guardrail-ship 1.0.0

package/dist/reality-mode/reality-scanner.js

@@ -0,0 +1,516 @@
+/**
+ * Reality Mode - Runtime Fake Detection
+ *
+ * "Stop shipping pretend features. Guardrail runs your app and catches the lies."
+ *
+ * This module spins up the app, intercepts network calls, clicks through the UI,
+ * and detects:
+ * - Calls to localhost, jsonplaceholder, staging domains, ngrok
+ * - Routes returning demo/placeholder responses
+ * - Silent fallback success patterns
+ * - Mock billing and fake invoice IDs
+ *
+ * The killer feature: a "flight recorder" replay showing exactly what happened.
+ */
+import { TrafficClassifier } from "./traffic-classifier";
+import { FakeSuccessDetector } from "./fake-success-detector";
+import { AuthEnforcer } from "./auth-enforcer";
+// Export constants that are used in the generated test
+export const FAKE_DOMAIN_PATTERNS = [
+    /localhost:\d+/i,
+    /127\.0\.0\.1:\d+/i,
+    /jsonplaceholder\.typicode\.com/i,
+    /reqres\.in/i,
+    /mockapi\.io/i,
+    /mocky\.io/i,
+    /httpbin\.org/i,
+    /\.ngrok\.io/i,
+    /\.ngrok-free\.app/i,
+    /staging\./i,
+    /\.local\//i,
+    /\.test\//i,
+    /api\.example\.com/i,
+    /fake\.api/i,
+    /demo\.api/i,
+];
+export const FAKE_RESPONSE_PATTERNS = [
+    { pattern: /inv_demo_/i, name: "Demo invoice ID" },
+    { pattern: /user_demo_/i, name: "Demo user ID" },
+    { pattern: /cus_demo_/i, name: "Demo customer ID" },
+    { pattern: /sub_demo_/i, name: "Demo subscription ID" },
+    { pattern: /sk_test_/i, name: "Test Stripe key" },
+    { pattern: /pk_test_/i, name: "Test Stripe public key" },
+    { pattern: /"success":\s*true.*"demo"/i, name: "Demo success response" },
+    { pattern: /lorem\s+ipsum/i, name: "Lorem ipsum placeholder" },
+    { pattern: /john\.doe|jane\.doe/i, name: "Placeholder name" },
+    { pattern: /user@example\.com/i, name: "Placeholder email" },
+    { pattern: /placeholder\.(com|jpg|png)/i, name: "Placeholder domain/image" },
+    {
+        pattern: /"id":\s*("demo"|"test"|"fake"|1234567890)/i,
+        name: "Fake ID pattern",
+    },
+    { pattern: /"status":\s*"simulated"/i, name: "Simulated status" },
+    { pattern: /"mock":\s*true/i, name: "Mock flag enabled" },
+    { pattern: /"isDemo":\s*true/i, name: "Demo mode flag" },
+];
+export const SILENT_FALLBACK_PATTERNS = [
+    {
+        pattern: /"error":\s*null.*"data":\s*\[\]/i,
+        name: "Empty success on error",
+    },
+    {
+        pattern: /catch.*return\s*\{\s*success:\s*true/i,
+        name: "Success on catch",
+    },
+    { pattern: /"fallback":\s*true/i, name: "Fallback flag" },
+];
+export const DEFAULT_FAKE_PATTERNS = [
+    // Fake domain patterns
+    {
+        id: "fake-api-domain",
+        name: "Mock Backend (Domain)",
+        description: "Request to a mock/staging/localhost API domain",
+        severity: "critical",
+        detect: (item) => {
+            if (item.type !== "request")
+                return false;
+            return FAKE_DOMAIN_PATTERNS.some((p) => p.test(item.url));
+        },
+    },
+    // Demo response patterns
+    {
+        id: "demo-response-data",
+        name: "Mock Backend (Data)",
+        description: "Response contains demo/placeholder data",
+        severity: "critical",
+        detect: (item) => {
+            if (item.type !== "response" || !item.body)
+                return false;
+            return FAKE_RESPONSE_PATTERNS.some(({ pattern }) => pattern.test(item.body));
+        },
+    },
+    // Silent fallback
+    {
+        id: "silent-fallback-success",
+        name: "Fake Success (Fallback)",
+        description: "Code silently returns success on error (catch returns default)",
+        severity: "warning",
+        detect: (item) => {
+            if (item.type !== "response" || !item.body)
+                return false;
+            return SILENT_FALLBACK_PATTERNS.some(({ pattern }) => pattern.test(item.body));
+        },
+    },
+    // HTTP status checks
+    {
+        id: "mock-status-code",
+        name: "Mock Backend (Status)",
+        description: "Response with unusual status indicating mock (418, 999)",
+        severity: "warning",
+        detect: (item) => {
+            if (item.type !== "response")
+                return false;
+            return [418, 999, 0].includes(item.status);
+        },
+    },
+    // Test keys in production
+    {
+        id: "test-api-keys",
+        name: "Security Risk (Test Keys)",
+        description: "Test/demo API keys detected in request or response",
+        severity: "critical",
+        detect: (item) => {
+            const content = item.type === "request"
+                ? JSON.stringify(item.headers) + (item.body || "")
+                : item.body || "";
+            return /sk_test_|pk_test_|api_key_test|demo_api_key/i.test(content);
+        },
+    },
+    // Billing simulation
+    {
+        id: "simulated-billing",
+        name: "Mock Backend (Billing)",
+        description: "Billing/payment response appears to be simulated",
+        severity: "critical",
+        detect: (item) => {
+            if (item.type !== "response" || !item.body)
+                return false;
+            const billingUrls = /stripe|billing|payment|checkout|subscription/i;
+            const isBillingEndpoint = billingUrls.test(item.url);
+            const hasDemoData = /demo|test|simulate|fake|mock/i.test(item.body);
+            return isBillingEndpoint && hasDemoData;
+        },
+    },
+];
+export class RealityScanner {
+    config;
+    trafficClassifier;
+    fakeSuccessDetector;
+    authEnforcer;
+    constructor(config = {}) {
+        this.config = {
+            timeout: 30000,
+            patterns: DEFAULT_FAKE_PATTERNS,
+            screenshotOnDetection: true,
+            headless: true,
+            checkAuth: true,
+            ...config,
+        };
+        this.trafficClassifier = new TrafficClassifier(this.config.patterns || DEFAULT_FAKE_PATTERNS);
+        this.fakeSuccessDetector = new FakeSuccessDetector();
+        this.authEnforcer = new AuthEnforcer();
+    }
+    /**
+     * Generate Playwright test code for Reality Mode scanning
+     */
+    generatePlaywrightTest(config) {
+        const { baseUrl, clickPaths, outputDir } = config;
+        const authTestCode = this.config.checkAuth
+            ? this.authEnforcer.generateAuthCheckTest({ baseUrl, outputDir })
+            : "";
+        return `/**
+ * Reality Mode - Auto-generated Playwright Test
+ * 
+ * This test runs your app and intercepts all network calls to detect fake data.
+ * Generated by Guardrail Reality Mode.
+ */
+
+import { test, expect, Page, Request, Response } from '@playwright/test';
+import * as fs from 'fs';
+import * as path from 'path';
+
+const FAKE_DOMAIN_PATTERNS = ${JSON.stringify(FAKE_DOMAIN_PATTERNS.map((r) => r.source), null, 2)};
+
+const FAKE_RESPONSE_PATTERNS = ${JSON.stringify(FAKE_RESPONSE_PATTERNS, null, 2)};
+
+interface Detection {
+  type: string;
+  severity: 'critical' | 'warning';
+  url: string;
+  evidence: string;
+  timestamp: number;
+}
+
+interface ReplayStep {
+  timestamp: number;
+  type: 'request' | 'response' | 'action' | 'console';
+  data: any;
+  detections: Detection[];
+  screenshot?: string;
+}
+
+test.describe('Reality Mode Scan', () => {
+  let detections: Detection[] = [];
+  let replay: ReplayStep[] = [];
+  
+  test.beforeEach(async ({ page }) => {
+    detections = [];
+    replay = [];
+    
+    // Capture console logs
+    page.on('console', msg => {
+      replay.push({
+        timestamp: Date.now(),
+        type: 'console',
+        data: { type: msg.type(), text: msg.text() },
+        detections: []
+      });
+    });
+
+    // Intercept all network requests
+    page.on('request', (request: Request) => {
+      const url = request.url();
+      // Skip static assets to reduce noise
+      if (url.match(/\\.(js|css|png|jpg|svg|ico|woff|woff2|ttf)$/)) return;
+
+      const step: ReplayStep = {
+        timestamp: Date.now(),
+        type: 'request',
+        data: { url, method: request.method(), headers: request.headers() },
+        detections: []
+      };
+      
+      // Check for fake domains
+      for (const pattern of FAKE_DOMAIN_PATTERNS) {
+        if (new RegExp(pattern, 'i').test(url)) {
+          const detection: Detection = {
+            type: 'fake-api-domain',
+            severity: 'critical',
+            url,
+            evidence: \`URL matches fake domain pattern: \${pattern}\`,
+            timestamp: Date.now()
+          };
+          step.detections.push(detection);
+          detections.push(detection);
+        }
+      }
+      
+      replay.push(step);
+    });
+    
+    page.on('response', async (response: Response) => {
+      const url = response.url();
+      if (url.match(/\\.(js|css|png|jpg|svg|ico|woff|woff2|ttf)$/)) return;
+
+      let body = '';
+      
+      try {
+        body = await response.text();
+      } catch (e) {
+        // Some responses can't be read
+      }
+      
+      const step: ReplayStep = {
+        timestamp: Date.now(),
+        type: 'response',
+        data: { url, status: response.status(), bodyPreview: body.slice(0, 500) },
+        detections: []
+      };
+      
+      // Check for demo data patterns
+      for (const { pattern, name } of FAKE_RESPONSE_PATTERNS) {
+        if (new RegExp(pattern.source || pattern, 'i').test(body)) {
+          const detection: Detection = {
+            type: 'demo-response-data',
+            severity: 'critical',
+            url,
+            evidence: \`Response contains \${name}\`,
+            timestamp: Date.now()
+          };
+          step.detections.push(detection);
+          detections.push(detection);
+        }
+      }
+      
+      replay.push(step);
+    });
+  });
+  
+  test('should detect fake data in production flow', async ({ page }) => {
+    // Navigate to the app
+    await page.goto('${baseUrl}');
+    
+    // Initial screenshot
+    const initScreenshot = \`init-\${Date.now()}.png\`;
+    const outputDir = '${outputDir.replace(/\\/g, "\\\\")}';
+    if (!fs.existsSync(outputDir)) fs.mkdirSync(outputDir, { recursive: true });
+    
+    await page.screenshot({ path: path.join(outputDir, initScreenshot) });
+
+    replay.push({
+      timestamp: Date.now(),
+      type: 'action',
+      data: { type: 'navigation', url: '${baseUrl}' },
+      detections: [],
+      screenshot: initScreenshot
+    });
+    
+    // Execute click paths
+    const clickPaths = ${JSON.stringify(clickPaths, null, 4)};
+    
+    for (const path of clickPaths) {
+      for (const selector of path) {
+        try {
+          await page.waitForSelector(selector, { timeout: 5000 });
+          await page.click(selector);
+          
+          // Wait for network activity to settle
+          await page.waitForLoadState('networkidle', { timeout: 5000 }).catch(() => {});
+          
+          // Take screenshot after action
+          const stepScreenshot = \`step-\${Date.now()}.png\`;
+          await page.screenshot({ path: path.join(outputDir, stepScreenshot) });
+
+          replay.push({
+            timestamp: Date.now(),
+            type: 'action',
+            data: { type: 'click', selector },
+            detections: [],
+            screenshot: stepScreenshot
+          });
+          
+        } catch (e) {
+          // Selector not found, skip
+        }
+      }
+    }
+    
+    // Save raw replay data for post-analysis
+    fs.writeFileSync(
+      path.join(outputDir, 'reality-replay.json'),
+      JSON.stringify(replay, null, 2)
+    );
+    
+    // Fail if critical fake data detected (NO-GO)
+    // Warnings do NOT fail the build (GO/WARN)
+    const criticalIssues = detections.filter(d => d.severity === 'critical');
+    
+    if (criticalIssues.length > 0) {
+      console.log(\`\\n  🛑 NO-GO: Found \${criticalIssues.length} critical reality issues.\`);
+      criticalIssues.forEach(d => console.log(\`     - \${d.evidence} (\${d.url})\`));
+    }
+    
+    expect(criticalIssues.length, \`Found \${criticalIssues.length} critical fake data issues\`).toBe(0);
+  });
+
+  ${authTestCode}
+});
+`;
+    }
+    /**
+     * Post-process the replay to apply advanced detection logic
+     */
+    processReplay(replay, authViolations = []) {
+        const trafficAnalysis = [];
+        const fakeSuccessResults = this.fakeSuccessDetector.detect(replay);
+        const detections = [];
+        // 1. Analyze Traffic (Green/Yellow/Red)
+        const responseHistory = new Map(); // url -> body hash/content
+        let hasMutation = false;
+        for (const step of replay) {
+            if (step.type === "request") {
+                const req = {
+                    type: "request",
+                    url: step.data.url,
+                    method: step.data.method,
+                    headers: step.data.headers || {},
+                    timestamp: step.timestamp,
+                };
+                if (["POST", "PUT", "PATCH", "DELETE"].includes(req.method)) {
+                    hasMutation = true;
+                }
+                // Find corresponding response? (Simplification: analyze request independently first)
+                const classification = this.trafficClassifier.classify(req);
+                trafficAnalysis.push(classification);
+                // Convert classifier reasons to detections
+                if (classification.verdict === "red") {
+                    detections.push({
+                        pattern: {
+                            id: "traffic-classifier-red",
+                            name: "Fake Traffic",
+                            description: classification.reasons.join(", "),
+                            severity: "critical",
+                            detect: () => true,
+                        },
+                        request: req,
+                        timestamp: step.timestamp,
+                        evidence: classification.reasons.join(", "),
+                    });
+                }
+            }
+            else if (step.type === "response") {
+                const res = {
+                    type: "response",
+                    url: step.data.url,
+                    status: step.data.status,
+                    headers: {},
+                    body: step.data.bodyPreview,
+                    timestamp: step.timestamp,
+                };
+                const classification = this.trafficClassifier.classify({
+                    type: "request",
+                    url: res.url,
+                    method: "GET",
+                    headers: {},
+                    timestamp: 0,
+                }, res);
+                trafficAnalysis.push(classification);
+                if (classification.verdict === "red") {
+                    detections.push({
+                        pattern: {
+                            id: "traffic-classifier-red-res",
+                            name: "Fake Response",
+                            description: classification.reasons.join(", "),
+                            severity: "critical",
+                            detect: () => true,
+                        },
+                        response: res,
+                        timestamp: step.timestamp,
+                        evidence: classification.reasons.join(", "),
+                    });
+                }
+                // Consistency Check (Fake Mutation)
+                // If we have seen this URL before, and there was a mutation, the body should ideally change
+                if (hasMutation &&
+                    responseHistory.has(res.url) &&
+                    responseHistory.get(res.url) === res.body) {
+                    // Ignore static assets/config
+                    if (!res.url.includes("/config") &&
+                        !res.url.includes("/me") &&
+                        !res.url.includes(".json")) {
+                        const warning = {
+                            verdict: "yellow",
+                            score: 70,
+                            reasons: [
+                                `Data for ${res.url} did not change after a write operation (Fake Mutation?)`,
+                            ],
+                        };
+                        trafficAnalysis.push(warning);
+                    }
+                }
+                responseHistory.set(res.url, res.body || "");
+            }
+        }
+        // 2. Score Calculation
+        let score = 100;
+        score -= detections.length * 10;
+        score -= fakeSuccessResults.filter((f) => f.isFake).length * 20;
+        score -= authViolations.length * 25; // Auth violations are heavy penalties
+        // Penalize Red Traffic (Mock Backend / No-Wire)
+        const redTraffic = trafficAnalysis.filter((t) => t.verdict === "red");
+        score -= redTraffic.length * 15;
+        score = Math.max(0, score);
+        const verdict = score > 80 ? "real" : score > 50 ? "suspicious" : "fake";
+        return {
+            verdict,
+            score,
+            detections,
+            replay,
+            trafficAnalysis,
+            fakeSuccessAnalysis: fakeSuccessResults,
+            authViolations,
+            summary: {
+                totalRequests: replay.filter((r) => r.type === "request").length,
+                fakeRequests: detections.length + redTraffic.length,
+                totalActions: replay.filter((r) => r.type === "action").length,
+                criticalIssues: detections.length +
+                    redTraffic.length +
+                    fakeSuccessResults.filter((f) => f.isFake).length +
+                    authViolations.length,
+                warnings: fakeSuccessResults.filter((f) => f.isFake).length,
+            },
+            timestamp: new Date().toISOString(),
+            duration: 0,
+        };
+    }
+    generateReport(result) {
+        // This is now handled by ReportGenerator, but we keep a simple string version for console output if needed
+        return `Reality Check Complete. Score: ${result.score}/100. Verdict: ${result.verdict.toUpperCase()}`;
+    }
+    generateDefaultClickPaths() {
+        return [
+            // 1. Login / Auth Flow
+            [
+                'input[name="email"]',
+                'input[name="password"]',
+                'button[type="submit"]',
+                '[data-testid="login-submit"]',
+            ],
+            // 2. Dashboard Access
+            ['[href*="/dashboard"]', '[data-testid="nav-dashboard"]'],
+            // 3. View Report/Runs
+            ['[href*="/runs"]', '[href*="/reports"]', '[data-testid="view-report"]'],
+            // 4. Open Findings/Details
+            ['[data-testid="finding-item"]', 'tr[role="row"]'],
+            // 5. Settings / Configuration (Write actions often live here)
+            [
+                '[href*="/settings"]',
+                '[data-testid="nav-settings"]',
+                'button:has-text("Save")',
+                '[data-testid="save-changes"]',
+            ],
+        ];
+    }
+}
+export const realityScanner = new RealityScanner();
+//# sourceMappingURL=reality-scanner.js.map

package/dist/reality-mode/reality-scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"reality-scanner.js","sourceRoot":"","sources":["../../src/reality-mode/reality-scanner.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAIH,OAAO,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AACzD,OAAO,EAAE,mBAAmB,EAAE,MAAM,yBAAyB,CAAC;AAC9D,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAc/C,uDAAuD;AACvD,MAAM,CAAC,MAAM,oBAAoB,GAAG;IAClC,gBAAgB;IAChB,mBAAmB;IACnB,iCAAiC;IACjC,aAAa;IACb,cAAc;IACd,YAAY;IACZ,eAAe;IACf,cAAc;IACd,oBAAoB;IACpB,YAAY;IACZ,YAAY;IACZ,WAAW;IACX,oBAAoB;IACpB,YAAY;IACZ,YAAY;CACb,CAAC;AAEF,MAAM,CAAC,MAAM,sBAAsB,GAAG;IACpC,EAAE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,iBAAiB,EAAE;IAClD,EAAE,OAAO,EAAE,aAAa,EAAE,IAAI,EAAE,cAAc,EAAE;IAChD,EAAE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,kBAAkB,EAAE;IACnD,EAAE,OAAO,EAAE,YAAY,EAAE,IAAI,EAAE,sBAAsB,EAAE;IACvD,EAAE,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,iBAAiB,EAAE;IACjD,EAAE,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,wBAAwB,EAAE;IACxD,EAAE,OAAO,EAAE,4BAA4B,EAAE,IAAI,EAAE,uBAAuB,EAAE;IACxE,EAAE,OAAO,EAAE,gBAAgB,EAAE,IAAI,EAAE,yBAAyB,EAAE;IAC9D,EAAE,OAAO,EAAE,sBAAsB,EAAE,IAAI,EAAE,kBAAkB,EAAE;IAC7D,EAAE,OAAO,EAAE,oBAAoB,EAAE,IAAI,EAAE,mBAAmB,EAAE;IAC5D,EAAE,OAAO,EAAE,6BAA6B,EAAE,IAAI,EAAE,0BAA0B,EAAE;IAC5E;QACE,OAAO,EAAE,4CAA4C;QACrD,IAAI,EAAE,iBAAiB;KACxB;IACD,EAAE,OAAO,EAAE,0BAA0B,EAAE,IAAI,EAAE,kBAAkB,EAAE;IACjE,EAAE,OAAO,EAAE,iBAAiB,EAAE,IAAI,EAAE,mBAAmB,EAAE;IACzD,EAAE,OAAO,EAAE,mBAAmB,EAAE,IAAI,EAAE,gBAAgB,EAAE;CACzD,CAAC;AAEF,MAAM,CAAC,MAAM,wBAAwB,GAAG;IACtC;QACE,OAAO,EAAE,kCAAkC;QAC3C,IAAI,EAAE,wBAAwB;KAC/B;IACD;QACE,OAAO,EAAE,uCAAuC;QAChD,IAAI,EAAE,kBAAkB;KACzB;IACD,EAAE,OAAO,EAAE,qBAAqB,EAAE,IAAI,EAAE,eAAe,EAAE;CAC1D,CAAC;AAEF,MAAM,CAAC,MAAM,qBAAqB,GAAkB;IAClD,uBAAuB;IACvB;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,uBAAuB;QAC7B,WAAW,EAAE,gDAAgD;QAC7D,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YACf,IAAI,IAAI,CAAC,IAAI,KAAK,SAAS;gBAAE,OAAO,KAAK,CAAC;YAC1C,OAAO,oBAAoB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC;QAC5D,CAAC;KACF;IACD,yBAAyB;IACzB;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,qBAAqB;QAC3B,WAAW,EAAE,yCAAyC;QACtD,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YACf,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU,IAAI,CAAC,IAAI,CAAC,IAAI;gBAAE,OAAO,KAAK,CAAC;YACzD,OAAO,sBAAsB,CAAC,IAAI,CAAC,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,CACjD,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,IAAK,CAAC,CACzB,CAAC;QACJ,CAAC;KACF;IACD,kBAAkB;IAClB;QACE,EAAE,EAAE,yBAAyB;QAC7B,IAAI,EAAE,yBAAyB;QAC/B,WAAW,EACT,gEAAgE;QAClE,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YACf,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU,IAAI,CAAC,IAAI,CAAC,IAAI;gBAAE,OAAO,KAAK,CAAC;YACzD,OAAO,wBAAwB,CAAC,IAAI,CAAC,CAAC,EAAE,OAAO,EAAE,EAAE,EAAE,CACnD,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,IAAK,CAAC,CACzB,CAAC;QACJ,CAAC;KACF;IACD,qBAAqB;IACrB;QACE,EAAE,EAAE,kBAAkB;QACtB,IAAI,EAAE,uBAAuB;QAC7B,WAAW,EAAE,yDAAyD;QACtE,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YACf,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU;gBAAE,OAAO,KAAK,CAAC;YAC3C,OAAO,CAAC,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC7C,CAAC;KACF;IACD,0BAA0B;IAC1B;QACE,EAAE,EAAE,eAAe;QACnB,IAAI,EAAE,2BAA2B;QACjC,WAAW,EAAE,oDAAoD;QACjE,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YACf,MAAM,OAAO,GACX,IAAI,CAAC,IAAI,KAAK,SAAS;gBACrB,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,IAAI,EAAE,CAAC;gBAClD,CAAC,CAAC,IAAI,CAAC,IAAI,IAAI,EAAE,CAAC;YACtB,OAAO,8CAA8C,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACtE,CAAC;KACF;IACD,qBAAqB;IACrB;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,wBAAwB;QAC9B,WAAW,EAAE,kDAAkD;QAC/D,QAAQ,EAAE,UAAU;QACpB,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;YACf,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU,IAAI,CAAC,IAAI,CAAC,IAAI;gBAAE,OAAO,KAAK,CAAC;YACzD,MAAM,WAAW,GAAG,+CAA+C,CAAC;YACpE,MAAM,iBAAiB,GAAG,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACrD,MAAM,WAAW,GAAG,+BAA+B,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACpE,OAAO,iBAAiB,IAAI,WAAW,CAAC;QAC1C,CAAC;KACF;CACF,CAAC;AAEF,MAAM,OAAO,cAAc;IACjB,MAAM,CAA6B;IACnC,iBAAiB,CAAoB;IACrC,mBAAmB,CAAsB;IACzC,YAAY,CAAe;IAEnC,YAAY,SAAqC,EAAE;QACjD,IAAI,CAAC,MAAM,GAAG;YACZ,OAAO,EAAE,KAAK;YACd,QAAQ,EAAE,qBAAqB;YAC/B,qBAAqB,EAAE,IAAI;YAC3B,QAAQ,EAAE,IAAI;YACd,SAAS,EAAE,IAAI;YACf,GAAG,MAAM;SACV,CAAC;QACF,IAAI,CAAC,iBAAiB,GAAG,IAAI,iBAAiB,CAC5C,IAAI,CAAC,MAAM,CAAC,QAAQ,IAAI,qBAAqB,CAC9C,CAAC;QACF,IAAI,CAAC,mBAAmB,GAAG,IAAI,mBAAmB,EAAE,CAAC;QACrD,IAAI,CAAC,YAAY,GAAG,IAAI,YAAY,EAAE,CAAC;IACzC,CAAC;IAED;;OAEG;IACH,sBAAsB,CAAC,MAItB;QACC,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,GAAG,MAAM,CAAC;QAClD,MAAM,YAAY,GAAG,IAAI,CAAC,MAAM,CAAC,SAAS;YACxC,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,qBAAqB,CAAC,EAAE,OAAO,EAAE,SAAS,EAAE,CAAC;YACjE,CAAC,CAAC,EAAE,CAAC;QAEP,OAAO;;;;;;;;;;;+BAWoB,IAAI,CAAC,SAAS,CACvC,oBAAoB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,EACzC,IAAI,EACJ,CAAC,CACF;;iCAE4B,IAAI,CAAC,SAAS,CAAC,sBAAsB,EAAE,IAAI,EAAE,CAAC,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;uBA2GzD,OAAO;;;;yBAIL,SAAS,CAAC,OAAO,CAAC,KAAK,EAAE,MAAM,CAAC;;;;;;;;0CAQf,OAAO;;;;;;yBAMxB,IAAI,CAAC,SAAS,CAAC,UAAU,EAAE,IAAI,EAAE,CAAC,CAAC;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;IA+CxD,YAAY;;CAEf,CAAC;IACA,CAAC;IAED;;OAEG;IACH,aAAa,CACX,MAAoB,EACpB,iBAAwB,EAAE;QAE1B,MAAM,eAAe,GAA4B,EAAE,CAAC;QACpD,MAAM,kBAAkB,GAAG,IAAI,CAAC,mBAAmB,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QACnE,MAAM,UAAU,GAAoB,EAAE,CAAC;QAEvC,wCAAwC;QACxC,MAAM,eAAe,GAAG,IAAI,GAAG,EAAkB,CAAC,CAAC,2BAA2B;QAC9E,IAAI,WAAW,GAAG,KAAK,CAAC;QAExB,KAAK,MAAM,IAAI,IAAI,MAAM,EAAE,CAAC;YAC1B,IAAI,IAAI,CAAC,IAAI,KAAK,SAAS,EAAE,CAAC;gBAC5B,MAAM,GAAG,GAAG;oBACV,IAAI,EAAE,SAAS;oBACf,GAAG,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG;oBAClB,MAAM,EAAE,IAAI,CAAC,IAAI,CAAC,MAAM;oBACxB,OAAO,EAAE,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,EAAE;oBAChC,SAAS,EAAE,IAAI,CAAC,SAAS;iBACJ,CAAC;gBAExB,IAAI,CAAC,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC5D,WAAW,GAAG,IAAI,CAAC;gBACrB,CAAC;gBAED,qFAAqF;gBACrF,MAAM,cAAc,GAAG,IAAI,CAAC,iBAAiB,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;gBAC5D,eAAe,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;gBAErC,2CAA2C;gBAC3C,IAAI,cAAc,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;oBACrC,UAAU,CAAC,IAAI,CAAC;wBACd,OAAO,EAAE;4BACP,EAAE,EAAE,wBAAwB;4BAC5B,IAAI,EAAE,cAAc;4BACpB,WAAW,EAAE,cAAc,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC;4BAC9C,QAAQ,EAAE,UAAU;4BACpB,MAAM,EAAE,GAAG,EAAE,CAAC,IAAI;yBACnB;wBACD,OAAO,EAAE,GAAG;wBACZ,SAAS,EAAE,IAAI,CAAC,SAAS;wBACzB,QAAQ,EAAE,cAAc,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC;qBAC5C,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;iBAAM,IAAI,IAAI,CAAC,IAAI,KAAK,UAAU,EAAE,CAAC;gBACpC,MAAM,GAAG,GAAG;oBACV,IAAI,EAAE,UAAU;oBAChB,GAAG,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG;oBAClB,MAAM,EAAE,IAAI,CAAC,IAAI,CAAC,MAAM;oBACxB,OAAO,EAAE,EAAE;oBACX,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,WAAW;oBAC3B,SAAS,EAAE,IAAI,CAAC,SAAS;iBACH,CAAC;gBAEzB,MAAM,cAAc,GAAG,IAAI,CAAC,iBAAiB,CAAC,QAAQ,CACpD;oBACE,IAAI,EAAE,SAAS;oBACf,GAAG,EAAE,GAAG,CAAC,GAAG;oBACZ,MAAM,EAAE,KAAK;oBACb,OAAO,EAAE,EAAE;oBACX,SAAS,EAAE,CAAC;iBACb,EACD,GAAG,CACJ,CAAC;gBACF,eAAe,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;gBAErC,IAAI,cAAc,CAAC,OAAO,KAAK,KAAK,EAAE,CAAC;oBACrC,UAAU,CAAC,IAAI,CAAC;wBACd,OAAO,EAAE;4BACP,EAAE,EAAE,4BAA4B;4BAChC,IAAI,EAAE,eAAe;4BACrB,WAAW,EAAE,cAAc,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC;4BAC9C,QAAQ,EAAE,UAAU;4BACpB,MAAM,EAAE,GAAG,EAAE,CAAC,IAAI;yBACnB;wBACD,QAAQ,EAAE,GAAG;wBACb,SAAS,EAAE,IAAI,CAAC,SAAS;wBACzB,QAAQ,EAAE,cAAc,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC;qBAC5C,CAAC,CAAC;gBACL,CAAC;gBAED,oCAAoC;gBACpC,4FAA4F;gBAC5F,IACE,WAAW;oBACX,eAAe,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC;oBAC5B,eAAe,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,GAAG,CAAC,IAAI,EACzC,CAAC;oBACD,8BAA8B;oBAC9B,IACE,CAAC,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,SAAS,CAAC;wBAC5B,CAAC,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC;wBACxB,CAAC,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,OAAO,CAAC,EAC1B,CAAC;wBACD,MAAM,OAAO,GAA0B;4BACrC,OAAO,EAAE,QAAQ;4BACjB,KAAK,EAAE,EAAE;4BACT,OAAO,EAAE;gCACP,YAAY,GAAG,CAAC,GAAG,0DAA0D;6BAC9E;yBACF,CAAC;wBACF,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;oBAChC,CAAC;gBACH,CAAC;gBACD,eAAe,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC;YAC/C,CAAC;QACH,CAAC;QAED,uBAAuB;QACvB,IAAI,KAAK,GAAG,GAAG,CAAC;QAChB,KAAK,IAAI,UAAU,CAAC,MAAM,GAAG,EAAE,CAAC;QAChC,KAAK,IAAI,kBAAkB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,MAAM,GAAG,EAAE,CAAC;QAChE,KAAK,IAAI,cAAc,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,sCAAsC;QAE3E,gDAAgD;QAChD,MAAM,UAAU,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,KAAK,KAAK,CAAC,CAAC;QACtE,KAAK,IAAI,UAAU,CAAC,MAAM,GAAG,EAAE,CAAC;QAEhC,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;QAE3B,MAAM,OAAO,GAAG,KAAK,GAAG,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK,GAAG,EAAE,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,MAAM,CAAC;QAEzE,OAAO;YACL,OAAO;YACP,KAAK;YACL,UAAU;YACV,MAAM;YACN,eAAe;YACf,mBAAmB,EAAE,kBAAkB;YACvC,cAAc;YACd,OAAO,EAAE;gBACP,aAAa,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,SAAS,CAAC,CAAC,MAAM;gBAChE,YAAY,EAAE,UAAU,CAAC,MAAM,GAAG,UAAU,CAAC,MAAM;gBACnD,YAAY,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,MAAM;gBAC9D,cAAc,EACZ,UAAU,CAAC,MAAM;oBACjB,UAAU,CAAC,MAAM;oBACjB,kBAAkB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,MAAM;oBACjD,cAAc,CAAC,MAAM;gBACvB,QAAQ,EAAE,kBAAkB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,MAAM;aAC5D;YACD,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,QAAQ,EAAE,CAAC;SACZ,CAAC;IACJ,CAAC;IAED,cAAc,CAAC,MAAyB;QACtC,2GAA2G;QAC3G,OAAO,kCAAkC,MAAM,CAAC,KAAK,kBAAkB,MAAM,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC;IACxG,CAAC;IAED,yBAAyB;QACvB,OAAO;YACL,uBAAuB;YACvB;gBACE,qBAAqB;gBACrB,wBAAwB;gBACxB,uBAAuB;gBACvB,8BAA8B;aAC/B;YACD,sBAAsB;YACtB,CAAC,sBAAsB,EAAE,+BAA+B,CAAC;YACzD,sBAAsB;YACtB,CAAC,iBAAiB,EAAE,oBAAoB,EAAE,6BAA6B,CAAC;YACxE,2BAA2B;YAC3B,CAAC,8BAA8B,EAAE,gBAAgB,CAAC;YAClD,8DAA8D;YAC9D;gBACE,qBAAqB;gBACrB,8BAA8B;gBAC9B,yBAAyB;gBACzB,8BAA8B;aAC/B;SACF,CAAC;IACJ,CAAC;CACF;AAED,MAAM,CAAC,MAAM,cAAc,GAAG,IAAI,cAAc,EAAE,CAAC"}

package/dist/reality-mode/report-generator.d.ts

@@ -0,0 +1,11 @@
+import { RealityModeResult } from "./types";
+export declare class ReportGenerator {
+    generateHtml(result: RealityModeResult): string;
+    private getBrandedChip;
+    private renderDetections;
+    private renderFakeSuccess;
+    private renderTrafficAnalysis;
+    private renderAuthViolations;
+    private renderReplayStep;
+}
+//# sourceMappingURL=report-generator.d.ts.map

package/dist/reality-mode/report-generator.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"report-generator.d.ts","sourceRoot":"","sources":["../../src/reality-mode/report-generator.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,iBAAiB,EAAE,MAAM,SAAS,CAAC;AAE5C,qBAAa,eAAe;IAC1B,YAAY,CAAC,MAAM,EAAE,iBAAiB,GAAG,MAAM;IAmG/C,OAAO,CAAC,cAAc;IAetB,OAAO,CAAC,gBAAgB;IA2BxB,OAAO,CAAC,iBAAiB;IAqBzB,OAAO,CAAC,qBAAqB;IA2B7B,OAAO,CAAC,oBAAoB;IAwB5B,OAAO,CAAC,gBAAgB;CAoCzB"}