guardrail-compliance 1.0.0

package/dist/automation/email-service.d.ts

@@ -0,0 +1,69 @@
+export interface EmailConfig {
+    host: string;
+    port: number;
+    secure?: boolean;
+    auth: {
+        user: string;
+        pass: string;
+    };
+    from: string;
+}
+export interface EmailMessage {
+    to: string | string[];
+    subject: string;
+    text?: string;
+    html?: string;
+}
+export interface EmailResult {
+    success: boolean;
+    messageId?: string;
+    error?: string;
+}
+/**
+ * Email Service for Guardrail notifications
+ *
+ * Supports SMTP-based email delivery via nodemailer.
+ * Configure via environment variables:
+ *   - EMAIL_FROM: sender email address
+ *   - SMTP_HOST: SMTP server hostname
+ *   - SMTP_PORT: SMTP server port (default: 587)
+ *   - SMTP_USER: SMTP authentication username
+ *   - SMTP_PASS: SMTP authentication password
+ *   - SMTP_SECURE: Use TLS (default: false for port 587, true for port 465)
+ */
+export declare class EmailService {
+    private transporter;
+    private config;
+    constructor();
+    /**
+     * Initialize email configuration from environment variables
+     */
+    private initializeFromEnv;
+    /**
+     * Create nodemailer transporter with current config
+     */
+    private createTransporter;
+    /**
+     * Check if email service is configured and available
+     */
+    isConfigured(): boolean;
+    /**
+     * Verify SMTP connection
+     */
+    verifyConnection(): Promise<boolean>;
+    /**
+     * Send an email
+     */
+    send(message: EmailMessage): Promise<EmailResult>;
+    /**
+     * Send compliance check notification email
+     */
+    sendComplianceNotification(recipients: string[], projectId: string, frameworkId: string, result: {
+        status: "completed" | "failed";
+        score?: number;
+        summary?: string;
+        reportUrl?: string;
+    }): Promise<EmailResult>;
+}
+export declare const emailService: EmailService;
+//# sourceMappingURL=email-service.d.ts.map

package/dist/automation/email-service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"email-service.d.ts","sourceRoot":"","sources":["../../src/automation/email-service.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,IAAI,EAAE;QACJ,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;KACd,CAAC;IACF,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,YAAY;IAC3B,EAAE,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;IACtB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,WAAW;IAC1B,OAAO,EAAE,OAAO,CAAC;IACjB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED;;;;;;;;;;;GAWG;AACH,qBAAa,YAAY;IACvB,OAAO,CAAC,WAAW,CAAuC;IAC1D,OAAO,CAAC,MAAM,CAA4B;;IAM1C;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAmBzB;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAWzB;;OAEG;IACH,YAAY,IAAI,OAAO;IAIvB;;OAEG;IACG,gBAAgB,IAAI,OAAO,CAAC,OAAO,CAAC;IAY1C;;OAEG;IACG,IAAI,CAAC,OAAO,EAAE,YAAY,GAAG,OAAO,CAAC,WAAW,CAAC;IAmCvD;;OAEG;IACG,0BAA0B,CAC9B,UAAU,EAAE,MAAM,EAAE,EACpB,SAAS,EAAE,MAAM,EACjB,WAAW,EAAE,MAAM,EACnB,MAAM,EAAE;QACN,MAAM,EAAE,WAAW,GAAG,QAAQ,CAAC;QAC/B,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,SAAS,CAAC,EAAE,MAAM,CAAC;KACpB,GACA,OAAO,CAAC,WAAW,CAAC;CAuExB;AAGD,eAAO,MAAM,YAAY,cAAqB,CAAC"}

package/dist/automation/email-service.js

@@ -0,0 +1,218 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.emailService = exports.EmailService = void 0;
+const nodemailer = __importStar(require("nodemailer"));
+/**
+ * Email Service for Guardrail notifications
+ *
+ * Supports SMTP-based email delivery via nodemailer.
+ * Configure via environment variables:
+ *   - EMAIL_FROM: sender email address
+ *   - SMTP_HOST: SMTP server hostname
+ *   - SMTP_PORT: SMTP server port (default: 587)
+ *   - SMTP_USER: SMTP authentication username
+ *   - SMTP_PASS: SMTP authentication password
+ *   - SMTP_SECURE: Use TLS (default: false for port 587, true for port 465)
+ */
+class EmailService {
+    transporter = null;
+    config = null;
+    constructor() {
+        this.initializeFromEnv();
+    }
+    /**
+     * Initialize email configuration from environment variables
+     */
+    initializeFromEnv() {
+        const host = process.env["SMTP_HOST"];
+        const port = parseInt(process.env["SMTP_PORT"] || "587", 10);
+        const user = process.env["SMTP_USER"];
+        const pass = process.env["SMTP_PASS"];
+        const from = process.env["EMAIL_FROM"];
+        if (host && user && pass && from) {
+            this.config = {
+                host,
+                port,
+                secure: process.env["SMTP_SECURE"] === "true" || port === 465,
+                auth: { user, pass },
+                from,
+            };
+            this.createTransporter();
+        }
+    }
+    /**
+     * Create nodemailer transporter with current config
+     */
+    createTransporter() {
+        if (!this.config)
+            return;
+        this.transporter = nodemailer.createTransport({
+            host: this.config.host,
+            port: this.config.port,
+            secure: this.config.secure,
+            auth: this.config.auth,
+        });
+    }
+    /**
+     * Check if email service is configured and available
+     */
+    isConfigured() {
+        return this.transporter !== null && this.config !== null;
+    }
+    /**
+     * Verify SMTP connection
+     */
+    async verifyConnection() {
+        if (!this.transporter)
+            return false;
+        try {
+            await this.transporter.verify();
+            return true;
+        }
+        catch (error) {
+            console.error("Email service verification failed:", error);
+            return false;
+        }
+    }
+    /**
+     * Send an email
+     */
+    async send(message) {
+        if (!this.transporter || !this.config) {
+            return {
+                success: false,
+                error: "Email service not configured. Set SMTP_HOST, SMTP_USER, SMTP_PASS, and EMAIL_FROM environment variables.",
+            };
+        }
+        try {
+            const recipients = Array.isArray(message.to)
+                ? message.to.join(", ")
+                : message.to;
+            const result = await this.transporter.sendMail({
+                from: this.config.from,
+                to: recipients,
+                subject: message.subject,
+                text: message.text,
+                html: message.html,
+            });
+            return {
+                success: true,
+                messageId: result.messageId,
+            };
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : String(error);
+            console.error("Failed to send email:", errorMessage);
+            return {
+                success: false,
+                error: errorMessage,
+            };
+        }
+    }
+    /**
+     * Send compliance check notification email
+     */
+    async sendComplianceNotification(recipients, projectId, frameworkId, result) {
+        const statusEmoji = result.status === "completed" ? "✅" : "❌";
+        const statusText = result.status === "completed" ? "Completed" : "Failed";
+        const scoreText = result.score !== undefined ? `${result.score}%` : "N/A";
+        const subject = `[Guardrail] Compliance Check ${statusText}: ${frameworkId}`;
+        const html = `
+<!DOCTYPE html>
+<html>
+<head>
+  <style>
+    body { font-family: -apple-system, BlinkMacSystemFont, 'Segoe UI', Roboto, sans-serif; line-height: 1.6; color: #333; }
+    .container { max-width: 600px; margin: 0 auto; padding: 20px; }
+    .header { background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); color: white; padding: 20px; border-radius: 8px 8px 0 0; }
+    .content { background: #f9fafb; padding: 20px; border: 1px solid #e5e7eb; border-top: none; border-radius: 0 0 8px 8px; }
+    .status { font-size: 24px; margin-bottom: 10px; }
+    .metric { background: white; padding: 15px; border-radius: 8px; margin: 10px 0; border: 1px solid #e5e7eb; }
+    .metric-label { color: #6b7280; font-size: 12px; text-transform: uppercase; }
+    .metric-value { font-size: 20px; font-weight: 600; color: #111827; }
+    .button { display: inline-block; background: #667eea; color: white; padding: 12px 24px; border-radius: 6px; text-decoration: none; margin-top: 15px; }
+    .footer { text-align: center; color: #6b7280; font-size: 12px; margin-top: 20px; }
+  </style>
+</head>
+<body>
+  <div class="container">
+    <div class="header">
+      <div class="status">${statusEmoji} Compliance Check ${statusText}</div>
+      <div>Project: ${projectId}</div>
+    </div>
+    <div class="content">
+      <div class="metric">
+        <div class="metric-label">Framework</div>
+        <div class="metric-value">${frameworkId}</div>
+      </div>
+      <div class="metric">
+        <div class="metric-label">Compliance Score</div>
+        <div class="metric-value">${scoreText}</div>
+      </div>
+      ${result.summary ? `<p>${result.summary}</p>` : ""}
+      ${result.reportUrl ? `<a href="${result.reportUrl}" class="button">View Full Report</a>` : ""}
+    </div>
+    <div class="footer">
+      <p>Sent by Guardrail Compliance Automation</p>
+      <p>Context Enhanced by Guardrail AI</p>
+    </div>
+  </div>
+</body>
+</html>
+    `.trim();
+        const text = `
+Compliance Check ${statusText}
+
+Project: ${projectId}
+Framework: ${frameworkId}
+Score: ${scoreText}
+${result.summary ? `\nSummary: ${result.summary}` : ""}
+${result.reportUrl ? `\nView Report: ${result.reportUrl}` : ""}
+
+--
+Sent by Guardrail Compliance Automation
+    `.trim();
+        return this.send({
+            to: recipients,
+            subject,
+            text,
+            html,
+        });
+    }
+}
+exports.EmailService = EmailService;
+// Singleton instance
+exports.emailService = new EmailService();

package/dist/automation/evidence-collector.d.ts

@@ -0,0 +1,140 @@
+import { ComplianceAssessmentResult } from '../frameworks/engine';
+export interface EvidenceArtifact {
+    id: string;
+    controlId: string;
+    type: 'document' | 'configuration' | 'screenshot' | 'log' | 'code' | 'test' | 'metadata';
+    name: string;
+    path?: string;
+    content?: string;
+    hash: string;
+    size: number;
+    timestamp: Date;
+    metadata: any;
+}
+interface EvidenceCollection {
+    id: string;
+    projectId: string;
+    name: string;
+    description?: string;
+    frameworkId?: string;
+    assessmentId?: string;
+    artifacts: EvidenceArtifact[];
+    summary: {
+        totalArtifacts: number;
+        byType: Record<string, number>;
+        size: number;
+        hash: string;
+    };
+    timestamp: Date;
+}
+/**
+ * Evidence Collection Engine
+ *
+ * Automatically collects, preserves, and manages evidence
+ * for compliance assessments and audits
+ */
+export declare class EvidenceCollector {
+    /**
+     * Collect evidence for a compliance assessment
+     */
+    collectForAssessment(projectId: string, frameworkId: string, assessment: ComplianceAssessmentResult): Promise<EvidenceArtifact[]>;
+    /**
+     * Collect evidence for a specific control
+     */
+    private collectControlEvidence;
+    /**
+     * Collect data protection evidence
+     */
+    private collectDataProtectionEvidence;
+    /**
+     * Collect security evidence
+     */
+    private collectSecurityEvidence;
+    /**
+     * Collect access control evidence
+     */
+    private collectAccessControlEvidence;
+    /**
+     * Collect incident response evidence
+     */
+    private collectIncidentResponseEvidence;
+    /**
+     * Collect logging evidence
+     */
+    private collectLoggingEvidence;
+    /**
+     * Collect general evidence
+     */
+    private collectGeneralEvidence;
+    /**
+     * Collect a document artifact
+     */
+    private collectDocument;
+    /**
+     * Collect a configuration artifact
+     */
+    private collectConfiguration;
+    /**
+     * Collect a code artifact
+     */
+    private collectCodeArtifact;
+    /**
+     * Collect metadata file
+     */
+    private collectMetadataFile;
+    /**
+     * Find files by pattern
+     */
+    private findFilesByPattern;
+    /**
+     * Simple glob implementation
+     */
+    private globFiles;
+    /**
+     * Check if filename matches pattern
+     */
+    private matchesPattern;
+    /**
+     * Create metadata artifact
+     */
+    private createMetadataArtifact;
+    /**
+     * Redact sensitive data from content
+     */
+    private redactSensitiveData;
+    /**
+     * Redact sensitive configuration values
+     */
+    private redactConfiguration;
+    /**
+     * Detect programming language from file extension
+     */
+    private detectLanguage;
+    /**
+     * Group artifacts by type
+     */
+    private groupArtifactsByType;
+    /**
+     * Calculate total size of artifacts
+     */
+    private calculateTotalSize;
+    /**
+     * Calculate hash of artifacts
+     */
+    private calculateHash;
+    /**
+     * Store evidence collection in database
+     */
+    private storeEvidenceCollection;
+    /**
+     * Retrieve evidence collection
+     */
+    getEvidenceCollection(collectionId: string): Promise<EvidenceCollection | null>;
+    /**
+     * List evidence collections for a project
+     */
+    listEvidenceCollections(projectId: string): Promise<EvidenceCollection[]>;
+}
+export declare const evidenceCollector: EvidenceCollector;
+export {};
+//# sourceMappingURL=evidence-collector.d.ts.map

package/dist/automation/evidence-collector.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"evidence-collector.d.ts","sourceRoot":"","sources":["../../src/automation/evidence-collector.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,0BAA0B,EAAE,MAAM,sBAAsB,CAAC;AAElE,MAAM,WAAW,gBAAgB;IAC/B,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,UAAU,GAAG,eAAe,GAAG,YAAY,GAAG,KAAK,GAAG,MAAM,GAAG,MAAM,GAAG,UAAU,CAAC;IACzF,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,IAAI,EAAE,MAAM,CAAC;IACb,IAAI,EAAE,MAAM,CAAC;IACb,SAAS,EAAE,IAAI,CAAC;IAChB,QAAQ,EAAE,GAAG,CAAC;CACf;AAED,UAAU,kBAAkB;IAC1B,EAAE,EAAE,MAAM,CAAC;IACX,SAAS,EAAE,MAAM,CAAC;IAClB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,SAAS,EAAE,gBAAgB,EAAE,CAAC;IAC9B,OAAO,EAAE;QACP,cAAc,EAAE,MAAM,CAAC;QACvB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;QAC/B,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;KACd,CAAC;IACF,SAAS,EAAE,IAAI,CAAC;CACjB;AAED;;;;;GAKG;AACH,qBAAa,iBAAiB;IAG5B;;OAEG;IACG,oBAAoB,CACxB,SAAS,EAAE,MAAM,EACjB,WAAW,EAAE,MAAM,EACnB,UAAU,EAAE,0BAA0B,GACrC,OAAO,CAAC,gBAAgB,EAAE,CAAC;IAgD9B;;OAEG;YACW,sBAAsB;IAkCpC;;OAEG;YACW,6BAA6B;IAmD3C;;OAEG;YACW,uBAAuB;IA6DrC;;OAEG;YACW,4BAA4B;IAyC1C;;OAEG;YACW,+BAA+B;IAmC7C;;OAEG;YACW,sBAAsB;IA+BpC;;OAEG;YACW,sBAAsB;IAsBpC;;OAEG;YACW,eAAe;IAyC7B;;OAEG;YACW,oBAAoB;IAwClC;;OAEG;YACW,mBAAmB;IAsCjC;;OAEG;YACW,mBAAmB;IAqCjC;;OAEG;YACW,kBAAkB;IA0BhC;;OAEG;IACH,OAAO,CAAC,SAAS;IAgCjB;;OAEG;IACH,OAAO,CAAC,cAAc;IAStB;;OAEG;YACW,sBAAsB;IAgCpC;;OAEG;IACH,OAAO,CAAC,mBAAmB;IAW3B;;OAEG;IACH,OAAO,CAAC,mBAAmB;IAI3B;;OAEG;IACH,OAAO,CAAC,cAAc;IAmCtB;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAU5B;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAU1B;;OAEG;YACW,aAAa;IAU3B;;OAEG;YACW,uBAAuB;IAsBrC;;OAEG;IACG,qBAAqB,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,kBAAkB,GAAG,IAAI,CAAC;IA8BrF;;OAEG;IACG,uBAAuB,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,kBAAkB,EAAE,CAAC;CA4BhF;AAGD,eAAO,MAAM,iBAAiB,mBAA0B,CAAC"}