ghostdep 0.1.0

package/dist/src/detectors/ghosts.js

@@ -0,0 +1,209 @@
+import { promises as fs } from 'fs';
+import { join } from 'path';
+const BUILTINS = new Set([
+    'assert',
+    'async_hooks',
+    'buffer',
+    'child_process',
+    'cluster',
+    'console',
+    'constants',
+    'crypto',
+    'dgram',
+    'diagnostics_channel',
+    'dns',
+    'domain',
+    'events',
+    'fs',
+    'http',
+    'http2',
+    'https',
+    'inspector',
+    'module',
+    'net',
+    'os',
+    'path',
+    'perf_hooks',
+    'process',
+    'punycode',
+    'querystring',
+    'readline',
+    'repl',
+    'stream',
+    'string_decoder',
+    'sys',
+    'timers',
+    'tls',
+    'trace_events',
+    'tty',
+    'url',
+    'util',
+    'v8',
+    'vm',
+    'wasi',
+    'worker_threads',
+    'zlib',
+]);
+/**
+ * Checks if a package name is a Node.js built-in module.
+ */
+function isBuiltin(name) {
+    return name.startsWith('node:') || BUILTINS.has(name);
+}
+/**
+ * Extracts the core package name from an import specifier.
+ * E.g., "lodash/map" -> "lodash", "@types/node/index.d.ts" -> "@types/node"
+ */
+function getPackageName(specifier) {
+    if (!specifier || specifier.startsWith('.') || specifier.startsWith('/') || specifier.startsWith('file:')) {
+        return null;
+    }
+    const parts = specifier.split('/');
+    if (specifier.startsWith('@')) {
+        return parts[0] && parts[1] ? `${parts[0]}/${parts[1]}` : null;
+    }
+    return parts[0] || null;
+}
+/**
+ * Scans a file to extract all external import/require specifiers.
+ */
+async function extractImports(filePath) {
+    try {
+        const content = await fs.readFile(filePath, 'utf8');
+        const specifiers = new Set();
+        // ESM Imports & Exports matching
+        const esmImportRegex = /import\s+(?:[^'"]+\s+from\s+)?['"]([^'"]+)['"]/g;
+        const esmExportRegex = /export\s+(?:[^'"]+\s+from\s+)?['"]([^'"]+)['"]/g;
+        // CommonJS require & Dynamic imports matching
+        const dynamicOrCjsRegex = /(?:require|import)\s*\(\s*['"]([^'"]+)['"]\s*\)/g;
+        let match;
+        while ((match = esmImportRegex.exec(content)) !== null) {
+            if (match[1])
+                specifiers.add(match[1]);
+        }
+        while ((match = esmExportRegex.exec(content)) !== null) {
+            if (match[1])
+                specifiers.add(match[1]);
+        }
+        while ((match = dynamicOrCjsRegex.exec(content)) !== null) {
+            if (match[1])
+                specifiers.add(match[1]);
+        }
+        return Array.from(specifiers);
+    }
+    catch {
+        // If a file cannot be read, return empty imports
+        return [];
+    }
+}
+/**
+ * Scans the node_modules folder to find all installed package names,
+ * ignoring internal folders starting with a dot (like .bin, .cache, .pnpm).
+ */
+async function getInstalledPackages(projectRoot) {
+    const installed = new Set();
+    const nodeModulesPath = join(projectRoot, 'node_modules');
+    try {
+        const entries = await fs.readdir(nodeModulesPath, { withFileTypes: true });
+        for (const entry of entries) {
+            if (entry.isDirectory()) {
+                const name = entry.name;
+                // Ignore internal directories
+                if (name.startsWith('.')) {
+                    continue;
+                }
+                if (name.startsWith('@')) {
+                    // Read scope folder entries
+                    const scopePath = join(nodeModulesPath, name);
+                    try {
+                        const subEntries = await fs.readdir(scopePath, { withFileTypes: true });
+                        for (const subEntry of subEntries) {
+                            if (subEntry.isDirectory()) {
+                                installed.add(`${name}/${subEntry.name}`);
+                            }
+                        }
+                    }
+                    catch {
+                        // Ignore reading sub-scopes failure
+                    }
+                }
+                else {
+                    installed.add(name);
+                }
+            }
+        }
+    }
+    catch {
+        // Return empty set if node_modules does not exist
+    }
+    return installed;
+}
+/**
+ * Detects ghost dependencies: packages imported in the source code
+ * that are installed in node_modules but not listed in package.json.
+ *
+ * @param projectRoot Absolute path to the project root directory
+ * @param sourceFiles List of absolute paths of source files to analyze
+ * @param packageJson Parsed package.json object
+ * @param includeDev Whether to include devDependencies as declared packages
+ * @returns Array of detected ghost dependencies
+ */
+export async function detectGhosts(projectRoot, sourceFiles, packageJson, includeDev = false) {
+    try {
+        // 1. Gather all declared package names from package.json
+        const declaredPackages = new Set();
+        if (packageJson.dependencies) {
+            Object.keys(packageJson.dependencies).forEach((dep) => declaredPackages.add(dep));
+        }
+        if (includeDev && packageJson.devDependencies) {
+            Object.keys(packageJson.devDependencies).forEach((dep) => declaredPackages.add(dep));
+        }
+        if (packageJson.peerDependencies) {
+            Object.keys(packageJson.peerDependencies).forEach((dep) => declaredPackages.add(dep));
+        }
+        if (packageJson.optionalDependencies) {
+            Object.keys(packageJson.optionalDependencies).forEach((dep) => declaredPackages.add(dep));
+        }
+        // 2. Identify all installed packages in node_modules
+        const installedPackages = await getInstalledPackages(projectRoot);
+        // 3. Scan source files for imports and identify undeclared usages
+        const ghostMap = new Map();
+        for (const file of sourceFiles) {
+            const cleanRoot = projectRoot.replace(/\\/g, '/');
+            const cleanFile = file.replace(/\\/g, '/');
+            const relativePath = cleanFile.replace(cleanRoot, '').replace(/^[\\/]/, '');
+            const importSpecifiers = await extractImports(file);
+            for (const specifier of importSpecifiers) {
+                const pkgName = getPackageName(specifier);
+                if (!pkgName || isBuiltin(pkgName)) {
+                    continue;
+                }
+                // It is a ghost dependency if it is NOT declared, but is installed in node_modules
+                if (!declaredPackages.has(pkgName) && installedPackages.has(pkgName)) {
+                    let entry = ghostMap.get(pkgName);
+                    if (!entry) {
+                        entry = { files: new Set(), specifiers: new Set() };
+                        ghostMap.set(pkgName, entry);
+                    }
+                    entry.files.add(relativePath);
+                    entry.specifiers.add(specifier);
+                }
+            }
+        }
+        // 4. Map the results into the typed output
+        const results = [];
+        for (const [name, data] of ghostMap.entries()) {
+            results.push({
+                name,
+                files: Array.from(data.files),
+                specifiers: Array.from(data.specifiers),
+            });
+        }
+        return results;
+    }
+    catch (error) {
+        const err = error;
+        throw new Error(`Ghost dependency detection failed: ${err.message}`);
+    }
+}
+//# sourceMappingURL=ghosts.js.map

package/dist/src/detectors/ghosts.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ghosts.js","sourceRoot":"","sources":["../../../src/detectors/ghosts.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,IAAI,EAAE,EAAE,MAAM,IAAI,CAAC;AACpC,OAAO,EAAE,IAAI,EAAE,MAAM,MAAM,CAAC;AAG5B,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC;IACvB,QAAQ;IACR,aAAa;IACb,QAAQ;IACR,eAAe;IACf,SAAS;IACT,SAAS;IACT,WAAW;IACX,QAAQ;IACR,OAAO;IACP,qBAAqB;IACrB,KAAK;IACL,QAAQ;IACR,QAAQ;IACR,IAAI;IACJ,MAAM;IACN,OAAO;IACP,OAAO;IACP,WAAW;IACX,QAAQ;IACR,KAAK;IACL,IAAI;IACJ,MAAM;IACN,YAAY;IACZ,SAAS;IACT,UAAU;IACV,aAAa;IACb,UAAU;IACV,MAAM;IACN,QAAQ;IACR,gBAAgB;IAChB,KAAK;IACL,QAAQ;IACR,KAAK;IACL,cAAc;IACd,KAAK;IACL,KAAK;IACL,MAAM;IACN,IAAI;IACJ,IAAI;IACJ,MAAM;IACN,gBAAgB;IAChB,MAAM;CACP,CAAC,CAAC;AAEH;;GAEG;AACH,SAAS,SAAS,CAAC,IAAY;IAC7B,OAAO,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,IAAI,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;AACxD,CAAC;AAED;;;GAGG;AACH,SAAS,cAAc,CAAC,SAAiB;IACvC,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,SAAS,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QAC1G,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACnC,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAC9B,OAAO,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IACjE,CAAC;IACD,OAAO,KAAK,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;AAC1B,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,cAAc,CAAC,QAAgB;IAC5C,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QACpD,MAAM,UAAU,GAAG,IAAI,GAAG,EAAU,CAAC;QAErC,iCAAiC;QACjC,MAAM,cAAc,GAAG,iDAAiD,CAAC;QACzE,MAAM,cAAc,GAAG,iDAAiD,CAAC;QACzE,8CAA8C;QAC9C,MAAM,iBAAiB,GAAG,kDAAkD,CAAC;QAE7E,IAAI,KAAK,CAAC;QACV,OAAO,CAAC,KAAK,GAAG,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YACvD,IAAI,KAAK,CAAC,CAAC,CAAC;gBAAE,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QACzC,CAAC;QACD,OAAO,CAAC,KAAK,GAAG,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YACvD,IAAI,KAAK,CAAC,CAAC,CAAC;gBAAE,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QACzC,CAAC;QACD,OAAO,CAAC,KAAK,GAAG,iBAAiB,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;YAC1D,IAAI,KAAK,CAAC,CAAC,CAAC;gBAAE,UAAU,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QACzC,CAAC;QAED,OAAO,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IAChC,CAAC;IAAC,MAAM,CAAC;QACP,iDAAiD;QACjD,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,KAAK,UAAU,oBAAoB,CAAC,WAAmB;IACrD,MAAM,SAAS,GAAG,IAAI,GAAG,EAAU,CAAC;IACpC,MAAM,eAAe,GAAG,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;IAE1D,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,OAAO,CAAC,eAAe,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;QAC3E,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;gBACxB,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,CAAC;gBACxB,8BAA8B;gBAC9B,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACzB,SAAS;gBACX,CAAC;gBAED,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACzB,4BAA4B;oBAC5B,MAAM,SAAS,GAAG,IAAI,CAAC,eAAe,EAAE,IAAI,CAAC,CAAC;oBAC9C,IAAI,CAAC;wBACH,MAAM,UAAU,GAAG,MAAM,EAAE,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;wBACxE,KAAK,MAAM,QAAQ,IAAI,UAAU,EAAE,CAAC;4BAClC,IAAI,QAAQ,CAAC,WAAW,EAAE,EAAE,CAAC;gCAC3B,SAAS,CAAC,GAAG,CAAC,GAAG,IAAI,IAAI,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC;4BAC5C,CAAC;wBACH,CAAC;oBACH,CAAC;oBAAC,MAAM,CAAC;wBACP,oCAAoC;oBACtC,CAAC;gBACH,CAAC;qBAAM,CAAC;oBACN,SAAS,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBACtB,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,kDAAkD;IACpD,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,CAAC,KAAK,UAAU,YAAY,CAChC,WAAmB,EACnB,WAAqB,EACrB,WAAwB,EACxB,aAAsB,KAAK;IAE3B,IAAI,CAAC;QACH,yDAAyD;QACzD,MAAM,gBAAgB,GAAG,IAAI,GAAG,EAAU,CAAC;QAE3C,IAAI,WAAW,CAAC,YAAY,EAAE,CAAC;YAC7B,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,gBAAgB,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;QACpF,CAAC;QAED,IAAI,UAAU,IAAI,WAAW,CAAC,eAAe,EAAE,CAAC;YAC9C,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,gBAAgB,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;QACvF,CAAC;QAED,IAAI,WAAW,CAAC,gBAAgB,EAAE,CAAC;YACjC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,gBAAgB,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,gBAAgB,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;QACxF,CAAC;QAED,IAAI,WAAW,CAAC,oBAAoB,EAAE,CAAC;YACrC,MAAM,CAAC,IAAI,CAAC,WAAW,CAAC,oBAAoB,CAAC,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,gBAAgB,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;QAC5F,CAAC;QAED,qDAAqD;QACrD,MAAM,iBAAiB,GAAG,MAAM,oBAAoB,CAAC,WAAW,CAAC,CAAC;QAElE,kEAAkE;QAClE,MAAM,QAAQ,GAAG,IAAI,GAAG,EAA2D,CAAC;QAEpF,KAAK,MAAM,IAAI,IAAI,WAAW,EAAE,CAAC;YAC/B,MAAM,SAAS,GAAG,WAAW,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;YAClD,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;YAC3C,MAAM,YAAY,GAAG,SAAS,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;YAC5E,MAAM,gBAAgB,GAAG,MAAM,cAAc,CAAC,IAAI,CAAC,CAAC;YAEpD,KAAK,MAAM,SAAS,IAAI,gBAAgB,EAAE,CAAC;gBACzC,MAAM,OAAO,GAAG,cAAc,CAAC,SAAS,CAAC,CAAC;gBAE1C,IAAI,CAAC,OAAO,IAAI,SAAS,CAAC,OAAO,CAAC,EAAE,CAAC;oBACnC,SAAS;gBACX,CAAC;gBAED,mFAAmF;gBACnF,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,iBAAiB,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;oBACrE,IAAI,KAAK,GAAG,QAAQ,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;oBAClC,IAAI,CAAC,KAAK,EAAE,CAAC;wBACX,KAAK,GAAG,EAAE,KAAK,EAAE,IAAI,GAAG,EAAU,EAAE,UAAU,EAAE,IAAI,GAAG,EAAU,EAAE,CAAC;wBACpE,QAAQ,CAAC,GAAG,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;oBAC/B,CAAC;oBACD,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;oBAC9B,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;gBAClC,CAAC;YACH,CAAC;QACH,CAAC;QAED,2CAA2C;QAC3C,MAAM,OAAO,GAAsB,EAAE,CAAC;QACtC,KAAK,MAAM,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC;YAC9C,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI;gBACJ,KAAK,EAAE,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC;gBAC7B,UAAU,EAAE,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC;aACxC,CAAC,CAAC;QACL,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAAC,OAAO,KAAc,EAAE,CAAC;QACxB,MAAM,GAAG,GAAG,KAAc,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,sCAAsC,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IACvE,CAAC;AACH,CAAC"}

package/dist/src/detectors/zombies.d.ts

@@ -0,0 +1,22 @@
+import { ZombieDependency, PackageJson } from '../types.js';
+/**
+ * Parses a TS/JS file using the TypeScript Compiler API AST,
+ * returning a Set of all imported package specifiers.
+ *
+ * Supports:
+ * - import declarations: static imports and re-exports
+ * - dynamic imports: import('pkg')
+ * - CommonJS require statements
+ */
+export declare function findImportsInAST(filePath: string, fileContent: string): Set<string>;
+/**
+ * Detects zombie dependencies: packages declared in package.json dependencies list
+ * but never imported or required in the codebase.
+ *
+ * @param sourceFiles Absolute paths of all source files in the project
+ * @param packageJson Parsed package.json object
+ * @param includeDev Whether to scan and include devDependencies as candidate zombies
+ * @returns Array of ZombieDependency findings
+ */
+export declare function detectZombies(sourceFiles: string[], packageJson: PackageJson, includeDev?: boolean): Promise<ZombieDependency[]>;
+//# sourceMappingURL=zombies.d.ts.map

package/dist/src/detectors/zombies.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"zombies.d.ts","sourceRoot":"","sources":["../../../src/detectors/zombies.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAkB5D;;;;;;;;GAQG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,CA4CnF;AAED;;;;;;;;GAQG;AACH,wBAAsB,aAAa,CACjC,WAAW,EAAE,MAAM,EAAE,EACrB,WAAW,EAAE,WAAW,EACxB,UAAU,GAAE,OAAe,GAC1B,OAAO,CAAC,gBAAgB,EAAE,CAAC,CAyD7B"}

package/dist/src/detectors/zombies.js

@@ -0,0 +1,127 @@
+import { promises as fs } from 'fs';
+import ts from 'typescript';
+/**
+ * Extracts the base package name from an import specifier.
+ * E.g., "lodash/map" -> "lodash", "@types/node" -> "@types/node"
+ */
+function getPackageName(specifier) {
+    if (!specifier || specifier.startsWith('.') || specifier.startsWith('/') || specifier.startsWith('file:')) {
+        return null;
+    }
+    const parts = specifier.split('/');
+    if (specifier.startsWith('@')) {
+        return parts[0] && parts[1] ? `${parts[0]}/${parts[1]}` : null;
+    }
+    return parts[0] || null;
+}
+/**
+ * Parses a TS/JS file using the TypeScript Compiler API AST,
+ * returning a Set of all imported package specifiers.
+ *
+ * Supports:
+ * - import declarations: static imports and re-exports
+ * - dynamic imports: import('pkg')
+ * - CommonJS require statements
+ */
+export function findImportsInAST(filePath, fileContent) {
+    const imports = new Set();
+    // Create AST representation of the source file
+    const sourceFile = ts.createSourceFile(filePath, fileContent, ts.ScriptTarget.Latest, true);
+    function visit(node) {
+        // 1. Static imports: e.g. import x from 'y'
+        if (ts.isImportDeclaration(node)) {
+            if (node.moduleSpecifier && ts.isStringLiteral(node.moduleSpecifier)) {
+                imports.add(node.moduleSpecifier.text);
+            }
+        }
+        // 2. Export re-exports: e.g. export * from 'y'
+        else if (ts.isExportDeclaration(node)) {
+            if (node.moduleSpecifier && ts.isStringLiteral(node.moduleSpecifier)) {
+                imports.add(node.moduleSpecifier.text);
+            }
+        }
+        // 3. Dynamic imports or CJS require expressions
+        else if (ts.isCallExpression(node)) {
+            const expression = node.expression;
+            // Dynamic import: import('y')
+            if (expression.kind === ts.SyntaxKind.ImportKeyword) {
+                const arg = node.arguments[0];
+                if (arg && ts.isStringLiteral(arg)) {
+                    imports.add(arg.text);
+                }
+            }
+            // require('y')
+            else if (ts.isIdentifier(expression) && expression.text === 'require') {
+                const arg = node.arguments[0];
+                if (arg && ts.isStringLiteral(arg)) {
+                    imports.add(arg.text);
+                }
+            }
+        }
+        ts.forEachChild(node, visit);
+    }
+    visit(sourceFile);
+    return imports;
+}
+/**
+ * Detects zombie dependencies: packages declared in package.json dependencies list
+ * but never imported or required in the codebase.
+ *
+ * @param sourceFiles Absolute paths of all source files in the project
+ * @param packageJson Parsed package.json object
+ * @param includeDev Whether to scan and include devDependencies as candidate zombies
+ * @returns Array of ZombieDependency findings
+ */
+export async function detectZombies(sourceFiles, packageJson, includeDev = false) {
+    try {
+        // 1. Map all candidate declared dependencies to check
+        const declaredMap = new Map();
+        const addCandidates = (deps, type) => {
+            if (deps) {
+                for (const [name, version] of Object.entries(deps)) {
+                    declaredMap.set(name, { type, declaredVersion: version });
+                }
+            }
+        };
+        addCandidates(packageJson.dependencies, 'dependencies');
+        if (includeDev) {
+            addCandidates(packageJson.devDependencies, 'devDependencies');
+        }
+        addCandidates(packageJson.peerDependencies, 'peerDependencies');
+        addCandidates(packageJson.optionalDependencies, 'optionalDependencies');
+        // 2. Traverse all source files to find all imports
+        const usedPackages = new Set();
+        for (const file of sourceFiles) {
+            try {
+                const content = await fs.readFile(file, 'utf8');
+                const fileImports = findImportsInAST(file, content);
+                for (const specifier of fileImports) {
+                    const pkgName = getPackageName(specifier);
+                    if (pkgName) {
+                        usedPackages.add(pkgName);
+                    }
+                }
+            }
+            catch {
+                // Skip file quietly if reading/parsing fails (e.g. binary or empty file)
+            }
+        }
+        // 3. Find packages that are declared but never used in any scanned source file
+        const zombies = [];
+        for (const [name, details] of declaredMap.entries()) {
+            if (!usedPackages.has(name)) {
+                zombies.push({
+                    name,
+                    type: details.type,
+                    declaredVersion: details.declaredVersion,
+                });
+            }
+        }
+        return zombies;
+    }
+    catch (error) {
+        const err = error;
+        throw new Error(`Zombie dependency detection failed: ${err.message}`);
+    }
+}
+//# sourceMappingURL=zombies.js.map

package/dist/src/detectors/zombies.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"zombies.js","sourceRoot":"","sources":["../../../src/detectors/zombies.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,IAAI,EAAE,EAAE,MAAM,IAAI,CAAC;AACpC,OAAO,EAAE,MAAM,YAAY,CAAC;AAG5B;;;GAGG;AACH,SAAS,cAAc,CAAC,SAAiB;IACvC,IAAI,CAAC,SAAS,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,SAAS,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QAC1G,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,KAAK,GAAG,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACnC,IAAI,SAAS,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAC9B,OAAO,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC;IACjE,CAAC;IACD,OAAO,KAAK,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC;AAC1B,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,gBAAgB,CAAC,QAAgB,EAAE,WAAmB;IACpE,MAAM,OAAO,GAAG,IAAI,GAAG,EAAU,CAAC;IAElC,+CAA+C;IAC/C,MAAM,UAAU,GAAG,EAAE,CAAC,gBAAgB,CAAC,QAAQ,EAAE,WAAW,EAAE,EAAE,CAAC,YAAY,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC;IAE5F,SAAS,KAAK,CAAC,IAAa;QAC1B,4CAA4C;QAC5C,IAAI,EAAE,CAAC,mBAAmB,CAAC,IAAI,CAAC,EAAE,CAAC;YACjC,IAAI,IAAI,CAAC,eAAe,IAAI,EAAE,CAAC,eAAe,CAAC,IAAI,CAAC,eAAe,CAAC,EAAE,CAAC;gBACrE,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YACzC,CAAC;QACH,CAAC;QACD,+CAA+C;aAC1C,IAAI,EAAE,CAAC,mBAAmB,CAAC,IAAI,CAAC,EAAE,CAAC;YACtC,IAAI,IAAI,CAAC,eAAe,IAAI,EAAE,CAAC,eAAe,CAAC,IAAI,CAAC,eAAe,CAAC,EAAE,CAAC;gBACrE,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;YACzC,CAAC;QACH,CAAC;QACD,gDAAgD;aAC3C,IAAI,EAAE,CAAC,gBAAgB,CAAC,IAAI,CAAC,EAAE,CAAC;YACnC,MAAM,UAAU,GAAG,IAAI,CAAC,UAAU,CAAC;YAEnC,8BAA8B;YAC9B,IAAI,UAAU,CAAC,IAAI,KAAK,EAAE,CAAC,UAAU,CAAC,aAAa,EAAE,CAAC;gBACpD,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;gBAC9B,IAAI,GAAG,IAAI,EAAE,CAAC,eAAe,CAAC,GAAG,CAAC,EAAE,CAAC;oBACnC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBACxB,CAAC;YACH,CAAC;YACD,eAAe;iBACV,IAAI,EAAE,CAAC,YAAY,CAAC,UAAU,CAAC,IAAI,UAAU,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;gBACtE,MAAM,GAAG,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;gBAC9B,IAAI,GAAG,IAAI,EAAE,CAAC,eAAe,CAAC,GAAG,CAAC,EAAE,CAAC;oBACnC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;gBACxB,CAAC;YACH,CAAC;QACH,CAAC;QAED,EAAE,CAAC,YAAY,CAAC,IAAI,EAAE,KAAK,CAAC,CAAC;IAC/B,CAAC;IAED,KAAK,CAAC,UAAU,CAAC,CAAC;IAClB,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,WAAqB,EACrB,WAAwB,EACxB,aAAsB,KAAK;IAE3B,IAAI,CAAC;QACH,sDAAsD;QACtD,MAAM,WAAW,GAAG,IAAI,GAAG,EAAuE,CAAC;QAEnG,MAAM,aAAa,GAAG,CAAC,IAAwC,EAAE,IAA8B,EAAE,EAAE;YACjG,IAAI,IAAI,EAAE,CAAC;gBACT,KAAK,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;oBACnD,WAAW,CAAC,GAAG,CAAC,IAAI,EAAE,EAAE,IAAI,EAAE,eAAe,EAAE,OAAO,EAAE,CAAC,CAAC;gBAC5D,CAAC;YACH,CAAC;QACH,CAAC,CAAC;QAEF,aAAa,CAAC,WAAW,CAAC,YAAY,EAAE,cAAc,CAAC,CAAC;QACxD,IAAI,UAAU,EAAE,CAAC;YACf,aAAa,CAAC,WAAW,CAAC,eAAe,EAAE,iBAAiB,CAAC,CAAC;QAChE,CAAC;QACD,aAAa,CAAC,WAAW,CAAC,gBAAgB,EAAE,kBAAkB,CAAC,CAAC;QAChE,aAAa,CAAC,WAAW,CAAC,oBAAoB,EAAE,sBAAsB,CAAC,CAAC;QAExE,mDAAmD;QACnD,MAAM,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;QAEvC,KAAK,MAAM,IAAI,IAAI,WAAW,EAAE,CAAC;YAC/B,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;gBAChD,MAAM,WAAW,GAAG,gBAAgB,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC;gBAEpD,KAAK,MAAM,SAAS,IAAI,WAAW,EAAE,CAAC;oBACpC,MAAM,OAAO,GAAG,cAAc,CAAC,SAAS,CAAC,CAAC;oBAC1C,IAAI,OAAO,EAAE,CAAC;wBACZ,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;oBAC5B,CAAC;gBACH,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,yEAAyE;YAC3E,CAAC;QACH,CAAC;QAED,+EAA+E;QAC/E,MAAM,OAAO,GAAuB,EAAE,CAAC;QAEvC,KAAK,MAAM,CAAC,IAAI,EAAE,OAAO,CAAC,IAAI,WAAW,CAAC,OAAO,EAAE,EAAE,CAAC;YACpD,IAAI,CAAC,YAAY,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC5B,OAAO,CAAC,IAAI,CAAC;oBACX,IAAI;oBACJ,IAAI,EAAE,OAAO,CAAC,IAAI;oBAClB,eAAe,EAAE,OAAO,CAAC,eAAe;iBACzC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAAC,OAAO,KAAc,EAAE,CAAC;QACxB,MAAM,GAAG,GAAG,KAAc,CAAC;QAC3B,MAAM,IAAI,KAAK,CAAC,uCAAuC,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;IACxE,CAAC;AACH,CAAC"}

package/dist/src/health.d.ts

@@ -0,0 +1,22 @@
+import { HealthScore, GhostDependency, ZombieDependency, DuplicateDependency, VersionDrift, ScanOptions } from './types.js';
+/**
+ * Calculates the dependency health score and grade of a project.
+ *
+ * Score Formula:
+ * - Starting Base: 100
+ * - Deductions:
+ *   - -5 per ghost dependency
+ *   - -5 per zombie dependency
+ *   - -3 per duplicate dependency
+ *   - -2 per version drift (by default)
+ * - Minimum bounded score: 0
+ *
+ * @param ghosts List of detected ghost dependencies
+ * @param zombies List of detected zombie dependencies
+ * @param duplicates List of detected duplicate dependencies
+ * @param drifts List of detected version drift issues
+ * @param customPenalties Optional custom penalty configuration override
+ * @returns Fully computed HealthScore object
+ */
+export declare function calculateHealthScore(ghosts: GhostDependency[], zombies: ZombieDependency[], duplicates: DuplicateDependency[], drifts: VersionDrift[], customPenalties?: ScanOptions['penalties']): HealthScore;
+//# sourceMappingURL=health.d.ts.map

package/dist/src/health.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"health.d.ts","sourceRoot":"","sources":["../../src/health.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,WAAW,EACX,eAAe,EACf,gBAAgB,EAChB,mBAAmB,EACnB,YAAY,EAEZ,WAAW,EACZ,MAAM,YAAY,CAAC;AAEpB;;;;;;;;;;;;;;;;;;GAkBG;AACH,wBAAgB,oBAAoB,CAClC,MAAM,EAAE,eAAe,EAAE,EACzB,OAAO,EAAE,gBAAgB,EAAE,EAC3B,UAAU,EAAE,mBAAmB,EAAE,EACjC,MAAM,EAAE,YAAY,EAAE,EACtB,eAAe,CAAC,EAAE,WAAW,CAAC,WAAW,CAAC,GACzC,WAAW,CAsGb"}

package/dist/src/health.js

@@ -0,0 +1,123 @@
+/**
+ * Calculates the dependency health score and grade of a project.
+ *
+ * Score Formula:
+ * - Starting Base: 100
+ * - Deductions:
+ *   - -5 per ghost dependency
+ *   - -5 per zombie dependency
+ *   - -3 per duplicate dependency
+ *   - -2 per version drift (by default)
+ * - Minimum bounded score: 0
+ *
+ * @param ghosts List of detected ghost dependencies
+ * @param zombies List of detected zombie dependencies
+ * @param duplicates List of detected duplicate dependencies
+ * @param drifts List of detected version drift issues
+ * @param customPenalties Optional custom penalty configuration override
+ * @returns Fully computed HealthScore object
+ */
+export function calculateHealthScore(ghosts, zombies, duplicates, drifts, customPenalties) {
+    const deductions = [];
+    let score = 100;
+    // 1. Ghost Dependencies deduction
+    if (ghosts.length > 0) {
+        const penaltyPerGhost = customPenalties?.ghost ?? 5;
+        const penalty = ghosts.length * penaltyPerGhost;
+        deductions.push({
+            reason: `${ghosts.length} ghost dependenc${ghosts.length === 1 ? 'y' : 'ies'} detected`,
+            penalty,
+        });
+        score -= penalty;
+    }
+    // 2. Zombie Dependencies deduction
+    if (zombies.length > 0) {
+        const penaltyPerZombie = customPenalties?.zombie ?? 5;
+        const penalty = zombies.length * penaltyPerZombie;
+        deductions.push({
+            reason: `${zombies.length} zombie dependenc${zombies.length === 1 ? 'y' : 'ies'} detected`,
+            penalty,
+        });
+        score -= penalty;
+    }
+    // 3. Duplicate Dependencies deduction
+    if (duplicates.length > 0) {
+        const penaltyPerDuplicate = customPenalties?.duplicate ?? 3;
+        const penalty = duplicates.length * penaltyPerDuplicate;
+        deductions.push({
+            reason: `${duplicates.length} duplicate package${duplicates.length === 1 ? '' : 's'} detected`,
+            penalty,
+        });
+        score -= penalty;
+    }
+    // 4. Version Drift deduction (aggregating major, minor, patch, and missing)
+    if (drifts.length > 0) {
+        let driftPenaltyTotal = 0;
+        let majorCount = 0;
+        let minorCount = 0;
+        let patchCount = 0;
+        let missingCount = 0;
+        for (const drift of drifts) {
+            if (drift.driftType === 'major') {
+                driftPenaltyTotal += customPenalties?.driftMajor ?? 2;
+                majorCount++;
+            }
+            else if (drift.driftType === 'minor') {
+                driftPenaltyTotal += customPenalties?.driftMinor ?? 2;
+                minorCount++;
+            }
+            else if (drift.driftType === 'patch') {
+                driftPenaltyTotal += customPenalties?.driftPatch ?? 2;
+                patchCount++;
+            }
+            else if (drift.driftType === 'missing') {
+                driftPenaltyTotal += customPenalties?.missing ?? 2;
+                missingCount++;
+            }
+        }
+        if (driftPenaltyTotal > 0) {
+            const details = [];
+            if (majorCount > 0)
+                details.push(`${majorCount} major`);
+            if (minorCount > 0)
+                details.push(`${minorCount} minor`);
+            if (patchCount > 0)
+                details.push(`${patchCount} patch`);
+            if (missingCount > 0)
+                details.push(`${missingCount} missing`);
+            deductions.push({
+                reason: `${drifts.length} version drift${drifts.length === 1 ? '' : 's'} (${details.join(', ')})`,
+                penalty: driftPenaltyTotal,
+            });
+            score -= driftPenaltyTotal;
+        }
+    }
+    // Limit score to a minimum of 0
+    score = Math.max(0, score);
+    // Grade Assignment
+    let grade = 'F';
+    if (score >= 90) {
+        grade = 'A';
+    }
+    else if (score >= 80) {
+        grade = 'B';
+    }
+    else if (score >= 70) {
+        grade = 'C';
+    }
+    else if (score >= 60) {
+        grade = 'D';
+    }
+    return {
+        score,
+        grade,
+        metrics: {
+            ghosts: ghosts.length,
+            zombies: zombies.length,
+            duplicates: duplicates.length,
+            drifts: drifts.length,
+        },
+        deductions,
+    };
+}
+//# sourceMappingURL=health.js.map

package/dist/src/health.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"health.js","sourceRoot":"","sources":["../../src/health.ts"],"names":[],"mappings":"AAUA;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,UAAU,oBAAoB,CAClC,MAAyB,EACzB,OAA2B,EAC3B,UAAiC,EACjC,MAAsB,EACtB,eAA0C;IAE1C,MAAM,UAAU,GAAsB,EAAE,CAAC;IACzC,IAAI,KAAK,GAAG,GAAG,CAAC;IAEhB,kCAAkC;IAClC,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtB,MAAM,eAAe,GAAG,eAAe,EAAE,KAAK,IAAI,CAAC,CAAC;QACpD,MAAM,OAAO,GAAG,MAAM,CAAC,MAAM,GAAG,eAAe,CAAC;QAChD,UAAU,CAAC,IAAI,CAAC;YACd,MAAM,EAAE,GAAG,MAAM,CAAC,MAAM,mBAAmB,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,WAAW;YACvF,OAAO;SACR,CAAC,CAAC;QACH,KAAK,IAAI,OAAO,CAAC;IACnB,CAAC;IAED,mCAAmC;IACnC,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACvB,MAAM,gBAAgB,GAAG,eAAe,EAAE,MAAM,IAAI,CAAC,CAAC;QACtD,MAAM,OAAO,GAAG,OAAO,CAAC,MAAM,GAAG,gBAAgB,CAAC;QAClD,UAAU,CAAC,IAAI,CAAC;YACd,MAAM,EAAE,GAAG,OAAO,CAAC,MAAM,oBAAoB,OAAO,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,WAAW;YAC1F,OAAO;SACR,CAAC,CAAC;QACH,KAAK,IAAI,OAAO,CAAC;IACnB,CAAC;IAED,sCAAsC;IACtC,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1B,MAAM,mBAAmB,GAAG,eAAe,EAAE,SAAS,IAAI,CAAC,CAAC;QAC5D,MAAM,OAAO,GAAG,UAAU,CAAC,MAAM,GAAG,mBAAmB,CAAC;QACxD,UAAU,CAAC,IAAI,CAAC;YACd,MAAM,EAAE,GAAG,UAAU,CAAC,MAAM,qBAAqB,UAAU,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,WAAW;YAC9F,OAAO;SACR,CAAC,CAAC;QACH,KAAK,IAAI,OAAO,CAAC;IACnB,CAAC;IAED,4EAA4E;IAC5E,IAAI,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACtB,IAAI,iBAAiB,GAAG,CAAC,CAAC;QAC1B,IAAI,UAAU,GAAG,CAAC,CAAC;QACnB,IAAI,UAAU,GAAG,CAAC,CAAC;QACnB,IAAI,UAAU,GAAG,CAAC,CAAC;QACnB,IAAI,YAAY,GAAG,CAAC,CAAC;QAErB,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,IAAI,KAAK,CAAC,SAAS,KAAK,OAAO,EAAE,CAAC;gBAChC,iBAAiB,IAAI,eAAe,EAAE,UAAU,IAAI,CAAC,CAAC;gBACtD,UAAU,EAAE,CAAC;YACf,CAAC;iBAAM,IAAI,KAAK,CAAC,SAAS,KAAK,OAAO,EAAE,CAAC;gBACvC,iBAAiB,IAAI,eAAe,EAAE,UAAU,IAAI,CAAC,CAAC;gBACtD,UAAU,EAAE,CAAC;YACf,CAAC;iBAAM,IAAI,KAAK,CAAC,SAAS,KAAK,OAAO,EAAE,CAAC;gBACvC,iBAAiB,IAAI,eAAe,EAAE,UAAU,IAAI,CAAC,CAAC;gBACtD,UAAU,EAAE,CAAC;YACf,CAAC;iBAAM,IAAI,KAAK,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;gBACzC,iBAAiB,IAAI,eAAe,EAAE,OAAO,IAAI,CAAC,CAAC;gBACnD,YAAY,EAAE,CAAC;YACjB,CAAC;QACH,CAAC;QAED,IAAI,iBAAiB,GAAG,CAAC,EAAE,CAAC;YAC1B,MAAM,OAAO,GAAa,EAAE,CAAC;YAC7B,IAAI,UAAU,GAAG,CAAC;gBAAE,OAAO,CAAC,IAAI,CAAC,GAAG,UAAU,QAAQ,CAAC,CAAC;YACxD,IAAI,UAAU,GAAG,CAAC;gBAAE,OAAO,CAAC,IAAI,CAAC,GAAG,UAAU,QAAQ,CAAC,CAAC;YACxD,IAAI,UAAU,GAAG,CAAC;gBAAE,OAAO,CAAC,IAAI,CAAC,GAAG,UAAU,QAAQ,CAAC,CAAC;YACxD,IAAI,YAAY,GAAG,CAAC;gBAAE,OAAO,CAAC,IAAI,CAAC,GAAG,YAAY,UAAU,CAAC,CAAC;YAE9D,UAAU,CAAC,IAAI,CAAC;gBACd,MAAM,EAAE,GAAG,MAAM,CAAC,MAAM,iBAAiB,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,GAAG,KAAK,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG;gBACjG,OAAO,EAAE,iBAAiB;aAC3B,CAAC,CAAC;YACH,KAAK,IAAI,iBAAiB,CAAC;QAC7B,CAAC;IACH,CAAC;IAED,gCAAgC;IAChC,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;IAE3B,mBAAmB;IACnB,IAAI,KAAK,GAAyB,GAAG,CAAC;IACtC,IAAI,KAAK,IAAI,EAAE,EAAE,CAAC;QAChB,KAAK,GAAG,GAAG,CAAC;IACd,CAAC;SAAM,IAAI,KAAK,IAAI,EAAE,EAAE,CAAC;QACvB,KAAK,GAAG,GAAG,CAAC;IACd,CAAC;SAAM,IAAI,KAAK,IAAI,EAAE,EAAE,CAAC;QACvB,KAAK,GAAG,GAAG,CAAC;IACd,CAAC;SAAM,IAAI,KAAK,IAAI,EAAE,EAAE,CAAC;QACvB,KAAK,GAAG,GAAG,CAAC;IACd,CAAC;IAED,OAAO;QACL,KAAK;QACL,KAAK;QACL,OAAO,EAAE;YACP,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,OAAO,EAAE,OAAO,CAAC,MAAM;YACvB,UAAU,EAAE,UAAU,CAAC,MAAM;YAC7B,MAAM,EAAE,MAAM,CAAC,MAAM;SACtB;QACD,UAAU;KACX,CAAC;AACJ,CAAC"}

package/dist/src/index.d.ts

@@ -0,0 +1,4 @@
+export { runScan } from './scanner.js';
+export { calculateHealthScore } from './health.js';
+export * from './types.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/src/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AACvC,OAAO,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACnD,cAAc,YAAY,CAAC"}

package/dist/src/index.js

@@ -0,0 +1,4 @@
+export { runScan } from './scanner.js';
+export { calculateHealthScore } from './health.js';
+export * from './types.js';
+//# sourceMappingURL=index.js.map

package/dist/src/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,MAAM,cAAc,CAAC;AACvC,OAAO,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACnD,cAAc,YAAY,CAAC"}

package/dist/src/reporter.d.ts

@@ -0,0 +1,9 @@
+import { ScanReport } from './types.js';
+/**
+ * Outputs a beautifully formatted CLI report summarizing the dependency audit scan results,
+ * color-coded by issue severity using chalk.
+ *
+ * @param report The final ScanReport resulting from the scan
+ */
+export declare function reportToConsole(report: ScanReport): void;
+//# sourceMappingURL=reporter.d.ts.map

package/dist/src/reporter.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"reporter.d.ts","sourceRoot":"","sources":["../../src/reporter.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAExC;;;;;GAKG;AACH,wBAAgB,eAAe,CAAC,MAAM,EAAE,UAAU,GAAG,IAAI,CA2HxD"}