n8n-nodes-trusera 0.4.1 → 0.4.3

package/README.md

@@ -1,76 +1,328 @@
 # n8n-nodes-trusera
 
-n8n community node to scan workflows for AI security risks using Trusera AI-BOM.
+[![npm](https://img.shields.io/npm/v/n8n-nodes-trusera)](https://www.npmjs.com/package/n8n-nodes-trusera)
+[![License](https://img.shields.io/badge/license-MIT-blue.svg)](LICENSE)
 
-[n8n](https://n8n.io/) is a fair-code licensed workflow automation platform.
+n8n community node package that scans your workflows for AI security risks using [Trusera AI-BOM](https://github.com/trusera/ai-bom).
 
-[Trusera](https://trusera.dev) provides AI Bill of Materials (AI-BOM) scanning for detecting security risks in AI-powered workflows.
+Drop a single node, activate, and visit `/webhook/trusera` to see a full interactive security dashboard of every AI component in your n8n instance.
+
+![Dashboard Screenshot](https://raw.githubusercontent.com/Trusera/ai-bom/main/n8n-node/docs/dashboard.png)
+
+## Installation
+
+In your n8n instance:
+
+1. Go to **Settings > Community Nodes**
+2. Enter `n8n-nodes-trusera`
+3. Click **Install**
+
+Or install manually via CLI:
+
+```bash
+cd ~/.n8n/nodes
+npm install n8n-nodes-trusera
+# Restart n8n
+```
+
+## Quick Start (1 minute)
+
+The **Trusera Webhook** node gives you a full security dashboard with zero configuration:
+
+1. Create a new workflow
+2. Add the **Trusera Webhook** node
+3. Add your **n8n API** credential (Settings > n8n API > Create API Key)
+4. Activate the workflow
+5. Visit `http://your-n8n-url/webhook/trusera`
+
+That's it. One node, full dashboard.
 
 ## Nodes
 
+This package includes 5 nodes for different use cases:
+
+### Trusera Webhook (Recommended)
+
+> **The one-node solution.** This is what most users need.
+
+| | |
+|---|---|
+| **Type** | Trigger (webhook) |
+| **Credential** | n8n API (required) |
+| **URL** | `/webhook/trusera` |
+| **Method** | GET |
+
+Self-contained trigger node that:
+- Fetches all workflows from your n8n instance via the REST API
+- Scans every workflow for AI components and security risks
+- Serves an interactive HTML dashboard directly at `/webhook/trusera`
+
+**Parameters:**
+
+| Parameter | Type | Default | Description |
+|-----------|------|---------|-------------|
+| Dashboard Password | string | _(empty)_ | Optional. If set, the dashboard is AES-256-GCM encrypted and visitors must enter this password to view it. |
+
+**Setup:**
+
+```
+[Trusera Webhook] → (no other nodes needed)
+```
+
+---
+
+### Trusera Dashboard
+
+> Use this if you already have a built-in Webhook node configured and want to chain it.
+
+| | |
+|---|---|
+| **Type** | Action |
+| **Credential** | n8n API (required) |
+| **Input** | Any trigger |
+| **Output** | `{ html, headers, statusCode, body }` |
+
+Fetches all workflows, scans them, and returns an HTML dashboard as output. Designed to connect after a built-in n8n Webhook node for custom webhook setups.
+
+**Parameters:**
+
+| Parameter | Type | Default | Description |
+|-----------|------|---------|-------------|
+| Dashboard Password | string | _(empty)_ | Optional AES-256-GCM encryption password. |
+
+**Setup:**
+
+```
+[Webhook (GET /dashboard, responseMode: lastNode)] → [Trusera Dashboard]
+```
+
+Configure the Webhook node with:
+- Response Mode: `Last Node`
+- Response Content Type: `text/html`
+- Response Data: `First Entry JSON`
+- Response Property Name: `html`
+
+---
+
 ### Trusera Scan
 
-Scans n8n workflow JSON for AI components and security risks. Detects:
+> Use this for programmatic scanning — pipe workflow JSON in, get structured results out.
+
+| | |
+|---|---|
+| **Type** | Action |
+| **Credential** | n8n API (optional) |
+| **Input** | Workflow JSON |
+| **Output** | Components array with risk scores |
+
+Scans workflow JSON for AI components and returns structured scan results. Use this when you want to process scan results programmatically (e.g., send Slack alerts, store in a database, trigger CI/CD gates).
+
+**Operations:**
+
+| Operation | Description |
+|-----------|-------------|
+| Scan Workflow JSON | Scan a single workflow JSON from input |
+| Scan Multiple Workflows | Scan an array of workflow JSONs |
 
-- LLM providers (OpenAI, Anthropic, Google, Ollama, etc.)
-- Agent frameworks and multi-agent chains
-- MCP client/server connections
-- Tool usage (code execution, HTTP requests)
-- Embedding and vector store configurations
-- Hardcoded API keys and credentials
-- Dangerous code patterns
+**Parameters:**
+
+| Parameter | Type | Default | Description |
+|-----------|------|---------|-------------|
+| Workflow JSON Field | string | `json` | Input field containing the workflow JSON |
+| Workflows Array Field | string | `workflows` | Input field containing the workflows array |
+| File Path | string | `workflow.json` | Identifier for the workflow in results |
+
+**Setup:**
+
+```
+[HTTP Request (GET /api/v1/workflows)] → [Trusera Scan] → [Slack / Email / DB]
+```
+
+**Output example:**
+
+```json
+{
+  "components": [
+    {
+      "name": "GPT-4o Agent",
+      "type": "llm_provider",
+      "provider": "OpenAI",
+      "modelName": "gpt-4o",
+      "risk": { "score": 45, "severity": "medium", "factors": [...] },
+      "flags": ["no_error_handling", "unpinned_model"]
+    }
+  ],
+  "totalComponents": 1
+}
+```
+
+---
 
 ### Trusera Policy
 
-Evaluates scan results against configurable security policies:
+> Use this to enforce security gates — block deployments with critical findings.
+
+| | |
+|---|---|
+| **Type** | Action |
+| **Input** | Scan results from Trusera Scan |
+| **Output** | `{ passed: boolean, violations: string[] }` |
+
+Evaluates scan results against configurable security policies. Chain after Trusera Scan to implement CI/CD security gates.
+
+**Parameters:**
 
-- Maximum critical/high severity component limits
-- Maximum risk score thresholds
-- Provider blocklists
-- Flag blocklists
+| Parameter | Type | Default | Description |
+|-----------|------|---------|-------------|
+| Scan Result Field | string | _(empty)_ | Field containing scan result (empty = entire input) |
+| Max Critical | number | `0` | Maximum critical-severity components allowed |
+| Max High | number | `-1` | Maximum high-severity components (-1 = unlimited) |
+| Max Risk Score | number | `-1` | Maximum risk score for any component (-1 = unlimited) |
+| Block Providers | string | _(empty)_ | Comma-separated provider blocklist (e.g., `OpenAI,Anthropic`) |
+| Block Flags | string | _(empty)_ | Comma-separated flag blocklist (e.g., `hardcoded_api_key,no_auth`) |
+
+**Setup:**
+
+```
+[Trusera Scan] → [Trusera Policy] → [IF passed] → [Deploy] / [Alert]
+```
+
+**Output example:**
+
+```json
+{
+  "passed": false,
+  "violations": [
+    "Found 2 critical components (max: 0)",
+    "Blocked provider: OpenAI"
+  ],
+  "totalComponents": 15
+}
+```
+
+---
 
 ### Trusera Report
 
-Generates human-readable security reports from scan results:
+> Use this to generate human-readable reports for Slack, email, or documentation.
+
+| | |
+|---|---|
+| **Type** | Action |
+| **Input** | Scan results from Trusera Scan |
+| **Output** | Markdown or JSON report |
+
+Generates formatted security reports from scan results.
+
+**Parameters:**
 
-- Markdown format with severity breakdown
-- JSON summary format
-- Configurable severity threshold
+| Parameter | Type | Default | Description |
+|-----------|------|---------|-------------|
+| Scan Result Field | string | _(empty)_ | Field containing scan result (empty = entire input) |
+| Format | options | `markdown` | `markdown` or `jsonSummary` |
+| Include Low Severity | boolean | `false` | Whether to include low-severity findings |
+
+**Setup:**
+
+```
+[Trusera Scan] → [Trusera Report] → [Send Email / Slack Message]
+```
+
+---
 
 ## Credentials
 
-### Trusera API
+### n8n API
+
+The Trusera nodes connect to your n8n instance's own REST API to fetch workflows.
+
+| Field | Description |
+|-------|-------------|
+| API Key | Your n8n API key (Settings > n8n API > Create API Key) |
+| n8n Base URL | URL of your n8n instance (default: `http://localhost:5678`) |
 
-Configure with your Trusera API key (`tsk_` prefix) and base URL for self-hosted instances.
+## What It Detects
+
+The scanner identifies AI components across your workflows:
+
+- **LLM Providers** — OpenAI, Anthropic, Google Gemini, Mistral, Groq, Ollama, Azure OpenAI, AWS Bedrock, Cohere, HuggingFace
+- **Agent Frameworks** — n8n AI agents, LangChain chains, ReAct agents
+- **Tools** — Code execution nodes, HTTP request tools, vector stores (Pinecone, Qdrant, Weaviate, ChromaDB, Supabase)
+- **MCP Clients** — Model Context Protocol connections to external servers
+- **Models** — Embedding models, chat models, completion models
+- **Memory** — Buffer memory, conversation memory, session-based memory
 
 ## Risk Flags
 
 | Flag | Weight | Description |
-| --- | --- | --- |
-| hardcoded_api_key | 30 | Hardcoded API key detected |
-| hardcoded_credentials | 30 | Hardcoded credentials in workflow |
-| code_http_tools | 30 | Agent with code execution and HTTP tools |
-| shadow_ai | 25 | AI dependency not declared in project files |
-| webhook_no_auth | 25 | n8n webhook without authentication |
-| internet_facing | 20 | AI endpoint exposed to internet |
-| multi_agent_no_trust | 20 | Multi-agent system without trust boundaries |
-| agent_chain_no_validation | 20 | Agent-to-agent chain without validation |
-| mcp_unknown_server | 20 | MCP client connected to unknown server |
-| no_auth | 15 | AI endpoint without authentication |
-| no_rate_limit | 10 | No rate limiting on AI endpoint |
-| deprecated_model | 10 | Using deprecated AI model |
-| no_error_handling | 10 | No error handling for AI calls |
-| unpinned_model | 5 | Model version not pinned |
+|------|--------|-------------|
+| `hardcoded_api_key` | 30 | Hardcoded API key in workflow JSON |
+| `hardcoded_credentials` | 30 | Hardcoded credentials in node parameters |
+| `code_http_tools` | 30 | Agent with both code execution and HTTP request tools |
+| `shadow_ai` | 25 | AI dependency not declared in project files |
+| `webhook_no_auth` | 25 | Webhook trigger without authentication |
+| `internet_facing` | 20 | AI components exposed to internet via webhook |
+| `multi_agent_no_trust` | 20 | Multi-agent system without trust boundaries |
+| `agent_chain_no_validation` | 20 | Agent-to-agent chain without output validation |
+| `mcp_unknown_server` | 20 | MCP client connected to unknown/external server |
+| `no_auth` | 15 | AI endpoint without authentication |
+| `no_rate_limit` | 10 | No rate limiting on AI endpoint |
+| `deprecated_model` | 10 | Using a deprecated AI model version |
+| `no_error_handling` | 10 | No error handling configured for AI calls |
+| `unpinned_model` | 5 | Model version not pinned to specific release |
 
 ## Severity Thresholds
 
-| Severity | Score Range |
-| --- | --- |
-| Critical | 76 - 100 |
-| High | 51 - 75 |
-| Medium | 26 - 50 |
-| Low | 0 - 25 |
+| Severity | Score Range | Color |
+|----------|-------------|-------|
+| Critical | 76 - 100 | Red |
+| High | 51 - 75 | Orange |
+| Medium | 26 - 50 | Blue |
+| Low | 0 - 25 | Green |
+
+## Dashboard Features
+
+The interactive HTML dashboard includes:
+
+- **Summary cards** — total components, workflows scanned, highest risk score, scan duration
+- **Severity distribution chart** — donut chart showing critical/high/medium/low breakdown
+- **Component types chart** — bar chart of LLM providers, agents, tools, models, MCP clients
+- **OWASP LLM Top 10 chart** — risk flags mapped to OWASP categories
+- **Scanned workflows table** — each workflow with trigger type, AI component count, highest risk, severity badge
+- **Findings table** — all detected components with name, type, provider, severity, risk score, workflow
+- **Filters** — search by name, filter by severity/type/workflow
+- **Export** — CSV and JSON export buttons
+- **Dark/light mode** — toggle in the header
+- **Password protection** — optional AES-256-GCM encryption
+
+## Example Workflows
+
+### Minimal: Security Dashboard
+
+```
+[Trusera Webhook] → activate → visit /webhook/trusera
+```
+
+### CI/CD Gate: Block Risky Deployments
+
+```
+[Schedule Trigger] → [HTTP Request: GET /api/v1/workflows]
+                    → [Trusera Scan]
+                    → [Trusera Policy (maxCritical: 0)]
+                    → [IF: passed = true]
+                        → Yes: [Deploy]
+                        → No: [Slack Alert]
+```
+
+### Weekly Report: Email Summary
+
+```
+[Schedule Trigger (weekly)] → [HTTP Request: GET /api/v1/workflows]
+                             → [Trusera Scan (scanMultiple)]
+                             → [Trusera Report (markdown)]
+                             → [Send Email]
+```
 
 ## License
 
-Apache-2.0
+MIT

package/dist/nodes/TruseraWebhook/TruseraWebhook.node.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"TruseraWebhook.node.d.ts","sourceRoot":"","sources":["../../../nodes/TruseraWebhook/TruseraWebhook.node.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,iBAAiB,EACjB,oBAAoB,EACpB,SAAS,EACT,oBAAoB,EACrB,MAAM,cAAc,CAAC;AAKtB,qBAAa,cAAe,YAAW,SAAS;IAC9C,WAAW,EAAE,oBAAoB,CAwC/B;IAEI,OAAO,CAAC,IAAI,EAAE,iBAAiB,GAAG,OAAO,CAAC,oBAAoB,CAAC;CA+DtE"}
+{"version":3,"file":"TruseraWebhook.node.d.ts","sourceRoot":"","sources":["../../../nodes/TruseraWebhook/TruseraWebhook.node.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,iBAAiB,EACjB,oBAAoB,EACpB,SAAS,EACT,oBAAoB,EACrB,MAAM,cAAc,CAAC;AAKtB,qBAAa,cAAe,YAAW,SAAS;IAC9C,WAAW,EAAE,oBAAoB,CAyC/B;IAEI,OAAO,CAAC,IAAI,EAAE,iBAAiB,GAAG,OAAO,CAAC,oBAAoB,CAAC;CA+DtE"}

package/dist/nodes/TruseraWebhook/TruseraWebhook.node.js

@@ -15,6 +15,7 @@ class TruseraWebhook {
             description: 'One-node security dashboard — add n8n API credentials, activate, and visit /webhook/trusera to see your AI-BOM report.',
             defaults: {
                 name: 'Trusera Webhook',
+                webhookId: 'trusera-ai-bom',
             },
             inputs: [],
             outputs: ['main'],

package/dist/nodes/TruseraWebhook/TruseraWebhook.node.js.map

@@ -1 +1 @@
-{"version":3,"file":"TruseraWebhook.node.js","sourceRoot":"","sources":["../../../nodes/TruseraWebhook/TruseraWebhook.node.ts"],"names":[],"mappings":";;;AAOA,+CAAkD;AAClD,2DAAgE;AAEhE,MAAa,cAAc;IAA3B;QACE,gBAAW,GAAyB;YAClC,WAAW,EAAE,iBAAiB;YAC9B,IAAI,EAAE,gBAAgB;YACtB,IAAI,EAAE,kBAAkB;YACxB,KAAK,EAAE,CAAC,SAAS,CAAC;YAClB,OAAO,EAAE,CAAC;YACV,QAAQ,EAAE,uBAAuB;YACjC,WAAW,EACT,wHAAwH;YAC1H,QAAQ,EAAE;gBACR,IAAI,EAAE,iBAAiB;aACxB;YACD,MAAM,EAAE,EAAE;YACV,OAAO,EAAE,CAAC,MAAM,CAAC;YACjB,WAAW,EAAE;gBACX;oBACE,IAAI,EAAE,YAAY;oBAClB,QAAQ,EAAE,IAAI;iBACf;aACF;YACD,QAAQ,EAAE;gBACR;oBACE,IAAI,EAAE,SAAS;oBACf,UAAU,EAAE,KAAK;oBACjB,YAAY,EAAE,UAAU;oBACxB,IAAI,EAAE,SAAS;oBACf,UAAU,EAAE,IAAI;iBACjB;aACF;YACD,UAAU,EAAE;gBACV;oBACE,WAAW,EAAE,oBAAoB;oBACjC,IAAI,EAAE,UAAU;oBAChB,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE;oBAC/B,OAAO,EAAE,EAAE;oBACX,WAAW,EACT,4GAA4G;iBAC/G;aACF;SACF,CAAC;IAiEJ,CAAC;IA/DC,KAAK,CAAC,OAAO;QACX,MAAM,GAAG,GAAG,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAErC,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC;YACtD,MAAM,OAAO,GAAG,CAAE,KAAK,CAAC,OAAkB,IAAI,uBAAuB,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YAC1F,MAAM,MAAM,GAAG,KAAK,CAAC,MAAgB,CAAC;YACtC,MAAM,QAAQ,GAAG,IAAI,CAAC,gBAAgB,CAAC,UAAU,EAAE,EAAE,CAAW,CAAC;YAEjE,mDAAmD;YACnD,MAAM,YAAY,GAAmC,EAAE,CAAC;YACxD,IAAI,MAAM,GAAkB,IAAI,CAAC;YACjC,GAAG,CAAC;gBACF,MAAM,GAAG,GACP,GAAG,OAAO,6BAA6B;oBACvC,CAAC,MAAM,CAAC,CAAC,CAAC,WAAW,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACtC,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;oBAC5B,OAAO,EAAE;wBACP,eAAe,EAAE,MAAM;wBACvB,QAAQ,EAAE,kBAAkB;qBAC7B;iBACF,CAAC,CAAC;gBACH,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;oBACb,MAAM,IAAI,KAAK,CAAC,kBAAkB,IAAI,CAAC,MAAM,IAAI,MAAM,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;gBACxE,CAAC;gBACD,MAAM,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,IAAI,EAAE,CAG9B,CAAC;gBACF,YAAY,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC;gBAChC,MAAM,GAAG,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC;YACnC,CAAC,QAAQ,MAAM,EAAE;YAEjB,qBAAqB;YACrB,MAAM,SAAS,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;gBAC1C,IAAI,EAAE,EAAE;gBACR,QAAQ,EAAG,EAAE,CAAC,IAAe,IAAK,EAAE,CAAC,EAAa,IAAI,SAAS;aAChE,CAAC,CAAC,CAAC;YACJ,MAAM,UAAU,GAAG,IAAA,uBAAa,EAAC,SAAS,CAAC,CAAC;YAE5C,0BAA0B;YAC1B,MAAM,IAAI,GAAG,IAAA,qCAAqB,EAAC,UAAU,EAAE,QAAQ,IAAI,SAAS,CAAC,CAAC;YAEtE,sBAAsB;YACtB,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,0BAA0B,CAAC,CAAC;YAC1D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC5B,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,0BAA0B,CAAC,CAAC;YAC1D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,CACjB,yEAAyE;gBACzE,kCAAkC;gBAClC,0BAA2B,GAAa,CAAC,OAAO,QAAQ;gBACxD,gBAAgB,CACjB,CAAC;QACJ,CAAC;QAED,OAAO;YACL,iBAAiB,EAAE,IAAI;YACvB,YAAY,EAAE;gBACZ,CAAC,EAAE,IAAI,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,EAAE,CAAC;aAClE;SACF,CAAC;IACJ,CAAC;CACF;AA1GD,wCA0GC"}
+{"version":3,"file":"TruseraWebhook.node.js","sourceRoot":"","sources":["../../../nodes/TruseraWebhook/TruseraWebhook.node.ts"],"names":[],"mappings":";;;AAOA,+CAAkD;AAClD,2DAAgE;AAEhE,MAAa,cAAc;IAA3B;QACE,gBAAW,GAAyB;YAClC,WAAW,EAAE,iBAAiB;YAC9B,IAAI,EAAE,gBAAgB;YACtB,IAAI,EAAE,kBAAkB;YACxB,KAAK,EAAE,CAAC,SAAS,CAAC;YAClB,OAAO,EAAE,CAAC;YACV,QAAQ,EAAE,uBAAuB;YACjC,WAAW,EACT,wHAAwH;YAC1H,QAAQ,EAAE;gBACR,IAAI,EAAE,iBAAiB;gBACvB,SAAS,EAAE,gBAAgB;aACQ;YACrC,MAAM,EAAE,EAAE;YACV,OAAO,EAAE,CAAC,MAAM,CAAC;YACjB,WAAW,EAAE;gBACX;oBACE,IAAI,EAAE,YAAY;oBAClB,QAAQ,EAAE,IAAI;iBACf;aACF;YACD,QAAQ,EAAE;gBACR;oBACE,IAAI,EAAE,SAAS;oBACf,UAAU,EAAE,KAAK;oBACjB,YAAY,EAAE,UAAU;oBACxB,IAAI,EAAE,SAAS;oBACf,UAAU,EAAE,IAAI;iBACjB;aACF;YACD,UAAU,EAAE;gBACV;oBACE,WAAW,EAAE,oBAAoB;oBACjC,IAAI,EAAE,UAAU;oBAChB,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE;oBAC/B,OAAO,EAAE,EAAE;oBACX,WAAW,EACT,4GAA4G;iBAC/G;aACF;SACF,CAAC;IAiEJ,CAAC;IA/DC,KAAK,CAAC,OAAO;QACX,MAAM,GAAG,GAAG,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAErC,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,cAAc,CAAC,YAAY,CAAC,CAAC;YACtD,MAAM,OAAO,GAAG,CAAE,KAAK,CAAC,OAAkB,IAAI,uBAAuB,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;YAC1F,MAAM,MAAM,GAAG,KAAK,CAAC,MAAgB,CAAC;YACtC,MAAM,QAAQ,GAAG,IAAI,CAAC,gBAAgB,CAAC,UAAU,EAAE,EAAE,CAAW,CAAC;YAEjE,mDAAmD;YACnD,MAAM,YAAY,GAAmC,EAAE,CAAC;YACxD,IAAI,MAAM,GAAkB,IAAI,CAAC;YACjC,GAAG,CAAC;gBACF,MAAM,GAAG,GACP,GAAG,OAAO,6BAA6B;oBACvC,CAAC,MAAM,CAAC,CAAC,CAAC,WAAW,MAAM,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;gBACtC,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;oBAC5B,OAAO,EAAE;wBACP,eAAe,EAAE,MAAM;wBACvB,QAAQ,EAAE,kBAAkB;qBAC7B;iBACF,CAAC,CAAC;gBACH,IAAI,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC;oBACb,MAAM,IAAI,KAAK,CAAC,kBAAkB,IAAI,CAAC,MAAM,IAAI,MAAM,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;gBACxE,CAAC;gBACD,MAAM,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,IAAI,EAAE,CAG9B,CAAC;gBACF,YAAY,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,CAAC;gBAChC,MAAM,GAAG,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC;YACnC,CAAC,QAAQ,MAAM,EAAE;YAEjB,qBAAqB;YACrB,MAAM,SAAS,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;gBAC1C,IAAI,EAAE,EAAE;gBACR,QAAQ,EAAG,EAAE,CAAC,IAAe,IAAK,EAAE,CAAC,EAAa,IAAI,SAAS;aAChE,CAAC,CAAC,CAAC;YACJ,MAAM,UAAU,GAAG,IAAA,uBAAa,EAAC,SAAS,CAAC,CAAC;YAE5C,0BAA0B;YAC1B,MAAM,IAAI,GAAG,IAAA,qCAAqB,EAAC,UAAU,EAAE,QAAQ,IAAI,SAAS,CAAC,CAAC;YAEtE,sBAAsB;YACtB,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,0BAA0B,CAAC,CAAC;YAC1D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QAC5B,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,GAAG,CAAC,SAAS,CAAC,cAAc,EAAE,0BAA0B,CAAC,CAAC;YAC1D,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,GAAG,CACjB,yEAAyE;gBACzE,kCAAkC;gBAClC,0BAA2B,GAAa,CAAC,OAAO,QAAQ;gBACxD,gBAAgB,CACjB,CAAC;QACJ,CAAC;QAED,OAAO;YACL,iBAAiB,EAAE,IAAI;YACvB,YAAY,EAAE;gBACZ,CAAC,EAAE,IAAI,EAAE,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,EAAE,EAAE,CAAC;aAClE;SACF,CAAC;IACJ,CAAC;CACF;AA3GD,wCA2GC"}

package/nodes/TruseraWebhook/TruseraWebhook.node.ts

@@ -20,7 +20,8 @@ export class TruseraWebhook implements INodeType {
       'One-node security dashboard — add n8n API credentials, activate, and visit /webhook/trusera to see your AI-BOM report.',
     defaults: {
       name: 'Trusera Webhook',
-    },
+      webhookId: 'trusera-ai-bom',
+    } as INodeTypeDescription['defaults'],
     inputs: [],
     outputs: ['main'],
     credentials: [

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "n8n-nodes-trusera",
-  "version": "0.4.1",
+  "version": "0.4.3",
   "description": "n8n community node to scan workflows for AI security risks using Trusera AI-BOM",
   "keywords": [
     "n8n-community-node-package",