guardrail-cli 1.0.5 → 2.0.0

package/dist/fix/engine.js

@@ -0,0 +1,285 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.FixEngine = void 0;
+const fs_1 = require("fs");
+const path_1 = require("path");
+class FixEngine {
+    constructor(projectPath) {
+        this.projectPath = projectPath;
+    }
+    /**
+     * Generate fix packs from scan results
+     */
+    async generateFixPacks(scanResult) {
+        const packs = [];
+        // Group findings by category
+        const securityFindings = scanResult.findings.filter(f => f.category.toLowerCase().includes('secret') ||
+            f.category.toLowerCase().includes('vulnerability') ||
+            f.category.toLowerCase().includes('security'));
+        const qualityFindings = scanResult.findings.filter(f => f.category.toLowerCase().includes('quality') ||
+            f.category.toLowerCase().includes('code') ||
+            f.category.toLowerCase().includes('smell'));
+        const configFindings = scanResult.findings.filter(f => f.category.toLowerCase().includes('config') ||
+            f.category.toLowerCase().includes('dependency'));
+        // Generate security fix pack
+        if (securityFindings.length > 0) {
+            const securityPack = await this.createSecurityFixPack(securityFindings);
+            if (securityPack.fixes.length > 0) {
+                packs.push(securityPack);
+            }
+        }
+        // Generate quality fix pack
+        if (qualityFindings.length > 0) {
+            const qualityPack = await this.createQualityFixPack(qualityFindings);
+            if (qualityPack.fixes.length > 0) {
+                packs.push(qualityPack);
+            }
+        }
+        // Generate config fix pack
+        if (configFindings.length > 0) {
+            const configPack = await this.createConfigFixPack(configFindings);
+            if (configPack.fixes.length > 0) {
+                packs.push(configPack);
+            }
+        }
+        return packs;
+    }
+    async createSecurityFixPack(findings) {
+        const fixes = [];
+        const impactedFiles = new Set();
+        for (const finding of findings) {
+            impactedFiles.add(finding.file);
+            // Generate fix based on finding type
+            if (finding.category.toLowerCase().includes('secret')) {
+                const fix = this.generateSecretFix(finding);
+                if (fix)
+                    fixes.push(fix);
+            }
+            else if (finding.category.toLowerCase().includes('vulnerability')) {
+                const fix = this.generateVulnerabilityFix(finding);
+                if (fix)
+                    fixes.push(fix);
+            }
+        }
+        const avgConfidence = fixes.length > 0
+            ? fixes.reduce((sum, f) => sum + f.confidence, 0) / fixes.length
+            : 0;
+        return {
+            id: 'security-fixes',
+            category: 'security',
+            name: 'Security Vulnerabilities',
+            description: 'Fix hardcoded secrets and security vulnerabilities',
+            findings,
+            fixes,
+            estimatedRisk: this.calculatePackRisk(fixes),
+            impactedFiles: Array.from(impactedFiles),
+            priority: 1,
+            confidence: avgConfidence,
+        };
+    }
+    async createQualityFixPack(findings) {
+        const fixes = [];
+        const impactedFiles = new Set();
+        for (const finding of findings) {
+            impactedFiles.add(finding.file);
+            const fix = this.generateQualityFix(finding);
+            if (fix)
+                fixes.push(fix);
+        }
+        const avgConfidence = fixes.length > 0
+            ? fixes.reduce((sum, f) => sum + f.confidence, 0) / fixes.length
+            : 0;
+        return {
+            id: 'quality-fixes',
+            category: 'quality',
+            name: 'Code Quality Improvements',
+            description: 'Improve code quality and best practices',
+            findings,
+            fixes,
+            estimatedRisk: this.calculatePackRisk(fixes),
+            impactedFiles: Array.from(impactedFiles),
+            priority: 2,
+            confidence: avgConfidence,
+        };
+    }
+    async createConfigFixPack(findings) {
+        const fixes = [];
+        const impactedFiles = new Set();
+        for (const finding of findings) {
+            impactedFiles.add(finding.file);
+            const fix = this.generateConfigFix(finding);
+            if (fix)
+                fixes.push(fix);
+        }
+        const avgConfidence = fixes.length > 0
+            ? fixes.reduce((sum, f) => sum + f.confidence, 0) / fixes.length
+            : 0;
+        return {
+            id: 'config-fixes',
+            category: 'config',
+            name: 'Configuration Updates',
+            description: 'Update dependencies and configuration',
+            findings,
+            fixes,
+            estimatedRisk: this.calculatePackRisk(fixes),
+            impactedFiles: Array.from(impactedFiles),
+            priority: 3,
+            confidence: avgConfidence,
+        };
+    }
+    generateSecretFix(finding) {
+        try {
+            const filePath = (0, path_1.join)(this.projectPath, finding.file);
+            const content = (0, fs_1.readFileSync)(filePath, 'utf-8');
+            const lines = content.split('\n');
+            if (finding.line <= 0 || finding.line > lines.length) {
+                return null;
+            }
+            const oldCode = lines[finding.line - 1];
+            // Generate fix based on secret type
+            let newCode = oldCode;
+            let explanation = '';
+            let confidence = 0.7;
+            if (finding.title.toLowerCase().includes('api key') ||
+                finding.title.toLowerCase().includes('token')) {
+                // Replace hardcoded value with environment variable
+                const match = oldCode.match(/['"`]([a-zA-Z0-9_\-]{20,})['"`]/);
+                if (match) {
+                    const secretValue = match[1];
+                    const varName = this.inferEnvVarName(finding.title);
+                    newCode = oldCode.replace(match[0], `process.env.${varName}`);
+                    explanation = `Replace hardcoded ${finding.title} with environment variable ${varName}`;
+                    confidence = 0.85;
+                }
+            }
+            else if (finding.title.toLowerCase().includes('password')) {
+                const varName = 'DB_PASSWORD';
+                newCode = oldCode.replace(/password\s*[:=]\s*['"`][^'"`]+['"`]/i, `password: process.env.${varName}`);
+                explanation = `Replace hardcoded password with environment variable ${varName}`;
+                confidence = 0.8;
+            }
+            if (newCode === oldCode) {
+                // Generic fix: comment out the line
+                newCode = `// TODO: Move to environment variable\n${oldCode}`;
+                explanation = 'Comment out hardcoded secret and add TODO';
+                confidence = 0.5;
+            }
+            return {
+                findingId: finding.id,
+                file: finding.file,
+                line: finding.line,
+                oldCode,
+                newCode,
+                confidence,
+                risk: confidence > 0.7 ? 'low' : 'medium',
+                explanation,
+            };
+        }
+        catch {
+            return null;
+        }
+    }
+    generateVulnerabilityFix(finding) {
+        // For dependency vulnerabilities, suggest package.json updates
+        if (finding.file === 'package.json') {
+            try {
+                const filePath = (0, path_1.join)(this.projectPath, finding.file);
+                const content = (0, fs_1.readFileSync)(filePath, 'utf-8');
+                const packageJson = JSON.parse(content);
+                // Extract package name and version from recommendation
+                const match = finding.recommendation.match(/Upgrade to ([^@]+)@([^\s]+)/);
+                if (match) {
+                    const [, pkgName, newVersion] = match;
+                    const oldVersion = packageJson.dependencies?.[pkgName] ||
+                        packageJson.devDependencies?.[pkgName];
+                    if (oldVersion) {
+                        return {
+                            findingId: finding.id,
+                            file: finding.file,
+                            line: finding.line,
+                            oldCode: `"${pkgName}": "${oldVersion}"`,
+                            newCode: `"${pkgName}": "^${newVersion}"`,
+                            confidence: 0.9,
+                            risk: 'low',
+                            explanation: `Upgrade ${pkgName} to ${newVersion} to fix ${finding.title}`,
+                        };
+                    }
+                }
+            }
+            catch {
+                return null;
+            }
+        }
+        return null;
+    }
+    generateQualityFix(finding) {
+        try {
+            const filePath = (0, path_1.join)(this.projectPath, finding.file);
+            const content = (0, fs_1.readFileSync)(filePath, 'utf-8');
+            const lines = content.split('\n');
+            if (finding.line <= 0 || finding.line > lines.length) {
+                return null;
+            }
+            const oldCode = lines[finding.line - 1];
+            let newCode = oldCode;
+            let explanation = '';
+            let confidence = 0.6;
+            // Example quality fixes
+            if (oldCode.includes('console.log')) {
+                newCode = oldCode.replace(/console\.log/g, 'logger.debug');
+                explanation = 'Replace console.log with proper logger';
+                confidence = 0.8;
+            }
+            else if (oldCode.includes('var ')) {
+                newCode = oldCode.replace(/\bvar\b/g, 'const');
+                explanation = 'Replace var with const for better scoping';
+                confidence = 0.75;
+            }
+            if (newCode === oldCode) {
+                return null;
+            }
+            return {
+                findingId: finding.id,
+                file: finding.file,
+                line: finding.line,
+                oldCode,
+                newCode,
+                confidence,
+                risk: 'low',
+                explanation,
+            };
+        }
+        catch {
+            return null;
+        }
+    }
+    generateConfigFix(finding) {
+        return this.generateVulnerabilityFix(finding);
+    }
+    calculatePackRisk(fixes) {
+        if (fixes.length === 0)
+            return 'low';
+        const highRiskCount = fixes.filter(f => f.risk === 'high').length;
+        const mediumRiskCount = fixes.filter(f => f.risk === 'medium').length;
+        if (highRiskCount > fixes.length * 0.3)
+            return 'high';
+        if (mediumRiskCount > fixes.length * 0.5)
+            return 'medium';
+        return 'low';
+    }
+    inferEnvVarName(title) {
+        const normalized = title
+            .toUpperCase()
+            .replace(/[^A-Z0-9]+/g, '_')
+            .replace(/^_+|_+$/g, '');
+        if (normalized.includes('API_KEY'))
+            return 'API_KEY';
+        if (normalized.includes('TOKEN'))
+            return 'AUTH_TOKEN';
+        if (normalized.includes('SECRET'))
+            return 'SECRET_KEY';
+        return normalized || 'SECRET_VALUE';
+    }
+}
+exports.FixEngine = FixEngine;
+//# sourceMappingURL=engine.js.map

package/dist/fix/engine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"engine.js","sourceRoot":"","sources":["../../src/fix/engine.ts"],"names":[],"mappings":";;;AAAA,2BAAkC;AAClC,+BAAsC;AA2CtC,MAAa,SAAS;IAGpB,YAAY,WAAmB;QAC7B,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;IACjC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,UAAsB;QAC3C,MAAM,KAAK,GAAc,EAAE,CAAC;QAE5B,6BAA6B;QAC7B,MAAM,gBAAgB,GAAG,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CACtD,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC;YAC3C,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,eAAe,CAAC;YAClD,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,CAC9C,CAAC;QAEF,MAAM,eAAe,GAAG,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CACrD,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,SAAS,CAAC;YAC5C,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC;YACzC,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,CAC3C,CAAC;QAEF,MAAM,cAAc,GAAG,UAAU,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CACpD,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC;YAC3C,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,YAAY,CAAC,CAChD,CAAC;QAEF,6BAA6B;QAC7B,IAAI,gBAAgB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAChC,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,gBAAgB,CAAC,CAAC;YACxE,IAAI,YAAY,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAClC,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YAC3B,CAAC;QACH,CAAC;QAED,4BAA4B;QAC5B,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/B,MAAM,WAAW,GAAG,MAAM,IAAI,CAAC,oBAAoB,CAAC,eAAe,CAAC,CAAC;YACrE,IAAI,WAAW,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACjC,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAC1B,CAAC;QACH,CAAC;QAED,2BAA2B;QAC3B,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC9B,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,mBAAmB,CAAC,cAAc,CAAC,CAAC;YAClE,IAAI,UAAU,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAChC,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,KAAK,CAAC,qBAAqB,CAAC,QAAmB;QACrD,MAAM,KAAK,GAAU,EAAE,CAAC;QACxB,MAAM,aAAa,GAAG,IAAI,GAAG,EAAU,CAAC;QAExC,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAEhC,qCAAqC;YACrC,IAAI,OAAO,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACtD,MAAM,GAAG,GAAG,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC;gBAC5C,IAAI,GAAG;oBAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAC3B,CAAC;iBAAM,IAAI,OAAO,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,eAAe,CAAC,EAAE,CAAC;gBACpE,MAAM,GAAG,GAAG,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC;gBACnD,IAAI,GAAG;oBAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAC3B,CAAC;QACH,CAAC;QAED,MAAM,aAAa,GAAG,KAAK,CAAC,MAAM,GAAG,CAAC;YACpC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,GAAG,KAAK,CAAC,MAAM;YAChE,CAAC,CAAC,CAAC,CAAC;QAEN,OAAO;YACL,EAAE,EAAE,gBAAgB;YACpB,QAAQ,EAAE,UAAU;YACpB,IAAI,EAAE,0BAA0B;YAChC,WAAW,EAAE,oDAAoD;YACjE,QAAQ;YACR,KAAK;YACL,aAAa,EAAE,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC;YAC5C,aAAa,EAAE,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC;YACxC,QAAQ,EAAE,CAAC;YACX,UAAU,EAAE,aAAa;SAC1B,CAAC;IACJ,CAAC;IAEO,KAAK,CAAC,oBAAoB,CAAC,QAAmB;QACpD,MAAM,KAAK,GAAU,EAAE,CAAC;QACxB,MAAM,aAAa,GAAG,IAAI,GAAG,EAAU,CAAC;QAExC,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,GAAG,GAAG,IAAI,CAAC,kBAAkB,CAAC,OAAO,CAAC,CAAC;YAC7C,IAAI,GAAG;gBAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC;QAED,MAAM,aAAa,GAAG,KAAK,CAAC,MAAM,GAAG,CAAC;YACpC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,GAAG,KAAK,CAAC,MAAM;YAChE,CAAC,CAAC,CAAC,CAAC;QAEN,OAAO;YACL,EAAE,EAAE,eAAe;YACnB,QAAQ,EAAE,SAAS;YACnB,IAAI,EAAE,2BAA2B;YACjC,WAAW,EAAE,yCAAyC;YACtD,QAAQ;YACR,KAAK;YACL,aAAa,EAAE,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC;YAC5C,aAAa,EAAE,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC;YACxC,QAAQ,EAAE,CAAC;YACX,UAAU,EAAE,aAAa;SAC1B,CAAC;IACJ,CAAC;IAEO,KAAK,CAAC,mBAAmB,CAAC,QAAmB;QACnD,MAAM,KAAK,GAAU,EAAE,CAAC;QACxB,MAAM,aAAa,GAAG,IAAI,GAAG,EAAU,CAAC;QAExC,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YAChC,MAAM,GAAG,GAAG,IAAI,CAAC,iBAAiB,CAAC,OAAO,CAAC,CAAC;YAC5C,IAAI,GAAG;gBAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC;QAED,MAAM,aAAa,GAAG,KAAK,CAAC,MAAM,GAAG,CAAC;YACpC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,GAAG,KAAK,CAAC,MAAM;YAChE,CAAC,CAAC,CAAC,CAAC;QAEN,OAAO;YACL,EAAE,EAAE,cAAc;YAClB,QAAQ,EAAE,QAAQ;YAClB,IAAI,EAAE,uBAAuB;YAC7B,WAAW,EAAE,uCAAuC;YACpD,QAAQ;YACR,KAAK;YACL,aAAa,EAAE,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC;YAC5C,aAAa,EAAE,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC;YACxC,QAAQ,EAAE,CAAC;YACX,UAAU,EAAE,aAAa;SAC1B,CAAC;IACJ,CAAC;IAEO,iBAAiB,CAAC,OAAgB;QACxC,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,IAAA,WAAI,EAAC,IAAI,CAAC,WAAW,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC;YACtD,MAAM,OAAO,GAAG,IAAA,iBAAY,EAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YAChD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAElC,IAAI,OAAO,CAAC,IAAI,IAAI,CAAC,IAAI,OAAO,CAAC,IAAI,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC;gBACrD,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC;YAExC,oCAAoC;YACpC,IAAI,OAAO,GAAG,OAAO,CAAC;YACtB,IAAI,WAAW,GAAG,EAAE,CAAC;YACrB,IAAI,UAAU,GAAG,GAAG,CAAC;YAErB,IAAI,OAAO,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,SAAS,CAAC;gBAC/C,OAAO,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;gBAClD,oDAAoD;gBACpD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,iCAAiC,CAAC,CAAC;gBAC/D,IAAI,KAAK,EAAE,CAAC;oBACV,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;oBAC7B,MAAM,OAAO,GAAG,IAAI,CAAC,eAAe,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;oBACpD,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,eAAe,OAAO,EAAE,CAAC,CAAC;oBAC9D,WAAW,GAAG,qBAAqB,OAAO,CAAC,KAAK,8BAA8B,OAAO,EAAE,CAAC;oBACxF,UAAU,GAAG,IAAI,CAAC;gBACpB,CAAC;YACH,CAAC;iBAAM,IAAI,OAAO,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;gBAC5D,MAAM,OAAO,GAAG,aAAa,CAAC;gBAC9B,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,sCAAsC,EAC9D,yBAAyB,OAAO,EAAE,CAAC,CAAC;gBACtC,WAAW,GAAG,wDAAwD,OAAO,EAAE,CAAC;gBAChF,UAAU,GAAG,GAAG,CAAC;YACnB,CAAC;YAED,IAAI,OAAO,KAAK,OAAO,EAAE,CAAC;gBACxB,oCAAoC;gBACpC,OAAO,GAAG,0CAA0C,OAAO,EAAE,CAAC;gBAC9D,WAAW,GAAG,2CAA2C,CAAC;gBAC1D,UAAU,GAAG,GAAG,CAAC;YACnB,CAAC;YAED,OAAO;gBACL,SAAS,EAAE,OAAO,CAAC,EAAE;gBACrB,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,OAAO;gBACP,OAAO;gBACP,UAAU;gBACV,IAAI,EAAE,UAAU,GAAG,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,QAAQ;gBACzC,WAAW;aACZ,CAAC;QACJ,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAEO,wBAAwB,CAAC,OAAgB;QAC/C,+DAA+D;QAC/D,IAAI,OAAO,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;YACpC,IAAI,CAAC;gBACH,MAAM,QAAQ,GAAG,IAAA,WAAI,EAAC,IAAI,CAAC,WAAW,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC;gBACtD,MAAM,OAAO,GAAG,IAAA,iBAAY,EAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;gBAChD,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;gBAExC,uDAAuD;gBACvD,MAAM,KAAK,GAAG,OAAO,CAAC,cAAc,CAAC,KAAK,CAAC,6BAA6B,CAAC,CAAC;gBAC1E,IAAI,KAAK,EAAE,CAAC;oBACV,MAAM,CAAC,EAAE,OAAO,EAAE,UAAU,CAAC,GAAG,KAAK,CAAC;oBACtC,MAAM,UAAU,GAAG,WAAW,CAAC,YAAY,EAAE,CAAC,OAAO,CAAC;wBACpC,WAAW,CAAC,eAAe,EAAE,CAAC,OAAO,CAAC,CAAC;oBAEzD,IAAI,UAAU,EAAE,CAAC;wBACf,OAAO;4BACL,SAAS,EAAE,OAAO,CAAC,EAAE;4BACrB,IAAI,EAAE,OAAO,CAAC,IAAI;4BAClB,IAAI,EAAE,OAAO,CAAC,IAAI;4BAClB,OAAO,EAAE,IAAI,OAAO,OAAO,UAAU,GAAG;4BACxC,OAAO,EAAE,IAAI,OAAO,QAAQ,UAAU,GAAG;4BACzC,UAAU,EAAE,GAAG;4BACf,IAAI,EAAE,KAAK;4BACX,WAAW,EAAE,WAAW,OAAO,OAAO,UAAU,WAAW,OAAO,CAAC,KAAK,EAAE;yBAC3E,CAAC;oBACJ,CAAC;gBACH,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,IAAI,CAAC;YACd,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,kBAAkB,CAAC,OAAgB;QACzC,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,IAAA,WAAI,EAAC,IAAI,CAAC,WAAW,EAAE,OAAO,CAAC,IAAI,CAAC,CAAC;YACtD,MAAM,OAAO,GAAG,IAAA,iBAAY,EAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YAChD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAElC,IAAI,OAAO,CAAC,IAAI,IAAI,CAAC,IAAI,OAAO,CAAC,IAAI,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC;gBACrD,OAAO,IAAI,CAAC;YACd,CAAC;YAED,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC;YACxC,IAAI,OAAO,GAAG,OAAO,CAAC;YACtB,IAAI,WAAW,GAAG,EAAE,CAAC;YACrB,IAAI,UAAU,GAAG,GAAG,CAAC;YAErB,wBAAwB;YACxB,IAAI,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAC,EAAE,CAAC;gBACpC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,eAAe,EAAE,cAAc,CAAC,CAAC;gBAC3D,WAAW,GAAG,wCAAwC,CAAC;gBACvD,UAAU,GAAG,GAAG,CAAC;YACnB,CAAC;iBAAM,IAAI,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gBACpC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;gBAC/C,WAAW,GAAG,2CAA2C,CAAC;gBAC1D,UAAU,GAAG,IAAI,CAAC;YACpB,CAAC;YAED,IAAI,OAAO,KAAK,OAAO,EAAE,CAAC;gBACxB,OAAO,IAAI,CAAC;YACd,CAAC;YAED,OAAO;gBACL,SAAS,EAAE,OAAO,CAAC,EAAE;gBACrB,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,OAAO;gBACP,OAAO;gBACP,UAAU;gBACV,IAAI,EAAE,KAAK;gBACX,WAAW;aACZ,CAAC;QACJ,CAAC;QAAC,MAAM,CAAC;YACP,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;IAEO,iBAAiB,CAAC,OAAgB;QACxC,OAAO,IAAI,CAAC,wBAAwB,CAAC,OAAO,CAAC,CAAC;IAChD,CAAC;IAEO,iBAAiB,CAAC,KAAY;QACpC,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,KAAK,CAAC;QAErC,MAAM,aAAa,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;QAClE,MAAM,eAAe,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;QAEtE,IAAI,aAAa,GAAG,KAAK,CAAC,MAAM,GAAG,GAAG;YAAE,OAAO,MAAM,CAAC;QACtD,IAAI,eAAe,GAAG,KAAK,CAAC,MAAM,GAAG,GAAG;YAAE,OAAO,QAAQ,CAAC;QAC1D,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,eAAe,CAAC,KAAa;QACnC,MAAM,UAAU,GAAG,KAAK;aACrB,WAAW,EAAE;aACb,OAAO,CAAC,aAAa,EAAE,GAAG,CAAC;aAC3B,OAAO,CAAC,UAAU,EAAE,EAAE,CAAC,CAAC;QAE3B,IAAI,UAAU,CAAC,QAAQ,CAAC,SAAS,CAAC;YAAE,OAAO,SAAS,CAAC;QACrD,IAAI,UAAU,CAAC,QAAQ,CAAC,OAAO,CAAC;YAAE,OAAO,YAAY,CAAC;QACtD,IAAI,UAAU,CAAC,QAAQ,CAAC,QAAQ,CAAC;YAAE,OAAO,YAAY,CAAC;QAEvD,OAAO,UAAU,IAAI,cAAc,CAAC;IACtC,CAAC;CACF;AA3TD,8BA2TC"}

package/dist/fix/index.d.ts

@@ -0,0 +1,5 @@
+export { FixEngine, type Finding, type Fix, type FixPack, type ScanResult } from './engine';
+export { BackupManager, type BackupMetadata } from './backup';
+export { FixApplicator, type ApplyResult, type VerificationResult } from './applicator';
+export { InteractiveSelector, type SelectionResult } from './interactive';
+//# sourceMappingURL=index.d.ts.map

package/dist/fix/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/fix/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,KAAK,OAAO,EAAE,KAAK,GAAG,EAAE,KAAK,OAAO,EAAE,KAAK,UAAU,EAAE,MAAM,UAAU,CAAC;AAC5F,OAAO,EAAE,aAAa,EAAE,KAAK,cAAc,EAAE,MAAM,UAAU,CAAC;AAC9D,OAAO,EAAE,aAAa,EAAE,KAAK,WAAW,EAAE,KAAK,kBAAkB,EAAE,MAAM,cAAc,CAAC;AACxF,OAAO,EAAE,mBAAmB,EAAE,KAAK,eAAe,EAAE,MAAM,eAAe,CAAC"}

package/dist/fix/index.js

@@ -0,0 +1,12 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InteractiveSelector = exports.FixApplicator = exports.BackupManager = exports.FixEngine = void 0;
+var engine_1 = require("./engine");
+Object.defineProperty(exports, "FixEngine", { enumerable: true, get: function () { return engine_1.FixEngine; } });
+var backup_1 = require("./backup");
+Object.defineProperty(exports, "BackupManager", { enumerable: true, get: function () { return backup_1.BackupManager; } });
+var applicator_1 = require("./applicator");
+Object.defineProperty(exports, "FixApplicator", { enumerable: true, get: function () { return applicator_1.FixApplicator; } });
+var interactive_1 = require("./interactive");
+Object.defineProperty(exports, "InteractiveSelector", { enumerable: true, get: function () { return interactive_1.InteractiveSelector; } });
+//# sourceMappingURL=index.js.map

package/dist/fix/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/fix/index.ts"],"names":[],"mappings":";;;AAAA,mCAA4F;AAAnF,mGAAA,SAAS,OAAA;AAClB,mCAA8D;AAArD,uGAAA,aAAa,OAAA;AACtB,2CAAwF;AAA/E,2GAAA,aAAa,OAAA;AACtB,6CAA0E;AAAjE,kHAAA,mBAAmB,OAAA"}

package/dist/fix/interactive.d.ts

@@ -0,0 +1,22 @@
+import { FixPack } from './engine';
+export interface SelectionResult {
+    selectedPacks: FixPack[];
+    cancelled: boolean;
+}
+export declare class InteractiveSelector {
+    private isTTY;
+    constructor();
+    /**
+     * Interactive checkbox selection for fix packs
+     */
+    selectPacks(packs: FixPack[]): Promise<SelectionResult>;
+    /**
+     * Non-interactive pack selection by IDs
+     */
+    selectPacksByIds(packs: FixPack[], packIds: string[]): FixPack[];
+    /**
+     * Confirm action with user
+     */
+    confirm(message: string, defaultValue?: boolean): Promise<boolean>;
+}
+//# sourceMappingURL=interactive.d.ts.map

package/dist/fix/interactive.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"interactive.d.ts","sourceRoot":"","sources":["../../src/fix/interactive.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,OAAO,EAAE,MAAM,UAAU,CAAC;AAEnC,MAAM,WAAW,eAAe;IAC9B,aAAa,EAAE,OAAO,EAAE,CAAC;IACzB,SAAS,EAAE,OAAO,CAAC;CACpB;AAED,qBAAa,mBAAmB;IAC9B,OAAO,CAAC,KAAK,CAAU;;IAMvB;;OAEG;IACG,WAAW,CAAC,KAAK,EAAE,OAAO,EAAE,GAAG,OAAO,CAAC,eAAe,CAAC;IAkG7D;;OAEG;IACH,gBAAgB,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,OAAO,EAAE;IAShE;;OAEG;IACG,OAAO,CAAC,OAAO,EAAE,MAAM,EAAE,YAAY,UAAO,GAAG,OAAO,CAAC,OAAO,CAAC;CAuBtE"}

package/dist/fix/interactive.js

@@ -0,0 +1,172 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.InteractiveSelector = void 0;
+const readline = __importStar(require("readline"));
+class InteractiveSelector {
+    constructor() {
+        this.isTTY = Boolean(process.stdin.isTTY && process.stdout.isTTY);
+    }
+    /**
+     * Interactive checkbox selection for fix packs
+     */
+    async selectPacks(packs) {
+        if (!this.isTTY) {
+            // Non-interactive: select all by default
+            return {
+                selectedPacks: packs,
+                cancelled: false,
+            };
+        }
+        const selected = new Set();
+        let currentIndex = 0;
+        // Initially select all packs
+        packs.forEach((_, i) => selected.add(i));
+        return new Promise((resolve) => {
+            const rl = readline.createInterface({
+                input: process.stdin,
+                output: process.stdout,
+            });
+            const render = () => {
+                console.clear();
+                console.log('\x1b[1m\x1b[36mSelect Fix Packs to Apply\x1b[0m');
+                console.log('\x1b[2m─────────────────────────────────────────────────────────\x1b[0m');
+                console.log('');
+                packs.forEach((pack, i) => {
+                    const isSelected = selected.has(i);
+                    const isCurrent = i === currentIndex;
+                    const checkbox = isSelected ? '\x1b[32m[✓]\x1b[0m' : '\x1b[31m[ ]\x1b[0m';
+                    const cursor = isCurrent ? '\x1b[36m❯\x1b[0m' : ' ';
+                    const riskColor = pack.estimatedRisk === 'high' ? '\x1b[31m' :
+                        pack.estimatedRisk === 'medium' ? '\x1b[33m' : '\x1b[32m';
+                    console.log(`  ${cursor} ${checkbox} \x1b[1m${pack.name}\x1b[0m`);
+                    console.log(`      \x1b[2m${pack.description}\x1b[0m`);
+                    console.log(`      \x1b[2mFixes: ${pack.fixes.length} | Risk: ${riskColor}${pack.estimatedRisk}\x1b[0m | Confidence: ${(pack.confidence * 100).toFixed(0)}%`);
+                    console.log('');
+                });
+                console.log('\x1b[2m─────────────────────────────────────────────────────────\x1b[0m');
+                console.log('\x1b[2mControls: ↑/↓ Navigate | Space Toggle | Enter Confirm | Q Quit\x1b[0m');
+            };
+            render();
+            // Enable raw mode for key detection
+            if (process.stdin.setRawMode) {
+                process.stdin.setRawMode(true);
+            }
+            process.stdin.on('data', (key) => {
+                const char = key.toString();
+                if (char === '\u0003' || char.toLowerCase() === 'q') {
+                    // Ctrl+C or Q - quit
+                    if (process.stdin.setRawMode) {
+                        process.stdin.setRawMode(false);
+                    }
+                    rl.close();
+                    resolve({
+                        selectedPacks: [],
+                        cancelled: true,
+                    });
+                }
+                else if (char === '\r' || char === '\n') {
+                    // Enter - confirm
+                    if (process.stdin.setRawMode) {
+                        process.stdin.setRawMode(false);
+                    }
+                    rl.close();
+                    const selectedPacks = packs.filter((_, i) => selected.has(i));
+                    resolve({
+                        selectedPacks,
+                        cancelled: false,
+                    });
+                }
+                else if (char === ' ') {
+                    // Space - toggle selection
+                    if (selected.has(currentIndex)) {
+                        selected.delete(currentIndex);
+                    }
+                    else {
+                        selected.add(currentIndex);
+                    }
+                    render();
+                }
+                else if (char === '\u001b[A') {
+                    // Up arrow
+                    currentIndex = Math.max(0, currentIndex - 1);
+                    render();
+                }
+                else if (char === '\u001b[B') {
+                    // Down arrow
+                    currentIndex = Math.min(packs.length - 1, currentIndex + 1);
+                    render();
+                }
+            });
+        });
+    }
+    /**
+     * Non-interactive pack selection by IDs
+     */
+    selectPacksByIds(packs, packIds) {
+        if (packIds.length === 0) {
+            return packs;
+        }
+        const idSet = new Set(packIds);
+        return packs.filter(pack => idSet.has(pack.id));
+    }
+    /**
+     * Confirm action with user
+     */
+    async confirm(message, defaultValue = true) {
+        if (!this.isTTY) {
+            return defaultValue;
+        }
+        const rl = readline.createInterface({
+            input: process.stdin,
+            output: process.stdout,
+        });
+        return new Promise((resolve) => {
+            const hint = defaultValue ? '[Y/n]' : '[y/N]';
+            rl.question(`${message} ${hint}: `, (answer) => {
+                rl.close();
+                const lower = answer.toLowerCase().trim();
+                if (lower === '') {
+                    resolve(defaultValue);
+                }
+                else {
+                    resolve(lower === 'y' || lower === 'yes');
+                }
+            });
+        });
+    }
+}
+exports.InteractiveSelector = InteractiveSelector;
+//# sourceMappingURL=interactive.js.map

package/dist/fix/interactive.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"interactive.js","sourceRoot":"","sources":["../../src/fix/interactive.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,mDAAqC;AAQrC,MAAa,mBAAmB;IAG9B;QACE,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IACpE,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,KAAgB;QAChC,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;YAChB,yCAAyC;YACzC,OAAO;gBACL,aAAa,EAAE,KAAK;gBACpB,SAAS,EAAE,KAAK;aACjB,CAAC;QACJ,CAAC;QAED,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAU,CAAC;QACnC,IAAI,YAAY,GAAG,CAAC,CAAC;QAErB,6BAA6B;QAC7B,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAEzC,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YAC7B,MAAM,EAAE,GAAG,QAAQ,CAAC,eAAe,CAAC;gBAClC,KAAK,EAAE,OAAO,CAAC,KAAK;gBACpB,MAAM,EAAE,OAAO,CAAC,MAAM;aACvB,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,GAAG,EAAE;gBAClB,OAAO,CAAC,KAAK,EAAE,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,iDAAiD,CAAC,CAAC;gBAC/D,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;gBACvF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAEhB,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE;oBACxB,MAAM,UAAU,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;oBACnC,MAAM,SAAS,GAAG,CAAC,KAAK,YAAY,CAAC;oBAErC,MAAM,QAAQ,GAAG,UAAU,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,CAAC,oBAAoB,CAAC;oBAC1E,MAAM,MAAM,GAAG,SAAS,CAAC,CAAC,CAAC,kBAAkB,CAAC,CAAC,CAAC,GAAG,CAAC;oBACpD,MAAM,SAAS,GAAG,IAAI,CAAC,aAAa,KAAK,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC;wBAC7C,IAAI,CAAC,aAAa,KAAK,QAAQ,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC;oBAE3E,OAAO,CAAC,GAAG,CAAC,KAAK,MAAM,IAAI,QAAQ,WAAW,IAAI,CAAC,IAAI,SAAS,CAAC,CAAC;oBAClE,OAAO,CAAC,GAAG,CAAC,gBAAgB,IAAI,CAAC,WAAW,SAAS,CAAC,CAAC;oBACvD,OAAO,CAAC,GAAG,CAAC,uBAAuB,IAAI,CAAC,KAAK,CAAC,MAAM,YAAY,SAAS,GAAG,IAAI,CAAC,aAAa,yBAAyB,CAAC,IAAI,CAAC,UAAU,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;oBAC9J,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAClB,CAAC,CAAC,CAAC;gBAEH,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;gBACvF,OAAO,CAAC,GAAG,CAAC,8EAA8E,CAAC,CAAC;YAC9F,CAAC,CAAC;YAEF,MAAM,EAAE,CAAC;YAET,oCAAoC;YACpC,IAAI,OAAO,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;gBAC7B,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;YACjC,CAAC;YAED,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,EAAE;gBAC/B,MAAM,IAAI,GAAG,GAAG,CAAC,QAAQ,EAAE,CAAC;gBAE5B,IAAI,IAAI,KAAK,QAAQ,IAAI,IAAI,CAAC,WAAW,EAAE,KAAK,GAAG,EAAE,CAAC;oBACpD,qBAAqB;oBACrB,IAAI,OAAO,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;wBAC7B,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;oBAClC,CAAC;oBACD,EAAE,CAAC,KAAK,EAAE,CAAC;oBACX,OAAO,CAAC;wBACN,aAAa,EAAE,EAAE;wBACjB,SAAS,EAAE,IAAI;qBAChB,CAAC,CAAC;gBACL,CAAC;qBAAM,IAAI,IAAI,KAAK,IAAI,IAAI,IAAI,KAAK,IAAI,EAAE,CAAC;oBAC1C,kBAAkB;oBAClB,IAAI,OAAO,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;wBAC7B,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;oBAClC,CAAC;oBACD,EAAE,CAAC,KAAK,EAAE,CAAC;oBACX,MAAM,aAAa,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;oBAC9D,OAAO,CAAC;wBACN,aAAa;wBACb,SAAS,EAAE,KAAK;qBACjB,CAAC,CAAC;gBACL,CAAC;qBAAM,IAAI,IAAI,KAAK,GAAG,EAAE,CAAC;oBACxB,2BAA2B;oBAC3B,IAAI,QAAQ,CAAC,GAAG,CAAC,YAAY,CAAC,EAAE,CAAC;wBAC/B,QAAQ,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;oBAChC,CAAC;yBAAM,CAAC;wBACN,QAAQ,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;oBAC7B,CAAC;oBACD,MAAM,EAAE,CAAC;gBACX,CAAC;qBAAM,IAAI,IAAI,KAAK,UAAU,EAAE,CAAC;oBAC/B,WAAW;oBACX,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,YAAY,GAAG,CAAC,CAAC,CAAC;oBAC7C,MAAM,EAAE,CAAC;gBACX,CAAC;qBAAM,IAAI,IAAI,KAAK,UAAU,EAAE,CAAC;oBAC/B,aAAa;oBACb,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,EAAE,YAAY,GAAG,CAAC,CAAC,CAAC;oBAC5D,MAAM,EAAE,CAAC;gBACX,CAAC;YACH,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,KAAgB,EAAE,OAAiB;QAClD,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACzB,OAAO,KAAK,CAAC;QACf,CAAC;QAED,MAAM,KAAK,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,CAAC;QAC/B,OAAO,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC;IAClD,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,OAAO,CAAC,OAAe,EAAE,YAAY,GAAG,IAAI;QAChD,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;YAChB,OAAO,YAAY,CAAC;QACtB,CAAC;QAED,MAAM,EAAE,GAAG,QAAQ,CAAC,eAAe,CAAC;YAClC,KAAK,EAAE,OAAO,CAAC,KAAK;YACpB,MAAM,EAAE,OAAO,CAAC,MAAM;SACvB,CAAC,CAAC;QAEH,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YAC7B,MAAM,IAAI,GAAG,YAAY,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC;YAC9C,EAAE,CAAC,QAAQ,CAAC,GAAG,OAAO,IAAI,IAAI,IAAI,EAAE,CAAC,MAAM,EAAE,EAAE;gBAC7C,EAAE,CAAC,KAAK,EAAE,CAAC;gBACX,MAAM,KAAK,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;gBAC1C,IAAI,KAAK,KAAK,EAAE,EAAE,CAAC;oBACjB,OAAO,CAAC,YAAY,CAAC,CAAC;gBACxB,CAAC;qBAAM,CAAC;oBACN,OAAO,CAAC,KAAK,KAAK,GAAG,IAAI,KAAK,KAAK,KAAK,CAAC,CAAC;gBAC5C,CAAC;YACH,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AAlJD,kDAkJC"}

package/dist/formatters/index.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Output Formatters
+ * Re-exports all formatter functions
+ */
+export { toSarif, toSarifVulnerabilities } from './sarif';
+//# sourceMappingURL=index.d.ts.map

package/dist/formatters/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/formatters/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,OAAO,EAAE,sBAAsB,EAAE,MAAM,SAAS,CAAC"}

package/dist/formatters/index.js

@@ -0,0 +1,11 @@
+"use strict";
+/**
+ * Output Formatters
+ * Re-exports all formatter functions
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.toSarifVulnerabilities = exports.toSarif = void 0;
+var sarif_1 = require("./sarif");
+Object.defineProperty(exports, "toSarif", { enumerable: true, get: function () { return sarif_1.toSarif; } });
+Object.defineProperty(exports, "toSarifVulnerabilities", { enumerable: true, get: function () { return sarif_1.toSarifVulnerabilities; } });
+//# sourceMappingURL=index.js.map

package/dist/formatters/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/formatters/index.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;AAEH,iCAA0D;AAAjD,gGAAA,OAAO,OAAA;AAAE,+GAAA,sBAAsB,OAAA"}

package/dist/formatters/sarif-enhanced.d.ts

@@ -0,0 +1,78 @@
+/**
+ * Enhanced SARIF (Static Analysis Results Interchange Format) Output
+ * For vulnerability scanning with OSV integration
+ *
+ * Includes:
+ * - CVSS scores and vectors
+ * - Remediation paths
+ * - Direct vs transitive classification
+ * - Multiple vulnerability sources
+ */
+import { EnhancedVulnResult } from '../commands/scan-vulnerabilities-enhanced';
+export interface SarifResult {
+    $schema: string;
+    version: string;
+    runs: SarifRun[];
+}
+export interface SarifRun {
+    tool: {
+        driver: {
+            name: string;
+            version: string;
+            informationUri: string;
+            rules: SarifRule[];
+        };
+    };
+    results: SarifFinding[];
+    invocations: SarifInvocation[];
+}
+export interface SarifRule {
+    id: string;
+    name: string;
+    shortDescription: {
+        text: string;
+    };
+    fullDescription?: {
+        text: string;
+    };
+    helpUri?: string;
+    defaultConfiguration: {
+        level: 'error' | 'warning' | 'note' | 'none';
+    };
+    properties?: Record<string, any>;
+}
+export interface SarifFinding {
+    ruleId: string;
+    level: 'error' | 'warning' | 'note' | 'none';
+    message: {
+        text: string;
+    };
+    locations: SarifLocation[];
+    fingerprints?: Record<string, string>;
+    properties?: Record<string, any>;
+}
+export interface SarifLocation {
+    physicalLocation: {
+        artifactLocation: {
+            uri: string;
+            uriBaseId?: string;
+        };
+        region?: {
+            startLine: number;
+            startColumn?: number;
+            endLine?: number;
+            endColumn?: number;
+        };
+    };
+}
+export interface SarifInvocation {
+    executionSuccessful: boolean;
+    commandLine?: string;
+    startTimeUtc?: string;
+    endTimeUtc?: string;
+    workingDirectory?: {
+        uri: string;
+    };
+}
+export declare function toSarifVulnerabilitiesEnhanced(results: EnhancedVulnResult): SarifResult;
+//# sourceMappingURL=sarif-enhanced.d.ts.map

package/dist/formatters/sarif-enhanced.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sarif-enhanced.d.ts","sourceRoot":"","sources":["../../src/formatters/sarif-enhanced.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EAAE,kBAAkB,EAAE,MAAM,2CAA2C,CAAC;AAE/E,MAAM,WAAW,WAAW;IAC1B,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,QAAQ,EAAE,CAAC;CAClB;AAED,MAAM,WAAW,QAAQ;IACvB,IAAI,EAAE;QACJ,MAAM,EAAE;YACN,IAAI,EAAE,MAAM,CAAC;YACb,OAAO,EAAE,MAAM,CAAC;YAChB,cAAc,EAAE,MAAM,CAAC;YACvB,KAAK,EAAE,SAAS,EAAE,CAAC;SACpB,CAAC;KACH,CAAC;IACF,OAAO,EAAE,YAAY,EAAE,CAAC;IACxB,WAAW,EAAE,eAAe,EAAE,CAAC;CAChC;AAED,MAAM,WAAW,SAAS;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,gBAAgB,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC;IACnC,eAAe,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC;IACnC,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,oBAAoB,EAAE;QACpB,KAAK,EAAE,OAAO,GAAG,SAAS,GAAG,MAAM,GAAG,MAAM,CAAC;KAC9C,CAAC;IACF,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAClC;AAED,MAAM,WAAW,YAAY;IAC3B,MAAM,EAAE,MAAM,CAAC;IACf,KAAK,EAAE,OAAO,GAAG,SAAS,GAAG,MAAM,GAAG,MAAM,CAAC;IAC7C,OAAO,EAAE;QAAE,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC;IAC1B,SAAS,EAAE,aAAa,EAAE,CAAC;IAC3B,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACtC,UAAU,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CAClC;AAED,MAAM,WAAW,aAAa;IAC5B,gBAAgB,EAAE;QAChB,gBAAgB,EAAE;YAChB,GAAG,EAAE,MAAM,CAAC;YACZ,SAAS,CAAC,EAAE,MAAM,CAAC;SACpB,CAAC;QACF,MAAM,CAAC,EAAE;YACP,SAAS,EAAE,MAAM,CAAC;YAClB,WAAW,CAAC,EAAE,MAAM,CAAC;YACrB,OAAO,CAAC,EAAE,MAAM,CAAC;YACjB,SAAS,CAAC,EAAE,MAAM,CAAC;SACpB,CAAC;KACH,CAAC;CACH;AAED,MAAM,WAAW,eAAe;IAC9B,mBAAmB,EAAE,OAAO,CAAC;IAC7B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,gBAAgB,CAAC,EAAE;QAAE,GAAG,EAAE,MAAM,CAAA;KAAE,CAAC;CACpC;AAyBD,wBAAgB,8BAA8B,CAAC,OAAO,EAAE,kBAAkB,GAAG,WAAW,CAkGvF"}