npm - secure-scan - Versions diffs - 1.2.2 - Mend

secure-scan 1.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (569) hide show

package/README.md +564 -0
package/dist/ai/aiAnalyzer.d.ts +99 -0
package/dist/ai/aiAnalyzer.d.ts.map +1 -0
package/dist/ai/aiAnalyzer.js +669 -0
package/dist/ai/aiAnalyzer.js.map +1 -0
package/dist/ai/index.d.ts +5 -0
package/dist/ai/index.d.ts.map +1 -0
package/dist/ai/index.js +21 -0
package/dist/ai/index.js.map +1 -0
package/dist/analyzers/base/baseAnalyzer.d.ts +44 -0
package/dist/analyzers/base/baseAnalyzer.d.ts.map +1 -0
package/dist/analyzers/base/baseAnalyzer.js +53 -0
package/dist/analyzers/base/baseAnalyzer.js.map +1 -0
package/dist/analyzers/base/index.d.ts +5 -0
package/dist/analyzers/base/index.d.ts.map +1 -0
package/dist/analyzers/base/index.js +21 -0
package/dist/analyzers/base/index.js.map +1 -0
package/dist/analyzers/c-cpp/cppAnalyzer.d.ts +60 -0
package/dist/analyzers/c-cpp/cppAnalyzer.d.ts.map +1 -0
package/dist/analyzers/c-cpp/cppAnalyzer.js +218 -0
package/dist/analyzers/c-cpp/cppAnalyzer.js.map +1 -0
package/dist/analyzers/c-cpp/index.d.ts +5 -0
package/dist/analyzers/c-cpp/index.d.ts.map +1 -0
package/dist/analyzers/c-cpp/index.js +21 -0
package/dist/analyzers/c-cpp/index.js.map +1 -0
package/dist/analyzers/core/engine/index.d.ts +5 -0
package/dist/analyzers/core/engine/index.d.ts.map +1 -0
package/dist/analyzers/core/engine/index.js +21 -0
package/dist/analyzers/core/engine/index.js.map +1 -0
package/dist/analyzers/core/engine/ruleEngine.d.ts +46 -0
package/dist/analyzers/core/engine/ruleEngine.d.ts.map +1 -0
package/dist/analyzers/core/engine/ruleEngine.js +173 -0
package/dist/analyzers/core/engine/ruleEngine.js.map +1 -0
package/dist/analyzers/core/index.d.ts +8 -0
package/dist/analyzers/core/index.d.ts.map +1 -0
package/dist/analyzers/core/index.js +24 -0
package/dist/analyzers/core/index.js.map +1 -0
package/dist/analyzers/core/scanner/fileScanner.d.ts +31 -0
package/dist/analyzers/core/scanner/fileScanner.d.ts.map +1 -0
package/dist/analyzers/core/scanner/fileScanner.js +199 -0
package/dist/analyzers/core/scanner/fileScanner.js.map +1 -0
package/dist/analyzers/core/scanner/index.d.ts +5 -0
package/dist/analyzers/core/scanner/index.d.ts.map +1 -0
package/dist/analyzers/core/scanner/index.js +21 -0
package/dist/analyzers/core/scanner/index.js.map +1 -0
package/dist/analyzers/core/scoring/index.d.ts +5 -0
package/dist/analyzers/core/scoring/index.d.ts.map +1 -0
package/dist/analyzers/core/scoring/index.js +21 -0
package/dist/analyzers/core/scoring/index.js.map +1 -0
package/dist/analyzers/core/scoring/riskScoring.d.ts +49 -0
package/dist/analyzers/core/scoring/riskScoring.d.ts.map +1 -0
package/dist/analyzers/core/scoring/riskScoring.js +180 -0
package/dist/analyzers/core/scoring/riskScoring.js.map +1 -0
package/dist/analyzers/core/securityScanner.d.ts +47 -0
package/dist/analyzers/core/securityScanner.d.ts.map +1 -0
package/dist/analyzers/core/securityScanner.js +298 -0
package/dist/analyzers/core/securityScanner.js.map +1 -0
package/dist/analyzers/csharp/csharpAnalyzer.d.ts +64 -0
package/dist/analyzers/csharp/csharpAnalyzer.d.ts.map +1 -0
package/dist/analyzers/csharp/csharpAnalyzer.js +232 -0
package/dist/analyzers/csharp/csharpAnalyzer.js.map +1 -0
package/dist/analyzers/csharp/index.d.ts +5 -0
package/dist/analyzers/csharp/index.d.ts.map +1 -0
package/dist/analyzers/csharp/index.js +21 -0
package/dist/analyzers/csharp/index.js.map +1 -0
package/dist/analyzers/iac/iacAnalyzer.d.ts +36 -0
package/dist/analyzers/iac/iacAnalyzer.d.ts.map +1 -0
package/dist/analyzers/iac/iacAnalyzer.js +182 -0
package/dist/analyzers/iac/iacAnalyzer.js.map +1 -0
package/dist/analyzers/iac/index.d.ts +5 -0
package/dist/analyzers/iac/index.d.ts.map +1 -0
package/dist/analyzers/iac/index.js +21 -0
package/dist/analyzers/iac/index.js.map +1 -0
package/dist/analyzers/index.d.ts +30 -0
package/dist/analyzers/index.d.ts.map +1 -0
package/dist/analyzers/index.js +80 -0
package/dist/analyzers/index.js.map +1 -0
package/dist/analyzers/java/index.d.ts +5 -0
package/dist/analyzers/java/index.d.ts.map +1 -0
package/dist/analyzers/java/index.js +21 -0
package/dist/analyzers/java/index.js.map +1 -0
package/dist/analyzers/java/javaAnalyzer.d.ts +64 -0
package/dist/analyzers/java/javaAnalyzer.d.ts.map +1 -0
package/dist/analyzers/java/javaAnalyzer.js +224 -0
package/dist/analyzers/java/javaAnalyzer.js.map +1 -0
package/dist/analyzers/javascript/astUtils.d.ts +170 -0
package/dist/analyzers/javascript/astUtils.d.ts.map +1 -0
package/dist/analyzers/javascript/astUtils.js +700 -0
package/dist/analyzers/javascript/astUtils.js.map +1 -0
package/dist/analyzers/javascript/index.d.ts +18 -0
package/dist/analyzers/javascript/index.d.ts.map +1 -0
package/dist/analyzers/javascript/index.js +50 -0
package/dist/analyzers/javascript/index.js.map +1 -0
package/dist/analyzers/javascript/javascriptAnalyzer.d.ts +111 -0
package/dist/analyzers/javascript/javascriptAnalyzer.d.ts.map +1 -0
package/dist/analyzers/javascript/javascriptAnalyzer.js +860 -0
package/dist/analyzers/javascript/javascriptAnalyzer.js.map +1 -0
package/dist/analyzers/javascript/malwareDetector.d.ts +102 -0
package/dist/analyzers/javascript/malwareDetector.d.ts.map +1 -0
package/dist/analyzers/javascript/malwareDetector.js +616 -0
package/dist/analyzers/javascript/malwareDetector.js.map +1 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.d.ts +87 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.d.ts.map +1 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.js +553 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.js.map +1 -0
package/dist/analyzers/javascript/taintAnalyzer.d.ts +120 -0
package/dist/analyzers/javascript/taintAnalyzer.d.ts.map +1 -0
package/dist/analyzers/javascript/taintAnalyzer.js +526 -0
package/dist/analyzers/javascript/taintAnalyzer.js.map +1 -0
package/dist/analyzers/php/index.d.ts +5 -0
package/dist/analyzers/php/index.d.ts.map +1 -0
package/dist/analyzers/php/index.js +21 -0
package/dist/analyzers/php/index.js.map +1 -0
package/dist/analyzers/php/phpAnalyzer.d.ts +56 -0
package/dist/analyzers/php/phpAnalyzer.d.ts.map +1 -0
package/dist/analyzers/php/phpAnalyzer.js +202 -0
package/dist/analyzers/php/phpAnalyzer.js.map +1 -0
package/dist/analyzers/python/index.d.ts +5 -0
package/dist/analyzers/python/index.d.ts.map +1 -0
package/dist/analyzers/python/index.js +21 -0
package/dist/analyzers/python/index.js.map +1 -0
package/dist/analyzers/python/pythonAnalyzer.d.ts +64 -0
package/dist/analyzers/python/pythonAnalyzer.d.ts.map +1 -0
package/dist/analyzers/python/pythonAnalyzer.js +226 -0
package/dist/analyzers/python/pythonAnalyzer.js.map +1 -0
package/dist/cli/index.d.ts +7 -0
package/dist/cli/index.d.ts.map +1 -0
package/dist/cli/index.js +281 -0
package/dist/cli/index.js.map +1 -0
package/dist/core/engine/index.d.ts +5 -0
package/dist/core/engine/index.d.ts.map +1 -0
package/dist/core/engine/index.js +21 -0
package/dist/core/engine/index.js.map +1 -0
package/dist/core/engine/ruleEngine.d.ts +46 -0
package/dist/core/engine/ruleEngine.d.ts.map +1 -0
package/dist/core/engine/ruleEngine.js +173 -0
package/dist/core/engine/ruleEngine.js.map +1 -0
package/dist/core/index.d.ts +8 -0
package/dist/core/index.d.ts.map +1 -0
package/dist/core/index.js +24 -0
package/dist/core/index.js.map +1 -0
package/dist/core/scanner/fileScanner.d.ts +31 -0
package/dist/core/scanner/fileScanner.d.ts.map +1 -0
package/dist/core/scanner/fileScanner.js +199 -0
package/dist/core/scanner/fileScanner.js.map +1 -0
package/dist/core/scanner/index.d.ts +5 -0
package/dist/core/scanner/index.d.ts.map +1 -0
package/dist/core/scanner/index.js +21 -0
package/dist/core/scanner/index.js.map +1 -0
package/dist/core/scoring/index.d.ts +5 -0
package/dist/core/scoring/index.d.ts.map +1 -0
package/dist/core/scoring/index.js +21 -0
package/dist/core/scoring/index.js.map +1 -0
package/dist/core/scoring/riskScoring.d.ts +49 -0
package/dist/core/scoring/riskScoring.d.ts.map +1 -0
package/dist/core/scoring/riskScoring.js +180 -0
package/dist/core/scoring/riskScoring.js.map +1 -0
package/dist/core/securityScanner.d.ts +47 -0
package/dist/core/securityScanner.d.ts.map +1 -0
package/dist/core/securityScanner.js +298 -0
package/dist/core/securityScanner.js.map +1 -0
package/dist/dependencies/aiDependencyAnalyzer.d.ts +96 -0
package/dist/dependencies/aiDependencyAnalyzer.d.ts.map +1 -0
package/dist/dependencies/aiDependencyAnalyzer.js +435 -0
package/dist/dependencies/aiDependencyAnalyzer.js.map +1 -0
package/dist/dependencies/database/cveDatabase.d.ts +32 -0
package/dist/dependencies/database/cveDatabase.d.ts.map +1 -0
package/dist/dependencies/database/cveDatabase.js +393 -0
package/dist/dependencies/database/cveDatabase.js.map +1 -0
package/dist/dependencies/database/index.d.ts +6 -0
package/dist/dependencies/database/index.d.ts.map +1 -0
package/dist/dependencies/database/index.js +22 -0
package/dist/dependencies/database/index.js.map +1 -0
package/dist/dependencies/database/maliciousPackages.d.ts +43 -0
package/dist/dependencies/database/maliciousPackages.d.ts.map +1 -0
package/dist/dependencies/database/maliciousPackages.js +279 -0
package/dist/dependencies/database/maliciousPackages.js.map +1 -0
package/dist/dependencies/dependencyAnalyzer.d.ts +74 -0
package/dist/dependencies/dependencyAnalyzer.d.ts.map +1 -0
package/dist/dependencies/dependencyAnalyzer.js +349 -0
package/dist/dependencies/dependencyAnalyzer.js.map +1 -0
package/dist/dependencies/detectors/index.d.ts +7 -0
package/dist/dependencies/detectors/index.d.ts.map +1 -0
package/dist/dependencies/detectors/index.js +28 -0
package/dist/dependencies/detectors/index.js.map +1 -0
package/dist/dependencies/detectors/securityStandards.d.ts +15 -0
package/dist/dependencies/detectors/securityStandards.d.ts.map +1 -0
package/dist/dependencies/detectors/securityStandards.js +178 -0
package/dist/dependencies/detectors/securityStandards.js.map +1 -0
package/dist/dependencies/detectors/vulnerabilityDetector.d.ts +53 -0
package/dist/dependencies/detectors/vulnerabilityDetector.d.ts.map +1 -0
package/dist/dependencies/detectors/vulnerabilityDetector.js +289 -0
package/dist/dependencies/detectors/vulnerabilityDetector.js.map +1 -0
package/dist/dependencies/index.d.ts +14 -0
package/dist/dependencies/index.d.ts.map +1 -0
package/dist/dependencies/index.js +43 -0
package/dist/dependencies/index.js.map +1 -0
package/dist/dependencies/installed/index.d.ts +8 -0
package/dist/dependencies/installed/index.d.ts.map +1 -0
package/dist/dependencies/installed/index.js +24 -0
package/dist/dependencies/installed/index.js.map +1 -0
package/dist/dependencies/installed/installedScanner.d.ts +91 -0
package/dist/dependencies/installed/installedScanner.d.ts.map +1 -0
package/dist/dependencies/installed/installedScanner.js +766 -0
package/dist/dependencies/installed/installedScanner.js.map +1 -0
package/dist/dependencies/installed/malwarePatterns.d.ts +32 -0
package/dist/dependencies/installed/malwarePatterns.d.ts.map +1 -0
package/dist/dependencies/installed/malwarePatterns.js +480 -0
package/dist/dependencies/installed/malwarePatterns.js.map +1 -0
package/dist/dependencies/installed/types.d.ts +274 -0
package/dist/dependencies/installed/types.d.ts.map +1 -0
package/dist/dependencies/installed/types.js +7 -0
package/dist/dependencies/installed/types.js.map +1 -0
package/dist/dependencies/parsers/base/baseParser.d.ts +44 -0
package/dist/dependencies/parsers/base/baseParser.d.ts.map +1 -0
package/dist/dependencies/parsers/base/baseParser.js +80 -0
package/dist/dependencies/parsers/base/baseParser.js.map +1 -0
package/dist/dependencies/parsers/base/index.d.ts +6 -0
package/dist/dependencies/parsers/base/index.d.ts.map +1 -0
package/dist/dependencies/parsers/base/index.js +27 -0
package/dist/dependencies/parsers/base/index.js.map +1 -0
package/dist/dependencies/parsers/cpp/cppParser.d.ts +36 -0
package/dist/dependencies/parsers/cpp/cppParser.d.ts.map +1 -0
package/dist/dependencies/parsers/cpp/cppParser.js +196 -0
package/dist/dependencies/parsers/cpp/cppParser.js.map +1 -0
package/dist/dependencies/parsers/cpp/index.d.ts +6 -0
package/dist/dependencies/parsers/cpp/index.d.ts.map +1 -0
package/dist/dependencies/parsers/cpp/index.js +27 -0
package/dist/dependencies/parsers/cpp/index.js.map +1 -0
package/dist/dependencies/parsers/csharp/csharpParser.d.ts +32 -0
package/dist/dependencies/parsers/csharp/csharpParser.d.ts.map +1 -0
package/dist/dependencies/parsers/csharp/csharpParser.js +125 -0
package/dist/dependencies/parsers/csharp/csharpParser.js.map +1 -0
package/dist/dependencies/parsers/csharp/index.d.ts +6 -0
package/dist/dependencies/parsers/csharp/index.d.ts.map +1 -0
package/dist/dependencies/parsers/csharp/index.js +27 -0
package/dist/dependencies/parsers/csharp/index.js.map +1 -0
package/dist/dependencies/parsers/index.d.ts +24 -0
package/dist/dependencies/parsers/index.d.ts.map +1 -0
package/dist/dependencies/parsers/index.js +69 -0
package/dist/dependencies/parsers/index.js.map +1 -0
package/dist/dependencies/parsers/java/index.d.ts +6 -0
package/dist/dependencies/parsers/java/index.d.ts.map +1 -0
package/dist/dependencies/parsers/java/index.js +27 -0
package/dist/dependencies/parsers/java/index.js.map +1 -0
package/dist/dependencies/parsers/java/javaParser.d.ts +32 -0
package/dist/dependencies/parsers/java/javaParser.d.ts.map +1 -0
package/dist/dependencies/parsers/java/javaParser.js +168 -0
package/dist/dependencies/parsers/java/javaParser.js.map +1 -0
package/dist/dependencies/parsers/javascript/index.d.ts +6 -0
package/dist/dependencies/parsers/javascript/index.d.ts.map +1 -0
package/dist/dependencies/parsers/javascript/index.js +27 -0
package/dist/dependencies/parsers/javascript/index.js.map +1 -0
package/dist/dependencies/parsers/javascript/javascriptParser.d.ts +55 -0
package/dist/dependencies/parsers/javascript/javascriptParser.d.ts.map +1 -0
package/dist/dependencies/parsers/javascript/javascriptParser.js +266 -0
package/dist/dependencies/parsers/javascript/javascriptParser.js.map +1 -0
package/dist/dependencies/parsers/php/index.d.ts +6 -0
package/dist/dependencies/parsers/php/index.d.ts.map +1 -0
package/dist/dependencies/parsers/php/index.js +27 -0
package/dist/dependencies/parsers/php/index.js.map +1 -0
package/dist/dependencies/parsers/php/phpParser.d.ts +35 -0
package/dist/dependencies/parsers/php/phpParser.d.ts.map +1 -0
package/dist/dependencies/parsers/php/phpParser.js +162 -0
package/dist/dependencies/parsers/php/phpParser.js.map +1 -0
package/dist/dependencies/parsers/python/index.d.ts +6 -0
package/dist/dependencies/parsers/python/index.d.ts.map +1 -0
package/dist/dependencies/parsers/python/index.js +27 -0
package/dist/dependencies/parsers/python/index.js.map +1 -0
package/dist/dependencies/parsers/python/pythonParser.d.ts +60 -0
package/dist/dependencies/parsers/python/pythonParser.d.ts.map +1 -0
package/dist/dependencies/parsers/python/pythonParser.js +336 -0
package/dist/dependencies/parsers/python/pythonParser.js.map +1 -0
package/dist/dependencies/types.d.ts +280 -0
package/dist/dependencies/types.d.ts.map +1 -0
package/dist/dependencies/types.js +59 -0
package/dist/dependencies/types.js.map +1 -0
package/dist/i18n/index.d.ts +2 -0
package/dist/i18n/index.d.ts.map +1 -0
package/dist/i18n/index.js +18 -0
package/dist/i18n/index.js.map +1 -0
package/dist/i18n/translations.d.ts +55 -0
package/dist/i18n/translations.d.ts.map +1 -0
package/dist/i18n/translations.js +119 -0
package/dist/i18n/translations.js.map +1 -0
package/dist/index.d.ts +14 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +36 -0
package/dist/index.js.map +1 -0
package/dist/reports/dependencyReportGenerator.d.ts +20 -0
package/dist/reports/dependencyReportGenerator.d.ts.map +1 -0
package/dist/reports/dependencyReportGenerator.js +690 -0
package/dist/reports/dependencyReportGenerator.js.map +1 -0
package/dist/reports/htmlReportGenerator.d.ts +43 -0
package/dist/reports/htmlReportGenerator.d.ts.map +1 -0
package/dist/reports/htmlReportGenerator.js +793 -0
package/dist/reports/htmlReportGenerator.js.map +1 -0
package/dist/reports/index.d.ts +7 -0
package/dist/reports/index.d.ts.map +1 -0
package/dist/reports/index.js +23 -0
package/dist/reports/index.js.map +1 -0
package/dist/reports/installedDepsReportGenerator.d.ts +14 -0
package/dist/reports/installedDepsReportGenerator.d.ts.map +1 -0
package/dist/reports/installedDepsReportGenerator.js +872 -0
package/dist/reports/installedDepsReportGenerator.js.map +1 -0
package/dist/rules/index.d.ts +31 -0
package/dist/rules/index.d.ts.map +1 -0
package/dist/rules/index.js +95 -0
package/dist/rules/index.js.map +1 -0
package/dist/rules/malware/categories/backdoors.d.ts +12 -0
package/dist/rules/malware/categories/backdoors.d.ts.map +1 -0
package/dist/rules/malware/categories/backdoors.js +163 -0
package/dist/rules/malware/categories/backdoors.js.map +1 -0
package/dist/rules/malware/categories/cryptominers.d.ts +13 -0
package/dist/rules/malware/categories/cryptominers.d.ts.map +1 -0
package/dist/rules/malware/categories/cryptominers.js +415 -0
package/dist/rules/malware/categories/cryptominers.js.map +1 -0
package/dist/rules/malware/categories/exfiltration.d.ts +20 -0
package/dist/rules/malware/categories/exfiltration.d.ts.map +1 -0
package/dist/rules/malware/categories/exfiltration.js +658 -0
package/dist/rules/malware/categories/exfiltration.js.map +1 -0
package/dist/rules/malware/categories/keyloggers.d.ts +19 -0
package/dist/rules/malware/categories/keyloggers.d.ts.map +1 -0
package/dist/rules/malware/categories/keyloggers.js +763 -0
package/dist/rules/malware/categories/keyloggers.js.map +1 -0
package/dist/rules/malware/categories/loaders.d.ts +20 -0
package/dist/rules/malware/categories/loaders.d.ts.map +1 -0
package/dist/rules/malware/categories/loaders.js +702 -0
package/dist/rules/malware/categories/loaders.js.map +1 -0
package/dist/rules/malware/categories/network.d.ts +19 -0
package/dist/rules/malware/categories/network.d.ts.map +1 -0
package/dist/rules/malware/categories/network.js +622 -0
package/dist/rules/malware/categories/network.js.map +1 -0
package/dist/rules/malware/categories/obfuscation.d.ts +22 -0
package/dist/rules/malware/categories/obfuscation.d.ts.map +1 -0
package/dist/rules/malware/categories/obfuscation.js +766 -0
package/dist/rules/malware/categories/obfuscation.js.map +1 -0
package/dist/rules/malware/constants/index.d.ts +281 -0
package/dist/rules/malware/constants/index.d.ts.map +1 -0
package/dist/rules/malware/constants/index.js +327 -0
package/dist/rules/malware/constants/index.js.map +1 -0
package/dist/rules/malware/engine/index.d.ts +178 -0
package/dist/rules/malware/engine/index.d.ts.map +1 -0
package/dist/rules/malware/engine/index.js +552 -0
package/dist/rules/malware/engine/index.js.map +1 -0
package/dist/rules/malware/index.d.ts +205 -0
package/dist/rules/malware/index.d.ts.map +1 -0
package/dist/rules/malware/index.js +837 -0
package/dist/rules/malware/index.js.map +1 -0
package/dist/rules/malware/scoring/index.d.ts +84 -0
package/dist/rules/malware/scoring/index.d.ts.map +1 -0
package/dist/rules/malware/scoring/index.js +441 -0
package/dist/rules/malware/scoring/index.js.map +1 -0
package/dist/rules/malware/types/index.d.ts +616 -0
package/dist/rules/malware/types/index.d.ts.map +1 -0
package/dist/rules/malware/types/index.js +155 -0
package/dist/rules/malware/types/index.js.map +1 -0
package/dist/rules/malware/utils/index.d.ts +117 -0
package/dist/rules/malware/utils/index.d.ts.map +1 -0
package/dist/rules/malware/utils/index.js +514 -0
package/dist/rules/malware/utils/index.js.map +1 -0
package/dist/rules/standards.d.ts +26 -0
package/dist/rules/standards.d.ts.map +1 -0
package/dist/rules/standards.js +352 -0
package/dist/rules/standards.js.map +1 -0
package/dist/rules/vulnerabilities/constants/index.d.ts +835 -0
package/dist/rules/vulnerabilities/constants/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/constants/index.js +544 -0
package/dist/rules/vulnerabilities/constants/index.js.map +1 -0
package/dist/rules/vulnerabilities/engine/index.d.ts +145 -0
package/dist/rules/vulnerabilities/engine/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/engine/index.js +581 -0
package/dist/rules/vulnerabilities/engine/index.js.map +1 -0
package/dist/rules/vulnerabilities/index.d.ts +148 -0
package/dist/rules/vulnerabilities/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/index.js +252 -0
package/dist/rules/vulnerabilities/index.js.map +1 -0
package/dist/rules/vulnerabilities/rules/authentication.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/authentication.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/authentication.js +419 -0
package/dist/rules/vulnerabilities/rules/authentication.js.map +1 -0
package/dist/rules/vulnerabilities/rules/commandInjection.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/commandInjection.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/commandInjection.js +300 -0
package/dist/rules/vulnerabilities/rules/commandInjection.js.map +1 -0
package/dist/rules/vulnerabilities/rules/csrf.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/csrf.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/csrf.js +261 -0
package/dist/rules/vulnerabilities/rules/csrf.js.map +1 -0
package/dist/rules/vulnerabilities/rules/deserialization.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/deserialization.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/deserialization.js +336 -0
package/dist/rules/vulnerabilities/rules/deserialization.js.map +1 -0
package/dist/rules/vulnerabilities/rules/fileUpload.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/fileUpload.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/fileUpload.js +325 -0
package/dist/rules/vulnerabilities/rules/fileUpload.js.map +1 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.js +446 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.js.map +1 -0
package/dist/rules/vulnerabilities/rules/index.d.ts +17 -0
package/dist/rules/vulnerabilities/rules/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/index.js +47 -0
package/dist/rules/vulnerabilities/rules/index.js.map +1 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.js +351 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.js.map +1 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.js +272 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.js.map +1 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.js +438 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.js.map +1 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.d.ts +12 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.js +636 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.js.map +1 -0
package/dist/rules/vulnerabilities/rules/ssrf.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/ssrf.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/ssrf.js +401 -0
package/dist/rules/vulnerabilities/rules/ssrf.js.map +1 -0
package/dist/rules/vulnerabilities/rules/xss.d.ts +11 -0
package/dist/rules/vulnerabilities/rules/xss.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/xss.js +724 -0
package/dist/rules/vulnerabilities/rules/xss.js.map +1 -0
package/dist/rules/vulnerabilities/scoring/index.d.ts +80 -0
package/dist/rules/vulnerabilities/scoring/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/scoring/index.js +414 -0
package/dist/rules/vulnerabilities/scoring/index.js.map +1 -0
package/dist/rules/vulnerabilities/types/index.d.ts +830 -0
package/dist/rules/vulnerabilities/types/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/types/index.js +164 -0
package/dist/rules/vulnerabilities/types/index.js.map +1 -0
package/dist/rules/vulnerabilities/utils/index.d.ts +206 -0
package/dist/rules/vulnerabilities/utils/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/utils/index.js +615 -0
package/dist/rules/vulnerabilities/utils/index.js.map +1 -0
package/dist/types/index.d.ts +359 -0
package/dist/types/index.d.ts.map +1 -0
package/dist/types/index.js +61 -0
package/dist/types/index.js.map +1 -0
package/dist/utils/index.d.ts +82 -0
package/dist/utils/index.d.ts.map +1 -0
package/dist/utils/index.js +326 -0
package/dist/utils/index.js.map +1 -0
package/dist/utils/logger.d.ts +40 -0
package/dist/utils/logger.d.ts.map +1 -0
package/dist/utils/logger.js +139 -0
package/dist/utils/logger.js.map +1 -0
package/docs/ARCHITECTURE.md +320 -0
package/docs/V1.2.1-IA_Performances.md +116 -0
package/docs/images/WIN_Defender.png +0 -0
package/package.json +68 -0
package/secure-scan.config.json +134 -0
package/secure-scan.sln +29 -0
package/src/ai/aiAnalyzer.ts +714 -0
package/src/ai/index.ts +5 -0
package/src/analyzers/base/baseAnalyzer.ts +66 -0
package/src/analyzers/base/index.ts +5 -0
package/src/analyzers/c-cpp/cppAnalyzer.ts +308 -0
package/src/analyzers/c-cpp/index.ts +5 -0
package/src/analyzers/core/engine/index.ts +5 -0
package/src/analyzers/core/engine/ruleEngine.ts +221 -0
package/src/analyzers/core/index.ts +8 -0
package/src/analyzers/core/scanner/fileScanner.ts +204 -0
package/src/analyzers/core/scanner/index.ts +5 -0
package/src/analyzers/core/scoring/index.ts +5 -0
package/src/analyzers/core/scoring/riskScoring.ts +198 -0
package/src/analyzers/core/securityScanner.ts +321 -0
package/src/analyzers/csharp/csharpAnalyzer.ts +328 -0
package/src/analyzers/csharp/index.ts +5 -0
package/src/analyzers/iac/iacAnalyzer.ts +318 -0
package/src/analyzers/iac/index.ts +5 -0
package/src/analyzers/index.ts +67 -0
package/src/analyzers/java/index.ts +5 -0
package/src/analyzers/java/javaAnalyzer.ts +320 -0
package/src/analyzers/javascript/PROMPT_JS_ANALYZER.md +267 -0
package/src/analyzers/javascript/astUtils.ts +789 -0
package/src/analyzers/javascript/index.ts +50 -0
package/src/analyzers/javascript/javascriptAnalyzer.ts +984 -0
package/src/analyzers/javascript/malwareDetector.ts +697 -0
package/src/analyzers/javascript/packageJsonAnalyzer.ts +626 -0
package/src/analyzers/javascript/taintAnalyzer.ts +630 -0
package/src/analyzers/php/index.ts +5 -0
package/src/analyzers/php/phpAnalyzer.ts +280 -0
package/src/analyzers/python/index.ts +5 -0
package/src/analyzers/python/pythonAnalyzer.ts +319 -0
package/src/cli/index.ts +276 -0
package/src/dependencies/aiDependencyAnalyzer.ts +496 -0
package/src/dependencies/database/cveDatabase.ts +426 -0
package/src/dependencies/database/index.ts +6 -0
package/src/dependencies/database/maliciousPackages.ts +286 -0
package/src/dependencies/dependencyAnalyzer.ts +394 -0
package/src/dependencies/detectors/index.ts +7 -0
package/src/dependencies/detectors/securityStandards.ts +200 -0
package/src/dependencies/detectors/vulnerabilityDetector.ts +343 -0
package/src/dependencies/index.ts +27 -0
package/src/dependencies/installed/index.ts +8 -0
package/src/dependencies/installed/installedScanner.ts +821 -0
package/src/dependencies/installed/malwarePatterns.ts +492 -0
package/src/dependencies/installed/types.ts +287 -0
package/src/dependencies/parsers/base/baseParser.ts +108 -0
package/src/dependencies/parsers/base/index.ts +6 -0
package/src/dependencies/parsers/cpp/cppParser.ts +245 -0
package/src/dependencies/parsers/cpp/index.ts +6 -0
package/src/dependencies/parsers/csharp/csharpParser.ts +151 -0
package/src/dependencies/parsers/csharp/index.ts +6 -0
package/src/dependencies/parsers/index.ts +56 -0
package/src/dependencies/parsers/java/index.ts +6 -0
package/src/dependencies/parsers/java/javaParser.ts +203 -0
package/src/dependencies/parsers/javascript/index.ts +6 -0
package/src/dependencies/parsers/javascript/javascriptParser.ts +362 -0
package/src/dependencies/parsers/php/index.ts +6 -0
package/src/dependencies/parsers/php/phpParser.ts +208 -0
package/src/dependencies/parsers/python/index.ts +6 -0
package/src/dependencies/parsers/python/pythonParser.ts +437 -0
package/src/dependencies/types.ts +330 -0
package/src/i18n/index.ts +1 -0
package/src/i18n/translations.ts +194 -0
package/src/index.ts +16 -0
package/src/reports/dependencyReportGenerator.ts +717 -0
package/src/reports/htmlReportGenerator.ts +781 -0
package/src/reports/index.ts +7 -0
package/src/reports/installedDepsReportGenerator.ts +899 -0
package/src/rules/index.ts +58 -0
package/src/rules/malware/INFO.md +287 -0
package/src/rules/malware/categories/backdoors.ts +174 -0
package/src/rules/malware/categories/cryptominers.ts +434 -0
package/src/rules/malware/categories/exfiltration.ts +677 -0
package/src/rules/malware/categories/keyloggers.ts +780 -0
package/src/rules/malware/categories/loaders.ts +721 -0
package/src/rules/malware/categories/network.ts +639 -0
package/src/rules/malware/categories/obfuscation.ts +788 -0
package/src/rules/malware/constants/index.ts +358 -0
package/src/rules/malware/engine/index.ts +758 -0
package/src/rules/malware/index.ts +928 -0
package/src/rules/malware/scoring/index.ts +549 -0
package/src/rules/malware/types/index.ts +752 -0
package/src/rules/malware/utils/index.ts +643 -0
package/src/rules/standards.ts +372 -0
package/src/rules/vulnerabilities/PROMPT_VULNERABILITIES.md +226 -0
package/src/rules/vulnerabilities/constants/index.ts +625 -0
package/src/rules/vulnerabilities/engine/index.ts +831 -0
package/src/rules/vulnerabilities/index.ts +312 -0
package/src/rules/vulnerabilities/rules/authentication.ts +426 -0
package/src/rules/vulnerabilities/rules/commandInjection.ts +307 -0
package/src/rules/vulnerabilities/rules/csrf.ts +268 -0
package/src/rules/vulnerabilities/rules/deserialization.ts +343 -0
package/src/rules/vulnerabilities/rules/fileUpload.ts +332 -0
package/src/rules/vulnerabilities/rules/hardcodedSecrets.ts +453 -0
package/src/rules/vulnerabilities/rules/index.ts +17 -0
package/src/rules/vulnerabilities/rules/pathTraversal.ts +358 -0
package/src/rules/vulnerabilities/rules/prototypePollution.ts +279 -0
package/src/rules/vulnerabilities/rules/securityMisconfiguration.ts +445 -0
package/src/rules/vulnerabilities/rules/sqlInjection.ts +669 -0
package/src/rules/vulnerabilities/rules/ssrf.ts +408 -0
package/src/rules/vulnerabilities/rules/xss.ts +753 -0
package/src/rules/vulnerabilities/scoring/index.ts +543 -0
package/src/rules/vulnerabilities/types/index.ts +1004 -0
package/src/rules/vulnerabilities/utils/index.ts +709 -0
package/src/types/index.ts +391 -0
package/src/utils/index.ts +306 -0
package/src/utils/logger.ts +150 -0
package/test-installed-scanner.ts +136 -0
package/tsconfig.json +30 -0

package/dist/rules/vulnerabilities/types/index.d.ts ADDED Viewed

@@ -0,0 +1,830 @@
+/**
+ * @fileoverview Vulnerability Detection Module - Type Definitions
+ * @module rules/vulnerabilities/types
+ *
+ * Comprehensive type definitions for the vulnerability detection engine.
+ * Supports multi-language analysis, AST-aware detection, taint analysis,
+ * and enterprise-level reporting with OWASP/CWE/SANS/MITRE mappings.
+ */
+/**
+ * Supported programming languages for vulnerability detection
+ */
+export declare enum SupportedLanguage {
+    JAVASCRIPT = "javascript",
+    TYPESCRIPT = "typescript",
+    PYTHON = "python",
+    PHP = "php",
+    C = "c",
+    CPP = "cpp",
+    CSHARP = "csharp",
+    JAVA = "java",
+    RUBY = "ruby",
+    GO = "go",
+    RUST = "rust",
+    SHELL = "shell",
+    POWERSHELL = "powershell",
+    DOCKERFILE = "dockerfile",
+    YAML = "yaml",
+    TERRAFORM = "terraform"
+}
+/**
+ * Vulnerability categories based on OWASP classification
+ */
+export declare enum VulnerabilityCategory {
+    INJECTION = "injection",
+    XSS = "xss",
+    AUTHENTICATION = "authentication",
+    SESSION_MANAGEMENT = "session_management",
+    ACCESS_CONTROL = "access_control",
+    BROKEN_ACCESS_CONTROL = "broken_access_control",
+    CRYPTOGRAPHY = "cryptography",
+    CRYPTOGRAPHIC_FAILURE = "cryptographic_failure",
+    DESERIALIZATION = "deserialization",
+    FILE_HANDLING = "file_handling",
+    CONFIGURATION = "configuration",
+    SECURITY_MISCONFIGURATION = "security_misconfiguration",
+    INFORMATION_DISCLOSURE = "information_disclosure",
+    SENSITIVE_DATA_EXPOSURE = "sensitive_data_exposure",
+    INPUT_VALIDATION = "input_validation",
+    INFRASTRUCTURE = "infrastructure",
+    KNOWN_VULNERABLE_COMPONENT = "known_vulnerable_component"
+}
+/**
+ * Specific vulnerability types
+ */
+export declare enum VulnerabilityType {
+    SQL_INJECTION = "sql_injection",
+    NOSQL_INJECTION = "nosql_injection",
+    COMMAND_INJECTION = "command_injection",
+    CODE_INJECTION = "code_injection",
+    LDAP_INJECTION = "ldap_injection",
+    XPATH_INJECTION = "xpath_injection",
+    TEMPLATE_INJECTION = "template_injection",
+    HEADER_INJECTION = "header_injection",
+    XSS_REFLECTED = "xss_reflected",
+    XSS_STORED = "xss_stored",
+    XSS_DOM = "xss_dom",
+    CSRF = "csrf",
+    SSRF = "ssrf",
+    INSECURE_DESERIALIZATION = "insecure_deserialization",
+    PROTOTYPE_POLLUTION = "prototype_pollution",
+    PATH_TRAVERSAL = "path_traversal",
+    UNSAFE_FILE_UPLOAD = "unsafe_file_upload",
+    FILE_UPLOAD = "file_upload",
+    ARBITRARY_FILE_READ = "arbitrary_file_read",
+    ARBITRARY_FILE_WRITE = "arbitrary_file_write",
+    INSECURE_AUTHENTICATION = "insecure_authentication",
+    BROKEN_AUTHENTICATION = "broken_authentication",
+    BROKEN_SESSION = "broken_session",
+    HARDCODED_CREDENTIALS = "hardcoded_credentials",
+    HARDCODED_SECRETS = "hardcoded_secrets",
+    WEAK_PASSWORD_POLICY = "weak_password_policy",
+    WEAK_CRYPTO = "weak_crypto",
+    WEAK_RANDOM = "weak_random",
+    INSECURE_TLS = "insecure_tls",
+    MISSING_ENCRYPTION = "missing_encryption",
+    BROKEN_ACCESS_CONTROL = "broken_access_control",
+    IDOR = "idor",
+    PRIVILEGE_ESCALATION = "privilege_escalation",
+    INFORMATION_EXPOSURE = "information_exposure",
+    ERROR_DISCLOSURE = "error_disclosure",
+    DEBUG_ENABLED = "debug_enabled",
+    SECURITY_MISCONFIGURATION = "security_misconfiguration",
+    CORS_MISCONFIGURATION = "cors_misconfiguration",
+    INSECURE_HEADERS = "insecure_headers",
+    DANGEROUS_FUNCTION = "dangerous_function",
+    DOCKERFILE_ISSUE = "dockerfile_issue",
+    CICD_VULNERABILITY = "cicd_vulnerability",
+    IaC_ISSUE = "iac_issue"
+}
+/**
+ * Severity levels for vulnerability findings
+ */
+export declare enum VulnerabilitySeverity {
+    CRITICAL = "critical",// Immediate exploitation risk
+    HIGH = "high",// Serious vulnerability
+    MEDIUM = "medium",// Moderate risk
+    LOW = "low",// Minor concern
+    INFO = "info"
+}
+/**
+ * Confidence level of the detection
+ */
+export declare enum ConfidenceLevel {
+    CONFIRMED = "confirmed",// 95%+ certainty, verified taint flow
+    HIGH = "high",// 80-95% certainty
+    MEDIUM = "medium",// 60-80% certainty
+    LOW = "low",// 40-60% certainty
+    TENTATIVE = "tentative"
+}
+/**
+ * Pattern matching strategies
+ */
+export declare enum PatternType {
+    REGEX = "regex",
+    LITERAL = "literal",
+    AST = "ast",
+    SEMANTIC = "semantic",
+    TAINT = "taint",
+    CFG = "cfg"
+}
+/**
+ * Taint flow stages
+ */
+export declare enum TaintStage {
+    SOURCE = "source",
+    PROPAGATION = "propagation",
+    SANITIZER = "sanitizer",
+    SINK = "sink"
+}
+/**
+ * OWASP Top 10 reference
+ */
+export interface OwaspReference {
+    /** OWASP ID (e.g., A03:2021) */
+    id: string;
+    /** Category name */
+    name: string;
+    /** URL to OWASP documentation */
+    url?: string;
+}
+/**
+ * CWE reference
+ */
+export interface CweReference {
+    /** CWE ID (e.g., CWE-79) */
+    id: string;
+    /** CWE title */
+    title: string;
+    /** URL to CWE documentation */
+    url?: string;
+}
+/**
+ * SANS Top 25 reference
+ */
+export interface SansReference {
+    /** SANS ranking (1-25) */
+    rank: number;
+    /** Associated CWE ID */
+    cweId: string;
+    /** Category name */
+    category: string;
+}
+/**
+ * MITRE ATT&CK reference
+ */
+export interface MitreReference {
+    /** Tactic ID (e.g., TA0001) */
+    tacticId: string;
+    /** Tactic name */
+    tacticName: string;
+    /** Technique ID (e.g., T1059) */
+    techniqueId: string;
+    /** Technique name */
+    techniqueName: string;
+    /** Sub-technique ID if applicable */
+    subTechniqueId?: string;
+    /** URL to MITRE documentation */
+    url?: string;
+}
+/**
+ * CVE reference
+ */
+export interface CveReference {
+    /** CVE ID (e.g., CVE-2021-44228) */
+    cveId: string;
+    /** Brief description */
+    description: string;
+    /** CVSS score if available */
+    cvssScore?: number;
+    /** URL to CVE details */
+    url?: string;
+}
+/**
+ * Combined security standards for a vulnerability
+ */
+export interface SecurityStandards {
+    owasp?: OwaspReference[];
+    cwe?: CweReference[];
+    sans?: SansReference[];
+    mitre?: MitreReference[];
+    cve?: CveReference[];
+}
+/**
+ * Base pattern definition
+ */
+export interface VulnerabilityPatternBase {
+    /** Pattern type */
+    type: PatternType;
+    /** Pattern identifier for reference */
+    patternId?: string;
+    /** Languages this pattern applies to (empty = all) */
+    languages?: SupportedLanguage[];
+    /** Weight for scoring (0.0 - 1.0) */
+    weight?: number;
+    /** Description of what this pattern detects */
+    description?: string;
+}
+/**
+ * Regex-based pattern
+ */
+export interface RegexPattern extends VulnerabilityPatternBase {
+    type: PatternType.REGEX;
+    /** The regex pattern string */
+    pattern: string;
+    /** Regex flags (g, i, m, s, u) */
+    flags?: string;
+    /** Maximum execution time in ms (ReDoS protection) */
+    timeout?: number;
+    /** Maximum matches before stopping */
+    maxMatches?: number;
+}
+/**
+ * Literal string pattern
+ */
+export interface LiteralPattern extends VulnerabilityPatternBase {
+    type: PatternType.LITERAL;
+    /** The literal string to match */
+    value: string;
+    /** Case sensitive matching */
+    caseSensitive?: boolean;
+}
+/**
+ * AST-based pattern for structural matching
+ */
+export interface AstPattern extends VulnerabilityPatternBase {
+    type: PatternType.AST;
+    /** AST node type to match */
+    nodeType: string;
+    /** Properties to match on the node */
+    properties?: Record<string, unknown>;
+    /** Child patterns to match */
+    children?: AstPattern[];
+    /** Parent context requirements */
+    parentContext?: string[];
+}
+/**
+ * Taint analysis pattern
+ */
+export interface TaintPattern extends VulnerabilityPatternBase {
+    type: PatternType.TAINT;
+    /** Taint sources */
+    sources: TaintSource[];
+    /** Taint sinks */
+    sinks: TaintSink[];
+    /** Optional sanitizers that break the taint */
+    sanitizers?: TaintSanitizer[];
+    /** Required flow path */
+    requiredPath?: string[];
+}
+/**
+ * Semantic pattern for meaning-based matching
+ */
+export interface SemanticPattern extends VulnerabilityPatternBase {
+    type: PatternType.SEMANTIC;
+    /** Semantic concept to detect */
+    concept: string;
+    /** Required data flows */
+    dataFlows?: string[];
+}
+/**
+ * Control flow graph pattern
+ */
+export interface CfgPattern extends VulnerabilityPatternBase {
+    type: PatternType.CFG;
+    /** Entry point condition */
+    entryCondition: string;
+    /** Required path conditions */
+    pathConditions?: string[];
+    /** Exit point condition */
+    exitCondition: string;
+}
+/**
+ * Union type for all pattern types
+ */
+export type VulnerabilityPattern = RegexPattern | LiteralPattern | AstPattern | TaintPattern | SemanticPattern | CfgPattern;
+/**
+ * Taint source definition
+ */
+export interface TaintSource {
+    /** Source identifier */
+    id: string;
+    /** Source name (e.g., req.body, $_GET) */
+    name: string;
+    /** Pattern to match the source */
+    pattern: string | RegExp;
+    /** Languages this source applies to */
+    languages?: SupportedLanguage[];
+    /** Trust level (0-100, lower = less trusted) */
+    trustLevel?: number;
+    /** Source category */
+    category?: 'user_input' | 'environment' | 'database' | 'network' | 'file';
+}
+/**
+ * Taint sink definition
+ */
+export interface TaintSink {
+    /** Sink identifier */
+    id: string;
+    /** Sink name (e.g., exec, innerHTML) */
+    name: string;
+    /** Pattern to match the sink */
+    pattern: string | RegExp;
+    /** Languages this sink applies to */
+    languages?: SupportedLanguage[];
+    /** Vulnerability type this sink can cause */
+    vulnerabilityType: VulnerabilityType;
+    /** Arguments that are dangerous (0-indexed) */
+    dangerousArgs?: number[];
+}
+/**
+ * Taint sanitizer definition
+ */
+export interface TaintSanitizer {
+    /** Sanitizer identifier */
+    id: string;
+    /** Sanitizer name */
+    name: string;
+    /** Pattern to match the sanitizer */
+    pattern: string | RegExp;
+    /** Languages this sanitizer applies to */
+    languages?: SupportedLanguage[];
+    /** Vulnerability types this sanitizer protects against */
+    protectsAgainst: VulnerabilityType[];
+    /** Effectiveness (0-100) */
+    effectiveness?: number;
+}
+/**
+ * Detected taint flow
+ */
+export interface TaintFlow {
+    /** Source of the taint */
+    source: TaintSource;
+    /** Sink where taint reaches */
+    sink: TaintSink;
+    /** Propagation path */
+    path: TaintPathNode[];
+    /** Applied sanitizers */
+    sanitizers: TaintSanitizer[];
+    /** Is the flow exploitable */
+    isExploitable: boolean;
+    /** Confidence of the flow detection */
+    confidence: ConfidenceLevel;
+}
+/**
+ * Node in taint propagation path
+ */
+export interface TaintPathNode {
+    /** Variable or expression name */
+    name: string;
+    /** Location in source */
+    location: SourceLocation;
+    /** Operation performed */
+    operation?: string;
+}
+/**
+ * Example code for documentation
+ */
+export interface CodeExample {
+    /** The example code */
+    code: string;
+    /** Language of the example */
+    language: SupportedLanguage;
+    /** Whether this is a vulnerable example */
+    isVulnerable: boolean;
+    /** Description of the example */
+    description: string;
+    /** If safe, explanation of why */
+    safetyExplanation?: string;
+}
+/**
+ * Impact assessment following CVSS-like scoring
+ */
+export interface ImpactAssessment {
+    /** Confidentiality impact (none, low, medium, high) */
+    confidentiality: 'none' | 'low' | 'medium' | 'high';
+    /** Integrity impact (none, low, medium, high) */
+    integrity: 'none' | 'low' | 'medium' | 'high';
+    /** Availability impact (none, low, medium, high) */
+    availability: 'none' | 'low' | 'medium' | 'high';
+    /** Scope (unchanged, changed) */
+    scope?: 'unchanged' | 'changed';
+    /** Technical impact description */
+    technicalImpact: string;
+    /** Business impact description */
+    businessImpact: string;
+    /** Affected assets */
+    affectedAssets?: string[];
+    /** Data at risk */
+    dataAtRisk?: string[];
+}
+/**
+ * Exploitability assessment
+ */
+export interface ExploitabilityAssessment {
+    /** Attack vector (network, adjacent, local, physical) */
+    attackVector: 'network' | 'adjacent' | 'local' | 'physical';
+    /** Attack complexity (low, medium, high) */
+    attackComplexity: 'low' | 'medium' | 'high';
+    /** Privileges required (none, low, high) */
+    privilegesRequired: 'none' | 'low' | 'high';
+    /** User interaction (none, required) */
+    userInteraction: 'none' | 'required';
+    /** Known exploits in the wild */
+    knownExploits?: boolean;
+    /** Exploit difficulty description */
+    exploitDifficulty?: string;
+}
+/**
+ * Remediation guidance
+ */
+export interface RemediationGuidance {
+    /** Short remediation summary */
+    summary: string;
+    /** Detailed steps */
+    steps: string[];
+    /** Secure code example */
+    secureCodeExample?: string;
+    /** References for more information */
+    references?: string[];
+    /** Estimated effort (low, medium, high) */
+    effort?: 'low' | 'medium' | 'high';
+    /** Priority for fixing */
+    priority?: 'immediate' | 'high' | 'medium' | 'low';
+}
+/**
+ * Rule correlation configuration
+ */
+export interface RuleCorrelation {
+    /** Rules that increase severity when both match */
+    amplifyWith?: string[];
+    /** Rules that must also match for this rule to trigger */
+    requiresAlso?: string[];
+    /** Rules that suppress this rule when matched */
+    suppressedBy?: string[];
+    /** Severity boost when correlated rules match */
+    severityBoost?: number;
+}
+/**
+ * Context conditions for severity adjustment
+ */
+export interface ContextConditions {
+    /** Boost severity if in production code */
+    productionBoost?: number;
+    /** Reduce severity if in test code */
+    testCodePenalty?: number;
+    /** Boost if handles sensitive data */
+    sensitiveDataBoost?: number;
+    /** File path patterns to adjust severity */
+    filePatterns?: Array<{
+        pattern: string;
+        severityAdjustment: number;
+    }>;
+}
+/**
+ * Comprehensive vulnerability detection rule
+ */
+export interface VulnerabilityRule {
+    /** Unique rule identifier (e.g., VUL-SQLI-001) */
+    id: string;
+    /** Human-readable rule name */
+    name: string;
+    /** Detailed technical description */
+    description: string;
+    /** Version of the rule */
+    version?: string;
+    /** Specific vulnerability type */
+    vulnerabilityType: VulnerabilityType;
+    /** Vulnerability category */
+    category: VulnerabilityCategory;
+    /** Languages this rule applies to */
+    languages: SupportedLanguage[];
+    /** Base severity level */
+    severity: VulnerabilitySeverity;
+    /** Detection confidence */
+    confidence: ConfidenceLevel;
+    /** Primary detection patterns */
+    patterns: VulnerabilityPattern[];
+    /** Secondary patterns that increase severity */
+    amplifyingPatterns?: VulnerabilityPattern[];
+    /** Patterns that indicate false positive */
+    falsePositivePatterns?: VulnerabilityPattern[];
+    /** Taint sources for this vulnerability */
+    taintSources?: TaintSource[];
+    /** Taint sinks for this vulnerability */
+    taintSinks?: TaintSink[];
+    /** Sanitizers that prevent this vulnerability */
+    taintSanitizers?: TaintSanitizer[];
+    /** Simplified taint analysis config (sources, sinks, sanitizers as strings) */
+    taintAnalysis?: {
+        sources: string[];
+        sinks: string[];
+        sanitizers?: string[];
+    };
+    /** Rule correlation configuration */
+    correlation?: RuleCorrelation;
+    /** Context conditions for severity adjustment */
+    contextConditions?: ContextConditions;
+    /** Base score contribution (0-100) */
+    baseScore?: number;
+    /** Scoring factors */
+    scoringFactors?: ScoringFactors;
+    /** Impact assessment */
+    impact: ImpactAssessment;
+    /** Exploitability assessment */
+    exploitability?: ExploitabilityAssessment;
+    /** Example vulnerable code */
+    vulnerableExamples?: CodeExample[];
+    /** Example secure code */
+    secureExamples?: CodeExample[];
+    /** Known false positive examples */
+    falsePositiveExamples?: CodeExample[];
+    /** Remediation guidance */
+    remediation: RemediationGuidance;
+    /** Security standard references */
+    standards: SecurityStandards;
+    /** Tags for categorization */
+    tags: string[];
+    /** Whether the rule is enabled */
+    enabled: boolean;
+    /** Author of the rule */
+    author?: string;
+    /** Creation date */
+    createdAt?: string;
+    /** Last update date */
+    updatedAt?: string;
+}
+/**
+ * Scoring factors for dynamic severity calculation
+ */
+export interface ScoringFactors {
+    /** Taint flow weight */
+    taintFlowWeight?: number;
+    /** Pattern count weight */
+    patternCountWeight?: number;
+    /** Exploitability weight */
+    exploitabilityWeight?: number;
+    /** Impact weight */
+    impactWeight?: number;
+    /** Context weight */
+    contextWeight?: number;
+}
+/**
+ * Vulnerability score breakdown
+ */
+export interface VulnerabilityScoreBreakdown {
+    /** Base score from rule */
+    baseScore: number;
+    /** Score from pattern matches */
+    patternScore: number;
+    /** Score from taint analysis */
+    taintScore: number;
+    /** Score from exploitability */
+    exploitabilityScore: number;
+    /** Score from impact assessment */
+    impactScore: number;
+    /** Score from context analysis */
+    contextScore: number;
+    /** Penalty for false positive indicators */
+    falsePositivePenalty: number;
+    /** Boost from correlated rules */
+    correlationBoost: number;
+    /** Final calculated score */
+    totalScore: number;
+}
+/**
+ * Complete vulnerability score result
+ */
+export interface VulnerabilityScore {
+    /** Numeric score (0-100) */
+    score: number;
+    /** Score breakdown */
+    breakdown: VulnerabilityScoreBreakdown;
+    /** Calculated severity from score */
+    calculatedSeverity: VulnerabilitySeverity;
+    /** Risk level description */
+    riskLevel: 'critical' | 'high' | 'medium' | 'low' | 'minimal';
+    /** Explanation of the score */
+    explanation: string;
+}
+/**
+ * Location of a finding in source code
+ */
+export interface SourceLocation {
+    /** File path */
+    filePath: string;
+    /** Starting line number (1-based) */
+    startLine: number;
+    /** Ending line number (1-based) */
+    endLine: number;
+    /** Starting column (0-based) */
+    startColumn?: number;
+    /** Ending column (0-based) */
+    endColumn?: number;
+}
+/**
+ * Pattern match details
+ */
+export interface PatternMatch {
+    /** Pattern that matched */
+    pattern: VulnerabilityPattern;
+    /** Matched text */
+    matchedText: string;
+    /** Location of the match */
+    location: SourceLocation;
+    /** Capture groups if regex */
+    captures?: string[];
+}
+/**
+ * Data flow trace for audit reporting
+ */
+export interface DataFlowTrace {
+    /** Starting source */
+    source: {
+        name: string;
+        location: SourceLocation;
+        codeSnippet: string;
+    };
+    /** Intermediate steps */
+    propagation: Array<{
+        variable: string;
+        location: SourceLocation;
+        operation: string;
+        codeSnippet: string;
+    }>;
+    /** Ending sink */
+    sink: {
+        name: string;
+        location: SourceLocation;
+        codeSnippet: string;
+    };
+    /** Was the data sanitized? */
+    sanitized: boolean;
+    /** Sanitization details if applicable */
+    sanitizationDetails?: {
+        sanitizer: string;
+        location: SourceLocation;
+        effectiveness: number;
+    };
+}
+/**
+ * Complete vulnerability finding
+ */
+export interface VulnerabilityFinding {
+    /** Unique finding ID */
+    id: string;
+    /** Rule that triggered this finding */
+    ruleId: string;
+    /** Rule name */
+    ruleName: string;
+    /** Source code location */
+    location: SourceLocation;
+    /** Code snippet */
+    codeSnippet: string;
+    /** Highlighted portion */
+    highlightedCode?: string;
+    /** Vulnerability type */
+    vulnerabilityType: VulnerabilityType;
+    /** Vulnerability category */
+    category: VulnerabilityCategory;
+    /** Final severity */
+    severity: VulnerabilitySeverity;
+    /** Confidence level */
+    confidence: ConfidenceLevel;
+    /** Vulnerability score */
+    score: VulnerabilityScore;
+    /** Patterns that matched */
+    patternMatches: PatternMatch[];
+    /** Taint flow if detected */
+    taintFlow?: TaintFlow;
+    /** Data flow trace for audit */
+    dataFlowTrace?: DataFlowTrace;
+    /** Correlated findings */
+    correlatedFindings?: string[];
+    /** Human-readable message */
+    message: string;
+    /** Detailed analysis for auditors */
+    auditAnalysis: string;
+    /** Developer-friendly explanation */
+    developerExplanation: string;
+    /** Remediation guidance */
+    remediation: RemediationGuidance;
+    /** Security standard references */
+    standards: SecurityStandards;
+    /** Detection timestamp */
+    detectedAt: string;
+    /** Language of the code */
+    language: SupportedLanguage;
+    /** Is in test code */
+    isTestCode?: boolean;
+    /** Is in vendor/node_modules */
+    isVendorCode?: boolean;
+    /** Additional context */
+    context?: Record<string, unknown>;
+}
+/**
+ * Analysis context for rule evaluation
+ */
+export interface AnalysisContext {
+    /** File being analyzed */
+    filePath: string;
+    /** File content */
+    content: string;
+    /** Detected language */
+    language: SupportedLanguage;
+    /** AST if available */
+    ast?: unknown;
+    /** Control flow graph if available */
+    cfg?: unknown;
+    /** Call graph if available */
+    callGraph?: unknown;
+    /** Detected taint flows */
+    taintFlows?: TaintFlow[];
+    /** Dependencies if available */
+    dependencies?: string[];
+    /** Is this in node_modules or vendor */
+    isVendorCode?: boolean;
+    /** Is this a test file */
+    isTestFile?: boolean;
+    /** Is this production code */
+    isProductionCode?: boolean;
+    /** File handles sensitive data */
+    handlesSensitiveData?: boolean;
+    /** Previous findings in this file */
+    previousFindings?: VulnerabilityFinding[];
+    /** Findings from related files */
+    relatedFindings?: VulnerabilityFinding[];
+    /** Project configuration */
+    projectConfig?: ProjectConfig;
+}
+/**
+ * Project configuration for context-aware analysis
+ */
+export interface ProjectConfig {
+    /** Framework being used */
+    framework?: string;
+    /** Production vs development */
+    environment?: 'production' | 'development' | 'staging';
+    /** Configured security headers */
+    securityHeaders?: string[];
+    /** Enabled security features */
+    securityFeatures?: string[];
+}
+/**
+ * Analysis options
+ */
+export interface AnalysisOptions {
+    /** Enable taint analysis */
+    enableTaintAnalysis?: boolean;
+    /** Enable AST analysis */
+    enableAstAnalysis?: boolean;
+    /** Enable CFG analysis */
+    enableCfgAnalysis?: boolean;
+    /** Minimum confidence to report */
+    minConfidence?: ConfidenceLevel;
+    /** Maximum findings per file */
+    maxFindingsPerFile?: number;
+    /** Timeout per rule in ms */
+    ruleTimeoutMs?: number;
+    /** Include info severity */
+    includeInfo?: boolean;
+    /** Exclude test files */
+    excludeTestFiles?: boolean;
+    /** Exclude vendor code */
+    excludeVendorCode?: boolean;
+}
+/**
+ * Pattern matcher interface
+ */
+export interface IPatternMatcher {
+    match(content: string, patterns: VulnerabilityPattern[], language: SupportedLanguage): PatternMatch[];
+    matchWithTimeout(content: string, patterns: VulnerabilityPattern[], language: SupportedLanguage, timeout: number): Promise<PatternMatch[]>;
+}
+/**
+ * Taint analyzer interface
+ */
+export interface ITaintAnalyzer {
+    analyze(context: AnalysisContext, sources: TaintSource[], sinks: TaintSink[], sanitizers?: TaintSanitizer[]): TaintFlow[];
+}
+/**
+ * Score calculator interface
+ */
+export interface IScoreCalculator {
+    calculateScore(rule: VulnerabilityRule, matches: PatternMatch[], context: AnalysisContext, taintFlow?: TaintFlow): VulnerabilityScore;
+}
+/**
+ * Vulnerability rule engine interface
+ */
+export interface IVulnerabilityRuleEngine {
+    /** Analyze code against all enabled rules */
+    analyze(context: AnalysisContext, options?: AnalysisOptions): Promise<VulnerabilityFinding[]>;
+    /** Get all registered rules */
+    getRules(): VulnerabilityRule[];
+    /** Get rule by ID */
+    getRule(id: string): VulnerabilityRule | undefined;
+    /** Enable/disable a rule */
+    setRuleEnabled(id: string, enabled: boolean): void;
+    /** Add a custom rule */
+    addRule(rule: VulnerabilityRule): void;
+}
+//# sourceMappingURL=index.d.ts.map