project-shield 1.0.0

package/README.md

@@ -0,0 +1,440 @@
+# Project Shield
+
+**Security scanner for AI coders and MCP users.**
+
+Detects leaked API keys, PII, insecure MCP configs, and prompt injection — in one command.
+
+```bash
+npx project-shield scan ./my-project
+```
+
+```
+Project Shield v1.0.0
+Ruleset: v1.0.0 (SHA-256: f408a4fd...)
+Scanning: 47 files (3 excluded)
+
+━━━ Secrets ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
+  CRITICAL  src/config.ts:12
+   AWS Access Key detected (AKIA****)
+   Layers: regex ✓ entropy ✓ context ✓
+
+━━━ PII ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
+  CONFIRMED  data/users.csv:5
+   Korean Resident Registration Number detected (900*****)
+   Layers: regex ✓ checksum ✓
+
+━━━ MCP Config ━━━━━━━━━━━━━━━━━━━━━━━━━━━
+  CRITICAL  mcp.json  (3/5 failed)
+   ✗ Auth: No authentication configured
+   ✗ Secrets: Hardcoded API key found
+   ✓ Tool Meta: OK
+   ✗ Permissions: Root filesystem access
+   ✓ Logging: OK
+
+━━━ Injection ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
+  CRITICAL  prompts/system.txt:3
+   Hidden injection in comment (Direct instruction override attempt) [structural]
+   Pattern: inj_ignore_prev  |  Layers: keyword ✓ structure ✓
+
+━━━ Score ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
+  Grade: F (0/100) — Locked
+  Badge generation LOCKED — Fix all critical findings first.
+```
+
+---
+
+## Why Project Shield?
+
+| Problem | Project Shield |
+|---------|---------------|
+| API key leaked in commit | 3-layer detection (regex + entropy + context) |
+| PII in test data | Korean RRN checksum validation, credit card Luhn check |
+| MCP config wide open | 5-point check (auth, secrets, tools, permissions, logging) |
+| Prompt injection in tool descriptions | 2-layer detection (keyword + structural analysis) |
+| "What do I fix first?" | Fix-it guides with code examples |
+| Compliance evidence needed | PDF + JSON evidence pack |
+
+---
+
+## Install
+
+```bash
+# Global
+npm install -g project-shield
+
+# npx (no install)
+npx project-shield scan ./my-project
+
+# Dev dependency
+npm install -D project-shield
+```
+
+---
+
+## Usage
+
+### Basic scan
+
+```bash
+project-shield scan ./my-project
+```
+
+### JSON output
+
+```bash
+project-shield scan ./my-project --format json
+```
+
+### Fix-it guides
+
+```bash
+# Free: top 3 guides (summary only)
+project-shield scan ./my-project --fix
+
+# Pro: all guides with code examples + references
+project-shield scan ./my-project --fix --pro
+```
+
+### Evidence pack (JSON + PDF)
+
+```bash
+project-shield scan ./my-project --evidence ./report
+# Creates: report.json + report.pdf
+```
+
+### Badge generation
+
+```bash
+# Free badge (with watermark)
+project-shield scan ./my-project --badge shield-badge.svg
+
+# Pro badge (no watermark)
+project-shield scan ./my-project --badge shield-badge.svg --pro
+```
+
+### Custom ignore
+
+```bash
+project-shield scan ./my-project --ignore .shieldignore
+```
+
+### All options
+
+```
+project-shield scan <path>
+  -f, --format <format>    Output format: terminal | json (default: terminal)
+  -i, --ignore <path>      Path to .shieldignore file
+  -r, --ruleset <path>     Path to custom ruleset JSON
+  -b, --badge <path>       Output path for SVG badge
+  --pro                    Pro mode (no watermark, full fix-it guides)
+  --fix                    Show fix-it remediation guides
+  --evidence <path>        Output path for evidence pack (JSON + PDF)
+```
+
+---
+
+## What It Detects
+
+### F001: Secrets (3-layer detection)
+
+| Layer | Method | Example |
+|-------|--------|---------|
+| Regex | Pattern matching | `AKIA...`, `sk_live_...`, `ghp_...` |
+| Entropy | Shannon entropy > 4.5 | High-randomness strings in secret context |
+| Context | Variable name analysis | `API_KEY=`, `secret:`, `.env` files |
+
+**10 built-in patterns**: AWS, Stripe, OpenAI, GitHub PAT/OAuth, Slack, Google, Private Keys + high-entropy catch-all.
+
+**Severity rules**:
+- 2+ layers hit = **critical**
+- 1 layer hit = **warning**
+- Pattern override (e.g., `sk_live_` always critical)
+
+### F002: MCP Config (5-point check)
+
+| Check | What | Critical When |
+|-------|------|---------------|
+| Auth | Authentication configured? | No auth field found |
+| Secrets | Hardcoded keys in config? | Literal API key (not `${ENV_VAR}`) |
+| Tool Meta | Dangerous tool keywords? | `exec`, `eval`, `shell`, `rm` in tools |
+| Permissions | Overly broad access? | Root `/`, wildcard `*`, `--privileged` |
+| Logging | Audit logging enabled? | No logging/audit field |
+
+### F003: Prompt Injection (2-layer detection)
+
+| Layer | Method | Example |
+|-------|--------|---------|
+| Keyword | 11 patterns (6 direct + 5 indirect) | "ignore previous instructions", "secretly" |
+| Structure | Comment hiding, zero-width chars, tool length | `<!-- inject -->`, `\u200B` |
+
+**Cross-judgment**:
+- Keyword + Structure = **critical**
+- Keyword only = **warning**
+- Structure only (with hidden keyword) = **critical**
+- Encoded bypass (Base64/URL) = **automatic critical**
+
+### F004: PII (2-layer detection)
+
+| Pattern | Locale | Checksum |
+|---------|--------|----------|
+| Korean RRN (주민등록번호) | KR | Yes |
+| Korean Phone | KR | No |
+| Korean Business Number | KR | Yes |
+| Korean Passport | KR | No |
+| Email | Global | No |
+| US SSN | Global | No |
+| Credit Card | Global | Luhn |
+
+### F005: Scoring (0-100)
+
+| Grade | Score | Status |
+|-------|-------|--------|
+| A | 90-100 | Excellent |
+| B | 75-89 | Good |
+| C | 60-74 | Pass |
+| D | 40-59 | Warning |
+| E | 20-39 | Warning |
+| F | 0-19 | Locked |
+
+**Any critical finding = automatic F + badge locked.**
+
+Deductions: critical -25, warning -10, possible -5, info -2.
+
+---
+
+## Inline Suppression
+
+Add `shield-ignore` to suppress a specific line:
+
+```javascript
+const API_KEY = "sk_test_abc123"; // shield-ignore
+```
+
+```python
+API_KEY = "sk_test_abc123"  # shield-ignore
+```
+
+Or use `.shieldignore` (gitignore syntax):
+
+```
+# .shieldignore
+tests/fixtures/
+*.test.ts
+docs/examples/
+```
+
+---
+
+## Evidence Pack
+
+The `--evidence` flag generates a compliance-ready report:
+
+**JSON** (`report.json`):
+- Full findings (secrets, PII, MCP, injection)
+- Score + lock status
+- Fix-it summary
+- Integrity hashes (result SHA-256 + ruleset SHA-256)
+- Disclaimer
+
+**PDF** (`report.pdf`):
+- Cover page with grade
+- Executive summary
+- Findings detail by category
+- Integrity verification
+- Disclaimer
+
+---
+
+## CI Integration
+
+```yaml
+# GitHub Actions
+- name: Security Scan
+  run: npx project-shield scan . --format json
+  # Exit code 1 if any critical finding
+```
+
+```yaml
+# With badge
+- name: Security Scan + Badge
+  run: |
+    npx project-shield scan . --badge shield-badge.svg
+    # Commit badge to repo
+```
+
+---
+
+## Architecture
+
+```
+src/
+  index.ts              CLI entry (commander)
+  types/index.ts        All TypeScript interfaces
+  scanner/
+    engine.ts           Scan orchestrator (glob, binary skip, ignore)
+    secrets.ts          3-layer secret detection
+    pii.ts              2-layer PII detection
+    mcp.ts              5-point MCP config check
+    injection.ts        2-layer injection detection
+    ignore.ts           shield-ignore + .shieldignore
+  scoring/
+    score.ts            0-100 scoring + A-F grading
+    lock.ts             Badge lock logic
+  integrity/
+    ruleset.ts          Ruleset loader + SHA-256 verification
+    failsafe.ts         Crash = fail, no ruleset = reject
+    seal.ts             Result hash sealing (SHA-256 + UUID)
+  output/
+    terminal.ts         Terminal + JSON formatter
+    badge.ts            SVG badge generator (shields.io style)
+    fixit.ts            10-type fix-it guide system
+    evidence.ts         Evidence pack (JSON + PDF)
+rules/
+  v1.0.0.json           Ruleset (secrets + PII + MCP + injection patterns)
+```
+
+---
+
+## Integrity
+
+- Ruleset is SHA-256 verified on every load. Tampered ruleset = scan rejected.
+- Scan results are hash-sealed. Same input = same hash.
+- Fail-safe: crash during scan = `SCAN_FAILED` (never false PASS).
+
+---
+
+## License
+
+MIT
+
+---
+
+<p align="center">
+<sub>Built for developers who ship AI-powered apps and want to sleep at night.</sub>
+</p>
+
+---
+
+# Project Shield (한국어)
+
+**AI 코더/MCP 사용자를 위한 보안 스캐너 CLI.**
+
+API 키 유출, 개인정보, MCP 설정 보안 취약점, 프롬프트 인젝션을 한 번에 탐지합니다.
+
+```bash
+npx project-shield scan ./my-project
+```
+
+---
+
+## 왜 Project Shield?
+
+| 문제 | Project Shield |
+|------|---------------|
+| 커밋에서 API 키 유출 | 3중 탐지 (정규식 + 엔트로피 + 컨텍스트) |
+| 테스트 데이터에서 개인정보 노출 | 주민등록번호 체크섬 검증, 신용카드 Luhn 검증 |
+| MCP 설정 보안 허점 | 5항목 점검 (인증, 시크릿, 툴, 권한, 로깅) |
+| 툴 설명에 숨겨진 프롬프트 인젝션 | 2중 탐지 (키워드 + 구조 분석) |
+| "뭐부터 고쳐야 하지?" | Fix-it 가이드 (코드 예제 포함) |
+| 컴플라이언스 증빙 필요 | PDF + JSON Evidence Pack |
+
+---
+
+## 설치
+
+```bash
+# 글로벌
+npm install -g project-shield
+
+# npx (설치 없이)
+npx project-shield scan ./my-project
+```
+
+---
+
+## 사용법
+
+### 기본 스캔
+
+```bash
+project-shield scan ./my-project
+```
+
+### Fix-it 가이드 포함
+
+```bash
+# Free: 상위 3개 (요약만)
+project-shield scan ./my-project --fix
+
+# Pro: 전체 가이드 + 코드 예제 + 참조
+project-shield scan ./my-project --fix --pro
+```
+
+### Evidence Pack (JSON + PDF)
+
+```bash
+project-shield scan ./my-project --evidence ./report
+# 생성: report.json + report.pdf
+```
+
+### 뱃지 생성
+
+```bash
+project-shield scan ./my-project --badge shield-badge.svg
+```
+
+---
+
+## 탐지 항목
+
+### F001: 시크릿(Secret) 탐지
+
+3중 탐지: 정규식 매칭 + 섀넌 엔트로피 + 컨텍스트 분석 (변수명, `.env` 파일 등)
+
+10종 패턴: AWS, Stripe, OpenAI, GitHub PAT/OAuth, Slack, Google, Private Key
+
+### F002: MCP 설정 점검
+
+5항목 점검: 인증(auth), 시크릿(secrets), 툴(tools), 권한(permissions), 로깅(logging)
+
+### F003: 프롬프트 인젝션 탐지
+
+2중 탐지: 키워드 매칭 (11종 패턴) + 구조 분석 (HTML 주석, zero-width 유니코드, 툴 설명 길이)
+
+Base64/URL 인코딩된 우회 시도 감지 시 **자동 critical**
+
+### F004: PII 탐지
+
+주민등록번호 (체크섬 검증), 전화번호, 사업자등록번호, 여권번호, 이메일, US SSN, 신용카드 (Luhn 검증)
+
+### F005: 스코어
+
+0-100점 방식, A-F 등급. **Critical 발견이 1개라도 있으면 자동 F + 뱃지 잠금.**
+
+### F006: Fix-it 가이드
+
+10종 맞춤형 가이드: AWS 키 로테이션, Stripe 키 로테이션, Private Key 제거, RRN 마스킹, 신용카드 제거, MCP 설정 수정 3종, 프롬프트 인젝션 제거
+
+### F007: Evidence Pack
+
+JSON + PDF. 점수, 등급, 발견, 수정 가이드, 무결성 해시, 면책조항 포함.
+
+---
+
+## 라인 무시 (shield-ignore)
+
+```javascript
+const key = "sk_test_abc"; // shield-ignore
+```
+
+`.shieldignore` 파일:
+```
+tests/fixtures/
+*.test.ts
+```
+
+---
+
+## 라이선스
+
+MIT

package/dist/index.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":""}

package/dist/index.js

@@ -0,0 +1,151 @@
+#!/usr/bin/env node
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+const commander_1 = require("commander");
+const path = __importStar(require("node:path"));
+const engine_js_1 = require("./scanner/engine.js");
+const ruleset_js_1 = require("./integrity/ruleset.js");
+const score_js_1 = require("./scoring/score.js");
+const lock_js_1 = require("./scoring/lock.js");
+const seal_js_1 = require("./integrity/seal.js");
+const badge_js_1 = require("./output/badge.js");
+const terminal_js_1 = require("./output/terminal.js");
+const fixit_js_1 = require("./output/fixit.js");
+const evidence_js_1 = require("./output/evidence.js");
+const failsafe_js_1 = require("./integrity/failsafe.js");
+const program = new commander_1.Command();
+program
+    .name('project-shield')
+    .description('Security scanner for AI coders and MCP users')
+    .version('1.0.0');
+program
+    .command('scan')
+    .description('Scan a directory for secrets, PII, and MCP config issues')
+    .argument('<path>', 'Path to scan')
+    .option('-f, --format <format>', 'Output format (terminal or json)', 'terminal')
+    .option('-i, --ignore <path>', 'Path to .shieldignore file')
+    .option('-r, --ruleset <path>', 'Path to ruleset JSON file')
+    .option('-b, --badge <path>', 'Output path for SVG badge', '')
+    .option('--pro', 'Generate Pro badge (no watermark)', false)
+    .option('--fix', 'Show fix-it remediation guides', false)
+    .option('--evidence <path>', 'Output path for evidence pack (JSON + PDF)')
+    .action(async (targetPath, options) => {
+    try {
+        const resolvedPath = path.resolve(targetPath);
+        const format = options.format;
+        // Load ruleset info for display
+        const ruleset = (0, ruleset_js_1.loadRuleset)(options.ruleset);
+        const result = await (0, engine_js_1.scan)({
+            targetPath: resolvedPath,
+            format,
+            ignorePath: options.ignore,
+            rulesetPath: options.ruleset,
+        });
+        // Calculate score and lock status
+        const score = (0, score_js_1.calculateScore)(result);
+        const lockStatus = (0, lock_js_1.getLockStatus)(score);
+        const seal = (0, seal_js_1.sealResult)(result, score, ruleset.version, { isPro: options.pro });
+        if (format === 'json') {
+            const jsonObj = JSON.parse((0, terminal_js_1.formatJsonOutput)(result, score, seal));
+            if (options.fix) {
+                const guides = (0, fixit_js_1.getFixitGuides)(result, { isPro: options.pro });
+                jsonObj.fixit = (0, fixit_js_1.formatFixitJson)(guides, options.pro);
+            }
+            console.log(JSON.stringify(jsonObj, null, 2));
+        }
+        else {
+            console.log((0, terminal_js_1.formatTerminalOutput)(result, ruleset.version, ruleset.sha256, score, lockStatus));
+            if (options.fix) {
+                const guides = (0, fixit_js_1.getFixitGuides)(result, { isPro: options.pro });
+                console.log((0, fixit_js_1.formatFixitTerminal)(guides, options.pro));
+            }
+        }
+        // Evidence Pack generation
+        if (options.evidence) {
+            const evidencePath = path.resolve(options.evidence);
+            const pack = (0, evidence_js_1.generateEvidenceJSON)(result, score, lockStatus, seal, {
+                scanTarget: resolvedPath,
+                rulesetHash: ruleset.sha256,
+                rulesetVersion: ruleset.version,
+            });
+            (0, evidence_js_1.saveEvidenceJSON)(pack, `${evidencePath}.json`);
+            console.log(`Evidence JSON saved to: ${evidencePath}.json`);
+            await (0, evidence_js_1.generateEvidencePDF)(pack, `${evidencePath}.pdf`);
+            console.log(`Evidence PDF saved to: ${evidencePath}.pdf`);
+        }
+        // Badge generation
+        if (options.badge) {
+            try {
+                const svg = (0, badge_js_1.generateBadge)(score, lockStatus, { isPro: options.pro });
+                const badgePath = path.resolve(options.badge);
+                (0, badge_js_1.saveBadge)(svg, badgePath);
+                console.log(`Badge saved to: ${badgePath}`);
+            }
+            catch (error) {
+                if (error instanceof badge_js_1.BadgeLockedError) {
+                    console.error(`Error: ${error.message}`);
+                }
+                else {
+                    throw error;
+                }
+            }
+        }
+        // Exit with code 1 if critical findings
+        const hasCritical = result.summary.critical > 0 ||
+            result.summary.confirmedPii > 0 ||
+            result.summary.mcpCritical > 0 ||
+            result.summary.injectionCritical > 0;
+        process.exit(hasCritical ? 1 : 0);
+    }
+    catch (error) {
+        if (error instanceof failsafe_js_1.RulesetNotFoundError) {
+            console.error(`Error: ${error.message}`);
+            process.exit(1);
+        }
+        if (error instanceof failsafe_js_1.RulesetIntegrityError) {
+            console.error(`Error: ${error.message}`);
+            process.exit(1);
+        }
+        if (error instanceof failsafe_js_1.ScanFailedError) {
+            console.error(`Error: ${error.message}`);
+            process.exit(1);
+        }
+        console.error('SCAN_FAILED:', error instanceof Error ? error.message : String(error));
+        process.exit(1);
+    }
+});
+program.parse();
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEA,yCAAoC;AACpC,gDAAkC;AAClC,mDAA2C;AAC3C,uDAAqD;AACrD,iDAAoD;AACpD,+CAAkD;AAClD,iDAAiD;AACjD,gDAA+E;AAC/E,sDAA8E;AAC9E,gDAAyF;AACzF,sDAAmG;AACnG,yDAIiC;AAEjC,MAAM,OAAO,GAAG,IAAI,mBAAO,EAAE,CAAC;AAE9B,OAAO;KACJ,IAAI,CAAC,gBAAgB,CAAC;KACtB,WAAW,CAAC,8CAA8C,CAAC;KAC3D,OAAO,CAAC,OAAO,CAAC,CAAC;AAEpB,OAAO;KACJ,OAAO,CAAC,MAAM,CAAC;KACf,WAAW,CAAC,0DAA0D,CAAC;KACvE,QAAQ,CAAC,QAAQ,EAAE,cAAc,CAAC;KAClC,MAAM,CAAC,uBAAuB,EAAE,kCAAkC,EAAE,UAAU,CAAC;KAC/E,MAAM,CAAC,qBAAqB,EAAE,4BAA4B,CAAC;KAC3D,MAAM,CAAC,sBAAsB,EAAE,2BAA2B,CAAC;KAC3D,MAAM,CAAC,oBAAoB,EAAE,2BAA2B,EAAE,EAAE,CAAC;KAC7D,MAAM,CAAC,OAAO,EAAE,mCAAmC,EAAE,KAAK,CAAC;KAC3D,MAAM,CAAC,OAAO,EAAE,gCAAgC,EAAE,KAAK,CAAC;KACxD,MAAM,CAAC,mBAAmB,EAAE,4CAA4C,CAAC;KACzE,MAAM,CAAC,KAAK,EAAE,UAAkB,EAAE,OAQlC,EAAE,EAAE;IACH,IAAI,CAAC;QACH,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;QAC9C,MAAM,MAAM,GAAG,OAAO,CAAC,MAA6B,CAAC;QAErD,gCAAgC;QAChC,MAAM,OAAO,GAAG,IAAA,wBAAW,EAAC,OAAO,CAAC,OAAO,CAAC,CAAC;QAE7C,MAAM,MAAM,GAAG,MAAM,IAAA,gBAAI,EAAC;YACxB,UAAU,EAAE,YAAY;YACxB,MAAM;YACN,UAAU,EAAE,OAAO,CAAC,MAAM;YAC1B,WAAW,EAAE,OAAO,CAAC,OAAO;SAC7B,CAAC,CAAC;QAEH,kCAAkC;QAClC,MAAM,KAAK,GAAG,IAAA,yBAAc,EAAC,MAAM,CAAC,CAAC;QACrC,MAAM,UAAU,GAAG,IAAA,uBAAa,EAAC,KAAK,CAAC,CAAC;QACxC,MAAM,IAAI,GAAG,IAAA,oBAAU,EAAC,MAAM,EAAE,KAAK,EAAE,OAAO,CAAC,OAAO,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;QAEhF,IAAI,MAAM,KAAK,MAAM,EAAE,CAAC;YACtB,MAAM,OAAO,GAA4B,IAAI,CAAC,KAAK,CAAC,IAAA,8BAAgB,EAAC,MAAM,EAAE,KAAK,EAAE,IAAI,CAAC,CAAC,CAAC;YAC3F,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;gBAChB,MAAM,MAAM,GAAG,IAAA,yBAAc,EAAC,MAAM,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;gBAC9D,OAAO,CAAC,KAAK,GAAG,IAAA,0BAAe,EAAC,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC;YACvD,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAChD,CAAC;aAAM,CAAC;YACN,OAAO,CAAC,GAAG,CAAC,IAAA,kCAAoB,EAAC,MAAM,EAAE,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,MAAM,EAAE,KAAK,EAAE,UAAU,CAAC,CAAC,CAAC;YAC9F,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;gBAChB,MAAM,MAAM,GAAG,IAAA,yBAAc,EAAC,MAAM,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;gBAC9D,OAAO,CAAC,GAAG,CAAC,IAAA,8BAAmB,EAAC,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC;YACxD,CAAC;QACH,CAAC;QAED,2BAA2B;QAC3B,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;YACrB,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;YACpD,MAAM,IAAI,GAAG,IAAA,kCAAoB,EAAC,MAAM,EAAE,KAAK,EAAE,UAAU,EAAE,IAAI,EAAE;gBACjE,UAAU,EAAE,YAAY;gBACxB,WAAW,EAAE,OAAO,CAAC,MAAM;gBAC3B,cAAc,EAAE,OAAO,CAAC,OAAO;aAChC,CAAC,CAAC;YACH,IAAA,8BAAgB,EAAC,IAAI,EAAE,GAAG,YAAY,OAAO,CAAC,CAAC;YAC/C,OAAO,CAAC,GAAG,CAAC,2BAA2B,YAAY,OAAO,CAAC,CAAC;YAC5D,MAAM,IAAA,iCAAmB,EAAC,IAAI,EAAE,GAAG,YAAY,MAAM,CAAC,CAAC;YACvD,OAAO,CAAC,GAAG,CAAC,0BAA0B,YAAY,MAAM,CAAC,CAAC;QAC5D,CAAC;QAED,mBAAmB;QACnB,IAAI,OAAO,CAAC,KAAK,EAAE,CAAC;YAClB,IAAI,CAAC;gBACH,MAAM,GAAG,GAAG,IAAA,wBAAa,EAAC,KAAK,EAAE,UAAU,EAAE,EAAE,KAAK,EAAE,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;gBACrE,MAAM,SAAS,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC;gBAC9C,IAAA,oBAAS,EAAC,GAAG,EAAE,SAAS,CAAC,CAAC;gBAC1B,OAAO,CAAC,GAAG,CAAC,mBAAmB,SAAS,EAAE,CAAC,CAAC;YAC9C,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,IAAI,KAAK,YAAY,2BAAgB,EAAE,CAAC;oBACtC,OAAO,CAAC,KAAK,CAAC,UAAU,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;gBAC3C,CAAC;qBAAM,CAAC;oBACN,MAAM,KAAK,CAAC;gBACd,CAAC;YACH,CAAC;QACH,CAAC;QAED,wCAAwC;QACxC,MAAM,WAAW,GACf,MAAM,CAAC,OAAO,CAAC,QAAQ,GAAG,CAAC;YAC3B,MAAM,CAAC,OAAO,CAAC,YAAY,GAAG,CAAC;YAC/B,MAAM,CAAC,OAAO,CAAC,WAAW,GAAG,CAAC;YAC9B,MAAM,CAAC,OAAO,CAAC,iBAAiB,GAAG,CAAC,CAAC;QACvC,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACpC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IAAI,KAAK,YAAY,kCAAoB,EAAE,CAAC;YAC1C,OAAO,CAAC,KAAK,CAAC,UAAU,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;YACzC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QACD,IAAI,KAAK,YAAY,mCAAqB,EAAE,CAAC;YAC3C,OAAO,CAAC,KAAK,CAAC,UAAU,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;YACzC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QACD,IAAI,KAAK,YAAY,6BAAe,EAAE,CAAC;YACrC,OAAO,CAAC,KAAK,CAAC,UAAU,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;YACzC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QACD,OAAO,CAAC,KAAK,CAAC,cAAc,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;QACtF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC;AAEL,OAAO,CAAC,KAAK,EAAE,CAAC"}

package/dist/integrity/failsafe.d.ts

@@ -0,0 +1,17 @@
+import type { ScanResult } from '../types/index.js';
+export declare class ScanFailedError extends Error {
+    constructor(message: string);
+}
+export declare class RulesetNotFoundError extends Error {
+    constructor(path: string);
+}
+export declare class RulesetIntegrityError extends Error {
+    constructor();
+}
+/**
+ * Wraps a scan operation with fail-safe logic.
+ * - On crash → ScanFailedError (never returns PASS)
+ * - Empty result → never claims "safe"
+ */
+export declare function withFailsafe(scanFn: () => Promise<ScanResult>): Promise<ScanResult>;
+//# sourceMappingURL=failsafe.d.ts.map

package/dist/integrity/failsafe.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"failsafe.d.ts","sourceRoot":"","sources":["../../src/integrity/failsafe.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AAEpD,qBAAa,eAAgB,SAAQ,KAAK;gBAC5B,OAAO,EAAE,MAAM;CAI5B;AAED,qBAAa,oBAAqB,SAAQ,KAAK;gBACjC,IAAI,EAAE,MAAM;CAIzB;AAED,qBAAa,qBAAsB,SAAQ,KAAK;;CAK/C;AAED;;;;GAIG;AACH,wBAAsB,YAAY,CAChC,MAAM,EAAE,MAAM,OAAO,CAAC,UAAU,CAAC,GAChC,OAAO,CAAC,UAAU,CAAC,CAcrB"}

package/dist/integrity/failsafe.js

@@ -0,0 +1,45 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RulesetIntegrityError = exports.RulesetNotFoundError = exports.ScanFailedError = void 0;
+exports.withFailsafe = withFailsafe;
+class ScanFailedError extends Error {
+    constructor(message) {
+        super(message);
+        this.name = 'ScanFailedError';
+    }
+}
+exports.ScanFailedError = ScanFailedError;
+class RulesetNotFoundError extends Error {
+    constructor(path) {
+        super(`Ruleset not found: ${path}`);
+        this.name = 'RulesetNotFoundError';
+    }
+}
+exports.RulesetNotFoundError = RulesetNotFoundError;
+class RulesetIntegrityError extends Error {
+    constructor() {
+        super('Ruleset integrity check failed');
+        this.name = 'RulesetIntegrityError';
+    }
+}
+exports.RulesetIntegrityError = RulesetIntegrityError;
+/**
+ * Wraps a scan operation with fail-safe logic.
+ * - On crash → ScanFailedError (never returns PASS)
+ * - Empty result → never claims "safe"
+ */
+async function withFailsafe(scanFn) {
+    try {
+        const result = await scanFn();
+        return result;
+    }
+    catch (error) {
+        if (error instanceof RulesetNotFoundError ||
+            error instanceof RulesetIntegrityError) {
+            throw error;
+        }
+        const message = error instanceof Error ? error.message : String(error);
+        throw new ScanFailedError(`SCAN_FAILED: ${message}`);
+    }
+}
+//# sourceMappingURL=failsafe.js.map

package/dist/integrity/failsafe.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"failsafe.js","sourceRoot":"","sources":["../../src/integrity/failsafe.ts"],"names":[],"mappings":";;;AA4BA,oCAgBC;AA1CD,MAAa,eAAgB,SAAQ,KAAK;IACxC,YAAY,OAAe;QACzB,KAAK,CAAC,OAAO,CAAC,CAAC;QACf,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAC;IAChC,CAAC;CACF;AALD,0CAKC;AAED,MAAa,oBAAqB,SAAQ,KAAK;IAC7C,YAAY,IAAY;QACtB,KAAK,CAAC,sBAAsB,IAAI,EAAE,CAAC,CAAC;QACpC,IAAI,CAAC,IAAI,GAAG,sBAAsB,CAAC;IACrC,CAAC;CACF;AALD,oDAKC;AAED,MAAa,qBAAsB,SAAQ,KAAK;IAC9C;QACE,KAAK,CAAC,gCAAgC,CAAC,CAAC;QACxC,IAAI,CAAC,IAAI,GAAG,uBAAuB,CAAC;IACtC,CAAC;CACF;AALD,sDAKC;AAED;;;;GAIG;AACI,KAAK,UAAU,YAAY,CAChC,MAAiC;IAEjC,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,MAAM,EAAE,CAAC;QAC9B,OAAO,MAAM,CAAC;IAChB,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,IACE,KAAK,YAAY,oBAAoB;YACrC,KAAK,YAAY,qBAAqB,EACtC,CAAC;YACD,MAAM,KAAK,CAAC;QACd,CAAC;QACD,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACvE,MAAM,IAAI,eAAe,CAAC,gBAAgB,OAAO,EAAE,CAAC,CAAC;IACvD,CAAC;AACH,CAAC"}

package/dist/integrity/ruleset.d.ts

@@ -0,0 +1,12 @@
+import type { Ruleset } from '../types/index.js';
+/**
+ * Compute SHA-256 hash of the ruleset content (excluding the sha256 field itself).
+ */
+export declare function computeRulesetHash(content: string): string;
+/**
+ * Load and verify a ruleset file.
+ * Throws RulesetNotFoundError if file doesn't exist.
+ * Throws RulesetIntegrityError if hash doesn't match.
+ */
+export declare function loadRuleset(rulesetPath?: string): Ruleset;
+//# sourceMappingURL=ruleset.d.ts.map

package/dist/integrity/ruleset.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ruleset.d.ts","sourceRoot":"","sources":["../../src/integrity/ruleset.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,OAAO,EAAE,MAAM,mBAAmB,CAAC;AAGjD;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAM1D;AAED;;;;GAIG;AACH,wBAAgB,WAAW,CAAC,WAAW,CAAC,EAAE,MAAM,GAAG,OAAO,CAwBzD"}