npm - opencode-api-security-testing - Versions diffs - 1.0.0 → 1.1.0 - Mend

opencode-api-security-testing 1.0.0 → 1.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/README.md CHANGED Viewed

@@ -1,46 +1,27 @@
 # API Security Testing Plugin
-OpenCode 插件，用于自动化 API 安全测试。
+API 安全测试插件，为 OpenCode 提供自动化漏洞扫描和渗透测试能力。
-## 问题排查
-如果您遇到 OpenCode 无法连接的问题，请先确保已从 `opencode.json` 中移除插件配置，然后按以下步骤安装。
-## 安装步骤
-### 步骤 1：复制 Agents
+## 安装
 ```bash
-# 创建全局 agents 目录（如果不存在）
-mkdir -p ~/.config/opencode/agents
-# 复制 agents 到全局配置目录
-cp -r agents/* ~/.config/opencode/agents/
+npm install opencode-api-security-testing
 ```
-### 步骤 2：复制 Commands（可选）
+## 配置
-```bash
-# 创建全局 commands 目录（如果不存在）
-mkdir -p ~/.config/opencode/commands
+在 `opencode.json` 中添加：
-# 复制 commands
-cp -r commands/* ~/.config/opencode/commands/
-```
-### 步骤 3：复制 References（供参考）
-```bash
-# 复制漏洞测试参考文档
-cp -r references ~/.config/opencode/
+```json
+{
+  "plugin": ["opencode-api-security-testing"]
+}
 ```
 ## 使用方法
 ### 使用 Agents
-在 OpenCode 中使用 `@` 提及 agents：
 ```
 @cyber-supervisor 对 https://example.com 进行 API 安全测试
 ```
@@ -53,16 +34,6 @@ cp -r references ~/.config/opencode/
 @resource-specialist 发现所有 API 端点
 ```
-### 使用 Commands
-```
-/api-security-testing-scan https://example.com/api
-```
-```
-/api-security-testing-test https://example.com/api/login sqli
-```
 ## Agents
 ### cyber-supervisor
@@ -76,7 +47,7 @@ cp -r references ~/.config/opencode/
 ## 漏洞测试参考
-参考文档位于 `references/vulnerabilities/` 目录：
+详细测试指南位于 `references/vulnerabilities/` 目录：
 | 文件 | 漏洞类型 |
 |------|---------|

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "opencode-api-security-testing",
-  "version": "1.0.0",
+  "version": "1.1.0",
   "description": "API Security Testing Plugin for OpenCode - Automated vulnerability scanning and penetration testing",
   "type": "module",
   "main": "dist/index.js",

package/src/index.ts CHANGED Viewed

@@ -1,5 +1,7 @@
 import type { Plugin } from "@opencode-ai/plugin";
+import { tool } from "@opencode-ai/plugin";
 import type { AgentConfig } from "@opencode-ai/sdk";
+import { join } from "path";
 const CYBER_SUPERVISOR_PROMPT = `你是 API 安全测试的**赛博监工**，代号"渗透测试员P9"。
@@ -10,22 +12,22 @@ const CYBER_SUPERVISOR_PROMPT = `你是 API 安全测试的**赛博监工**，
 3. **压力升级** - 遇到失败自动换方法
 4. **智能委派** - 使用 delegate_task 委派给 probing-miner 和 resource-specialist
+## 可用工具（通过 Skill）
+- api_scan: 对目标进行完整 API 安全扫描
+- api_fuzz: 对特定端点进行模糊测试
+- browser_collect: 使用浏览器采集动态内容
+- vuln_verify: 验证漏洞是否存在
+- cloud_storage_test: 测试云存储安全
+- graphql_test: GraphQL 安全测试
 ## 工作流程
-发现线索 → 委派探测 → 收集结果 → 继续追查
+发现线索 → 调用工具 → 收集结果 → 继续追查
     ↓
 进度追踪 → 压力升级(L1-L4) → 永不停止
-## 压力升级策略
-| 失败次数 | 等级 | 行动 |
-|---------|------|------|
-| 2次 | L1 | 换方法继续 |
-| 3次 | L2 | 委派 resource-specialist 重新采集 |
-| 5次 | L3 | 委派 probing-miner 针对性挖掘 |
-| 7次+ | L4 | 同时委派两个 agent |
-## 漏洞类型参考
+## 漏洞类型
 - SQL 注入: references/vulnerabilities/01-sqli-tests.md
 - IDOR: references/vulnerabilities/04-idor-tests.md
@@ -41,7 +43,15 @@ const PROBING_MINER_PROMPT = `你是**探测挖掘专家**，专注于对 API
 1. **针对性测试** - 根据端点类型选择合适的测试方法
 2. **漏洞验证** - 对发现的漏洞进行验证并生成 PoC
-3. **引用指南** - 参考漏洞测试指南进行专业测试
+3. **调用工具** - 使用 api_scan, api_fuzz, vuln_verify 等工具
+## 可用工具
+- api_scan: 完整 API 安全扫描
+- api_fuzz: 端点模糊测试
+- vuln_verify: 漏洞验证
+- cloud_storage_test: 云存储测试
+- graphql_test: GraphQL 测试
 ## 漏洞测试指南
@@ -49,24 +59,25 @@ const PROBING_MINER_PROMPT = `你是**探测挖掘专家**，专注于对 API
 - 用户枚举: references/vulnerabilities/02-user-enum-tests.md
 - JWT 安全: references/vulnerabilities/03-jwt-tests.md
 - IDOR: references/vulnerabilities/04-idor-tests.md
-- 敏感数据: references/vulnerabilities/05-sensitive-data-tests.md
-- 业务逻辑: references/vulnerabilities/06-biz-logic-tests.md
-- 安全配置: references/vulnerabilities/07-security-config-tests.md
-- 暴力破解: references/vulnerabilities/08-brute-force-tests.md
-- GraphQL: references/vulnerabilities/11-graphql-tests.md
-- SSRF: references/vulnerabilities/12-ssrf-tests.md`;
+- 敏感数据: references/vulnerabilities/05-sensitive-data-tests.md`;
 const RESOURCE_SPECIALIST_PROMPT = `你是**资源探测专家**，专注于采集和发现 API 端点。
 ## 职责
-1. **动态采集** - 使用无头浏览器或代理拦截采集 API 端点
+1. **动态采集** - 使用浏览器采集 API 端点
 2. **静态分析** - 从 JS 文件和源码中提取端点
 3. **模式识别** - 识别 API 的 URL 模式和参数结构
+## 可用工具
+- browser_collect: 使用 Playwright 采集动态内容
+- js_parse: 解析 JavaScript 文件提取端点
+- url_discover: 发现隐藏 URL
 ## 采集技术
-### 方法1: Playwright 无头浏览器采集
+### 方法1: Playwright 浏览器采集
 使用 Playwright 打开页面，拦截所有 XHR/Fetch 请求
 ### 方法2: JavaScript 文件分析
@@ -75,8 +86,138 @@ const RESOURCE_SPECIALIST_PROMPT = `你是**资源探测专家**，专注于采
 ### 方法3: 目录和文件探测
 常见路径：/api/v1/*, /graphql, /swagger, /.well-known/*`;
-const ApiSecurityTestingPlugin: Plugin = async () => {
+const ApiSecurityTestingPlugin: Plugin = async (ctx) => {
   return {
+    tool: {
+      api_security_scan: tool({
+        description: "对目标进行完整的 API 安全扫描。参数：target(目标URL), scan_type(full/quick/targeted), vulnerabilities(要检测的漏洞类型数组)",
+        args: {
+          target: tool.schema.string(),
+          scan_type: tool.schema.enum(["full", "quick", "targeted"]).optional(),
+          vulnerabilities: tool.schema.array(tool.schema.string()).optional(),
+        },
+        async execute(args, context) {
+          const skillPath = join(context.directory, "skills/api-security-testing");
+          const cmd = `cd ${skillPath} && pip install -q -r requirements.txt 2>/dev/null; python3 -c "
+import sys
+sys.path.insert(0, 'core')
+from deep_api_tester_v55 import DeepAPITesterV55
+tester = DeepAPITesterV55(target='${args.target}', headless=True)
+results = tester.run_test()
+print(results)
+"`;
+          const result = await ctx.$`${cmd}`;
+          return result.toString();
+        },
+      }),
+      api_fuzz_test: tool({
+        description: "对特定 API 端点进行模糊测试。参数：endpoint(端点URL), method(HTTP方法)",
+        args: {
+          endpoint: tool.schema.string(),
+          method: tool.schema.enum(["GET", "POST", "PUT", "DELETE", "PATCH"]).optional(),
+        },
+        async execute(args, context) {
+          const skillPath = join(context.directory, "skills/api-security-testing");
+          const cmd = `cd ${skillPath} && python3 -c "
+import sys
+sys.path.insert(0, 'core')
+from api_fuzzer import APIFuzzer
+fuzzer = APIFuzzer('${args.endpoint}')
+results = fuzzer.fuzz(method='${args.method || 'GET'}')
+print(results)
+"`;
+          const result = await ctx.$`${cmd}`;
+          return result.toString();
+        },
+      }),
+      vuln_verify: tool({
+        description: "验证漏洞是否存在。参数：vuln_type(漏洞类型), endpoint(端点), evidence(可选证据)",
+        args: {
+          vuln_type: tool.schema.string(),
+          endpoint: tool.schema.string(),
+          evidence: tool.schema.string().optional(),
+        },
+        async execute(args, context) {
+          const skillPath = join(context.directory, "skills/api-security-testing");
+          const cmd = `cd ${skillPath} && python3 -c "
+import sys
+sys.path.insert(0, 'core')
+from verifiers.vuln_verifier import VulnVerifier
+verifier = VulnVerifier()
+result = verifier.verify('${args.vuln_type}', '${args.endpoint}')
+print(result)
+"`;
+          const result = await ctx.$`${cmd}`;
+          return result.toString();
+        },
+      }),
+      browser_collect: tool({
+        description: "使用 Playwright 浏览器采集动态内容。参数：url(目标URL), wait_for(等待元素)",
+        args: {
+          url: tool.schema.string(),
+          wait_for: tool.schema.string().optional(),
+        },
+        async execute(args, context) {
+          const skillPath = join(context.directory, "skills/api-security-testing");
+          const cmd = `cd ${skillPath} && python3 -c "
+import sys
+sys.path.insert(0, 'core')
+from collectors.browser_collect import BrowserCollector
+collector = BrowserCollector(headless=True)
+endpoints = collector.collect('${args.url}')
+print(f'发现 {len(endpoints)} 个端点:')
+for ep in endpoints:
+    print(ep)
+"`;
+          const result = await ctx.$`${cmd}`;
+          return result.toString();
+        },
+      }),
+      cloud_storage_test: tool({
+        description: "测试云存储安全。参数：bucket_url(存储桶URL)",
+        args: {
+          bucket_url: tool.schema.string(),
+        },
+        async execute(args, context) {
+          const skillPath = join(context.directory, "skills/api-security-testing");
+          const cmd = `cd ${skillPath} && python3 -c "
+import sys
+sys.path.insert(0, 'core')
+from cloud_storage_tester import CloudStorageTester
+tester = CloudStorageTester()
+result = tester.full_test('${args.bucket_url}')
+print(result)
+"`;
+          const result = await ctx.$`${cmd}`;
+          return result.toString();
+        },
+      }),
+      graphql_security_test: tool({
+        description: "测试 GraphQL 安全。参数：endpoint(GraphQL端点)",
+        args: {
+          endpoint: tool.schema.string(),
+        },
+        async execute(args, context) {
+          const skillPath = join(context.directory, "skills/api-security-testing");
+          const cmd = `cd ${skillPath} && python3 -c "
+import sys
+sys.path.insert(0, 'core')
+from smart_analyzer import SmartAnalyzer
+analyzer = SmartAnalyzer()
+result = analyzer.graphql_test('${args.endpoint}')
+print(result)
+"`;
+          const result = await ctx.$`${cmd}`;
+          return result.toString();
+        },
+      }),
+    },
     config: async (config) => {
       const agentConfig = config.agent as Record<string, AgentConfig> | undefined;

package/index.ts DELETED Viewed

@@ -1,9 +0,0 @@
-import type { Plugin } from "@opencode-ai/plugin";
-const ApiSecurityTestingPlugin: Plugin = async () => {
-  return {
-    tool: {},
-  };
-};
-export default ApiSecurityTestingPlugin;