sapper-ai 0.8.1 → 0.9.0

package/dist/auth.d.ts

@@ -3,6 +3,13 @@ export declare function loadOpenAiApiKey(options?: {
     env?: NodeJS.ProcessEnv;
     authPath?: string;
 }): Promise<string | null>;
+export declare function loadOpenAiOrgConfig(options?: {
+    env?: NodeJS.ProcessEnv;
+    authPath?: string;
+}): Promise<{
+    orgId: string | null;
+    projectId: string | null;
+}>;
 export declare function maskApiKey(apiKey: string): string;
 export declare function promptAndSaveOpenAiApiKey(options?: {
     authPath?: string;

package/dist/auth.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAkBA,wBAAgB,WAAW,IAAI,MAAM,CAEpC;AAED,wBAAsB,gBAAgB,CAAC,OAAO,GAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAO,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAkB3H;AAED,wBAAgB,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAIjD;AAED,wBAAsB,yBAAyB,CAAC,OAAO,GAAE;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAAC,IAAI,CAAC,EAAE,MAAM,CAAA;CAAO,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CA2B1H"}
+{"version":3,"file":"auth.d.ts","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAoBA,wBAAgB,WAAW,IAAI,MAAM,CAEpC;AAED,wBAAsB,gBAAgB,CAAC,OAAO,GAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAO,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CAkB3H;AAED,wBAAsB,mBAAmB,CACvC,OAAO,GAAE;IAAE,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,CAAC;IAAC,QAAQ,CAAC,EAAE,MAAM,CAAA;CAAO,GAC3D,OAAO,CAAC;IAAE,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC;IAAC,SAAS,EAAE,MAAM,GAAG,IAAI,CAAA;CAAE,CAAC,CA0B7D;AAED,wBAAgB,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,CAIjD;AAED,wBAAsB,yBAAyB,CAAC,OAAO,GAAE;IAAE,QAAQ,CAAC,EAAE,MAAM,CAAC;IAAC,IAAI,CAAC,EAAE,MAAM,CAAA;CAAO,GAAG,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CA2B1H"}

package/dist/auth.js

@@ -38,6 +38,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.getAuthPath = getAuthPath;
 exports.loadOpenAiApiKey = loadOpenAiApiKey;
+exports.loadOpenAiOrgConfig = loadOpenAiOrgConfig;
 exports.maskApiKey = maskApiKey;
 exports.promptAndSaveOpenAiApiKey = promptAndSaveOpenAiApiKey;
 const node_os_1 = require("node:os");
@@ -69,6 +70,31 @@ async function loadOpenAiApiKey(options = {}) {
         return null;
     }
 }
+async function loadOpenAiOrgConfig(options = {}) {
+    const env = options.env ?? process.env;
+    const orgIdFromEnv = env.OPENAI_ORG_ID;
+    const projectIdFromEnv = env.OPENAI_PROJECT_ID;
+    if (isNonEmptyString(orgIdFromEnv) || isNonEmptyString(projectIdFromEnv)) {
+        return {
+            orgId: isNonEmptyString(orgIdFromEnv) ? orgIdFromEnv.trim() : null,
+            projectId: isNonEmptyString(projectIdFromEnv) ? projectIdFromEnv.trim() : null,
+        };
+    }
+    const authPath = options.authPath ?? getAuthPath();
+    const raw = await (0, fs_1.readFileIfExists)(authPath);
+    if (raw === null)
+        return { orgId: null, projectId: null };
+    try {
+        const parsed = JSON.parse(raw);
+        return {
+            orgId: isNonEmptyString(parsed.openai?.orgId) ? parsed.openai.orgId.trim() : null,
+            projectId: isNonEmptyString(parsed.openai?.projectId) ? parsed.openai.projectId.trim() : null,
+        };
+    }
+    catch {
+        return { orgId: null, projectId: null };
+    }
+}
 function maskApiKey(apiKey) {
     const trimmed = apiKey.trim();
     if (trimmed.length <= 3)

package/dist/cli.js

@@ -989,7 +989,8 @@ function isDirectExecution(argv) {
     if (!entry) {
         return false;
     }
-    return entry.endsWith('/cli.js') || entry.endsWith('\\cli.js') || entry.endsWith('/cli.ts');
+    const base = entry.replace(/\\/g, '/').split('/').pop() ?? '';
+    return base === 'cli.js' || base === 'cli.ts' || base === 'sapper-ai';
 }
 if (isDirectExecution(process.argv)) {
     runCli().then((exitCode) => {

package/dist/scan.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"scan.d.ts","sourceRoot":"","sources":["../src/scan.ts"],"names":[],"mappings":"AAyBA,MAAM,WAAW,WAAW;IAC1B,OAAO,CAAC,EAAE,MAAM,EAAE,CAAA;IAClB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,GAAG,CAAC,EAAE,OAAO,CAAA;IACb,IAAI,CAAC,EAAE,OAAO,CAAA;IACd,MAAM,CAAC,EAAE,OAAO,CAAA;IAChB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,EAAE,CAAC,EAAE,OAAO,CAAA;IACZ,MAAM,CAAC,EAAE,OAAO,CAAA;IAChB,MAAM,CAAC,EAAE,OAAO,CAAA;IAChB,QAAQ,CAAC,EAAE,OAAO,CAAA;IAClB,OAAO,CAAC,EAAE,OAAO,CAAA;CAClB;AAiBD,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,KAAK,CAAA;IACd,SAAS,EAAE,MAAM,CAAA;IACjB,KAAK,EAAE,MAAM,CAAA;IACb,MAAM,EAAE,MAAM,CAAA;IACd,EAAE,EAAE,OAAO,CAAA;IACX,OAAO,EAAE;QACP,cAAc,EAAE,OAAO,CAAA;KACxB,CAAA;IACD,OAAO,EAAE;QACP,UAAU,EAAE,MAAM,CAAA;QAClB,aAAa,EAAE,MAAM,CAAA;QACrB,YAAY,EAAE,MAAM,CAAA;QACpB,YAAY,EAAE,MAAM,CAAA;QACpB,kBAAkB,EAAE,MAAM,CAAA;QAC1B,wBAAwB,EAAE,MAAM,CAAA;QAChC,OAAO,EAAE,MAAM,CAAA;KAChB,CAAA;IACD,QAAQ,EAAE,KAAK,CAAC;QACd,QAAQ,EAAE,MAAM,CAAA;QAChB,IAAI,EAAE,MAAM,CAAA;QACZ,UAAU,EAAE,MAAM,CAAA;QAClB,MAAM,EAAE,MAAM,CAAA;QACd,QAAQ,EAAE,MAAM,EAAE,CAAA;QAClB,OAAO,EAAE,MAAM,EAAE,CAAA;QACjB,OAAO,EAAE,MAAM,CAAA;QACf,SAAS,EAAE,MAAM,EAAE,CAAA;QACnB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAA;QACzB,WAAW,EAAE,KAAK,CAAC;YACjB,KAAK,EAAE,MAAM,CAAA;YACb,QAAQ,EAAE,MAAM,GAAG,QAAQ,CAAA;YAC3B,SAAS,EAAE,MAAM,CAAA;YACjB,OAAO,EAAE,MAAM,CAAA;SAChB,CAAC,CAAA;KACH,CAAC,CAAA;CACH;AA8XD,wBAAsB,OAAO,CAAC,OAAO,GAAE,WAAgB,GAAG,OAAO,CAAC,MAAM,CAAC,CAgSxE"}
+{"version":3,"file":"scan.d.ts","sourceRoot":"","sources":["../src/scan.ts"],"names":[],"mappings":"AAyBA,MAAM,WAAW,WAAW;IAC1B,OAAO,CAAC,EAAE,MAAM,EAAE,CAAA;IAClB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,GAAG,CAAC,EAAE,OAAO,CAAA;IACb,IAAI,CAAC,EAAE,OAAO,CAAA;IACd,MAAM,CAAC,EAAE,OAAO,CAAA;IAChB,UAAU,CAAC,EAAE,MAAM,CAAA;IACnB,EAAE,CAAC,EAAE,OAAO,CAAA;IACZ,MAAM,CAAC,EAAE,OAAO,CAAA;IAChB,MAAM,CAAC,EAAE,OAAO,CAAA;IAChB,QAAQ,CAAC,EAAE,OAAO,CAAA;IAClB,OAAO,CAAC,EAAE,OAAO,CAAA;CAClB;AAiBD,MAAM,WAAW,UAAU;IACzB,OAAO,EAAE,KAAK,CAAA;IACd,SAAS,EAAE,MAAM,CAAA;IACjB,KAAK,EAAE,MAAM,CAAA;IACb,MAAM,EAAE,MAAM,CAAA;IACd,EAAE,EAAE,OAAO,CAAA;IACX,OAAO,EAAE;QACP,cAAc,EAAE,OAAO,CAAA;KACxB,CAAA;IACD,OAAO,EAAE;QACP,UAAU,EAAE,MAAM,CAAA;QAClB,aAAa,EAAE,MAAM,CAAA;QACrB,YAAY,EAAE,MAAM,CAAA;QACpB,YAAY,EAAE,MAAM,CAAA;QACpB,kBAAkB,EAAE,MAAM,CAAA;QAC1B,wBAAwB,EAAE,MAAM,CAAA;QAChC,OAAO,EAAE,MAAM,CAAA;KAChB,CAAA;IACD,QAAQ,EAAE,KAAK,CAAC;QACd,QAAQ,EAAE,MAAM,CAAA;QAChB,IAAI,EAAE,MAAM,CAAA;QACZ,UAAU,EAAE,MAAM,CAAA;QAClB,MAAM,EAAE,MAAM,CAAA;QACd,QAAQ,EAAE,MAAM,EAAE,CAAA;QAClB,OAAO,EAAE,MAAM,EAAE,CAAA;QACjB,OAAO,EAAE,MAAM,CAAA;QACf,SAAS,EAAE,MAAM,EAAE,CAAA;QACnB,UAAU,EAAE,MAAM,GAAG,IAAI,CAAA;QACzB,WAAW,EAAE,KAAK,CAAC;YACjB,KAAK,EAAE,MAAM,CAAA;YACb,QAAQ,EAAE,MAAM,GAAG,QAAQ,CAAA;YAC3B,SAAS,EAAE,MAAM,CAAA;YACjB,OAAO,EAAE,MAAM,CAAA;SAChB,CAAC,CAAA;KACH,CAAC,CAAA;CACH;AA8XD,wBAAsB,OAAO,CAAC,OAAO,GAAE,WAAgB,GAAG,OAAO,CAAC,MAAM,CAAC,CAuSxE"}

package/dist/scan.js

@@ -376,7 +376,14 @@ async function runScan(options = {}) {
             console.log(`${colors.dim}  Key saved to ${displayAuthPath}${colors.reset}`);
             console.log();
         }
-        llmConfig = { provider: 'openai', apiKey, model: 'gpt-4.1-mini' };
+        const { orgId, projectId } = await (0, auth_1.loadOpenAiOrgConfig)();
+        llmConfig = {
+            provider: 'openai',
+            apiKey,
+            model: 'gpt-4.1-mini',
+            ...(orgId ? { orgId } : {}),
+            ...(projectId ? { projectId } : {}),
+        };
     }
     const deep = options.system ? true : options.deep !== false;
     const targets = options.system === true

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "sapper-ai",
-  "version": "0.8.1",
+  "version": "0.9.0",
   "description": "AI security guardrails - single install, sensible defaults",
   "keywords": [
     "security",
@@ -45,9 +45,9 @@
   "dependencies": {
     "@inquirer/password": "^4.0.0",
     "@inquirer/select": "^4.0.0",
-    "@sapper-ai/core": "0.3.0",
-    "@sapper-ai/types": "0.3.0",
-    "@sapper-ai/mcp": "0.3.2"
+    "@sapper-ai/core": "0.4.0",
+    "@sapper-ai/mcp": "0.3.3",
+    "@sapper-ai/types": "0.4.0"
   },
   "devDependencies": {
     "@types/node": "^20.0.0",