lula2 0.7.3 → 0.7.5

package/dist/cli/commands/ui.js

@@ -1680,6 +1680,7 @@ import {
 } from "fs";
 import * as yaml2 from "js-yaml";
 import { join as join2 } from "path";
+import { createHash as createHash2 } from "crypto";
 var FileStore;
 var init_fileStore = __esm({
   "cli/server/infrastructure/fileStore.ts"() {
@@ -1977,6 +1978,10 @@ var init_fileStore = __esm({
               const content = readFileSync2(mappingFile, "utf8");
               const parsed = yaml2.load(content);
               if (Array.isArray(parsed)) {
+                parsed.forEach((mapping) => {
+                  mapping.hash = createHash2("sha256").update(JSON.stringify(mapping)).digest("hex");
+                  return mapping;
+                });
                 mappings.push(...parsed);
               }
             } catch (error) {
@@ -2011,12 +2016,9 @@ var init_fileStore = __esm({
             existingMappings = [];
           }
         }
-        const existingIndex = existingMappings.findIndex((m) => m.uuid === mapping.uuid);
-        if (existingIndex >= 0) {
-          existingMappings[existingIndex] = mapping;
-        } else {
-          existingMappings.push(mapping);
-        }
+        const cleanMapping = { ...mapping };
+        delete cleanMapping.hash;
+        existingMappings.push(cleanMapping);
         try {
           const yamlContent = yaml2.dump(existingMappings, {
             indent: 2,
@@ -2041,7 +2043,8 @@ var init_fileStore = __esm({
             let mappings = yaml2.load(content) || [];
             const originalLength = mappings.length;
             mappings = mappings.filter((m) => {
-              return `${m.control_id}:${m.uuid}` !== compositeKey;
+              const hash = createHash2("sha256").update(JSON.stringify(m)).digest("hex");
+              return `${m.control_id}:${hash}` !== compositeKey;
             });
             if (mappings.length < originalLength) {
               if (mappings.length === 0) {
@@ -2104,8 +2107,13 @@ var init_fileStore = __esm({
           if (!existsSync2(familyDir)) {
             mkdirSync(familyDir, { recursive: true });
           }
+          const cleanMappings = controlMappings.map((m) => {
+            const clean = { ...m };
+            delete clean.hash;
+            return clean;
+          });
           try {
-            const yamlContent = yaml2.dump(controlMappings, {
+            const yamlContent = yaml2.dump(cleanMappings, {
               indent: 2,
               lineWidth: -1,
               noRefs: true
@@ -3024,6 +3032,7 @@ __export(serverState_exports, {
   saveMappingsToFile: () => saveMappingsToFile
 });
 import { join as join3 } from "path";
+import { createHash as createHash3 } from "crypto";
 function initializeServerState(controlSetDir, subdir = ".") {
   const fullPath = subdir === "." ? controlSetDir : join3(controlSetDir, subdir);
   serverState = {
@@ -3066,11 +3075,11 @@ function addMappingToIndexes(mapping) {
   if (!state.mappingsByFamily.has(family)) {
     state.mappingsByFamily.set(family, /* @__PURE__ */ new Set());
   }
-  state.mappingsByFamily.get(family).add(mapping.uuid);
+  state.mappingsByFamily.get(family).add(mapping.hash);
   if (!state.mappingsByControl.has(mapping.control_id)) {
     state.mappingsByControl.set(mapping.control_id, /* @__PURE__ */ new Set());
   }
-  state.mappingsByControl.get(mapping.control_id).add(mapping.uuid);
+  state.mappingsByControl.get(mapping.control_id).add(mapping.hash);
 }
 async function loadAllData() {
   const state = getServerState();
@@ -3084,7 +3093,10 @@ async function loadAllData() {
     debug(`Loaded ${controls.length} controls from individual files`);
     const mappings = await state.fileStore.loadMappings();
     for (const mapping of mappings) {
-      const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
+      if (!mapping.hash) {
+        mapping.hash = createHash3("sha256").update(JSON.stringify(mapping)).digest("hex");
+      }
+      const compositeKey = `${mapping.control_id}:${mapping.hash}`;
       state.mappingsCache.set(compositeKey, mapping);
       addMappingToIndexes(mapping);
     }
@@ -5132,6 +5144,7 @@ init_gitHistory();
 import * as yaml5 from "js-yaml";
 import { join as join5 } from "path";
 import { WebSocket, WebSocketServer } from "ws";
+import crypto2 from "node:crypto";
 var WebSocketManager = class {
   wss = null;
   clients = /* @__PURE__ */ new Set();
@@ -5196,21 +5209,24 @@ var WebSocketManager = class {
           if (payload && payload.control_id) {
             const mapping = payload;
             if (!mapping.uuid) {
-              const crypto2 = await import("crypto");
-              mapping.uuid = crypto2.randomUUID();
+              const crypto3 = await import("crypto");
+              mapping.uuid = crypto3.randomUUID();
             }
+            if (!mapping.hash || mapping.hash === "") {
+              mapping.hash = crypto2.createHash("sha256").update(JSON.stringify(mapping)).digest("hex");
+            }
+            const compositeKey = `${mapping.control_id}:${mapping.hash}`;
             await state.fileStore.saveMapping(mapping);
-            const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
             state.mappingsCache.set(compositeKey, mapping);
             const family = mapping.control_id.split("-")[0];
             if (!state.mappingsByFamily.has(family)) {
               state.mappingsByFamily.set(family, /* @__PURE__ */ new Set());
             }
-            state.mappingsByFamily.get(family)?.add(mapping.uuid);
+            state.mappingsByFamily.get(family)?.add(mapping.hash);
             if (!state.mappingsByControl.has(mapping.control_id)) {
               state.mappingsByControl.set(mapping.control_id, /* @__PURE__ */ new Set());
             }
-            state.mappingsByControl.get(mapping.control_id)?.add(mapping.uuid);
+            state.mappingsByControl.get(mapping.control_id)?.add(mapping.hash);
             ws.send(
               JSON.stringify({
                 type: "mapping-created",
@@ -5221,38 +5237,21 @@ var WebSocketManager = class {
           }
           break;
         }
-        case "update-mapping": {
-          const state = getServerState();
-          if (payload && payload.uuid) {
-            const mapping = payload;
-            await state.fileStore.saveMapping(mapping);
-            const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
-            state.mappingsCache.set(compositeKey, mapping);
-            ws.send(
-              JSON.stringify({
-                type: "mapping-updated",
-                payload: { uuid: mapping.uuid, success: true }
-              })
-            );
-            this.broadcastState();
-          }
-          break;
-        }
         case "delete-mapping": {
           const state = getServerState();
-          if (payload && payload.uuid) {
-            const uuid = payload.uuid;
-            const mapping = state.mappingsCache.get(uuid);
+          if (payload && payload.composite_key) {
+            const composite_key = payload.composite_key;
+            const mapping = state.mappingsCache.get(composite_key);
             if (mapping) {
-              await state.fileStore.deleteMapping(uuid);
-              state.mappingsCache.delete(uuid);
+              await state.fileStore.deleteMapping(composite_key);
+              state.mappingsCache.delete(composite_key);
               const family = mapping.control_id.split("-")[0];
-              state.mappingsByFamily.get(family)?.delete(uuid);
-              state.mappingsByControl.get(mapping.control_id)?.delete(uuid);
+              state.mappingsByFamily.get(family)?.delete(mapping.hash);
+              state.mappingsByControl.get(mapping.control_id)?.delete(mapping.hash);
               ws.send(
                 JSON.stringify({
                   type: "mapping-deleted",
-                  payload: { uuid, success: true }
+                  payload: { hash: mapping.hash, success: true }
                 })
               );
               this.broadcastState();
@@ -5729,6 +5728,7 @@ var WebSocketManager = class {
 var wsManager = new WebSocketManager();
 
 // cli/server/server.ts
+import { createHash as createHash4 } from "crypto";
 var __filename = fileURLToPath(import.meta.url);
 var __dirname = dirname2(__filename);
 async function createServer(options) {
@@ -5754,6 +5754,11 @@ async function createServer(options) {
   app.get("/*splat", (req, res) => {
     res.sendFile("index.html", { root: distPath });
   });
+  app.post("/hash", (req, res) => {
+    delete req.body.hash;
+    const hash = createHash4("sha256").update(JSON.stringify(req.body)).digest("hex");
+    res.status(200).json({ hash });
+  });
   const httpServer = createHttpServer(app);
   wsManager.initialize(httpServer);
   return {

package/dist/cli/server/index.js

@@ -1662,6 +1662,7 @@ import {
 } from "fs";
 import * as yaml2 from "js-yaml";
 import { join as join2 } from "path";
+import { createHash as createHash2 } from "crypto";
 var FileStore;
 var init_fileStore = __esm({
   "cli/server/infrastructure/fileStore.ts"() {
@@ -1959,6 +1960,10 @@ var init_fileStore = __esm({
               const content = readFileSync2(mappingFile, "utf8");
               const parsed = yaml2.load(content);
               if (Array.isArray(parsed)) {
+                parsed.forEach((mapping) => {
+                  mapping.hash = createHash2("sha256").update(JSON.stringify(mapping)).digest("hex");
+                  return mapping;
+                });
                 mappings.push(...parsed);
               }
             } catch (error) {
@@ -1993,12 +1998,9 @@ var init_fileStore = __esm({
             existingMappings = [];
           }
         }
-        const existingIndex = existingMappings.findIndex((m) => m.uuid === mapping.uuid);
-        if (existingIndex >= 0) {
-          existingMappings[existingIndex] = mapping;
-        } else {
-          existingMappings.push(mapping);
-        }
+        const cleanMapping = { ...mapping };
+        delete cleanMapping.hash;
+        existingMappings.push(cleanMapping);
         try {
           const yamlContent = yaml2.dump(existingMappings, {
             indent: 2,
@@ -2023,7 +2025,8 @@ var init_fileStore = __esm({
             let mappings = yaml2.load(content) || [];
             const originalLength = mappings.length;
             mappings = mappings.filter((m) => {
-              return `${m.control_id}:${m.uuid}` !== compositeKey;
+              const hash = createHash2("sha256").update(JSON.stringify(m)).digest("hex");
+              return `${m.control_id}:${hash}` !== compositeKey;
             });
             if (mappings.length < originalLength) {
               if (mappings.length === 0) {
@@ -2086,8 +2089,13 @@ var init_fileStore = __esm({
           if (!existsSync2(familyDir)) {
             mkdirSync(familyDir, { recursive: true });
           }
+          const cleanMappings = controlMappings.map((m) => {
+            const clean = { ...m };
+            delete clean.hash;
+            return clean;
+          });
           try {
-            const yamlContent = yaml2.dump(controlMappings, {
+            const yamlContent = yaml2.dump(cleanMappings, {
               indent: 2,
               lineWidth: -1,
               noRefs: true
@@ -3006,6 +3014,7 @@ __export(serverState_exports, {
   saveMappingsToFile: () => saveMappingsToFile
 });
 import { join as join3 } from "path";
+import { createHash as createHash3 } from "crypto";
 function initializeServerState(controlSetDir, subdir = ".") {
   const fullPath = subdir === "." ? controlSetDir : join3(controlSetDir, subdir);
   serverState = {
@@ -3048,11 +3057,11 @@ function addMappingToIndexes(mapping) {
   if (!state.mappingsByFamily.has(family)) {
     state.mappingsByFamily.set(family, /* @__PURE__ */ new Set());
   }
-  state.mappingsByFamily.get(family).add(mapping.uuid);
+  state.mappingsByFamily.get(family).add(mapping.hash);
   if (!state.mappingsByControl.has(mapping.control_id)) {
     state.mappingsByControl.set(mapping.control_id, /* @__PURE__ */ new Set());
   }
-  state.mappingsByControl.get(mapping.control_id).add(mapping.uuid);
+  state.mappingsByControl.get(mapping.control_id).add(mapping.hash);
 }
 async function loadAllData() {
   const state = getServerState();
@@ -3066,7 +3075,10 @@ async function loadAllData() {
     debug(`Loaded ${controls.length} controls from individual files`);
     const mappings = await state.fileStore.loadMappings();
     for (const mapping of mappings) {
-      const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
+      if (!mapping.hash) {
+        mapping.hash = createHash3("sha256").update(JSON.stringify(mapping)).digest("hex");
+      }
+      const compositeKey = `${mapping.control_id}:${mapping.hash}`;
       state.mappingsCache.set(compositeKey, mapping);
       addMappingToIndexes(mapping);
     }
@@ -5109,6 +5121,7 @@ init_gitHistory();
 import * as yaml5 from "js-yaml";
 import { join as join5 } from "path";
 import { WebSocket, WebSocketServer } from "ws";
+import crypto2 from "node:crypto";
 var WebSocketManager = class {
   wss = null;
   clients = /* @__PURE__ */ new Set();
@@ -5173,21 +5186,24 @@ var WebSocketManager = class {
           if (payload && payload.control_id) {
             const mapping = payload;
             if (!mapping.uuid) {
-              const crypto2 = await import("crypto");
-              mapping.uuid = crypto2.randomUUID();
+              const crypto3 = await import("crypto");
+              mapping.uuid = crypto3.randomUUID();
             }
+            if (!mapping.hash || mapping.hash === "") {
+              mapping.hash = crypto2.createHash("sha256").update(JSON.stringify(mapping)).digest("hex");
+            }
+            const compositeKey = `${mapping.control_id}:${mapping.hash}`;
             await state.fileStore.saveMapping(mapping);
-            const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
             state.mappingsCache.set(compositeKey, mapping);
             const family = mapping.control_id.split("-")[0];
             if (!state.mappingsByFamily.has(family)) {
               state.mappingsByFamily.set(family, /* @__PURE__ */ new Set());
             }
-            state.mappingsByFamily.get(family)?.add(mapping.uuid);
+            state.mappingsByFamily.get(family)?.add(mapping.hash);
             if (!state.mappingsByControl.has(mapping.control_id)) {
               state.mappingsByControl.set(mapping.control_id, /* @__PURE__ */ new Set());
             }
-            state.mappingsByControl.get(mapping.control_id)?.add(mapping.uuid);
+            state.mappingsByControl.get(mapping.control_id)?.add(mapping.hash);
             ws.send(
               JSON.stringify({
                 type: "mapping-created",
@@ -5198,38 +5214,21 @@ var WebSocketManager = class {
           }
           break;
         }
-        case "update-mapping": {
-          const state = getServerState();
-          if (payload && payload.uuid) {
-            const mapping = payload;
-            await state.fileStore.saveMapping(mapping);
-            const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
-            state.mappingsCache.set(compositeKey, mapping);
-            ws.send(
-              JSON.stringify({
-                type: "mapping-updated",
-                payload: { uuid: mapping.uuid, success: true }
-              })
-            );
-            this.broadcastState();
-          }
-          break;
-        }
         case "delete-mapping": {
           const state = getServerState();
-          if (payload && payload.uuid) {
-            const uuid = payload.uuid;
-            const mapping = state.mappingsCache.get(uuid);
+          if (payload && payload.composite_key) {
+            const composite_key = payload.composite_key;
+            const mapping = state.mappingsCache.get(composite_key);
             if (mapping) {
-              await state.fileStore.deleteMapping(uuid);
-              state.mappingsCache.delete(uuid);
+              await state.fileStore.deleteMapping(composite_key);
+              state.mappingsCache.delete(composite_key);
               const family = mapping.control_id.split("-")[0];
-              state.mappingsByFamily.get(family)?.delete(uuid);
-              state.mappingsByControl.get(mapping.control_id)?.delete(uuid);
+              state.mappingsByFamily.get(family)?.delete(mapping.hash);
+              state.mappingsByControl.get(mapping.control_id)?.delete(mapping.hash);
               ws.send(
                 JSON.stringify({
                   type: "mapping-deleted",
-                  payload: { uuid, success: true }
+                  payload: { hash: mapping.hash, success: true }
                 })
               );
               this.broadcastState();
@@ -5706,6 +5705,7 @@ var WebSocketManager = class {
 var wsManager = new WebSocketManager();
 
 // cli/server/server.ts
+import { createHash as createHash4 } from "crypto";
 var __filename = fileURLToPath(import.meta.url);
 var __dirname = dirname2(__filename);
 async function createServer(options) {
@@ -5731,6 +5731,11 @@ async function createServer(options) {
   app.get("/*splat", (req, res) => {
     res.sendFile("index.html", { root: distPath });
   });
+  app.post("/hash", (req, res) => {
+    delete req.body.hash;
+    const hash = createHash4("sha256").update(JSON.stringify(req.body)).digest("hex");
+    res.status(200).json({ hash });
+  });
   const httpServer = createHttpServer(app);
   wsManager.initialize(httpServer);
   return {

package/dist/cli/server/server.js

@@ -1662,6 +1662,7 @@ import {
 } from "fs";
 import * as yaml2 from "js-yaml";
 import { join as join2 } from "path";
+import { createHash as createHash2 } from "crypto";
 var FileStore;
 var init_fileStore = __esm({
   "cli/server/infrastructure/fileStore.ts"() {
@@ -1959,6 +1960,10 @@ var init_fileStore = __esm({
               const content = readFileSync2(mappingFile, "utf8");
               const parsed = yaml2.load(content);
               if (Array.isArray(parsed)) {
+                parsed.forEach((mapping) => {
+                  mapping.hash = createHash2("sha256").update(JSON.stringify(mapping)).digest("hex");
+                  return mapping;
+                });
                 mappings.push(...parsed);
               }
             } catch (error) {
@@ -1993,12 +1998,9 @@ var init_fileStore = __esm({
             existingMappings = [];
           }
         }
-        const existingIndex = existingMappings.findIndex((m) => m.uuid === mapping.uuid);
-        if (existingIndex >= 0) {
-          existingMappings[existingIndex] = mapping;
-        } else {
-          existingMappings.push(mapping);
-        }
+        const cleanMapping = { ...mapping };
+        delete cleanMapping.hash;
+        existingMappings.push(cleanMapping);
         try {
           const yamlContent = yaml2.dump(existingMappings, {
             indent: 2,
@@ -2023,7 +2025,8 @@ var init_fileStore = __esm({
             let mappings = yaml2.load(content) || [];
             const originalLength = mappings.length;
             mappings = mappings.filter((m) => {
-              return `${m.control_id}:${m.uuid}` !== compositeKey;
+              const hash = createHash2("sha256").update(JSON.stringify(m)).digest("hex");
+              return `${m.control_id}:${hash}` !== compositeKey;
             });
             if (mappings.length < originalLength) {
               if (mappings.length === 0) {
@@ -2086,8 +2089,13 @@ var init_fileStore = __esm({
           if (!existsSync2(familyDir)) {
             mkdirSync(familyDir, { recursive: true });
           }
+          const cleanMappings = controlMappings.map((m) => {
+            const clean = { ...m };
+            delete clean.hash;
+            return clean;
+          });
           try {
-            const yamlContent = yaml2.dump(controlMappings, {
+            const yamlContent = yaml2.dump(cleanMappings, {
               indent: 2,
               lineWidth: -1,
               noRefs: true
@@ -3006,6 +3014,7 @@ __export(serverState_exports, {
   saveMappingsToFile: () => saveMappingsToFile
 });
 import { join as join3 } from "path";
+import { createHash as createHash3 } from "crypto";
 function initializeServerState(controlSetDir, subdir = ".") {
   const fullPath = subdir === "." ? controlSetDir : join3(controlSetDir, subdir);
   serverState = {
@@ -3048,11 +3057,11 @@ function addMappingToIndexes(mapping) {
   if (!state.mappingsByFamily.has(family)) {
     state.mappingsByFamily.set(family, /* @__PURE__ */ new Set());
   }
-  state.mappingsByFamily.get(family).add(mapping.uuid);
+  state.mappingsByFamily.get(family).add(mapping.hash);
   if (!state.mappingsByControl.has(mapping.control_id)) {
     state.mappingsByControl.set(mapping.control_id, /* @__PURE__ */ new Set());
   }
-  state.mappingsByControl.get(mapping.control_id).add(mapping.uuid);
+  state.mappingsByControl.get(mapping.control_id).add(mapping.hash);
 }
 async function loadAllData() {
   const state = getServerState();
@@ -3066,7 +3075,10 @@ async function loadAllData() {
     debug(`Loaded ${controls.length} controls from individual files`);
     const mappings = await state.fileStore.loadMappings();
     for (const mapping of mappings) {
-      const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
+      if (!mapping.hash) {
+        mapping.hash = createHash3("sha256").update(JSON.stringify(mapping)).digest("hex");
+      }
+      const compositeKey = `${mapping.control_id}:${mapping.hash}`;
       state.mappingsCache.set(compositeKey, mapping);
       addMappingToIndexes(mapping);
     }
@@ -5109,6 +5121,7 @@ init_gitHistory();
 import * as yaml5 from "js-yaml";
 import { join as join5 } from "path";
 import { WebSocket, WebSocketServer } from "ws";
+import crypto2 from "node:crypto";
 var WebSocketManager = class {
   wss = null;
   clients = /* @__PURE__ */ new Set();
@@ -5173,21 +5186,24 @@ var WebSocketManager = class {
           if (payload && payload.control_id) {
             const mapping = payload;
             if (!mapping.uuid) {
-              const crypto2 = await import("crypto");
-              mapping.uuid = crypto2.randomUUID();
+              const crypto3 = await import("crypto");
+              mapping.uuid = crypto3.randomUUID();
             }
+            if (!mapping.hash || mapping.hash === "") {
+              mapping.hash = crypto2.createHash("sha256").update(JSON.stringify(mapping)).digest("hex");
+            }
+            const compositeKey = `${mapping.control_id}:${mapping.hash}`;
             await state.fileStore.saveMapping(mapping);
-            const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
             state.mappingsCache.set(compositeKey, mapping);
             const family = mapping.control_id.split("-")[0];
             if (!state.mappingsByFamily.has(family)) {
               state.mappingsByFamily.set(family, /* @__PURE__ */ new Set());
             }
-            state.mappingsByFamily.get(family)?.add(mapping.uuid);
+            state.mappingsByFamily.get(family)?.add(mapping.hash);
             if (!state.mappingsByControl.has(mapping.control_id)) {
               state.mappingsByControl.set(mapping.control_id, /* @__PURE__ */ new Set());
             }
-            state.mappingsByControl.get(mapping.control_id)?.add(mapping.uuid);
+            state.mappingsByControl.get(mapping.control_id)?.add(mapping.hash);
             ws.send(
               JSON.stringify({
                 type: "mapping-created",
@@ -5198,38 +5214,21 @@ var WebSocketManager = class {
           }
           break;
         }
-        case "update-mapping": {
-          const state = getServerState();
-          if (payload && payload.uuid) {
-            const mapping = payload;
-            await state.fileStore.saveMapping(mapping);
-            const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
-            state.mappingsCache.set(compositeKey, mapping);
-            ws.send(
-              JSON.stringify({
-                type: "mapping-updated",
-                payload: { uuid: mapping.uuid, success: true }
-              })
-            );
-            this.broadcastState();
-          }
-          break;
-        }
         case "delete-mapping": {
           const state = getServerState();
-          if (payload && payload.uuid) {
-            const uuid = payload.uuid;
-            const mapping = state.mappingsCache.get(uuid);
+          if (payload && payload.composite_key) {
+            const composite_key = payload.composite_key;
+            const mapping = state.mappingsCache.get(composite_key);
             if (mapping) {
-              await state.fileStore.deleteMapping(uuid);
-              state.mappingsCache.delete(uuid);
+              await state.fileStore.deleteMapping(composite_key);
+              state.mappingsCache.delete(composite_key);
               const family = mapping.control_id.split("-")[0];
-              state.mappingsByFamily.get(family)?.delete(uuid);
-              state.mappingsByControl.get(mapping.control_id)?.delete(uuid);
+              state.mappingsByFamily.get(family)?.delete(mapping.hash);
+              state.mappingsByControl.get(mapping.control_id)?.delete(mapping.hash);
               ws.send(
                 JSON.stringify({
                   type: "mapping-deleted",
-                  payload: { uuid, success: true }
+                  payload: { hash: mapping.hash, success: true }
                 })
               );
               this.broadcastState();
@@ -5706,6 +5705,7 @@ var WebSocketManager = class {
 var wsManager = new WebSocketManager();
 
 // cli/server/server.ts
+import { createHash as createHash4 } from "crypto";
 var __filename = fileURLToPath(import.meta.url);
 var __dirname = dirname2(__filename);
 async function createServer(options) {
@@ -5731,6 +5731,11 @@ async function createServer(options) {
   app.get("/*splat", (req, res) => {
     res.sendFile("index.html", { root: distPath });
   });
+  app.post("/hash", (req, res) => {
+    delete req.body.hash;
+    const hash = createHash4("sha256").update(JSON.stringify(req.body)).digest("hex");
+    res.status(200).json({ hash });
+  });
   const httpServer = createHttpServer(app);
   wsManager.initialize(httpServer);
   return {

package/dist/cli/server/serverState.js

@@ -1,5 +1,6 @@
 // cli/server/serverState.ts
 import { join as join3 } from "path";
+import { createHash as createHash2 } from "crypto";
 
 // cli/utils/debug.ts
 var debugEnabled = false;
@@ -88,6 +89,7 @@ function getControlId(control, baseDir) {
 }
 
 // cli/server/infrastructure/fileStore.ts
+import { createHash } from "crypto";
 var FileStore = class {
   baseDir;
   controlsDir;
@@ -380,6 +382,10 @@ var FileStore = class {
           const content = readFileSync2(mappingFile, "utf8");
           const parsed = yaml2.load(content);
           if (Array.isArray(parsed)) {
+            parsed.forEach((mapping) => {
+              mapping.hash = createHash("sha256").update(JSON.stringify(mapping)).digest("hex");
+              return mapping;
+            });
             mappings.push(...parsed);
           }
         } catch (error) {
@@ -414,12 +420,9 @@ var FileStore = class {
         existingMappings = [];
       }
     }
-    const existingIndex = existingMappings.findIndex((m) => m.uuid === mapping.uuid);
-    if (existingIndex >= 0) {
-      existingMappings[existingIndex] = mapping;
-    } else {
-      existingMappings.push(mapping);
-    }
+    const cleanMapping = { ...mapping };
+    delete cleanMapping.hash;
+    existingMappings.push(cleanMapping);
     try {
       const yamlContent = yaml2.dump(existingMappings, {
         indent: 2,
@@ -444,7 +447,8 @@ var FileStore = class {
         let mappings = yaml2.load(content) || [];
         const originalLength = mappings.length;
         mappings = mappings.filter((m) => {
-          return `${m.control_id}:${m.uuid}` !== compositeKey;
+          const hash = createHash("sha256").update(JSON.stringify(m)).digest("hex");
+          return `${m.control_id}:${hash}` !== compositeKey;
         });
         if (mappings.length < originalLength) {
           if (mappings.length === 0) {
@@ -507,8 +511,13 @@ var FileStore = class {
       if (!existsSync2(familyDir)) {
         mkdirSync(familyDir, { recursive: true });
       }
+      const cleanMappings = controlMappings.map((m) => {
+        const clean = { ...m };
+        delete clean.hash;
+        return clean;
+      });
       try {
-        const yamlContent = yaml2.dump(controlMappings, {
+        const yamlContent = yaml2.dump(cleanMappings, {
           indent: 2,
           lineWidth: -1,
           noRefs: true
@@ -1447,11 +1456,11 @@ function addMappingToIndexes(mapping) {
   if (!state.mappingsByFamily.has(family)) {
     state.mappingsByFamily.set(family, /* @__PURE__ */ new Set());
   }
-  state.mappingsByFamily.get(family).add(mapping.uuid);
+  state.mappingsByFamily.get(family).add(mapping.hash);
   if (!state.mappingsByControl.has(mapping.control_id)) {
     state.mappingsByControl.set(mapping.control_id, /* @__PURE__ */ new Set());
   }
-  state.mappingsByControl.get(mapping.control_id).add(mapping.uuid);
+  state.mappingsByControl.get(mapping.control_id).add(mapping.hash);
 }
 async function loadAllData() {
   const state = getServerState();
@@ -1465,7 +1474,10 @@ async function loadAllData() {
     debug(`Loaded ${controls.length} controls from individual files`);
     const mappings = await state.fileStore.loadMappings();
     for (const mapping of mappings) {
-      const compositeKey = `${mapping.control_id}:${mapping.uuid}`;
+      if (!mapping.hash) {
+        mapping.hash = createHash2("sha256").update(JSON.stringify(mapping)).digest("hex");
+      }
+      const compositeKey = `${mapping.control_id}:${mapping.hash}`;
       state.mappingsCache.set(compositeKey, mapping);
       addMappingToIndexes(mapping);
     }