milieu-cli 0.1.0

package/dist/render/colors.js

@@ -0,0 +1,28 @@
+import chalk from "chalk";
+function isColorEnabled() {
+    const noColor = process.env["NO_COLOR"];
+    if (noColor !== undefined && noColor !== "") {
+        return false;
+    }
+    return true;
+}
+const colorEnabled = isColorEnabled();
+export function green(text) {
+    return colorEnabled ? chalk.green(text) : text;
+}
+export function yellow(text) {
+    return colorEnabled ? chalk.yellow(text) : text;
+}
+export function red(text) {
+    return colorEnabled ? chalk.red(text) : text;
+}
+export function cyan(text) {
+    return colorEnabled ? chalk.cyan(text) : text;
+}
+export function dim(text) {
+    return colorEnabled ? chalk.dim(text) : text;
+}
+export function bold(text) {
+    return colorEnabled ? chalk.bold(text) : text;
+}
+//# sourceMappingURL=colors.js.map

package/dist/render/colors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"colors.js","sourceRoot":"","sources":["../../src/render/colors.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B,SAAS,cAAc;IACrB,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;IACxC,IAAI,OAAO,KAAK,SAAS,IAAI,OAAO,KAAK,EAAE,EAAE,CAAC;QAC5C,OAAO,KAAK,CAAC;IACf,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,MAAM,YAAY,GAAG,cAAc,EAAE,CAAC;AAEtC,MAAM,UAAU,KAAK,CAAC,IAAY;IAChC,OAAO,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AACjD,CAAC;AACD,MAAM,UAAU,MAAM,CAAC,IAAY;IACjC,OAAO,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AAClD,CAAC;AACD,MAAM,UAAU,GAAG,CAAC,IAAY;IAC9B,OAAO,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AAC/C,CAAC;AACD,MAAM,UAAU,IAAI,CAAC,IAAY;IAC/B,OAAO,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AAChD,CAAC;AACD,MAAM,UAAU,GAAG,CAAC,IAAY;IAC9B,OAAO,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AAC/C,CAAC;AACD,MAAM,UAAU,IAAI,CAAC,IAAY;IAC/B,OAAO,YAAY,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AAChD,CAAC"}

package/dist/render/format-bridge.d.ts

@@ -0,0 +1,3 @@
+import type { BridgeResult } from "../core/types.js";
+export declare function formatBridge(bridge: BridgeResult, verbose: boolean): string;
+//# sourceMappingURL=format-bridge.d.ts.map

package/dist/render/format-bridge.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"format-bridge.d.ts","sourceRoot":"","sources":["../../src/render/format-bridge.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAY,YAAY,EAAE,MAAM,kBAAkB,CAAC;AAgB/D,wBAAgB,YAAY,CAAC,MAAM,EAAE,YAAY,EAAE,OAAO,EAAE,OAAO,GAAG,MAAM,CAQ3E"}

package/dist/render/format-bridge.js

@@ -0,0 +1,39 @@
+import { cyan, dim, bold } from "./colors.js";
+import { progressBar } from "./progress-bar.js";
+const BRIDGE_QUESTIONS = {
+    1: "Is my site accessible to AI agents?",
+    2: "Does my site publish machine-readable standards?",
+    3: "Does my site expose API infrastructure?",
+    4: "Can agents use the APIs correctly?",
+    5: "Can agents trust and leverage the context?",
+};
+function bridgeLabel(bridge) {
+    return `${bridge.name}: ${BRIDGE_QUESTIONS[bridge.id]}`;
+}
+export function formatBridge(bridge, verbose) {
+    if (bridge.status === "not_evaluated") {
+        return formatStubBridge(bridge);
+    }
+    if (bridge.score !== null) {
+        return formatScoredBridge(bridge, verbose);
+    }
+    return formatDetectionBridge(bridge, verbose);
+}
+function formatScoredBridge(bridge, _verbose) {
+    const bar = progressBar(bridge.score);
+    const label = bridgeLabel(bridge);
+    const timing = dim(`(${bridge.durationMs}ms)`);
+    return `  ${bold(label)}  ${bar}  ${bridge.score}  ${timing}`;
+}
+function formatDetectionBridge(bridge, _verbose) {
+    const detected = bridge.checks.filter((c) => c.status === "pass").length;
+    const total = bridge.checks.length;
+    const countText = `${detected} of ${total} signals detected`;
+    const label = bridgeLabel(bridge);
+    const timing = dim(`(${bridge.durationMs}ms)`);
+    return `  ${bold(label)}  ${cyan(countText)}  ${timing}`;
+}
+function formatStubBridge(bridge) {
+    return dim(`  ${bridgeLabel(bridge)}    not evaluated`);
+}
+//# sourceMappingURL=format-bridge.js.map

package/dist/render/format-bridge.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"format-bridge.js","sourceRoot":"","sources":["../../src/render/format-bridge.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,IAAI,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,aAAa,CAAC;AAC9C,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAEhD,MAAM,gBAAgB,GAA6B;IACjD,CAAC,EAAE,qCAAqC;IACxC,CAAC,EAAE,kDAAkD;IACrD,CAAC,EAAE,yCAAyC;IAC5C,CAAC,EAAE,oCAAoC;IACvC,CAAC,EAAE,4CAA4C;CAChD,CAAC;AAEF,SAAS,WAAW,CAAC,MAAoB;IACvC,OAAO,GAAG,MAAM,CAAC,IAAI,KAAK,gBAAgB,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC;AAC1D,CAAC;AAED,MAAM,UAAU,YAAY,CAAC,MAAoB,EAAE,OAAgB;IACjE,IAAI,MAAM,CAAC,MAAM,KAAK,eAAe,EAAE,CAAC;QACtC,OAAO,gBAAgB,CAAC,MAAM,CAAC,CAAC;IAClC,CAAC;IACD,IAAI,MAAM,CAAC,KAAK,KAAK,IAAI,EAAE,CAAC;QAC1B,OAAO,kBAAkB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC7C,CAAC;IACD,OAAO,qBAAqB,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;AAChD,CAAC;AAED,SAAS,kBAAkB,CAAC,MAAoB,EAAE,QAAiB;IACjE,MAAM,GAAG,GAAG,WAAW,CAAC,MAAM,CAAC,KAAe,CAAC,CAAC;IAChD,MAAM,KAAK,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;IAClC,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,MAAM,CAAC,UAAU,KAAK,CAAC,CAAC;IAC/C,OAAO,KAAK,IAAI,CAAC,KAAK,CAAC,KAAK,GAAG,KAAK,MAAM,CAAC,KAAK,KAAK,MAAM,EAAE,CAAC;AAChE,CAAC;AAED,SAAS,qBAAqB,CAC5B,MAAoB,EACpB,QAAiB;IAEjB,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;IACzE,MAAM,KAAK,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;IACnC,MAAM,SAAS,GAAG,GAAG,QAAQ,OAAO,KAAK,mBAAmB,CAAC;IAC7D,MAAM,KAAK,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;IAClC,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,MAAM,CAAC,UAAU,KAAK,CAAC,CAAC;IAC/C,OAAO,KAAK,IAAI,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,SAAS,CAAC,KAAK,MAAM,EAAE,CAAC;AAC3D,CAAC;AAED,SAAS,gBAAgB,CAAC,MAAoB;IAC5C,OAAO,GAAG,CAAC,KAAK,WAAW,CAAC,MAAM,CAAC,mBAAmB,CAAC,CAAC;AAC1D,CAAC"}

package/dist/render/format-scan.d.ts

@@ -0,0 +1,3 @@
+import type { ScanResult } from "../core/types.js";
+export declare function formatScanOutput(result: ScanResult, verbose: boolean, explainAll?: boolean): string;
+//# sourceMappingURL=format-scan.d.ts.map

package/dist/render/format-scan.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"format-scan.d.ts","sourceRoot":"","sources":["../../src/render/format-scan.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,kBAAkB,CAAC;AAwBnD,wBAAgB,gBAAgB,CAC9B,MAAM,EAAE,UAAU,EAClB,OAAO,EAAE,OAAO,EAChB,UAAU,UAAQ,GACjB,MAAM,CA4BR"}

package/dist/render/format-scan.js

@@ -0,0 +1,44 @@
+import { green, yellow, red, bold, dim } from "./colors.js";
+import { formatBridge } from "./format-bridge.js";
+import { formatVerboseChecks } from "./format-verbose.js";
+function formatTimestamp(isoTimestamp) {
+    const d = new Date(isoTimestamp);
+    const pad = (n) => String(n).padStart(2, "0");
+    return `${d.getUTCFullYear()}-${pad(d.getUTCMonth() + 1)}-${pad(d.getUTCDate())} ${pad(d.getUTCHours())}:${pad(d.getUTCMinutes())}:${pad(d.getUTCSeconds())}`;
+}
+function formatTotalTime(ms) {
+    if (ms < 1000)
+        return `${ms}ms`;
+    return `${(ms / 1000).toFixed(1)}s`;
+}
+function scoreColorFn(label) {
+    if (label === "pass")
+        return green;
+    if (label === "partial")
+        return yellow;
+    return red;
+}
+export function formatScanOutput(result, verbose, explainAll = false) {
+    const lines = [];
+    // Header
+    const domain = result.url.replace(/^https?:\/\//, "").replace(/\/$/, "");
+    lines.push(bold(`Milieu Scan: ${domain}`));
+    lines.push(dim(`Scanned: ${formatTimestamp(result.timestamp)}`));
+    lines.push("");
+    // Bridges
+    for (const bridge of result.bridges) {
+        lines.push(formatBridge(bridge, verbose));
+        if (verbose && bridge.checks.length > 0) {
+            lines.push(formatVerboseChecks(bridge.checks, explainAll));
+        }
+    }
+    lines.push("");
+    // Overall score (colored by score label)
+    const colorize = scoreColorFn(result.overallScoreLabel);
+    const scoreLine = `Overall Score: ${colorize(String(result.overallScore))} (${result.overallScoreLabel})`;
+    lines.push(bold(scoreLine));
+    // Total time
+    lines.push(dim(`Total: ${formatTotalTime(result.durationMs)}`));
+    return lines.join("\n");
+}
+//# sourceMappingURL=format-scan.js.map

package/dist/render/format-scan.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"format-scan.js","sourceRoot":"","sources":["../../src/render/format-scan.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAC5D,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAE1D,SAAS,eAAe,CAAC,YAAoB;IAC3C,MAAM,CAAC,GAAG,IAAI,IAAI,CAAC,YAAY,CAAC,CAAC;IACjC,MAAM,GAAG,GAAG,CAAC,CAAS,EAAU,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;IAC9D,OAAO,GAAG,CAAC,CAAC,cAAc,EAAE,IAAI,GAAG,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,aAAa,EAAE,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,aAAa,EAAE,CAAC,EAAE,CAAC;AAChK,CAAC;AAED,SAAS,eAAe,CAAC,EAAU;IACjC,IAAI,EAAE,GAAG,IAAI;QAAE,OAAO,GAAG,EAAE,IAAI,CAAC;IAChC,OAAO,GAAG,CAAC,EAAE,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CAAC;AACtC,CAAC;AAED,SAAS,YAAY,CACnB,KAAkC;IAElC,IAAI,KAAK,KAAK,MAAM;QAAE,OAAO,KAAK,CAAC;IACnC,IAAI,KAAK,KAAK,SAAS;QAAE,OAAO,MAAM,CAAC;IACvC,OAAO,GAAG,CAAC;AACb,CAAC;AAED,MAAM,UAAU,gBAAgB,CAC9B,MAAkB,EAClB,OAAgB,EAChB,UAAU,GAAG,KAAK;IAElB,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,SAAS;IACT,MAAM,MAAM,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IACzE,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,gBAAgB,MAAM,EAAE,CAAC,CAAC,CAAC;IAC3C,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,eAAe,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC,CAAC;IACjE,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,UAAU;IACV,KAAK,MAAM,MAAM,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACpC,KAAK,CAAC,IAAI,CAAC,YAAY,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC,CAAC;QAC1C,IAAI,OAAO,IAAI,MAAM,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACxC,KAAK,CAAC,IAAI,CAAC,mBAAmB,CAAC,MAAM,CAAC,MAAM,EAAE,UAAU,CAAC,CAAC,CAAC;QAC7D,CAAC;IACH,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,yCAAyC;IACzC,MAAM,QAAQ,GAAG,YAAY,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;IACxD,MAAM,SAAS,GAAG,kBAAkB,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC,KAAK,MAAM,CAAC,iBAAiB,GAAG,CAAC;IAC1G,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC;IAE5B,aAAa;IACb,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,UAAU,eAAe,CAAC,MAAM,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC,CAAC;IAEhE,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}

package/dist/render/format-verbose.d.ts

@@ -0,0 +1,3 @@
+import type { Check } from "../core/types.js";
+export declare function formatVerboseChecks(checks: Check[], explainAll?: boolean): string;
+//# sourceMappingURL=format-verbose.d.ts.map

package/dist/render/format-verbose.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"format-verbose.d.ts","sourceRoot":"","sources":["../../src/render/format-verbose.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,KAAK,EAAE,MAAM,kBAAkB,CAAC;AAI9C,wBAAgB,mBAAmB,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE,UAAU,UAAQ,GAAG,MAAM,CAU/E"}

package/dist/render/format-verbose.js

@@ -0,0 +1,14 @@
+import { statusSymbol } from "./symbols.js";
+import { dim } from "./colors.js";
+export function formatVerboseChecks(checks, explainAll = false) {
+    return checks
+        .map((check) => {
+        const symbol = statusSymbol(check.status);
+        const detail = check.detail ? dim(` (${check.detail})`) : "";
+        const showWhy = check.why && (explainAll || check.status !== "pass");
+        const why = showWhy ? `\n      ${dim(check.why)}` : "";
+        return `    ${symbol} ${check.label}${detail}${why}`;
+    })
+        .join("\n");
+}
+//# sourceMappingURL=format-verbose.js.map

package/dist/render/format-verbose.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"format-verbose.js","sourceRoot":"","sources":["../../src/render/format-verbose.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAElC,MAAM,UAAU,mBAAmB,CAAC,MAAe,EAAE,UAAU,GAAG,KAAK;IACrE,OAAO,MAAM;SACV,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE;QACb,MAAM,MAAM,GAAG,YAAY,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;QAC1C,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAC7D,MAAM,OAAO,GAAG,KAAK,CAAC,GAAG,IAAI,CAAC,UAAU,IAAI,KAAK,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;QACrE,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,WAAW,GAAG,CAAC,KAAK,CAAC,GAAI,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACxD,OAAO,OAAO,MAAM,IAAI,KAAK,CAAC,KAAK,GAAG,MAAM,GAAG,GAAG,EAAE,CAAC;IACvD,CAAC,CAAC;SACD,IAAI,CAAC,IAAI,CAAC,CAAC;AAChB,CAAC"}

package/dist/render/index.d.ts

@@ -0,0 +1,7 @@
+export { green, yellow, red, cyan, dim, bold } from "./colors.js";
+export { progressBar } from "./progress-bar.js";
+export { statusSymbol } from "./symbols.js";
+export { formatBridge } from "./format-bridge.js";
+export { formatVerboseChecks } from "./format-verbose.js";
+export { formatScanOutput } from "./format-scan.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/render/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/render/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,aAAa,CAAC;AAClE,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAC1D,OAAO,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC"}

package/dist/render/index.js

@@ -0,0 +1,8 @@
+// Terminal rendering and output formatting (Phase 6)
+export { green, yellow, red, cyan, dim, bold } from "./colors.js";
+export { progressBar } from "./progress-bar.js";
+export { statusSymbol } from "./symbols.js";
+export { formatBridge } from "./format-bridge.js";
+export { formatVerboseChecks } from "./format-verbose.js";
+export { formatScanOutput } from "./format-scan.js";
+//# sourceMappingURL=index.js.map

package/dist/render/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/render/index.ts"],"names":[],"mappings":"AAAA,qDAAqD;AACrD,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,IAAI,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,aAAa,CAAC;AAClE,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,YAAY,EAAE,MAAM,cAAc,CAAC;AAC5C,OAAO,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAClD,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAC1D,OAAO,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC"}

package/dist/render/progress-bar.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Render a 12-character progress bar for a scored bridge.
+ * Score 0-100 maps to 0-12 filled characters.
+ *
+ * Uses Unicode block characters:
+ * - U+2588 (full block) for filled
+ * - U+2591 (light shade) for empty
+ */
+export declare function progressBar(score: number): string;
+//# sourceMappingURL=progress-bar.d.ts.map

package/dist/render/progress-bar.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"progress-bar.d.ts","sourceRoot":"","sources":["../../src/render/progress-bar.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AACH,wBAAgB,WAAW,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CASjD"}

package/dist/render/progress-bar.js

@@ -0,0 +1,21 @@
+import { green, yellow, red } from "./colors.js";
+/**
+ * Render a 12-character progress bar for a scored bridge.
+ * Score 0-100 maps to 0-12 filled characters.
+ *
+ * Uses Unicode block characters:
+ * - U+2588 (full block) for filled
+ * - U+2591 (light shade) for empty
+ */
+export function progressBar(score) {
+    const width = 12;
+    const filled = Math.round((score / 100) * width);
+    const empty = width - filled;
+    const bar = "\u2588".repeat(filled) + "\u2591".repeat(empty);
+    if (score >= 80)
+        return green(bar);
+    if (score >= 40)
+        return yellow(bar);
+    return red(bar);
+}
+//# sourceMappingURL=progress-bar.js.map

package/dist/render/progress-bar.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"progress-bar.js","sourceRoot":"","sources":["../../src/render/progress-bar.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,MAAM,aAAa,CAAC;AAEjD;;;;;;;GAOG;AACH,MAAM,UAAU,WAAW,CAAC,KAAa;IACvC,MAAM,KAAK,GAAG,EAAE,CAAC;IACjB,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,KAAK,GAAG,GAAG,CAAC,GAAG,KAAK,CAAC,CAAC;IACjD,MAAM,KAAK,GAAG,KAAK,GAAG,MAAM,CAAC;IAC7B,MAAM,GAAG,GAAG,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,GAAG,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAE7D,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC;IACnC,IAAI,KAAK,IAAI,EAAE;QAAE,OAAO,MAAM,CAAC,GAAG,CAAC,CAAC;IACpC,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC;AAClB,CAAC"}

package/dist/render/symbols.d.ts

@@ -0,0 +1,10 @@
+/**
+ * Return a colored status symbol for verbose check display.
+ *
+ * pass    -> green checkmark
+ * partial -> yellow warning
+ * fail    -> red x
+ * error   -> red x
+ */
+export declare function statusSymbol(status: "pass" | "partial" | "fail" | "error"): string;
+//# sourceMappingURL=symbols.d.ts.map

package/dist/render/symbols.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"symbols.d.ts","sourceRoot":"","sources":["../../src/render/symbols.ts"],"names":[],"mappings":"AAEA;;;;;;;GAOG;AACH,wBAAgB,YAAY,CAC1B,MAAM,EAAE,MAAM,GAAG,SAAS,GAAG,MAAM,GAAG,OAAO,GAC5C,MAAM,CAUR"}

package/dist/render/symbols.js

@@ -0,0 +1,21 @@
+import { green, red, yellow } from "./colors.js";
+/**
+ * Return a colored status symbol for verbose check display.
+ *
+ * pass    -> green checkmark
+ * partial -> yellow warning
+ * fail    -> red x
+ * error   -> red x
+ */
+export function statusSymbol(status) {
+    switch (status) {
+        case "pass":
+            return green("\u2714");
+        case "partial":
+            return yellow("\u26A0");
+        case "fail":
+        case "error":
+            return red("\u2718");
+    }
+}
+//# sourceMappingURL=symbols.js.map

package/dist/render/symbols.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"symbols.js","sourceRoot":"","sources":["../../src/render/symbols.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAEjD;;;;;;;GAOG;AACH,MAAM,UAAU,YAAY,CAC1B,MAA6C;IAE7C,QAAQ,MAAM,EAAE,CAAC;QACf,KAAK,MAAM;YACT,OAAO,KAAK,CAAC,QAAQ,CAAC,CAAC;QACzB,KAAK,SAAS;YACZ,OAAO,MAAM,CAAC,QAAQ,CAAC,CAAC;QAC1B,KAAK,MAAM,CAAC;QACZ,KAAK,OAAO;YACV,OAAO,GAAG,CAAC,QAAQ,CAAC,CAAC;IACzB,CAAC;AACH,CAAC"}

package/dist/utils/http-client.d.ts

@@ -0,0 +1,25 @@
+import type { HttpResponse } from "../core/types.js";
+import { type DnsCache } from "./ssrf.js";
+/** Options for httpGet */
+export interface HttpGetOptions {
+    /** HTTP method (default: "GET") */
+    method?: "GET" | "HEAD";
+    /** Per-request timeout in milliseconds (default: 10000) */
+    timeout?: number;
+    /** Maximum number of redirects to follow (default: 5) */
+    maxRedirects?: number;
+    /** Maximum response body size in bytes (default: 5MB) */
+    maxBodyBytes?: number;
+    /** Scan-scoped DNS cache -- caller creates and reuses across requests */
+    dnsCache?: DnsCache;
+    /** Custom headers to merge with defaults */
+    headers?: Record<string, string>;
+}
+/**
+ * Perform an HTTP GET (or HEAD) request with SSRF protection, redirect
+ * tracking, retry logic, and discriminated union error handling.
+ *
+ * NEVER throws -- all errors are returned as HttpFailure values.
+ */
+export declare function httpGet(url: string, options?: Partial<HttpGetOptions>): Promise<HttpResponse>;
+//# sourceMappingURL=http-client.d.ts.map

package/dist/utils/http-client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-client.d.ts","sourceRoot":"","sources":["../../src/utils/http-client.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,YAAY,EAGb,MAAM,kBAAkB,CAAC;AAC1B,OAAO,EAAe,KAAK,QAAQ,EAAE,MAAM,WAAW,CAAC;AAGvD,0BAA0B;AAC1B,MAAM,WAAW,cAAc;IAC7B,mCAAmC;IACnC,MAAM,CAAC,EAAE,KAAK,GAAG,MAAM,CAAC;IACxB,2DAA2D;IAC3D,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,yDAAyD;IACzD,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,yDAAyD;IACzD,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,yEAAyE;IACzE,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,4CAA4C;IAC5C,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAClC;AAkQD;;;;;GAKG;AACH,wBAAsB,OAAO,CAC3B,GAAG,EAAE,MAAM,EACX,OAAO,CAAC,EAAE,OAAO,CAAC,cAAc,CAAC,GAChC,OAAO,CAAC,YAAY,CAAC,CA8BvB"}

package/dist/utils/http-client.js

@@ -0,0 +1,235 @@
+import { validateDns } from "./ssrf.js";
+import { resolveRedirectUrl } from "./url.js";
+const DEFAULT_OPTIONS = {
+    method: "GET",
+    timeout: 10_000,
+    maxRedirects: 5,
+    maxBodyBytes: 5 * 1024 * 1024,
+};
+const USER_AGENT = "milieu-cli/0.1.0";
+// ---------------------------------------------------------------------------
+// Error classification
+// ---------------------------------------------------------------------------
+function classifyFetchError(error, url) {
+    // AbortSignal.timeout produces DOMException with name "TimeoutError"
+    if (error instanceof DOMException && error.name === "TimeoutError") {
+        return { ok: false, error: { kind: "timeout", message: "Request timed out", url } };
+    }
+    if (error instanceof TypeError && error.cause) {
+        const cause = error.cause;
+        switch (cause.code) {
+            case "ENOTFOUND":
+                return { ok: false, error: { kind: "dns", message: `DNS resolution failed for ${url}`, url } };
+            case "ECONNREFUSED":
+                return { ok: false, error: { kind: "connection_refused", message: "Connection refused", url } };
+            case "CERT_HAS_EXPIRED":
+            case "DEPTH_ZERO_SELF_SIGNED_CERT":
+            case "UNABLE_TO_VERIFY_LEAF_SIGNATURE":
+            case "ERR_TLS_CERT_ALTNAME_INVALID":
+                return { ok: false, error: { kind: "ssl_error", message: `SSL error: ${cause.code}`, url } };
+            default:
+                break;
+        }
+    }
+    return { ok: false, error: { kind: "unknown", message: String(error), url } };
+}
+// ---------------------------------------------------------------------------
+// Bot protection detection
+// ---------------------------------------------------------------------------
+function isBotProtected(status, headers) {
+    const server = (headers["server"] ?? "").toLowerCase();
+    // Cloudflare 403 with server header or cf-ray
+    if (status === 403 && (server.includes("cloudflare") || headers["cf-ray"] !== undefined)) {
+        return true;
+    }
+    // 429 rate limit from any server
+    if (status === 429)
+        return true;
+    // Cloudflare 503 challenge
+    if (status === 503 && server.includes("cloudflare"))
+        return true;
+    return false;
+}
+// ---------------------------------------------------------------------------
+// Convert Response headers to plain object
+// ---------------------------------------------------------------------------
+function headersToRecord(headers) {
+    const result = {};
+    headers.forEach((value, key) => {
+        result[key] = value;
+    });
+    return result;
+}
+// ---------------------------------------------------------------------------
+// Single fetch attempt (no retry)
+// ---------------------------------------------------------------------------
+async function fetchOnce(url, options) {
+    let currentUrl = url;
+    const redirects = [];
+    // Validate initial URL
+    try {
+        new URL(currentUrl);
+    }
+    catch {
+        return { ok: false, error: { kind: "unknown", message: "Invalid URL", url } };
+    }
+    for (let hop = 0; hop <= options.maxRedirects; hop++) {
+        // SSRF pre-flight at every hop
+        const hostname = new URL(currentUrl).hostname;
+        const ssrfResult = await validateDns(hostname, options.dnsCache);
+        if (!ssrfResult.safe) {
+            // Distinguish DNS failure from SSRF block
+            const kind = ssrfResult.error.startsWith("DNS resolution failed")
+                ? "dns"
+                : "ssrf_blocked";
+            return { ok: false, error: { kind, message: ssrfResult.error, url: currentUrl } };
+        }
+        let response;
+        try {
+            response = await fetch(currentUrl, {
+                method: options.method,
+                // Manual redirects: required for SSRF re-validation at each hop and redirect chain tracking
+                redirect: "manual",
+                signal: AbortSignal.timeout(options.timeout),
+                headers: options.headers,
+            });
+        }
+        catch (err) {
+            return classifyFetchError(err, currentUrl);
+        }
+        // Handle redirects (3xx)
+        if (response.status >= 300 && response.status < 400) {
+            const location = response.headers.get("location");
+            if (!location) {
+                // No Location header -- treat as final response
+                break;
+            }
+            const resolved = resolveRedirectUrl(location, currentUrl);
+            if (!resolved.ok) {
+                return {
+                    ok: false,
+                    error: { kind: "http_error", message: `Invalid redirect: ${resolved.error}`, statusCode: response.status, url: currentUrl },
+                };
+            }
+            redirects.push(currentUrl);
+            // Check redirect limit BEFORE following
+            if (redirects.length >= options.maxRedirects) {
+                return {
+                    ok: false,
+                    error: { kind: "http_error", message: `Too many redirects (max ${options.maxRedirects})`, url: currentUrl },
+                };
+            }
+            currentUrl = resolved.url;
+            continue;
+        }
+        // Convert headers
+        const headerRecord = headersToRecord(response.headers);
+        // Bot protection detection
+        if (isBotProtected(response.status, headerRecord)) {
+            return {
+                ok: false,
+                error: { kind: "bot_protected", message: "Bot protection detected", statusCode: response.status, url: currentUrl },
+            };
+        }
+        // 4xx/5xx errors (non-bot)
+        if (response.status >= 400) {
+            return {
+                ok: false,
+                error: { kind: "http_error", message: `HTTP ${response.status} ${response.statusText}`, statusCode: response.status, url: currentUrl },
+            };
+        }
+        // Success (2xx) -- read body
+        let body = "";
+        if (options.method !== "HEAD") {
+            // Check Content-Length before reading
+            const contentLength = response.headers.get("content-length");
+            if (contentLength && parseInt(contentLength, 10) > options.maxBodyBytes) {
+                return {
+                    ok: false,
+                    error: { kind: "body_too_large", message: `Response body exceeds ${options.maxBodyBytes} bytes`, url: currentUrl },
+                };
+            }
+            body = await response.text();
+            // Truncate if body exceeds limit (no Content-Length header case)
+            if (body.length > options.maxBodyBytes) {
+                body = body.slice(0, options.maxBodyBytes);
+            }
+        }
+        const success = {
+            ok: true,
+            url: currentUrl,
+            status: response.status,
+            headers: headerRecord,
+            body,
+            redirects,
+            durationMs: 0, // Set by outer wrapper
+        };
+        return success;
+    }
+    // Fell through without returning -- shouldn't happen, but handle gracefully
+    return {
+        ok: false,
+        error: { kind: "http_error", message: `Too many redirects (max ${options.maxRedirects})`, url: currentUrl },
+    };
+}
+// ---------------------------------------------------------------------------
+// Retry wrapper
+// ---------------------------------------------------------------------------
+function isRetriable(result) {
+    if (result.ok)
+        return false;
+    const { kind } = result.error;
+    // Retry on timeout or connection_refused
+    if (kind === "timeout" || kind === "connection_refused")
+        return true;
+    // Retry on 5xx server errors
+    if (kind === "http_error" && result.error.statusCode !== undefined && result.error.statusCode >= 500) {
+        return true;
+    }
+    return false;
+}
+async function fetchWithRetry(url, options) {
+    const result = await fetchOnce(url, options);
+    if (isRetriable(result)) {
+        // Wait 2 seconds before retry
+        await new Promise((r) => setTimeout(r, 2000));
+        return fetchOnce(url, options);
+    }
+    return result;
+}
+// ---------------------------------------------------------------------------
+// Public API
+// ---------------------------------------------------------------------------
+/**
+ * Perform an HTTP GET (or HEAD) request with SSRF protection, redirect
+ * tracking, retry logic, and discriminated union error handling.
+ *
+ * NEVER throws -- all errors are returned as HttpFailure values.
+ */
+export async function httpGet(url, options) {
+    const method = options?.method ?? DEFAULT_OPTIONS.method;
+    const timeout = options?.timeout ?? DEFAULT_OPTIONS.timeout;
+    const maxRedirects = options?.maxRedirects ?? DEFAULT_OPTIONS.maxRedirects;
+    const maxBodyBytes = options?.maxBodyBytes ?? DEFAULT_OPTIONS.maxBodyBytes;
+    const dnsCache = options?.dnsCache ?? new Map();
+    const headers = {
+        "User-Agent": USER_AGENT,
+        ...(options?.headers ?? {}),
+    };
+    const start = performance.now();
+    const result = await fetchWithRetry(url, {
+        method,
+        timeout,
+        maxRedirects,
+        maxBodyBytes,
+        dnsCache,
+        headers,
+    });
+    const durationMs = Math.round(performance.now() - start);
+    // Attach durationMs to success results
+    if (result.ok) {
+        return { ...result, durationMs };
+    }
+    return result;
+}
+//# sourceMappingURL=http-client.js.map

package/dist/utils/http-client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"http-client.js","sourceRoot":"","sources":["../../src/utils/http-client.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,WAAW,EAAiB,MAAM,WAAW,CAAC;AACvD,OAAO,EAAE,kBAAkB,EAAE,MAAM,UAAU,CAAC;AAkB9C,MAAM,eAAe,GAAG;IACtB,MAAM,EAAE,KAAc;IACtB,OAAO,EAAE,MAAM;IACf,YAAY,EAAE,CAAC;IACf,YAAY,EAAE,CAAC,GAAG,IAAI,GAAG,IAAI;CAC9B,CAAC;AAEF,MAAM,UAAU,GAAG,kBAAkB,CAAC;AAEtC,8EAA8E;AAC9E,uBAAuB;AACvB,8EAA8E;AAE9E,SAAS,kBAAkB,CAAC,KAAc,EAAE,GAAW;IACrD,qEAAqE;IACrE,IAAI,KAAK,YAAY,YAAY,IAAI,KAAK,CAAC,IAAI,KAAK,cAAc,EAAE,CAAC;QACnE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,mBAAmB,EAAE,GAAG,EAAE,EAAE,CAAC;IACtF,CAAC;IAED,IAAI,KAAK,YAAY,SAAS,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;QAC9C,MAAM,KAAK,GAAG,KAAK,CAAC,KAA0B,CAAC;QAE/C,QAAQ,KAAK,CAAC,IAAI,EAAE,CAAC;YACnB,KAAK,WAAW;gBACd,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,OAAO,EAAE,6BAA6B,GAAG,EAAE,EAAE,GAAG,EAAE,EAAE,CAAC;YACjG,KAAK,cAAc;gBACjB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,oBAAoB,EAAE,OAAO,EAAE,oBAAoB,EAAE,GAAG,EAAE,EAAE,CAAC;YAClG,KAAK,kBAAkB,CAAC;YACxB,KAAK,6BAA6B,CAAC;YACnC,KAAK,iCAAiC,CAAC;YACvC,KAAK,8BAA8B;gBACjC,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,OAAO,EAAE,cAAc,KAAK,CAAC,IAAI,EAAE,EAAE,GAAG,EAAE,EAAE,CAAC;YAC/F;gBACE,MAAM;QACV,CAAC;IACH,CAAC;IAED,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,MAAM,CAAC,KAAK,CAAC,EAAE,GAAG,EAAE,EAAE,CAAC;AAChF,CAAC;AAED,8EAA8E;AAC9E,2BAA2B;AAC3B,8EAA8E;AAE9E,SAAS,cAAc,CAAC,MAAc,EAAE,OAA+B;IACrE,MAAM,MAAM,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC;IAEvD,8CAA8C;IAC9C,IAAI,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,KAAK,SAAS,CAAC,EAAE,CAAC;QACzF,OAAO,IAAI,CAAC;IACd,CAAC;IAED,iCAAiC;IACjC,IAAI,MAAM,KAAK,GAAG;QAAE,OAAO,IAAI,CAAC;IAEhC,2BAA2B;IAC3B,IAAI,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,QAAQ,CAAC,YAAY,CAAC;QAAE,OAAO,IAAI,CAAC;IAEjE,OAAO,KAAK,CAAC;AACf,CAAC;AAED,8EAA8E;AAC9E,2CAA2C;AAC3C,8EAA8E;AAE9E,SAAS,eAAe,CAAC,OAAgB;IACvC,MAAM,MAAM,GAA2B,EAAE,CAAC;IAC1C,OAAO,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,GAAG,EAAE,EAAE;QAC7B,MAAM,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;IACtB,CAAC,CAAC,CAAC;IACH,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,8EAA8E;AAC9E,kCAAkC;AAClC,8EAA8E;AAE9E,KAAK,UAAU,SAAS,CACtB,GAAW,EACX,OAOC;IAED,IAAI,UAAU,GAAG,GAAG,CAAC;IACrB,MAAM,SAAS,GAAa,EAAE,CAAC;IAE/B,uBAAuB;IACvB,IAAI,CAAC;QACH,IAAI,GAAG,CAAC,UAAU,CAAC,CAAC;IACtB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,SAAS,EAAE,OAAO,EAAE,aAAa,EAAE,GAAG,EAAE,EAAE,CAAC;IAChF,CAAC;IAED,KAAK,IAAI,GAAG,GAAG,CAAC,EAAE,GAAG,IAAI,OAAO,CAAC,YAAY,EAAE,GAAG,EAAE,EAAE,CAAC;QACrD,+BAA+B;QAC/B,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC;QAC9C,MAAM,UAAU,GAAG,MAAM,WAAW,CAAC,QAAQ,EAAE,OAAO,CAAC,QAAQ,CAAC,CAAC;QACjE,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC;YACrB,0CAA0C;YAC1C,MAAM,IAAI,GAAG,UAAU,CAAC,KAAK,CAAC,UAAU,CAAC,uBAAuB,CAAC;gBAC/D,CAAC,CAAC,KAAc;gBAChB,CAAC,CAAC,cAAuB,CAAC;YAC5B,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,UAAU,CAAC,KAAK,EAAE,GAAG,EAAE,UAAU,EAAE,EAAE,CAAC;QACpF,CAAC;QAED,IAAI,QAAkB,CAAC;QACvB,IAAI,CAAC;YACH,QAAQ,GAAG,MAAM,KAAK,CAAC,UAAU,EAAE;gBACjC,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,4FAA4F;gBAC5F,QAAQ,EAAE,QAAQ;gBAClB,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,OAAO,CAAC,OAAO,CAAC;gBAC5C,OAAO,EAAE,OAAO,CAAC,OAAO;aACzB,CAAC,CAAC;QACL,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,OAAO,kBAAkB,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC;QAC7C,CAAC;QAED,yBAAyB;QACzB,IAAI,QAAQ,CAAC,MAAM,IAAI,GAAG,IAAI,QAAQ,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;YACpD,MAAM,QAAQ,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;YAClD,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACd,gDAAgD;gBAChD,MAAM;YACR,CAAC;YAED,MAAM,QAAQ,GAAG,kBAAkB,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;YAC1D,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;gBACjB,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,qBAAqB,QAAQ,CAAC,KAAK,EAAE,EAAE,UAAU,EAAE,QAAQ,CAAC,MAAM,EAAE,GAAG,EAAE,UAAU,EAAE;iBAC5H,CAAC;YACJ,CAAC;YAED,SAAS,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAE3B,wCAAwC;YACxC,IAAI,SAAS,CAAC,MAAM,IAAI,OAAO,CAAC,YAAY,EAAE,CAAC;gBAC7C,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,2BAA2B,OAAO,CAAC,YAAY,GAAG,EAAE,GAAG,EAAE,UAAU,EAAE;iBAC5G,CAAC;YACJ,CAAC;YAED,UAAU,GAAG,QAAQ,CAAC,GAAG,CAAC;YAC1B,SAAS;QACX,CAAC;QAED,kBAAkB;QAClB,MAAM,YAAY,GAAG,eAAe,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;QAEvD,2BAA2B;QAC3B,IAAI,cAAc,CAAC,QAAQ,CAAC,MAAM,EAAE,YAAY,CAAC,EAAE,CAAC;YAClD,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,KAAK,EAAE,EAAE,IAAI,EAAE,eAAe,EAAE,OAAO,EAAE,yBAAyB,EAAE,UAAU,EAAE,QAAQ,CAAC,MAAM,EAAE,GAAG,EAAE,UAAU,EAAE;aACnH,CAAC;QACJ,CAAC;QAED,2BAA2B;QAC3B,IAAI,QAAQ,CAAC,MAAM,IAAI,GAAG,EAAE,CAAC;YAC3B,OAAO;gBACL,EAAE,EAAE,KAAK;gBACT,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,QAAQ,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE,EAAE,UAAU,EAAE,QAAQ,CAAC,MAAM,EAAE,GAAG,EAAE,UAAU,EAAE;aACvI,CAAC;QACJ,CAAC;QAED,6BAA6B;QAC7B,IAAI,IAAI,GAAG,EAAE,CAAC;QACd,IAAI,OAAO,CAAC,MAAM,KAAK,MAAM,EAAE,CAAC;YAC9B,sCAAsC;YACtC,MAAM,aAAa,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;YAC7D,IAAI,aAAa,IAAI,QAAQ,CAAC,aAAa,EAAE,EAAE,CAAC,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC;gBACxE,OAAO;oBACL,EAAE,EAAE,KAAK;oBACT,KAAK,EAAE,EAAE,IAAI,EAAE,gBAAgB,EAAE,OAAO,EAAE,yBAAyB,OAAO,CAAC,YAAY,QAAQ,EAAE,GAAG,EAAE,UAAU,EAAE;iBACnH,CAAC;YACJ,CAAC;YAED,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YAE7B,iEAAiE;YACjE,IAAI,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC;gBACvC,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,OAAO,CAAC,YAAY,CAAC,CAAC;YAC7C,CAAC;QACH,CAAC;QAED,MAAM,OAAO,GAAgB;YAC3B,EAAE,EAAE,IAAI;YACR,GAAG,EAAE,UAAU;YACf,MAAM,EAAE,QAAQ,CAAC,MAAM;YACvB,OAAO,EAAE,YAAY;YACrB,IAAI;YACJ,SAAS;YACT,UAAU,EAAE,CAAC,EAAE,uBAAuB;SACvC,CAAC;QACF,OAAO,OAAO,CAAC;IACjB,CAAC;IAED,4EAA4E;IAC5E,OAAO;QACL,EAAE,EAAE,KAAK;QACT,KAAK,EAAE,EAAE,IAAI,EAAE,YAAY,EAAE,OAAO,EAAE,2BAA2B,OAAO,CAAC,YAAY,GAAG,EAAE,GAAG,EAAE,UAAU,EAAE;KAC5G,CAAC;AACJ,CAAC;AAED,8EAA8E;AAC9E,gBAAgB;AAChB,8EAA8E;AAE9E,SAAS,WAAW,CAAC,MAAoB;IACvC,IAAI,MAAM,CAAC,EAAE;QAAE,OAAO,KAAK,CAAC;IAE5B,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,CAAC,KAAK,CAAC;IAC9B,yCAAyC;IACzC,IAAI,IAAI,KAAK,SAAS,IAAI,IAAI,KAAK,oBAAoB;QAAE,OAAO,IAAI,CAAC;IAErE,6BAA6B;IAC7B,IAAI,IAAI,KAAK,YAAY,IAAI,MAAM,CAAC,KAAK,CAAC,UAAU,KAAK,SAAS,IAAI,MAAM,CAAC,KAAK,CAAC,UAAU,IAAI,GAAG,EAAE,CAAC;QACrG,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,KAAK,UAAU,cAAc,CAC3B,GAAW,EACX,OAOC;IAED,MAAM,MAAM,GAAG,MAAM,SAAS,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IAE7C,IAAI,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC;QACxB,8BAA8B;QAC9B,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,UAAU,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,CAAC;QAC9C,OAAO,SAAS,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC;IACjC,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,8EAA8E;AAC9E,aAAa;AACb,8EAA8E;AAE9E;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAC3B,GAAW,EACX,OAAiC;IAEjC,MAAM,MAAM,GAAG,OAAO,EAAE,MAAM,IAAI,eAAe,CAAC,MAAM,CAAC;IACzD,MAAM,OAAO,GAAG,OAAO,EAAE,OAAO,IAAI,eAAe,CAAC,OAAO,CAAC;IAC5D,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,eAAe,CAAC,YAAY,CAAC;IAC3E,MAAM,YAAY,GAAG,OAAO,EAAE,YAAY,IAAI,eAAe,CAAC,YAAY,CAAC;IAC3E,MAAM,QAAQ,GAAG,OAAO,EAAE,QAAQ,IAAI,IAAI,GAAG,EAAE,CAAC;IAChD,MAAM,OAAO,GAA2B;QACtC,YAAY,EAAE,UAAU;QACxB,GAAG,CAAC,OAAO,EAAE,OAAO,IAAI,EAAE,CAAC;KAC5B,CAAC;IAEF,MAAM,KAAK,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC;IAEhC,MAAM,MAAM,GAAG,MAAM,cAAc,CAAC,GAAG,EAAE;QACvC,MAAM;QACN,OAAO;QACP,YAAY;QACZ,YAAY;QACZ,QAAQ;QACR,OAAO;KACR,CAAC,CAAC;IAEH,MAAM,UAAU,GAAG,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,GAAG,EAAE,GAAG,KAAK,CAAC,CAAC;IAEzD,uCAAuC;IACvC,IAAI,MAAM,CAAC,EAAE,EAAE,CAAC;QACd,OAAO,EAAE,GAAG,MAAM,EAAE,UAAU,EAAE,CAAC;IACnC,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/utils/index.d.ts

@@ -0,0 +1,6 @@
+export { normalizeUrl, extractDomain, resolveRedirectUrl } from "./url.js";
+export { isPrivateIp, validateDns } from "./ssrf.js";
+export type { DnsCache, SsrfResult } from "./ssrf.js";
+export { httpGet } from "./http-client.js";
+export type { HttpGetOptions } from "./http-client.js";
+//# sourceMappingURL=index.d.ts.map

package/dist/utils/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,kBAAkB,EAAE,MAAM,UAAU,CAAC;AAG3E,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AACrD,YAAY,EAAE,QAAQ,EAAE,UAAU,EAAE,MAAM,WAAW,CAAC;AAGtD,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAC3C,YAAY,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC"}

package/dist/utils/index.js

@@ -0,0 +1,7 @@
+// URL normalization and domain extraction
+export { normalizeUrl, extractDomain, resolveRedirectUrl } from "./url.js";
+// SSRF protection
+export { isPrivateIp, validateDns } from "./ssrf.js";
+// HTTP client
+export { httpGet } from "./http-client.js";
+//# sourceMappingURL=index.js.map

package/dist/utils/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA,0CAA0C;AAC1C,OAAO,EAAE,YAAY,EAAE,aAAa,EAAE,kBAAkB,EAAE,MAAM,UAAU,CAAC;AAE3E,kBAAkB;AAClB,OAAO,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,WAAW,CAAC;AAGrD,cAAc;AACd,OAAO,EAAE,OAAO,EAAE,MAAM,kBAAkB,CAAC"}

package/dist/utils/ssrf.d.ts

@@ -0,0 +1,29 @@
+/** Scan-scoped DNS cache: hostname -> resolved IP */
+export type DnsCache = Map<string, string>;
+/** SSRF validation result -- discriminated union */
+export type SsrfResult = {
+    safe: true;
+    ip: string;
+} | {
+    safe: false;
+    error: string;
+    ip?: string;
+};
+/**
+ * Check whether an IP address falls in a private/reserved range.
+ *
+ * Covers all RFC 1918 ranges, loopback, link-local, CGNAT, IPv6 ULA,
+ * and IPv4-mapped IPv6 addresses.
+ */
+export declare function isPrivateIp(ip: string): boolean;
+/**
+ * Validate that a hostname does not resolve to a private/reserved IP.
+ *
+ * - Checks cache first (scan-scoped, avoids duplicate lookups)
+ * - Skips DNS if hostname is already an IP literal
+ * - Resolves ALL addresses and rejects if ANY is private
+ * - Caches the first resolved IP on success
+ * - Uses a 3-second DNS timeout via AbortSignal
+ */
+export declare function validateDns(hostname: string, cache: DnsCache): Promise<SsrfResult>;
+//# sourceMappingURL=ssrf.d.ts.map

package/dist/utils/ssrf.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ssrf.d.ts","sourceRoot":"","sources":["../../src/utils/ssrf.ts"],"names":[],"mappings":"AAGA,qDAAqD;AACrD,MAAM,MAAM,QAAQ,GAAG,GAAG,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;AAE3C,oDAAoD;AACpD,MAAM,MAAM,UAAU,GAClB;IAAE,IAAI,EAAE,IAAI,CAAC;IAAC,EAAE,EAAE,MAAM,CAAA;CAAE,GAC1B;IAAE,IAAI,EAAE,KAAK,CAAC;IAAC,KAAK,EAAE,MAAM,CAAC;IAAC,EAAE,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC;AA2DhD;;;;;GAKG;AACH,wBAAgB,WAAW,CAAC,EAAE,EAAE,MAAM,GAAG,OAAO,CAI/C;AAED;;;;;;;;GAQG;AACH,wBAAsB,WAAW,CAC/B,QAAQ,EAAE,MAAM,EAChB,KAAK,EAAE,QAAQ,GACd,OAAO,CAAC,UAAU,CAAC,CAuDrB"}