hackmyagent 0.11.2 → 0.11.4
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/cli.js +51 -61
- package/dist/cli.js.map +1 -1
- package/dist/hardening/scanner.d.ts.map +1 -1
- package/dist/hardening/scanner.js +107 -112
- package/dist/hardening/scanner.js.map +1 -1
- package/dist/hardening/taxonomy.d.ts.map +1 -1
- package/dist/hardening/taxonomy.js +67 -66
- package/dist/hardening/taxonomy.js.map +1 -1
- package/dist/index.d.ts +1 -1
- package/dist/index.js +1 -1
- package/dist/telemetry/contribute.d.ts +5 -0
- package/dist/telemetry/contribute.d.ts.map +1 -1
- package/dist/telemetry/contribute.js +34 -0
- package/dist/telemetry/contribute.js.map +1 -1
- package/package.json +1 -1
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"taxonomy.d.ts","sourceRoot":"","sources":["../../src/hardening/taxonomy.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;
|
|
1
|
+
{"version":3,"file":"taxonomy.d.ts","sourceRoot":"","sources":["../../src/hardening/taxonomy.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,kBAAkB,CAAC;AA8IxD;;;GAGG;AACH,wBAAgB,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,GAAG,SAAS,CAElE;AAED;;;GAGG;AACH,wBAAgB,kBAAkB,CAAC,QAAQ,EAAE,eAAe,EAAE,GAAG,IAAI,CAOpE"}
|
|
@@ -14,7 +14,7 @@ const TAXONOMY_MAP = {
|
|
|
14
14
|
'SOUL-TH-002': 'SOUL-POISON',
|
|
15
15
|
'SOUL-TH-003': 'SOUL-DRIFT',
|
|
16
16
|
'SOUL-TH-004': 'SOUL-DRIFT',
|
|
17
|
-
'SOUL-TH-005': 'SOUL-
|
|
17
|
+
'SOUL-TH-005': 'SOUL-IMPERSONATE',
|
|
18
18
|
'SOUL-CB-001': 'SOUL-BOUNDARY',
|
|
19
19
|
'SOUL-CB-002': 'SOUL-BOUNDARY',
|
|
20
20
|
'SOUL-IH-001': 'SOUL-INJECT',
|
|
@@ -25,57 +25,57 @@ const TAXONOMY_MAP = {
|
|
|
25
25
|
'PROMPT-004': 'SOUL-INJECT',
|
|
26
26
|
'SOUL-DH-001': 'SOUL-DELEGATE',
|
|
27
27
|
'SOUL-DH-002': 'SOUL-DELEGATE',
|
|
28
|
-
'SOUL-HB-001': 'SOUL
|
|
29
|
-
'SOUL-HB-002': 'SOUL
|
|
30
|
-
'SOUL-AS-001': 'SOUL-
|
|
31
|
-
'SOUL-AS-002': 'SOUL-
|
|
32
|
-
'SOUL-HT-001': 'SOUL-
|
|
33
|
-
'SOUL-HT-002': 'SOUL-
|
|
34
|
-
'SOUL-HO-001': 'SOUL-
|
|
35
|
-
'SOUL-HO-002': 'SOUL-
|
|
28
|
+
'SOUL-HB-001': 'PHANTOM-SOUL',
|
|
29
|
+
'SOUL-HB-002': 'PHANTOM-SOUL',
|
|
30
|
+
'SOUL-AS-001': 'SOUL-FORK',
|
|
31
|
+
'SOUL-AS-002': 'SOUL-FORK',
|
|
32
|
+
'SOUL-HT-001': 'SOUL-FORK',
|
|
33
|
+
'SOUL-HT-002': 'SOUL-FORK',
|
|
34
|
+
'SOUL-HO-001': 'SOUL-HIJACK',
|
|
35
|
+
'SOUL-HO-002': 'SOUL-HIJACK',
|
|
36
36
|
// Harm avoidance
|
|
37
|
-
'SOUL-HV-001': 'HV-
|
|
38
|
-
'SOUL-HV-002': 'HV-
|
|
39
|
-
'SOUL-HV-003': 'HV-
|
|
40
|
-
'SOUL-HV-004': 'HV-
|
|
37
|
+
'SOUL-HV-001': 'SOUL-HV-001',
|
|
38
|
+
'SOUL-HV-002': 'SOUL-HV-002',
|
|
39
|
+
'SOUL-HV-003': 'SOUL-HV-003',
|
|
40
|
+
'SOUL-HV-004': 'SOUL-HV-004',
|
|
41
41
|
// Credential exposure
|
|
42
|
-
'CRED-001': '
|
|
43
|
-
'CRED-002': '
|
|
44
|
-
'CRED-003': '
|
|
45
|
-
'CRED-004': '
|
|
42
|
+
'CRED-001': 'RETROACTIVE-PRIV',
|
|
43
|
+
'CRED-002': 'RETROACTIVE-PRIV',
|
|
44
|
+
'CRED-003': 'RETROACTIVE-PRIV',
|
|
45
|
+
'CRED-004': 'RETROACTIVE-PRIV',
|
|
46
46
|
// Unicode steganography
|
|
47
|
-
'UNICODE-STEGO-001': 'STEGO
|
|
48
|
-
'UNICODE-STEGO-002': 'STEGO
|
|
49
|
-
'UNICODE-STEGO-003': 'STEGO
|
|
50
|
-
'UNICODE-STEGO-004': 'STEGO
|
|
51
|
-
'UNICODE-STEGO-005': 'STEGO
|
|
47
|
+
'UNICODE-STEGO-001': 'UNICODE-STEGO',
|
|
48
|
+
'UNICODE-STEGO-002': 'UNICODE-STEGO',
|
|
49
|
+
'UNICODE-STEGO-003': 'UNICODE-STEGO',
|
|
50
|
+
'UNICODE-STEGO-004': 'UNICODE-STEGO',
|
|
51
|
+
'UNICODE-STEGO-005': 'UNICODE-STEGO',
|
|
52
52
|
// OpenClaw persistence
|
|
53
|
-
'HEARTBEAT-001': '
|
|
54
|
-
'HEARTBEAT-002': '
|
|
55
|
-
'HEARTBEAT-003': '
|
|
56
|
-
'HEARTBEAT-004': '
|
|
57
|
-
'HEARTBEAT-005': '
|
|
58
|
-
'HEARTBEAT-006': '
|
|
59
|
-
'SKILL-002': '
|
|
60
|
-
'SKILL-003': '
|
|
53
|
+
'HEARTBEAT-001': 'HEARTBEAT-RCE',
|
|
54
|
+
'HEARTBEAT-002': 'HEARTBEAT-RCE',
|
|
55
|
+
'HEARTBEAT-003': 'HEARTBEAT-RCE',
|
|
56
|
+
'HEARTBEAT-004': 'HEARTBEAT-RCE',
|
|
57
|
+
'HEARTBEAT-005': 'HEARTBEAT-RCE',
|
|
58
|
+
'HEARTBEAT-006': 'HEARTBEAT-RCE',
|
|
59
|
+
'SKILL-002': 'HEARTBEAT-RCE',
|
|
60
|
+
'SKILL-003': 'HEARTBEAT-RCE',
|
|
61
61
|
// Skill exfiltration
|
|
62
|
-
'SKILL-006': '
|
|
63
|
-
'NET-001': '
|
|
64
|
-
'NET-002': '
|
|
65
|
-
'NET-003': '
|
|
62
|
+
'SKILL-006': 'SKILL-EXFIL',
|
|
63
|
+
'NET-001': 'SKILL-EXFIL',
|
|
64
|
+
'NET-002': 'SKILL-EXFIL',
|
|
65
|
+
'NET-003': 'SKILL-EXFIL',
|
|
66
66
|
// Supply chain
|
|
67
|
-
'SUPPLY-001': 'ORG-SKILL-
|
|
68
|
-
'SUPPLY-002': 'ORG-SKILL-
|
|
69
|
-
'SUPPLY-003': 'ORG-SKILL-
|
|
70
|
-
'SUPPLY-004': 'ORG-SKILL-
|
|
71
|
-
'SUPPLY-005': 'ORG-SKILL-
|
|
72
|
-
'SUPPLY-006': 'ORG-SKILL-
|
|
73
|
-
'SUPPLY-007': 'ORG-SKILL-
|
|
74
|
-
'SUPPLY-008': 'ORG-SKILL-
|
|
75
|
-
'DEP-001': 'ORG-SKILL-
|
|
76
|
-
'DEP-002': 'ORG-SKILL-
|
|
77
|
-
'DEP-003': 'ORG-SKILL-
|
|
78
|
-
'DEP-004': 'ORG-SKILL-
|
|
67
|
+
'SUPPLY-001': 'ORG-SKILL-SPREAD',
|
|
68
|
+
'SUPPLY-002': 'ORG-SKILL-SPREAD',
|
|
69
|
+
'SUPPLY-003': 'ORG-SKILL-SPREAD',
|
|
70
|
+
'SUPPLY-004': 'ORG-SKILL-SPREAD',
|
|
71
|
+
'SUPPLY-005': 'ORG-SKILL-SPREAD',
|
|
72
|
+
'SUPPLY-006': 'ORG-SKILL-SPREAD',
|
|
73
|
+
'SUPPLY-007': 'ORG-SKILL-SPREAD',
|
|
74
|
+
'SUPPLY-008': 'ORG-SKILL-SPREAD',
|
|
75
|
+
'DEP-001': 'ORG-SKILL-SPREAD',
|
|
76
|
+
'DEP-002': 'ORG-SKILL-SPREAD',
|
|
77
|
+
'DEP-003': 'ORG-SKILL-SPREAD',
|
|
78
|
+
'DEP-004': 'ORG-SKILL-SPREAD',
|
|
79
79
|
// Memory/context
|
|
80
80
|
'MEM-001': 'MEM-POISON',
|
|
81
81
|
'MEM-002': 'MEM-POISON',
|
|
@@ -88,28 +88,29 @@ const TAXONOMY_MAP = {
|
|
|
88
88
|
'RAG-003': 'RAG-POISON',
|
|
89
89
|
'RAG-004': 'RAG-POISON',
|
|
90
90
|
// Identity spoofing
|
|
91
|
-
'AIM-001': '
|
|
92
|
-
'AIM-002': '
|
|
93
|
-
'AIM-003': '
|
|
91
|
+
'AIM-001': 'AGENT-IMPERSONATE',
|
|
92
|
+
'AIM-002': 'AGENT-IMPERSONATE',
|
|
93
|
+
'AIM-003': 'AGENT-IMPERSONATE',
|
|
94
94
|
// Agent DNA forgery
|
|
95
|
-
'DNA-001': '
|
|
96
|
-
'DNA-002': '
|
|
97
|
-
'DNA-003': '
|
|
95
|
+
'DNA-001': 'BEHAVIORAL-IMPERSONATE',
|
|
96
|
+
'DNA-002': 'BEHAVIORAL-IMPERSONATE',
|
|
97
|
+
'DNA-003': 'BEHAVIORAL-IMPERSONATE',
|
|
98
98
|
// Skill memory
|
|
99
|
-
'SKILL-MEM-001': 'SKILL-MEM',
|
|
100
|
-
// Adversarial skill
|
|
101
|
-
'
|
|
102
|
-
'SKILL-
|
|
103
|
-
'SKILL-
|
|
104
|
-
'SKILL-
|
|
105
|
-
'SKILL-
|
|
106
|
-
'SKILL-
|
|
107
|
-
'SKILL-
|
|
108
|
-
'SKILL-
|
|
109
|
-
'SKILL-
|
|
110
|
-
'SKILL-
|
|
111
|
-
'SKILL-
|
|
112
|
-
'
|
|
99
|
+
'SKILL-MEM-001': 'SKILL-MEM-AMP',
|
|
100
|
+
// Adversarial skill / frontmatter injection
|
|
101
|
+
'ASKILL-002': 'SKILL-FRONTMATTER',
|
|
102
|
+
'SKILL-001': 'SKILL-FRONTMATTER',
|
|
103
|
+
'SKILL-004': 'SKILL-FRONTMATTER',
|
|
104
|
+
'SKILL-005': 'SKILL-FRONTMATTER',
|
|
105
|
+
'SKILL-007': 'SKILL-FRONTMATTER',
|
|
106
|
+
'SKILL-008': 'SKILL-FRONTMATTER',
|
|
107
|
+
'SKILL-009': 'SKILL-FRONTMATTER',
|
|
108
|
+
'SKILL-010': 'SKILL-FRONTMATTER',
|
|
109
|
+
'SKILL-011': 'SKILL-FRONTMATTER',
|
|
110
|
+
'SKILL-012': 'SKILL-FRONTMATTER',
|
|
111
|
+
'SKILL-018': 'SKILL-FRONTMATTER',
|
|
112
|
+
'SKILL-019': 'SKILL-FRONTMATTER',
|
|
113
|
+
'HEARTBEAT-007': 'SKILL-FRONTMATTER',
|
|
113
114
|
// Gateway/config
|
|
114
115
|
'GATEWAY-001': 'GATEWAY-EXPLOIT',
|
|
115
116
|
'GATEWAY-002': 'GATEWAY-EXPLOIT',
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"taxonomy.js","sourceRoot":"","sources":["../../src/hardening/taxonomy.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;
|
|
1
|
+
{"version":3,"file":"taxonomy.js","sourceRoot":"","sources":["../../src/hardening/taxonomy.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;AAoJH,wCAEC;AAMD,gDAOC;AA/JD,2EAA2E;AAC3E,MAAM,YAAY,GAA2B;IAC3C,cAAc;IACd,aAAa,EAAE,aAAa;IAC5B,aAAa,EAAE,aAAa;IAC5B,aAAa,EAAE,YAAY;IAC3B,aAAa,EAAE,YAAY;IAC3B,aAAa,EAAE,kBAAkB;IACjC,aAAa,EAAE,eAAe;IAC9B,aAAa,EAAE,eAAe;IAC9B,aAAa,EAAE,aAAa;IAC5B,aAAa,EAAE,aAAa;IAC5B,YAAY,EAAE,aAAa;IAC3B,YAAY,EAAE,aAAa;IAC3B,YAAY,EAAE,aAAa;IAC3B,YAAY,EAAE,aAAa;IAC3B,aAAa,EAAE,eAAe;IAC9B,aAAa,EAAE,eAAe;IAC9B,aAAa,EAAE,cAAc;IAC7B,aAAa,EAAE,cAAc;IAC7B,aAAa,EAAE,WAAW;IAC1B,aAAa,EAAE,WAAW;IAC1B,aAAa,EAAE,WAAW;IAC1B,aAAa,EAAE,WAAW;IAC1B,aAAa,EAAE,aAAa;IAC5B,aAAa,EAAE,aAAa;IAE5B,iBAAiB;IACjB,aAAa,EAAE,aAAa;IAC5B,aAAa,EAAE,aAAa;IAC5B,aAAa,EAAE,aAAa;IAC5B,aAAa,EAAE,aAAa;IAE5B,sBAAsB;IACtB,UAAU,EAAE,kBAAkB;IAC9B,UAAU,EAAE,kBAAkB;IAC9B,UAAU,EAAE,kBAAkB;IAC9B,UAAU,EAAE,kBAAkB;IAE9B,wBAAwB;IACxB,mBAAmB,EAAE,eAAe;IACpC,mBAAmB,EAAE,eAAe;IACpC,mBAAmB,EAAE,eAAe;IACpC,mBAAmB,EAAE,eAAe;IACpC,mBAAmB,EAAE,eAAe;IAEpC,uBAAuB;IACvB,eAAe,EAAE,eAAe;IAChC,eAAe,EAAE,eAAe;IAChC,eAAe,EAAE,eAAe;IAChC,eAAe,EAAE,eAAe;IAChC,eAAe,EAAE,eAAe;IAChC,eAAe,EAAE,eAAe;IAChC,WAAW,EAAE,eAAe;IAC5B,WAAW,EAAE,eAAe;IAE5B,qBAAqB;IACrB,WAAW,EAAE,aAAa;IAC1B,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IAExB,eAAe;IACf,YAAY,EAAE,kBAAkB;IAChC,YAAY,EAAE,kBAAkB;IAChC,YAAY,EAAE,kBAAkB;IAChC,YAAY,EAAE,kBAAkB;IAChC,YAAY,EAAE,kBAAkB;IAChC,YAAY,EAAE,kBAAkB;IAChC,YAAY,EAAE,kBAAkB;IAChC,YAAY,EAAE,kBAAkB;IAChC,SAAS,EAAE,kBAAkB;IAC7B,SAAS,EAAE,kBAAkB;IAC7B,SAAS,EAAE,kBAAkB;IAC7B,SAAS,EAAE,kBAAkB;IAE7B,iBAAiB;IACjB,SAAS,EAAE,YAAY;IACvB,SAAS,EAAE,YAAY;IACvB,SAAS,EAAE,YAAY;IACvB,SAAS,EAAE,YAAY;IACvB,SAAS,EAAE,YAAY;IAEvB,gBAAgB;IAChB,SAAS,EAAE,YAAY;IACvB,SAAS,EAAE,YAAY;IACvB,SAAS,EAAE,YAAY;IACvB,SAAS,EAAE,YAAY;IAEvB,oBAAoB;IACpB,SAAS,EAAE,mBAAmB;IAC9B,SAAS,EAAE,mBAAmB;IAC9B,SAAS,EAAE,mBAAmB;IAE9B,oBAAoB;IACpB,SAAS,EAAE,wBAAwB;IACnC,SAAS,EAAE,wBAAwB;IACnC,SAAS,EAAE,wBAAwB;IAEnC,eAAe;IACf,eAAe,EAAE,eAAe;IAEhC,4CAA4C;IAC5C,YAAY,EAAE,mBAAmB;IACjC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,WAAW,EAAE,mBAAmB;IAChC,eAAe,EAAE,mBAAmB;IAEpC,iBAAiB;IACjB,aAAa,EAAE,iBAAiB;IAChC,aAAa,EAAE,iBAAiB;IAChC,aAAa,EAAE,iBAAiB;IAChC,aAAa,EAAE,iBAAiB;IAChC,aAAa,EAAE,iBAAiB;IAChC,aAAa,EAAE,iBAAiB;IAChC,aAAa,EAAE,iBAAiB;IAChC,aAAa,EAAE,iBAAiB;IAEhC,mBAAmB;IACnB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;IACxB,SAAS,EAAE,aAAa;CACzB,CAAC;AAEF;;;GAGG;AACH,SAAgB,cAAc,CAAC,OAAe;IAC5C,OAAO,YAAY,CAAC,OAAO,CAAC,CAAC;AAC/B,CAAC;AAED;;;GAGG;AACH,SAAgB,kBAAkB,CAAC,QAA2B;IAC5D,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,WAAW,GAAG,cAAc,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QACpD,IAAI,WAAW,EAAE,CAAC;YAChB,OAAO,CAAC,WAAW,GAAG,WAAW,CAAC;QACpC,CAAC;IACH,CAAC;AACH,CAAC"}
|
package/dist/index.d.ts
CHANGED
|
@@ -2,7 +2,7 @@
|
|
|
2
2
|
* hackmyagent — Find it. Break it. Fix it.
|
|
3
3
|
* Unified security toolkit for AI agents.
|
|
4
4
|
*/
|
|
5
|
-
export declare const VERSION = "0.11.
|
|
5
|
+
export declare const VERSION = "0.11.4";
|
|
6
6
|
export { checkSkill, parseSkillIdentifier, analyzePermissions, analyzeSkillDependencies, buildDependencyGraph, detectCircularDeps, detectPhantomDeps, detectUnpinnedDeps, parseSkillFrontmatter, } from './checker';
|
|
7
7
|
export type { CheckResult, CheckOptions, PublisherInfo, PermissionInfo, RevocationInfo, RiskLevel, SkillIdentifier, PermissionAnalysis, SkillMetadata, DependencyGraph, } from './checker';
|
|
8
8
|
export { HardeningScanner } from './hardening';
|
package/dist/index.js
CHANGED
|
@@ -7,7 +7,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
7
7
|
exports.buildPublishPayload = exports.signPayload = exports.readAgentKeypair = exports.buildCommunityAttackReport = exports.buildCommunityReport = exports.buildAttackReport = exports.buildScanReport = exports.RegistryClient = exports.isValidBenchmark = exports.AVAILABLE_BENCHMARKS = exports.calculateRating = exports.getCheckIdsForLevel = exports.getControlsForCategory = exports.getControlsForLevel = exports.OASB_1_NAME = exports.OASB_1_VERSION = exports.OASB_1_CATEGORIES = exports.TOOL_SHADOW_PAYLOADS = exports.SUPPLY_CHAIN_PAYLOADS = exports.CONTEXT_WINDOW_PAYLOADS = exports.MEMORY_WEAPONIZATION_PAYLOADS = exports.A2A_ATTACK_PAYLOADS = exports.MCP_EXPLOITATION_PAYLOADS = exports.shouldFail = exports.parseCustomPayloads = exports.getPayloadsByIntensity = exports.getPayloadsByCategory = exports.getPayloadById = exports.getPayloads = exports.PAYLOAD_STATS = exports.ALL_PAYLOADS = exports.ATTACK_CATEGORIES = exports.AttackScanner = exports.validateCapabilities = exports.inferActualCapabilities = exports.parseSkillDeclaredCapabilities = exports.isLikelyFalsePositive = exports.classifySkillSection = exports.ExternalScanner = exports.HardeningScanner = exports.parseSkillFrontmatter = exports.detectUnpinnedDeps = exports.detectPhantomDeps = exports.detectCircularDeps = exports.buildDependencyGraph = exports.analyzeSkillDependencies = exports.analyzePermissions = exports.parseSkillIdentifier = exports.checkSkill = exports.VERSION = void 0;
|
|
8
8
|
exports.Scanner = exports.showContributePrompt = exports.saveContributeChoice = exports.incrementScanCount = exports.shouldPromptContribute = exports.isContributeEnabled = exports.submitContribution = exports.buildContributionPayloadFromDir = exports.buildContributionPayload = exports.generateContributorToken = exports.DOMAIN_TEMPLATES = exports.PROFILE_DOMAINS = exports.GOVERNANCE_FILES = exports.DOMAIN_ORDER = exports.CONTROL_DEFS = exports.SoulScanner = exports.parseDeclaredCapabilities = exports.createCapabilityMonitor = exports.SkillCapabilityMonitor = exports.AgentRuntimeProtection = exports.createSkillguardPlugin = exports.createSigncryptPlugin = exports.createCredVaultPlugin = exports.clearRegistry = exports.listPlugins = exports.getPlugin = exports.registerPlugin = exports.buildDeepScanResult = exports.CostEstimator = exports.SEMANTIC_OASB_MAPPINGS = exports.toSecurityFindings = exports.toSecurityFinding = exports.BudgetTracker = exports.LLMCache = exports.AnthropicClient = exports.LLMAnalyzer = exports.PermissionModelAnalyzer = exports.InstructionAnalyzer = exports.McpConfigAnalyzer = exports.CredentialContextAnalyzer = exports.StructuralAnalyzer = exports.formatPublishOutput = exports.publishScanResults = void 0;
|
|
9
9
|
exports.createScanner = createScanner;
|
|
10
|
-
exports.VERSION = '0.11.
|
|
10
|
+
exports.VERSION = '0.11.4';
|
|
11
11
|
// Checker module
|
|
12
12
|
var checker_1 = require("./checker");
|
|
13
13
|
Object.defineProperty(exports, "checkSkill", { enumerable: true, get: function () { return checker_1.checkSkill; } });
|
|
@@ -50,6 +50,11 @@ export declare function buildContributionPayload(packageName: string, packageVer
|
|
|
50
50
|
* Convenience wrapper around buildContributionPayload for CLI use.
|
|
51
51
|
*/
|
|
52
52
|
export declare function buildContributionPayloadFromDir(packageName: string, directory: string, findings: SecurityFinding[]): ContributionPayload;
|
|
53
|
+
/**
|
|
54
|
+
* Build a human-readable summary of what would be contributed.
|
|
55
|
+
* Used by --ci mode to show transparency without prompting.
|
|
56
|
+
*/
|
|
57
|
+
export declare function buildContributionSummary(payload: ContributionPayload): string;
|
|
53
58
|
/**
|
|
54
59
|
* Submit an anonymized contribution payload to the OpenA2A Registry.
|
|
55
60
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"contribute.d.ts","sourceRoot":"","sources":["../../src/telemetry/contribute.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAOH,OAAO,KAAK,EAAE,eAAe,EAAY,MAAM,cAAc,CAAC;AAE9D,oFAAoF;AACpF,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC;IACxB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,mDAAmD;AACnD,MAAM,WAAW,mBAAmB;IAClC,gBAAgB,EAAE,MAAM,CAAC;IACzB,WAAW,EAAE,MAAM,CAAC;IACpB,cAAc,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,KAAK,GAAG,MAAM,GAAG,QAAQ,CAAC;IACrC,aAAa,EAAE,MAAM,CAAC;IACtB,QAAQ,EAAE,mBAAmB,EAAE,CAAC;IAChC,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,OAAO,GAAG,OAAO,GAAG,SAAS,CAAC;CACvC;AAED,2CAA2C;AAC3C,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAUD;;;;;GAKG;AACH,wBAAgB,wBAAwB,IAAI,MAAM,CAejD;AA4BD;;;;;;GAMG;AACH,wBAAgB,wBAAwB,CACtC,WAAW,EAAE,MAAM,EACnB,cAAc,EAAE,MAAM,EACtB,SAAS,EAAE,KAAK,GAAG,MAAM,GAAG,QAAQ,EACpC,QAAQ,EAAE,eAAe,EAAE,GAC1B,mBAAmB,CAiBrB;AAED;;;;;GAKG;AACH,wBAAgB,+BAA+B,CAC7C,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,eAAe,EAAE,GAC1B,mBAAmB,CAsBrB;AAED;;;;;GAKG;AACH,wBAAsB,kBAAkB,CACtC,OAAO,EAAE,mBAAmB,EAC5B,WAAW,CAAC,EAAE,MAAM,GACnB,OAAO,CAAC,kBAAkB,CAAC,CAyC7B"}
|
|
1
|
+
{"version":3,"file":"contribute.d.ts","sourceRoot":"","sources":["../../src/telemetry/contribute.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAOH,OAAO,KAAK,EAAE,eAAe,EAAY,MAAM,cAAc,CAAC;AAE9D,oFAAoF;AACpF,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,MAAM,CAAC;IAChB,MAAM,EAAE,MAAM,GAAG,MAAM,CAAC;IACxB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,mDAAmD;AACnD,MAAM,WAAW,mBAAmB;IAClC,gBAAgB,EAAE,MAAM,CAAC;IACzB,WAAW,EAAE,MAAM,CAAC;IACpB,cAAc,EAAE,MAAM,CAAC;IACvB,SAAS,EAAE,KAAK,GAAG,MAAM,GAAG,QAAQ,CAAC;IACrC,aAAa,EAAE,MAAM,CAAC;IACtB,QAAQ,EAAE,mBAAmB,EAAE,CAAC;IAChC,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,OAAO,GAAG,OAAO,GAAG,SAAS,CAAC;CACvC;AAED,2CAA2C;AAC3C,MAAM,WAAW,kBAAkB;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAUD;;;;;GAKG;AACH,wBAAgB,wBAAwB,IAAI,MAAM,CAejD;AA4BD;;;;;;GAMG;AACH,wBAAgB,wBAAwB,CACtC,WAAW,EAAE,MAAM,EACnB,cAAc,EAAE,MAAM,EACtB,SAAS,EAAE,KAAK,GAAG,MAAM,GAAG,QAAQ,EACpC,QAAQ,EAAE,eAAe,EAAE,GAC1B,mBAAmB,CAiBrB;AAED;;;;;GAKG;AACH,wBAAgB,+BAA+B,CAC7C,WAAW,EAAE,MAAM,EACnB,SAAS,EAAE,MAAM,EACjB,QAAQ,EAAE,eAAe,EAAE,GAC1B,mBAAmB,CAsBrB;AAED;;;GAGG;AACH,wBAAgB,wBAAwB,CAAC,OAAO,EAAE,mBAAmB,GAAG,MAAM,CA+B7E;AAED;;;;;GAKG;AACH,wBAAsB,kBAAkB,CACtC,OAAO,EAAE,mBAAmB,EAC5B,WAAW,CAAC,EAAE,MAAM,GACnB,OAAO,CAAC,kBAAkB,CAAC,CAyC7B"}
|
|
@@ -9,6 +9,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
9
9
|
exports.generateContributorToken = generateContributorToken;
|
|
10
10
|
exports.buildContributionPayload = buildContributionPayload;
|
|
11
11
|
exports.buildContributionPayloadFromDir = buildContributionPayloadFromDir;
|
|
12
|
+
exports.buildContributionSummary = buildContributionSummary;
|
|
12
13
|
exports.submitContribution = submitContribution;
|
|
13
14
|
const crypto_1 = require("crypto");
|
|
14
15
|
const fs_1 = require("fs");
|
|
@@ -122,6 +123,39 @@ function buildContributionPayloadFromDir(packageName, directory, findings) {
|
|
|
122
123
|
}
|
|
123
124
|
return buildContributionPayload(packageName, version, ecosystem, findings);
|
|
124
125
|
}
|
|
126
|
+
/**
|
|
127
|
+
* Build a human-readable summary of what would be contributed.
|
|
128
|
+
* Used by --ci mode to show transparency without prompting.
|
|
129
|
+
*/
|
|
130
|
+
function buildContributionSummary(payload) {
|
|
131
|
+
const passed = payload.findings.filter(f => f.result === 'pass').length;
|
|
132
|
+
const failed = payload.findings.filter(f => f.result === 'fail').length;
|
|
133
|
+
const total = payload.findings.length;
|
|
134
|
+
const severityCounts = {};
|
|
135
|
+
for (const f of payload.findings) {
|
|
136
|
+
if (f.result === 'fail') {
|
|
137
|
+
severityCounts[f.severity] = (severityCounts[f.severity] || 0) + 1;
|
|
138
|
+
}
|
|
139
|
+
}
|
|
140
|
+
const severityLine = Object.entries(severityCounts)
|
|
141
|
+
.sort(([a], [b]) => {
|
|
142
|
+
const order = ['critical', 'high', 'medium', 'low'];
|
|
143
|
+
return order.indexOf(a) - order.indexOf(b);
|
|
144
|
+
})
|
|
145
|
+
.map(([sev, count]) => `${count} ${sev}`)
|
|
146
|
+
.join(', ');
|
|
147
|
+
const lines = [
|
|
148
|
+
`Contribution summary (anonymized):`,
|
|
149
|
+
` Package: ${payload.packageName} ${payload.packageVersion || '(unknown version)'}`,
|
|
150
|
+
` Ecosystem: ${payload.ecosystem}`,
|
|
151
|
+
` Checks: ${total} total, ${passed} passed, ${failed} failed`,
|
|
152
|
+
];
|
|
153
|
+
if (severityLine) {
|
|
154
|
+
lines.push(` Failures by severity: ${severityLine}`);
|
|
155
|
+
}
|
|
156
|
+
lines.push(` Data sent: check IDs, pass/fail, severity (no file paths, no code)`);
|
|
157
|
+
return lines.join('\n');
|
|
158
|
+
}
|
|
125
159
|
/**
|
|
126
160
|
* Submit an anonymized contribution payload to the OpenA2A Registry.
|
|
127
161
|
*
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"contribute.js","sourceRoot":"","sources":["../../src/telemetry/contribute.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;AAiDH,4DAeC;AAmCD,4DAsBC;AAQD,0EA0BC;AAQD,gDA4CC;
|
|
1
|
+
{"version":3,"file":"contribute.js","sourceRoot":"","sources":["../../src/telemetry/contribute.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;AAiDH,4DAeC;AAmCD,4DAsBC;AAQD,0EA0BC;AAMD,4DA+BC;AAQD,gDA4CC;AAlPD,mCAAiD;AACjD,2BAAwE;AACxE,2BAAwD;AACxD,+BAA4B;AAC5B,oCAAmC;AA6BnC;;;GAGG;AACH,SAAS,cAAc;IACrB,OAAO,OAAO,CAAC,GAAG,CAAC,YAAY,IAAI,IAAA,WAAI,EAAC,OAAO,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,UAAU,CAAC,CAAC;AAC/E,CAAC;AAED;;;;;GAKG;AACH,SAAgB,wBAAwB;IACtC,MAAM,IAAI,GAAG,cAAc,EAAE,CAAC;IAC9B,MAAM,QAAQ,GAAG,IAAA,WAAI,EAAC,IAAI,EAAE,kBAAkB,CAAC,CAAC;IAEhD,IAAI,IAAY,CAAC;IACjB,IAAI,IAAA,eAAU,EAAC,QAAQ,CAAC,EAAE,CAAC;QACzB,IAAI,GAAG,IAAA,iBAAY,EAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC;IAChD,CAAC;SAAM,CAAC;QACN,IAAI,GAAG,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QACvC,IAAA,cAAS,EAAC,IAAI,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QACrC,IAAA,kBAAa,EAAC,QAAQ,EAAE,IAAI,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;IACjD,CAAC;IAED,MAAM,KAAK,GAAG,GAAG,IAAA,aAAQ,GAAE,IAAI,IAAA,aAAQ,GAAE,CAAC,QAAQ,IAAI,IAAI,EAAE,CAAC;IAC7D,OAAO,IAAA,mBAAU,EAAC,QAAQ,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;AAC1D,CAAC;AAED;;GAEG;AACH,SAAS,aAAa;IACpB,MAAM,CAAC,GAAG,IAAA,SAAM,GAAE,CAAC;IACnB,IAAI,CAAC,KAAK,QAAQ;QAAE,OAAO,OAAO,CAAC;IACnC,IAAI,CAAC,KAAK,YAAY;QAAE,OAAO,SAAS,CAAC;IACzC,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;GAIG;AACH,SAAS,eAAe,CAAC,SAAiB;IACxC,IAAI,IAAA,eAAU,EAAC,IAAA,WAAI,EAAC,SAAS,EAAE,cAAc,CAAC,CAAC;QAAE,OAAO,KAAK,CAAC;IAC9D,IACE,IAAA,eAAU,EAAC,IAAA,WAAI,EAAC,SAAS,EAAE,UAAU,CAAC,CAAC;QACvC,IAAA,eAAU,EAAC,IAAA,WAAI,EAAC,SAAS,EAAE,gBAAgB,CAAC,CAAC,EAC7C,CAAC;QACD,OAAO,MAAM,CAAC;IAChB,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;;;;;GAMG;AACH,SAAgB,wBAAwB,CACtC,WAAmB,EACnB,cAAsB,EACtB,SAAoC,EACpC,QAA2B;IAE3B,MAAM,oBAAoB,GAA0B,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACvE,OAAO,EAAE,CAAC,CAAC,OAAO;QAClB,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAe,CAAC,CAAC,CAAC,MAAe;QACpD,QAAQ,EAAE,CAAC,CAAC,QAAQ;KACrB,CAAC,CAAC,CAAC;IAEJ,OAAO;QACL,gBAAgB,EAAE,wBAAwB,EAAE;QAC5C,WAAW;QACX,cAAc,EAAE,cAAc,IAAI,EAAE;QACpC,SAAS;QACT,aAAa,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACvC,QAAQ,EAAE,oBAAoB;QAC9B,UAAU,EAAE,eAAO;QACnB,MAAM,EAAE,aAAa,EAAE;KACxB,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,SAAgB,+BAA+B,CAC7C,WAAmB,EACnB,SAAiB,EACjB,QAA2B;IAE3B,IAAI,OAAO,GAAG,EAAE,CAAC;IACjB,MAAM,SAAS,GAAG,eAAe,CAAC,SAAS,CAAC,CAAC;IAE7C,IAAI,CAAC;QACH,IAAI,SAAS,KAAK,KAAK,EAAE,CAAC;YACxB,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,IAAA,iBAAY,EAAC,IAAA,WAAI,EAAC,SAAS,EAAE,cAAc,CAAC,EAAE,OAAO,CAAC,CAAC,CAAC;YAC/E,OAAO,GAAG,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC;QAC9B,CAAC;aAAM,IAAI,SAAS,KAAK,MAAM,EAAE,CAAC;YAChC,gEAAgE;YAChE,MAAM,SAAS,GAAG,IAAA,WAAI,EAAC,SAAS,EAAE,UAAU,CAAC,CAAC;YAC9C,IAAI,IAAA,eAAU,EAAC,SAAS,CAAC,EAAE,CAAC;gBAC1B,MAAM,OAAO,GAAG,IAAA,iBAAY,EAAC,SAAS,EAAE,OAAO,CAAC,CAAC;gBACjD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,gCAAgC,CAAC,CAAC;gBAC9D,IAAI,KAAK;oBAAE,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YAChC,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,8CAA8C;IAChD,CAAC;IAED,OAAO,wBAAwB,CAAC,WAAW,EAAE,OAAO,EAAE,SAAS,EAAE,QAAQ,CAAC,CAAC;AAC7E,CAAC;AAED;;;GAGG;AACH,SAAgB,wBAAwB,CAAC,OAA4B;IACnE,MAAM,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;IACxE,MAAM,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;IACxE,MAAM,KAAK,GAAG,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC;IAEtC,MAAM,cAAc,GAA2B,EAAE,CAAC;IAClD,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;QACjC,IAAI,CAAC,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YACxB,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QACrE,CAAC;IACH,CAAC;IAED,MAAM,YAAY,GAAG,MAAM,CAAC,OAAO,CAAC,cAAc,CAAC;SAChD,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE;QACjB,MAAM,KAAK,GAAG,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,CAAC,CAAC;QACpD,OAAO,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;IAC7C,CAAC,CAAC;SACD,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,GAAG,KAAK,IAAI,GAAG,EAAE,CAAC;SACxC,IAAI,CAAC,IAAI,CAAC,CAAC;IAEd,MAAM,KAAK,GAAG;QACZ,oCAAoC;QACpC,cAAc,OAAO,CAAC,WAAW,IAAI,OAAO,CAAC,cAAc,IAAI,mBAAmB,EAAE;QACpF,gBAAgB,OAAO,CAAC,SAAS,EAAE;QACnC,aAAa,KAAK,WAAW,MAAM,YAAY,MAAM,SAAS;KAC/D,CAAC;IACF,IAAI,YAAY,EAAE,CAAC;QACjB,KAAK,CAAC,IAAI,CAAC,2BAA2B,YAAY,EAAE,CAAC,CAAC;IACxD,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,sEAAsE,CAAC,CAAC;IACnF,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED;;;;;GAKG;AACI,KAAK,UAAU,kBAAkB,CACtC,OAA4B,EAC5B,WAAoB;IAEpB,MAAM,OAAO,GAAG,WAAW,IAAI,sBAAsB,CAAC;IACtD,MAAM,GAAG,GAAG,GAAG,OAAO,wBAAwB,CAAC;IAE/C,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,OAAO,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,KAAM,CAAC,CAAC;QAE7D,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAChC,MAAM,EAAE,MAAM;YACd,OAAO,EAAE;gBACP,cAAc,EAAE,kBAAkB;gBAClC,YAAY,EAAE,mBAAmB,eAAO,EAAE;aAC3C;YACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;YAC7B,MAAM,EAAE,UAAU,CAAC,MAAM;SAC1B,CAAC,CAAC;QAEH,YAAY,CAAC,OAAO,CAAC,CAAC;QAEtB,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC,CAAC;YACnD,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,QAAQ,QAAQ,CAAC,MAAM,KAAK,IAAI,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC;aAC5D,CAAC;QACJ,CAAC;QAED,MAAM,MAAM,GAAG,CAAC,MAAM,QAAQ,CAAC,IAAI,EAAE,CAA4B,CAAC;QAClE,OAAO;YACL,OAAO,EAAE,IAAI;YACb,MAAM,EAAG,MAAM,CAAC,MAAiB,IAAI,SAAS;SAC/C,CAAC;IACJ,CAAC;IAAC,OAAO,GAAY,EAAE,CAAC;QACtB,MAAM,OAAO,GAAG,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,eAAe,CAAC;QACrE,2BAA2B;QAC3B,IAAI,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YAC3D,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,yBAAyB,EAAE,CAAC;QAC9D,CAAC;QACD,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,CAAC;IAC5C,CAAC;AACH,CAAC"}
|