npm - pentesting - Versions diffs - 0.7.4 → 0.7.6 - Mend

pentesting 0.7.4 → 0.7.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/dist/{auto-update-NF5LOTTR.js → auto-update-2TA2XEPG.js} +2 -2
package/dist/{chunk-FWXRDTSB.js → chunk-3KWVDLNY.js} +1 -0
package/dist/{chunk-NHTHJVRJ.js → chunk-RS2X7YKI.js} +1 -1
package/dist/index.js +101 -4
package/dist/{update-WBBD5QMK.js → update-S2YI6GZU.js} +2 -2
package/package.json +1 -1

package/dist/{auto-update-NF5LOTTR.js → auto-update-2TA2XEPG.js} RENAMED Viewed

@@ -8,8 +8,8 @@ import {
   readVersionCache,
   semverTuple,
   writeVersionCache
-} from "./chunk-NHTHJVRJ.js";
-import "./chunk-FWXRDTSB.js";
+} from "./chunk-RS2X7YKI.js";
+import "./chunk-3KWVDLNY.js";
 import "./chunk-3RG5ZIWI.js";
 export {
   checkForUpdate,

package/dist/{chunk-FWXRDTSB.js → chunk-3KWVDLNY.js} RENAMED Viewed

@@ -93,6 +93,7 @@ var TOOL_NAME = {
   READ_FILE: "read_file",
   WRITE_FILE: "write_file",
   LIST_DIRECTORY: "list_directory",
+  SET_TARGET: "set_target",
   // Network - Basic Connectivity
   PING: "ping",
   TRACEROUTE: "traceroute",

package/dist/{chunk-NHTHJVRJ.js → chunk-RS2X7YKI.js} RENAMED Viewed

@@ -1,7 +1,7 @@
 import {
   APP_NAME,
   APP_VERSION
-} from "./chunk-FWXRDTSB.js";
+} from "./chunk-3KWVDLNY.js";
 // src/core/update/auto-update.ts
 import { execSync } from "child_process";

package/dist/index.js CHANGED Viewed

@@ -15,7 +15,7 @@ import {
   PHASE_STATUS,
   THOUGHT_TYPE,
   TOOL_NAME
-} from "./chunk-FWXRDTSB.js";
+} from "./chunk-3KWVDLNY.js";
 import {
   __require
 } from "./chunk-3RG5ZIWI.js";
@@ -281,6 +281,27 @@ IMPORTANT:
       },
       required: ["path"]
     }
+  },
+  {
+    name: TOOL_NAME.SET_TARGET,
+    description: `Set the primary target for penetration testing.
+CRITICAL: Use this IMMEDIATELY when user mentions any domain or IP.
+This sets the target in the UI status bar.
+WHEN TO USE:
+- User says "attack example.com" \u2192 set_target(target: "example.com")
+- User says "scan 192.168.1.1" \u2192 set_target(target: "192.168.1.1")
+- User mentions any domain/IP \u2192 set_target first, then start scanning
+After setting target, immediately begin reconnaissance.`,
+    input_schema: {
+      type: "object",
+      properties: {
+        target: { type: "string", description: "Domain, IP, or URL to set as primary target" }
+      },
+      required: ["target"]
+    }
   }
 ];
 var NETWORK_TOOLS = [
@@ -1435,6 +1456,9 @@ async function executeToolCall(toolName, input) {
           input.hidden
         );
         break;
+      case TOOL_NAME.SET_TARGET:
+        result = await setTarget(input.target);
+        break;
       // network scanning
       case TOOL_NAME.RUSTSCAN:
         result = await executeRustscan(input);
@@ -1644,6 +1668,37 @@ ${stderr}` : ""),
     };
   }
 }
+var _currentTarget = null;
+var _targetListeners = [];
+function onTargetChange(listener) {
+  _targetListeners.push(listener);
+}
+async function setTarget(target) {
+  try {
+    _currentTarget = target;
+    _targetListeners.forEach((listener) => {
+      try {
+        listener(target);
+      } catch (e) {
+        console.error("Target listener error:", e);
+      }
+    });
+    return {
+      success: true,
+      output: `\u{1F3AF} Target set: ${target}
+Now beginning reconnaissance...`,
+      duration: 0
+    };
+  } catch (error) {
+    return {
+      success: false,
+      output: "",
+      error: error.message || String(error),
+      duration: 0
+    };
+  }
+}
 async function readFile2(filePath, startLine, endLine) {
   try {
     const content = await fs.readFile(filePath, "utf-8");
@@ -4194,6 +4249,9 @@ var AutonomousHackingAgent = class extends EventEmitter4 {
     output: 0,
     total: 0
   };
+  // Execution control flags
+  isPaused = false;
+  isAborted = false;
   // Rabbit hole detection settings
   STUCK_THRESHOLD = 5;
   // Same action repeat count
@@ -4395,6 +4453,13 @@ ${prompt}`
     this.think(THOUGHT_TYPE.OBSERVATION, `Target Setting: ${target}`);
     this.emit(AGENT_EVENT.TARGET_SET, target);
   }
+  // ===== Execution Control =====
+  /**
+   * Check if execution should stop (called by main loop)
+   */
+  shouldStop() {
+    return this.isPaused || this.isAborted;
+  }
   /**
    * Add a target to the discovered list (multi-target support)
    */
@@ -4522,6 +4587,9 @@ ${prompt}`
    * Uses string comparison to avoid TypeScript narrowing issues with const enums
    */
   shouldStopLoop() {
+    if (this.isPaused || this.isAborted) {
+      return true;
+    }
     const status = this.state.status;
     return status === AGENT_STATUS.PAUSED || status === AGENT_STATUS.COMPLETED || status === AGENT_STATUS.IDLE;
   }
@@ -4791,6 +4859,10 @@ Use report_finding tool for important discoveries.
           this.think(THOUGHT_TYPE.STUCK, `Tool blocked by hook: ${hookCheck.output}`);
           continue;
         }
+        if (this.shouldStopLoop()) {
+          this.think(THOUGHT_TYPE.OBSERVATION, "Execution paused before tool execution");
+          break;
+        }
         if (this.approvalManager.requiresApproval(toolName, toolInput)) {
           const risk = assessRisk(toolName, toolInput);
           this.emit(AGENT_EVENT.APPROVAL_NEEDED, {
@@ -5142,19 +5214,30 @@ Available tools: ${this.tools.map((t) => t.name).join(", ")}
 Respond helpfully to the user's message. If they ask to perform security testing actions, use the appropriate tools. Always explain what you're doing and why.`;
   }
-  // ===== Pause/Resume =====
+  // ===== Pause/Resume/Abort =====
   pause() {
+    this.isPaused = true;
     this.state.status = AGENT_STATUS.PAUSED;
     this.emit(AGENT_EVENT.PAUSED);
   }
   resume() {
+    this.isPaused = false;
+    this.isAborted = false;
     if (this.state.status === AGENT_STATUS.PAUSED) {
       this.state.status = AGENT_STATUS.RUNNING;
       this.emit(AGENT_EVENT.RESUMED);
     }
   }
+  abort() {
+    this.isPaused = true;
+    this.isAborted = true;
+    this.state.status = AGENT_STATUS.IDLE;
+    this.emit(AGENT_EVENT.PAUSED);
+  }
   // ===== Reset =====
   reset() {
+    this.isPaused = false;
+    this.isAborted = false;
     this.state = this.createInitialState();
     this.emit(AGENT_EVENT.RESET);
   }
@@ -6423,6 +6506,7 @@ var App = ({ autoApprove = false, target }) => {
   const [checkpointCount, setCheckpointCount] = useState(0);
   const [preInputBuffer, setPreInputBuffer] = useState("");
   const [wasInterrupted, setWasInterrupted] = useState(false);
+  const [, forceUpdate] = useState(0);
   const [agent] = useState(() => new AutonomousHackingAgent(void 0, { autoApprove }));
   const sessionManager2 = getSessionManager();
   const approvalManager2 = getApprovalManager({ yoloMode: autoApprove });
@@ -6443,7 +6527,7 @@ var App = ({ autoApprove = false, target }) => {
         setCheckpointCount(contextManagerRef.current?.getCheckpoints().length || 0);
       }
     });
-    import("./auto-update-NF5LOTTR.js").then(({ checkForUpdateAsync, formatUpdateNotification }) => {
+    import("./auto-update-2TA2XEPG.js").then(({ checkForUpdateAsync, formatUpdateNotification }) => {
       checkForUpdateAsync().then((result) => {
         if (result.hasUpdate) {
           const notification = formatUpdateNotification(result);
@@ -6550,6 +6634,14 @@ var App = ({ autoApprove = false, target }) => {
       agent.setTarget(target);
       addMessage(MESSAGE_TYPE.SYSTEM, `\u{1F3AF} Target: ${target}`);
     }
+    onTargetChange((newTarget) => {
+      agent.setTarget(newTarget);
+      addMessage(MESSAGE_TYPE.SYSTEM, `\u{1F3AF} Target \u2192 ${newTarget}`);
+      forceUpdate((n) => n + 1);
+    });
+    agent.on(AGENT_EVENT.TARGET_SET, () => {
+      forceUpdate((n) => n + 1);
+    });
     agent.on(AGENT_EVENT.THOUGHT, (thought) => {
       setCurrentStatus(thought.content.slice(0, 60));
       wireLoggerRef.current?.contentPart(thought.content, thought.type === "thinking");
@@ -6573,10 +6665,15 @@ var App = ({ autoApprove = false, target }) => {
     agent.on(AGENT_EVENT.FINDING, (finding) => {
       addMessage(MESSAGE_TYPE.SYSTEM, `\u{1F3AF} [${finding.severity.toUpperCase()}] ${finding.title}`);
       wireLoggerRef.current?.statusUpdate({ event: "finding", ...finding });
+      forceUpdate((n) => n + 1);
     });
     agent.on(AGENT_EVENT.PHASE_CHANGE, (data) => {
       addMessage(MESSAGE_TYPE.SYSTEM, `\u{1F4CD} Phase: ${data.phaseId}`);
       wireLoggerRef.current?.statusUpdate({ event: "phase_change", phase: data.phaseId });
+      forceUpdate((n) => n + 1);
+    });
+    agent.on(AGENT_EVENT.CREDENTIAL, () => {
+      forceUpdate((n) => n + 1);
     });
     agent.on(AGENT_EVENT.CONTEXT_COMPACTED, () => {
       addMessage(MESSAGE_TYPE.SYSTEM, "\u{1F4BE} Context compacted to save tokens");
@@ -7037,7 +7134,7 @@ ${list}`);
           return;
         case "update":
           try {
-            const { checkForUpdate, formatUpdateNotification, doUpdate } = await import("./update-WBBD5QMK.js");
+            const { checkForUpdate, formatUpdateNotification, doUpdate } = await import("./update-S2YI6GZU.js");
             const result = checkForUpdate(true);
             if (result.hasUpdate) {
               const notification = formatUpdateNotification(result);

package/dist/{update-WBBD5QMK.js → update-S2YI6GZU.js} RENAMED Viewed

@@ -8,8 +8,8 @@ import {
   readVersionCache,
   semverTuple,
   writeVersionCache
-} from "./chunk-NHTHJVRJ.js";
-import "./chunk-FWXRDTSB.js";
+} from "./chunk-RS2X7YKI.js";
+import "./chunk-3KWVDLNY.js";
 import "./chunk-3RG5ZIWI.js";
 export {
   checkForUpdate,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "pentesting",
-  "version": "0.7.4",
+  "version": "0.7.6",
   "description": "Autonomous Penetration Testing AI Agent",
   "type": "module",
   "main": "dist/index.js",