postquant 0.1.2 → 0.3.0

package/dist/scanner/code/discovery.js

@@ -0,0 +1,167 @@
+import { readdir, readFile } from 'node:fs/promises';
+import { join, extname, basename } from 'node:path';
+/** Extension → Language mapping. TypeScript maps to 'javascript'. */
+const EXTENSION_MAP = {
+    '.py': 'python',
+    '.pyw': 'python',
+    '.pyi': 'python',
+    '.js': 'javascript',
+    '.mjs': 'javascript',
+    '.cjs': 'javascript',
+    '.jsx': 'javascript',
+    '.ts': 'javascript',
+    '.mts': 'javascript',
+    '.cts': 'javascript',
+    '.tsx': 'javascript',
+    '.go': 'go',
+    '.java': 'java',
+};
+/** Directories and patterns always ignored regardless of config. */
+const DEFAULT_IGNORE_DIRS = new Set([
+    'node_modules',
+    'vendor',
+    '.git',
+    'dist',
+    'build',
+    '__pycache__',
+]);
+/** File patterns always ignored (checked against basename). */
+const DEFAULT_IGNORE_GLOBS = [
+    '*.min.js',
+    '*.bundle.js',
+    '*.map',
+    'package-lock.json',
+    'yarn.lock',
+    'go.sum',
+];
+/**
+ * Discover source files in a directory tree.
+ * Returns files with detected language, filtered by ignore patterns and options.
+ */
+export async function discoverFiles(scanRoot, options = {}) {
+    const { ignore = [], ignoreFile, maxFiles = 10000, language } = options;
+    // Load custom ignore patterns from ignore file
+    const customIgnores = ignoreFile
+        ? await loadIgnoreFile(join(scanRoot, ignoreFile))
+        : [];
+    const allIgnorePatterns = [...DEFAULT_IGNORE_GLOBS, ...ignore, ...customIgnores];
+    const entries = await readdir(scanRoot, { recursive: true, withFileTypes: false });
+    const results = [];
+    for (const entry of entries) {
+        if (results.length >= maxFiles)
+            break;
+        const relativePath = typeof entry === 'string' ? entry : String(entry);
+        // Skip files in default-ignored directories
+        if (isInIgnoredDir(relativePath))
+            continue;
+        // Check file extension for language
+        const ext = extname(relativePath);
+        const lang = EXTENSION_MAP[ext];
+        if (!lang)
+            continue;
+        // Apply language filter
+        if (language && lang !== language)
+            continue;
+        // Check against ignore patterns
+        if (matchesAnyPattern(relativePath, allIgnorePatterns))
+            continue;
+        results.push({ path: relativePath, language: lang });
+    }
+    return results;
+}
+/**
+ * Check if a relative path is inside a default-ignored directory.
+ */
+function isInIgnoredDir(relativePath) {
+    const parts = relativePath.split('/');
+    return parts.some((part) => DEFAULT_IGNORE_DIRS.has(part));
+}
+/**
+ * Simple glob matching. Supports:
+ * - `*` matches any characters except /
+ * - `**` matches any characters including /
+ * - Trailing `/` matches directory prefixes
+ * - `#` comment lines are skipped
+ * - Empty lines are skipped
+ */
+function matchesAnyPattern(filePath, patterns) {
+    const fileName = basename(filePath);
+    for (const pattern of patterns) {
+        if (matchesPattern(filePath, fileName, pattern))
+            return true;
+    }
+    return false;
+}
+function matchesPattern(filePath, fileName, pattern) {
+    // Directory pattern (trailing /)
+    if (pattern.endsWith('/')) {
+        const dirName = pattern.slice(0, -1);
+        return filePath.startsWith(dirName + '/') || filePath.includes('/' + dirName + '/');
+    }
+    // Pattern with path separator — match against full path
+    if (pattern.includes('/')) {
+        return globMatch(pattern, filePath);
+    }
+    // Simple filename pattern — match against basename
+    return globMatch(pattern, fileName);
+}
+/**
+ * Minimal glob matcher. Converts glob to regex.
+ * Supports * (any non-/ chars) and ** (any chars including /).
+ */
+function globMatch(pattern, str) {
+    let regexStr = '^';
+    let i = 0;
+    while (i < pattern.length) {
+        const ch = pattern[i];
+        if (ch === '*' && pattern[i + 1] === '*') {
+            // ** matches everything including /
+            regexStr += '.*';
+            i += 2;
+            // Skip trailing / after **
+            if (pattern[i] === '/')
+                i++;
+        }
+        else if (ch === '*') {
+            // * matches everything except /
+            regexStr += '[^/]*';
+            i++;
+        }
+        else if (ch === '?') {
+            regexStr += '[^/]';
+            i++;
+        }
+        else if ('.+^${}()|[]\\'.includes(ch)) {
+            regexStr += '\\' + ch;
+            i++;
+        }
+        else {
+            regexStr += ch;
+            i++;
+        }
+    }
+    regexStr += '$';
+    try {
+        return new RegExp(regexStr).test(str);
+    }
+    catch {
+        return false;
+    }
+}
+/**
+ * Load ignore patterns from a file. Skips blank lines and comments (#).
+ * Returns empty array if file doesn't exist.
+ */
+async function loadIgnoreFile(filePath) {
+    try {
+        const content = await readFile(filePath, 'utf-8');
+        return content
+            .split('\n')
+            .map((line) => line.trim())
+            .filter((line) => line.length > 0 && !line.startsWith('#'));
+    }
+    catch {
+        return [];
+    }
+}
+//# sourceMappingURL=discovery.js.map

package/dist/scanner/code/discovery.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"discovery.js","sourceRoot":"","sources":["../../../src/scanner/code/discovery.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AACrD,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,WAAW,CAAC;AAGpD,qEAAqE;AACrE,MAAM,aAAa,GAA6B;IAC9C,KAAK,EAAE,QAAQ;IACf,MAAM,EAAE,QAAQ;IAChB,MAAM,EAAE,QAAQ;IAChB,KAAK,EAAE,YAAY;IACnB,MAAM,EAAE,YAAY;IACpB,MAAM,EAAE,YAAY;IACpB,MAAM,EAAE,YAAY;IACpB,KAAK,EAAE,YAAY;IACnB,MAAM,EAAE,YAAY;IACpB,MAAM,EAAE,YAAY;IACpB,MAAM,EAAE,YAAY;IACpB,KAAK,EAAE,IAAI;IACX,OAAO,EAAE,MAAM;CAChB,CAAC;AAEF,oEAAoE;AACpE,MAAM,mBAAmB,GAAG,IAAI,GAAG,CAAC;IAClC,cAAc;IACd,QAAQ;IACR,MAAM;IACN,MAAM;IACN,OAAO;IACP,aAAa;CACd,CAAC,CAAC;AAEH,+DAA+D;AAC/D,MAAM,oBAAoB,GAAG;IAC3B,UAAU;IACV,aAAa;IACb,OAAO;IACP,mBAAmB;IACnB,WAAW;IACX,QAAQ;CACT,CAAC;AAaF;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,QAAgB,EAChB,UAA2B,EAAE;IAE7B,MAAM,EAAE,MAAM,GAAG,EAAE,EAAE,UAAU,EAAE,QAAQ,GAAG,KAAK,EAAE,QAAQ,EAAE,GAAG,OAAO,CAAC;IAExE,+CAA+C;IAC/C,MAAM,aAAa,GAAG,UAAU;QAC9B,CAAC,CAAC,MAAM,cAAc,CAAC,IAAI,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;QAClD,CAAC,CAAC,EAAE,CAAC;IAEP,MAAM,iBAAiB,GAAG,CAAC,GAAG,oBAAoB,EAAE,GAAG,MAAM,EAAE,GAAG,aAAa,CAAC,CAAC;IAEjF,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,QAAQ,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,aAAa,EAAE,KAAK,EAAE,CAAC,CAAC;IACnF,MAAM,OAAO,GAAqB,EAAE,CAAC;IAErC,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;QAC5B,IAAI,OAAO,CAAC,MAAM,IAAI,QAAQ;YAAE,MAAM;QAEtC,MAAM,YAAY,GAAG,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QAEvE,4CAA4C;QAC5C,IAAI,cAAc,CAAC,YAAY,CAAC;YAAE,SAAS;QAE3C,oCAAoC;QACpC,MAAM,GAAG,GAAG,OAAO,CAAC,YAAY,CAAC,CAAC;QAClC,MAAM,IAAI,GAAG,aAAa,CAAC,GAAG,CAAC,CAAC;QAChC,IAAI,CAAC,IAAI;YAAE,SAAS;QAEpB,wBAAwB;QACxB,IAAI,QAAQ,IAAI,IAAI,KAAK,QAAQ;YAAE,SAAS;QAE5C,gCAAgC;QAChC,IAAI,iBAAiB,CAAC,YAAY,EAAE,iBAAiB,CAAC;YAAE,SAAS;QAEjE,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,YAAY,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;IACvD,CAAC;IAED,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;GAEG;AACH,SAAS,cAAc,CAAC,YAAoB;IAC1C,MAAM,KAAK,GAAG,YAAY,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IACtC,OAAO,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,mBAAmB,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC;AAC7D,CAAC;AAED;;;;;;;GAOG;AACH,SAAS,iBAAiB,CAAC,QAAgB,EAAE,QAAkB;IAC7D,MAAM,QAAQ,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAEpC,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,IAAI,cAAc,CAAC,QAAQ,EAAE,QAAQ,EAAE,OAAO,CAAC;YAAE,OAAO,IAAI,CAAC;IAC/D,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,cAAc,CAAC,QAAgB,EAAE,QAAgB,EAAE,OAAe;IACzE,iCAAiC;IACjC,IAAI,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAC1B,MAAM,OAAO,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;QACrC,OAAO,QAAQ,CAAC,UAAU,CAAC,OAAO,GAAG,GAAG,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,GAAG,GAAG,OAAO,GAAG,GAAG,CAAC,CAAC;IACtF,CAAC;IAED,wDAAwD;IACxD,IAAI,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;QAC1B,OAAO,SAAS,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;IACtC,CAAC;IAED,mDAAmD;IACnD,OAAO,SAAS,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;AACtC,CAAC;AAED;;;GAGG;AACH,SAAS,SAAS,CAAC,OAAe,EAAE,GAAW;IAC7C,IAAI,QAAQ,GAAG,GAAG,CAAC;IACnB,IAAI,CAAC,GAAG,CAAC,CAAC;IAEV,OAAO,CAAC,GAAG,OAAO,CAAC,MAAM,EAAE,CAAC;QAC1B,MAAM,EAAE,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;QAEtB,IAAI,EAAE,KAAK,GAAG,IAAI,OAAO,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,GAAG,EAAE,CAAC;YACzC,oCAAoC;YACpC,QAAQ,IAAI,IAAI,CAAC;YACjB,CAAC,IAAI,CAAC,CAAC;YACP,2BAA2B;YAC3B,IAAI,OAAO,CAAC,CAAC,CAAC,KAAK,GAAG;gBAAE,CAAC,EAAE,CAAC;QAC9B,CAAC;aAAM,IAAI,EAAE,KAAK,GAAG,EAAE,CAAC;YACtB,gCAAgC;YAChC,QAAQ,IAAI,OAAO,CAAC;YACpB,CAAC,EAAE,CAAC;QACN,CAAC;aAAM,IAAI,EAAE,KAAK,GAAG,EAAE,CAAC;YACtB,QAAQ,IAAI,MAAM,CAAC;YACnB,CAAC,EAAE,CAAC;QACN,CAAC;aAAM,IAAI,eAAe,CAAC,QAAQ,CAAC,EAAE,CAAC,EAAE,CAAC;YACxC,QAAQ,IAAI,IAAI,GAAG,EAAE,CAAC;YACtB,CAAC,EAAE,CAAC;QACN,CAAC;aAAM,CAAC;YACN,QAAQ,IAAI,EAAE,CAAC;YACf,CAAC,EAAE,CAAC;QACN,CAAC;IACH,CAAC;IAED,QAAQ,IAAI,GAAG,CAAC;IAEhB,IAAI,CAAC;QACH,OAAO,IAAI,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACxC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,KAAK,UAAU,cAAc,CAAC,QAAgB;IAC5C,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAClD,OAAO,OAAO;aACX,KAAK,CAAC,IAAI,CAAC;aACX,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;aAC1B,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC;IAChE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC"}

package/dist/scanner/code/grader.d.ts

@@ -0,0 +1,27 @@
+import type { CodeScanResult, CodeGradedResult, BaseGrade } from '../../types/index.js';
+/**
+ * Grade a code scan result.
+ *
+ * Grading logic (from spec Section 6.1):
+ *   0 critical + 0 moderate → A (A+ if PQC detected)
+ *   0 critical + moderate only → B
+ *   1-5 critical → C
+ *   6-20 critical → D
+ *   21+ critical → F
+ *
+ * Special cases:
+ *   MD5/SHA-1/DES/3DES → cap at D
+ *
+ * Modifiers (same as TLS grader):
+ *   0 moderate → +
+ *   1 moderate → (none)
+ *   2+ moderate → -
+ *   A+, A, F → no modifier
+ */
+export declare function gradeCodeScan(scan: CodeScanResult): CodeGradedResult;
+/**
+ * Determine if a scan should fail CI based on grade threshold.
+ * Reuses the same logic as the TLS grader.
+ */
+export declare function shouldFailForCodeGrade(actual: BaseGrade, threshold: BaseGrade): boolean;
+//# sourceMappingURL=grader.d.ts.map

package/dist/scanner/code/grader.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"grader.d.ts","sourceRoot":"","sources":["../../../src/scanner/code/grader.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EACV,cAAc,EACd,gBAAgB,EAKhB,SAAS,EAEV,MAAM,sBAAsB,CAAC;AA6B9B;;;;;;;;;;;;;;;;;;GAkBG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,cAAc,GAAG,gBAAgB,CAoFpE;AAoCD;;;GAGG;AACH,wBAAgB,sBAAsB,CACpC,MAAM,EAAE,SAAS,EACjB,SAAS,EAAE,SAAS,GACnB,OAAO,CAET"}

package/dist/scanner/code/grader.js

@@ -0,0 +1,169 @@
+import { isAssessedFinding } from '../../types/index.js';
+const BASE_GRADE_ORDER = ['A+', 'A', 'B', 'C', 'D', 'F'];
+/** Algorithms that are already broken classically — cap grade at D. */
+const BROKEN_ALGORITHMS = ['MD5', 'SHA-1', 'SHA1', 'DES', '3DES', 'TRIPLE-DES'];
+/**
+ * Map a finding to a grade bucket using adjusted risk when available,
+ * falling back to the raw `risk` field for unassessed findings.
+ */
+function getEffectiveGradeBucket(f) {
+    if (isAssessedFinding(f)) {
+        switch (f.riskContext.adjustedRisk) {
+            case 'critical':
+            case 'high':
+                return 'critical';
+            case 'medium':
+                return 'moderate';
+            case 'low':
+            case 'informational':
+                return 'excluded';
+        }
+    }
+    // Raw finding — use original risk
+    return f.risk === 'critical' ? 'critical' : f.risk === 'moderate' ? 'moderate' : 'safe';
+}
+/**
+ * Grade a code scan result.
+ *
+ * Grading logic (from spec Section 6.1):
+ *   0 critical + 0 moderate → A (A+ if PQC detected)
+ *   0 critical + moderate only → B
+ *   1-5 critical → C
+ *   6-20 critical → D
+ *   21+ critical → F
+ *
+ * Special cases:
+ *   MD5/SHA-1/DES/3DES → cap at D
+ *
+ * Modifiers (same as TLS grader):
+ *   0 moderate → +
+ *   1 moderate → (none)
+ *   2+ moderate → -
+ *   A+, A, F → no modifier
+ */
+export function gradeCodeScan(scan) {
+    const { findings } = scan;
+    // Count findings by effective grade bucket (uses adjustedRisk when available)
+    let critical = 0;
+    let moderate = 0;
+    let safe = 0;
+    for (const f of findings) {
+        const bucket = getEffectiveGradeBucket(f);
+        if (bucket === 'critical')
+            critical++;
+        else if (bucket === 'moderate')
+            moderate++;
+        else if (bucket === 'safe' || bucket === 'excluded')
+            safe++;
+    }
+    // Determine base grade from critical/moderate counts
+    let baseGrade;
+    if (critical === 0 && moderate === 0) {
+        const hasPqc = findings.some((f) => f.category === 'pqc-algorithm');
+        baseGrade = hasPqc ? 'A+' : 'A';
+    }
+    else if (critical === 0) {
+        baseGrade = 'B';
+    }
+    else if (critical <= 5) {
+        baseGrade = 'C';
+    }
+    else if (critical <= 20) {
+        baseGrade = 'D';
+    }
+    else {
+        baseGrade = 'F';
+    }
+    // Special case: broken algorithms cap at D
+    // Only applies when the finding's adjusted risk is critical or high
+    const hasBrokenAlgo = findings.some((f) => {
+        const isBroken = BROKEN_ALGORITHMS.some((broken) => f.algorithm.toUpperCase() === broken.toUpperCase());
+        if (!isBroken)
+            return false;
+        if (isAssessedFinding(f)) {
+            return f.riskContext.adjustedRisk === 'critical' || f.riskContext.adjustedRisk === 'high';
+        }
+        return true; // Raw finding — cap as before
+    });
+    if (hasBrokenAlgo && gradeRank(baseGrade) < gradeRank('D')) {
+        baseGrade = 'D';
+    }
+    // Compute modifier (same logic as TLS grader)
+    let modifier = '';
+    if (baseGrade !== 'A+' && baseGrade !== 'A' && baseGrade !== 'F') {
+        if (moderate === 0) {
+            modifier = '+';
+        }
+        else if (moderate >= 2) {
+            modifier = '-';
+        }
+    }
+    const displayGrade = (baseGrade + modifier);
+    // Collect unique migration notes
+    const migrationSet = new Set();
+    for (const f of findings) {
+        if (f.migration)
+            migrationSet.add(f.migration);
+    }
+    // Build per-file breakdown
+    const fileBreakdown = buildFileBreakdown(findings);
+    return {
+        scanRoot: scan.scanRoot,
+        grade: displayGrade,
+        baseGrade,
+        modifier,
+        findings,
+        migrationNotes: [...migrationSet],
+        summary: {
+            critical,
+            moderate,
+            safe,
+            total: findings.length,
+            filesScanned: scan.filesScanned,
+            filesWithFindings: scan.filesWithFindings,
+        },
+        fileBreakdown,
+    };
+}
+function buildFileBreakdown(findings) {
+    const byFile = new Map();
+    for (const f of findings) {
+        const list = byFile.get(f.file) ?? [];
+        list.push(f);
+        byFile.set(f.file, list);
+    }
+    return [...byFile.entries()].map(([file, fileFindgs]) => {
+        let criticalCount = 0;
+        let moderateCount = 0;
+        let safeCount = 0;
+        for (const f of fileFindgs) {
+            const bucket = getEffectiveGradeBucket(f);
+            if (bucket === 'critical')
+                criticalCount++;
+            else if (bucket === 'moderate')
+                moderateCount++;
+            else
+                safeCount++;
+        }
+        return {
+            file,
+            language: fileFindgs[0].language,
+            findings: fileFindgs,
+            criticalCount,
+            moderateCount,
+            safeCount,
+        };
+    });
+}
+/** Return numeric rank for a base grade (higher = worse). */
+function gradeRank(g) {
+    return BASE_GRADE_ORDER.indexOf(g);
+}
+/**
+ * Determine if a scan should fail CI based on grade threshold.
+ * Reuses the same logic as the TLS grader.
+ */
+export function shouldFailForCodeGrade(actual, threshold) {
+    return gradeRank(actual) >= gradeRank(threshold);
+}
+//# sourceMappingURL=grader.js.map

package/dist/scanner/code/grader.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"grader.js","sourceRoot":"","sources":["../../../src/scanner/code/grader.ts"],"names":[],"mappings":"AAUA,OAAO,EAAE,iBAAiB,EAAE,MAAM,sBAAsB,CAAC;AAEzD,MAAM,gBAAgB,GAAgB,CAAC,IAAI,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC;AAEtE,uEAAuE;AACvE,MAAM,iBAAiB,GAAG,CAAC,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,YAAY,CAAC,CAAC;AAEhF;;;GAGG;AACH,SAAS,uBAAuB,CAAC,CAAc;IAC7C,IAAI,iBAAiB,CAAC,CAAC,CAAC,EAAE,CAAC;QACzB,QAAQ,CAAC,CAAC,WAAW,CAAC,YAAY,EAAE,CAAC;YACnC,KAAK,UAAU,CAAC;YAChB,KAAK,MAAM;gBACT,OAAO,UAAU,CAAC;YACpB,KAAK,QAAQ;gBACX,OAAO,UAAU,CAAC;YACpB,KAAK,KAAK,CAAC;YACX,KAAK,eAAe;gBAClB,OAAO,UAAU,CAAC;QACtB,CAAC;IACH,CAAC;IACD,kCAAkC;IAClC,OAAO,CAAC,CAAC,IAAI,KAAK,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,MAAM,CAAC;AAC1F,CAAC;AAED;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,UAAU,aAAa,CAAC,IAAoB;IAChD,MAAM,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC;IAE1B,8EAA8E;IAC9E,IAAI,QAAQ,GAAG,CAAC,CAAC;IACjB,IAAI,QAAQ,GAAG,CAAC,CAAC;IACjB,IAAI,IAAI,GAAG,CAAC,CAAC;IACb,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACzB,MAAM,MAAM,GAAG,uBAAuB,CAAC,CAAC,CAAC,CAAC;QAC1C,IAAI,MAAM,KAAK,UAAU;YAAE,QAAQ,EAAE,CAAC;aACjC,IAAI,MAAM,KAAK,UAAU;YAAE,QAAQ,EAAE,CAAC;aACtC,IAAI,MAAM,KAAK,MAAM,IAAI,MAAM,KAAK,UAAU;YAAE,IAAI,EAAE,CAAC;IAC9D,CAAC;IAED,qDAAqD;IACrD,IAAI,SAAoB,CAAC;IAEzB,IAAI,QAAQ,KAAK,CAAC,IAAI,QAAQ,KAAK,CAAC,EAAE,CAAC;QACrC,MAAM,MAAM,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,eAAe,CAAC,CAAC;QACpE,SAAS,GAAG,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC;IAClC,CAAC;SAAM,IAAI,QAAQ,KAAK,CAAC,EAAE,CAAC;QAC1B,SAAS,GAAG,GAAG,CAAC;IAClB,CAAC;SAAM,IAAI,QAAQ,IAAI,CAAC,EAAE,CAAC;QACzB,SAAS,GAAG,GAAG,CAAC;IAClB,CAAC;SAAM,IAAI,QAAQ,IAAI,EAAE,EAAE,CAAC;QAC1B,SAAS,GAAG,GAAG,CAAC;IAClB,CAAC;SAAM,CAAC;QACN,SAAS,GAAG,GAAG,CAAC;IAClB,CAAC;IAED,2CAA2C;IAC3C,oEAAoE;IACpE,MAAM,aAAa,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE;QACxC,MAAM,QAAQ,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,EAAE,CACjD,CAAC,CAAC,SAAS,CAAC,WAAW,EAAE,KAAK,MAAM,CAAC,WAAW,EAAE,CACnD,CAAC;QACF,IAAI,CAAC,QAAQ;YAAE,OAAO,KAAK,CAAC;QAC5B,IAAI,iBAAiB,CAAC,CAAC,CAAC,EAAE,CAAC;YACzB,OAAO,CAAC,CAAC,WAAW,CAAC,YAAY,KAAK,UAAU,IAAI,CAAC,CAAC,WAAW,CAAC,YAAY,KAAK,MAAM,CAAC;QAC5F,CAAC;QACD,OAAO,IAAI,CAAC,CAAC,8BAA8B;IAC7C,CAAC,CAAC,CAAC;IACH,IAAI,aAAa,IAAI,SAAS,CAAC,SAAS,CAAC,GAAG,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC;QAC3D,SAAS,GAAG,GAAG,CAAC;IAClB,CAAC;IAED,8CAA8C;IAC9C,IAAI,QAAQ,GAAkB,EAAE,CAAC;IACjC,IAAI,SAAS,KAAK,IAAI,IAAI,SAAS,KAAK,GAAG,IAAI,SAAS,KAAK,GAAG,EAAE,CAAC;QACjE,IAAI,QAAQ,KAAK,CAAC,EAAE,CAAC;YACnB,QAAQ,GAAG,GAAG,CAAC;QACjB,CAAC;aAAM,IAAI,QAAQ,IAAI,CAAC,EAAE,CAAC;YACzB,QAAQ,GAAG,GAAG,CAAC;QACjB,CAAC;IACH,CAAC;IAED,MAAM,YAAY,GAAG,CAAC,SAAS,GAAG,QAAQ,CAAU,CAAC;IAErD,iCAAiC;IACjC,MAAM,YAAY,GAAG,IAAI,GAAG,EAAU,CAAC;IACvC,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACzB,IAAI,CAAC,CAAC,SAAS;YAAE,YAAY,CAAC,GAAG,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;IACjD,CAAC;IAED,2BAA2B;IAC3B,MAAM,aAAa,GAAG,kBAAkB,CAAC,QAAQ,CAAC,CAAC;IAEnD,OAAO;QACL,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,KAAK,EAAE,YAAY;QACnB,SAAS;QACT,QAAQ;QACR,QAAQ;QACR,cAAc,EAAE,CAAC,GAAG,YAAY,CAAC;QACjC,OAAO,EAAE;YACP,QAAQ;YACR,QAAQ;YACR,IAAI;YACJ,KAAK,EAAE,QAAQ,CAAC,MAAM;YACtB,YAAY,EAAE,IAAI,CAAC,YAAY;YAC/B,iBAAiB,EAAE,IAAI,CAAC,iBAAiB;SAC1C;QACD,aAAa;KACd,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB,CAAC,QAAuB;IACjD,MAAM,MAAM,GAAG,IAAI,GAAG,EAAyB,CAAC;IAChD,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACzB,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;QACtC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACb,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IAC3B,CAAC;IAED,OAAO,CAAC,GAAG,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,UAAU,CAAC,EAAE,EAAE;QACtD,IAAI,aAAa,GAAG,CAAC,CAAC;QACtB,IAAI,aAAa,GAAG,CAAC,CAAC;QACtB,IAAI,SAAS,GAAG,CAAC,CAAC;QAClB,KAAK,MAAM,CAAC,IAAI,UAAU,EAAE,CAAC;YAC3B,MAAM,MAAM,GAAG,uBAAuB,CAAC,CAAC,CAAC,CAAC;YAC1C,IAAI,MAAM,KAAK,UAAU;gBAAE,aAAa,EAAE,CAAC;iBACtC,IAAI,MAAM,KAAK,UAAU;gBAAE,aAAa,EAAE,CAAC;;gBAC3C,SAAS,EAAE,CAAC;QACnB,CAAC;QACD,OAAO;YACL,IAAI;YACJ,QAAQ,EAAE,UAAU,CAAC,CAAC,CAAC,CAAC,QAAQ;YAChC,QAAQ,EAAE,UAAU;YACpB,aAAa;YACb,aAAa;YACb,SAAS;SACV,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED,6DAA6D;AAC7D,SAAS,SAAS,CAAC,CAAY;IAC7B,OAAO,gBAAgB,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC;AACrC,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,sBAAsB,CACpC,MAAiB,EACjB,SAAoB;IAEpB,OAAO,SAAS,CAAC,MAAM,CAAC,IAAI,SAAS,CAAC,SAAS,CAAC,CAAC;AACnD,CAAC"}

package/dist/scanner/code/matcher.d.ts

@@ -0,0 +1,20 @@
+import type { CodeFinding, Language } from '../../types/index.js';
+/**
+ * Result of matching a file on disk — includes both findings and raw content
+ * so downstream stages (e.g. risk assessor) can inspect surrounding code
+ * without re-reading the file.
+ */
+export interface MatchFileResult {
+    findings: CodeFinding[];
+    content: string;
+}
+/**
+ * Scan a file on disk and return code findings alongside the file content.
+ */
+export declare function matchFile(filePath: string, language: Language): Promise<MatchFileResult>;
+/**
+ * Scan file content (string) against patterns for a given language.
+ * Returns CodeFinding[] with line numbers, confidence, etc.
+ */
+export declare function matchFileContent(content: string, language: Language, fileName: string): CodeFinding[];
+//# sourceMappingURL=matcher.d.ts.map

package/dist/scanner/code/matcher.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"matcher.d.ts","sourceRoot":"","sources":["../../../src/scanner/code/matcher.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,EAAE,WAAW,EAAiB,QAAQ,EAAE,MAAM,sBAAsB,CAAC;AAEjF;;;;GAIG;AACH,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,WAAW,EAAE,CAAC;IACxB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED;;GAEG;AACH,wBAAsB,SAAS,CAC7B,QAAQ,EAAE,MAAM,EAChB,QAAQ,EAAE,QAAQ,GACjB,OAAO,CAAC,eAAe,CAAC,CAK1B;AAED;;;GAGG;AACH,wBAAgB,gBAAgB,CAC9B,OAAO,EAAE,MAAM,EACf,QAAQ,EAAE,QAAQ,EAClB,QAAQ,EAAE,MAAM,GACf,WAAW,EAAE,CA8If"}

package/dist/scanner/code/matcher.js

@@ -0,0 +1,209 @@
+import * as fs from 'node:fs';
+import * as path from 'node:path';
+import { getPatterns } from './patterns/index.js';
+/**
+ * Scan a file on disk and return code findings alongside the file content.
+ */
+export async function matchFile(filePath, language) {
+    const content = await fs.promises.readFile(filePath, 'utf-8');
+    const relativeName = path.basename(filePath);
+    const findings = matchFileContent(content, language, relativeName);
+    return { findings, content };
+}
+/**
+ * Scan file content (string) against patterns for a given language.
+ * Returns CodeFinding[] with line numbers, confidence, etc.
+ */
+export function matchFileContent(content, language, fileName) {
+    const patterns = getPatterns(language);
+    if (patterns.length === 0 || content.length === 0)
+        return [];
+    const lines = content.split('\n');
+    // Phase 1: Pre-scan for imports to determine confidence
+    const importHits = new Set();
+    for (const line of lines) {
+        for (const pattern of patterns) {
+            if (!pattern.importPatterns)
+                continue;
+            if (pattern.importPatterns.some((re) => re.test(line))) {
+                importHits.add(pattern.id);
+            }
+        }
+    }
+    // Phase 2: Line-by-line matching with comment filtering
+    const findings = [];
+    let inBlockComment = false;
+    let blockCommentStyle = null;
+    for (let i = 0; i < lines.length; i++) {
+        const rawLine = lines[i];
+        const trimmed = rawLine.trim();
+        // --- Block comment tracking ---
+        if (inBlockComment) {
+            if (blockCommentStyle === 'c' &&
+                trimmed.includes('*/')) {
+                inBlockComment = false;
+                blockCommentStyle = null;
+            }
+            else if (blockCommentStyle === 'python' &&
+                (trimmed.includes('"""') || trimmed.includes("'''"))) {
+                inBlockComment = false;
+                blockCommentStyle = null;
+            }
+            continue;
+        }
+        // Detect start of block comments
+        if ((language === 'javascript' || language === 'go' || language === 'java') &&
+            trimmed.startsWith('/*')) {
+            if (!trimmed.includes('*/')) {
+                inBlockComment = true;
+                blockCommentStyle = 'c';
+            }
+            continue;
+        }
+        if (language === 'python') {
+            if (trimmed.startsWith('"""') || trimmed.startsWith("'''")) {
+                const opener = trimmed.slice(0, 3);
+                const rest = trimmed.slice(3);
+                if (rest.includes(opener)) {
+                    // Single-line triple-quoted string (e.g., """docstring""") — skip entirely
+                    continue;
+                }
+                else {
+                    // Multi-line docstring start
+                    inBlockComment = true;
+                    blockCommentStyle = 'python';
+                    continue;
+                }
+            }
+        }
+        // Skip single-line comments
+        if (language === 'python' && trimmed.startsWith('#'))
+            continue;
+        if ((language === 'javascript' || language === 'go' || language === 'java') &&
+            trimmed.startsWith('//'))
+            continue;
+        // Skip Java block comment single-line: /** ... */
+        if ((language === 'javascript' || language === 'go' || language === 'java') &&
+            trimmed.startsWith('/*') &&
+            trimmed.includes('*/'))
+            continue;
+        // Strip inline comments for matching
+        const codeLine = stripInlineComment(trimmed, language);
+        // Skip lines that are pure string literals (heuristic)
+        if (isPureStringLiteral(codeLine, language))
+            continue;
+        // Phase 2: Match call patterns
+        for (const pattern of patterns) {
+            if (pattern.callPatterns.some((re) => re.test(codeLine))) {
+                const lineNumber = i + 1; // 1-indexed
+                // Determine confidence
+                let confidence = pattern.confidence;
+                if (pattern.importPatterns && pattern.importPatterns.length > 0) {
+                    confidence = importHits.has(pattern.id) ? 'high' : 'medium';
+                }
+                // Extract key size if extractor defined
+                let keySize;
+                let risk = pattern.risk;
+                if (pattern.keySizeExtractor) {
+                    const match = pattern.keySizeExtractor.exec(codeLine);
+                    if (match) {
+                        // Find first non-undefined capture group
+                        const sizeStr = match.slice(1).find((g) => g !== undefined);
+                        if (sizeStr) {
+                            keySize = parseInt(sizeStr, 10);
+                            if (pattern.keySizeRisk && !isNaN(keySize)) {
+                                risk = pattern.keySizeRisk(keySize);
+                            }
+                        }
+                    }
+                }
+                findings.push({
+                    patternId: pattern.id,
+                    file: fileName,
+                    line: lineNumber,
+                    matchedLine: trimmed,
+                    language,
+                    category: pattern.category,
+                    algorithm: pattern.algorithm,
+                    keySize,
+                    risk,
+                    reason: pattern.description,
+                    migration: pattern.migration,
+                    confidence,
+                });
+                // Don't match the same line against more patterns of the same id
+                break;
+            }
+        }
+    }
+    return findings;
+}
+/**
+ * Strip inline comments from a code line.
+ */
+function stripInlineComment(line, language) {
+    if (language === 'python') {
+        // Simple heuristic: find # not inside quotes
+        return stripAfterChar(line, '#');
+    }
+    if (language === 'javascript' || language === 'go' || language === 'java') {
+        return stripAfterStr(line, '//');
+    }
+    return line;
+}
+function stripAfterChar(line, char) {
+    let inSingle = false;
+    let inDouble = false;
+    for (let i = 0; i < line.length; i++) {
+        const c = line[i];
+        if (c === "'" && !inDouble)
+            inSingle = !inSingle;
+        else if (c === '"' && !inSingle)
+            inDouble = !inDouble;
+        else if (c === char && !inSingle && !inDouble) {
+            return line.slice(0, i).trim();
+        }
+    }
+    return line;
+}
+function stripAfterStr(line, str) {
+    let inSingle = false;
+    let inDouble = false;
+    for (let i = 0; i < line.length; i++) {
+        const c = line[i];
+        if (c === "'" && !inDouble)
+            inSingle = !inSingle;
+        else if (c === '"' && !inSingle)
+            inDouble = !inDouble;
+        else if (!inSingle &&
+            !inDouble &&
+            line.slice(i, i + str.length) === str) {
+            return line.slice(0, i).trim();
+        }
+    }
+    return line;
+}
+/**
+ * Heuristic: detect if a line is a pure string assignment (variable = "...").
+ */
+function isPureStringLiteral(line, language) {
+    if (language === 'python') {
+        // Lines like: message = "Use rsa.generate_private_key() ..."
+        if (/^\w+\s*=\s*["'].*["']\s*$/.test(line))
+            return true;
+        if (/^\w+\s*=\s*['"].*['"]$/.test(line))
+            return true;
+    }
+    if (language === 'javascript' || language === 'java') {
+        // Lines like: const message = "Use ...";
+        if (/^(?:const|let|var|String)\s+\w+\s*=\s*["'`].*["'`]\s*;?\s*$/.test(line))
+            return true;
+    }
+    if (language === 'go') {
+        // Lines like: msg := "rsa.GenerateKey is vulnerable"
+        if (/^\w+\s*:?=\s*".*"\s*$/.test(line))
+            return true;
+    }
+    return false;
+}
+//# sourceMappingURL=matcher.js.map

package/dist/scanner/code/matcher.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"matcher.js","sourceRoot":"","sources":["../../../src/scanner/code/matcher.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,SAAS,CAAC;AAC9B,OAAO,KAAK,IAAI,MAAM,WAAW,CAAC;AAElC,OAAO,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAalD;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAC7B,QAAgB,EAChB,QAAkB;IAElB,MAAM,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAC9D,MAAM,YAAY,GAAG,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAC7C,MAAM,QAAQ,GAAG,gBAAgB,CAAC,OAAO,EAAE,QAAQ,EAAE,YAAY,CAAC,CAAC;IACnE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC;AAC/B,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,gBAAgB,CAC9B,OAAe,EACf,QAAkB,EAClB,QAAgB;IAEhB,MAAM,QAAQ,GAAG,WAAW,CAAC,QAAQ,CAAC,CAAC;IACvC,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,EAAE,CAAC;IAE7D,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAElC,wDAAwD;IACxD,MAAM,UAAU,GAAG,IAAI,GAAG,EAAU,CAAC;IACrC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,IAAI,CAAC,OAAO,CAAC,cAAc;gBAAE,SAAS;YACtC,IAAI,OAAO,CAAC,cAAc,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC;gBACvD,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;YAC7B,CAAC;QACH,CAAC;IACH,CAAC;IAED,wDAAwD;IACxD,MAAM,QAAQ,GAAkB,EAAE,CAAC;IACnC,IAAI,cAAc,GAAG,KAAK,CAAC;IAC3B,IAAI,iBAAiB,GAA0B,IAAI,CAAC;IAEpD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACzB,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;QAE/B,iCAAiC;QACjC,IAAI,cAAc,EAAE,CAAC;YACnB,IACE,iBAAiB,KAAK,GAAG;gBACzB,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,EACtB,CAAC;gBACD,cAAc,GAAG,KAAK,CAAC;gBACvB,iBAAiB,GAAG,IAAI,CAAC;YAC3B,CAAC;iBAAM,IACL,iBAAiB,KAAK,QAAQ;gBAC9B,CAAC,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC,EACpD,CAAC;gBACD,cAAc,GAAG,KAAK,CAAC;gBACvB,iBAAiB,GAAG,IAAI,CAAC;YAC3B,CAAC;YACD,SAAS;QACX,CAAC;QAED,iCAAiC;QACjC,IACE,CAAC,QAAQ,KAAK,YAAY,IAAI,QAAQ,KAAK,IAAI,IAAI,QAAQ,KAAK,MAAM,CAAC;YACvE,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC,EACxB,CAAC;YACD,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC5B,cAAc,GAAG,IAAI,CAAC;gBACtB,iBAAiB,GAAG,GAAG,CAAC;YAC1B,CAAC;YACD,SAAS;QACX,CAAC;QAED,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;YAC1B,IAAI,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,IAAI,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,EAAE,CAAC;gBAC3D,MAAM,MAAM,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;gBACnC,MAAM,IAAI,GAAG,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAC9B,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;oBAC1B,2EAA2E;oBAC3E,SAAS;gBACX,CAAC;qBAAM,CAAC;oBACN,6BAA6B;oBAC7B,cAAc,GAAG,IAAI,CAAC;oBACtB,iBAAiB,GAAG,QAAQ,CAAC;oBAC7B,SAAS;gBACX,CAAC;YACH,CAAC;QACH,CAAC;QAED,4BAA4B;QAC5B,IAAI,QAAQ,KAAK,QAAQ,IAAI,OAAO,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,SAAS;QAC/D,IACE,CAAC,QAAQ,KAAK,YAAY,IAAI,QAAQ,KAAK,IAAI,IAAI,QAAQ,KAAK,MAAM,CAAC;YACvE,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC;YACxB,SAAS;QAEX,kDAAkD;QAClD,IACE,CAAC,QAAQ,KAAK,YAAY,IAAI,QAAQ,KAAK,IAAI,IAAI,QAAQ,KAAK,MAAM,CAAC;YACvE,OAAO,CAAC,UAAU,CAAC,IAAI,CAAC;YACxB,OAAO,CAAC,QAAQ,CAAC,IAAI,CAAC;YACtB,SAAS;QAEX,qCAAqC;QACrC,MAAM,QAAQ,GAAG,kBAAkB,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC;QAEvD,uDAAuD;QACvD,IAAI,mBAAmB,CAAC,QAAQ,EAAE,QAAQ,CAAC;YAAE,SAAS;QAEtD,+BAA+B;QAC/B,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,IAAI,OAAO,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,EAAE,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;gBACzD,MAAM,UAAU,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,YAAY;gBAEtC,uBAAuB;gBACvB,IAAI,UAAU,GAAG,OAAO,CAAC,UAAU,CAAC;gBACpC,IAAI,OAAO,CAAC,cAAc,IAAI,OAAO,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;oBAChE,UAAU,GAAG,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC;gBAC9D,CAAC;gBAED,wCAAwC;gBACxC,IAAI,OAA2B,CAAC;gBAChC,IAAI,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;gBACxB,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;oBAC7B,MAAM,KAAK,GAAG,OAAO,CAAC,gBAAgB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;oBACtD,IAAI,KAAK,EAAE,CAAC;wBACV,yCAAyC;wBACzC,MAAM,OAAO,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,SAAS,CAAC,CAAC;wBAC5D,IAAI,OAAO,EAAE,CAAC;4BACZ,OAAO,GAAG,QAAQ,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;4BAChC,IAAI,OAAO,CAAC,WAAW,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,EAAE,CAAC;gCAC3C,IAAI,GAAG,OAAO,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;4BACtC,CAAC;wBACH,CAAC;oBACH,CAAC;gBACH,CAAC;gBAED,QAAQ,CAAC,IAAI,CAAC;oBACZ,SAAS,EAAE,OAAO,CAAC,EAAE;oBACrB,IAAI,EAAE,QAAQ;oBACd,IAAI,EAAE,UAAU;oBAChB,WAAW,EAAE,OAAO;oBACpB,QAAQ;oBACR,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,OAAO;oBACP,IAAI;oBACJ,MAAM,EAAE,OAAO,CAAC,WAAW;oBAC3B,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,UAAU;iBACX,CAAC,CAAC;gBAEH,iEAAiE;gBACjE,MAAM;YACR,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,SAAS,kBAAkB,CAAC,IAAY,EAAE,QAAkB;IAC1D,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAC1B,6CAA6C;QAC7C,OAAO,cAAc,CAAC,IAAI,EAAE,GAAG,CAAC,CAAC;IACnC,CAAC;IACD,IAAI,QAAQ,KAAK,YAAY,IAAI,QAAQ,KAAK,IAAI,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;QAC1E,OAAO,aAAa,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;IACnC,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,cAAc,CAAC,IAAY,EAAE,IAAY;IAChD,IAAI,QAAQ,GAAG,KAAK,CAAC;IACrB,IAAI,QAAQ,GAAG,KAAK,CAAC;IACrB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACrC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,QAAQ;YAAE,QAAQ,GAAG,CAAC,QAAQ,CAAC;aAC5C,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,QAAQ;YAAE,QAAQ,GAAG,CAAC,QAAQ,CAAC;aACjD,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,QAAQ,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC9C,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QACjC,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,aAAa,CAAC,IAAY,EAAE,GAAW;IAC9C,IAAI,QAAQ,GAAG,KAAK,CAAC;IACrB,IAAI,QAAQ,GAAG,KAAK,CAAC;IACrB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACrC,MAAM,CAAC,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,QAAQ;YAAE,QAAQ,GAAG,CAAC,QAAQ,CAAC;aAC5C,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,QAAQ;YAAE,QAAQ,GAAG,CAAC,QAAQ,CAAC;aACjD,IACH,CAAC,QAAQ;YACT,CAAC,QAAQ;YACT,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,GAAG,EACrC,CAAC;YACD,OAAO,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QACjC,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAAC,IAAY,EAAE,QAAkB;IAC3D,IAAI,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAC1B,6DAA6D;QAC7D,IAAI,2BAA2B,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,OAAO,IAAI,CAAC;QACxD,IAAI,wBAAwB,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,OAAO,IAAI,CAAC;IACvD,CAAC;IACD,IAAI,QAAQ,KAAK,YAAY,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;QACrD,yCAAyC;QACzC,IAAI,6DAA6D,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,OAAO,IAAI,CAAC;IAC5F,CAAC;IACD,IAAI,QAAQ,KAAK,IAAI,EAAE,CAAC;QACtB,qDAAqD;QACrD,IAAI,uBAAuB,CAAC,IAAI,CAAC,IAAI,CAAC;YAAE,OAAO,IAAI,CAAC;IACtD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC"}

package/dist/scanner/code/patterns/go.d.ts

@@ -0,0 +1,3 @@
+import type { CryptoPattern } from '../../../types/index.js';
+export declare const goPatterns: CryptoPattern[];
+//# sourceMappingURL=go.d.ts.map

package/dist/scanner/code/patterns/go.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"go.d.ts","sourceRoot":"","sources":["../../../../src/scanner/code/patterns/go.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,yBAAyB,CAAC;AAE7D,eAAO,MAAM,UAAU,EAAE,aAAa,EAgOrC,CAAC"}