opena2a-cli 0.1.0

package/dist/router.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"router.js","sourceRoot":"","sources":["../src/router.ts"],"names":[],"mappings":";;AAsBA,sCA8CC;AAKD,0CAuFC;AAhKD,kDAAoD;AAEpD,sDAAgD;AAYhD;;;;;;;GAOG;AACH,SAAgB,aAAa,CAAC,IAAc;IAC1C,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtB,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IACjD,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;IAEtB,6BAA6B;IAC7B,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QAC1B,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QACtF,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,KAAK,CAAC,IAAI,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IAC3D,CAAC;IAED,wBAAwB;IACxB,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,KAAK,KAAK,GAAG,EAAE,CAAC;QAC3C,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;QACtF,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,KAAK,CAAC,IAAI,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IAC5D,CAAC;IAED,yFAAyF;IACzF,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;QACnD,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC9B,MAAM,QAAQ,GAAG,MAAM,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC;QACpD,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IACxD,CAAC;IAED,mBAAmB;IACnB,MAAM,cAAc,GAAG;QACrB,MAAM,EAAE,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,SAAS;QAC/C,MAAM,EAAE,SAAS,EAAE,WAAW,EAAE,QAAQ,EAAE,SAAS;QACnD,UAAU,EAAE,UAAU,EAAE,UAAU,EAAE,MAAM,EAAE,OAAO;QACnD,OAAO,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,EAAE,eAAe;QACnD,QAAQ,EAAE,WAAW;KACtB,CAAC;IAEF,IAAI,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;QACnC,OAAO,EAAE,IAAI,EAAE,YAAY,EAAE,KAAK,EAAE,KAAK,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC;IACnE,CAAC;IAED,8CAA8C;IAC9C,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpB,OAAO,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;IAC9D,CAAC;IAED,wCAAwC;IACxC,OAAO,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,KAAK,EAAE,IAAI,EAAE,EAAE,EAAE,CAAC;AACpD,CAAC;AAED;;GAEG;AACI,KAAK,UAAU,eAAe,CACnC,OAAe,EACf,IAAc,EACd,gBAAqC,EAAE;IAEvC,mFAAmF;IACnF,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,MAAM,SAAS,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;QAC3C,OAAO,IAAA,oBAAO,EAAC;YACb,SAAS;YACT,MAAM,EAAE,IAAI,CAAC,QAAQ,CAAC,WAAW,CAAC;YAClC,OAAO,EAAE,aAAa,CAAC,OAAO,IAAI,KAAK;YACvC,EAAE,EAAE,aAAa,CAAC,EAAE,IAAI,KAAK;YAC7B,MAAM,EAAG,aAAa,CAAC,MAA0B,IAAI,MAAM;YAC3D,UAAU,EAAE,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC;SAC3C,CAAC,CAAC;IACL,CAAC;IAED,6CAA6C;IAC7C,IAAI,OAAO,KAAK,MAAM,EAAE,CAAC;QACvB,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,MAAM,CAAC,oBAAoB,CAAC,CAAC;QACpD,OAAO,IAAI,CAAC;YACV,SAAS,EAAE,IAAI,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,GAAG,EAAE;YACnC,EAAE,EAAE,aAAa,CAAC,EAAE,IAAI,KAAK;YAC7B,MAAM,EAAG,aAAa,CAAC,MAA0B,IAAI,MAAM;YAC3D,OAAO,EAAE,aAAa,CAAC,OAAO,IAAI,KAAK;SACxC,CAAC,CAAC;IACL,CAAC;IAED,wCAAwC;IACxC,IAAI,OAAO,KAAK,OAAO,EAAE,CAAC;QACxB,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,qBAAqB,CAAC,CAAC;QACtD,MAAM,UAAU,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,QAAQ,CAAC;QACvC,OAAO,KAAK,CAAC;YACX,UAAU,EAAE,UAA0C;YACtD,SAAS,EAAE,OAAO,CAAC,GAAG,EAAE;YACxB,EAAE,EAAE,aAAa,CAAC,EAAE,IAAI,KAAK;YAC7B,MAAM,EAAG,aAAa,CAAC,MAA0B,IAAI,MAAM;YAC3D,OAAO,EAAE,aAAa,CAAC,OAAO,IAAI,KAAK;SACxC,CAAC,CAAC;IACL,CAAC;IAED,0CAA0C;IAC1C,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,MAAM,CAAC,uBAAuB,CAAC,CAAC;QAC1D,MAAM,UAAU,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,QAAQ,CAAC;QACvC,OAAO,OAAO,CAAC;YACb,UAAU,EAAE,UAAkD;YAC9D,SAAS,EAAE,OAAO,CAAC,GAAG,EAAE;YACxB,EAAE,EAAE,aAAa,CAAC,EAAE,IAAI,KAAK;YAC7B,MAAM,EAAG,aAAa,CAAC,MAA0B,IAAI,MAAM;YAC3D,OAAO,EAAE,aAAa,CAAC,OAAO,IAAI,KAAK;SACxC,CAAC,CAAC;IACL,CAAC;IAED,kCAAkC;IAClC,MAAM,UAAU,GAA+D;QAC7E,KAAK,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,WAAW,EAAE,CAAC,QAAQ,CAAC,EAAE;QACnD,MAAM,EAAE,EAAE,OAAO,EAAE,MAAM,EAAE,WAAW,EAAE,CAAC,QAAQ,CAAC,EAAE;QACpD,OAAO,EAAE,EAAE,OAAO,EAAE,UAAU,EAAE,WAAW,EAAE,CAAC,OAAO,CAAC,EAAE;KACzD,CAAC;IAEF,MAAM,MAAM,GAAG,UAAU,CAAC,OAAO,CAAC,CAAC;IACnC,MAAM,WAAW,GAAG,MAAM,EAAE,OAAO,IAAI,OAAO,CAAC;IAC/C,MAAM,WAAW,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,MAAM,CAAC,WAAW,EAAE,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IAErE,MAAM,OAAO,GAAG,IAAA,wBAAa,EAAC,WAAW,CAAC,CAAC;IAC3C,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,oBAAoB,OAAO,IAAI,CAAC,CAAC;QACtD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,gDAAgD,CAAC,CAAC;QACvE,OAAO,CAAC,CAAC;IACX,CAAC;IAED,MAAM,SAAS,GAAG,MAAM,OAAO,CAAC,WAAW,EAAE,CAAC;IAC9C,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,OAAO,CAAC,MAAM,CAAC,IAAI,sBAAsB,CAAC,CAAC;QACnE,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,2BAA2B,OAAO,CAAC,MAAM,CAAC,WAAW,IAAI,OAAO,CAAC,MAAM,CAAC,OAAO,IAAI,OAAO,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC,CAAC;QACjI,OAAO,CAAC,CAAC;IACX,CAAC;IAED,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;QAC/B,IAAI,EAAE,WAAW;QACjB,GAAG,aAAa;QAChB,GAAG,EAAE,aAAa,CAAC,GAAG,IAAI,OAAO,CAAC,GAAG,EAAE;KACxC,CAAC,CAAC;IAEH,OAAO,MAAM,CAAC,QAAQ,CAAC;AACzB,CAAC"}

package/dist/semantic/command-index.json

@@ -0,0 +1,182 @@
+[
+  {
+    "id": "scan",
+    "path": "opena2a scan",
+    "description": "Scan AI agent for security vulnerabilities using 150+ checks",
+    "tags": ["security", "scan", "vulnerability", "hardening", "audit"],
+    "synonyms": ["check", "test", "analyze", "inspect", "review"],
+    "domains": ["mcp", "agent", "llm", "ai"],
+    "examples": ["scan my MCP server", "find vulnerabilities", "security audit"]
+  },
+  {
+    "id": "scan-secure",
+    "path": "opena2a scan secure",
+    "description": "Run full security scan with auto-fix suggestions",
+    "tags": ["security", "scan", "harden", "fix", "remediate"],
+    "synonyms": ["harden", "secure", "fix"],
+    "domains": ["mcp", "agent"],
+    "examples": ["harden my agent", "secure my MCP server", "fix vulnerabilities"]
+  },
+  {
+    "id": "scan-attack",
+    "path": "opena2a scan attack",
+    "description": "Run attack mode to test agent resilience against adversarial inputs",
+    "tags": ["attack", "pentest", "adversarial", "red-team", "offensive"],
+    "synonyms": ["pentest", "red-team", "exploit", "break"],
+    "domains": ["agent", "mcp", "llm"],
+    "examples": ["attack test my agent", "red team my MCP server", "pentest"]
+  },
+  {
+    "id": "secrets-init",
+    "path": "opena2a secrets init",
+    "description": "Set up credential protection for AI coding tools",
+    "tags": ["secrets", "credentials", "protection", "encrypt", "vault"],
+    "synonyms": ["protect-secrets", "encrypt", "hide-keys"],
+    "domains": ["cursor", "claude-code", "windsurf", "vscode"],
+    "examples": ["protect my API keys", "hide credentials from AI", "encrypt secrets"]
+  },
+  {
+    "id": "secrets-scan",
+    "path": "opena2a secrets scan",
+    "description": "Find hardcoded credentials in project files",
+    "tags": ["secrets", "scan", "credentials", "leak", "exposure"],
+    "synonyms": ["find-secrets", "detect-keys", "credential-scan"],
+    "domains": ["git", "env", "config"],
+    "examples": ["find leaked API keys", "scan for hardcoded secrets", "detect credentials"]
+  },
+  {
+    "id": "protect",
+    "path": "opena2a protect",
+    "description": "Detect credentials and migrate them to encrypted vault. Detects Google API key drift to Gemini and AWS key drift to Bedrock.",
+    "tags": ["protect", "migrate", "vault", "remediate", "fix", "drift", "google", "aws", "gemini", "bedrock"],
+    "synonyms": ["migrate-secrets", "vault", "fix-credentials", "scope-drift", "key-detection"],
+    "domains": ["credentials", "security", "google", "aws", "drift"],
+    "examples": ["move secrets to vault", "fix hardcoded credentials", "migrate API keys", "detect google key drift", "find AWS bedrock drift"]
+  },
+  {
+    "id": "runtime",
+    "path": "opena2a runtime",
+    "description": "Monitor agent runtime behavior -- process, network, filesystem",
+    "tags": ["runtime", "monitor", "process", "network", "filesystem", "edr"],
+    "synonyms": ["monitor", "watch", "observe", "guard"],
+    "domains": ["agent", "process", "network"],
+    "examples": ["monitor my agent", "watch network calls", "runtime protection"]
+  },
+  {
+    "id": "benchmark",
+    "path": "opena2a benchmark",
+    "description": "Run OASB security benchmark with 222 attack scenarios",
+    "tags": ["benchmark", "oasb", "compliance", "score", "assessment"],
+    "synonyms": ["assess", "grade", "score", "evaluate"],
+    "domains": ["compliance", "owasp", "mitre"],
+    "examples": ["benchmark my agent", "security score", "compliance check"]
+  },
+  {
+    "id": "registry",
+    "path": "opena2a registry",
+    "description": "Query OpenA2A Trust Registry for package security data",
+    "tags": ["registry", "trust", "package", "supply-chain", "verify"],
+    "synonyms": ["trust", "verify", "lookup", "check-package"],
+    "domains": ["npm", "pypi", "supply-chain"],
+    "examples": ["check if package is safe", "trust score lookup", "verify dependency"]
+  },
+  {
+    "id": "research",
+    "path": "opena2a research",
+    "description": "Launch autonomous security research agent",
+    "tags": ["research", "autonomous", "bounty", "discover", "investigate"],
+    "synonyms": ["investigate", "discover", "analyze-deep"],
+    "domains": ["vulnerability", "security-research"],
+    "examples": ["research this target", "find zero-days", "autonomous security scan"]
+  },
+  {
+    "id": "hunt",
+    "path": "opena2a hunt",
+    "description": "Launch autonomous vulnerability hunter with multi-turn attack decomposition",
+    "tags": ["hunt", "attack", "autonomous", "decompose", "exploit"],
+    "synonyms": ["exploit", "break", "multi-turn-attack"],
+    "domains": ["agent", "api", "llm"],
+    "examples": ["hunt for vulnerabilities", "multi-turn attack", "autonomous exploit"]
+  },
+  {
+    "id": "train",
+    "path": "opena2a train",
+    "description": "Launch Damn Vulnerable AI Agent for security training",
+    "tags": ["train", "practice", "dvaa", "vulnerable", "learn"],
+    "synonyms": ["practice", "learn", "ctf", "lab"],
+    "domains": ["training", "education"],
+    "examples": ["start training lab", "practice on vulnerable agent", "CTF environment"]
+  },
+  {
+    "id": "crypto",
+    "path": "opena2a crypto",
+    "description": "Cryptographic inventory scan and post-quantum readiness assessment",
+    "tags": ["crypto", "pqc", "quantum", "tls", "certificate", "encryption"],
+    "synonyms": ["quantum", "post-quantum", "pqc", "tls-scan"],
+    "domains": ["cryptography", "tls", "certificate"],
+    "examples": ["scan for weak crypto", "quantum readiness", "TLS configuration check"]
+  },
+  {
+    "id": "identity",
+    "path": "opena2a identity",
+    "description": "Manage cryptographic agent identities (AIM)",
+    "tags": ["identity", "aim", "agent-id", "certificate", "governance"],
+    "synonyms": ["agent-id", "register-agent", "identity-management"],
+    "domains": ["agent", "governance", "access-control"],
+    "examples": ["create agent identity", "register my agent", "manage agent certificates"]
+  },
+  {
+    "id": "broker",
+    "path": "opena2a broker",
+    "description": "Start identity-aware credential broker daemon",
+    "tags": ["broker", "daemon", "credential-resolution", "policy", "identity-aware"],
+    "synonyms": ["credential-broker", "secret-proxy", "vault-daemon"],
+    "domains": ["credentials", "identity", "policy"],
+    "examples": ["start credential broker", "run secret proxy", "identity-aware secrets"]
+  },
+  {
+    "id": "guard",
+    "path": "opena2a guard",
+    "description": "Config file integrity signing and verification (ConfigGuard)",
+    "tags": ["guard", "integrity", "config", "sign", "verify", "tamper", "hash"],
+    "synonyms": ["configguard", "sign-config", "verify-config", "integrity-check"],
+    "domains": ["config", "security", "supply-chain"],
+    "examples": ["sign config files", "verify config integrity", "detect config tampering"]
+  },
+  {
+    "id": "dlp",
+    "path": "opena2a dlp",
+    "description": "Data loss prevention -- scan and clean AI tool transcripts",
+    "tags": ["dlp", "transcript", "clean", "redact", "data-loss"],
+    "synonyms": ["clean-transcripts", "redact", "data-protection"],
+    "domains": ["transcript", "claude", "cursor"],
+    "examples": ["clean AI transcripts", "redact secrets from logs", "data loss prevention"]
+  },
+  {
+    "id": "init",
+    "path": "opena2a init",
+    "description": "Initialize OpenA2A security in a project -- scan for credentials, detect scope drift, check hygiene, calculate trust score",
+    "tags": ["init", "setup", "initialize", "onboard", "start", "drift", "trust-score"],
+    "synonyms": ["setup", "start", "onboard", "configure", "assess"],
+    "domains": ["project", "config", "credentials"],
+    "examples": ["set up security", "initialize project", "get started", "check my project"]
+  },
+  {
+    "id": "status",
+    "path": "opena2a status",
+    "description": "Show security status of current project",
+    "tags": ["status", "dashboard", "overview", "summary", "report"],
+    "synonyms": ["overview", "dashboard", "summary"],
+    "domains": ["project"],
+    "examples": ["show security status", "project overview", "what's the status"]
+  },
+  {
+    "id": "config",
+    "path": "opena2a config",
+    "description": "Manage OpenA2A configuration and preferences",
+    "tags": ["config", "settings", "preferences", "configure"],
+    "synonyms": ["settings", "preferences"],
+    "domains": ["config"],
+    "examples": ["change settings", "configure contribute", "set registry URL"]
+  }
+]

package/dist/semantic/index.d.ts

@@ -0,0 +1,3 @@
+export { search } from './search.js';
+export declare function handleSearch(query: string): void;
+//# sourceMappingURL=index.d.ts.map

package/dist/semantic/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/semantic/index.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAErC,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,CAqBhD"}

package/dist/semantic/index.js

@@ -0,0 +1,28 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.search = void 0;
+exports.handleSearch = handleSearch;
+const search_js_1 = require("./search.js");
+const colors_js_1 = require("../util/colors.js");
+var search_js_2 = require("./search.js");
+Object.defineProperty(exports, "search", { enumerable: true, get: function () { return search_js_2.search; } });
+function handleSearch(query) {
+    const results = (0, search_js_1.search)(query);
+    if (results.length === 0) {
+        process.stdout.write(`No commands found matching "${query}".\n`);
+        process.stdout.write(`Try: opena2a --help\n`);
+        return;
+    }
+    process.stdout.write(`\nCommands matching "${query}":\n\n`);
+    for (let i = 0; i < results.length; i++) {
+        const { entry, score } = results[i];
+        const rank = `${i + 1}.`;
+        process.stdout.write(`  ${(0, colors_js_1.bold)(rank)} ${(0, colors_js_1.cyan)(entry.path)}\n`);
+        process.stdout.write(`     ${entry.description}\n`);
+        if (entry.examples.length > 0) {
+            process.stdout.write(`     ${(0, colors_js_1.dim)('e.g.')} ${(0, colors_js_1.gray)(entry.examples[0])}\n`);
+        }
+        process.stdout.write('\n');
+    }
+}
+//# sourceMappingURL=index.js.map

package/dist/semantic/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/semantic/index.ts"],"names":[],"mappings":";;;AAKA,oCAqBC;AA1BD,2CAAqC;AACrC,iDAA0D;AAE1D,yCAAqC;AAA5B,mGAAA,MAAM,OAAA;AAEf,SAAgB,YAAY,CAAC,KAAa;IACxC,MAAM,OAAO,GAAG,IAAA,kBAAM,EAAC,KAAK,CAAC,CAAC;IAE9B,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,+BAA+B,KAAK,MAAM,CAAC,CAAC;QACjE,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC;QAC9C,OAAO;IACT,CAAC;IAED,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,wBAAwB,KAAK,QAAQ,CAAC,CAAC;IAE5D,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACxC,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;QACpC,MAAM,IAAI,GAAG,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC;QACzB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,IAAA,gBAAI,EAAC,IAAI,CAAC,IAAI,IAAA,gBAAI,EAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC9D,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,KAAK,CAAC,WAAW,IAAI,CAAC,CAAC;QACpD,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC9B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,IAAA,eAAG,EAAC,MAAM,CAAC,IAAI,IAAA,gBAAI,EAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;QAC3E,CAAC;QACD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC7B,CAAC;AACH,CAAC"}

package/dist/semantic/search.d.ts

@@ -0,0 +1,17 @@
+interface CommandEntry {
+    id: string;
+    path: string;
+    description: string;
+    tags: string[];
+    synonyms: string[];
+    domains: string[];
+    examples: string[];
+}
+interface SearchResult {
+    entry: CommandEntry;
+    score: number;
+    matchedOn: string[];
+}
+export declare function search(query: string, limit?: number): SearchResult[];
+export {};
+//# sourceMappingURL=search.d.ts.map

package/dist/semantic/search.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"search.d.ts","sourceRoot":"","sources":["../../src/semantic/search.ts"],"names":[],"mappings":"AAGA,UAAU,YAAY;IACpB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB;AAiFD,UAAU,YAAY;IACpB,KAAK,EAAE,YAAY,CAAC;IACpB,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,MAAM,EAAE,CAAC;CACrB;AAED,wBAAgB,MAAM,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,GAAE,MAAU,GAAG,YAAY,EAAE,CAoDvE"}

package/dist/semantic/search.js

@@ -0,0 +1,123 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.search = search;
+const node_fs_1 = require("node:fs");
+const node_path_1 = require("node:path");
+const WEIGHTS = {
+    tag: 10,
+    synonym: 8,
+    domain: 5,
+    example: 3,
+    description: 2,
+};
+// Domain expansion map: query terms -> related domains
+const DOMAIN_MAP = {
+    api: ['agent', 'mcp', 'credentials'],
+    key: ['credentials', 'secrets', 'config'],
+    token: ['credentials', 'secrets'],
+    password: ['credentials', 'secrets'],
+    secret: ['credentials', 'secrets', 'vault'],
+    vulnerable: ['scan', 'attack', 'training'],
+    safe: ['scan', 'security', 'hardening'],
+    llm: ['agent', 'ai', 'mcp'],
+    openai: ['credentials', 'ai', 'llm'],
+    anthropic: ['credentials', 'ai', 'llm'],
+    claude: ['credentials', 'ai', 'cursor', 'claude-code'],
+    cursor: ['credentials', 'ai', 'claude-code'],
+    mcp: ['agent', 'mcp', 'security'],
+    docker: ['training', 'dvaa'],
+    npm: ['supply-chain', 'npm'],
+    pip: ['supply-chain', 'pypi'],
+    owasp: ['compliance', 'owasp', 'benchmark'],
+    mitre: ['compliance', 'mitre', 'benchmark'],
+    quantum: ['cryptography', 'pqc', 'tls'],
+    tls: ['cryptography', 'tls', 'certificate'],
+    stripe: ['credentials', 'config'],
+    aws: ['credentials', 'config'],
+    github: ['credentials', 'git', 'supply-chain'],
+};
+let cachedIndex = null;
+function loadIndex() {
+    if (cachedIndex)
+        return cachedIndex;
+    // Try multiple locations to find the command index
+    const candidates = [
+        (0, node_path_1.resolve)(__dirname, 'command-index.json'),
+        (0, node_path_1.resolve)(__dirname, '..', 'semantic', 'command-index.json'),
+        (0, node_path_1.resolve)(__dirname, '..', 'src', 'semantic', 'command-index.json'),
+    ];
+    for (const indexPath of candidates) {
+        try {
+            const raw = (0, node_fs_1.readFileSync)(indexPath, 'utf-8');
+            cachedIndex = JSON.parse(raw);
+            return cachedIndex;
+        }
+        catch {
+            // Try next candidate
+        }
+    }
+    return [];
+}
+function tokenize(query) {
+    return query
+        .toLowerCase()
+        .replace(/[^a-z0-9\s-]/g, '')
+        .split(/\s+/)
+        .filter(t => t.length > 1);
+}
+function expandTokens(tokens) {
+    const expanded = new Set(tokens);
+    for (const token of tokens) {
+        const related = DOMAIN_MAP[token];
+        if (related) {
+            for (const r of related)
+                expanded.add(r);
+        }
+    }
+    return [...expanded];
+}
+function search(query, limit = 5) {
+    const index = loadIndex();
+    if (index.length === 0)
+        return [];
+    const tokens = tokenize(query);
+    const expanded = expandTokens(tokens);
+    const results = [];
+    for (const entry of index) {
+        let score = 0;
+        const matchedOn = [];
+        for (const token of expanded) {
+            // Tag match
+            if (entry.tags.some(t => t.includes(token) || token.includes(t))) {
+                score += WEIGHTS.tag;
+                matchedOn.push(`tag:${token}`);
+            }
+            // Synonym match
+            if (entry.synonyms.some(s => s.includes(token) || token.includes(s))) {
+                score += WEIGHTS.synonym;
+                matchedOn.push(`synonym:${token}`);
+            }
+            // Domain match
+            if (entry.domains.some(d => d.includes(token) || token.includes(d))) {
+                score += WEIGHTS.domain;
+                matchedOn.push(`domain:${token}`);
+            }
+            // Description match
+            if (entry.description.toLowerCase().includes(token)) {
+                score += WEIGHTS.description;
+                matchedOn.push(`description:${token}`);
+            }
+            // Example match
+            if (entry.examples.some(e => e.toLowerCase().includes(token))) {
+                score += WEIGHTS.example;
+                matchedOn.push(`example:${token}`);
+            }
+        }
+        if (score > 0) {
+            results.push({ entry, score, matchedOn });
+        }
+    }
+    results.sort((a, b) => b.score - a.score);
+    return results.slice(0, limit);
+}
+//# sourceMappingURL=search.js.map

package/dist/semantic/search.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"search.js","sourceRoot":"","sources":["../../src/semantic/search.ts"],"names":[],"mappings":";;AAkGA,wBAoDC;AAtJD,qCAAuC;AACvC,yCAAoC;AAYpC,MAAM,OAAO,GAAG;IACd,GAAG,EAAE,EAAE;IACP,OAAO,EAAE,CAAC;IACV,MAAM,EAAE,CAAC;IACT,OAAO,EAAE,CAAC;IACV,WAAW,EAAE,CAAC;CACf,CAAC;AAEF,uDAAuD;AACvD,MAAM,UAAU,GAA6B;IAC3C,GAAG,EAAE,CAAC,OAAO,EAAE,KAAK,EAAE,aAAa,CAAC;IACpC,GAAG,EAAE,CAAC,aAAa,EAAE,SAAS,EAAE,QAAQ,CAAC;IACzC,KAAK,EAAE,CAAC,aAAa,EAAE,SAAS,CAAC;IACjC,QAAQ,EAAE,CAAC,aAAa,EAAE,SAAS,CAAC;IACpC,MAAM,EAAE,CAAC,aAAa,EAAE,SAAS,EAAE,OAAO,CAAC;IAC3C,UAAU,EAAE,CAAC,MAAM,EAAE,QAAQ,EAAE,UAAU,CAAC;IAC1C,IAAI,EAAE,CAAC,MAAM,EAAE,UAAU,EAAE,WAAW,CAAC;IACvC,GAAG,EAAE,CAAC,OAAO,EAAE,IAAI,EAAE,KAAK,CAAC;IAC3B,MAAM,EAAE,CAAC,aAAa,EAAE,IAAI,EAAE,KAAK,CAAC;IACpC,SAAS,EAAE,CAAC,aAAa,EAAE,IAAI,EAAE,KAAK,CAAC;IACvC,MAAM,EAAE,CAAC,aAAa,EAAE,IAAI,EAAE,QAAQ,EAAE,aAAa,CAAC;IACtD,MAAM,EAAE,CAAC,aAAa,EAAE,IAAI,EAAE,aAAa,CAAC;IAC5C,GAAG,EAAE,CAAC,OAAO,EAAE,KAAK,EAAE,UAAU,CAAC;IACjC,MAAM,EAAE,CAAC,UAAU,EAAE,MAAM,CAAC;IAC5B,GAAG,EAAE,CAAC,cAAc,EAAE,KAAK,CAAC;IAC5B,GAAG,EAAE,CAAC,cAAc,EAAE,MAAM,CAAC;IAC7B,KAAK,EAAE,CAAC,YAAY,EAAE,OAAO,EAAE,WAAW,CAAC;IAC3C,KAAK,EAAE,CAAC,YAAY,EAAE,OAAO,EAAE,WAAW,CAAC;IAC3C,OAAO,EAAE,CAAC,cAAc,EAAE,KAAK,EAAE,KAAK,CAAC;IACvC,GAAG,EAAE,CAAC,cAAc,EAAE,KAAK,EAAE,aAAa,CAAC;IAC3C,MAAM,EAAE,CAAC,aAAa,EAAE,QAAQ,CAAC;IACjC,GAAG,EAAE,CAAC,aAAa,EAAE,QAAQ,CAAC;IAC9B,MAAM,EAAE,CAAC,aAAa,EAAE,KAAK,EAAE,cAAc,CAAC;CAC/C,CAAC;AAEF,IAAI,WAAW,GAA0B,IAAI,CAAC;AAE9C,SAAS,SAAS;IAChB,IAAI,WAAW;QAAE,OAAO,WAAW,CAAC;IAEpC,mDAAmD;IACnD,MAAM,UAAU,GAAG;QACjB,IAAA,mBAAO,EAAC,SAAS,EAAE,oBAAoB,CAAC;QACxC,IAAA,mBAAO,EAAC,SAAS,EAAE,IAAI,EAAE,UAAU,EAAE,oBAAoB,CAAC;QAC1D,IAAA,mBAAO,EAAC,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,UAAU,EAAE,oBAAoB,CAAC;KAClE,CAAC;IAEF,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;QACnC,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAA,sBAAY,EAAC,SAAS,EAAE,OAAO,CAAC,CAAC;YAC7C,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC9B,OAAO,WAAY,CAAC;QACtB,CAAC;QAAC,MAAM,CAAC;YACP,qBAAqB;QACvB,CAAC;IACH,CAAC;IAED,OAAO,EAAE,CAAC;AACZ,CAAC;AAED,SAAS,QAAQ,CAAC,KAAa;IAC7B,OAAO,KAAK;SACT,WAAW,EAAE;SACb,OAAO,CAAC,eAAe,EAAE,EAAE,CAAC;SAC5B,KAAK,CAAC,KAAK,CAAC;SACZ,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;AAC/B,CAAC;AAED,SAAS,YAAY,CAAC,MAAgB;IACpC,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,MAAM,CAAC,CAAC;IACjC,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,MAAM,OAAO,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC;QAClC,IAAI,OAAO,EAAE,CAAC;YACZ,KAAK,MAAM,CAAC,IAAI,OAAO;gBAAE,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IACD,OAAO,CAAC,GAAG,QAAQ,CAAC,CAAC;AACvB,CAAC;AAQD,SAAgB,MAAM,CAAC,KAAa,EAAE,QAAgB,CAAC;IACrD,MAAM,KAAK,GAAG,SAAS,EAAE,CAAC;IAC1B,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAElC,MAAM,MAAM,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC/B,MAAM,QAAQ,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;IAEtC,MAAM,OAAO,GAAmB,EAAE,CAAC;IAEnC,KAAK,MAAM,KAAK,IAAI,KAAK,EAAE,CAAC;QAC1B,IAAI,KAAK,GAAG,CAAC,CAAC;QACd,MAAM,SAAS,GAAa,EAAE,CAAC;QAE/B,KAAK,MAAM,KAAK,IAAI,QAAQ,EAAE,CAAC;YAC7B,YAAY;YACZ,IAAI,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;gBACjE,KAAK,IAAI,OAAO,CAAC,GAAG,CAAC;gBACrB,SAAS,CAAC,IAAI,CAAC,OAAO,KAAK,EAAE,CAAC,CAAC;YACjC,CAAC;YAED,gBAAgB;YAChB,IAAI,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;gBACrE,KAAK,IAAI,OAAO,CAAC,OAAO,CAAC;gBACzB,SAAS,CAAC,IAAI,CAAC,WAAW,KAAK,EAAE,CAAC,CAAC;YACrC,CAAC;YAED,eAAe;YACf,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;gBACpE,KAAK,IAAI,OAAO,CAAC,MAAM,CAAC;gBACxB,SAAS,CAAC,IAAI,CAAC,UAAU,KAAK,EAAE,CAAC,CAAC;YACpC,CAAC;YAED,oBAAoB;YACpB,IAAI,KAAK,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;gBACpD,KAAK,IAAI,OAAO,CAAC,WAAW,CAAC;gBAC7B,SAAS,CAAC,IAAI,CAAC,eAAe,KAAK,EAAE,CAAC,CAAC;YACzC,CAAC;YAED,gBAAgB;YAChB,IAAI,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC;gBAC9D,KAAK,IAAI,OAAO,CAAC,OAAO,CAAC;gBACzB,SAAS,CAAC,IAAI,CAAC,WAAW,KAAK,EAAE,CAAC,CAAC;YACrC,CAAC;QACH,CAAC;QAED,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;YACd,OAAO,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,KAAK,EAAE,SAAS,EAAE,CAAC,CAAC;QAC5C,CAAC;IACH,CAAC;IAED,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;IAC1C,OAAO,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;AACjC,CAAC"}

package/dist/util/action-prompt.d.ts

@@ -0,0 +1,29 @@
+export interface ActionPromptOptions {
+    /** Unique ID for remembering user's choice */
+    actionId: string;
+    /** Title displayed to user */
+    title: string;
+    /** Steps that will be executed (shown as numbered list) */
+    steps: string[];
+    /** Rollback instructions if something fails */
+    rollback: string[];
+    /** The function to execute */
+    execute: () => Promise<{
+        success: boolean;
+        message: string;
+    }>;
+    /** CI mode (skip all prompts) */
+    ci?: boolean;
+}
+/**
+ * Offer an action to the user with full transparency: show what will happen,
+ * how to undo it, and let them choose.
+ *
+ * Behavior:
+ * - CI or non-TTY: skip silently (returns false)
+ * - Remembered choice = false: skip silently
+ * - Remembered choice = true: auto-execute
+ * - Otherwise: show plan + rollback, ask for confirmation
+ */
+export declare function offerAction(options: ActionPromptOptions): Promise<boolean>;
+//# sourceMappingURL=action-prompt.d.ts.map

package/dist/util/action-prompt.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"action-prompt.d.ts","sourceRoot":"","sources":["../../src/util/action-prompt.ts"],"names":[],"mappings":"AAEA,MAAM,WAAW,mBAAmB;IAClC,8CAA8C;IAC9C,QAAQ,EAAE,MAAM,CAAC;IACjB,8BAA8B;IAC9B,KAAK,EAAE,MAAM,CAAC;IACd,2DAA2D;IAC3D,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,+CAA+C;IAC/C,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,8BAA8B;IAC9B,OAAO,EAAE,MAAM,OAAO,CAAC;QAAE,OAAO,EAAE,OAAO,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAC9D,iCAAiC;IACjC,EAAE,CAAC,EAAE,OAAO,CAAC;CACd;AAED;;;;;;;;;GASG;AACH,wBAAsB,WAAW,CAAC,OAAO,EAAE,mBAAmB,GAAG,OAAO,CAAC,OAAO,CAAC,CAiHhF"}

package/dist/util/action-prompt.js

@@ -0,0 +1,126 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.offerAction = offerAction;
+const colors_js_1 = require("./colors.js");
+/**
+ * Offer an action to the user with full transparency: show what will happen,
+ * how to undo it, and let them choose.
+ *
+ * Behavior:
+ * - CI or non-TTY: skip silently (returns false)
+ * - Remembered choice = false: skip silently
+ * - Remembered choice = true: auto-execute
+ * - Otherwise: show plan + rollback, ask for confirmation
+ */
+async function offerAction(options) {
+    // CI or non-TTY: skip silently
+    if (options.ci || !process.stdin.isTTY) {
+        return false;
+    }
+    // Check remembered choice
+    let rememberedChoice;
+    try {
+        const shared = await import('@opena2a/shared');
+        const mod = 'default' in shared ? shared.default : shared;
+        rememberedChoice = mod.getRememberedChoice(options.actionId);
+    }
+    catch {
+        // shared not available, proceed without memory
+    }
+    if (rememberedChoice === false) {
+        return false;
+    }
+    if (rememberedChoice === true) {
+        // Auto-execute
+        const result = await options.execute();
+        if (result.success) {
+            process.stdout.write((0, colors_js_1.green)(result.message) + '\n');
+        }
+        else {
+            process.stderr.write((0, colors_js_1.red)(result.message) + '\n');
+        }
+        return result.success;
+    }
+    // Show plan to user
+    process.stdout.write('\n' + (0, colors_js_1.bold)(options.title) + '\n\n');
+    process.stdout.write((0, colors_js_1.cyan)('What will happen:') + '\n');
+    for (let i = 0; i < options.steps.length; i++) {
+        process.stdout.write(`  ${i + 1}. ${options.steps[i]}\n`);
+    }
+    process.stdout.write('\n' + (0, colors_js_1.dim)('If anything goes wrong:') + '\n');
+    for (const step of options.rollback) {
+        process.stdout.write(`  - ${step}\n`);
+    }
+    process.stdout.write('\n');
+    // Ask for confirmation
+    let confirmed = false;
+    try {
+        const { confirm } = await import('@inquirer/prompts');
+        confirmed = await confirm({
+            message: 'Proceed?',
+            default: false,
+        });
+    }
+    catch (err) {
+        if (err instanceof Error && err.message.includes('User force closed')) {
+            return false;
+        }
+        // Fallback: decline
+        return false;
+    }
+    if (!confirmed) {
+        // Offer to remember the decline
+        try {
+            const { confirm: confirmRemember } = await import('@inquirer/prompts');
+            const remember = await confirmRemember({
+                message: 'Remember this choice and skip next time?',
+                default: false,
+            });
+            if (remember) {
+                try {
+                    const shared = await import('@opena2a/shared');
+                    const mod = 'default' in shared ? shared.default : shared;
+                    mod.setRememberedChoice(options.actionId, false);
+                }
+                catch {
+                    // ignore
+                }
+            }
+        }
+        catch {
+            // ignore
+        }
+        return false;
+    }
+    // Execute
+    const result = await options.execute();
+    if (result.success) {
+        process.stdout.write((0, colors_js_1.green)(result.message) + '\n');
+    }
+    else {
+        process.stderr.write((0, colors_js_1.red)(result.message) + '\n');
+    }
+    // Offer to remember the acceptance (only on first successful run)
+    try {
+        const { confirm: confirmRemember } = await import('@inquirer/prompts');
+        const remember = await confirmRemember({
+            message: 'Always do this automatically next time?',
+            default: false,
+        });
+        if (remember) {
+            try {
+                const shared = await import('@opena2a/shared');
+                const mod = 'default' in shared ? shared.default : shared;
+                mod.setRememberedChoice(options.actionId, true);
+            }
+            catch {
+                // ignore
+            }
+        }
+    }
+    catch {
+        // ignore
+    }
+    return result.success;
+}
+//# sourceMappingURL=action-prompt.js.map

package/dist/util/action-prompt.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"action-prompt.js","sourceRoot":"","sources":["../../src/util/action-prompt.ts"],"names":[],"mappings":";;AA2BA,kCAiHC;AA5ID,2CAAkE;AAiBlE;;;;;;;;;GASG;AACI,KAAK,UAAU,WAAW,CAAC,OAA4B;IAC5D,+BAA+B;IAC/B,IAAI,OAAO,CAAC,EAAE,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC;QACvC,OAAO,KAAK,CAAC;IACf,CAAC;IAED,0BAA0B;IAC1B,IAAI,gBAAqC,CAAC;IAC1C,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,iBAAiB,CAAC,CAAC;QAC/C,MAAM,GAAG,GAAG,SAAS,IAAI,MAAM,CAAC,CAAC,CAAE,MAAc,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;QACnE,gBAAgB,GAAG,GAAG,CAAC,mBAAmB,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IAC/D,CAAC;IAAC,MAAM,CAAC;QACP,+CAA+C;IACjD,CAAC;IAED,IAAI,gBAAgB,KAAK,KAAK,EAAE,CAAC;QAC/B,OAAO,KAAK,CAAC;IACf,CAAC;IAED,IAAI,gBAAgB,KAAK,IAAI,EAAE,CAAC;QAC9B,eAAe;QACf,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,OAAO,EAAE,CAAC;QACvC,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;YACnB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,iBAAK,EAAC,MAAM,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC;QACrD,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,eAAG,EAAC,MAAM,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC;QACnD,CAAC;QACD,OAAO,MAAM,CAAC,OAAO,CAAC;IACxB,CAAC;IAED,oBAAoB;IACpB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,GAAG,IAAA,gBAAI,EAAC,OAAO,CAAC,KAAK,CAAC,GAAG,MAAM,CAAC,CAAC;IAE1D,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,gBAAI,EAAC,mBAAmB,CAAC,GAAG,IAAI,CAAC,CAAC;IACvD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,OAAO,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC9C,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;IAC5D,CAAC;IAED,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,GAAG,IAAA,eAAG,EAAC,yBAAyB,CAAC,GAAG,IAAI,CAAC,CAAC;IACnE,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;QACpC,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,OAAO,IAAI,IAAI,CAAC,CAAC;IACxC,CAAC;IACD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAE3B,uBAAuB;IACvB,IAAI,SAAS,GAAG,KAAK,CAAC;IACtB,IAAI,CAAC;QACH,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,MAAM,CAAC,mBAAmB,CAAC,CAAC;QACtD,SAAS,GAAG,MAAM,OAAO,CAAC;YACxB,OAAO,EAAE,UAAU;YACnB,OAAO,EAAE,KAAK;SACf,CAAC,CAAC;IACL,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,GAAG,YAAY,KAAK,IAAI,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,mBAAmB,CAAC,EAAE,CAAC;YACtE,OAAO,KAAK,CAAC;QACf,CAAC;QACD,oBAAoB;QACpB,OAAO,KAAK,CAAC;IACf,CAAC;IAED,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,gCAAgC;QAChC,IAAI,CAAC;YACH,MAAM,EAAE,OAAO,EAAE,eAAe,EAAE,GAAG,MAAM,MAAM,CAAC,mBAAmB,CAAC,CAAC;YACvE,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC;gBACrC,OAAO,EAAE,0CAA0C;gBACnD,OAAO,EAAE,KAAK;aACf,CAAC,CAAC;YACH,IAAI,QAAQ,EAAE,CAAC;gBACb,IAAI,CAAC;oBACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,iBAAiB,CAAC,CAAC;oBAC/C,MAAM,GAAG,GAAG,SAAS,IAAI,MAAM,CAAC,CAAC,CAAE,MAAc,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;oBACnE,GAAG,CAAC,mBAAmB,CAAC,OAAO,CAAC,QAAQ,EAAE,KAAK,CAAC,CAAC;gBACnD,CAAC;gBAAC,MAAM,CAAC;oBACP,SAAS;gBACX,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,UAAU;IACV,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,OAAO,EAAE,CAAC;IACvC,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;QACnB,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,iBAAK,EAAC,MAAM,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC;IACrD,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,eAAG,EAAC,MAAM,CAAC,OAAO,CAAC,GAAG,IAAI,CAAC,CAAC;IACnD,CAAC;IAED,kEAAkE;IAClE,IAAI,CAAC;QACH,MAAM,EAAE,OAAO,EAAE,eAAe,EAAE,GAAG,MAAM,MAAM,CAAC,mBAAmB,CAAC,CAAC;QACvE,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC;YACrC,OAAO,EAAE,yCAAyC;YAClD,OAAO,EAAE,KAAK;SACf,CAAC,CAAC;QACH,IAAI,QAAQ,EAAE,CAAC;YACb,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,iBAAiB,CAAC,CAAC;gBAC/C,MAAM,GAAG,GAAG,SAAS,IAAI,MAAM,CAAC,CAAC,CAAE,MAAc,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC;gBACnE,GAAG,CAAC,mBAAmB,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YAClD,CAAC;YAAC,MAAM,CAAC;gBACP,SAAS;YACX,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,SAAS;IACX,CAAC;IAED,OAAO,MAAM,CAAC,OAAO,CAAC;AACxB,CAAC"}

package/dist/util/advisories.d.ts

@@ -0,0 +1,43 @@
+/**
+ * Advisory check utility -- fetches security advisories from the OpenA2A Registry
+ * and warns users about flagged tools in their project.
+ *
+ * Called during `opena2a init` and `opena2a scan` to surface intelligence from
+ * community scan reports.
+ */
+interface OSVSeverity {
+    type: string;
+    score: string;
+}
+interface OSVAffected {
+    package: {
+        name: string;
+        ecosystem: string;
+    };
+    ranges?: {
+        type: string;
+        events: {
+            introduced?: string;
+            fixed?: string;
+        }[];
+    }[];
+}
+export interface Advisory {
+    id: string;
+    summary: string;
+    severity: OSVSeverity[];
+    affected: OSVAffected[];
+    published: string;
+    details?: string;
+    databaseSpecific?: Record<string, any>;
+}
+export interface AdvisoryCheck {
+    advisories: Advisory[];
+    matchedPackages: string[];
+    total: number;
+    fromCache: boolean;
+}
+export declare function checkAdvisories(dir: string, registryUrl?: string): Promise<AdvisoryCheck>;
+export declare function printAdvisoryWarnings(check: AdvisoryCheck): void;
+export {};
+//# sourceMappingURL=advisories.d.ts.map

package/dist/util/advisories.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"advisories.d.ts","sourceRoot":"","sources":["../../src/util/advisories.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAQH,UAAU,WAAW;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC;CACf;AAED,UAAU,WAAW;IACnB,OAAO,EAAE;QACP,IAAI,EAAE,MAAM,CAAC;QACb,SAAS,EAAE,MAAM,CAAC;KACnB,CAAC;IACF,MAAM,CAAC,EAAE;QACP,IAAI,EAAE,MAAM,CAAC;QACb,MAAM,EAAE;YAAE,UAAU,CAAC,EAAE,MAAM,CAAC;YAAC,KAAK,CAAC,EAAE,MAAM,CAAA;SAAE,EAAE,CAAC;KACnD,EAAE,CAAC;CACL;AAED,MAAM,WAAW,QAAQ;IACvB,EAAE,EAAE,MAAM,CAAC;IACX,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,EAAE,WAAW,EAAE,CAAC;IACxB,QAAQ,EAAE,WAAW,EAAE,CAAC;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gBAAgB,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;CACxC;AAQD,MAAM,WAAW,aAAa;IAC5B,UAAU,EAAE,QAAQ,EAAE,CAAC;IACvB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,KAAK,EAAE,MAAM,CAAC;IACd,SAAS,EAAE,OAAO,CAAC;CACpB;AAgID,wBAAsB,eAAe,CACnC,GAAG,EAAE,MAAM,EACX,WAAW,CAAC,EAAE,MAAM,GACnB,OAAO,CAAC,aAAa,CAAC,CAgDxB;AAID,wBAAgB,qBAAqB,CAAC,KAAK,EAAE,aAAa,GAAG,IAAI,CAwBhE"}