npm - opena2a-cli - Versions diffs - 0.2.0 → 0.3.0 - Mend

opena2a-cli 0.2.0 → 0.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (30) hide show

package/dist/commands/review.d.ts +110 -0
package/dist/commands/review.d.ts.map +1 -0
package/dist/commands/review.js +634 -0
package/dist/commands/review.js.map +1 -0
package/dist/commands/shield.js +38 -12
package/dist/commands/shield.js.map +1 -1
package/dist/index.js +21 -0
package/dist/index.js.map +1 -1
package/dist/report/review-html.d.ts +16 -0
package/dist/report/review-html.d.ts.map +1 -0
package/dist/report/review-html.js +579 -0
package/dist/report/review-html.js.map +1 -0
package/dist/router.js +1 -1
package/dist/router.js.map +1 -1
package/dist/shield/ai-tool-config.d.ts +49 -0
package/dist/shield/ai-tool-config.d.ts.map +1 -0
package/dist/shield/ai-tool-config.js +169 -0
package/dist/shield/ai-tool-config.js.map +1 -0
package/dist/shield/findings.js +4 -4
package/dist/shield/findings.js.map +1 -1
package/dist/shield/init.d.ts +3 -0
package/dist/shield/init.d.ts.map +1 -1
package/dist/shield/init.js +145 -12
package/dist/shield/init.js.map +1 -1
package/dist/shield/report-html.js +102 -9
package/dist/shield/report-html.js.map +1 -1
package/dist/shield/status.d.ts.map +1 -1
package/dist/shield/status.js +13 -0
package/dist/shield/status.js.map +1 -1
package/package.json +5 -1

package/dist/commands/review.d.ts ADDED Viewed

@@ -0,0 +1,110 @@
+/**
+ * opena2a review -- One-command unified security review.
+ *
+ * Runs all meaningful security checks (init scan, credential scan,
+ * config integrity, shield analysis, optional HMA scan), aggregates
+ * results into a composite score, generates a self-contained HTML
+ * dashboard, and auto-opens it in the browser.
+ */
+import { type CredentialMatch } from '../util/credential-patterns.js';
+import { type ClassifiedFinding } from '../shield/findings.js';
+import { type ARPStats } from '../shield/arp-bridge.js';
+import type { RiskLevel } from '../shield/types.js';
+export interface ReviewOptions {
+    targetDir?: string;
+    reportPath?: string;
+    autoOpen?: boolean;
+    skipHma?: boolean;
+    ci?: boolean;
+    format?: 'text' | 'json';
+    verbose?: boolean;
+}
+export interface PhaseResult {
+    name: string;
+    status: 'pass' | 'warn' | 'fail' | 'skip';
+    score: number;
+    durationMs: number;
+    detail: string;
+}
+interface HygieneCheck {
+    label: string;
+    status: 'pass' | 'warn' | 'fail' | 'info';
+    detail: string;
+}
+export interface ReviewReport {
+    timestamp: string;
+    directory: string;
+    projectName: string | null;
+    projectType: string;
+    phases: PhaseResult[];
+    compositeScore: number;
+    grade: string;
+    findings: ReviewFinding[];
+    actionItems: ActionItem[];
+    initData: InitPhaseData;
+    credentialData: CredentialPhaseData;
+    guardData: GuardPhaseData;
+    shieldData: ShieldPhaseData;
+    hmaData: HmaPhaseData | null;
+}
+export interface ReviewFinding {
+    id: string;
+    title: string;
+    severity: string;
+    source: string;
+    detail: string;
+    remediation: string;
+}
+export interface ActionItem {
+    priority: number;
+    severity: string;
+    description: string;
+    command: string;
+    tab: string;
+}
+export interface InitPhaseData {
+    projectName: string | null;
+    projectVersion: string | null;
+    projectType: string;
+    trustScore: number;
+    grade: string;
+    postureScore: number;
+    riskLevel: RiskLevel;
+    activeProducts: number;
+    totalProducts: number;
+    hygieneChecks: HygieneCheck[];
+    advisoryCount: number;
+    matchedPackages: string[];
+}
+export interface CredentialPhaseData {
+    matches: CredentialMatch[];
+    totalFindings: number;
+    bySeverity: Record<string, number>;
+    driftFindings: CredentialMatch[];
+    envVarSuggestions: {
+        finding: string;
+        envVar: string;
+    }[];
+}
+export interface GuardPhaseData {
+    filesMonitored: number;
+    tamperedFiles: string[];
+    signatureStatus: 'valid' | 'tampered' | 'unsigned';
+}
+export interface ShieldPhaseData {
+    eventCount: number;
+    classifiedFindings: ClassifiedFinding[];
+    arpStats: ARPStats;
+    postureScore: number;
+    policyLoaded: boolean;
+    policyMode: string | null;
+    integrityStatus: string;
+}
+export interface HmaPhaseData {
+    available: boolean;
+    results: Record<string, unknown> | null;
+    score: number;
+}
+export declare function review(options: ReviewOptions): Promise<number>;
+export {};
+//# sourceMappingURL=review.d.ts.map

package/dist/commands/review.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"review.d.ts","sourceRoot":"","sources":["../../src/commands/review.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAQH,OAAO,EAAuB,KAAK,eAAe,EAAE,MAAM,gCAAgC,CAAC;AAI3F,OAAO,EAAkB,KAAK,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AAC/E,OAAO,EAAe,KAAK,QAAQ,EAAE,MAAM,yBAAyB,CAAC;AAIrE,OAAO,KAAK,EAAiB,SAAS,EAAE,MAAM,oBAAoB,CAAC;AAInE,MAAM,WAAW,aAAa;IAC5B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,EAAE,CAAC,EAAE,OAAO,CAAC;IACb,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM,CAAC;IACzB,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,CAAC;IAC1C,KAAK,EAAE,MAAM,CAAC;IACd,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,UAAU,YAAY;IACpB,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,CAAC;IAC1C,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,MAAM,WAAW,YAAY;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;IAClB,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,WAAW,EAAE,CAAC;IACtB,cAAc,EAAE,MAAM,CAAC;IACvB,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,aAAa,EAAE,CAAC;IAC1B,WAAW,EAAE,UAAU,EAAE,CAAC;IAE1B,QAAQ,EAAE,aAAa,CAAC;IACxB,cAAc,EAAE,mBAAmB,CAAC;IACpC,SAAS,EAAE,cAAc,CAAC;IAC1B,UAAU,EAAE,eAAe,CAAC;IAC5B,OAAO,EAAE,YAAY,GAAG,IAAI,CAAC;CAC9B;AAED,MAAM,WAAW,aAAa;IAC5B,EAAE,EAAE,MAAM,CAAC;IACX,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,EAAE,MAAM,CAAC;CACrB;AAED,MAAM,WAAW,UAAU;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,MAAM,CAAC;IACjB,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,EAAE,MAAM,CAAC;CACb;AAED,MAAM,WAAW,aAAa;IAC5B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;IAC9B,WAAW,EAAE,MAAM,CAAC;IACpB,UAAU,EAAE,MAAM,CAAC;IACnB,KAAK,EAAE,MAAM,CAAC;IACd,YAAY,EAAE,MAAM,CAAC;IACrB,SAAS,EAAE,SAAS,CAAC;IACrB,cAAc,EAAE,MAAM,CAAC;IACvB,aAAa,EAAE,MAAM,CAAC;IACtB,aAAa,EAAE,YAAY,EAAE,CAAC;IAC9B,aAAa,EAAE,MAAM,CAAC;IACtB,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AAED,MAAM,WAAW,mBAAmB;IAClC,OAAO,EAAE,eAAe,EAAE,CAAC;IAC3B,aAAa,EAAE,MAAM,CAAC;IACtB,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACnC,aAAa,EAAE,eAAe,EAAE,CAAC;IACjC,iBAAiB,EAAE;QAAE,OAAO,EAAE,MAAM,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;CAC1D;AAED,MAAM,WAAW,cAAc;IAC7B,cAAc,EAAE,MAAM,CAAC;IACvB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,EAAE,OAAO,GAAG,UAAU,GAAG,UAAU,CAAC;CACpD;AAED,MAAM,WAAW,eAAe;IAC9B,UAAU,EAAE,MAAM,CAAC;IACnB,kBAAkB,EAAE,iBAAiB,EAAE,CAAC;IACxC,QAAQ,EAAE,QAAQ,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,YAAY,EAAE,OAAO,CAAC;IACtB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAC;IAC1B,eAAe,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,YAAY;IAC3B,SAAS,EAAE,OAAO,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,IAAI,CAAC;IACxC,KAAK,EAAE,MAAM,CAAC;CACf;AAID,wBAAsB,MAAM,CAAC,OAAO,EAAE,aAAa,GAAG,OAAO,CAAC,MAAM,CAAC,CA+MpE"}