secure-scan 1.2.2

package/dist/types/index.d.ts

@@ -0,0 +1,359 @@
+/**
+ * Tipos principales para Secure-Scan SAST
+ * Definiciones de tipos para análisis de seguridad
+ */
+/**
+ * Lenguajes de programación soportados para análisis
+ */
+export type SupportedLanguage = 'javascript' | 'typescript' | 'python' | 'php' | 'java' | 'c' | 'cpp' | 'csharp' | 'dockerfile' | 'yaml' | 'terraform';
+/**
+ * Severity levels for findings
+ */
+export declare enum Severity {
+    INFO = "info",
+    LOW = "low",
+    MEDIUM = "medium",
+    HIGH = "high",
+    CRITICAL = "critical"
+}
+/**
+ * Security standard references
+ */
+export interface SecurityStandard {
+    /** Standard name (OWASP, CWE, MITRE, SANS) */
+    name: 'OWASP' | 'CWE' | 'MITRE' | 'SANS';
+    /** Standard ID (e.g., CWE-79, A01:2021) */
+    id: string;
+    /** Standard title */
+    title: string;
+    /** Standard description */
+    description: string;
+    /** URL to standard documentation */
+    url?: string;
+}
+/**
+ * Type of threat detected
+ */
+export declare enum ThreatType {
+    SQL_INJECTION = "sql_injection",
+    COMMAND_INJECTION = "command_injection",
+    XSS = "xss",
+    CSRF = "csrf",
+    INSECURE_DESERIALIZATION = "insecure_deserialization",
+    HARDCODED_CREDENTIALS = "hardcoded_credentials",
+    PATH_TRAVERSAL = "path_traversal",
+    LDAP_INJECTION = "ldap_injection",
+    INSECURE_CRYPTO = "insecure_crypto",
+    WEAK_RANDOM = "weak_random",
+    DANGEROUS_FUNCTION = "dangerous_function",
+    VULNERABLE_DEPENDENCY = "vulnerable_dependency",
+    INFORMATION_DISCLOSURE = "information_disclosure",
+    BROKEN_ACCESS_CONTROL = "broken_access_control",
+    SECURITY_MISCONFIGURATION = "security_misconfiguration",
+    BACKDOOR = "backdoor",
+    KEYLOGGER = "keylogger",
+    CRYPTOMINER = "cryptominer",
+    OBFUSCATED_CODE = "obfuscated_code",
+    EMBEDDED_PAYLOAD = "embedded_payload",
+    REVERSE_SHELL = "reverse_shell",
+    DATA_EXFILTRATION = "data_exfiltration",
+    SUSPICIOUS_NETWORK = "suspicious_network",
+    MALICIOUS_LOADER = "malicious_loader"
+}
+/**
+ * Category of finding
+ */
+export declare enum FindingCategory {
+    VULNERABILITY = "vulnerability",
+    MALWARE = "malware",
+    CODE_SMELL = "code_smell",
+    BEST_PRACTICE = "best_practice"
+}
+/**
+ * Source location in code
+ */
+export interface SourceLocation {
+    /** File path relative to project root */
+    file: string;
+    /** Start line number (1-indexed) */
+    startLine: number;
+    /** End line number (1-indexed) */
+    endLine: number;
+    /** Start column (optional) */
+    startColumn?: number;
+    /** End column (optional) */
+    endColumn?: number;
+}
+/**
+ * Code snippet with context
+ */
+export interface CodeSnippet {
+    /** The vulnerable/malicious code */
+    code: string;
+    /** Lines before for context */
+    contextBefore?: string;
+    /** Lines after for context */
+    contextAfter?: string;
+    /** Highlighted portion */
+    highlight?: {
+        start: number;
+        end: number;
+    };
+}
+/**
+ * Security finding from analysis
+ */
+export interface Finding {
+    /** Unique finding ID */
+    id: string;
+    /** Finding title */
+    title: string;
+    /** Detailed description */
+    description: string;
+    /** Severity level */
+    severity: Severity;
+    /** Type of threat */
+    threatType: ThreatType;
+    /** Category of finding */
+    category: FindingCategory;
+    /** Source location */
+    location: SourceLocation;
+    /** Code snippet */
+    snippet: CodeSnippet;
+    /** Related security standards */
+    standards: SecurityStandard[];
+    /** Remediation advice */
+    remediation: string;
+    /** Confidence level (0-100) */
+    confidence: number;
+    /** Detected by which analyzer */
+    analyzer: string;
+    /** Detection timestamp */
+    timestamp: Date;
+    /** Tags for categorization */
+    tags: string[];
+    /** AI-generated explanation (if available) */
+    aiExplanation?: string;
+    /** Suggested fix (if available) */
+    suggestedFix?: string;
+}
+/**
+ * File information for scanning
+ */
+export interface ScannedFile {
+    /** Absolute file path */
+    absolutePath: string;
+    /** Relative path from project root */
+    relativePath: string;
+    /** File extension */
+    extension: string;
+    /** Detected language */
+    language: SupportedLanguage | null;
+    /** File size in bytes */
+    size: number;
+    /** File content */
+    content: string;
+    /** Line count */
+    lineCount: number;
+    /** SHA256 hash of content */
+    hash: string;
+}
+/**
+ * Scan statistics
+ */
+export interface ScanStats {
+    /** Total files scanned */
+    totalFiles: number;
+    /** Total lines of code */
+    totalLines: number;
+    /** Files by language */
+    filesByLanguage: Record<string, number>;
+    /** Findings by severity */
+    findingsBySeverity: Record<Severity, number>;
+    /** Findings by category */
+    findingsByCategory: Record<FindingCategory, number>;
+    /** Scan duration in milliseconds */
+    duration: number;
+    /** Scan start time */
+    startTime: Date;
+    /** Scan end time */
+    endTime: Date;
+}
+/**
+ * Complete scan result
+ */
+export interface ScanResult {
+    /** Project path */
+    projectPath: string;
+    /** Project name */
+    projectName: string;
+    /** Scan ID */
+    scanId: string;
+    /** All findings */
+    findings: Finding[];
+    /** Scan statistics */
+    stats: ScanStats;
+    /** Risk score (0-100) */
+    riskScore: number;
+    /** Risk level */
+    riskLevel: 'safe' | 'low' | 'medium' | 'high' | 'critical';
+    /** Scanned files */
+    scannedFiles: ScannedFile[];
+    /** Configuration used */
+    config: ScanConfig;
+}
+/**
+ * Scan configuration
+ */
+export interface ScanConfig {
+    /** Project path to scan */
+    projectPath: string;
+    /** Output file path */
+    outputPath?: string;
+    /** Languages to analyze */
+    languages?: SupportedLanguage[];
+    /** Patterns to exclude */
+    exclude?: string[];
+    /** Minimum severity to report */
+    minSeverity?: Severity;
+    /** Enable AI analysis */
+    useAI?: boolean;
+    /** AI provider configuration */
+    aiConfig?: AIConfig;
+    /** Verbose output */
+    verbose?: boolean;
+    /** Custom rules */
+    customRules?: string[];
+    /** Disabled rules */
+    disabledRules?: string[];
+    /** Maximum file size to scan (bytes) */
+    maxFileSize?: number;
+    /** Timeout per file (ms) */
+    fileTimeout?: number;
+    /** Report language (es = Spanish, en = English) */
+    language?: 'es' | 'en';
+}
+/**
+ * AI configuration
+ */
+export interface AIConfig {
+    /** AI provider (auto-detected if not specified) */
+    provider: 'openai' | 'anthropic' | 'google' | 'gemini' | 'local' | 'auto';
+    /** API key */
+    apiKey?: string;
+    /** Model to use */
+    model?: string;
+    /** API endpoint (for local models) */
+    endpoint?: string;
+    /** Max tokens per request */
+    maxTokens?: number;
+    /** Temperature for generation */
+    temperature?: number;
+    /** Performance options for local models */
+    performance?: LocalAIPerformanceConfig;
+}
+/**
+ * Performance configuration for local AI models
+ */
+export interface LocalAIPerformanceConfig {
+    /** Number of parallel requests (default: 1) */
+    parallelRequests?: number;
+    /** Number of GPU layers to use (-1 for all, 0 for CPU only) */
+    numGpuLayers?: number;
+    /** Number of threads to use (default: auto) */
+    numThreads?: number;
+    /** Context size in tokens (default: 4096) */
+    contextSize?: number;
+    /** Batch size for processing (default: 512) */
+    batchSize?: number;
+    /** Enable result caching */
+    enableCache?: boolean;
+    /** Use mmap for model loading */
+    useMmap?: boolean;
+    /** Use mlock to keep model in memory */
+    useMlock?: boolean;
+    /** Timeout per request in milliseconds (default: 120000) */
+    timeout?: number;
+}
+/**
+ * Rule definition for detection
+ */
+export interface Rule {
+    /** Unique rule ID */
+    id: string;
+    /** Rule name */
+    name: string;
+    /** Rule description */
+    description: string;
+    /** Languages this rule applies to */
+    languages: SupportedLanguage[];
+    /** Threat type this rule detects */
+    threatType: ThreatType;
+    /** Category */
+    category: FindingCategory;
+    /** Default severity */
+    severity: Severity;
+    /** Related standards */
+    standards: SecurityStandard[];
+    /** Detection patterns */
+    patterns: RulePattern[];
+    /** Remediation template */
+    remediation: string;
+    /** Is rule enabled by default */
+    enabled: boolean;
+    /** Tags */
+    tags: string[];
+}
+/**
+ * Pattern for rule matching
+ */
+export interface RulePattern {
+    /** Pattern type */
+    type: 'regex' | 'ast' | 'semantic';
+    /** Pattern value */
+    pattern: string;
+    /** Pattern flags */
+    flags?: string;
+    /** Additional conditions */
+    conditions?: PatternCondition[];
+}
+/**
+ * Condition for pattern matching
+ */
+export interface PatternCondition {
+    /** Condition type */
+    type: 'context' | 'scope' | 'dataflow';
+    /** Condition value */
+    value: string;
+    /** Is negated */
+    negated?: boolean;
+}
+/**
+ * Analyzer plugin interface
+ */
+export interface Analyzer {
+    /** Analyzer name */
+    name: string;
+    /** Supported languages */
+    languages: SupportedLanguage[];
+    /** Analyzer version */
+    version: string;
+    /** Initialize analyzer */
+    initialize(): Promise<void>;
+    /** Analyze a file */
+    analyze(file: ScannedFile, rules: Rule[]): Promise<Finding[]>;
+    /** Cleanup resources */
+    cleanup(): Promise<void>;
+}
+/**
+ * Report generator interface
+ */
+export interface ReportGenerator {
+    /** Generator name */
+    name: string;
+    /** Output format */
+    format: 'html' | 'json' | 'pdf' | 'sarif';
+    /** Generate report */
+    generate(result: ScanResult): Promise<string>;
+}
+//# sourceMappingURL=index.d.ts.map

package/dist/types/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH;;GAEG;AACH,MAAM,MAAM,iBAAiB,GACzB,YAAY,GACZ,YAAY,GACZ,QAAQ,GACR,KAAK,GACL,MAAM,GACN,GAAG,GACH,KAAK,GACL,QAAQ,GACR,YAAY,GACZ,MAAM,GACN,WAAW,CAAC;AAEhB;;GAEG;AACH,oBAAY,QAAQ;IAClB,IAAI,SAAS;IACb,GAAG,QAAQ;IACX,MAAM,WAAW;IACjB,IAAI,SAAS;IACb,QAAQ,aAAa;CACtB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,8CAA8C;IAC9C,IAAI,EAAE,OAAO,GAAG,KAAK,GAAG,OAAO,GAAG,MAAM,CAAC;IACzC,2CAA2C;IAC3C,EAAE,EAAE,MAAM,CAAC;IACX,qBAAqB;IACrB,KAAK,EAAE,MAAM,CAAC;IACd,2BAA2B;IAC3B,WAAW,EAAE,MAAM,CAAC;IACpB,oCAAoC;IACpC,GAAG,CAAC,EAAE,MAAM,CAAC;CACd;AAED;;GAEG;AACH,oBAAY,UAAU;IAEpB,aAAa,kBAAkB;IAC/B,iBAAiB,sBAAsB;IACvC,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,wBAAwB,6BAA6B;IACrD,qBAAqB,0BAA0B;IAC/C,cAAc,mBAAmB;IACjC,cAAc,mBAAmB;IACjC,eAAe,oBAAoB;IACnC,WAAW,gBAAgB;IAC3B,kBAAkB,uBAAuB;IACzC,qBAAqB,0BAA0B;IAC/C,sBAAsB,2BAA2B;IACjD,qBAAqB,0BAA0B;IAC/C,yBAAyB,8BAA8B;IAGvD,QAAQ,aAAa;IACrB,SAAS,cAAc;IACvB,WAAW,gBAAgB;IAC3B,eAAe,oBAAoB;IACnC,gBAAgB,qBAAqB;IACrC,aAAa,kBAAkB;IAC/B,iBAAiB,sBAAsB;IACvC,kBAAkB,uBAAuB;IACzC,gBAAgB,qBAAqB;CACtC;AAED;;GAEG;AACH,oBAAY,eAAe;IACzB,aAAa,kBAAkB;IAC/B,OAAO,YAAY;IACnB,UAAU,eAAe;IACzB,aAAa,kBAAkB;CAChC;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,yCAAyC;IACzC,IAAI,EAAE,MAAM,CAAC;IACb,oCAAoC;IACpC,SAAS,EAAE,MAAM,CAAC;IAClB,kCAAkC;IAClC,OAAO,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,4BAA4B;IAC5B,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,oCAAoC;IACpC,IAAI,EAAE,MAAM,CAAC;IACb,+BAA+B;IAC/B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,8BAA8B;IAC9B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,0BAA0B;IAC1B,SAAS,CAAC,EAAE;QACV,KAAK,EAAE,MAAM,CAAC;QACd,GAAG,EAAE,MAAM,CAAC;KACb,CAAC;CACH;AAED;;GAEG;AACH,MAAM,WAAW,OAAO;IACtB,wBAAwB;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,oBAAoB;IACpB,KAAK,EAAE,MAAM,CAAC;IACd,2BAA2B;IAC3B,WAAW,EAAE,MAAM,CAAC;IACpB,qBAAqB;IACrB,QAAQ,EAAE,QAAQ,CAAC;IACnB,qBAAqB;IACrB,UAAU,EAAE,UAAU,CAAC;IACvB,0BAA0B;IAC1B,QAAQ,EAAE,eAAe,CAAC;IAC1B,sBAAsB;IACtB,QAAQ,EAAE,cAAc,CAAC;IACzB,mBAAmB;IACnB,OAAO,EAAE,WAAW,CAAC;IACrB,iCAAiC;IACjC,SAAS,EAAE,gBAAgB,EAAE,CAAC;IAC9B,yBAAyB;IACzB,WAAW,EAAE,MAAM,CAAC;IACpB,+BAA+B;IAC/B,UAAU,EAAE,MAAM,CAAC;IACnB,iCAAiC;IACjC,QAAQ,EAAE,MAAM,CAAC;IACjB,0BAA0B;IAC1B,SAAS,EAAE,IAAI,CAAC;IAChB,8BAA8B;IAC9B,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,8CAA8C;IAC9C,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,mCAAmC;IACnC,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,yBAAyB;IACzB,YAAY,EAAE,MAAM,CAAC;IACrB,sCAAsC;IACtC,YAAY,EAAE,MAAM,CAAC;IACrB,qBAAqB;IACrB,SAAS,EAAE,MAAM,CAAC;IAClB,wBAAwB;IACxB,QAAQ,EAAE,iBAAiB,GAAG,IAAI,CAAC;IACnC,yBAAyB;IACzB,IAAI,EAAE,MAAM,CAAC;IACb,mBAAmB;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,iBAAiB;IACjB,SAAS,EAAE,MAAM,CAAC;IAClB,6BAA6B;IAC7B,IAAI,EAAE,MAAM,CAAC;CACd;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,0BAA0B;IAC1B,UAAU,EAAE,MAAM,CAAC;IACnB,0BAA0B;IAC1B,UAAU,EAAE,MAAM,CAAC;IACnB,wBAAwB;IACxB,eAAe,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;IACxC,2BAA2B;IAC3B,kBAAkB,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IAC7C,2BAA2B;IAC3B,kBAAkB,EAAE,MAAM,CAAC,eAAe,EAAE,MAAM,CAAC,CAAC;IACpD,oCAAoC;IACpC,QAAQ,EAAE,MAAM,CAAC;IACjB,sBAAsB;IACtB,SAAS,EAAE,IAAI,CAAC;IAChB,oBAAoB;IACpB,OAAO,EAAE,IAAI,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,mBAAmB;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,mBAAmB;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB,cAAc;IACd,MAAM,EAAE,MAAM,CAAC;IACf,mBAAmB;IACnB,QAAQ,EAAE,OAAO,EAAE,CAAC;IACpB,sBAAsB;IACtB,KAAK,EAAE,SAAS,CAAC;IACjB,yBAAyB;IACzB,SAAS,EAAE,MAAM,CAAC;IAClB,iBAAiB;IACjB,SAAS,EAAE,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;IAC3D,oBAAoB;IACpB,YAAY,EAAE,WAAW,EAAE,CAAC;IAC5B,yBAAyB;IACzB,MAAM,EAAE,UAAU,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,2BAA2B;IAC3B,WAAW,EAAE,MAAM,CAAC;IACpB,uBAAuB;IACvB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,2BAA2B;IAC3B,SAAS,CAAC,EAAE,iBAAiB,EAAE,CAAC;IAChC,0BAA0B;IAC1B,OAAO,CAAC,EAAE,MAAM,EAAE,CAAC;IACnB,iCAAiC;IACjC,WAAW,CAAC,EAAE,QAAQ,CAAC;IACvB,yBAAyB;IACzB,KAAK,CAAC,EAAE,OAAO,CAAC;IAChB,gCAAgC;IAChC,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,qBAAqB;IACrB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,mBAAmB;IACnB,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;IACvB,qBAAqB;IACrB,aAAa,CAAC,EAAE,MAAM,EAAE,CAAC;IACzB,wCAAwC;IACxC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,4BAA4B;IAC5B,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,mDAAmD;IACnD,QAAQ,CAAC,EAAE,IAAI,GAAG,IAAI,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,mDAAmD;IACnD,QAAQ,EAAE,QAAQ,GAAG,WAAW,GAAG,QAAQ,GAAG,QAAQ,GAAG,OAAO,GAAG,MAAM,CAAC;IAC1E,cAAc;IACd,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,mBAAmB;IACnB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,sCAAsC;IACtC,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,6BAA6B;IAC7B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,iCAAiC;IACjC,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,2CAA2C;IAC3C,WAAW,CAAC,EAAE,wBAAwB,CAAC;CACxC;AAED;;GAEG;AACH,MAAM,WAAW,wBAAwB;IACvC,+CAA+C;IAC/C,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,+DAA+D;IAC/D,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,+CAA+C;IAC/C,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,6CAA6C;IAC7C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,+CAA+C;IAC/C,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,4BAA4B;IAC5B,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,iCAAiC;IACjC,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,wCAAwC;IACxC,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,4DAA4D;IAC5D,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED;;GAEG;AACH,MAAM,WAAW,IAAI;IACnB,qBAAqB;IACrB,EAAE,EAAE,MAAM,CAAC;IACX,gBAAgB;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,uBAAuB;IACvB,WAAW,EAAE,MAAM,CAAC;IACpB,qCAAqC;IACrC,SAAS,EAAE,iBAAiB,EAAE,CAAC;IAC/B,oCAAoC;IACpC,UAAU,EAAE,UAAU,CAAC;IACvB,eAAe;IACf,QAAQ,EAAE,eAAe,CAAC;IAC1B,uBAAuB;IACvB,QAAQ,EAAE,QAAQ,CAAC;IACnB,wBAAwB;IACxB,SAAS,EAAE,gBAAgB,EAAE,CAAC;IAC9B,yBAAyB;IACzB,QAAQ,EAAE,WAAW,EAAE,CAAC;IACxB,2BAA2B;IAC3B,WAAW,EAAE,MAAM,CAAC;IACpB,iCAAiC;IACjC,OAAO,EAAE,OAAO,CAAC;IACjB,WAAW;IACX,IAAI,EAAE,MAAM,EAAE,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,mBAAmB;IACnB,IAAI,EAAE,OAAO,GAAG,KAAK,GAAG,UAAU,CAAC;IACnC,oBAAoB;IACpB,OAAO,EAAE,MAAM,CAAC;IAChB,oBAAoB;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,4BAA4B;IAC5B,UAAU,CAAC,EAAE,gBAAgB,EAAE,CAAC;CACjC;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,qBAAqB;IACrB,IAAI,EAAE,SAAS,GAAG,OAAO,GAAG,UAAU,CAAC;IACvC,sBAAsB;IACtB,KAAK,EAAE,MAAM,CAAC;IACd,iBAAiB;IACjB,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,QAAQ;IACvB,oBAAoB;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,0BAA0B;IAC1B,SAAS,EAAE,iBAAiB,EAAE,CAAC;IAC/B,uBAAuB;IACvB,OAAO,EAAE,MAAM,CAAC;IAChB,0BAA0B;IAC1B,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;IAC5B,qBAAqB;IACrB,OAAO,CAAC,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;IAC9D,wBAAwB;IACxB,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,CAAC;CAC1B;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,qBAAqB;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,oBAAoB;IACpB,MAAM,EAAE,MAAM,GAAG,MAAM,GAAG,KAAK,GAAG,OAAO,CAAC;IAC1C,sBAAsB;IACtB,QAAQ,CAAC,MAAM,EAAE,UAAU,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC;CAC/C"}

package/dist/types/index.js

@@ -0,0 +1,61 @@
+"use strict";
+/**
+ * Tipos principales para Secure-Scan SAST
+ * Definiciones de tipos para análisis de seguridad
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.FindingCategory = exports.ThreatType = exports.Severity = void 0;
+/**
+ * Severity levels for findings
+ */
+var Severity;
+(function (Severity) {
+    Severity["INFO"] = "info";
+    Severity["LOW"] = "low";
+    Severity["MEDIUM"] = "medium";
+    Severity["HIGH"] = "high";
+    Severity["CRITICAL"] = "critical";
+})(Severity || (exports.Severity = Severity = {}));
+/**
+ * Type of threat detected
+ */
+var ThreatType;
+(function (ThreatType) {
+    // Vulnerabilities
+    ThreatType["SQL_INJECTION"] = "sql_injection";
+    ThreatType["COMMAND_INJECTION"] = "command_injection";
+    ThreatType["XSS"] = "xss";
+    ThreatType["CSRF"] = "csrf";
+    ThreatType["INSECURE_DESERIALIZATION"] = "insecure_deserialization";
+    ThreatType["HARDCODED_CREDENTIALS"] = "hardcoded_credentials";
+    ThreatType["PATH_TRAVERSAL"] = "path_traversal";
+    ThreatType["LDAP_INJECTION"] = "ldap_injection";
+    ThreatType["INSECURE_CRYPTO"] = "insecure_crypto";
+    ThreatType["WEAK_RANDOM"] = "weak_random";
+    ThreatType["DANGEROUS_FUNCTION"] = "dangerous_function";
+    ThreatType["VULNERABLE_DEPENDENCY"] = "vulnerable_dependency";
+    ThreatType["INFORMATION_DISCLOSURE"] = "information_disclosure";
+    ThreatType["BROKEN_ACCESS_CONTROL"] = "broken_access_control";
+    ThreatType["SECURITY_MISCONFIGURATION"] = "security_misconfiguration";
+    // Malware
+    ThreatType["BACKDOOR"] = "backdoor";
+    ThreatType["KEYLOGGER"] = "keylogger";
+    ThreatType["CRYPTOMINER"] = "cryptominer";
+    ThreatType["OBFUSCATED_CODE"] = "obfuscated_code";
+    ThreatType["EMBEDDED_PAYLOAD"] = "embedded_payload";
+    ThreatType["REVERSE_SHELL"] = "reverse_shell";
+    ThreatType["DATA_EXFILTRATION"] = "data_exfiltration";
+    ThreatType["SUSPICIOUS_NETWORK"] = "suspicious_network";
+    ThreatType["MALICIOUS_LOADER"] = "malicious_loader";
+})(ThreatType || (exports.ThreatType = ThreatType = {}));
+/**
+ * Category of finding
+ */
+var FindingCategory;
+(function (FindingCategory) {
+    FindingCategory["VULNERABILITY"] = "vulnerability";
+    FindingCategory["MALWARE"] = "malware";
+    FindingCategory["CODE_SMELL"] = "code_smell";
+    FindingCategory["BEST_PRACTICE"] = "best_practice";
+})(FindingCategory || (exports.FindingCategory = FindingCategory = {}));
+//# sourceMappingURL=index.js.map

package/dist/types/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/types/index.ts"],"names":[],"mappings":";AAAA;;;GAGG;;;AAkBH;;GAEG;AACH,IAAY,QAMX;AAND,WAAY,QAAQ;IAClB,yBAAa,CAAA;IACb,uBAAW,CAAA;IACX,6BAAiB,CAAA;IACjB,yBAAa,CAAA;IACb,iCAAqB,CAAA;AACvB,CAAC,EANW,QAAQ,wBAAR,QAAQ,QAMnB;AAkBD;;GAEG;AACH,IAAY,UA4BX;AA5BD,WAAY,UAAU;IACpB,kBAAkB;IAClB,6CAA+B,CAAA;IAC/B,qDAAuC,CAAA;IACvC,yBAAW,CAAA;IACX,2BAAa,CAAA;IACb,mEAAqD,CAAA;IACrD,6DAA+C,CAAA;IAC/C,+CAAiC,CAAA;IACjC,+CAAiC,CAAA;IACjC,iDAAmC,CAAA;IACnC,yCAA2B,CAAA;IAC3B,uDAAyC,CAAA;IACzC,6DAA+C,CAAA;IAC/C,+DAAiD,CAAA;IACjD,6DAA+C,CAAA;IAC/C,qEAAuD,CAAA;IAEvD,UAAU;IACV,mCAAqB,CAAA;IACrB,qCAAuB,CAAA;IACvB,yCAA2B,CAAA;IAC3B,iDAAmC,CAAA;IACnC,mDAAqC,CAAA;IACrC,6CAA+B,CAAA;IAC/B,qDAAuC,CAAA;IACvC,uDAAyC,CAAA;IACzC,mDAAqC,CAAA;AACvC,CAAC,EA5BW,UAAU,0BAAV,UAAU,QA4BrB;AAED;;GAEG;AACH,IAAY,eAKX;AALD,WAAY,eAAe;IACzB,kDAA+B,CAAA;IAC/B,sCAAmB,CAAA;IACnB,4CAAyB,CAAA;IACzB,kDAA+B,CAAA;AACjC,CAAC,EALW,eAAe,+BAAf,eAAe,QAK1B"}

package/dist/utils/index.d.ts

@@ -0,0 +1,82 @@
+/**
+ * Utility Functions for Secure-Scan
+ */
+import { SupportedLanguage, Severity } from '../types';
+/**
+ * Generate a unique ID
+ */
+export declare function generateId(): string;
+/**
+ * Calculate SHA256 hash of content
+ */
+export declare function calculateHash(content: string): string;
+/**
+ * Get language from file extension
+ */
+export declare function getLanguageFromExtension(filePath: string): SupportedLanguage | null;
+/**
+ * Check if file should be excluded
+ */
+export declare function shouldExclude(filePath: string, excludePatterns: string[]): boolean;
+/**
+ * Get file extension for syntax highlighting
+ */
+export declare function getHighlightLanguage(language: SupportedLanguage | null): string;
+/**
+ * Extract code context around a line
+ */
+export declare function extractCodeContext(content: string, lineNumber: number, contextLines?: number): {
+    code: string;
+    contextBefore: string;
+    contextAfter: string;
+};
+/**
+ * Count lines in content
+ */
+export declare function countLines(content: string): number;
+/**
+ * Severity to numeric value for comparison
+ */
+export declare function severityToNumber(severity: Severity): number;
+/**
+ * Compare severities
+ */
+export declare function isHigherOrEqualSeverity(a: Severity, b: Severity): boolean;
+/**
+ * Get severity color for reporting
+ */
+export declare function getSeverityColor(severity: Severity): string;
+/**
+ * Get severity badge class
+ */
+export declare function getSeverityBadge(severity: Severity): string;
+/**
+ * Format duration for display
+ */
+export declare function formatDuration(ms: number): string;
+/**
+ * Escape HTML for safe display
+ */
+export declare function escapeHtml(text: string): string;
+/**
+ * Truncate text with ellipsis
+ */
+export declare function truncate(text: string, maxLength: number): string;
+/**
+ * Check if string looks like Base64
+ */
+export declare function isBase64Like(str: string): boolean;
+/**
+ * Check if string looks like hex encoded
+ */
+export declare function isHexEncoded(str: string): boolean;
+/**
+ * Calculate Shannon entropy of a string
+ * High entropy suggests encrypted/compressed/obfuscated content
+ */
+export declare function calculateEntropy(str: string): number;
+/**
+ * Check if code appears obfuscated based on entropy and patterns
+ */
+export declare function looksObfuscated(code: string): boolean;
+//# sourceMappingURL=index.d.ts.map

package/dist/utils/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/utils/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAIH,OAAO,EAAE,iBAAiB,EAAE,QAAQ,EAAE,MAAM,UAAU,CAAC;AAEvD;;GAEG;AACH,wBAAgB,UAAU,IAAI,MAAM,CAEnC;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAErD;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,QAAQ,EAAE,MAAM,GAAG,iBAAiB,GAAG,IAAI,CAuCnF;AAED;;GAEG;AACH,wBAAgB,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,eAAe,EAAE,MAAM,EAAE,GAAG,OAAO,CA+BlF;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,QAAQ,EAAE,iBAAiB,GAAG,IAAI,GAAG,MAAM,CAgB/E;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAChC,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,MAAM,EAClB,YAAY,GAAE,MAAU,GACvB;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,aAAa,EAAE,MAAM,CAAC;IAAC,YAAY,EAAE,MAAM,CAAA;CAAE,CAY/D;AAED;;GAEG;AACH,wBAAgB,UAAU,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAElD;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,GAAG,MAAM,CAS3D;AAED;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,EAAE,QAAQ,GAAG,OAAO,CAEzE;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,GAAG,MAAM,CAS3D;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,QAAQ,GAAG,MAAM,CAS3D;AAED;;GAEG;AACH,wBAAgB,cAAc,CAAC,EAAE,EAAE,MAAM,GAAG,MAAM,CAUjD;AAED;;GAEG;AACH,wBAAgB,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAS/C;AAED;;GAEG;AACH,wBAAgB,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,GAAG,MAAM,CAGhE;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAKjD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAIjD;AAED;;;GAGG;AACH,wBAAgB,gBAAgB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAgBpD;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAwBrD"}