     match: string;
 }
-/**
- * Detect secrets in code
- */
 export declare function detectSecrets(code: string): SecretMatch[];
-/**
- * Check if specific line contains a secret
- */
 export declare function isSecretLine(line: string): SecretPattern | null;
 //# sourceMappingURL=secrets.d.ts.map

package/dist/rules/secrets.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"secrets.d.ts","sourceRoot":"","sources":["../../src/rules/secrets.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,GAAG,QAAQ,CAAC;CAC7B;AAED;;GAEG;AACH,eAAO,MAAM,eAAe,EAAE,aAAa,EAuD1C,CAAC;AAEF,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,GAAG,QAAQ,CAAC;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;CACf;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,WAAW,EAAE,CAyBzD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,GAAG,IAAI,CAO/D"}
+{"version":3,"file":"secrets.d.ts","sourceRoot":"","sources":["../../src/rules/secrets.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;;GAGG;AAEH,MAAM,WAAW,aAAa;IAC5B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,GAAG,QAAQ,CAAC;CAC7B;AAED,eAAO,MAAM,eAAe,EAAE,aAAa,EA0V1C,CAAC;AAEF,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,MAAM,GAAG,QAAQ,CAAC;IAC5B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;CACf;AAED,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,WAAW,EAAE,CAwBzD;AAED,wBAAgB,YAAY,CAAC,IAAI,EAAE,MAAM,GAAG,aAAa,GAAG,IAAI,CAO/D"}