kramscan 0.3.1 → 0.4.0

package/README.md

@@ -3,298 +3,160 @@
 
   <h3 align="center">AI-Powered Web Application Security Testing CLI</h3>
 
-  <br />
-
+  [![CI](https://img.shields.io/github/actions/workflow/status/shaikhakramshakil/kramscan/ci.yml?branch=main&style=for-the-badge&logo=github-actions&logoColor=white&label=CI)](https://github.com/shaikhakramshakil/kramscan/actions)
   [![npm version](https://img.shields.io/npm/v/kramscan?style=for-the-badge&logo=npm&logoColor=white&color=cb3837)](https://www.npmjs.com/package/kramscan)
   [![npm downloads](https://img.shields.io/npm/dm/kramscan?style=for-the-badge&logo=npm&logoColor=white&color=blue)](https://www.npmjs.com/package/kramscan)
   [![License](https://img.shields.io/github/license/shaikhakramshakil/kramscan?style=for-the-badge&logo=github&logoColor=white&color=green)](https://github.com/shaikhakramshakil/kramscan/blob/main/LICENSE)
-  [![Stars](https://img.shields.io/github/stars/shaikhakramshakil/kramscan?style=for-the-badge&logo=github&logoColor=white&color=yellow)](https://github.com/shaikhakramshakil/kramscan)
   [![TypeScript](https://img.shields.io/badge/TypeScript-5.4-3178c6?style=for-the-badge&logo=typescript&logoColor=white)](https://www.typescriptlang.org)
   [![Node.js](https://img.shields.io/badge/Node.js-%3E%3D18-brightgreen?style=for-the-badge&logo=nodedotjs&logoColor=white)](https://nodejs.org)
 
-  <br />
-
-  🔬 **A next-generation security auditing tool that combines automated vulnerability scanning with multi-provider AI analysis.**
-
-  *Empowering developers and security researchers with institutional-grade insights, modular plugin architecture, and an interactive AI agent.*
-
-  <br />
-
-  [🌐 NPM Package](https://www.npmjs.com/package/kramscan) · [📖 Documentation](#-usage) · [🐞 Report Bug](https://github.com/shaikhakramshakil/kramscan/issues)
-
 </div>
 
 ---
 
-<br />
+KramScan is a command-line security auditing tool that combines automated vulnerability scanning with multi-provider AI analysis. It orchestrates headless browser crawling, runs a modular plugin system against discovered pages, and passes findings through a generative AI layer (OpenAI, Gemini, Anthropic, and others) to produce actionable, context-aware reports.
 
-## 🚀 The Problem We Solve
-Web security is complex and often fragmented. Developers rely on multiple disjointed tools for scanning, manual testing, and reporting. Traditional automated scanners generate noise without context, and manual pentesting is time-consuming and expensive.
-
-**KramScan bridges this gap.** We provide a unified command-line interface that orchestrates headless browser scanning, scrapes critical security headers, leverages **Generative AI** (OpenAI, Gemini, Anthropic) for analysis, and features a **modular plugin system** for extensibility. It delivers actionable, human-readable insights alongside raw vulnerability data—all in seconds.
-
-<br />
+[NPM Package](https://www.npmjs.com/package/kramscan) · [Documentation](#usage--commands) · [Report Bug](https://github.com/shaikhakramshakil/kramscan/issues) · [Request Feature](https://github.com/shaikhakramshakil/kramscan/issues)
 
 ---
 
-<br />
-
-## ✨ Key Features
-| Feature | Description |
-| :--- | :--- |
-| 🔍 **Automated Vulnerability Engine** | Detects XSS, SQL Injection, CSRF, insecure headers, CORS misconfigs, open redirects, and more. |
-| 🔌 **10 Built-in Security Plugins** | CORS, debug endpoints, directory traversal, cookie auditing, open redirects, sensitive data, and more. |
-| 🛠️ **Dev Mode (Watch Scanner)** | Watch your localhost for file changes and auto re-scan with diff reports (new vs resolved vulns). |
-| 🚧 **CI/CD Security Gate** | `kramscan gate` exits with code 1 if vulnerabilities exceed your threshold. Plug into any pipeline. |
-| 🤖 **Interactive AI Agent** | A conversational security assistant with **Autonomous Verification** skills to confirm findings live. |
-| 🧠 **Multi-Provider AI Analysis** | Supports OpenAI, Anthropic, Google Gemini, Mistral, OpenRouter, and more for results auditing. |
-| 📝 **AI Executive Summaries** | Automatically generates business-oriented summaries for Word, JSON, and TXT reports. |
-| 📊 **Event-Driven Feedback** | Real-time progress updates with dynamic spinners and live vulnerability alerts during scanning. |
-| 📄 **Professional Reporting** | Generates detailed PDF, DOCX, TXT, and JSON reports with remediation steps and error tracking. |
-| 🌐 **Headless Browser Testing** | Renders modern SPAs (Single Page Applications) to find vulnerabilities in dynamic content. |
-| ⚡ **Smarter User Flow** | Interactive menu and post-scan "Golden Path" prompts for a guided experience. |
-| 🛡️ **Error Resilience** | Robust configuration defaults and graceful recovery if individual URLs or plugins fail. |
-
-<br />
+## Features
+
+- **Automated vulnerability detection** — XSS, SQL injection, CSRF, insecure headers, CORS misconfigurations, open redirects, and more.
+- **10 built-in security plugins** — CORS, debug endpoints, directory traversal, cookie auditing, open redirects, sensitive data exposure, and others. Easily extensible.
+- **Dev mode (watch scanner)** — Watches your localhost for file changes and auto re-scans, showing a diff of new vs. resolved findings.
+- **CI/CD security gate** — `kramscan gate` exits with code 1 when vulnerabilities exceed a configurable threshold.
+- **Interactive AI agent** — Conversational security assistant with autonomous verification capabilities to confirm findings live.
+- **Multi-provider AI analysis** — Supports OpenAI, Anthropic, Google Gemini, Mistral, OpenRouter, Groq, and Kimi.
+- **AI executive summaries** — Generates business-oriented summaries included in Word, JSON, and TXT reports.
+- **Professional reporting** — PDF, DOCX, Markdown, TXT, and JSON output with remediation steps and error tracking.
+- **Headless browser testing** — Renders SPAs via Puppeteer to find vulnerabilities in dynamically generated content.
+- **Real-time feedback** — Event-driven progress with live spinners and vulnerability alerts during scanning.
+- **Error resilience** — Graceful recovery when individual URLs or plugins fail; errors are logged but never halt a scan.
 
 ---
 
-<br />
+## Quick Start
 
-## 🏗️ Architecture & Workflow
+### Installation
 
-```mermaid
-graph LR
-    A[User Command] --> B{CLI Controller};
-    B --> C[Scanner Module<br/>Puppeteer / Plugin System];
-    B --> D[AI Agent<br/>NLP Processing];
-    
-    C --> E[Plugin Manager<br/>XSS / SQLi / Headers / CSRF];
-    E --> F[Vulnerability Detection];
-    C --> G[Event System<br/>Progress / Results];
-    
-    F & G --> H[AI Analysis Engine<br/>LLM Provider];
-    
-    H --> I[Risk Assessment<br/>Confidence Scoring];
-    I --> J[Report Generator<br/>PDF / DOCX / JSON / TXT];
-    J --> K((Final Output<br/>+ Error Report));
+```bash
+npm install -g kramscan
 ```
 
-<br />
-
-### Plugin Architecture
+Or run directly without installing:
 
-KramScan is built on a modular plugin system that makes extending vulnerability detection effortless:
-
-```
-src/plugins/
-├── types.ts                        # Base interfaces and types
-├── PluginManager.ts                # Plugin orchestration
-├── index.ts                        # Plugin exports
-└── vulnerabilities/                # Built-in plugins
-    ├── XSSPlugin.ts                # Cross-Site Scripting
-    ├── SQLInjectionPlugin.ts       # SQL Injection
-    ├── SecurityHeadersPlugin.ts    # Missing security headers
-    ├── SensitiveDataPlugin.ts      # Exposed secrets & API keys
-    ├── CSRFPlugin.ts               # Cross-Site Request Forgery
-    ├── CORSAnalyzerPlugin.ts       # CORS misconfiguration
-    ├── DebugEndpointPlugin.ts      # Exposed debug/dev endpoints
-    ├── DirectoryTraversalPlugin.ts # Path traversal / LFI
-    ├── CookieSecurityPlugin.ts     # Insecure cookie flags
-    └── OpenRedirectPlugin.ts       # Open redirect detection
+```bash
+npx kramscan scan https://example.com
 ```
 
-**Creating a custom plugin:**
-
-```typescript
-import { BaseVulnerabilityPlugin, PluginContext } from 'kramscan/plugins';
+### First-Time Setup
 
-export class MyCustomPlugin extends BaseVulnerabilityPlugin {
-  readonly name = "Custom Detector";
-  readonly type = "custom";
-  readonly description = "Detects custom vulnerability";
-  
-  async testParameter(context: PluginContext, param: string, value: string) {
-    // Your detection logic here
-    if (/* vulnerability found */) {
-      return this.success(this.createVulnerability(
-        "Custom Vulnerability",
-        "Description...",
-        context.url,
-        "high",
-        "Evidence...",
-        "Remediation..."
-      ));
-    }
-    return this.failure();
-  }
-}
+```bash
+kramscan onboard
 ```
 
-<br />
-
----
-
-<br />
-
-## 🧪 Tech Stack
-<div align="center">
-
-| Component | Technology |
-| :--- | :--- |
-| **Runtime** | Node.js ≥ 18 |
-| **Language** | TypeScript 5.4 |
-| **CLI Framework** | Commander.js, Inquirer.js |
-| **Browser Automation** | Puppeteer (Headless Chrome) |
-| **AI Integration** | OpenAI SDK, Google Generative AI, Anthropic SDK |
-| **Schema Validation** | Zod |
-| **Reporting** | Docx, Puppeteer (PDF), Chalk |
-| **Package Manager** | NPM / Yarn / PNPM |
-
-</div>
-
-<br />
-
----
-
-<br />
-
-## 🧠 Supported AI Providers
-
-| Provider | SDK / Integration | Default Model |
-| :--- | :--- | :--- |
-| **OpenAI** | `openai` | `gpt-4` |
-| **Anthropic** | `@anthropic-ai/sdk` | `claude-3-5-sonnet-20241022` |
-| **Google Gemini** | `@google/generative-ai` | `gemini-2.0-flash` |
-| **Mistral** | `@mistralai/mistralai` | `mistral-large-latest` |
-| **OpenRouter** | OpenAI-compatible | `anthropic/claude-3.5-sonnet` |
-| **Kimi** | OpenAI-compatible | `moonshot-v1-8k` |
-| **Groq** | OpenAI-compatible | `llama-3.1-8b-instant` |
-
-> Switch providers instantly with `kramscan onboard` or by editing `~/.kramscan/config.json`.
-
-### API Key Environment Variables
-You can provide API keys via environment variables (useful for CI/CD) instead of saving them locally:
+This runs the configuration wizard to set up your AI provider and API keys. KramScan auto-detects keys already present in your environment variables.
 
-| Provider | Env Var |
-| :--- | :--- |
-| OpenAI | `OPENAI_API_KEY` |
-| Anthropic | `ANTHROPIC_API_KEY` |
-| Gemini | `GEMINI_API_KEY` |
-| Mistral | `MISTRAL_API_KEY` |
-| OpenRouter | `OPENROUTER_API_KEY` |
-| Kimi | `KIMI_API_KEY` |
-| Groq | `GROQ_API_KEY` |
-
-### Smart Environment Detection
-KramScan automatically detects API keys in your environment variables. During `kramscan onboard`, the tool will identify and pre-configure providers like OpenAI, Anthropic, and Gemini if their keys are found in your session.
-
-### AI-Powered Context-Aware Payloads
-The scanning engine utilizes AI to generate payloads tailored to the specific context of your application, significantly increasing detection rates against filtered inputs and complex WAFs.
-
-### Autonomous Finding Verification
-The `kramscan agent` independently verifies reported vulnerabilities using non-destructive, context-aware payloads to differentiate between theoretical findings and exploitable risks.
-
-<br />
-
----
-
-<br />
-
-## 🚀 Quick Start
-
-### 1. Installation
-Install KramScan globally using npm:
+### Run a Scan
 
 ```bash
-npm install -g kramscan
+kramscan scan https://example.com
 ```
 
-### 2. First-Time Setup
-Initialize the configuration wizard to set up your AI provider and API keys:
+### View Results
 
 ```bash
-kramscan onboard
+kramscan scans list     # List recent scans
+kramscan scans latest   # View the latest scan
 ```
 
-### 3. Run a Scan
-Execute a full security scan on a target URL:
+---
 
-```bash
-kramscan scan https://example.com
+## Usage & Commands
+
+```
+kramscan                      Interactive dashboard menu
+kramscan scan <url>           Full vulnerability scan with post-scan prompts
+kramscan dev [url]            Watch-mode localhost scanner with diff reports
+kramscan gate <url>           CI/CD security gate (exits 1 on threshold breach)
+kramscan agent                AI security assistant with autonomous verification
+kramscan analyze              AI-powered analysis of scan results
+kramscan report               Generate reports with optional AI executive summaries
+kramscan onboard              Setup wizard with environment key detection
+kramscan doctor               Verify environment health and dependencies
+kramscan config               View and edit configuration
+kramscan scans                List and inspect recent scans
+kramscan init                 Generate a .kramscanrc config for this project
+kramscan ai                   AI helpers (model listing, connectivity test)
 ```
 
-<br />
+### Project Configuration
 
----
+Run `kramscan init` in your project root to generate a `.kramscanrc` file with team-shareable defaults:
 
-<br />
-
-## 📖 Usage & Commands
+```bash
+kramscan init          # interactive setup
+kramscan init -y       # generate with defaults
+kramscan init --force  # overwrite an existing .kramscanrc
+```
 
-| Command | Description |
-| :--- | :--- |
-| `kramscan` | Launch the interactive dashboard menu with smart argument prompting. |
-| `kramscan scan <url>` | Run a comprehensive vulnerability scan with post-scan prompts. |
-| `kramscan dev [url]` | Watch-mode localhost scanner with diff reports and desktop notifications. |
-| `kramscan gate <url>` | CI/CD security quality gate — exits with code 1 on threshold breach. |
-| `kramscan agent` | Start the AI security assistant with autonomous verification skills. |
-| `kramscan analyze` | AI-powered analysis with proactive onboarding redirection. |
-| `kramscan report` | Generate professional reports with optional AI executive summaries. |
-| `kramscan onboard` | Smart setup wizard with environment key detection. |
-| `kramscan doctor` | Verify environment health and check for Docker dependencies. |
-| `kramscan config` | View and edit current configuration with robust schema defaults. |
-| `kramscan scans` | List and inspect recent scans from the persistent index. |
-| `kramscan ai` | AI helpers (model listing and connectivity test). |
+The generated file looks like this:
+
+```json
+{
+  "scan": {
+    "defaultProfile": "balanced",
+    "defaultTimeout": 30000,
+    "strictScope": true,
+    "exclude": ["logout", "signout", "delete"]
+  },
+  "report": {
+    "defaultFormat": "markdown",
+    "companyName": "Your Company"
+  },
+  "gate": {
+    "failOn": "high",
+    "maxVulns": 0
+  },
+  "plugins": {
+    "disabled": []
+  }
+}
+```
 
-<br />
+Project-level settings override the global config (`~/.kramscan/config.json`). API keys are never stored in `.kramscanrc` — use `kramscan onboard` or environment variables for credentials. Commit the file to version control so your team shares the same scan settings.
 
-### 🛠️ Dev Mode — Localhost Watch Scanner
+### Dev Mode
 
-Scan your local dev server continuously. KramScan watches for file changes and **auto re-scans**, showing a diff of new vs. resolved vulnerabilities:
+Scan your local dev server continuously. KramScan watches for file changes and auto re-scans, showing a diff of new vs. resolved vulnerabilities:
 
 ```bash
-# Watch-mode with port shorthand
 kramscan dev --port 3000
-
-# Full URL with notifications
 kramscan dev http://localhost:3000 --watch-dir ./src --notify
-
-# Single scan (no watching)
 kramscan dev http://localhost:8080 --no-watch --fail-on high
 ```
 
-**How it works:**
-1. Probes your server until it's ready (auto-detects Express, Next.js, Django, etc.)
-2. Runs an initial security scan
-3. Watches `--watch-dir` for file changes (debounced)
-4. Re-scans and shows only **new** and **resolved** vulnerabilities
+It probes your server until it's ready (auto-detects Express, Next.js, Django, etc.), runs an initial scan, then watches the specified directory for changes and re-scans on each update.
 
-### 🚧 CI/CD Security Gate
+### CI/CD Security Gate
 
-Block deployments with vulnerabilities above your threshold:
+Block deployments when vulnerabilities exceed your threshold:
 
 ```bash
-# Fail if any high+ vulnerabilities found
 kramscan gate http://localhost:3000 --fail-on high
-
-# JSON output for pipeline processing
 kramscan gate $APP_URL --fail-on medium --json
-
-# Allow up to 3 low-severity findings
 kramscan gate http://staging.example.com --fail-on low --max-vulns 3
 ```
 
-**Pipeline example (GitHub Actions):**
+GitHub Actions example:
+
 ```yaml
 - name: Security Gate
   run: npx kramscan gate http://localhost:3000 --fail-on high
 ```
 
-<br />
-
-### Scan Profiles and Limits
-KramScan supports profiles for quick tuning:
+### Scan Profiles
 
 ```bash
 kramscan scan https://example.com --profile quick
@@ -302,7 +164,7 @@ kramscan scan https://example.com --profile balanced
 kramscan scan https://example.com --profile deep
 ```
 
-You can also control crawl limits and URL scope:
+Control crawl limits and URL scope:
 
 ```bash
 kramscan scan https://example.com --max-pages 30 --max-links-per-page 50
@@ -310,45 +172,18 @@ kramscan scan https://example.com --exclude "logout|signout"
 kramscan scan https://example.com --include "^https://example\.com/docs"
 ```
 
-### Automatic PDF Report After Scan
-After each scan, KramScan automatically generates a PDF report (no separate command required).
+### Automatic PDF Reports
 
-The file is saved to:
+After each scan, a PDF report is generated automatically:
 
 - JSON: `~/.kramscan/scans/scan-<timestamp>.json`
 - PDF: `~/.kramscan/reports/scanreport_<hostname>_<timestamp>.pdf`
 
-You can disable it with:
-
-```bash
-kramscan scan https://example.com --no-pdf
-```
-
-### Error Tracking and Recovery
-KramScan features comprehensive error handling:
-
-- **Continue on Failure**: Scan continues even if individual URLs fail to load
-- **Plugin Error Isolation**: If one vulnerability plugin fails, others continue working
-- **Error Reports**: PDF reports include a "⚠️ Scan Errors & Skipped Items" section
-- **CLI Feedback**: Real-time error messages during scanning
-
-### Event-Driven Progress Feedback
-Watch your scan progress in real-time:
-
-```
-🔍 Starting Security Scan
-──────────────────────────────────────────────────
-
-✔ Initializing scanner...
-⠴ Crawling: https://example.com (5/30)
-⚠️ Found high vulnerability: Reflected Cross-Site Scripting (XSS)
-⠴ Continuing scan (1 vulns found)...
-⠴ Testing forms on https://example.com/login (3 forms)...
-✔ Scan complete!
-```
+Disable with `--no-pdf`.
 
 ### Scan History
-Every scan is indexed in `~/.kramscan/scans/index.json`.
+
+Every scan is indexed in `~/.kramscan/scans/index.json`:
 
 ```bash
 kramscan scans list -n 10
@@ -356,64 +191,151 @@ kramscan scans latest
 ```
 
 ### AI Diagnostics
-List models and test your configured provider/model:
 
 ```bash
 kramscan ai models -n 10
 kramscan ai test
 ```
 
-### Example Agent Session
-```bash
-$ kramscan agent
-> scan https://example.com
-
-Agent: I'll perform a comprehensive security scan of https://example.com.
-       Checking for XSS, SQLi, and missing headers...
-       [Scanning...]
-       
-Agent: Scan complete! Found 2 High severity issues.
-       Would you like me to generate a report?
+---
+
+## Architecture
+
+```mermaid
+graph LR
+    A[User Command] --> B{CLI Controller};
+    B --> C[Scanner Module<br/>Puppeteer / Plugin System];
+    B --> D[AI Agent<br/>NLP Processing];
+
+    C --> E[Plugin Manager<br/>XSS / SQLi / Headers / CSRF];
+    E --> F[Vulnerability Detection];
+    C --> G[Event System<br/>Progress / Results];
+
+    F & G --> H[AI Analysis Engine<br/>LLM Provider];
+
+    H --> I[Risk Assessment<br/>Confidence Scoring];
+    I --> J[Report Generator<br/>PDF / DOCX / JSON / TXT];
+    J --> K((Final Output<br/>+ Error Report));
 ```
 
-<br />
+### Plugin System
+
+KramScan's detection layer is built on a modular plugin architecture:
+
+```
+src/plugins/
+├── types.ts                        # Base interfaces and types
+├── PluginManager.ts                # Plugin orchestration
+├── index.ts                        # Plugin exports
+└── vulnerabilities/
+    ├── XSSPlugin.ts
+    ├── SQLInjectionPlugin.ts
+    ├── SecurityHeadersPlugin.ts
+    ├── SensitiveDataPlugin.ts
+    ├── CSRFPlugin.ts
+    ├── CORSAnalyzerPlugin.ts
+    ├── DebugEndpointPlugin.ts
+    ├── DirectoryTraversalPlugin.ts
+    ├── CookieSecurityPlugin.ts
+    └── OpenRedirectPlugin.ts
+```
+
+To add a custom plugin:
+
+```typescript
+import { BaseVulnerabilityPlugin, PluginContext } from 'kramscan/plugins';
+
+export class MyCustomPlugin extends BaseVulnerabilityPlugin {
+  readonly name = "Custom Detector";
+  readonly type = "custom";
+  readonly description = "Detects custom vulnerability";
+
+  async testParameter(context: PluginContext, param: string, value: string) {
+    // Your detection logic here
+    if (/* vulnerability found */) {
+      return this.success(this.createVulnerability(
+        "Custom Vulnerability",
+        "Description...",
+        context.url,
+        "high",
+        "Evidence...",
+        "Remediation..."
+      ));
+    }
+    return this.failure();
+  }
+}
+```
 
 ---
 
+## Supported AI Providers
 
+KramScan supports the following AI providers out of the box. Switch providers with `kramscan onboard` or by editing `~/.kramscan/config.json`.
 
-## 🔒 Security & Privacy
-- **Local Execution:** All scanning logic runs locally on your machine.
-- **API Key Safety:** AI provider API keys are stored securely in your local home directory and are never sent to our servers.
-- **Data Privacy:** Scan data is sent only to your chosen AI provider for analysis and is not stored by KramScan.
-- **Error Tracking:** Failed scan attempts are logged locally for debugging but never transmitted.
+- **OpenAI** — `gpt-4` (env: `OPENAI_API_KEY`)
+- **Anthropic** — `claude-3-5-sonnet-20241022` (env: `ANTHROPIC_API_KEY`)
+- **Google Gemini** — `gemini-2.0-flash` (env: `GEMINI_API_KEY`)
+- **Mistral** — `mistral-large-latest` (env: `MISTRAL_API_KEY`)
+- **OpenRouter** — `anthropic/claude-3.5-sonnet` (env: `OPENROUTER_API_KEY`)
+- **Kimi** — `moonshot-v1-8k` (env: `KIMI_API_KEY`)
+- **Groq** — `llama-3.1-8b-instant` (env: `GROQ_API_KEY`)
 
-<br />
+API keys can be provided via environment variables (useful for CI/CD) or saved locally during onboarding. KramScan auto-detects keys present in your environment.
+
+The scanning engine can also use AI to generate context-aware payloads, improving detection rates against filtered inputs and WAFs. The `kramscan agent` independently verifies reported vulnerabilities using non-destructive payloads to separate theoretical findings from exploitable risks.
 
 ---
 
-<br />
+## Tech Stack
 
-## 👤 Author
-<div align="center">
+- **Runtime:** Node.js >= 18
+- **Language:** TypeScript 5.4
+- **CLI Framework:** Commander.js, Inquirer.js
+- **Browser Automation:** Puppeteer (Headless Chrome)
+- **AI Integration:** OpenAI SDK, Google Generative AI, Anthropic SDK
+- **Schema Validation:** Zod
+- **Reporting:** Docx, Puppeteer (PDF), Chalk
+- **Testing:** Jest, ts-jest
+- **CI/CD:** GitHub Actions (lint, build, test on Node 18/20/22, security audit)
 
-**Akram Shaikh**
+---
 
-[![Website](https://img.shields.io/badge/Website-akramshaikh.me-blue?style=for-the-badge&logo=google-chrome&logoColor=white)](https://akramshaikh.me)
-[![GitHub](https://img.shields.io/badge/GitHub-shaikhakramshakil-181717?style=for-the-badge&logo=github&logoColor=white)](https://github.com/shaikhakramshakil)
-[![LinkedIn](https://img.shields.io/badge/LinkedIn-0077B5?style=for-the-badge&logo=linkedin&logoColor=white)](https://www.linkedin.com/in/shaikhakramshakil/)
+## Security & Privacy
 
-</div>
+- All scanning logic runs locally on your machine.
+- API keys are stored in your local home directory and are never sent to our servers.
+- Scan data is sent only to your chosen AI provider for analysis and is not stored by KramScan.
+- Failed scan attempts are logged locally for debugging but never transmitted.
+
+---
 
-<br />
+## Contributing
+
+```bash
+git clone https://github.com/shaikhakramshakil/kramscan.git
+cd kramscan
+npm install
+npm run build
+npm test
+```
+
+Before submitting a PR:
+
+1. Run `npm run lint` — ensure zero ESLint errors.
+2. Run `npm test` — ensure all tests pass.
+3. Add tests for new features when possible.
 
 ---
 
-<br />
+## Author
 
-## 📄 License
-This project is licensed under the **MIT License** — see the [LICENSE](LICENSE) file for details.
+**Akram Shaikh**
 
-<div align="center">
-  <sub>Made with ❤️ by Akram Shaikh</sub>
-</div>
+[![Website](https://img.shields.io/badge/Website-akramshaikh.me-blue?style=for-the-badge&logo=google-chrome&logoColor=white)](https://akramshaikh.me)
+[![GitHub](https://img.shields.io/badge/GitHub-shaikhakramshakil-181717?style=for-the-badge&logo=github&logoColor=white)](https://github.com/shaikhakramshakil)
+[![LinkedIn](https://img.shields.io/badge/LinkedIn-0077B5?style=for-the-badge&logo=linkedin&logoColor=white)](https://www.linkedin.com/in/shaikhakramshakil/)
+
+## License
+
+This project is licensed under the MIT License — see the [LICENSE](LICENSE) file for details.

package/dist/agent/skills/generate-report.js

@@ -199,7 +199,7 @@ class GenerateReportSkill {
         if (!docx) {
             throw new Error("DOCX generation requires the 'docx' package. Please install it: npm install docx");
         }
-        const { Document, Paragraph, TextRun, HeadingLevel, Table, TableCell, TableRow, WidthType, BorderStyle, } = docx;
+        const { Document, Paragraph, TextRun, HeadingLevel, } = docx;
         const findings = scanData.findings || [];
         const analysisFinding = includeAnalysis
             ? findings.find((f) => f.skillId === "analyze_findings")

package/dist/agent/skills/health-check.d.ts

@@ -12,11 +12,11 @@ export declare class HealthCheckSkill implements AgentSkill {
     riskLevel: "low";
     estimatedDuration: number;
     toolDefinition: ToolDefinition;
-    validateParameters(params: Record<string, unknown>): {
+    validateParameters(_params: Record<string, unknown>): {
         valid: boolean;
         errors: string[];
     };
-    execute(params: Record<string, unknown>, context: AgentContext): Promise<SkillResult>;
+    execute(params: Record<string, unknown>, _context: AgentContext): Promise<SkillResult>;
     private checkNodeVersion;
     private checkConfiguration;
     private checkAIProvider;

package/dist/agent/skills/health-check.js

@@ -64,11 +64,11 @@ class HealthCheckSkill {
             },
         ],
     };
-    validateParameters(params) {
+    validateParameters(_params) {
         // No required parameters
         return { valid: true, errors: [] };
     }
-    async execute(params, context) {
+    async execute(params, _context) {
         const verbose = params.verbose ?? false;
         logger_1.logger.info("Running health check...");
         const checks = [];

package/dist/agent/skills/verify-finding.js

@@ -48,7 +48,7 @@ class VerifyFindingSkill {
             // Get type from finding metadata or title
             const vulnType = finding.metadata?.type || (finding.title.toLowerCase().includes("sql") ? "sqli" : "xss");
             // Generate non-destructive verification payloads
-            const payloads = await payloadGenerator.generatePayloads(vulnType, {
+            await payloadGenerator.generatePayloads(vulnType, {
                 parameterName: finding.metadata?.parameter || "verify",
                 url: finding.metadata?.url || context.currentTarget || "",
             });

package/dist/agent/skills/web-scan.d.ts

@@ -17,6 +17,6 @@ export declare class WebScanSkill implements AgentSkill {
         valid: boolean;
         errors: string[];
     };
-    execute(params: Record<string, unknown>, context: AgentContext): Promise<SkillResult>;
+    execute(params: Record<string, unknown>, _context: AgentContext): Promise<SkillResult>;
     run(): Promise<SkillResult>;
 }

package/dist/agent/skills/web-scan.js

@@ -126,7 +126,7 @@ class WebScanSkill {
             errors,
         };
     }
-    async execute(params, context) {
+    async execute(params, _context) {
         const targetUrl = params.targetUrl;
         const depth = params.depth ?? 2;
         const timeout = params.timeout ?? 30000;

package/dist/cli.js

@@ -53,6 +53,7 @@ const scans_1 = require("./commands/scans");
 const ai_1 = require("./commands/ai");
 const dev_1 = require("./commands/dev");
 const gate_1 = require("./commands/gate");
+const init_1 = require("./commands/init");
 const config_2 = require("./core/config");
 const theme_1 = require("./utils/theme");
 let verboseMode = false;
@@ -71,6 +72,7 @@ function debugLog(...args) {
 const menuChoices = [
     { label: "Agent", value: "agent", description: "AI-powered interactive security assistant", icon: "🤖", status: "active" },
     { label: "Onboard", value: "onboard", description: "First-time setup wizard", icon: "⚡", status: "active" },
+    { label: "Init", value: "init", description: "Generate .kramscanrc for this project", icon: "📁", status: "active" },
     { label: "Scan", value: "scan", description: "Scan a target URL for vulnerabilities", icon: "🔍", status: "active" },
     { label: "Dev", value: "dev", description: "Watch-mode scanning for localhost dev servers", icon: "🛠️", status: "active" },
     { label: "Gate", value: "gate", description: "CI/CD security quality gate", icon: "🚧", status: "active" },
@@ -107,7 +109,7 @@ async function showInteractiveMenu() {
         console.log(theme_1.theme.gray(`  Run ${theme_1.theme.cyan("kramscan --help")} for available commands.\n`));
         return;
     }
-    let args = [action];
+    const args = [action];
     // Specific handling for commands that need input
     if (action === "scan") {
         const { url } = await inquirer_1.default.prompt([
@@ -179,6 +181,7 @@ async function showInteractiveMenu() {
         // Error handling is managed by the commands themselves or global handlers
     }
 }
+// eslint-disable-next-line @typescript-eslint/no-unused-vars
 async function showDirectCommandInput() {
     (0, theme_1.printBanner)();
     (0, theme_1.printInfo)();
@@ -227,6 +230,7 @@ function createProgram() {
     (0, ai_1.registerAiCommand)(program);
     (0, dev_1.registerDevCommand)(program);
     (0, gate_1.registerGateCommand)(program);
+    (0, init_1.registerInitCommand)(program);
     // Version subcommand with detailed environment info
     program
         .command("version")

package/dist/commands/doctor.js

@@ -138,7 +138,7 @@ async function checkPuppeteer() {
 }
 async function checkConfig() {
     try {
-        const config = await (0, config_1.getConfig)();
+        await (0, config_1.getConfig)();
         return {
             name: "Configuration",
             status: "pass",

package/dist/commands/init.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Init Command
+ * Generates a .kramscanrc project configuration file in the current directory.
+ */
+import { Command } from "commander";
+export declare function registerInitCommand(program: Command): void;

package/dist/commands/init.js

@@ -0,0 +1,191 @@
+"use strict";
+/**
+ * Init Command
+ * Generates a .kramscanrc project configuration file in the current directory.
+ */
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.registerInitCommand = registerInitCommand;
+const chalk_1 = __importDefault(require("chalk"));
+const inquirer_1 = __importDefault(require("inquirer"));
+const promises_1 = __importDefault(require("fs/promises"));
+const path_1 = __importDefault(require("path"));
+const project_config_1 = require("../core/project-config");
+const logger_1 = require("../utils/logger");
+function registerInitCommand(program) {
+    program
+        .command("init")
+        .description("Generate a .kramscanrc project configuration file")
+        .option("-y, --yes", "Skip prompts and generate with defaults")
+        .option("--force", "Overwrite existing .kramscanrc file")
+        .action(async (options) => {
+        const targetPath = path_1.default.join(process.cwd(), project_config_1.PROJECT_CONFIG_FILENAME);
+        console.log("");
+        console.log(chalk_1.default.bold.cyan("KramScan Project Setup"));
+        console.log(chalk_1.default.gray("─".repeat(50)));
+        console.log("");
+        // Check if file already exists
+        try {
+            await promises_1.default.access(targetPath);
+            if (!options.force) {
+                console.log(chalk_1.default.yellow(`  A ${project_config_1.PROJECT_CONFIG_FILENAME} file already exists in this directory.`));
+                console.log(chalk_1.default.gray(`  Use ${chalk_1.default.white("--force")} to overwrite it.`));
+                console.log("");
+                return;
+            }
+        }
+        catch {
+            // File doesn't exist — good
+        }
+        let config;
+        if (options.yes) {
+            config = getDefaultProjectConfig();
+        }
+        else {
+            config = await runInteractiveSetup();
+        }
+        // Write the file
+        const content = JSON.stringify(config, null, 2) + "\n";
+        await promises_1.default.writeFile(targetPath, content, "utf-8");
+        console.log("");
+        logger_1.logger.success(`Created ${project_config_1.PROJECT_CONFIG_FILENAME} in ${process.cwd()}`);
+        console.log("");
+        console.log(chalk_1.default.gray("  This file configures KramScan for this project."));
+        console.log(chalk_1.default.gray("  Commit it to version control so your team shares the same settings."));
+        console.log(chalk_1.default.gray(`  API keys are never stored here — use ${chalk_1.default.white("kramscan onboard")} or env vars.`));
+        console.log("");
+    });
+}
+function getDefaultProjectConfig() {
+    return {
+        scan: {
+            defaultProfile: "balanced",
+            defaultTimeout: 30000,
+            strictScope: true,
+            exclude: [
+                "logout",
+                "signout",
+                "delete",
+            ],
+        },
+        report: {
+            defaultFormat: "markdown",
+            companyName: "Your Company",
+        },
+        gate: {
+            failOn: "high",
+            maxVulns: 0,
+        },
+        plugins: {
+            disabled: [],
+        },
+    };
+}
+async function runInteractiveSetup() {
+    const answers = await inquirer_1.default.prompt([
+        {
+            type: "list",
+            name: "profile",
+            message: "Default scan profile:",
+            choices: [
+                { name: "quick    — fast surface-level scan", value: "quick" },
+                { name: "balanced — good coverage, moderate speed", value: "balanced" },
+                { name: "deep     — thorough crawl, slower", value: "deep" },
+            ],
+            default: "balanced",
+        },
+        {
+            type: "input",
+            name: "timeout",
+            message: "Default request timeout (ms):",
+            default: "30000",
+            validate: (input) => {
+                const n = parseInt(input, 10);
+                if (isNaN(n) || n < 1000)
+                    return "Must be a number >= 1000";
+                return true;
+            },
+            filter: (input) => parseInt(input, 10),
+        },
+        {
+            type: "confirm",
+            name: "strictScope",
+            message: "Stay within the target domain? (strict scope)",
+            default: true,
+        },
+        {
+            type: "input",
+            name: "exclude",
+            message: "URL patterns to exclude (comma-separated, e.g. logout,signout):",
+            default: "logout,signout,delete",
+            filter: (input) => input
+                .split(",")
+                .map((s) => s.trim())
+                .filter(Boolean),
+        },
+        {
+            type: "list",
+            name: "reportFormat",
+            message: "Default report format:",
+            choices: [
+                { name: "markdown", value: "markdown" },
+                { name: "word (.docx)", value: "word" },
+                { name: "json", value: "json" },
+                { name: "txt", value: "txt" },
+            ],
+            default: "markdown",
+        },
+        {
+            type: "input",
+            name: "companyName",
+            message: "Company or project name (for report headers):",
+            default: path_1.default.basename(process.cwd()),
+        },
+        {
+            type: "list",
+            name: "gateFailOn",
+            message: "CI/CD gate — fail on severity at or above:",
+            choices: [
+                { name: "critical — only block on critical issues", value: "critical" },
+                { name: "high     — block on high and critical", value: "high" },
+                { name: "medium   — block on medium and above", value: "medium" },
+                { name: "low      — block on everything except info", value: "low" },
+            ],
+            default: "high",
+        },
+        {
+            type: "input",
+            name: "gateMaxVulns",
+            message: "CI/CD gate — max allowed vulnerabilities before failing:",
+            default: "0",
+            validate: (input) => {
+                const n = parseInt(input, 10);
+                if (isNaN(n) || n < 0)
+                    return "Must be a non-negative number";
+                return true;
+            },
+            filter: (input) => parseInt(input, 10),
+        },
+    ]);
+    return {
+        scan: {
+            defaultProfile: answers.profile,
+            defaultTimeout: answers.timeout,
+            strictScope: answers.strictScope,
+            exclude: answers.exclude,
+        },
+        report: {
+            defaultFormat: answers.reportFormat,
+            companyName: answers.companyName,
+        },
+        gate: {
+            failOn: answers.gateFailOn,
+            maxVulns: answers.gateMaxVulns,
+        },
+        plugins: {
+            disabled: [],
+        },
+    };
+}

package/dist/commands/scan.js

@@ -119,23 +119,18 @@ function registerScanCommand(program) {
                 console.log("");
             }
             const scanner = new scanner_1.Scanner(options.plugins !== false);
-            // Set up event listeners for progress feedback
-            let currentStage = "initializing";
             let vulnerabilitiesFound = 0;
             scanner.on("scan:start", () => {
                 if (spinner)
                     spinner.text = `Starting scan of ${url}...`;
-                currentStage = "scanning";
             });
             scanner.on("crawl:page", (data) => {
                 if (spinner)
                     spinner.text = `Crawling: ${data.url} (${data.crawledCount}/${data.maxPages})`;
-                currentStage = "crawling";
             });
             scanner.on("form:test", (data) => {
                 if (spinner)
                     spinner.text = `Testing forms on ${data.url} (${data.formCount} forms)...`;
-                currentStage = "testing forms";
             });
             scanner.on("vuln:found", (data) => {
                 vulnerabilitiesFound++;

package/dist/core/config.js

@@ -49,6 +49,7 @@ const fs = __importStar(require("fs"));
 const path = __importStar(require("path"));
 const os = __importStar(require("os"));
 const config_schema_1 = require("./config-schema");
+const project_config_1 = require("./project-config");
 const theme_1 = require("../utils/theme");
 var config_schema_2 = require("./config-schema");
 Object.defineProperty(exports, "scanProfiles", { enumerable: true, get: function () { return config_schema_2.defaultScanProfiles; } });
@@ -363,7 +364,13 @@ function getConfigStore() {
 }
 async function getConfig() {
     await ensureInitialized();
-    return store.store;
+    const globalConfig = store.store;
+    // Merge project-level .kramscanrc if present
+    const project = (0, project_config_1.findProjectConfig)();
+    if (project) {
+        return (0, project_config_1.deepMerge)(globalConfig, project.config);
+    }
+    return globalConfig;
 }
 async function getConfigValue(key) {
     await ensureInitialized();

package/dist/core/project-config.d.ts

@@ -0,0 +1,59 @@
+/**
+ * Project-level configuration (.kramscanrc)
+ *
+ * Discovers and loads a .kramscanrc file from the current working directory
+ * (or any parent directory) and merges it with the global config. Project
+ * settings override global settings, but sensitive fields (ai.apiKey) are
+ * never read from the project file.
+ */
+export declare const PROJECT_CONFIG_FILENAME = ".kramscanrc";
+/**
+ * Represents the subset of config fields that can be set at the project level.
+ * Intentionally excludes ai.apiKey for security.
+ */
+export interface ProjectConfig {
+    scan?: {
+        defaultProfile?: string;
+        defaultTimeout?: number;
+        maxThreads?: number;
+        followRedirects?: boolean;
+        verifySSL?: boolean;
+        rateLimitPerSecond?: number;
+        strictScope?: boolean;
+        include?: string[];
+        exclude?: string[];
+        profiles?: Record<string, {
+            depth?: number;
+            timeout?: number;
+            maxPages?: number;
+            maxLinksPerPage?: number;
+        }>;
+    };
+    report?: {
+        defaultFormat?: string;
+        companyName?: string;
+        includeScreenshots?: boolean;
+        severityThreshold?: string;
+    };
+    gate?: {
+        failOn?: string;
+        maxVulns?: number;
+    };
+    plugins?: {
+        disabled?: string[];
+    };
+}
+/**
+ * Search for a .kramscanrc file starting from `startDir` and walking up
+ * to the filesystem root. Returns the parsed contents and file path,
+ * or null if no file is found.
+ */
+export declare function findProjectConfig(startDir?: string): {
+    config: ProjectConfig;
+    filepath: string;
+} | null;
+/**
+ * Deep merge `source` into `target`, returning a new object. Arrays are
+ * replaced, not concatenated. Undefined values in source are skipped.
+ */
+export declare function deepMerge<T extends Record<string, unknown>>(target: T, source: Record<string, unknown>): T;

package/dist/core/project-config.js

@@ -0,0 +1,104 @@
+"use strict";
+/**
+ * Project-level configuration (.kramscanrc)
+ *
+ * Discovers and loads a .kramscanrc file from the current working directory
+ * (or any parent directory) and merges it with the global config. Project
+ * settings override global settings, but sensitive fields (ai.apiKey) are
+ * never read from the project file.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.PROJECT_CONFIG_FILENAME = void 0;
+exports.findProjectConfig = findProjectConfig;
+exports.deepMerge = deepMerge;
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+exports.PROJECT_CONFIG_FILENAME = ".kramscanrc";
+/**
+ * Search for a .kramscanrc file starting from `startDir` and walking up
+ * to the filesystem root. Returns the parsed contents and file path,
+ * or null if no file is found.
+ */
+function findProjectConfig(startDir = process.cwd()) {
+    for (let dir = path.resolve(startDir);; dir = path.dirname(dir)) {
+        const candidate = path.join(dir, exports.PROJECT_CONFIG_FILENAME);
+        if (fs.existsSync(candidate)) {
+            try {
+                const raw = fs.readFileSync(candidate, "utf-8");
+                const parsed = JSON.parse(raw);
+                // Strip any ai.apiKey that might have been added by mistake
+                const sanitized = parsed;
+                if (sanitized.ai && typeof sanitized.ai === "object") {
+                    delete sanitized.ai.apiKey;
+                }
+                return { config: parsed, filepath: candidate };
+            }
+            catch {
+                // Malformed file — skip it silently
+                return null;
+            }
+        }
+        const parent = path.dirname(dir);
+        if (parent === dir)
+            break; // reached filesystem root
+    }
+    return null;
+}
+/**
+ * Deep merge `source` into `target`, returning a new object. Arrays are
+ * replaced, not concatenated. Undefined values in source are skipped.
+ */
+function deepMerge(target, source) {
+    const result = { ...target };
+    for (const key of Object.keys(source)) {
+        const srcVal = source[key];
+        const tgtVal = result[key];
+        if (srcVal === undefined)
+            continue;
+        if (srcVal !== null &&
+            typeof srcVal === "object" &&
+            !Array.isArray(srcVal) &&
+            tgtVal !== null &&
+            typeof tgtVal === "object" &&
+            !Array.isArray(tgtVal)) {
+            result[key] = deepMerge(tgtVal, srcVal);
+        }
+        else {
+            result[key] = srcVal;
+        }
+    }
+    return result;
+}

package/dist/core/server-probe.js

@@ -15,7 +15,6 @@ async function probeServer(url, options = {}) {
     const { timeout = 30000, interval = 1000, maxAttempts = 20 } = options;
     const startTime = Date.now();
     let attempts = 0;
-    let lastError = null;
     while (attempts < maxAttempts && Date.now() - startTime < timeout) {
         attempts++;
         try {
@@ -23,10 +22,9 @@ async function probeServer(url, options = {}) {
             if (result.reachable) {
                 return result;
             }
-            lastError = `HTTP ${result.statusCode}`;
         }
         catch (err) {
-            lastError = err.message;
+            // error logged silently
         }
         // Exponential backoff with cap
         const delay = Math.min(interval * Math.pow(1.5, attempts - 1), 5000);

package/dist/plugins/vulnerabilities/CORSAnalyzerPlugin.js

@@ -17,7 +17,6 @@ class CORSAnalyzerPlugin extends types_1.BaseVulnerabilityPlugin {
         const acao = headers["access-control-allow-origin"];
         const acac = headers["access-control-allow-credentials"];
         const acam = headers["access-control-allow-methods"];
-        const acah = headers["access-control-allow-headers"];
         // Check for wildcard origin
         if (acao === "*") {
             vulnerabilities.push(this.createVulnerability("CORS: Wildcard Origin Allowed", `The server at ${host} allows requests from any origin (Access-Control-Allow-Origin: *). ` +

package/dist/plugins/vulnerabilities/DebugEndpointPlugin.d.ts

@@ -10,6 +10,6 @@ export declare class DebugEndpointPlugin extends BaseVulnerabilityPlugin {
      * Each entry has a path, a human-readable name, and expected severity.
      */
     private readonly debugEndpoints;
-    analyzeContent(context: PluginContext, content: string): Promise<Vulnerability[]>;
+    analyzeContent(context: PluginContext, _content: string): Promise<Vulnerability[]>;
     reset(): void;
 }

package/dist/plugins/vulnerabilities/DebugEndpointPlugin.js

@@ -174,7 +174,7 @@ class DebugEndpointPlugin extends types_1.BaseVulnerabilityPlugin {
             remediation: "Protect /metrics endpoint behind authentication or restrict to internal networks.",
         },
     ];
-    async analyzeContent(context, content) {
+    async analyzeContent(context, _content) {
         const vulnerabilities = [];
         const baseUrl = new URL(context.url).origin;
         for (const endpoint of this.debugEndpoints) {

package/dist/plugins/vulnerabilities/DirectoryTraversalPlugin.d.ts

@@ -8,6 +8,6 @@ export declare class DirectoryTraversalPlugin extends BaseVulnerabilityPlugin {
      * Each payload targets a well-known file with distinctive content markers.
      */
     private readonly payloads;
-    testParameter(context: PluginContext, param: string, value: string): Promise<VulnerabilityTestResult>;
+    testParameter(context: PluginContext, param: string, _value: string): Promise<VulnerabilityTestResult>;
     private buildTestUrl;
 }

package/dist/plugins/vulnerabilities/DirectoryTraversalPlugin.js

@@ -66,7 +66,7 @@ class DirectoryTraversalPlugin extends types_1.BaseVulnerabilityPlugin {
             os: "linux",
         },
     ];
-    async testParameter(context, param, value) {
+    async testParameter(context, param, _value) {
         for (const { payload, markers, os } of this.payloads) {
             try {
                 const testUrl = this.buildTestUrl(context.url, param, payload);

package/dist/plugins/vulnerabilities/OpenRedirectPlugin.d.ts

@@ -6,5 +6,5 @@ export declare class OpenRedirectPlugin extends BaseVulnerabilityPlugin {
     readonly description = "Detects open redirect vulnerabilities in URL parameters";
     private readonly redirectParams;
     private readonly testDomains;
-    analyzeContent(context: PluginContext, content: string): Promise<Vulnerability[]>;
+    analyzeContent(context: PluginContext, _content: string): Promise<Vulnerability[]>;
 }

package/dist/plugins/vulnerabilities/OpenRedirectPlugin.js

@@ -19,7 +19,7 @@ class OpenRedirectPlugin extends types_1.BaseVulnerabilityPlugin {
         "/\\evil.com",
         "https:evil.com",
     ];
-    async analyzeContent(context, content) {
+    async analyzeContent(context, _content) {
         const vulnerabilities = [];
         const url = new URL(context.url);
         // Check if the current URL uses any redirect-like parameters

package/dist/reports/PdfGenerator.js

@@ -53,6 +53,7 @@ function escapeHtml(text) {
 }
 function sanitizeFilenamePart(value) {
     return value
+        // eslint-disable-next-line no-control-regex, no-useless-escape
         .replace(/[<>:"\/\\|?*\x00-\x1F]/g, "_")
         .replace(/\s+/g, "_")
         .replace(/_+/g, "_")

package/dist/utils/logger.js

@@ -55,10 +55,10 @@ function outputLog(entry) {
         console.log(JSON.stringify(entry));
     }
     else {
-        const { timestamp, level, message, ...rest } = entry;
+        const { message, context: ctx } = entry;
         let output = message;
-        if (process.env.LOG_INCLUDE_CONTEXT === "true" && Object.keys(rest).length > 0) {
-            output += ` ${JSON.stringify(rest)}`;
+        if (process.env.LOG_INCLUDE_CONTEXT === "true" && ctx && Object.keys(ctx).length > 0) {
+            output += ` ${JSON.stringify(ctx)}`;
         }
         console.log(output);
     }

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "kramscan",
-  "version": "0.3.1",
+  "version": "0.4.0",
   "description": "KramScan CLI — AI-powered web app security testing",
   "author": "Akram Shaikh (https://akramshaikh.me)",
   "license": "MIT",