npm - guard-scanner - Versions diffs - 5.0.4 → 5.0.8 - Mend

guard-scanner 5.0.4 → 5.0.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (66) hide show

package/README.md +15 -15
package/SKILL.md +33 -39
package/hooks/guard-scanner/HOOK.md +4 -4
package/openclaw.plugin.json +3 -3
package/package.json +7 -15
package/src/patterns.js +11 -0
package/src/scanner.js +1 -1
package/dist/__tests__/runtime.test.d.ts +0 -2
package/dist/__tests__/runtime.test.d.ts.map +0 -1
package/dist/__tests__/runtime.test.js +0 -68
package/dist/__tests__/runtime.test.js.map +0 -1
package/dist/__tests__/scanner.test.d.ts +0 -10
package/dist/__tests__/scanner.test.d.ts.map +0 -1
package/dist/__tests__/scanner.test.js +0 -443
package/dist/__tests__/scanner.test.js.map +0 -1
package/dist/cli.d.ts +0 -10
package/dist/cli.d.ts.map +0 -1
package/dist/cli.js +0 -230
package/dist/cli.js.map +0 -1
package/dist/index.d.ts +0 -11
package/dist/index.d.ts.map +0 -1
package/dist/index.js +0 -25
package/dist/index.js.map +0 -1
package/dist/ioc-db.d.ts +0 -13
package/dist/ioc-db.d.ts.map +0 -1
package/dist/ioc-db.js +0 -130
package/dist/ioc-db.js.map +0 -1
package/dist/patterns.d.ts +0 -27
package/dist/patterns.d.ts.map +0 -1
package/dist/patterns.js +0 -92
package/dist/patterns.js.map +0 -1
package/dist/quarantine.d.ts +0 -18
package/dist/quarantine.d.ts.map +0 -1
package/dist/quarantine.js +0 -42
package/dist/quarantine.js.map +0 -1
package/dist/runtime.d.ts +0 -58
package/dist/runtime.d.ts.map +0 -1
package/dist/runtime.js +0 -198
package/dist/runtime.js.map +0 -1
package/dist/scanner.d.ts +0 -59
package/dist/scanner.d.ts.map +0 -1
package/dist/scanner.js +0 -1134
package/dist/scanner.js.map +0 -1
package/dist/types.d.ts +0 -167
package/dist/types.d.ts.map +0 -1
package/dist/types.js +0 -7
package/dist/types.js.map +0 -1
package/docs/OPENCLAW_DOCS_PR_READY_PATCH.md +0 -88
package/docs/OPENCLAW_HOOK_SCHEMA_REFERENCE_DRAFT.md +0 -78
package/docs/TASKLIST_RESEARCH_FIRST_V1.md +0 -47
package/docs/html-report-preview.png +0 -0
package/ts-src/__tests__/fixtures/clean-skill/SKILL.md +0 -9
package/ts-src/__tests__/fixtures/compaction-skill/SKILL.md +0 -11
package/ts-src/__tests__/fixtures/malicious-skill/SKILL.md +0 -11
package/ts-src/__tests__/fixtures/malicious-skill/scripts/evil.js +0 -25
package/ts-src/__tests__/fixtures/prompt-leakage-skill/SKILL.md +0 -20
package/ts-src/__tests__/fixtures/prompt-leakage-skill/scripts/debug.js +0 -4
package/ts-src/__tests__/scanner.test.ts +0 -609
package/ts-src/cli.ts +0 -211
package/ts-src/index.ts +0 -27
package/ts-src/ioc-db.ts +0 -131
package/ts-src/patterns.ts +0 -104
package/ts-src/quarantine.ts +0 -48
package/ts-src/runtime.ts +0 -240
package/ts-src/scanner.ts +0 -1118
package/ts-src/types.ts +0 -189

package/ts-src/types.ts DELETED Viewed

@@ -1,189 +0,0 @@
-/**
- * guard-scanner v3.0.0 — Type Definitions
- * TypeScript rewrite with full type safety
- */
-// ── Severity & Verdict ──────────────────────────────────────────────────────
-export type Severity = 'CRITICAL' | 'HIGH' | 'MEDIUM' | 'LOW';
-export type VerdictLabel = 'MALICIOUS' | 'SUSPICIOUS' | 'LOW RISK' | 'CLEAN';
-export type VerdictStat = 'malicious' | 'suspicious' | 'low' | 'clean';
-export interface Verdict {
-    icon: string;
-    label: VerdictLabel;
-    stat: VerdictStat;
-}
-// ── File Types ──────────────────────────────────────────────────────────────
-export type FileType = 'code' | 'doc' | 'data' | 'skill-doc' | 'other';
-// ── Findings ────────────────────────────────────────────────────────────────
-export interface Finding {
-    severity: Severity;
-    id: string;
-    cat: string;
-    desc: string;
-    file: string;
-    line?: number;
-    matchCount?: number;
-    sample?: string;
-}
-export interface SkillResult {
-    skill: string;
-    risk: number;
-    verdict: VerdictLabel;
-    findings: Finding[];
-}
-// ── Patterns ────────────────────────────────────────────────────────────────
-export interface PatternRule {
-    id: string;
-    cat: string;
-    regex: RegExp;
-    severity: Severity;
-    desc: string;
-    codeOnly?: boolean;
-    docOnly?: boolean;
-    all?: boolean;
-    /** OWASP LLM Top 10 2025 mapping (e.g. 'LLM01', 'LLM06') */
-    owasp?: string;
-}
-export interface CustomRuleInput {
-    id: string;
-    pattern: string;
-    flags?: string;
-    severity: Severity;
-    cat: string;
-    desc: string;
-    codeOnly?: boolean;
-    docOnly?: boolean;
-}
-// ── IoC Database ────────────────────────────────────────────────────────────
-export interface IoC_Database {
-    ips: string[];
-    domains: string[];
-    urls: string[];
-    usernames: string[];
-    filenames: string[];
-    typosquats: string[];
-}
-// ── Signature Database (hbg-scan compatible) ────────────────────────────────
-export interface ThreatSignature {
-    id: string;
-    name: string;
-    severity: Severity;
-    description: string;
-    hash?: string;          // SHA-256 content hash match
-    patterns?: string[];    // String patterns to match
-    domains?: string[];     // Suspicious domains
-}
-export interface SignatureDatabase {
-    version: string;
-    updated: string;
-    signatures: ThreatSignature[];
-}
-// ── Scanner Options ─────────────────────────────────────────────────────────
-export interface ScannerOptions {
-    verbose?: boolean;
-    selfExclude?: boolean;
-    strict?: boolean;
-    summaryOnly?: boolean;
-    /** Suppress all console.log output (v3.2.0: for --format stdout piping) */
-    quiet?: boolean;
-    checkDeps?: boolean;
-    rulesFile?: string;
-    plugins?: string[];
-}
-// ── Scanner Stats ───────────────────────────────────────────────────────────
-export interface ScanStats {
-    scanned: number;
-    clean: number;
-    low: number;
-    suspicious: number;
-    malicious: number;
-}
-// ── Thresholds ──────────────────────────────────────────────────────────────
-export interface Thresholds {
-    suspicious: number;
-    malicious: number;
-}
-// ── Reports ─────────────────────────────────────────────────────────────────
-export interface JSONReport {
-    timestamp: string;
-    scanner: string;
-    mode: 'strict' | 'normal';
-    stats: ScanStats;
-    thresholds: Thresholds;
-    findings: SkillResult[];
-    recommendations: Recommendation[];
-    iocVersion: string;
-    signaturesVersion?: string;
-}
-export interface Recommendation {
-    skill: string;
-    actions: string[];
-}
-// ── SARIF ───────────────────────────────────────────────────────────────────
-export interface SARIFReport {
-    version: string;
-    $schema: string;
-    runs: SARIFRun[];
-}
-export interface SARIFRun {
-    tool: {
-        driver: {
-            name: string;
-            version: string;
-            informationUri: string;
-            rules: SARIFRule[];
-        };
-    };
-    results: SARIFResult[];
-    invocations: Array<{ executionSuccessful: boolean; endTimeUtc: string }>;
-}
-export interface SARIFRule {
-    id: string;
-    name: string;
-    shortDescription: { text: string };
-    defaultConfiguration: { level: string };
-    properties: { tags: string[]; 'security-severity': string };
-}
-export interface SARIFResult {
-    ruleId: string;
-    ruleIndex: number;
-    level: string;
-    message: { text: string };
-    partialFingerprints: { primaryLocationLineHash: string };
-    locations: Array<{
-        physicalLocation: {
-            artifactLocation: { uri: string; uriBaseId: string };
-            region?: { startLine: number };
-        };
-    }>;
-}