guardlink 1.4.2 → 1.4.3

package/dist/agents/prompts.js

@@ -7,13 +7,35 @@
  * @audit #agent-launcher -- "Prompt injection mitigated by agent's own safety measures; GuardLink prompt is read-only context"
  * @exposes #agent-launcher to #path-traversal [medium] cwe:CWE-22 -- "Reads reference docs from root-relative paths"
  * @mitigates #agent-launcher against #path-traversal using #path-validation -- "resolve() with root constrains file access"
+ * @exposes #agent-launcher to #config-tamper [medium] cwe:CWE-15 -- "Translate prompt may read CXG reference paths from environment overrides"
+ * @audit #agent-launcher -- "Environment override paths are optional convenience; verify trusted local paths in CI"
  * @flows UserPrompt -> #agent-launcher via buildAnnotatePrompt -- "User instruction input"
+ * @flows UserPrompt -> #agent-launcher via buildTranslatePrompt -- "Template translation instruction input"
+ * @flows UserPrompt -> #agent-launcher via buildAskPrompt -- "Threat model question input"
  * @flows ThreatModel -> #agent-launcher via model -- "Model context injection"
  * @flows #agent-launcher -> AgentPrompt via return -- "Assembled prompt output"
  * @handles internal on #agent-launcher -- "Serializes threat model IDs and flows into prompt"
  */
 import { existsSync, readFileSync } from 'node:fs';
 import { resolve } from 'node:path';
+import { homedir } from 'node:os';
+// CXG canonical install layout — matches what 'cargo install cert-x-gen'
+// produces and what 'cxg template fetch' writes. The 'official' subdirectory
+// is CXG's name for the Bugb-Technologies/cert-x-gen-templates remote;
+// see PathResolver::user_template_dir() in cert-x-gen/src/template/paths.rs.
+// Override with GUARDLINK_CXG_ROOT for forks or non-standard layouts.
+const DEFAULT_CXG_ROOT = resolve(homedir(), '.cert-x-gen', 'templates', 'official');
+const DEFAULT_CXG_SKELETON_DIR = resolve(DEFAULT_CXG_ROOT, 'templates', 'skeleton');
+function readIfExists(path, maxChars = 5000) {
+    if (!existsSync(path))
+        return '';
+    try {
+        return readFileSync(path, 'utf-8').slice(0, maxChars);
+    }
+    catch {
+        return '';
+    }
+}
 function annotationModeLabel(mode) {
     return mode === 'external' ? 'externalized .gal files' : 'inline source comments';
 }
@@ -66,6 +88,7 @@ export function buildAnnotatePrompt(userPrompt, root, model, annotationMode = 'i
         const parts = [
             `${model.annotations_parsed} annotations`,
             `${model.exposures.length} exposures`,
+            ...((model.confirmed || []).length > 0 ? [`${model.confirmed.length} confirmed exploitable`] : []),
             `${model.assets.length} assets`,
             `${model.threats.length} threats`,
             `${model.controls.length} controls`,
@@ -294,6 +317,16 @@ Example — what to do when no mitigation exists:
 
 Leaving exposures unmitigated is HONEST. The dashboard and reports will surface them as open risks for humans to triage.
 
+### Pentest-Confirmable vs Governance-Only Gaps
+When documenting threats, distinguish between:
+1. **Pentest-confirmable findings**: testable with concrete I/O behavior (e.g., injection, auth bypass, IDOR, exposed service, unsafe deserialization). Document the risk with @exposes (hypothesis). After a pentest, CXG scan, or manual reproduction **proves** exploitability with evidence, add @confirmed #threat on Asset [severity] -- "evidence summary" — never use @confirmed for guesses or scanner noise without verification.
+2. **Governance/design gaps**: important risks that are not directly testable as a penetration test template (e.g., missing ownership process, policy-only controls, broad architectural assumptions with no direct exploit path).
+
+For governance/design gaps:
+- Do NOT force a fake exploit-style exposure.
+- Add @audit on the relevant asset with precise reasoning.
+- Add @comment suggesting concrete controls or follow-up review tasks.
+
 ### @shield — DO NOT USE Unless Explicitly Asked
 @shield and @shield:begin/@shield:end block AI coding assistants from reading the annotated code.
 This means any shielded code becomes invisible to AI tools — they cannot analyze, refactor, or annotate it.
@@ -317,6 +350,7 @@ Definitions go in .guardlink/definitions.{ts,js,py,rs}. Relationship annotations
 \`\`\`
 // @shield:begin -- "Relationship syntax examples, excluded from parsing"
 // @exposes #auth to #sqli [P0] cwe:CWE-89 owasp:A03:2021 -- "User input concatenated into query"
+// @confirmed #sqli on #auth [critical] cwe:CWE-89 -- "Pentest 2026-04: time-based blind SQLi on /login confirmed"
 // @mitigates #auth against #sqli using #prepared-stmts -- "Uses parameterized queries via sqlx"
 // @audit #auth -- "Timing attack risk — needs human review to decide if bcrypt constant-time comparison is sufficient"
 // @transfers #ddos from #api to #cdn -- "Cloudflare handles L7 DDoS mitigation"
@@ -327,6 +361,7 @@ Definitions go in .guardlink/definitions.{ts,js,py,rs}. Relationship annotations
 // @audit #auth -- "Session token rotation logic needs cryptographic review"
 // @assumes #auth -- "Upstream API gateway has already validated TLS and rate-limited requests"
 // @owns security-team for #auth -- "Security team reviews all auth PRs"
+// @feature "SSO Login" -- "Single sign-on authentication flow"
 // @comment -- "Password hashing uses bcrypt with cost factor 12, migration from SHA256 completed in v2.1"
 // @shield:end
 \`\`\`
@@ -355,6 +390,7 @@ Definitions go in .guardlink/definitions.{ts,js,py,rs}. Relationship annotations
 
 4. **Severity in square brackets**: \`[P0]\` \`[P1]\` \`[P2]\` \`[P3]\` or \`[critical]\` \`[high]\` \`[medium]\` \`[low]\`.
    Goes AFTER the threat ref in @exposes: \`@exposes #app to #sqli [P0] cwe:CWE-89\`
+   On @confirmed, severity is optional but recommended — it reflects **verified** impact: \`@confirmed #sqli on #app [critical] -- "evidence"\`
 
 5. **Descriptions in double quotes after --**: \`-- "description text here"\`
    WRONG: \`@comment "just a note"\` or \`@comment -- note without quotes\`
@@ -393,9 +429,416 @@ Definitions go in .guardlink/definitions.{ts,js,py,rs}. Relationship annotations
 
 5. **Use the selected annotation mode consistently.** Inline mode writes source comments; external mode writes associated \`.gal\` files with \`@source\` blocks.
 
-6. **Run validation** via guardlink_validate (MCP) or \`guardlink validate\` to check for errors.
+6. **Generate project description.** If \`.guardlink/prompt.md\` exists and contains only the skeleton template
+   (HTML comments / placeholder headings with no real content), fill it in based on what you learned while
+   reading the codebase. Write a security-focused project overview covering:
+   - What the application does and who its users are
+   - Key components and services
+   - Trust boundaries (where trust changes between components)
+   - Data sensitivity (PII, credentials, financial data, etc.)
+   - Deployment context (cloud, containers, CI/CD, etc.)
+   This file feeds into \`guardlink report\` as the Application Overview section.
+   **Do NOT overwrite user-written content** — only fill in the template placeholders.
+
+7. **Run validation** via guardlink_validate (MCP) or \`guardlink validate\` to check for errors.
+
+8. **Fix any validation errors** before finishing — especially dangling refs and malformed syntax.
+`;
+}
+/**
+ * Build a prompt for translating GuardLink threat model findings into
+ * CERT-X-GEN (CXG) pentest templates.
+ */
+export function buildTranslatePrompt(userPrompt, root, model) {
+    const cxgRoot = process.env.GUARDLINK_CXG_ROOT || DEFAULT_CXG_ROOT;
+    const skeletonDir = process.env.GUARDLINK_CXG_SKELETON_DIR || DEFAULT_CXG_SKELETON_DIR;
+    const templateGuide = readIfExists(resolve(cxgRoot, 'docs', 'TEMPLATE_GUIDE.md'), 4000);
+    // prompt.rs only exists when GUARDLINK_CXG_ROOT points at the CXG source
+    // repo (developer use). For end users on the installed layout the path
+    // resolves under ~/.cert-x-gen/templates/official/src/ai/prompt.rs which
+    // does not exist; readIfExists() returns '' gracefully and the prompt
+    // still works — they just get a slightly leaner template-authoring guide.
+    const promptEngine = readIfExists(resolve(cxgRoot, 'src', 'ai', 'prompt.rs'), 4000);
+    const yamlSkeleton = readIfExists(resolve(skeletonDir, 'yaml-template-skeleton.yaml'), 5000);
+    const pythonSkeleton = readIfExists(resolve(skeletonDir, 'python-template-skeleton.py'), 3000);
+    let modelSummary = 'No threat model parsed yet.';
+    let candidateExposures = '';
+    if (model) {
+        const unmitigated = model.exposures.filter((e) => !model.mitigations.some((m) => m.asset === e.asset && m.threat === e.threat));
+        modelSummary = `Current model: ${model.annotations_parsed} annotations, ${model.exposures.length} exposures, ${(model.confirmed || []).length} confirmed, ${unmitigated.length} unmitigated exposures, ${model.assets.length} assets, ${model.threats.length} threats.`;
+        if (unmitigated.length > 0) {
+            const lines = unmitigated.slice(0, 40).map((e) => `- ${e.asset} -> ${e.threat} [${e.severity || 'unrated'}] (${e.location.file}:${e.location.line})`);
+            candidateExposures = `\n\nUnmitigated exposure candidates:\n${lines.join('\n')}`;
+            if (unmitigated.length > 40) {
+                candidateExposures += `\n- ... and ${unmitigated.length - 40} more`;
+            }
+        }
+    }
+    const instruction = userPrompt.trim()
+        ? userPrompt.trim()
+        : 'Generate CXG pentest templates for all pentest-confirmable high/critical threats first, then medium.';
+    return `You are a senior offensive security engineer translating GuardLink threat-model findings into CERT-X-GEN (CXG) templates.
+
+## Mission
+Convert pentest-confirmable threats into runnable CXG templates. Do NOT execute templates. Only author template files.
+
+## Current Threat Model
+${modelSummary}${candidateExposures}
+
+## User Request
+${instruction}
+
+## Required CXG CLI Discovery (Do This First)
+Before generating final user guidance, discover the actual CLI usage on this machine:
+1. Try: \`cxg --help\`
+2. Try: \`cxg scan --help\`
+3. Try: \`cxg template --help\`
+4. If \`cxg\` is not in PATH, try local binary from source checkout (if present):
+   - \`cxg --help\`
+   - \`cxg scan --help\`
+   - \`cxg template --help\`
+5. Base user instructions on the commands that actually work. If none work, clearly state the blocker and provide install/build steps first.
+
+## Required Decision Rule (Critical)
+For every candidate threat/exposure:
+1. Decide if it is **pentest-confirmable** — meaning it can be validated via:
+   - Network request/response behavior (HTTP, TCP, etc.)
+   - Local CLI invocation with crafted inputs (command injection, path traversal, etc.)
+   - File system operations (symlink attacks, arbitrary writes, config tampering)
+   - MCP/stdio protocol interactions (JSON-RPC tool calls with malicious payloads)
+   - Process spawning behavior (canary file creation, shell metacharacter interpretation)
+2. If yes: create one or more CXG templates. For local CLI/codebase threats, templates should use \`subprocess.run()\` or \`subprocess.Popen()\` with \`cwd=target\` to invoke the tool under test.
+3. If no (pure governance/process/design gap): do NOT create a template. Instead document it as audit-only guidance:
+   - Include suggested GuardLink @audit text and @comment text for the relevant asset/file.
+   - Explain briefly why no pentest template is appropriate.
+
+## Output and File Operations
+1. Create templates under: \`.guardlink/cxg-templates/\`
+2. Use meaningful filenames like:
+   - \`.guardlink/cxg-templates/<threat-id-or-name>.yaml\`
+   - or language variants \`.py\`, \`.js\`, \`.go\`, etc. if needed.
+3. Write an index file at \`.guardlink/cxg-templates/README.md\` with:
+   - generated templates list
+   - mapping: GuardLink threat/exposure -> template file(s)
+   - "audit-only / no-template" items with suggested @audit annotations
+4. CXG scan output goes to: \`.guardlink/pentest-findings/\` (this is where \`guardlink dashboard\` and \`guardlink threat-report\` read pentest results from). Always tell users to output to this path.
+5. Do NOT run CXG CLI or execute generated templates.
+6. Keep checks non-destructive.
+7. You MAY run \`cxg --help\` and other help/listing commands only for usage discovery. Do not run active scans unless user explicitly asks.
+
+## CXG Format Contract (from source)
+Use the project skeleton contract and examples; mirror field names and structure exactly.
+
+${templateGuide ? `### TEMPLATE_GUIDE excerpt\n${templateGuide}\n` : ''}
+${promptEngine ? `### prompt.rs excerpt\n${promptEngine}\n` : ''}
+${yamlSkeleton ? `### YAML skeleton excerpt\n${yamlSkeleton}\n` : ''}
+${pythonSkeleton ? `### Python skeleton excerpt\n${pythonSkeleton}\n` : ''}
+
+## Quality Bar
+- Each template must include clear metadata: id/name/author/severity/description/tags/references.
+- Detection logic must align to the threat and include concrete matchers/assertions.
+- Prefer YAML templates for declarative checks; use code templates where procedural logic is required.
+- Avoid placeholder TODO logic.
+- Keep template logic scoped to the specific threat confirmation.
+
+## CXG Engine Contract (Critical — templates MUST follow this)
+When CXG runs a Python template, it does NOT pass the target as a CLI argument.
+Instead, it sets environment variables and expects JSON on stdout.
+
+### Target resolution (in main / entry point):
+\`\`\`python
+target = os.environ.get("CERT_X_GEN_PROJECT_ROOT") or args.target or os.environ.get("CERT_X_GEN_TARGET_HOST")
+\`\`\`
+- \`CERT_X_GEN_PROJECT_ROOT\`: set for local codebase/CLI targets (absolute path).
+- \`CERT_X_GEN_TARGET_HOST\`: set for network targets (hostname/IP).
+- The positional \`target\` arg MUST use \`nargs="?"\` (optional) since CXG engine passes no argv.
+
+### Output contract:
+- When \`CERT_X_GEN_MODE == "engine"\` (always true under CXG), print ONLY a JSON array to stdout.
+- Output \`[]\` (empty array) when no findings — never print plain text in engine mode.
+- Use: \`print(json.dumps(findings, indent=2))\`
+
+### Environment variables available:
+| Variable | Value |
+|----------|-------|
+| \`CERT_X_GEN_MODE\` | Always \`"engine"\` |
+| \`CERT_X_GEN_TARGET_HOST\` | Target address (path for local, hostname for network) |
+| \`CERT_X_GEN_TARGET_TYPE\` | \`"local"\` or \`"network"\` |
+| \`CERT_X_GEN_PROJECT_ROOT\` | Absolute path (local targets only) |
+| \`CERT_X_GEN_TARGET_PORT\` | Port number (network targets, default 80) |
+
+### Running templates with CXG local scope:
+\`\`\`bash
+cxg scan --scope local://. --template-dir .guardlink/cxg-templates/ --output .guardlink/pentest-findings/guardlink-pentest --output-format json,sarif,html
+\`\`\`
 
-7. **Fix any validation errors** before finishing — especially dangling refs and malformed syntax.
+## CXG Evidence Contract (Critical — findings MUST include rich evidence)
+CXG parses finding evidence using specific field names. If these fields are missing or empty,
+the output report will show blank evidence — making findings impossible to verify.
+
+### Required evidence structure in every finding dict:
+\`\`\`python
+"evidence": {
+    "request": "<string: what was sent — payload, RPC call, CLI args, env vars, etc.>",
+    "response": "<string: what came back — stdout, stderr, HTTP response, RPC response, etc.>",
+    "matched_patterns": ["<string>", ...],  # list of STRINGS (not dicts) — e.g. CWE IDs, indicators found, regex matches
+    "data": {  # arbitrary key-value map for all raw evidence details
+        "key1": "<string value>",
+        "key2": "<string value>",
+        ...
+    }
+}
+\`\`\`
+
+### Rules for populating evidence:
+1. **\`request\`**: MUST contain the exact input that triggered the finding. Examples:
+   - For CLI injection: the full command with payload (e.g., \`npx guardlink annotate "; touch /tmp/canary"\`)
+   - For MCP tests: the JSON-RPC request body sent to the tool
+   - For path traversal: the malicious path used (e.g., \`../../etc/passwd\`)
+   - For config tamper: the environment variable name and injected value
+
+2. **\`response\`**: MUST contain the raw output that proves the vulnerability. Examples:
+   - stdout/stderr excerpt from the command execution (up to 2000 chars)
+   - The MCP JSON-RPC response content
+   - File contents read from an unexpected location
+   - Error messages that reveal injection
+
+3. **\`matched_patterns\`**: MUST be a list of **strings** (CXG drops non-strings). Include:
+   - Shell error indicators found (e.g., "sh: command not found")
+   - Sensitive data patterns matched (e.g., "absolute_paths: 5 found")
+   - CWE/OWASP identifiers relevant to the finding
+   - Canary strings that proved exploitation
+
+4. **\`data\`**: Store ALL evidence key-value pairs here. All values must be strings
+   (use \`json.dumps()\` to serialize complex objects). This is the catch-all for:
+   - \`canary_created\`: "true"
+   - \`exit_code\`: "0"
+   - \`symlink_path\`: "/path/to/symlink"
+   - \`traversal_root\`: "/etc"
+   - \`env_var\`: "GUARDLINK_CXG_ROOT"
+
+### Helper pattern for \`create_finding\`:
+Always use a centralized helper that maps your raw evidence dict into the CXG structure:
+
+\`\`\`python
+def create_finding(self, title, description, evidence):
+    return {
+        "template_id": self.id,
+        "title": title,
+        "severity": self.severity,
+        "confidence": self.confidence,
+        "description": description,
+        "evidence": {
+            "request": evidence.get("request") or evidence.get("payload") or evidence.get("rpc_request") or
+                       json.dumps({k: v for k, v in evidence.items()
+                                   if k not in ("response", "stdout_excerpt", "stderr_excerpt",
+                                                "output_excerpt", "response_snippet", "matched_patterns")}, default=str),
+            "response": evidence.get("response") or evidence.get("stdout_excerpt") or
+                        evidence.get("stderr_excerpt") or evidence.get("output_excerpt") or
+                        evidence.get("response_snippet") or evidence.get("content_snippet") or "",
+            "matched_patterns": [p if isinstance(p, str) else
+                                 (f"{p.get('type','')}: {p.get('count','?')}" if isinstance(p, dict) else str(p))
+                                 for p in (evidence.get("matched_patterns") or [])],
+            "data": {k: (v if isinstance(v, str) else json.dumps(v, default=str))
+                     for k, v in evidence.items()},
+        },
+        "cwe": self.cwe,
+        "tags": self.tags,
+        "remediation": "...",
+    }
+\`\`\`
+
+### What to capture as evidence for each template type:
+| Template type | request | response | matched_patterns |
+|---|---|---|---|
+| CLI injection | Full CLI command with payload | stdout + stderr (first 2000 chars) | Shell indicators, canary proof |
+| MCP tool call | JSON-RPC request body | JSON-RPC response body | Sensitive data types found |
+| Path traversal | Traversal path used | File/dir content from outside project | Path indicators (/etc, /tmp) |
+| Config tamper | Env var name + injected value | Command output with canary | Canary string match |
+| Prompt injection | Injected prompt text | LLM/agent output text | Injection markers found |
+| Arbitrary write | Symlink/path payload | guardlink clear output showing external files | External paths listed |
+
+### NEVER do this:
+- Do NOT pass raw evidence dicts without the CXG structure — CXG will show empty evidence fields.
+- Do NOT put dicts or lists in \`matched_patterns\` — CXG drops non-string entries silently.
+- Do NOT skip evidence collection — a finding without evidence is unverifiable.
+
+## Python Template Boilerplate (MUST use this structure)
+Every Python template you create MUST follow this exact \`main()\` structure:
+
+\`\`\`python
+def main():
+    parser = argparse.ArgumentParser(description="...")
+    parser.add_argument("target", nargs="?", help="Project root or target host")
+    parser.add_argument("--port", type=int, default=0)
+    parser.add_argument("--json", action="store_true")
+    args = parser.parse_args()
+
+    template = CertXGenTemplate()
+    target = os.environ.get("CERT_X_GEN_PROJECT_ROOT") or args.target or os.environ.get("CERT_X_GEN_TARGET_HOST")
+    if not target:
+        parser.error("target is required (positional, CERT_X_GEN_PROJECT_ROOT, or CERT_X_GEN_TARGET_HOST)")
+
+    findings = template.execute(target, args.port)
+    if args.json or os.environ.get("CERT_X_GEN_MODE") == "engine":
+        print(json.dumps(findings, indent=2))
+    elif findings:
+        for f in findings:
+            print(f"[{f['severity'].upper()}] {f['title']}")
+            print(f"  {f['description']}")
+            print()
+    else:
+        print("No findings detected.")
+
+if __name__ == "__main__":
+    main()
+\`\`\`
+
+Key rules:
+- \`target\` positional arg uses \`nargs="?"\` — CXG engine does NOT pass target as argv.
+- Target resolution order: \`CERT_X_GEN_PROJECT_ROOT\` > \`args.target\` > \`CERT_X_GEN_TARGET_HOST\`.
+- When \`CERT_X_GEN_MODE == "engine"\`, ALWAYS output JSON (even if \`--json\` is not set).
+- Output \`[]\` (empty JSON array) when no findings — never plain text in engine mode.
+- For local/CLI templates, use \`target\` as \`cwd\` in \`subprocess.run()\` / \`subprocess.Popen()\` calls.
+
+## Final Response Format
+After writing files, return:
+1. A short "Generated templates" list with file paths.
+2. A short "Audit-only (no template)" list with recommended GuardLink @audit/@comment text.
+3. A "How to run these templates with CXG" section with these **exact steps**:
+
+   **Step 1 — Prerequisites:**
+   \`\`\`bash
+   cxg --version          # Verify CXG is installed (expect v1.1.0+)
+   python3 --version      # Python 3.8+ required for template execution
+   ls .guardlink/cxg-templates/*.py  # Verify templates were created
+   \`\`\`
+
+   **Step 2 — Validate templates:**
+   \`\`\`bash
+   cxg template validate .guardlink/cxg-templates/ --recursive
+   \`\`\`
+
+   **Step 3 — Create output directory and run scan using local scope (for CLI/codebase targets):**
+   \`\`\`bash
+   mkdir -p .guardlink/pentest-findings
+   cxg scan \\
+     --scope local://. \\
+     --template-dir .guardlink/cxg-templates/ \\
+     --template-language python \\
+     --output .guardlink/pentest-findings/guardlink-pentest \\
+     --output-format json,sarif,html
+   \`\`\`
+   The \`local://.\` scope tells CXG this is a local codebase target. CXG will set
+   \`CERT_X_GEN_PROJECT_ROOT\` to the absolute path of the current directory and
+   \`CERT_X_GEN_TARGET_TYPE=local\`, so templates receive the correct project root.
+
+   Output is stored in \`.guardlink/pentest-findings/\` so that \`guardlink dashboard\`
+   and \`guardlink threat-report\` automatically pick up the results.
+
+   **Step 3b — Run scan using network scope (for HTTP/API targets):**
+   \`\`\`bash
+   cxg scan \\
+     --scope https://api.example.com \\
+     --template-dir .guardlink/cxg-templates/ \\
+     --output .guardlink/pentest-findings/guardlink-pentest \\
+     --output-format json,sarif,html
+   \`\`\`
+
+   **Step 4 — Run with verbose output for debugging:**
+   \`\`\`bash
+   cxg -vv scan \\
+     --scope local://. \\
+     --template-dir .guardlink/cxg-templates/ \\
+     --output .guardlink/pentest-findings/guardlink-pentest \\
+     --output-format json,sarif,html
+   \`\`\`
+
+   **Step 5 — Run individual templates standalone (without CXG):**
+   \`\`\`bash
+   python3 .guardlink/cxg-templates/<template-name>.py . --json
+   \`\`\`
+
+   **Expected output artifacts (in \`.guardlink/pentest-findings/\`):**
+   - \`guardlink-pentest.json\` — JSON with scan_id, findings array, statistics
+   - \`guardlink-pentest.sarif\` — SARIF 2.1.0 for GitHub Advanced Security / CI integration
+   - \`guardlink-pentest.html\` — Human-readable HTML report
+   - Each finding includes: template_id, severity, title, description, evidence (with request, response, matched_patterns, data), remediation
+   - **Evidence must be populated** — a finding with empty evidence (null request, null response, empty data) is a template bug
+   - These files are automatically consumed by \`guardlink dashboard\` (Pentest Findings tab) and \`guardlink threat-report\` (pentest context)
+
+   **Troubleshooting:**
+   | Issue | Fix |
+   |---|---|
+   | \`target is required\` error | Template is missing \`nargs="?"\` on target arg — engine uses env vars, not argv |
+   | \`JSON parse error\` | Template prints non-JSON text to stdout in engine mode — wrap all output in \`json.dumps()\` |
+   | \`Operation timed out\` | Template takes >30s; add \`--timeout 60s\` to scan command |
+   | All templates show 0 findings | Run with \`-vv\` to check for WARN lines; ensure \`local://.\` scope is used for CLI templates |
+   | \`guardlink CLI not found\` | Run \`npm install\` in the project root first |
+   | Evidence fields are null/empty | Template is passing raw dict without CXG structure — use the \`create_finding\` helper pattern from the Evidence Contract section |
+
+4. A "What to expect" section that explains:
+   - what a positive finding looks like (JSON with template_id, severity, evidence)
+   - what a negative/no-finding run means (code is secure against those specific checks)
+   - false-positive caveats and manual verification guidance
+5. Any assumptions requiring human review.`;
+}
+/**
+ * Build a prompt for answering freeform user questions about the codebase
+ * and GuardLink threat model.
+ */
+export function buildAskPrompt(userQuery, root, model) {
+    let modelSummary = 'No threat model parsed yet.';
+    let idSummary = '';
+    let exposureSummary = '';
+    if (model) {
+        modelSummary = `Current model: ${model.annotations_parsed} annotations, ${model.exposures.length} exposures, ${(model.confirmed || []).length} confirmed, ${model.mitigations.length} mitigations, ${model.assets.length} assets, ${model.threats.length} threats, ${model.flows.length} flows.`;
+        const assetIds = model.assets.filter(a => a.id).slice(0, 30).map(a => `#${a.id}`);
+        const threatIds = model.threats.filter(t => t.id).slice(0, 30).map(t => `#${t.id}`);
+        const controlIds = model.controls.filter(c => c.id).slice(0, 30).map(c => `#${c.id}`);
+        const idLines = [];
+        if (assetIds.length)
+            idLines.push(`Assets: ${assetIds.join(', ')}`);
+        if (threatIds.length)
+            idLines.push(`Threats: ${threatIds.join(', ')}`);
+        if (controlIds.length)
+            idLines.push(`Controls: ${controlIds.join(', ')}`);
+        if (idLines.length)
+            idSummary = `\n\nKnown IDs:\n${idLines.join('\n')}`;
+        const unmitigated = model.exposures.filter((e) => !model.mitigations.some((m) => m.asset === e.asset && m.threat === e.threat));
+        if (unmitigated.length > 0) {
+            const lines = unmitigated.slice(0, 25).map((e) => `- ${e.asset} -> ${e.threat} [${e.severity || 'unrated'}] (${e.location.file}:${e.location.line})`);
+            exposureSummary = `\n\nOpen unmitigated exposures:\n${lines.join('\n')}`;
+            if (unmitigated.length > 25) {
+                exposureSummary += `\n- ... and ${unmitigated.length - 25} more`;
+            }
+        }
+    }
+    return `You are a senior AppSec engineer answering questions about a GuardLink-instrumented codebase.
+
+## Project Root
+${root}
+
+## Current Threat Model Context
+${modelSummary}${idSummary}${exposureSummary}
+
+## User Question
+${userQuery}
+
+## Required Method
+1. Read relevant source files and configs before answering.
+2. Use GuardLink annotations as guidance, but verify with actual code.
+3. If the question asks about a specific area (e.g. admin portal, API, auth), trace entry points, data flows, and related threats.
+4. If information is missing or ambiguous, say so clearly and list what was checked.
+5. Never invent endpoints, threats, or controls.
+
+## Output Format
+- Provide a direct answer first.
+- Then include concise evidence:
+  - files/components examined
+  - relevant threats/exposures/controls
+  - important gaps or unknowns
+- If asked "do we have X threats," include counts and examples with file paths.
 `;
 }
 //# sourceMappingURL=prompts.js.map

package/dist/agents/prompts.js.map

@@ -1 +1 @@
-{"version":3,"file":"prompts.js","sourceRoot":"","sources":["../../src/agents/prompts.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACnD,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AAKpC,SAAS,mBAAmB,CAAC,IAAoB;IAC/C,OAAO,IAAI,KAAK,UAAU,CAAC,CAAC,CAAC,yBAAyB,CAAC,CAAC,CAAC,wBAAwB,CAAC;AACpF,CAAC;AAED,SAAS,0BAA0B,CAAC,IAAoB;IACtD,IAAI,IAAI,KAAK,UAAU,EAAE,CAAC;QACxB,OAAO;;;;;;;;;CASV,CAAC;IACA,CAAC;IAED,OAAO;;;;;;CAMR,CAAC;AACF,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,mBAAmB,CACjC,UAAkB,EAClB,IAAY,EACZ,KAAyB,EACzB,iBAAiC,QAAQ;IAEzC,sCAAsC;IACtC,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,EAAE,YAAY,EAAE,wBAAwB,CAAC,CAAC;IACtE,IAAI,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QACxB,MAAM,GAAG,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IAC1C,CAAC;IACD,2CAA2C;IAC3C,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,WAAW,GAAG,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,wBAAwB,CAAC,CAAC;QACpE,IAAI,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;YAC5B,MAAM,GAAG,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;QAC9C,CAAC;IACH,CAAC;IAED,IAAI,YAAY,GAAG,uGAAuG,CAAC;IAC3H,IAAI,WAAW,GAAG,EAAE,CAAC;IACrB,IAAI,aAAa,GAAG,EAAE,CAAC;IACvB,IAAI,iBAAiB,GAAG,EAAE,CAAC;IAC3B,IAAI,KAAK,EAAE,CAAC;QACV,MAAM,KAAK,GAAG;YACZ,GAAG,KAAK,CAAC,kBAAkB,cAAc;YACzC,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,YAAY;YACrC,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,SAAS;YAC/B,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,UAAU;YACjC,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,WAAW;YACnC,GAAG,KAAK,CAAC,WAAW,CAAC,MAAM,cAAc;YACzC,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,QAAQ;YAC7B,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,aAAa;SACxC,CAAC;QACF,YAAY,GAAG,kBAAkB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;QAErD,+EAA+E;QAC/E,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACvE,MAAM,QAAQ,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACrE,MAAM,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACzE,IAAI,SAAS,CAAC,MAAM,GAAG,QAAQ,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/D,MAAM,QAAQ,GAAa,EAAE,CAAC;YAC9B,IAAI,QAAQ,CAAC,MAAM;gBAAE,QAAQ,CAAC,IAAI,CAAC,WAAW,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACrE,IAAI,SAAS,CAAC,MAAM;gBAAE,QAAQ,CAAC,IAAI,CAAC,YAAY,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACxE,IAAI,UAAU,CAAC,MAAM;gBAAE,QAAQ,CAAC,IAAI,CAAC,aAAa,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YAC3E,WAAW,GAAG,8DAA8D,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QACpG,CAAC;QAED,qEAAqE;QACrE,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,MAAM,SAAS,GAAG,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CACjD,KAAK,CAAC,CAAC,MAAM,OAAO,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,GAAG,CAClH,CAAC;YACF,aAAa,GAAG,6DAA6D,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACpG,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE;gBAAE,aAAa,IAAI,eAAe,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE,OAAO,CAAC;QAC9F,CAAC;QAED,0EAA0E;QAC1E,8FAA8F;QAC9F,MAAM,oBAAoB,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE;YACtD,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,CAAC,CAAC;QACpF,CAAC,CAAC,CAAC;QACH,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpC,MAAM,QAAQ,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CACzD,KAAK,CAAC,CAAC,KAAK,eAAe,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,QAAQ,IAAI,SAAS,MAAM,CAAC,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,GAAG,CAC3G,CAAC;YACF,iBAAiB,GAAG,yHAAyH,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACnK,IAAI,oBAAoB,CAAC,MAAM,GAAG,EAAE;gBAAE,iBAAiB,IAAI,eAAe,oBAAoB,CAAC,MAAM,GAAG,EAAE,OAAO,CAAC;QACpH,CAAC;IACH,CAAC;IAED,OAAO;;uCAE8B,mBAAmB,CAAC,cAAc,CAAC;;;;;EAKxE,MAAM,CAAC,CAAC,CAAC,gDAAgD,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,EAAE;EAC/F,YAAY,GAAG,WAAW,GAAG,aAAa,GAAG,iBAAiB;;;EAG9D,UAAU;;EAEV,0BAA0B,CAAC,cAAc,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAwG1C,cAAc,KAAK,UAAU;QAC3B,CAAC,CAAC,8GAA8G;QAChH,CAAC,CAAC,kGAAkG;;;EAGtG,cAAc,KAAK,UAAU;QAC3B,CAAC,CAAC;YACE,4EAA4E;YAC5E,4DAA4D;YAC5D,4FAA4F;YAC5F,yGAAyG;YACzG,8DAA8D;YAC9D,EAAE;YACF,4DAA4D;YAC5D,yDAAyD;YACzD,aAAa;SACd,CAAC,IAAI,CAAC,IAAI,CAAC;QACd,CAAC,CAAC;YACE,iEAAiE;YACjE,IAAI;YACJ,sEAAsE;YACtE,gGAAgG;YAChG,IAAI;YACJ,gFAAgF;YAChF,wFAAwF;YACxF,yEAAyE;YACzE,IAAI;YACJ,gBAAgB;SACjB,CAAC,IAAI,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAgJjB,CAAC;AACF,CAAC"}
+{"version":3,"file":"prompts.js","sourceRoot":"","sources":["../../src/agents/prompts.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACnD,OAAO,EAAE,OAAO,EAAE,MAAM,WAAW,CAAC;AACpC,OAAO,EAAE,OAAO,EAAE,MAAM,SAAS,CAAC;AAGlC,yEAAyE;AACzE,6EAA6E;AAC7E,uEAAuE;AACvE,6EAA6E;AAC7E,sEAAsE;AACtE,MAAM,gBAAgB,GAAG,OAAO,CAAC,OAAO,EAAE,EAAE,aAAa,EAAE,WAAW,EAAE,UAAU,CAAC,CAAC;AACpF,MAAM,wBAAwB,GAAG,OAAO,CAAC,gBAAgB,EAAE,WAAW,EAAE,UAAU,CAAC,CAAC;AAEpF,SAAS,YAAY,CAAC,IAAY,EAAE,QAAQ,GAAG,IAAI;IACjD,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC;QAAE,OAAO,EAAE,CAAC;IACjC,IAAI,CAAC;QACH,OAAO,YAAY,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,QAAQ,CAAC,CAAC;IACxD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAID,SAAS,mBAAmB,CAAC,IAAoB;IAC/C,OAAO,IAAI,KAAK,UAAU,CAAC,CAAC,CAAC,yBAAyB,CAAC,CAAC,CAAC,wBAAwB,CAAC;AACpF,CAAC;AAED,SAAS,0BAA0B,CAAC,IAAoB;IACtD,IAAI,IAAI,KAAK,UAAU,EAAE,CAAC;QACxB,OAAO;;;;;;;;;CASV,CAAC;IACA,CAAC;IAED,OAAO;;;;;;CAMR,CAAC;AACF,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,mBAAmB,CACjC,UAAkB,EAClB,IAAY,EACZ,KAAyB,EACzB,iBAAiC,QAAQ;IAEzC,sCAAsC;IACtC,IAAI,MAAM,GAAG,EAAE,CAAC;IAChB,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,EAAE,YAAY,EAAE,wBAAwB,CAAC,CAAC;IACtE,IAAI,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QACxB,MAAM,GAAG,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;IAC1C,CAAC;IACD,2CAA2C;IAC3C,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,MAAM,WAAW,GAAG,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,wBAAwB,CAAC,CAAC;QACpE,IAAI,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;YAC5B,MAAM,GAAG,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;QAC9C,CAAC;IACH,CAAC;IAED,IAAI,YAAY,GAAG,uGAAuG,CAAC;IAC3H,IAAI,WAAW,GAAG,EAAE,CAAC;IACrB,IAAI,aAAa,GAAG,EAAE,CAAC;IACvB,IAAI,iBAAiB,GAAG,EAAE,CAAC;IAC3B,IAAI,KAAK,EAAE,CAAC;QACV,MAAM,KAAK,GAAG;YACZ,GAAG,KAAK,CAAC,kBAAkB,cAAc;YACzC,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,YAAY;YACrC,GAAG,CAAC,CAAC,KAAK,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,wBAAwB,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAClG,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,SAAS;YAC/B,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,UAAU;YACjC,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,WAAW;YACnC,GAAG,KAAK,CAAC,WAAW,CAAC,MAAM,cAAc;YACzC,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,QAAQ;YAC7B,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,aAAa;SACxC,CAAC;QACF,YAAY,GAAG,kBAAkB,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;QAErD,+EAA+E;QAC/E,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACvE,MAAM,QAAQ,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACrE,MAAM,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACzE,IAAI,SAAS,CAAC,MAAM,GAAG,QAAQ,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/D,MAAM,QAAQ,GAAa,EAAE,CAAC;YAC9B,IAAI,QAAQ,CAAC,MAAM;gBAAE,QAAQ,CAAC,IAAI,CAAC,WAAW,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACrE,IAAI,SAAS,CAAC,MAAM;gBAAE,QAAQ,CAAC,IAAI,CAAC,YAAY,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YACxE,IAAI,UAAU,CAAC,MAAM;gBAAE,QAAQ,CAAC,IAAI,CAAC,aAAa,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;YAC3E,WAAW,GAAG,8DAA8D,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QACpG,CAAC;QAED,qEAAqE;QACrE,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,MAAM,SAAS,GAAG,KAAK,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CACjD,KAAK,CAAC,CAAC,MAAM,OAAO,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,SAAS,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,GAAG,CAClH,CAAC;YACF,aAAa,GAAG,6DAA6D,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACpG,IAAI,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE;gBAAE,aAAa,IAAI,eAAe,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,EAAE,OAAO,CAAC;QAC9F,CAAC;QAED,0EAA0E;QAC1E,8FAA8F;QAC9F,MAAM,oBAAoB,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE;YACtD,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,CAAC,CAAC;QACpF,CAAC,CAAC,CAAC;QACH,IAAI,oBAAoB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACpC,MAAM,QAAQ,GAAG,oBAAoB,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CACzD,KAAK,CAAC,CAAC,KAAK,eAAe,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,QAAQ,IAAI,SAAS,MAAM,CAAC,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,GAAG,CAC3G,CAAC;YACF,iBAAiB,GAAG,yHAAyH,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACnK,IAAI,oBAAoB,CAAC,MAAM,GAAG,EAAE;gBAAE,iBAAiB,IAAI,eAAe,oBAAoB,CAAC,MAAM,GAAG,EAAE,OAAO,CAAC;QACpH,CAAC;IACH,CAAC;IAED,OAAO;;uCAE8B,mBAAmB,CAAC,cAAc,CAAC;;;;;EAKxE,MAAM,CAAC,CAAC,CAAC,gDAAgD,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,MAAM,CAAC,CAAC,CAAC,EAAE;EAC/F,YAAY,GAAG,WAAW,GAAG,aAAa,GAAG,iBAAiB;;;EAG9D,UAAU;;EAEV,0BAA0B,CAAC,cAAc,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAwG1C,cAAc,KAAK,UAAU;QAC3B,CAAC,CAAC,8GAA8G;QAChH,CAAC,CAAC,kGAAkG;;;EAGtG,cAAc,KAAK,UAAU;QAC3B,CAAC,CAAC;YACE,4EAA4E;YAC5E,4DAA4D;YAC5D,4FAA4F;YAC5F,yGAAyG;YACzG,8DAA8D;YAC9D,EAAE;YACF,4DAA4D;YAC5D,yDAAyD;YACzD,aAAa;SACd,CAAC,IAAI,CAAC,IAAI,CAAC;QACd,CAAC,CAAC;YACE,iEAAiE;YACjE,IAAI;YACJ,sEAAsE;YACtE,gGAAgG;YAChG,IAAI;YACJ,gFAAgF;YAChF,wFAAwF;YACxF,yEAAyE;YACzE,IAAI;YACJ,gBAAgB;SACjB,CAAC,IAAI,CAAC,IAAI,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAwKjB,CAAC;AACF,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,oBAAoB,CAClC,UAAkB,EAClB,IAAY,EACZ,KAAyB;IAEzB,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,kBAAkB,IAAI,gBAAgB,CAAC;IACnE,MAAM,WAAW,GAAG,OAAO,CAAC,GAAG,CAAC,0BAA0B,IAAI,wBAAwB,CAAC;IAEvF,MAAM,aAAa,GAAG,YAAY,CAAC,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,mBAAmB,CAAC,EAAE,IAAI,CAAC,CAAC;IACxF,yEAAyE;IACzE,uEAAuE;IACvE,yEAAyE;IACzE,sEAAsE;IACtE,0EAA0E;IAC1E,MAAM,YAAY,GAAG,YAAY,CAAC,OAAO,CAAC,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,WAAW,CAAC,EAAE,IAAI,CAAC,CAAC;IACpF,MAAM,YAAY,GAAG,YAAY,CAAC,OAAO,CAAC,WAAW,EAAE,6BAA6B,CAAC,EAAE,IAAI,CAAC,CAAC;IAC7F,MAAM,cAAc,GAAG,YAAY,CAAC,OAAO,CAAC,WAAW,EAAE,6BAA6B,CAAC,EAAE,IAAI,CAAC,CAAC;IAE/F,IAAI,YAAY,GAAG,6BAA6B,CAAC;IACjD,IAAI,kBAAkB,GAAG,EAAE,CAAC;IAC5B,IAAI,KAAK,EAAE,CAAC;QACV,MAAM,WAAW,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAC/C,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,CAAC,CAC7E,CAAC;QAEF,YAAY,GAAG,kBAAkB,KAAK,CAAC,kBAAkB,iBAAiB,KAAK,CAAC,SAAS,CAAC,MAAM,eAAe,CAAC,KAAK,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,MAAM,eAAe,WAAW,CAAC,MAAM,2BAA2B,KAAK,CAAC,MAAM,CAAC,MAAM,YAAY,KAAK,CAAC,OAAO,CAAC,MAAM,WAAW,CAAC;QACxQ,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAC/C,KAAK,CAAC,CAAC,KAAK,OAAO,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,QAAQ,IAAI,SAAS,MAAM,CAAC,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,GAAG,CACnG,CAAC;YACF,kBAAkB,GAAG,yCAAyC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACjF,IAAI,WAAW,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;gBAC5B,kBAAkB,IAAI,eAAe,WAAW,CAAC,MAAM,GAAG,EAAE,OAAO,CAAC;YACtE,CAAC;QACH,CAAC;IACH,CAAC;IAED,MAAM,WAAW,GAAG,UAAU,CAAC,IAAI,EAAE;QACnC,CAAC,CAAC,UAAU,CAAC,IAAI,EAAE;QACnB,CAAC,CAAC,sGAAsG,CAAC;IAE3G,OAAO;;;;;;EAMP,YAAY,GAAG,kBAAkB;;;EAGjC,WAAW;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA2CX,aAAa,CAAC,CAAC,CAAC,+BAA+B,aAAa,IAAI,CAAC,CAAC,CAAC,EAAE;EACrE,YAAY,CAAC,CAAC,CAAC,0BAA0B,YAAY,IAAI,CAAC,CAAC,CAAC,EAAE;EAC9D,YAAY,CAAC,CAAC,CAAC,8BAA8B,YAAY,IAAI,CAAC,CAAC,CAAC,EAAE;EAClE,cAAc,CAAC,CAAC,CAAC,gCAAgC,cAAc,IAAI,CAAC,CAAC,CAAC,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;2CAyP/B,CAAC;AAC5C,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,cAAc,CAC5B,SAAiB,EACjB,IAAY,EACZ,KAAyB;IAEzB,IAAI,YAAY,GAAG,6BAA6B,CAAC;IACjD,IAAI,SAAS,GAAG,EAAE,CAAC;IACnB,IAAI,eAAe,GAAG,EAAE,CAAC;IACzB,IAAI,KAAK,EAAE,CAAC;QACV,YAAY,GAAG,kBAAkB,KAAK,CAAC,kBAAkB,iBAAiB,KAAK,CAAC,SAAS,CAAC,MAAM,eAAe,CAAC,KAAK,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,MAAM,eAAe,KAAK,CAAC,WAAW,CAAC,MAAM,iBAAiB,KAAK,CAAC,MAAM,CAAC,MAAM,YAAY,KAAK,CAAC,OAAO,CAAC,MAAM,aAAa,KAAK,CAAC,KAAK,CAAC,MAAM,SAAS,CAAC;QAEjS,MAAM,QAAQ,GAAG,KAAK,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QAClF,MAAM,SAAS,GAAG,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACpF,MAAM,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACtF,MAAM,OAAO,GAAa,EAAE,CAAC;QAC7B,IAAI,QAAQ,CAAC,MAAM;YAAE,OAAO,CAAC,IAAI,CAAC,WAAW,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACpE,IAAI,SAAS,CAAC,MAAM;YAAE,OAAO,CAAC,IAAI,CAAC,YAAY,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACvE,IAAI,UAAU,CAAC,MAAM;YAAE,OAAO,CAAC,IAAI,CAAC,aAAa,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC1E,IAAI,OAAO,CAAC,MAAM;YAAE,SAAS,GAAG,mBAAmB,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAExE,MAAM,WAAW,GAAG,KAAK,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAC/C,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,KAAK,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,CAAC,CAC7E,CAAC;QACF,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAC/C,KAAK,CAAC,CAAC,KAAK,OAAO,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,QAAQ,IAAI,SAAS,MAAM,CAAC,CAAC,QAAQ,CAAC,IAAI,IAAI,CAAC,CAAC,QAAQ,CAAC,IAAI,GAAG,CACnG,CAAC;YACF,eAAe,GAAG,oCAAoC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YACzE,IAAI,WAAW,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;gBAC5B,eAAe,IAAI,eAAe,WAAW,CAAC,MAAM,GAAG,EAAE,OAAO,CAAC;YACnE,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO;;;EAGP,IAAI;;;EAGJ,YAAY,GAAG,SAAS,GAAG,eAAe;;;EAG1C,SAAS;;;;;;;;;;;;;;;;CAgBV,CAAC;AACF,CAAC"}

package/dist/analyze/format.d.ts

@@ -0,0 +1,72 @@
+/**
+ * GuardLink — Pentest finding format helpers.
+ *
+ * Defensive normalizers for fields whose shape varies across CXG versions
+ * and template authors. Keep these tiny and pure — no I/O, no side effects.
+ */
+/**
+ * Render a confidence value for display, regardless of how the upstream
+ * scanner emitted it.
+ *
+ * CXG output has historically emitted confidence in three different shapes:
+ *   - integer percentage (most current versions): `50` → `"50%"`
+ *   - severity-style string (some templates pre-normalization): `"high"` → `"HIGH"`
+ *   - missing / null / undefined (older or partial scans): → `"—"`
+ *
+ * Returns a display string that's safe to drop into HTML or terminal output.
+ * Never throws — always returns *something* renderable.
+ */
+export declare function formatConfidence(value: unknown): string;
+/**
+ * Mirrors the shape of the `evidence` slot on a PentestFinding without
+ * pulling the full PentestFinding type from src/analyze/index.ts (would
+ * create a circular import). Any object matching this structural shape
+ * can be passed to redactEvidence().
+ */
+export interface EvidenceLike {
+    request: string | null;
+    response: string | null;
+    matched_patterns: string[];
+    data: Record<string, unknown>;
+    timestamp?: string;
+}
+/**
+ * Surgical redactor for sensitive tokens. Designed to preserve the
+ * confirmation evidence of a pentest finding while removing material that
+ * would enable replay attacks if a screenshot or exported HTML escaped the
+ * customer's perimeter.
+ *
+ * The principle: redact what enables replay, keep what proves the exploit.
+ *
+ * Patterns:
+ *   - JWT (eyJ-prefixed three-segment): keep header and payload (the
+ *     claims — these are the proof of what role/scope/sub was achieved),
+ *     replace the signature segment with `<signature-redacted>`. Anyone
+ *     screenshotting can still decode the payload at jwt.io to see the
+ *     claims; nobody can replay the token because the signature is gone.
+ *   - Authorization: Bearer <jwt>: same JWT split rule.
+ *   - Authorization: Bearer <opaque>: show first 4 + last 4 chars only,
+ *     enough for correlation/fingerprinting but not replay.
+ *   - Authorization: Basic|Digest|NTLM <value>: fully replace value with
+ *     `<redacted>`. These ARE the credential — no useful prefix.
+ *   - JSON credential fields (password, api_key, access_token, etc.):
+ *     keep field name (structural proof that the request used this
+ *     credential type), replace value with `<redacted>`.
+ *   - Query-string credentials: same — keep field name, redact value.
+ *   - Cookie / Set-Cookie values: keep cookie name (proves session-based
+ *     auth was used), redact value.
+ *
+ * Idempotent: re-running on already-redacted output is a no-op since the
+ * redaction markers themselves don't match any of the input patterns.
+ *
+ * Returns input unchanged for null / undefined / empty / non-string.
+ */
+export declare function redactSensitiveTokens(text: string | null | undefined): string | null | undefined;
+/**
+ * Redacts an entire `evidence` object — request, response, and the
+ * unstructured `data` field. Returns a new object; does not mutate the
+ * input. Non-string fields (matched_patterns, timestamp) pass through
+ * unchanged since they don't carry secret material.
+ */
+export declare function redactEvidence(ev: EvidenceLike): EvidenceLike;
+//# sourceMappingURL=format.d.ts.map

package/dist/analyze/format.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"format.d.ts","sourceRoot":"","sources":["../../src/analyze/format.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH;;;;;;;;;;;GAWG;AACH,wBAAgB,gBAAgB,CAAC,KAAK,EAAE,OAAO,GAAG,MAAM,CA8BvD;AAYD;;;;;GAKG;AACH,MAAM,WAAW,YAAY;IAC3B,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,QAAQ,EAAE,MAAM,GAAG,IAAI,CAAC;IACxB,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC9B,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA8BG;AACH,wBAAgB,qBAAqB,CAAC,IAAI,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,GAAG,MAAM,GAAG,IAAI,GAAG,SAAS,CAsEhG;AAgCD;;;;;GAKG;AACH,wBAAgB,cAAc,CAAC,EAAE,EAAE,YAAY,GAAG,YAAY,CAQ7D"}