secure-scan 1.2.2

package/dist/cli/index.js

@@ -0,0 +1,281 @@
+#!/usr/bin/env node
+"use strict";
+/**
+ * Secure-Scan CLI
+ * Herramienta de Análisis Estático de Seguridad de Aplicaciones
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+const commander_1 = require("commander");
+const chalk_1 = __importDefault(require("chalk"));
+const ora_1 = __importDefault(require("ora"));
+const path = __importStar(require("path"));
+const fs = __importStar(require("fs"));
+const securityScanner_1 = require("../analyzers/core/securityScanner");
+const types_1 = require("../types");
+const logger_1 = require("../utils/logger");
+// Información del paquete
+const packageJson = require('../../package.json');
+// Crear programa CLI
+const program = new commander_1.Command();
+program
+    .name('secure-scan')
+    .version(packageJson.version)
+    .description(chalk_1.default.cyan('🔐 Secure-Scan - Herramienta de Análisis Estático de Seguridad'));
+/**
+ * Scan command
+ */
+program
+    .command('scan <path>')
+    .description('Escanear un proyecto en busca de vulnerabilidades y código malicioso')
+    .option('-o, --output <file>', 'Ruta del archivo de reporte (HTML o JSON)')
+    .option('-l, --languages <langs>', 'Lista de lenguajes separados por coma')
+    .option('-e, --exclude <patterns>', 'Patrones a excluir separados por coma')
+    .option('--min-severity <level>', 'Severidad mínima a reportar (info, low, medium, high, critical)', 'info')
+    .option('--ai', 'Habilitar análisis con IA')
+    .option('--api-key <key>', 'API key para el proveedor de IA (auto-detecta OpenAI, Anthropic, Google)')
+    .option('--ai-provider <provider>', 'Proveedor de IA (openai, anthropic, google, gemini, local, auto)', 'auto')
+    .option('--ai-model <model>', 'Modelo de IA a usar (gpt-4o, gpt-4, gpt-3.5-turbo, claude-3-sonnet, gemini-1.5-flash, etc.)')
+    .option('--ai-endpoint <url>', 'URL del endpoint para IA local (default: http://localhost:11434/api/generate)')
+    .option('-v, --verbose', 'Mostrar salida detallada')
+    .option('--json', 'Mostrar resultados como JSON en stdout')
+    .option('--max-file-size <bytes>', 'Tamaño máximo de archivo a escanear (en bytes)', '5242880')
+    .option('--lang <language>', 'Idioma del reporte: es (español) o en (inglés)', 'es')
+    .action(async (projectPath, options) => {
+    try {
+        // Validate project path
+        const resolvedPath = path.resolve(projectPath);
+        if (!fs.existsSync(resolvedPath)) {
+            console.error(chalk_1.default.red(`❌ Error: La ruta no existe: ${resolvedPath}`));
+            process.exit(1);
+        }
+        // Set log level
+        if (options.verbose) {
+            (0, logger_1.setLogLevel)('debug');
+        }
+        // Parse languages
+        let languages;
+        if (options.languages) {
+            languages = options.languages.split(',').map((l) => l.trim().toLowerCase());
+        }
+        // Parse exclude patterns
+        const exclude = options.exclude ? options.exclude.split(',').map((p) => p.trim()) : [];
+        // Parse severity
+        const severityMap = {
+            'info': types_1.Severity.INFO,
+            'low': types_1.Severity.LOW,
+            'medium': types_1.Severity.MEDIUM,
+            'high': types_1.Severity.HIGH,
+            'critical': types_1.Severity.CRITICAL
+        };
+        const minSeverity = severityMap[options.minSeverity.toLowerCase()] || types_1.Severity.INFO;
+        // Parse language option
+        const reportLang = options.lang === 'en' ? 'en' : 'es';
+        // Build config
+        // Default endpoint for local AI (Ollama)
+        const defaultLocalEndpoint = 'http://localhost:11434/api/generate';
+        const defaultLocalModel = 'codellama:7b-instruct';
+        const config = {
+            projectPath: resolvedPath,
+            outputPath: options.output,
+            languages,
+            exclude,
+            minSeverity,
+            useAI: options.ai,
+            verbose: options.verbose,
+            maxFileSize: parseInt(options.maxFileSize),
+            language: reportLang,
+            aiConfig: options.ai ? {
+                provider: options.aiProvider,
+                apiKey: options.apiKey || process.env.OPENAI_API_KEY,
+                model: options.aiModel || (options.aiProvider === 'local' ? defaultLocalModel : undefined),
+                endpoint: options.aiEndpoint || (options.aiProvider === 'local' ? defaultLocalEndpoint : undefined)
+            } : undefined
+        };
+        // Run scan
+        const spinner = (0, ora_1.default)('Inicializando escaneo de seguridad...').start();
+        const scanner = new securityScanner_1.SecurityScanner(config);
+        spinner.text = 'Escaneando archivos...';
+        const result = await scanner.scan();
+        spinner.succeed('¡Escaneo completado!');
+        // Output results
+        if (options.json) {
+            console.log(JSON.stringify(result, null, 2));
+        }
+        else {
+            // Print summary
+            console.log('');
+            console.log(chalk_1.default.cyan('═'.repeat(60)));
+            console.log(chalk_1.default.cyan.bold('📊 Resumen del Escaneo'));
+            console.log(chalk_1.default.cyan('═'.repeat(60)));
+            console.log(`   📁 Archivos escaneados: ${chalk_1.default.yellow(result.stats.totalFiles)}`);
+            console.log(`   📝 Líneas de código: ${chalk_1.default.yellow(result.stats.totalLines)}`);
+            console.log(`   🔍 Hallazgos: ${chalk_1.default.yellow(result.findings.length)}`);
+            console.log(`   ⏱️  Duración: ${chalk_1.default.yellow((result.stats.duration / 1000).toFixed(2) + 's')}`);
+            console.log('');
+            // Severity breakdown
+            const { findingsBySeverity } = result.stats;
+            console.log(chalk_1.default.bold('   Desglose por Severidad:'));
+            console.log(`   ${chalk_1.default.bgRed.white(' CRÍTICO ')} ${findingsBySeverity.critical || 0}`);
+            console.log(`   ${chalk_1.default.red(' ALTO ')} ${findingsBySeverity.high || 0}`);
+            console.log(`   ${chalk_1.default.yellow(' MEDIO ')} ${findingsBySeverity.medium || 0}`);
+            console.log(`   ${chalk_1.default.green(' BAJO ')} ${findingsBySeverity.low || 0}`);
+            console.log(`   ${chalk_1.default.blue(' INFO ')} ${findingsBySeverity.info || 0}`);
+            console.log('');
+            // Risk score
+            const riskColor = result.riskScore >= 70 ? chalk_1.default.red :
+                result.riskScore >= 40 ? chalk_1.default.yellow : chalk_1.default.green;
+            console.log(`   📈 Puntuación de Riesgo: ${riskColor(result.riskScore + '/100')} (${result.riskLevel.toUpperCase()})`);
+            // Report location - ensure correct extension is shown
+            if (options.output) {
+                let reportPath = path.resolve(options.output);
+                const ext = path.extname(reportPath).toLowerCase();
+                // Add .html extension if no extension provided
+                if (ext === '') {
+                    reportPath = `${reportPath}.html`;
+                }
+                console.log('');
+                console.log(`   📄 Reporte guardado en: ${chalk_1.default.cyan(reportPath)}`);
+            }
+            console.log(chalk_1.default.cyan('═'.repeat(60)));
+            console.log('');
+            // Exit with error code if critical findings
+            if (findingsBySeverity.critical > 0) {
+                process.exit(2);
+            }
+            else if (findingsBySeverity.high > 0) {
+                process.exit(1);
+            }
+        }
+    }
+    catch (error) {
+        console.error(chalk_1.default.red(`❌ Error en el escaneo: ${error}`));
+        process.exit(1);
+    }
+});
+/**
+ * Init command - create config file
+ */
+program
+    .command('init')
+    .description('Inicializar configuración de secure-scan en el directorio actual')
+    .action(() => {
+    const configPath = path.join(process.cwd(), 'secure-scan.config.json');
+    if (fs.existsSync(configPath)) {
+        console.log(chalk_1.default.yellow('⚠️ El archivo de configuración ya existe: secure-scan.config.json'));
+        return;
+    }
+    const defaultConfig = {
+        exclude: ['node_modules', 'dist', 'vendor', '.git'],
+        languages: ['javascript', 'typescript', 'python', 'php', 'java', 'c', 'cpp', 'csharp'],
+        minSeverity: 'low',
+        language: 'es',
+        ai: {
+            enabled: false,
+            provider: 'openai',
+            model: 'gpt-4'
+        },
+        rules: {
+            disabled: [],
+            custom: []
+        }
+    };
+    fs.writeFileSync(configPath, JSON.stringify(defaultConfig, null, 2));
+    console.log(chalk_1.default.green('✅ Archivo secure-scan.config.json creado'));
+});
+/**
+ * List rules command
+ */
+program
+    .command('rules')
+    .description('Listar todas las reglas de seguridad disponibles')
+    .option('-l, --language <lang>', 'Filtrar por lenguaje')
+    .action(async (options) => {
+    const { getAllRules } = await Promise.resolve().then(() => __importStar(require('../rules')));
+    let rules = getAllRules();
+    if (options.language) {
+        rules = rules.filter(r => r.languages.includes(options.language));
+    }
+    console.log(chalk_1.default.cyan('\n📋 Reglas de Seguridad Disponibles\n'));
+    console.log(chalk_1.default.gray('─'.repeat(80)));
+    for (const rule of rules) {
+        const severityColor = {
+            critical: chalk_1.default.red,
+            high: chalk_1.default.red,
+            medium: chalk_1.default.yellow,
+            low: chalk_1.default.green,
+            info: chalk_1.default.blue
+        }[rule.severity] || chalk_1.default.white;
+        console.log(`${chalk_1.default.bold(rule.id)} ${severityColor(`[${rule.severity.toUpperCase()}]`)}`);
+        console.log(`  ${rule.name}`);
+        console.log(`  ${chalk_1.default.gray(rule.languages.join(', '))}`);
+        console.log('');
+    }
+    console.log(chalk_1.default.gray('─'.repeat(80)));
+    console.log(`Total: ${rules.length} reglas\n`);
+});
+/**
+ * Comando de versión
+ */
+program
+    .command('version')
+    .description('Mostrar información de versión')
+    .action(() => {
+    console.log(chalk_1.default.cyan(`\n🔐 Secure-Scan v${packageJson.version}`));
+    console.log(chalk_1.default.gray('Herramienta de Análisis Estático de Seguridad (SAST)\n'));
+});
+// Procesar argumentos
+program.parse();
+// Mostrar ayuda si no hay comando
+if (process.argv.length === 2) {
+    console.log(chalk_1.default.cyan(`
+  🔐 Secure-Scan - Herramienta SAST
+  
+  Detecta vulnerabilidades y código malicioso en tus proyectos.
+  
+  Uso:
+    secure-scan scan <ruta> [opciones]
+    secure-scan init
+    secure-scan rules
+    secure-scan --help
+  
+  Example:
+    secure-scan scan ./my-project --output report.html
+  `));
+}
+//# sourceMappingURL=index.js.map

package/dist/cli/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/cli/index.ts"],"names":[],"mappings":";;AACA;;;GAGG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,yCAAoC;AACpC,kDAA0B;AAC1B,8CAAsB;AACtB,2CAA6B;AAC7B,uCAAyB;AAEzB,uEAAoE;AACpE,oCAAmE;AACnE,4CAA8C;AAE9C,0BAA0B;AAC1B,MAAM,WAAW,GAAG,OAAO,CAAC,oBAAoB,CAAC,CAAC;AAElD,qBAAqB;AACrB,MAAM,OAAO,GAAG,IAAI,mBAAO,EAAE,CAAC;AAE9B,OAAO;KACJ,IAAI,CAAC,aAAa,CAAC;KACnB,OAAO,CAAC,WAAW,CAAC,OAAO,CAAC;KAC5B,WAAW,CAAC,eAAK,CAAC,IAAI,CAAC,gEAAgE,CAAC,CAAC,CAAC;AAE7F;;GAEG;AACH,OAAO;KACJ,OAAO,CAAC,aAAa,CAAC;KACtB,WAAW,CAAC,sEAAsE,CAAC;KACnF,MAAM,CAAC,qBAAqB,EAAE,2CAA2C,CAAC;KAC1E,MAAM,CAAC,yBAAyB,EAAE,uCAAuC,CAAC;KAC1E,MAAM,CAAC,0BAA0B,EAAE,uCAAuC,CAAC;KAC3E,MAAM,CAAC,wBAAwB,EAAE,iEAAiE,EAAE,MAAM,CAAC;KAC3G,MAAM,CAAC,MAAM,EAAE,2BAA2B,CAAC;KAC3C,MAAM,CAAC,iBAAiB,EAAE,0EAA0E,CAAC;KACrG,MAAM,CAAC,0BAA0B,EAAE,kEAAkE,EAAE,MAAM,CAAC;KAC9G,MAAM,CAAC,oBAAoB,EAAE,6FAA6F,CAAC;KAC3H,MAAM,CAAC,qBAAqB,EAAE,+EAA+E,CAAC;KAC9G,MAAM,CAAC,eAAe,EAAE,0BAA0B,CAAC;KACnD,MAAM,CAAC,QAAQ,EAAE,wCAAwC,CAAC;KAC1D,MAAM,CAAC,yBAAyB,EAAE,gDAAgD,EAAE,SAAS,CAAC;KAC9F,MAAM,CAAC,mBAAmB,EAAE,gDAAgD,EAAE,IAAI,CAAC;KACnF,MAAM,CAAC,KAAK,EAAE,WAAmB,EAAE,OAAY,EAAE,EAAE;IAClD,IAAI,CAAC;QACH,wBAAwB;QACxB,MAAM,YAAY,GAAG,IAAI,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC;QAC/C,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;YACjC,OAAO,CAAC,KAAK,CAAC,eAAK,CAAC,GAAG,CAAC,+BAA+B,YAAY,EAAE,CAAC,CAAC,CAAC;YACxE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QAED,gBAAgB;QAChB,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;YACpB,IAAA,oBAAW,EAAC,OAAO,CAAC,CAAC;QACvB,CAAC;QAED,kBAAkB;QAClB,IAAI,SAA0C,CAAC;QAC/C,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;YACtB,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC,CAAC;QACtF,CAAC;QAED,yBAAyB;QACzB,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAE/F,iBAAiB;QACjB,MAAM,WAAW,GAA6B;YAC5C,MAAM,EAAE,gBAAQ,CAAC,IAAI;YACrB,KAAK,EAAE,gBAAQ,CAAC,GAAG;YACnB,QAAQ,EAAE,gBAAQ,CAAC,MAAM;YACzB,MAAM,EAAE,gBAAQ,CAAC,IAAI;YACrB,UAAU,EAAE,gBAAQ,CAAC,QAAQ;SAC9B,CAAC;QACF,MAAM,WAAW,GAAG,WAAW,CAAC,OAAO,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC,IAAI,gBAAQ,CAAC,IAAI,CAAC;QAEpF,wBAAwB;QACxB,MAAM,UAAU,GAAG,OAAO,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC;QAEvD,eAAe;QACf,yCAAyC;QACzC,MAAM,oBAAoB,GAAG,qCAAqC,CAAC;QACnE,MAAM,iBAAiB,GAAG,uBAAuB,CAAC;QAElD,MAAM,MAAM,GAAe;YACzB,WAAW,EAAE,YAAY;YACzB,UAAU,EAAE,OAAO,CAAC,MAAM;YAC1B,SAAS;YACT,OAAO;YACP,WAAW;YACX,KAAK,EAAE,OAAO,CAAC,EAAE;YACjB,OAAO,EAAE,OAAO,CAAC,OAAO;YACxB,WAAW,EAAE,QAAQ,CAAC,OAAO,CAAC,WAAW,CAAC;YAC1C,QAAQ,EAAE,UAAU;YACpB,QAAQ,EAAE,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC;gBACrB,QAAQ,EAAE,OAAO,CAAC,UAAU;gBAC5B,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,OAAO,CAAC,GAAG,CAAC,cAAc;gBACpD,KAAK,EAAE,OAAO,CAAC,OAAO,IAAI,CAAC,OAAO,CAAC,UAAU,KAAK,OAAO,CAAC,CAAC,CAAC,iBAAiB,CAAC,CAAC,CAAC,SAAS,CAAC;gBAC1F,QAAQ,EAAE,OAAO,CAAC,UAAU,IAAI,CAAC,OAAO,CAAC,UAAU,KAAK,OAAO,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,CAAC,SAAS,CAAC;aACpG,CAAC,CAAC,CAAC,SAAS;SACd,CAAC;QAEF,WAAW;QACX,MAAM,OAAO,GAAG,IAAA,aAAG,EAAC,uCAAuC,CAAC,CAAC,KAAK,EAAE,CAAC;QAErE,MAAM,OAAO,GAAG,IAAI,iCAAe,CAAC,MAAM,CAAC,CAAC;QAE5C,OAAO,CAAC,IAAI,GAAG,wBAAwB,CAAC;QACxC,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,IAAI,EAAE,CAAC;QAEpC,OAAO,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;QAExC,iBAAiB;QACjB,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;YACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;QAC/C,CAAC;aAAM,CAAC;YACN,gBAAgB;YAChB,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAChB,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;YACxC,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC,CAAC;YACvD,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;YACxC,OAAO,CAAC,GAAG,CAAC,8BAA8B,eAAK,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;YACnF,OAAO,CAAC,GAAG,CAAC,2BAA2B,eAAK,CAAC,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;YAChF,OAAO,CAAC,GAAG,CAAC,oBAAoB,eAAK,CAAC,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YACxE,OAAO,CAAC,GAAG,CAAC,oBAAoB,eAAK,CAAC,MAAM,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,GAAG,CAAC,EAAE,CAAC,CAAC;YACjG,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,qBAAqB;YACrB,MAAM,EAAE,kBAAkB,EAAE,GAAG,MAAM,CAAC,KAAK,CAAC;YAC5C,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,4BAA4B,CAAC,CAAC,CAAC;YACtD,OAAO,CAAC,GAAG,CAAC,MAAM,eAAK,CAAC,KAAK,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,kBAAkB,CAAC,QAAQ,IAAI,CAAC,EAAE,CAAC,CAAC;YACxF,OAAO,CAAC,GAAG,CAAC,MAAM,eAAK,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,kBAAkB,CAAC,IAAI,IAAI,CAAC,EAAE,CAAC,CAAC;YACzE,OAAO,CAAC,GAAG,CAAC,MAAM,eAAK,CAAC,MAAM,CAAC,SAAS,CAAC,IAAI,kBAAkB,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC,CAAC;YAC/E,OAAO,CAAC,GAAG,CAAC,MAAM,eAAK,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,kBAAkB,CAAC,GAAG,IAAI,CAAC,EAAE,CAAC,CAAC;YAC1E,OAAO,CAAC,GAAG,CAAC,MAAM,eAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,kBAAkB,CAAC,IAAI,IAAI,CAAC,EAAE,CAAC,CAAC;YAC1E,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,aAAa;YACb,MAAM,SAAS,GAAG,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,CAAC,eAAK,CAAC,GAAG,CAAC,CAAC;gBACrC,MAAM,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,CAAC,eAAK,CAAC,MAAM,CAAC,CAAC,CAAC,eAAK,CAAC,KAAK,CAAC;YACrE,OAAO,CAAC,GAAG,CAAC,+BAA+B,SAAS,CAAC,MAAM,CAAC,SAAS,GAAG,MAAM,CAAC,KAAK,MAAM,CAAC,SAAS,CAAC,WAAW,EAAE,GAAG,CAAC,CAAC;YAEvH,sDAAsD;YACtD,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;gBACnB,IAAI,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;gBAC9C,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,WAAW,EAAE,CAAC;gBACnD,+CAA+C;gBAC/C,IAAI,GAAG,KAAK,EAAE,EAAE,CAAC;oBACf,UAAU,GAAG,GAAG,UAAU,OAAO,CAAC;gBACpC,CAAC;gBACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;gBAChB,OAAO,CAAC,GAAG,CAAC,8BAA8B,eAAK,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;YACtE,CAAC;YAED,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;YACxC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAEhB,4CAA4C;YAC5C,IAAI,kBAAkB,CAAC,QAAQ,GAAG,CAAC,EAAE,CAAC;gBACpC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;iBAAM,IAAI,kBAAkB,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;gBACvC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;IAEH,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,eAAK,CAAC,GAAG,CAAC,0BAA0B,KAAK,EAAE,CAAC,CAAC,CAAC;QAC5D,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC,CAAC,CAAC;AAEL;;GAEG;AACH,OAAO;KACJ,OAAO,CAAC,MAAM,CAAC;KACf,WAAW,CAAC,kEAAkE,CAAC;KAC/E,MAAM,CAAC,GAAG,EAAE;IACX,MAAM,UAAU,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,yBAAyB,CAAC,CAAC;IAEvE,IAAI,EAAE,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QAC9B,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,MAAM,CAAC,mEAAmE,CAAC,CAAC,CAAC;QAC/F,OAAO;IACT,CAAC;IAED,MAAM,aAAa,GAAG;QACpB,OAAO,EAAE,CAAC,cAAc,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,CAAC;QACnD,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,KAAK,EAAE,QAAQ,CAAC;QACtF,WAAW,EAAE,KAAK;QAClB,QAAQ,EAAE,IAAI;QACd,EAAE,EAAE;YACF,OAAO,EAAE,KAAK;YACd,QAAQ,EAAE,QAAQ;YAClB,KAAK,EAAE,OAAO;SACf;QACD,KAAK,EAAE;YACL,QAAQ,EAAE,EAAE;YACZ,MAAM,EAAE,EAAE;SACX;KACF,CAAC;IAEF,EAAE,CAAC,aAAa,CAAC,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IACrE,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,KAAK,CAAC,0CAA0C,CAAC,CAAC,CAAC;AACvE,CAAC,CAAC,CAAC;AAEL;;GAEG;AACH,OAAO;KACJ,OAAO,CAAC,OAAO,CAAC;KAChB,WAAW,CAAC,kDAAkD,CAAC;KAC/D,MAAM,CAAC,uBAAuB,EAAE,sBAAsB,CAAC;KACvD,MAAM,CAAC,KAAK,EAAE,OAAY,EAAE,EAAE;IAC7B,MAAM,EAAE,WAAW,EAAE,GAAG,wDAAa,UAAU,GAAC,CAAC;IACjD,IAAI,KAAK,GAAG,WAAW,EAAE,CAAC;IAE1B,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;QACrB,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,QAAQ,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC;IACpE,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC,CAAC;IAClE,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAExC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;QACzB,MAAM,aAAa,GAAG;YACpB,QAAQ,EAAE,eAAK,CAAC,GAAG;YACnB,IAAI,EAAE,eAAK,CAAC,GAAG;YACf,MAAM,EAAE,eAAK,CAAC,MAAM;YACpB,GAAG,EAAE,eAAK,CAAC,KAAK;YAChB,IAAI,EAAE,eAAK,CAAC,IAAI;SACjB,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,eAAK,CAAC,KAAK,CAAC;QAEhC,OAAO,CAAC,GAAG,CAAC,GAAG,eAAK,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,IAAI,aAAa,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,GAAG,CAAC,EAAE,CAAC,CAAC;QAC3F,OAAO,CAAC,GAAG,CAAC,KAAK,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;QAC9B,OAAO,CAAC,GAAG,CAAC,KAAK,eAAK,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC;QAC1D,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IACxC,OAAO,CAAC,GAAG,CAAC,UAAU,KAAK,CAAC,MAAM,WAAW,CAAC,CAAC;AACjD,CAAC,CAAC,CAAC;AAEL;;GAEG;AACH,OAAO;KACJ,OAAO,CAAC,SAAS,CAAC;KAClB,WAAW,CAAC,gCAAgC,CAAC;KAC7C,MAAM,CAAC,GAAG,EAAE;IACX,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,qBAAqB,WAAW,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;IACpE,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC,wDAAwD,CAAC,CAAC,CAAC;AACpF,CAAC,CAAC,CAAC;AAEL,sBAAsB;AACtB,OAAO,CAAC,KAAK,EAAE,CAAC;AAEhB,kCAAkC;AAClC,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;IAC9B,OAAO,CAAC,GAAG,CAAC,eAAK,CAAC,IAAI,CAAC;;;;;;;;;;;;;GAatB,CAAC,CAAC,CAAC;AACN,CAAC"}

package/dist/core/engine/index.d.ts

@@ -0,0 +1,5 @@
+/**
+ * Engine Module Exports
+ */
+export * from './ruleEngine';
+//# sourceMappingURL=index.d.ts.map

package/dist/core/engine/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/core/engine/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,cAAc,cAAc,CAAC"}

package/dist/core/engine/index.js

@@ -0,0 +1,21 @@
+"use strict";
+/**
+ * Engine Module Exports
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./ruleEngine"), exports);
+//# sourceMappingURL=index.js.map

package/dist/core/engine/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/core/engine/index.ts"],"names":[],"mappings":";AAAA;;GAEG;;;;;;;;;;;;;;;;AAEH,+CAA6B"}

package/dist/core/engine/ruleEngine.d.ts

@@ -0,0 +1,46 @@
+/**
+ * Rule Engine
+ * Core engine for running security rules against code
+ */
+import { Rule, Finding, ScannedFile } from '../../types';
+/**
+ * Rule Engine Class
+ */
+export declare class RuleEngine {
+    private rules;
+    constructor();
+    /**
+     * Load rules for analysis
+     */
+    loadRules(rules: Rule[]): void;
+    /**
+     * Get rules for a specific language
+     */
+    getRulesForLanguage(language: string): Rule[];
+    /**
+     * Run rules against a file
+     */
+    analyzeFile(file: ScannedFile, rules?: Rule[]): Promise<Finding[]>;
+    /**
+     * Run a single rule against a file
+     */
+    private runRule;
+    /**
+     * Match regex pattern against content
+     */
+    private matchRegex;
+    /**
+     * Create a finding from a rule match
+     */
+    private createFinding;
+    /**
+     * Deduplicate findings
+     */
+    deduplicateFindings(findings: Finding[]): Finding[];
+    /**
+     * Sort findings by severity
+     */
+    sortBySeverity(findings: Finding[]): Finding[];
+}
+export default RuleEngine;
+//# sourceMappingURL=ruleEngine.d.ts.map

package/dist/core/engine/ruleEngine.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"ruleEngine.d.ts","sourceRoot":"","sources":["../../../src/core/engine/ruleEngine.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,IAAI,EACJ,OAAO,EACP,WAAW,EAMZ,MAAM,aAAa,CAAC;AAgBrB;;GAEG;AACH,qBAAa,UAAU;IACrB,OAAO,CAAC,KAAK,CAAS;;IAMtB;;OAEG;IACH,SAAS,CAAC,KAAK,EAAE,IAAI,EAAE,GAAG,IAAI;IAK9B;;OAEG;IACH,mBAAmB,CAAC,QAAQ,EAAE,MAAM,GAAG,IAAI,EAAE;IAO7C;;OAEG;IACG,WAAW,CAAC,IAAI,EAAE,WAAW,EAAE,KAAK,CAAC,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC;IAgBxE;;OAEG;YACW,OAAO;IAiBrB;;OAEG;IACH,OAAO,CAAC,UAAU;IAuClB;;OAEG;IACH,OAAO,CAAC,aAAa;IAyCrB;;OAEG;IACH,mBAAmB,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,OAAO,EAAE;IAgBnD;;OAEG;IACH,cAAc,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,OAAO,EAAE;CAa/C;AAED,eAAe,UAAU,CAAC"}

package/dist/core/engine/ruleEngine.js

@@ -0,0 +1,173 @@
+"use strict";
+/**
+ * Rule Engine
+ * Core engine for running security rules against code
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.RuleEngine = void 0;
+const types_1 = require("../../types");
+const utils_1 = require("../../utils");
+const standards_1 = require("../../rules/standards");
+const logger_1 = require("../../utils/logger");
+/**
+ * Rule Engine Class
+ */
+class RuleEngine {
+    rules;
+    constructor() {
+        this.rules = [];
+    }
+    /**
+     * Load rules for analysis
+     */
+    loadRules(rules) {
+        this.rules = rules.filter(r => r.enabled);
+        logger_1.logger.info(`📋 Loaded ${this.rules.length} active rules`);
+    }
+    /**
+     * Get rules for a specific language
+     */
+    getRulesForLanguage(language) {
+        return this.rules.filter(rule => rule.languages.includes(language) ||
+            rule.languages.includes('*'));
+    }
+    /**
+     * Run rules against a file
+     */
+    async analyzeFile(file, rules) {
+        const findings = [];
+        const applicableRules = rules || this.getRulesForLanguage(file.language || '');
+        for (const rule of applicableRules) {
+            try {
+                const ruleFindings = await this.runRule(rule, file);
+                findings.push(...ruleFindings);
+            }
+            catch (error) {
+                logger_1.logger.debug(`Error running rule ${rule.id}: ${error}`);
+            }
+        }
+        return findings;
+    }
+    /**
+     * Run a single rule against a file
+     */
+    async runRule(rule, file) {
+        const findings = [];
+        for (const pattern of rule.patterns) {
+            if (pattern.type === 'regex') {
+                const matches = this.matchRegex(file.content, pattern.pattern, pattern.flags);
+                for (const match of matches) {
+                    const finding = this.createFinding(rule, file, match);
+                    findings.push(finding);
+                }
+            }
+        }
+        return findings;
+    }
+    /**
+     * Match regex pattern against content
+     */
+    matchRegex(content, pattern, flags = 'gim') {
+        const matches = [];
+        const lines = content.split('\n');
+        try {
+            const regex = new RegExp(pattern, flags);
+            let lineOffset = 0;
+            for (let lineNum = 0; lineNum < lines.length; lineNum++) {
+                const line = lines[lineNum];
+                let match;
+                // Reset regex for each line
+                const lineRegex = new RegExp(pattern, flags.replace('g', '') + 'g');
+                while ((match = lineRegex.exec(line)) !== null) {
+                    matches.push({
+                        matched: true,
+                        line: lineNum + 1, // 1-indexed
+                        column: match.index + 1,
+                        matchedText: match[0],
+                        groups: match.groups
+                    });
+                    // Prevent infinite loop on zero-width matches
+                    if (match[0].length === 0) {
+                        lineRegex.lastIndex++;
+                    }
+                }
+                lineOffset += line.length + 1;
+            }
+        }
+        catch (error) {
+            logger_1.logger.debug(`Invalid regex pattern: ${pattern}`);
+        }
+        return matches;
+    }
+    /**
+     * Create a finding from a rule match
+     */
+    createFinding(rule, file, match) {
+        const context = (0, utils_1.extractCodeContext)(file.content, match.line, 3);
+        const location = {
+            file: file.relativePath,
+            startLine: match.line,
+            endLine: match.line,
+            startColumn: match.column,
+            endColumn: match.column + match.matchedText.length
+        };
+        const snippet = {
+            code: context.code,
+            contextBefore: context.contextBefore,
+            contextAfter: context.contextAfter,
+            highlight: {
+                start: match.column - 1,
+                end: match.column - 1 + match.matchedText.length
+            }
+        };
+        return {
+            id: (0, utils_1.generateId)(),
+            title: rule.name,
+            description: rule.description,
+            severity: rule.severity,
+            threatType: rule.threatType,
+            category: rule.category,
+            location,
+            snippet,
+            standards: rule.standards.length > 0
+                ? rule.standards
+                : (0, standards_1.getStandardsForThreat)(rule.threatType),
+            remediation: rule.remediation,
+            confidence: 85, // Default confidence for regex matches
+            analyzer: 'rule-engine',
+            timestamp: new Date(),
+            tags: rule.tags
+        };
+    }
+    /**
+     * Deduplicate findings
+     */
+    deduplicateFindings(findings) {
+        const seen = new Set();
+        const unique = [];
+        for (const finding of findings) {
+            const key = `${finding.location.file}:${finding.location.startLine}:${finding.threatType}`;
+            if (!seen.has(key)) {
+                seen.add(key);
+                unique.push(finding);
+            }
+        }
+        return unique;
+    }
+    /**
+     * Sort findings by severity
+     */
+    sortBySeverity(findings) {
+        const severityOrder = {
+            [types_1.Severity.CRITICAL]: 0,
+            [types_1.Severity.HIGH]: 1,
+            [types_1.Severity.MEDIUM]: 2,
+            [types_1.Severity.LOW]: 3,
+            [types_1.Severity.INFO]: 4
+        };
+        return [...findings].sort((a, b) => severityOrder[a.severity] - severityOrder[b.severity]);
+    }
+}
+exports.RuleEngine = RuleEngine;
+exports.default = RuleEngine;
+//# sourceMappingURL=ruleEngine.js.map

package/dist/core/engine/ruleEngine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ruleEngine.js","sourceRoot":"","sources":["../../../src/core/engine/ruleEngine.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;AAEH,uCASqB;AACrB,uCAA6D;AAC7D,qDAA8D;AAC9D,+CAA4C;AAa5C;;GAEG;AACH,MAAa,UAAU;IACb,KAAK,CAAS;IAEtB;QACE,IAAI,CAAC,KAAK,GAAG,EAAE,CAAC;IAClB,CAAC;IAED;;OAEG;IACH,SAAS,CAAC,KAAa;QACrB,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;QAC1C,eAAM,CAAC,IAAI,CAAC,aAAa,IAAI,CAAC,KAAK,CAAC,MAAM,eAAe,CAAC,CAAC;IAC7D,CAAC;IAED;;OAEG;IACH,mBAAmB,CAAC,QAAgB;QAClC,OAAO,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,CAC9B,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAe,CAAC;YACxC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,GAAU,CAAC,CACpC,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,WAAW,CAAC,IAAiB,EAAE,KAAc;QACjD,MAAM,QAAQ,GAAc,EAAE,CAAC;QAC/B,MAAM,eAAe,GAAG,KAAK,IAAI,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,QAAQ,IAAI,EAAE,CAAC,CAAC;QAE/E,KAAK,MAAM,IAAI,IAAI,eAAe,EAAE,CAAC;YACnC,IAAI,CAAC;gBACH,MAAM,YAAY,GAAG,MAAM,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;gBACpD,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,CAAC;YACjC,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,eAAM,CAAC,KAAK,CAAC,sBAAsB,IAAI,CAAC,EAAE,KAAK,KAAK,EAAE,CAAC,CAAC;YAC1D,CAAC;QACH,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,OAAO,CAAC,IAAU,EAAE,IAAiB;QACjD,MAAM,QAAQ,GAAc,EAAE,CAAC;QAE/B,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YACpC,IAAI,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;gBAC7B,MAAM,OAAO,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,KAAK,CAAC,CAAC;gBAE9E,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;oBAC5B,MAAM,OAAO,GAAG,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,IAAI,EAAE,KAAK,CAAC,CAAC;oBACtD,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;gBACzB,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED;;OAEG;IACK,UAAU,CAAC,OAAe,EAAE,OAAe,EAAE,QAAgB,KAAK;QACxE,MAAM,OAAO,GAAmB,EAAE,CAAC;QACnC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAElC,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;YAEzC,IAAI,UAAU,GAAG,CAAC,CAAC;YACnB,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,KAAK,CAAC,MAAM,EAAE,OAAO,EAAE,EAAE,CAAC;gBACxD,MAAM,IAAI,GAAG,KAAK,CAAC,OAAO,CAAC,CAAC;gBAC5B,IAAI,KAA6B,CAAC;gBAElC,4BAA4B;gBAC5B,MAAM,SAAS,GAAG,IAAI,MAAM,CAAC,OAAO,EAAE,KAAK,CAAC,OAAO,CAAC,GAAG,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,CAAC;gBAEpE,OAAO,CAAC,KAAK,GAAG,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;oBAC/C,OAAO,CAAC,IAAI,CAAC;wBACX,OAAO,EAAE,IAAI;wBACb,IAAI,EAAE,OAAO,GAAG,CAAC,EAAE,YAAY;wBAC/B,MAAM,EAAE,KAAK,CAAC,KAAK,GAAG,CAAC;wBACvB,WAAW,EAAE,KAAK,CAAC,CAAC,CAAC;wBACrB,MAAM,EAAE,KAAK,CAAC,MAAM;qBACrB,CAAC,CAAC;oBAEH,8CAA8C;oBAC9C,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;wBAC1B,SAAS,CAAC,SAAS,EAAE,CAAC;oBACxB,CAAC;gBACH,CAAC;gBAED,UAAU,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC;YAChC,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,eAAM,CAAC,KAAK,CAAC,0BAA0B,OAAO,EAAE,CAAC,CAAC;QACpD,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;OAEG;IACK,aAAa,CAAC,IAAU,EAAE,IAAiB,EAAE,KAAmB;QACtE,MAAM,OAAO,GAAG,IAAA,0BAAkB,EAAC,IAAI,CAAC,OAAO,EAAE,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC;QAEhE,MAAM,QAAQ,GAAmB;YAC/B,IAAI,EAAE,IAAI,CAAC,YAAY;YACvB,SAAS,EAAE,KAAK,CAAC,IAAI;YACrB,OAAO,EAAE,KAAK,CAAC,IAAI;YACnB,WAAW,EAAE,KAAK,CAAC,MAAM;YACzB,SAAS,EAAE,KAAK,CAAC,MAAM,GAAG,KAAK,CAAC,WAAW,CAAC,MAAM;SACnD,CAAC;QAEF,MAAM,OAAO,GAAgB;YAC3B,IAAI,EAAE,OAAO,CAAC,IAAI;YAClB,aAAa,EAAE,OAAO,CAAC,aAAa;YACpC,YAAY,EAAE,OAAO,CAAC,YAAY;YAClC,SAAS,EAAE;gBACT,KAAK,EAAE,KAAK,CAAC,MAAM,GAAG,CAAC;gBACvB,GAAG,EAAE,KAAK,CAAC,MAAM,GAAG,CAAC,GAAG,KAAK,CAAC,WAAW,CAAC,MAAM;aACjD;SACF,CAAC;QAEF,OAAO;YACL,EAAE,EAAE,IAAA,kBAAU,GAAE;YAChB,KAAK,EAAE,IAAI,CAAC,IAAI;YAChB,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,UAAU,EAAE,IAAI,CAAC,UAAU;YAC3B,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,QAAQ;YACR,OAAO;YACP,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC;gBAClC,CAAC,CAAC,IAAI,CAAC,SAAS;gBAChB,CAAC,CAAC,IAAA,iCAAqB,EAAC,IAAI,CAAC,UAAU,CAAC;YAC1C,WAAW,EAAE,IAAI,CAAC,WAAW;YAC7B,UAAU,EAAE,EAAE,EAAE,uCAAuC;YACvD,QAAQ,EAAE,aAAa;YACvB,SAAS,EAAE,IAAI,IAAI,EAAE;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;SAChB,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,mBAAmB,CAAC,QAAmB;QACrC,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;QAC/B,MAAM,MAAM,GAAc,EAAE,CAAC;QAE7B,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;YAC/B,MAAM,GAAG,GAAG,GAAG,OAAO,CAAC,QAAQ,CAAC,IAAI,IAAI,OAAO,CAAC,QAAQ,CAAC,SAAS,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;YAE3F,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;gBACnB,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBACd,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACvB,CAAC;QACH,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,cAAc,CAAC,QAAmB;QAChC,MAAM,aAAa,GAA6B;YAC9C,CAAC,gBAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;YACtB,CAAC,gBAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAClB,CAAC,gBAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;YACpB,CAAC,gBAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YACjB,CAAC,gBAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;SACnB,CAAC;QAEF,OAAO,CAAC,GAAG,QAAQ,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CACjC,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC,CACtD,CAAC;IACJ,CAAC;CACF;AAzLD,gCAyLC;AAED,kBAAe,UAAU,CAAC"}

package/dist/core/index.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Core Module Exports
+ */
+export * from './scanner';
+export * from './engine';
+export * from './scoring';
+export * from './securityScanner';
+//# sourceMappingURL=index.d.ts.map

package/dist/core/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/core/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,cAAc,WAAW,CAAC;AAC1B,cAAc,UAAU,CAAC;AACzB,cAAc,WAAW,CAAC;AAC1B,cAAc,mBAAmB,CAAC"}

package/dist/core/index.js

@@ -0,0 +1,24 @@
+"use strict";
+/**
+ * Core Module Exports
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./scanner"), exports);
+__exportStar(require("./engine"), exports);
+__exportStar(require("./scoring"), exports);
+__exportStar(require("./securityScanner"), exports);
+//# sourceMappingURL=index.js.map

package/dist/core/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/core/index.ts"],"names":[],"mappings":";AAAA;;GAEG;;;;;;;;;;;;;;;;AAEH,4CAA0B;AAC1B,2CAAyB;AACzB,4CAA0B;AAC1B,oDAAkC"}

package/dist/core/scanner/fileScanner.d.ts

@@ -0,0 +1,31 @@
+/**
+ * File Scanner Module
+ * Scans directories and collects files for analysis
+ */
+import { ScannedFile, ScanConfig } from '../../types';
+/**
+ * File Scanner Class
+ */
+export declare class FileScanner {
+    private config;
+    private extensions;
+    constructor(config: ScanConfig);
+    /**
+     * Scan project directory for files
+     */
+    scan(): Promise<ScannedFile[]>;
+    /**
+     * Process a single file
+     */
+    private processFile;
+    /**
+     * Get ignore patterns for glob
+     */
+    private getIgnorePatterns;
+    /**
+     * Get file statistics
+     */
+    getFileStats(files: ScannedFile[]): Record<string, number>;
+}
+export default FileScanner;
+//# sourceMappingURL=fileScanner.d.ts.map

package/dist/core/scanner/fileScanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fileScanner.d.ts","sourceRoot":"","sources":["../../../src/core/scanner/fileScanner.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAKH,OAAO,EAAE,WAAW,EAAqB,UAAU,EAAE,MAAM,aAAa,CAAC;AA8BzE;;GAEG;AACH,qBAAa,WAAW;IACtB,OAAO,CAAC,MAAM,CAAa;IAC3B,OAAO,CAAC,UAAU,CAAW;gBAEjB,MAAM,EAAE,UAAU;IAK9B;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;IAqEpC;;OAEG;YACW,WAAW;IAgCzB;;OAEG;IACH,OAAO,CAAC,iBAAiB;IA4BzB;;OAEG;IACH,YAAY,CAAC,KAAK,EAAE,WAAW,EAAE,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;CAU3D;AAED,eAAe,WAAW,CAAC"}