opena2a-cli 0.1.0

package/dist/util/advisories.js

@@ -0,0 +1,229 @@
+"use strict";
+/**
+ * Advisory check utility -- fetches security advisories from the OpenA2A Registry
+ * and warns users about flagged tools in their project.
+ *
+ * Called during `opena2a init` and `opena2a scan` to surface intelligence from
+ * community scan reports.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.checkAdvisories = checkAdvisories;
+exports.printAdvisoryWarnings = printAdvisoryWarnings;
+const fs = __importStar(require("node:fs"));
+const path = __importStar(require("node:path"));
+const colors_js_1 = require("./colors.js");
+// --- Cache ---
+const CACHE_DIR = '.opena2a/cache';
+const CACHE_FILE = 'advisories.json';
+const CACHE_TTL_MS = 5 * 60 * 1000; // 5 minutes
+function getCachePath(dir) {
+    return path.join(dir, CACHE_DIR, CACHE_FILE);
+}
+function readCache(dir) {
+    const cachePath = getCachePath(dir);
+    if (!fs.existsSync(cachePath))
+        return null;
+    try {
+        const raw = fs.readFileSync(cachePath, 'utf-8');
+        const cached = JSON.parse(raw);
+        if (Date.now() - cached.fetchedAt < CACHE_TTL_MS) {
+            return cached;
+        }
+    }
+    catch {
+        // Corrupted cache
+    }
+    return null;
+}
+function writeCache(dir, data) {
+    const cachePath = getCachePath(dir);
+    const cacheDir = path.dirname(cachePath);
+    try {
+        fs.mkdirSync(cacheDir, { recursive: true });
+        fs.writeFileSync(cachePath, JSON.stringify({
+            fetchedAt: Date.now(),
+            data,
+        }), 'utf-8');
+    }
+    catch {
+        // Cache write failure is non-critical
+    }
+}
+// --- Fetch ---
+async function fetchAdvisories(registryUrl) {
+    try {
+        // Fetch advisories from the last 30 days
+        const since = new Date(Date.now() - 30 * 24 * 60 * 60 * 1000).toISOString().split('T')[0];
+        const url = `${registryUrl}/api/v1/trust/advisories?since=${since}&limit=100`;
+        const response = await fetch(url, {
+            method: 'GET',
+            headers: { 'Accept': 'application/json' },
+            signal: AbortSignal.timeout(5_000),
+        });
+        if (!response.ok)
+            return null;
+        return await response.json();
+    }
+    catch {
+        return null;
+    }
+}
+// --- Package detection ---
+function detectProjectPackages(dir) {
+    const packages = [];
+    // Read package.json dependencies
+    const pkgPath = path.join(dir, 'package.json');
+    if (fs.existsSync(pkgPath)) {
+        try {
+            const pkg = JSON.parse(fs.readFileSync(pkgPath, 'utf-8'));
+            const deps = {
+                ...pkg.dependencies,
+                ...pkg.devDependencies,
+                ...pkg.optionalDependencies,
+            };
+            packages.push(...Object.keys(deps ?? {}));
+        }
+        catch {
+            // Invalid package.json
+        }
+    }
+    // Read go.mod dependencies
+    const goModPath = path.join(dir, 'go.mod');
+    if (fs.existsSync(goModPath)) {
+        try {
+            const content = fs.readFileSync(goModPath, 'utf-8');
+            const requireBlock = content.match(/require\s*\(([\s\S]*?)\)/);
+            if (requireBlock) {
+                const lines = requireBlock[1].split('\n');
+                for (const line of lines) {
+                    const match = line.trim().match(/^(\S+)\s/);
+                    if (match)
+                        packages.push(match[1]);
+                }
+            }
+        }
+        catch {
+            // Invalid go.mod
+        }
+    }
+    // Read requirements.txt
+    const reqPath = path.join(dir, 'requirements.txt');
+    if (fs.existsSync(reqPath)) {
+        try {
+            const content = fs.readFileSync(reqPath, 'utf-8');
+            for (const line of content.split('\n')) {
+                const trimmed = line.trim();
+                if (trimmed && !trimmed.startsWith('#')) {
+                    const name = trimmed.split(/[=<>!~]/)[0].trim();
+                    if (name)
+                        packages.push(name);
+                }
+            }
+        }
+        catch {
+            // Invalid requirements.txt
+        }
+    }
+    return packages;
+}
+// --- Main check ---
+async function checkAdvisories(dir, registryUrl) {
+    const url = registryUrl ?? 'https://registry.opena2a.org';
+    // Check cache first
+    const cached = readCache(dir);
+    let data;
+    let fromCache = false;
+    if (cached) {
+        data = cached.data;
+        fromCache = true;
+    }
+    else {
+        const fetched = await fetchAdvisories(url);
+        if (!fetched) {
+            return { advisories: [], matchedPackages: [], total: 0, fromCache: false };
+        }
+        data = fetched;
+        writeCache(dir, data);
+    }
+    if (data.advisories.length === 0) {
+        return { advisories: [], matchedPackages: [], total: 0, fromCache };
+    }
+    // Match advisories against project packages
+    const projectPackages = new Set(detectProjectPackages(dir));
+    const matched = [];
+    const matchedNames = [];
+    for (const advisory of data.advisories) {
+        for (const affected of advisory.affected ?? []) {
+            const pkgName = affected.package?.name;
+            if (pkgName && projectPackages.has(pkgName)) {
+                matched.push(advisory);
+                if (!matchedNames.includes(pkgName)) {
+                    matchedNames.push(pkgName);
+                }
+                break;
+            }
+        }
+    }
+    return {
+        advisories: matched,
+        matchedPackages: matchedNames,
+        total: data.total,
+        fromCache,
+    };
+}
+// --- Output ---
+function printAdvisoryWarnings(check) {
+    if (check.advisories.length === 0)
+        return;
+    process.stdout.write('\n');
+    process.stdout.write((0, colors_js_1.red)((0, colors_js_1.bold)('  Security Advisories')) + '\n');
+    process.stdout.write((0, colors_js_1.dim)('  ' + '-'.repeat(47)) + '\n');
+    for (const advisory of check.advisories) {
+        const severity = advisory.severity?.[0]?.score ?? 'UNKNOWN';
+        const severityColor = severity === 'CRITICAL' ? colors_js_1.red
+            : severity === 'HIGH' ? colors_js_1.red
+                : severity === 'MODERATE' ? colors_js_1.yellow
+                    : colors_js_1.dim;
+        const packages = (advisory.affected ?? []).map(a => a.package?.name).filter(Boolean);
+        process.stdout.write(`  ${severityColor(`[${severity}]`.padEnd(12))} ${advisory.summary}\n`);
+        process.stdout.write(`  ${' '.repeat(12)} ${(0, colors_js_1.dim)(`ID: ${advisory.id}  Packages: ${packages.join(', ')}`)}\n`);
+    }
+    process.stdout.write((0, colors_js_1.dim)('  ' + '-'.repeat(47)) + '\n');
+    process.stdout.write(`  ${(0, colors_js_1.yellow)(`${check.advisories.length} advisory(ies)`)} affecting ${(0, colors_js_1.cyan)(check.matchedPackages.join(', '))}\n`);
+    process.stdout.write((0, colors_js_1.dim)(`  Run: opena2a verify --package <name>  for details\n`));
+    process.stdout.write('\n');
+}
+//# sourceMappingURL=advisories.js.map

package/dist/util/advisories.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"advisories.js","sourceRoot":"","sources":["../../src/util/advisories.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA6KH,0CAmDC;AAID,sDAwBC;AA1PD,4CAA8B;AAC9B,gDAAkC;AAClC,2CAA2D;AA2C3D,gBAAgB;AAEhB,MAAM,SAAS,GAAG,gBAAgB,CAAC;AACnC,MAAM,UAAU,GAAG,iBAAiB,CAAC;AACrC,MAAM,YAAY,GAAG,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,YAAY;AAOhD,SAAS,YAAY,CAAC,GAAW;IAC/B,OAAO,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,SAAS,EAAE,UAAU,CAAC,CAAC;AAC/C,CAAC;AAED,SAAS,SAAS,CAAC,GAAW;IAC5B,MAAM,SAAS,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;IACpC,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC;QAAE,OAAO,IAAI,CAAC;IAE3C,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;QAChD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAqB,CAAC;QACnD,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,MAAM,CAAC,SAAS,GAAG,YAAY,EAAE,CAAC;YACjD,OAAO,MAAM,CAAC;QAChB,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,kBAAkB;IACpB,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,UAAU,CAAC,GAAW,EAAE,IAAsB;IACrD,MAAM,SAAS,GAAG,YAAY,CAAC,GAAG,CAAC,CAAC;IACpC,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC;IACzC,IAAI,CAAC;QACH,EAAE,CAAC,SAAS,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QAC5C,EAAE,CAAC,aAAa,CAAC,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC;YACzC,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;YACrB,IAAI;SACe,CAAC,EAAE,OAAO,CAAC,CAAC;IACnC,CAAC;IAAC,MAAM,CAAC;QACP,sCAAsC;IACxC,CAAC;AACH,CAAC;AAED,gBAAgB;AAEhB,KAAK,UAAU,eAAe,CAAC,WAAmB;IAChD,IAAI,CAAC;QACH,yCAAyC;QACzC,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1F,MAAM,GAAG,GAAG,GAAG,WAAW,kCAAkC,KAAK,YAAY,CAAC;QAC9E,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;YAChC,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,EAAE,QAAQ,EAAE,kBAAkB,EAAE;YACzC,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,KAAK,CAAC;SACnC,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE;YAAE,OAAO,IAAI,CAAC;QAC9B,OAAO,MAAM,QAAQ,CAAC,IAAI,EAAsB,CAAC;IACnD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,4BAA4B;AAE5B,SAAS,qBAAqB,CAAC,GAAW;IACxC,MAAM,QAAQ,GAAa,EAAE,CAAC;IAE9B,iCAAiC;IACjC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;IAC/C,IAAI,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3B,IAAI,CAAC;YACH,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;YAC1D,MAAM,IAAI,GAAG;gBACX,GAAG,GAAG,CAAC,YAAY;gBACnB,GAAG,GAAG,CAAC,eAAe;gBACtB,GAAG,GAAG,CAAC,oBAAoB;aAC5B,CAAC;YACF,QAAQ,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC,CAAC;QAC5C,CAAC;QAAC,MAAM,CAAC;YACP,uBAAuB;QACzB,CAAC;IACH,CAAC;IAED,2BAA2B;IAC3B,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;IAC3C,IAAI,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC7B,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;YACpD,MAAM,YAAY,GAAG,OAAO,CAAC,KAAK,CAAC,0BAA0B,CAAC,CAAC;YAC/D,IAAI,YAAY,EAAE,CAAC;gBACjB,MAAM,KAAK,GAAG,YAAY,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBAC1C,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;oBACzB,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;oBAC5C,IAAI,KAAK;wBAAE,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;gBACrC,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,iBAAiB;QACnB,CAAC;IACH,CAAC;IAED,wBAAwB;IACxB,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,kBAAkB,CAAC,CAAC;IACnD,IAAI,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QAC3B,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;YAClD,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;gBACvC,MAAM,OAAO,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC5B,IAAI,OAAO,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;oBACxC,MAAM,IAAI,GAAG,OAAO,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;oBAChD,IAAI,IAAI;wBAAE,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAChC,CAAC;YACH,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,2BAA2B;QAC7B,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,qBAAqB;AAEd,KAAK,UAAU,eAAe,CACnC,GAAW,EACX,WAAoB;IAEpB,MAAM,GAAG,GAAG,WAAW,IAAI,8BAA8B,CAAC;IAE1D,oBAAoB;IACpB,MAAM,MAAM,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;IAC9B,IAAI,IAAsB,CAAC;IAC3B,IAAI,SAAS,GAAG,KAAK,CAAC;IAEtB,IAAI,MAAM,EAAE,CAAC;QACX,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC;QACnB,SAAS,GAAG,IAAI,CAAC;IACnB,CAAC;SAAM,CAAC;QACN,MAAM,OAAO,GAAG,MAAM,eAAe,CAAC,GAAG,CAAC,CAAC;QAC3C,IAAI,CAAC,OAAO,EAAE,CAAC;YACb,OAAO,EAAE,UAAU,EAAE,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;QAC7E,CAAC;QACD,IAAI,GAAG,OAAO,CAAC;QACf,UAAU,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;IACxB,CAAC;IAED,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACjC,OAAO,EAAE,UAAU,EAAE,EAAE,EAAE,eAAe,EAAE,EAAE,EAAE,KAAK,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC;IACtE,CAAC;IAED,4CAA4C;IAC5C,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,qBAAqB,CAAC,GAAG,CAAC,CAAC,CAAC;IAC5D,MAAM,OAAO,GAAe,EAAE,CAAC;IAC/B,MAAM,YAAY,GAAa,EAAE,CAAC;IAElC,KAAK,MAAM,QAAQ,IAAI,IAAI,CAAC,UAAU,EAAE,CAAC;QACvC,KAAK,MAAM,QAAQ,IAAI,QAAQ,CAAC,QAAQ,IAAI,EAAE,EAAE,CAAC;YAC/C,MAAM,OAAO,GAAG,QAAQ,CAAC,OAAO,EAAE,IAAI,CAAC;YACvC,IAAI,OAAO,IAAI,eAAe,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC5C,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;gBACvB,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;oBACpC,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;gBAC7B,CAAC;gBACD,MAAM;YACR,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO;QACL,UAAU,EAAE,OAAO;QACnB,eAAe,EAAE,YAAY;QAC7B,KAAK,EAAE,IAAI,CAAC,KAAK;QACjB,SAAS;KACV,CAAC;AACJ,CAAC;AAED,iBAAiB;AAEjB,SAAgB,qBAAqB,CAAC,KAAoB;IACxD,IAAI,KAAK,CAAC,UAAU,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO;IAE1C,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC3B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,eAAG,EAAC,IAAA,gBAAI,EAAC,uBAAuB,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IAChE,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,eAAG,EAAC,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IAExD,KAAK,MAAM,QAAQ,IAAI,KAAK,CAAC,UAAU,EAAE,CAAC;QACxC,MAAM,QAAQ,GAAG,QAAQ,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,KAAK,IAAI,SAAS,CAAC;QAC5D,MAAM,aAAa,GAAG,QAAQ,KAAK,UAAU,CAAC,CAAC,CAAC,eAAG;YACjD,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,eAAG;gBAC3B,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,CAAC,kBAAM;oBAClC,CAAC,CAAC,eAAG,CAAC;QAER,MAAM,QAAQ,GAAG,CAAC,QAAQ,CAAC,QAAQ,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QAErF,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,aAAa,CAAC,IAAI,QAAQ,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,IAAI,QAAQ,CAAC,OAAO,IAAI,CAAC,CAAC;QAC7F,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,IAAI,IAAA,eAAG,EAAC,OAAO,QAAQ,CAAC,EAAE,eAAe,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,CAAC,CAAC;IAC/G,CAAC;IAED,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,eAAG,EAAC,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IACxD,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,KAAK,IAAA,kBAAM,EAAC,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,gBAAgB,CAAC,cAAc,IAAA,gBAAI,EAAC,KAAK,CAAC,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC;IACtI,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAA,eAAG,EAAC,uDAAuD,CAAC,CAAC,CAAC;IACnF,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;AAC7B,CAAC"}

package/dist/util/colors.d.ts

@@ -0,0 +1,9 @@
+export declare const bold: (text: string) => string;
+export declare const dim: (text: string) => string;
+export declare const red: (text: string) => string;
+export declare const green: (text: string) => string;
+export declare const yellow: (text: string) => string;
+export declare const blue: (text: string) => string;
+export declare const cyan: (text: string) => string;
+export declare const gray: (text: string) => string;
+//# sourceMappingURL=colors.d.ts.map

package/dist/util/colors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"colors.d.ts","sourceRoot":"","sources":["../../src/util/colors.ts"],"names":[],"mappings":"AAOA,eAAO,MAAM,IAAI,SALsC,MAAM,KAAK,MAKnC,CAAC;AAChC,eAAO,MAAM,GAAG,SANuC,MAAM,KAAK,MAMpC,CAAC;AAC/B,eAAO,MAAM,GAAG,SAPuC,MAAM,KAAK,MAOnC,CAAC;AAChC,eAAO,MAAM,KAAK,SARqC,MAAM,KAAK,MAQjC,CAAC;AAClC,eAAO,MAAM,MAAM,SAToC,MAAM,KAAK,MAShC,CAAC;AACnC,eAAO,MAAM,IAAI,SAVsC,MAAM,KAAK,MAUlC,CAAC;AACjC,eAAO,MAAM,IAAI,SAXsC,MAAM,KAAK,MAWlC,CAAC;AACjC,eAAO,MAAM,IAAI,SAZsC,MAAM,KAAK,MAYlC,CAAC"}

package/dist/util/colors.js

@@ -0,0 +1,18 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.gray = exports.cyan = exports.blue = exports.yellow = exports.green = exports.red = exports.dim = exports.bold = void 0;
+const enabled = process.env.NO_COLOR === undefined && process.stdout.isTTY;
+function wrap(code, resetCode) {
+    if (!enabled)
+        return (text) => text;
+    return (text) => `\x1b[${code}m${text}\x1b[${resetCode}m`;
+}
+exports.bold = wrap(1, 22);
+exports.dim = wrap(2, 22);
+exports.red = wrap(31, 39);
+exports.green = wrap(32, 39);
+exports.yellow = wrap(33, 39);
+exports.blue = wrap(34, 39);
+exports.cyan = wrap(36, 39);
+exports.gray = wrap(90, 39);
+//# sourceMappingURL=colors.js.map

package/dist/util/colors.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"colors.js","sourceRoot":"","sources":["../../src/util/colors.ts"],"names":[],"mappings":";;;AAAA,MAAM,OAAO,GAAG,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,SAAS,IAAI,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC;AAE3E,SAAS,IAAI,CAAC,IAAY,EAAE,SAAiB;IAC3C,IAAI,CAAC,OAAO;QAAE,OAAO,CAAC,IAAY,EAAE,EAAE,CAAC,IAAI,CAAC;IAC5C,OAAO,CAAC,IAAY,EAAE,EAAE,CAAC,QAAQ,IAAI,IAAI,IAAI,QAAQ,SAAS,GAAG,CAAC;AACpE,CAAC;AAEY,QAAA,IAAI,GAAG,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;AACnB,QAAA,GAAG,GAAG,IAAI,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;AAClB,QAAA,GAAG,GAAG,IAAI,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;AACnB,QAAA,KAAK,GAAG,IAAI,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;AACrB,QAAA,MAAM,GAAG,IAAI,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;AACtB,QAAA,IAAI,GAAG,IAAI,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;AACpB,QAAA,IAAI,GAAG,IAAI,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;AACpB,QAAA,IAAI,GAAG,IAAI,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC"}

package/dist/util/credential-patterns.d.ts

@@ -0,0 +1,38 @@
+/**
+ * Shared credential detection patterns used by protect and init commands.
+ */
+export interface CredentialPattern {
+    id: string;
+    title: string;
+    pattern: RegExp;
+    envVarPrefix: string;
+    severity: string;
+    explanation: string;
+    businessImpact: string;
+}
+export interface CredentialMatch {
+    /** Original matched value (e.g., "sk-ant-api03-...") */
+    value: string;
+    /** File where the credential was found */
+    filePath: string;
+    /** Line number in the file */
+    line: number;
+    /** Finding ID (e.g., "CRED-001", "DRIFT-001") */
+    findingId: string;
+    /** Suggested environment variable name */
+    envVar: string;
+    /** Severity from the scanner */
+    severity: string;
+    /** Human-readable title */
+    title: string;
+    /** Plain-language explanation of the risk */
+    explanation?: string;
+    /** Business impact description */
+    businessImpact?: string;
+}
+export declare const CREDENTIAL_PATTERNS: CredentialPattern[];
+export declare const SKIP_DIRS: Set<string>;
+export declare const SKIP_EXTENSIONS: Set<string>;
+export declare function walkFiles(dir: string, callback: (filePath: string) => void): void;
+export declare function quickCredentialScan(targetDir: string): CredentialMatch[];
+//# sourceMappingURL=credential-patterns.d.ts.map

package/dist/util/credential-patterns.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential-patterns.d.ts","sourceRoot":"","sources":["../../src/util/credential-patterns.ts"],"names":[],"mappings":"AAAA;;GAEG;AAOH,MAAM,WAAW,iBAAiB;IAChC,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,CAAC;IAChB,YAAY,EAAE,MAAM,CAAC;IACrB,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,cAAc,EAAE,MAAM,CAAC;CACxB;AAED,MAAM,WAAW,eAAe;IAC9B,wDAAwD;IACxD,KAAK,EAAE,MAAM,CAAC;IACd,0CAA0C;IAC1C,QAAQ,EAAE,MAAM,CAAC;IACjB,8BAA8B;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,iDAAiD;IACjD,SAAS,EAAE,MAAM,CAAC;IAClB,0CAA0C;IAC1C,MAAM,EAAE,MAAM,CAAC;IACf,gCAAgC;IAChC,QAAQ,EAAE,MAAM,CAAC;IACjB,2BAA2B;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,6CAA6C;IAC7C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,kCAAkC;IAClC,cAAc,CAAC,EAAE,MAAM,CAAC;CACzB;AAID,eAAO,MAAM,mBAAmB,EAAE,iBAAiB,EAuDlD,CAAC;AAGF,eAAO,MAAM,SAAS,aAIpB,CAAC;AAEH,eAAO,MAAM,eAAe,aAQ1B,CAAC;AAIH,wBAAgB,SAAS,CAAC,GAAG,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,IAAI,GAAG,IAAI,CA8BjF;AAID,wBAAgB,mBAAmB,CAAC,SAAS,EAAE,MAAM,GAAG,eAAe,EAAE,CAsDxE"}

package/dist/util/credential-patterns.js

@@ -0,0 +1,203 @@
+"use strict";
+/**
+ * Shared credential detection patterns used by protect and init commands.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SKIP_EXTENSIONS = exports.SKIP_DIRS = exports.CREDENTIAL_PATTERNS = void 0;
+exports.walkFiles = walkFiles;
+exports.quickCredentialScan = quickCredentialScan;
+const fs = __importStar(require("node:fs"));
+const path = __importStar(require("node:path"));
+// --- Patterns ---
+exports.CREDENTIAL_PATTERNS = [
+    {
+        id: 'CRED-001',
+        title: 'Anthropic API Key',
+        pattern: /sk-ant-api\d{2}-[A-Za-z0-9_-]{80,}/g,
+        envVarPrefix: 'ANTHROPIC_API_KEY',
+        severity: 'critical',
+        explanation: 'Anthropic API key hardcoded in source. Anyone who reads this file can use your Anthropic account and access Claude models.',
+        businessImpact: 'Thousands in unauthorized API charges within hours. Bots actively scan for exposed keys in public repos.',
+    },
+    {
+        id: 'CRED-002',
+        title: 'OpenAI API Key',
+        pattern: /sk-(?:proj-|test-|svcacct-|live-)?[A-Za-z0-9_-]{20,}/g,
+        envVarPrefix: 'OPENAI_API_KEY',
+        severity: 'critical',
+        explanation: 'OpenAI API key hardcoded in source. Grants full API access to anyone with the source code.',
+        businessImpact: 'Unauthorized model usage, data extraction, and billing abuse. Exposed keys are exploited within minutes.',
+    },
+    {
+        id: 'DRIFT-001',
+        title: 'Google API Key (Gemini drift risk)',
+        pattern: /AIza[0-9A-Za-z_-]{35,}/g,
+        envVarPrefix: 'GOOGLE_API_KEY',
+        severity: 'high',
+        explanation: 'Google API key may have been provisioned for Maps but also grants Gemini AI access. Scope drift means the key can do more than intended.',
+        businessImpact: 'Attacker could run AI workloads billed to your account. Cross-service scope drift means you pay for services you did not authorize.',
+    },
+    {
+        id: 'DRIFT-002',
+        title: 'AWS Access Key (Bedrock drift risk)',
+        pattern: /AKIA[0-9A-Z]{16}/g,
+        envVarPrefix: 'AWS_ACCESS_KEY_ID',
+        severity: 'high',
+        explanation: 'AWS access key may grant Bedrock LLM access beyond its intended S3/EC2 scope. IAM policies often over-provision.',
+        businessImpact: 'Cross-service privilege escalation. AI model invocations billed to your account. Potential data exfiltration via Bedrock.',
+    },
+    {
+        id: 'CRED-003',
+        title: 'GitHub Token',
+        pattern: /gh[ps]_[A-Za-z0-9_]{36,}/g,
+        envVarPrefix: 'GITHUB_TOKEN',
+        severity: 'high',
+        explanation: 'GitHub token hardcoded in source. Grants repository access, potentially including private repos and org resources.',
+        businessImpact: 'Code theft, supply chain injection via unauthorized commits, and access to private repositories.',
+    },
+    {
+        id: 'CRED-004',
+        title: 'Generic API Key in Assignment',
+        pattern: /(?:api[_-]?key|apikey|secret[_-]?key)\s*[:=]\s*['"]([A-Za-z0-9_\-/.]{20,})['"]/gi,
+        envVarPrefix: 'API_KEY',
+        severity: 'medium',
+        explanation: 'Generic API key found in a variable assignment. The pattern suggests a secret intended for environment variables, not source code.',
+        businessImpact: 'Depends on the service -- could expose billing, data, or administrative access. Rotate immediately.',
+    },
+];
+// Files/dirs to skip during scanning
+exports.SKIP_DIRS = new Set([
+    'node_modules', '.git', 'dist', 'build', 'coverage',
+    '.next', '.nuxt', '__pycache__', '.venv', 'venv',
+    '.tox', '.mypy_cache', '.pytest_cache',
+]);
+exports.SKIP_EXTENSIONS = new Set([
+    '.png', '.jpg', '.jpeg', '.gif', '.ico', '.svg', '.webp',
+    '.woff', '.woff2', '.ttf', '.eot', '.otf',
+    '.zip', '.tar', '.gz', '.bz2', '.7z',
+    '.mp3', '.mp4', '.avi', '.mov', '.wav',
+    '.pdf', '.doc', '.docx', '.xls', '.xlsx',
+    '.exe', '.dll', '.so', '.dylib', '.o',
+    '.lock', '.map',
+]);
+// --- File walker ---
+function walkFiles(dir, callback) {
+    let entries;
+    try {
+        entries = fs.readdirSync(dir, { withFileTypes: true });
+    }
+    catch {
+        return;
+    }
+    // Dot-files to scan (credential sources)
+    const SCAN_DOTFILES = new Set(['.env', '.env.example', '.env.local', '.env.development', '.env.production', '.env.staging', '.env.test']);
+    for (const entry of entries) {
+        if (entry.name.startsWith('.') && !SCAN_DOTFILES.has(entry.name))
+            continue;
+        if (entry.isDirectory()) {
+            if (exports.SKIP_DIRS.has(entry.name))
+                continue;
+            walkFiles(path.join(dir, entry.name), callback);
+        }
+        else if (entry.isFile()) {
+            const ext = path.extname(entry.name).toLowerCase();
+            if (exports.SKIP_EXTENSIONS.has(ext))
+                continue;
+            // Skip large files (>1MB)
+            try {
+                const stat = fs.statSync(path.join(dir, entry.name));
+                if (stat.size > 1_048_576)
+                    return;
+            }
+            catch {
+                return;
+            }
+            callback(path.join(dir, entry.name));
+        }
+    }
+}
+// --- Quick scan (used by init) ---
+function quickCredentialScan(targetDir) {
+    const matches = [];
+    const seen = new Set();
+    walkFiles(targetDir, (filePath) => {
+        let content;
+        try {
+            content = fs.readFileSync(filePath, 'utf-8');
+        }
+        catch {
+            return;
+        }
+        const lines = content.split('\n');
+        for (const pattern of exports.CREDENTIAL_PATTERNS) {
+            for (let i = 0; i < lines.length; i++) {
+                const line = lines[i];
+                const re = new RegExp(pattern.pattern.source, pattern.pattern.flags);
+                let match;
+                while ((match = re.exec(line)) !== null) {
+                    const value = match[1] ?? match[0];
+                    const dedupKey = `${value}:${filePath}`;
+                    if (seen.has(dedupKey))
+                        continue;
+                    seen.add(dedupKey);
+                    // Skip if it looks like an env var reference already
+                    const before = line.slice(0, match.index);
+                    if (/process\.env\.\w*$/.test(before) ||
+                        /\$\{?\w*$/.test(before) ||
+                        /os\.environ\[['"]?\w*$/.test(before) ||
+                        /getenv\(['"]?\w*$/.test(before))
+                        continue;
+                    const base = pattern.envVarPrefix;
+                    const existing = matches.filter(m => m.envVar.startsWith(base));
+                    const envVar = existing.length === 0 ? base : `${base}_${existing.length + 1}`;
+                    matches.push({
+                        value,
+                        filePath,
+                        line: i + 1,
+                        findingId: pattern.id,
+                        envVar,
+                        severity: pattern.severity,
+                        title: pattern.title,
+                        explanation: pattern.explanation,
+                        businessImpact: pattern.businessImpact,
+                    });
+                }
+            }
+        }
+    });
+    return matches;
+}
+//# sourceMappingURL=credential-patterns.js.map

package/dist/util/credential-patterns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"credential-patterns.js","sourceRoot":"","sources":["../../src/util/credential-patterns.ts"],"names":[],"mappings":";AAAA;;GAEG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAoHH,8BA8BC;AAID,kDAsDC;AA1MD,4CAA8B;AAC9B,gDAAkC;AAmClC,mBAAmB;AAEN,QAAA,mBAAmB,GAAwB;IACtD;QACE,EAAE,EAAE,UAAU;QACd,KAAK,EAAE,mBAAmB;QAC1B,OAAO,EAAE,qCAAqC;QAC9C,YAAY,EAAE,mBAAmB;QACjC,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,4HAA4H;QACzI,cAAc,EAAE,0GAA0G;KAC3H;IACD;QACE,EAAE,EAAE,UAAU;QACd,KAAK,EAAE,gBAAgB;QACvB,OAAO,EAAE,uDAAuD;QAChE,YAAY,EAAE,gBAAgB;QAC9B,QAAQ,EAAE,UAAU;QACpB,WAAW,EAAE,4FAA4F;QACzG,cAAc,EAAE,0GAA0G;KAC3H;IACD;QACE,EAAE,EAAE,WAAW;QACf,KAAK,EAAE,oCAAoC;QAC3C,OAAO,EAAE,yBAAyB;QAClC,YAAY,EAAE,gBAAgB;QAC9B,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,0IAA0I;QACvJ,cAAc,EAAE,qIAAqI;KACtJ;IACD;QACE,EAAE,EAAE,WAAW;QACf,KAAK,EAAE,qCAAqC;QAC5C,OAAO,EAAE,mBAAmB;QAC5B,YAAY,EAAE,mBAAmB;QACjC,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,kHAAkH;QAC/H,cAAc,EAAE,2HAA2H;KAC5I;IACD;QACE,EAAE,EAAE,UAAU;QACd,KAAK,EAAE,cAAc;QACrB,OAAO,EAAE,2BAA2B;QACpC,YAAY,EAAE,cAAc;QAC5B,QAAQ,EAAE,MAAM;QAChB,WAAW,EAAE,oHAAoH;QACjI,cAAc,EAAE,kGAAkG;KACnH;IACD;QACE,EAAE,EAAE,UAAU;QACd,KAAK,EAAE,+BAA+B;QACtC,OAAO,EAAE,kFAAkF;QAC3F,YAAY,EAAE,SAAS;QACvB,QAAQ,EAAE,QAAQ;QAClB,WAAW,EAAE,oIAAoI;QACjJ,cAAc,EAAE,qGAAqG;KACtH;CACF,CAAC;AAEF,qCAAqC;AACxB,QAAA,SAAS,GAAG,IAAI,GAAG,CAAC;IAC/B,cAAc,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,UAAU;IACnD,OAAO,EAAE,OAAO,EAAE,aAAa,EAAE,OAAO,EAAE,MAAM;IAChD,MAAM,EAAE,aAAa,EAAE,eAAe;CACvC,CAAC,CAAC;AAEU,QAAA,eAAe,GAAG,IAAI,GAAG,CAAC;IACrC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO;IACxD,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM;IACzC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK;IACpC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM;IACtC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO;IACxC,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI;IACrC,OAAO,EAAE,MAAM;CAChB,CAAC,CAAC;AAEH,sBAAsB;AAEtB,SAAgB,SAAS,CAAC,GAAW,EAAE,QAAoC;IACzE,IAAI,OAAoB,CAAC;IACzB,IAAI,CAAC;QACH,OAAO,GAAG,EAAE,CAAC,WAAW,CAAC,GAAG,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;IACzD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO;IACT,CAAC;IAED,yCAAyC;IACzC,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,cAAc,EAAE,YAAY,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,cAAc,EAAE,WAAW,CAAC,CAAC,CAAC;IAE1I,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;QAC5B,IAAI,KAAK,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC;YAAE,SAAS;QAE3E,IAAI,KAAK,CAAC,WAAW,EAAE,EAAE,CAAC;YACxB,IAAI,iBAAS,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC;gBAAE,SAAS;YACxC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,CAAC,EAAE,QAAQ,CAAC,CAAC;QAClD,CAAC;aAAM,IAAI,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC;YAC1B,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;YACnD,IAAI,uBAAe,CAAC,GAAG,CAAC,GAAG,CAAC;gBAAE,SAAS;YACvC,0BAA0B;YAC1B,IAAI,CAAC;gBACH,MAAM,IAAI,GAAG,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;gBACrD,IAAI,IAAI,CAAC,IAAI,GAAG,SAAS;oBAAE,OAAO;YACpC,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO;YACT,CAAC;YACD,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC;QACvC,CAAC;IACH,CAAC;AACH,CAAC;AAED,oCAAoC;AAEpC,SAAgB,mBAAmB,CAAC,SAAiB;IACnD,MAAM,OAAO,GAAsB,EAAE,CAAC;IACtC,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAE/B,SAAS,CAAC,SAAS,EAAE,CAAC,QAAQ,EAAE,EAAE;QAChC,IAAI,OAAe,CAAC;QACpB,IAAI,CAAC;YACH,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAC/C,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;QAED,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAElC,KAAK,MAAM,OAAO,IAAI,2BAAmB,EAAE,CAAC;YAC1C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;gBACtB,MAAM,EAAE,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;gBACrE,IAAI,KAA6B,CAAC;gBAClC,OAAO,CAAC,KAAK,GAAG,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;oBACxC,MAAM,KAAK,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC;oBACnC,MAAM,QAAQ,GAAG,GAAG,KAAK,IAAI,QAAQ,EAAE,CAAC;oBAExC,IAAI,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC;wBAAE,SAAS;oBACjC,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;oBAEnB,qDAAqD;oBACrD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;oBAC1C,IAAI,oBAAoB,CAAC,IAAI,CAAC,MAAM,CAAC;wBACnC,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC;wBACxB,wBAAwB,CAAC,IAAI,CAAC,MAAM,CAAC;wBACrC,mBAAmB,CAAC,IAAI,CAAC,MAAM,CAAC;wBAAE,SAAS;oBAE7C,MAAM,IAAI,GAAG,OAAO,CAAC,YAAY,CAAC;oBAClC,MAAM,QAAQ,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC,CAAC;oBAChE,MAAM,MAAM,GAAG,QAAQ,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,IAAI,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBAE/E,OAAO,CAAC,IAAI,CAAC;wBACX,KAAK;wBACL,QAAQ;wBACR,IAAI,EAAE,CAAC,GAAG,CAAC;wBACX,SAAS,EAAE,OAAO,CAAC,EAAE;wBACrB,MAAM;wBACN,QAAQ,EAAE,OAAO,CAAC,QAAQ;wBAC1B,KAAK,EAAE,OAAO,CAAC,KAAK;wBACpB,WAAW,EAAE,OAAO,CAAC,WAAW;wBAChC,cAAc,EAAE,OAAO,CAAC,cAAc;qBACvC,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,OAAO,OAAO,CAAC;AACjB,CAAC"}

package/dist/util/detect.d.ts

@@ -0,0 +1,11 @@
+export type ProjectType = 'node' | 'go' | 'python' | 'unknown';
+export interface ProjectInfo {
+    type: ProjectType;
+    name: string | null;
+    version: string | null;
+    hasMcp: boolean;
+    hasEnv: boolean;
+    hasGit: boolean;
+}
+export declare function detectProject(dir: string): ProjectInfo;
+//# sourceMappingURL=detect.d.ts.map

package/dist/util/detect.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"detect.d.ts","sourceRoot":"","sources":["../../src/util/detect.ts"],"names":[],"mappings":"AAGA,MAAM,MAAM,WAAW,GAAG,MAAM,GAAG,IAAI,GAAG,QAAQ,GAAG,SAAS,CAAC;AAE/D,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,WAAW,CAAC;IAClB,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,OAAO,EAAE,MAAM,GAAG,IAAI,CAAC;IACvB,MAAM,EAAE,OAAO,CAAC;IAChB,MAAM,EAAE,OAAO,CAAC;IAChB,MAAM,EAAE,OAAO,CAAC;CACjB;AAED,wBAAgB,aAAa,CAAC,GAAG,EAAE,MAAM,GAAG,WAAW,CAiDtD"}

package/dist/util/detect.js

@@ -0,0 +1,49 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.detectProject = detectProject;
+const node_fs_1 = require("node:fs");
+const node_path_1 = require("node:path");
+function detectProject(dir) {
+    const info = {
+        type: 'unknown',
+        name: null,
+        version: null,
+        hasMcp: false,
+        hasEnv: false,
+        hasGit: (0, node_fs_1.existsSync)((0, node_path_1.resolve)(dir, '.git')),
+    };
+    // Check for Node.js project
+    const pkgPath = (0, node_path_1.resolve)(dir, 'package.json');
+    if ((0, node_fs_1.existsSync)(pkgPath)) {
+        info.type = 'node';
+        try {
+            const { readFileSync } = require('node:fs');
+            const pkg = JSON.parse(readFileSync(pkgPath, 'utf-8'));
+            info.name = pkg.name ?? null;
+            info.version = pkg.version ?? null;
+        }
+        catch {
+            // Ignore parse errors
+        }
+    }
+    // Check for Go project
+    if ((0, node_fs_1.existsSync)((0, node_path_1.resolve)(dir, 'go.mod'))) {
+        info.type = 'go';
+    }
+    // Check for Python project
+    if ((0, node_fs_1.existsSync)((0, node_path_1.resolve)(dir, 'pyproject.toml')) ||
+        (0, node_fs_1.existsSync)((0, node_path_1.resolve)(dir, 'setup.py')) ||
+        (0, node_fs_1.existsSync)((0, node_path_1.resolve)(dir, 'requirements.txt'))) {
+        info.type = 'python';
+    }
+    // Check for MCP configuration
+    info.hasMcp =
+        (0, node_fs_1.existsSync)((0, node_path_1.resolve)(dir, 'mcp.json')) ||
+            (0, node_fs_1.existsSync)((0, node_path_1.resolve)(dir, '.mcp.json'));
+    // Check for environment files
+    info.hasEnv =
+        (0, node_fs_1.existsSync)((0, node_path_1.resolve)(dir, '.env')) ||
+            (0, node_fs_1.existsSync)((0, node_path_1.resolve)(dir, '.env.local'));
+    return info;
+}
+//# sourceMappingURL=detect.js.map

package/dist/util/detect.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"detect.js","sourceRoot":"","sources":["../../src/util/detect.ts"],"names":[],"mappings":";;AAcA,sCAiDC;AA/DD,qCAAqC;AACrC,yCAAoC;AAapC,SAAgB,aAAa,CAAC,GAAW;IACvC,MAAM,IAAI,GAAgB;QACxB,IAAI,EAAE,SAAS;QACf,IAAI,EAAE,IAAI;QACV,OAAO,EAAE,IAAI;QACb,MAAM,EAAE,KAAK;QACb,MAAM,EAAE,KAAK;QACb,MAAM,EAAE,IAAA,oBAAU,EAAC,IAAA,mBAAO,EAAC,GAAG,EAAE,MAAM,CAAC,CAAC;KACzC,CAAC;IAEF,4BAA4B;IAC5B,MAAM,OAAO,GAAG,IAAA,mBAAO,EAAC,GAAG,EAAE,cAAc,CAAC,CAAC;IAC7C,IAAI,IAAA,oBAAU,EAAC,OAAO,CAAC,EAAE,CAAC;QACxB,IAAI,CAAC,IAAI,GAAG,MAAM,CAAC;QACnB,IAAI,CAAC;YACH,MAAM,EAAE,YAAY,EAAE,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC;YAC5C,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,CAAC;YACvD,IAAI,CAAC,IAAI,GAAG,GAAG,CAAC,IAAI,IAAI,IAAI,CAAC;YAC7B,IAAI,CAAC,OAAO,GAAG,GAAG,CAAC,OAAO,IAAI,IAAI,CAAC;QACrC,CAAC;QAAC,MAAM,CAAC;YACP,sBAAsB;QACxB,CAAC;IACH,CAAC;IAED,uBAAuB;IACvB,IAAI,IAAA,oBAAU,EAAC,IAAA,mBAAO,EAAC,GAAG,EAAE,QAAQ,CAAC,CAAC,EAAE,CAAC;QACvC,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;IAED,2BAA2B;IAC3B,IACE,IAAA,oBAAU,EAAC,IAAA,mBAAO,EAAC,GAAG,EAAE,gBAAgB,CAAC,CAAC;QAC1C,IAAA,oBAAU,EAAC,IAAA,mBAAO,EAAC,GAAG,EAAE,UAAU,CAAC,CAAC;QACpC,IAAA,oBAAU,EAAC,IAAA,mBAAO,EAAC,GAAG,EAAE,kBAAkB,CAAC,CAAC,EAC5C,CAAC;QACD,IAAI,CAAC,IAAI,GAAG,QAAQ,CAAC;IACvB,CAAC;IAED,8BAA8B;IAC9B,IAAI,CAAC,MAAM;QACT,IAAA,oBAAU,EAAC,IAAA,mBAAO,EAAC,GAAG,EAAE,UAAU,CAAC,CAAC;YACpC,IAAA,oBAAU,EAAC,IAAA,mBAAO,EAAC,GAAG,EAAE,WAAW,CAAC,CAAC,CAAC;IAExC,8BAA8B;IAC9B,IAAI,CAAC,MAAM;QACT,IAAA,oBAAU,EAAC,IAAA,mBAAO,EAAC,GAAG,EAAE,MAAM,CAAC,CAAC;YAChC,IAAA,oBAAU,EAAC,IAAA,mBAAO,EAAC,GAAG,EAAE,YAAY,CAAC,CAAC,CAAC;IAEzC,OAAO,IAAI,CAAC;AACd,CAAC"}

package/dist/util/format.d.ts

@@ -0,0 +1,6 @@
+export declare function severityColor(severity: string): (text: string) => string;
+export declare function severityLabel(severity: string): string;
+export declare function formatCount(count: number, label: string): string;
+export declare function formatDuration(ms: number): string;
+export declare function table(rows: string[][], headers?: string[]): string;
+//# sourceMappingURL=format.d.ts.map

package/dist/util/format.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"format.d.ts","sourceRoot":"","sources":["../../src/util/format.ts"],"names":[],"mappings":"AAEA,wBAAgB,aAAa,CAAC,QAAQ,EAAE,MAAM,GAAG,CAAC,IAAI,EAAE,MAAM,KAAK,MAAM,CAQxE;AAED,wBAAgB,aAAa,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAEtD;AAED,wBAAgB,WAAW,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,MAAM,CAGhE;AAED,wBAAgB,cAAc,CAAC,EAAE,EAAE,MAAM,GAAG,MAAM,CAMjD;AAED,wBAAgB,KAAK,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE,EAAE,OAAO,CAAC,EAAE,MAAM,EAAE,GAAG,MAAM,CAiBlE"}