npm - secure-scan - Versions diffs - 1.2.2 - Mend

secure-scan 1.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (569) hide show

package/README.md +564 -0
package/dist/ai/aiAnalyzer.d.ts +99 -0
package/dist/ai/aiAnalyzer.d.ts.map +1 -0
package/dist/ai/aiAnalyzer.js +669 -0
package/dist/ai/aiAnalyzer.js.map +1 -0
package/dist/ai/index.d.ts +5 -0
package/dist/ai/index.d.ts.map +1 -0
package/dist/ai/index.js +21 -0
package/dist/ai/index.js.map +1 -0
package/dist/analyzers/base/baseAnalyzer.d.ts +44 -0
package/dist/analyzers/base/baseAnalyzer.d.ts.map +1 -0
package/dist/analyzers/base/baseAnalyzer.js +53 -0
package/dist/analyzers/base/baseAnalyzer.js.map +1 -0
package/dist/analyzers/base/index.d.ts +5 -0
package/dist/analyzers/base/index.d.ts.map +1 -0
package/dist/analyzers/base/index.js +21 -0
package/dist/analyzers/base/index.js.map +1 -0
package/dist/analyzers/c-cpp/cppAnalyzer.d.ts +60 -0
package/dist/analyzers/c-cpp/cppAnalyzer.d.ts.map +1 -0
package/dist/analyzers/c-cpp/cppAnalyzer.js +218 -0
package/dist/analyzers/c-cpp/cppAnalyzer.js.map +1 -0
package/dist/analyzers/c-cpp/index.d.ts +5 -0
package/dist/analyzers/c-cpp/index.d.ts.map +1 -0
package/dist/analyzers/c-cpp/index.js +21 -0
package/dist/analyzers/c-cpp/index.js.map +1 -0
package/dist/analyzers/core/engine/index.d.ts +5 -0
package/dist/analyzers/core/engine/index.d.ts.map +1 -0
package/dist/analyzers/core/engine/index.js +21 -0
package/dist/analyzers/core/engine/index.js.map +1 -0
package/dist/analyzers/core/engine/ruleEngine.d.ts +46 -0
package/dist/analyzers/core/engine/ruleEngine.d.ts.map +1 -0
package/dist/analyzers/core/engine/ruleEngine.js +173 -0
package/dist/analyzers/core/engine/ruleEngine.js.map +1 -0
package/dist/analyzers/core/index.d.ts +8 -0
package/dist/analyzers/core/index.d.ts.map +1 -0
package/dist/analyzers/core/index.js +24 -0
package/dist/analyzers/core/index.js.map +1 -0
package/dist/analyzers/core/scanner/fileScanner.d.ts +31 -0
package/dist/analyzers/core/scanner/fileScanner.d.ts.map +1 -0
package/dist/analyzers/core/scanner/fileScanner.js +199 -0
package/dist/analyzers/core/scanner/fileScanner.js.map +1 -0
package/dist/analyzers/core/scanner/index.d.ts +5 -0
package/dist/analyzers/core/scanner/index.d.ts.map +1 -0
package/dist/analyzers/core/scanner/index.js +21 -0
package/dist/analyzers/core/scanner/index.js.map +1 -0
package/dist/analyzers/core/scoring/index.d.ts +5 -0
package/dist/analyzers/core/scoring/index.d.ts.map +1 -0
package/dist/analyzers/core/scoring/index.js +21 -0
package/dist/analyzers/core/scoring/index.js.map +1 -0
package/dist/analyzers/core/scoring/riskScoring.d.ts +49 -0
package/dist/analyzers/core/scoring/riskScoring.d.ts.map +1 -0
package/dist/analyzers/core/scoring/riskScoring.js +180 -0
package/dist/analyzers/core/scoring/riskScoring.js.map +1 -0
package/dist/analyzers/core/securityScanner.d.ts +47 -0
package/dist/analyzers/core/securityScanner.d.ts.map +1 -0
package/dist/analyzers/core/securityScanner.js +298 -0
package/dist/analyzers/core/securityScanner.js.map +1 -0
package/dist/analyzers/csharp/csharpAnalyzer.d.ts +64 -0
package/dist/analyzers/csharp/csharpAnalyzer.d.ts.map +1 -0
package/dist/analyzers/csharp/csharpAnalyzer.js +232 -0
package/dist/analyzers/csharp/csharpAnalyzer.js.map +1 -0
package/dist/analyzers/csharp/index.d.ts +5 -0
package/dist/analyzers/csharp/index.d.ts.map +1 -0
package/dist/analyzers/csharp/index.js +21 -0
package/dist/analyzers/csharp/index.js.map +1 -0
package/dist/analyzers/iac/iacAnalyzer.d.ts +36 -0
package/dist/analyzers/iac/iacAnalyzer.d.ts.map +1 -0
package/dist/analyzers/iac/iacAnalyzer.js +182 -0
package/dist/analyzers/iac/iacAnalyzer.js.map +1 -0
package/dist/analyzers/iac/index.d.ts +5 -0
package/dist/analyzers/iac/index.d.ts.map +1 -0
package/dist/analyzers/iac/index.js +21 -0
package/dist/analyzers/iac/index.js.map +1 -0
package/dist/analyzers/index.d.ts +30 -0
package/dist/analyzers/index.d.ts.map +1 -0
package/dist/analyzers/index.js +80 -0
package/dist/analyzers/index.js.map +1 -0
package/dist/analyzers/java/index.d.ts +5 -0
package/dist/analyzers/java/index.d.ts.map +1 -0
package/dist/analyzers/java/index.js +21 -0
package/dist/analyzers/java/index.js.map +1 -0
package/dist/analyzers/java/javaAnalyzer.d.ts +64 -0
package/dist/analyzers/java/javaAnalyzer.d.ts.map +1 -0
package/dist/analyzers/java/javaAnalyzer.js +224 -0
package/dist/analyzers/java/javaAnalyzer.js.map +1 -0
package/dist/analyzers/javascript/astUtils.d.ts +170 -0
package/dist/analyzers/javascript/astUtils.d.ts.map +1 -0
package/dist/analyzers/javascript/astUtils.js +700 -0
package/dist/analyzers/javascript/astUtils.js.map +1 -0
package/dist/analyzers/javascript/index.d.ts +18 -0
package/dist/analyzers/javascript/index.d.ts.map +1 -0
package/dist/analyzers/javascript/index.js +50 -0
package/dist/analyzers/javascript/index.js.map +1 -0
package/dist/analyzers/javascript/javascriptAnalyzer.d.ts +111 -0
package/dist/analyzers/javascript/javascriptAnalyzer.d.ts.map +1 -0
package/dist/analyzers/javascript/javascriptAnalyzer.js +860 -0
package/dist/analyzers/javascript/javascriptAnalyzer.js.map +1 -0
package/dist/analyzers/javascript/malwareDetector.d.ts +102 -0
package/dist/analyzers/javascript/malwareDetector.d.ts.map +1 -0
package/dist/analyzers/javascript/malwareDetector.js +616 -0
package/dist/analyzers/javascript/malwareDetector.js.map +1 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.d.ts +87 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.d.ts.map +1 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.js +553 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.js.map +1 -0
package/dist/analyzers/javascript/taintAnalyzer.d.ts +120 -0
package/dist/analyzers/javascript/taintAnalyzer.d.ts.map +1 -0
package/dist/analyzers/javascript/taintAnalyzer.js +526 -0
package/dist/analyzers/javascript/taintAnalyzer.js.map +1 -0
package/dist/analyzers/php/index.d.ts +5 -0
package/dist/analyzers/php/index.d.ts.map +1 -0
package/dist/analyzers/php/index.js +21 -0
package/dist/analyzers/php/index.js.map +1 -0
package/dist/analyzers/php/phpAnalyzer.d.ts +56 -0
package/dist/analyzers/php/phpAnalyzer.d.ts.map +1 -0
package/dist/analyzers/php/phpAnalyzer.js +202 -0
package/dist/analyzers/php/phpAnalyzer.js.map +1 -0
package/dist/analyzers/python/index.d.ts +5 -0
package/dist/analyzers/python/index.d.ts.map +1 -0
package/dist/analyzers/python/index.js +21 -0
package/dist/analyzers/python/index.js.map +1 -0
package/dist/analyzers/python/pythonAnalyzer.d.ts +64 -0
package/dist/analyzers/python/pythonAnalyzer.d.ts.map +1 -0
package/dist/analyzers/python/pythonAnalyzer.js +226 -0
package/dist/analyzers/python/pythonAnalyzer.js.map +1 -0
package/dist/cli/index.d.ts +7 -0
package/dist/cli/index.d.ts.map +1 -0
package/dist/cli/index.js +281 -0
package/dist/cli/index.js.map +1 -0
package/dist/core/engine/index.d.ts +5 -0
package/dist/core/engine/index.d.ts.map +1 -0
package/dist/core/engine/index.js +21 -0
package/dist/core/engine/index.js.map +1 -0
package/dist/core/engine/ruleEngine.d.ts +46 -0
package/dist/core/engine/ruleEngine.d.ts.map +1 -0
package/dist/core/engine/ruleEngine.js +173 -0
package/dist/core/engine/ruleEngine.js.map +1 -0
package/dist/core/index.d.ts +8 -0
package/dist/core/index.d.ts.map +1 -0
package/dist/core/index.js +24 -0
package/dist/core/index.js.map +1 -0
package/dist/core/scanner/fileScanner.d.ts +31 -0
package/dist/core/scanner/fileScanner.d.ts.map +1 -0
package/dist/core/scanner/fileScanner.js +199 -0
package/dist/core/scanner/fileScanner.js.map +1 -0
package/dist/core/scanner/index.d.ts +5 -0
package/dist/core/scanner/index.d.ts.map +1 -0
package/dist/core/scanner/index.js +21 -0
package/dist/core/scanner/index.js.map +1 -0
package/dist/core/scoring/index.d.ts +5 -0
package/dist/core/scoring/index.d.ts.map +1 -0
package/dist/core/scoring/index.js +21 -0
package/dist/core/scoring/index.js.map +1 -0
package/dist/core/scoring/riskScoring.d.ts +49 -0
package/dist/core/scoring/riskScoring.d.ts.map +1 -0
package/dist/core/scoring/riskScoring.js +180 -0
package/dist/core/scoring/riskScoring.js.map +1 -0
package/dist/core/securityScanner.d.ts +47 -0
package/dist/core/securityScanner.d.ts.map +1 -0
package/dist/core/securityScanner.js +298 -0
package/dist/core/securityScanner.js.map +1 -0
package/dist/dependencies/aiDependencyAnalyzer.d.ts +96 -0
package/dist/dependencies/aiDependencyAnalyzer.d.ts.map +1 -0
package/dist/dependencies/aiDependencyAnalyzer.js +435 -0
package/dist/dependencies/aiDependencyAnalyzer.js.map +1 -0
package/dist/dependencies/database/cveDatabase.d.ts +32 -0
package/dist/dependencies/database/cveDatabase.d.ts.map +1 -0
package/dist/dependencies/database/cveDatabase.js +393 -0
package/dist/dependencies/database/cveDatabase.js.map +1 -0
package/dist/dependencies/database/index.d.ts +6 -0
package/dist/dependencies/database/index.d.ts.map +1 -0
package/dist/dependencies/database/index.js +22 -0
package/dist/dependencies/database/index.js.map +1 -0
package/dist/dependencies/database/maliciousPackages.d.ts +43 -0
package/dist/dependencies/database/maliciousPackages.d.ts.map +1 -0
package/dist/dependencies/database/maliciousPackages.js +279 -0
package/dist/dependencies/database/maliciousPackages.js.map +1 -0
package/dist/dependencies/dependencyAnalyzer.d.ts +74 -0
package/dist/dependencies/dependencyAnalyzer.d.ts.map +1 -0
package/dist/dependencies/dependencyAnalyzer.js +349 -0
package/dist/dependencies/dependencyAnalyzer.js.map +1 -0
package/dist/dependencies/detectors/index.d.ts +7 -0
package/dist/dependencies/detectors/index.d.ts.map +1 -0
package/dist/dependencies/detectors/index.js +28 -0
package/dist/dependencies/detectors/index.js.map +1 -0
package/dist/dependencies/detectors/securityStandards.d.ts +15 -0
package/dist/dependencies/detectors/securityStandards.d.ts.map +1 -0
package/dist/dependencies/detectors/securityStandards.js +178 -0
package/dist/dependencies/detectors/securityStandards.js.map +1 -0
package/dist/dependencies/detectors/vulnerabilityDetector.d.ts +53 -0
package/dist/dependencies/detectors/vulnerabilityDetector.d.ts.map +1 -0
package/dist/dependencies/detectors/vulnerabilityDetector.js +289 -0
package/dist/dependencies/detectors/vulnerabilityDetector.js.map +1 -0
package/dist/dependencies/index.d.ts +14 -0
package/dist/dependencies/index.d.ts.map +1 -0
package/dist/dependencies/index.js +43 -0
package/dist/dependencies/index.js.map +1 -0
package/dist/dependencies/installed/index.d.ts +8 -0
package/dist/dependencies/installed/index.d.ts.map +1 -0
package/dist/dependencies/installed/index.js +24 -0
package/dist/dependencies/installed/index.js.map +1 -0
package/dist/dependencies/installed/installedScanner.d.ts +91 -0
package/dist/dependencies/installed/installedScanner.d.ts.map +1 -0
package/dist/dependencies/installed/installedScanner.js +766 -0
package/dist/dependencies/installed/installedScanner.js.map +1 -0
package/dist/dependencies/installed/malwarePatterns.d.ts +32 -0
package/dist/dependencies/installed/malwarePatterns.d.ts.map +1 -0
package/dist/dependencies/installed/malwarePatterns.js +480 -0
package/dist/dependencies/installed/malwarePatterns.js.map +1 -0
package/dist/dependencies/installed/types.d.ts +274 -0
package/dist/dependencies/installed/types.d.ts.map +1 -0
package/dist/dependencies/installed/types.js +7 -0
package/dist/dependencies/installed/types.js.map +1 -0
package/dist/dependencies/parsers/base/baseParser.d.ts +44 -0
package/dist/dependencies/parsers/base/baseParser.d.ts.map +1 -0
package/dist/dependencies/parsers/base/baseParser.js +80 -0
package/dist/dependencies/parsers/base/baseParser.js.map +1 -0
package/dist/dependencies/parsers/base/index.d.ts +6 -0
package/dist/dependencies/parsers/base/index.d.ts.map +1 -0
package/dist/dependencies/parsers/base/index.js +27 -0
package/dist/dependencies/parsers/base/index.js.map +1 -0
package/dist/dependencies/parsers/cpp/cppParser.d.ts +36 -0
package/dist/dependencies/parsers/cpp/cppParser.d.ts.map +1 -0
package/dist/dependencies/parsers/cpp/cppParser.js +196 -0
package/dist/dependencies/parsers/cpp/cppParser.js.map +1 -0
package/dist/dependencies/parsers/cpp/index.d.ts +6 -0
package/dist/dependencies/parsers/cpp/index.d.ts.map +1 -0
package/dist/dependencies/parsers/cpp/index.js +27 -0
package/dist/dependencies/parsers/cpp/index.js.map +1 -0
package/dist/dependencies/parsers/csharp/csharpParser.d.ts +32 -0
package/dist/dependencies/parsers/csharp/csharpParser.d.ts.map +1 -0
package/dist/dependencies/parsers/csharp/csharpParser.js +125 -0
package/dist/dependencies/parsers/csharp/csharpParser.js.map +1 -0
package/dist/dependencies/parsers/csharp/index.d.ts +6 -0
package/dist/dependencies/parsers/csharp/index.d.ts.map +1 -0
package/dist/dependencies/parsers/csharp/index.js +27 -0
package/dist/dependencies/parsers/csharp/index.js.map +1 -0
package/dist/dependencies/parsers/index.d.ts +24 -0
package/dist/dependencies/parsers/index.d.ts.map +1 -0
package/dist/dependencies/parsers/index.js +69 -0
package/dist/dependencies/parsers/index.js.map +1 -0
package/dist/dependencies/parsers/java/index.d.ts +6 -0
package/dist/dependencies/parsers/java/index.d.ts.map +1 -0
package/dist/dependencies/parsers/java/index.js +27 -0
package/dist/dependencies/parsers/java/index.js.map +1 -0
package/dist/dependencies/parsers/java/javaParser.d.ts +32 -0
package/dist/dependencies/parsers/java/javaParser.d.ts.map +1 -0
package/dist/dependencies/parsers/java/javaParser.js +168 -0
package/dist/dependencies/parsers/java/javaParser.js.map +1 -0
package/dist/dependencies/parsers/javascript/index.d.ts +6 -0
package/dist/dependencies/parsers/javascript/index.d.ts.map +1 -0
package/dist/dependencies/parsers/javascript/index.js +27 -0
package/dist/dependencies/parsers/javascript/index.js.map +1 -0
package/dist/dependencies/parsers/javascript/javascriptParser.d.ts +55 -0
package/dist/dependencies/parsers/javascript/javascriptParser.d.ts.map +1 -0
package/dist/dependencies/parsers/javascript/javascriptParser.js +266 -0
package/dist/dependencies/parsers/javascript/javascriptParser.js.map +1 -0
package/dist/dependencies/parsers/php/index.d.ts +6 -0
package/dist/dependencies/parsers/php/index.d.ts.map +1 -0
package/dist/dependencies/parsers/php/index.js +27 -0
package/dist/dependencies/parsers/php/index.js.map +1 -0
package/dist/dependencies/parsers/php/phpParser.d.ts +35 -0
package/dist/dependencies/parsers/php/phpParser.d.ts.map +1 -0
package/dist/dependencies/parsers/php/phpParser.js +162 -0
package/dist/dependencies/parsers/php/phpParser.js.map +1 -0
package/dist/dependencies/parsers/python/index.d.ts +6 -0
package/dist/dependencies/parsers/python/index.d.ts.map +1 -0
package/dist/dependencies/parsers/python/index.js +27 -0
package/dist/dependencies/parsers/python/index.js.map +1 -0
package/dist/dependencies/parsers/python/pythonParser.d.ts +60 -0
package/dist/dependencies/parsers/python/pythonParser.d.ts.map +1 -0
package/dist/dependencies/parsers/python/pythonParser.js +336 -0
package/dist/dependencies/parsers/python/pythonParser.js.map +1 -0
package/dist/dependencies/types.d.ts +280 -0
package/dist/dependencies/types.d.ts.map +1 -0
package/dist/dependencies/types.js +59 -0
package/dist/dependencies/types.js.map +1 -0
package/dist/i18n/index.d.ts +2 -0
package/dist/i18n/index.d.ts.map +1 -0
package/dist/i18n/index.js +18 -0
package/dist/i18n/index.js.map +1 -0
package/dist/i18n/translations.d.ts +55 -0
package/dist/i18n/translations.d.ts.map +1 -0
package/dist/i18n/translations.js +119 -0
package/dist/i18n/translations.js.map +1 -0
package/dist/index.d.ts +14 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +36 -0
package/dist/index.js.map +1 -0
package/dist/reports/dependencyReportGenerator.d.ts +20 -0
package/dist/reports/dependencyReportGenerator.d.ts.map +1 -0
package/dist/reports/dependencyReportGenerator.js +690 -0
package/dist/reports/dependencyReportGenerator.js.map +1 -0
package/dist/reports/htmlReportGenerator.d.ts +43 -0
package/dist/reports/htmlReportGenerator.d.ts.map +1 -0
package/dist/reports/htmlReportGenerator.js +793 -0
package/dist/reports/htmlReportGenerator.js.map +1 -0
package/dist/reports/index.d.ts +7 -0
package/dist/reports/index.d.ts.map +1 -0
package/dist/reports/index.js +23 -0
package/dist/reports/index.js.map +1 -0
package/dist/reports/installedDepsReportGenerator.d.ts +14 -0
package/dist/reports/installedDepsReportGenerator.d.ts.map +1 -0
package/dist/reports/installedDepsReportGenerator.js +872 -0
package/dist/reports/installedDepsReportGenerator.js.map +1 -0
package/dist/rules/index.d.ts +31 -0
package/dist/rules/index.d.ts.map +1 -0
package/dist/rules/index.js +95 -0
package/dist/rules/index.js.map +1 -0
package/dist/rules/malware/categories/backdoors.d.ts +12 -0
package/dist/rules/malware/categories/backdoors.d.ts.map +1 -0
package/dist/rules/malware/categories/backdoors.js +163 -0
package/dist/rules/malware/categories/backdoors.js.map +1 -0
package/dist/rules/malware/categories/cryptominers.d.ts +13 -0
package/dist/rules/malware/categories/cryptominers.d.ts.map +1 -0
package/dist/rules/malware/categories/cryptominers.js +415 -0
package/dist/rules/malware/categories/cryptominers.js.map +1 -0
package/dist/rules/malware/categories/exfiltration.d.ts +20 -0
package/dist/rules/malware/categories/exfiltration.d.ts.map +1 -0
package/dist/rules/malware/categories/exfiltration.js +658 -0
package/dist/rules/malware/categories/exfiltration.js.map +1 -0
package/dist/rules/malware/categories/keyloggers.d.ts +19 -0
package/dist/rules/malware/categories/keyloggers.d.ts.map +1 -0
package/dist/rules/malware/categories/keyloggers.js +763 -0
package/dist/rules/malware/categories/keyloggers.js.map +1 -0
package/dist/rules/malware/categories/loaders.d.ts +20 -0
package/dist/rules/malware/categories/loaders.d.ts.map +1 -0
package/dist/rules/malware/categories/loaders.js +702 -0
package/dist/rules/malware/categories/loaders.js.map +1 -0
package/dist/rules/malware/categories/network.d.ts +19 -0
package/dist/rules/malware/categories/network.d.ts.map +1 -0
package/dist/rules/malware/categories/network.js +622 -0
package/dist/rules/malware/categories/network.js.map +1 -0
package/dist/rules/malware/categories/obfuscation.d.ts +22 -0
package/dist/rules/malware/categories/obfuscation.d.ts.map +1 -0
package/dist/rules/malware/categories/obfuscation.js +766 -0
package/dist/rules/malware/categories/obfuscation.js.map +1 -0
package/dist/rules/malware/constants/index.d.ts +281 -0
package/dist/rules/malware/constants/index.d.ts.map +1 -0
package/dist/rules/malware/constants/index.js +327 -0
package/dist/rules/malware/constants/index.js.map +1 -0
package/dist/rules/malware/engine/index.d.ts +178 -0
package/dist/rules/malware/engine/index.d.ts.map +1 -0
package/dist/rules/malware/engine/index.js +552 -0
package/dist/rules/malware/engine/index.js.map +1 -0
package/dist/rules/malware/index.d.ts +205 -0
package/dist/rules/malware/index.d.ts.map +1 -0
package/dist/rules/malware/index.js +837 -0
package/dist/rules/malware/index.js.map +1 -0
package/dist/rules/malware/scoring/index.d.ts +84 -0
package/dist/rules/malware/scoring/index.d.ts.map +1 -0
package/dist/rules/malware/scoring/index.js +441 -0
package/dist/rules/malware/scoring/index.js.map +1 -0
package/dist/rules/malware/types/index.d.ts +616 -0
package/dist/rules/malware/types/index.d.ts.map +1 -0
package/dist/rules/malware/types/index.js +155 -0
package/dist/rules/malware/types/index.js.map +1 -0
package/dist/rules/malware/utils/index.d.ts +117 -0
package/dist/rules/malware/utils/index.d.ts.map +1 -0
package/dist/rules/malware/utils/index.js +514 -0
package/dist/rules/malware/utils/index.js.map +1 -0
package/dist/rules/standards.d.ts +26 -0
package/dist/rules/standards.d.ts.map +1 -0
package/dist/rules/standards.js +352 -0
package/dist/rules/standards.js.map +1 -0
package/dist/rules/vulnerabilities/constants/index.d.ts +835 -0
package/dist/rules/vulnerabilities/constants/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/constants/index.js +544 -0
package/dist/rules/vulnerabilities/constants/index.js.map +1 -0
package/dist/rules/vulnerabilities/engine/index.d.ts +145 -0
package/dist/rules/vulnerabilities/engine/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/engine/index.js +581 -0
package/dist/rules/vulnerabilities/engine/index.js.map +1 -0
package/dist/rules/vulnerabilities/index.d.ts +148 -0
package/dist/rules/vulnerabilities/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/index.js +252 -0
package/dist/rules/vulnerabilities/index.js.map +1 -0
package/dist/rules/vulnerabilities/rules/authentication.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/authentication.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/authentication.js +419 -0
package/dist/rules/vulnerabilities/rules/authentication.js.map +1 -0
package/dist/rules/vulnerabilities/rules/commandInjection.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/commandInjection.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/commandInjection.js +300 -0
package/dist/rules/vulnerabilities/rules/commandInjection.js.map +1 -0
package/dist/rules/vulnerabilities/rules/csrf.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/csrf.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/csrf.js +261 -0
package/dist/rules/vulnerabilities/rules/csrf.js.map +1 -0
package/dist/rules/vulnerabilities/rules/deserialization.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/deserialization.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/deserialization.js +336 -0
package/dist/rules/vulnerabilities/rules/deserialization.js.map +1 -0
package/dist/rules/vulnerabilities/rules/fileUpload.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/fileUpload.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/fileUpload.js +325 -0
package/dist/rules/vulnerabilities/rules/fileUpload.js.map +1 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.js +446 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.js.map +1 -0
package/dist/rules/vulnerabilities/rules/index.d.ts +17 -0
package/dist/rules/vulnerabilities/rules/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/index.js +47 -0
package/dist/rules/vulnerabilities/rules/index.js.map +1 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.js +351 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.js.map +1 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.js +272 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.js.map +1 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.js +438 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.js.map +1 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.d.ts +12 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.js +636 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.js.map +1 -0
package/dist/rules/vulnerabilities/rules/ssrf.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/ssrf.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/ssrf.js +401 -0
package/dist/rules/vulnerabilities/rules/ssrf.js.map +1 -0
package/dist/rules/vulnerabilities/rules/xss.d.ts +11 -0
package/dist/rules/vulnerabilities/rules/xss.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/xss.js +724 -0
package/dist/rules/vulnerabilities/rules/xss.js.map +1 -0
package/dist/rules/vulnerabilities/scoring/index.d.ts +80 -0
package/dist/rules/vulnerabilities/scoring/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/scoring/index.js +414 -0
package/dist/rules/vulnerabilities/scoring/index.js.map +1 -0
package/dist/rules/vulnerabilities/types/index.d.ts +830 -0
package/dist/rules/vulnerabilities/types/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/types/index.js +164 -0
package/dist/rules/vulnerabilities/types/index.js.map +1 -0
package/dist/rules/vulnerabilities/utils/index.d.ts +206 -0
package/dist/rules/vulnerabilities/utils/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/utils/index.js +615 -0
package/dist/rules/vulnerabilities/utils/index.js.map +1 -0
package/dist/types/index.d.ts +359 -0
package/dist/types/index.d.ts.map +1 -0
package/dist/types/index.js +61 -0
package/dist/types/index.js.map +1 -0
package/dist/utils/index.d.ts +82 -0
package/dist/utils/index.d.ts.map +1 -0
package/dist/utils/index.js +326 -0
package/dist/utils/index.js.map +1 -0
package/dist/utils/logger.d.ts +40 -0
package/dist/utils/logger.d.ts.map +1 -0
package/dist/utils/logger.js +139 -0
package/dist/utils/logger.js.map +1 -0
package/docs/ARCHITECTURE.md +320 -0
package/docs/V1.2.1-IA_Performances.md +116 -0
package/docs/images/WIN_Defender.png +0 -0
package/package.json +68 -0
package/secure-scan.config.json +134 -0
package/secure-scan.sln +29 -0
package/src/ai/aiAnalyzer.ts +714 -0
package/src/ai/index.ts +5 -0
package/src/analyzers/base/baseAnalyzer.ts +66 -0
package/src/analyzers/base/index.ts +5 -0
package/src/analyzers/c-cpp/cppAnalyzer.ts +308 -0
package/src/analyzers/c-cpp/index.ts +5 -0
package/src/analyzers/core/engine/index.ts +5 -0
package/src/analyzers/core/engine/ruleEngine.ts +221 -0
package/src/analyzers/core/index.ts +8 -0
package/src/analyzers/core/scanner/fileScanner.ts +204 -0
package/src/analyzers/core/scanner/index.ts +5 -0
package/src/analyzers/core/scoring/index.ts +5 -0
package/src/analyzers/core/scoring/riskScoring.ts +198 -0
package/src/analyzers/core/securityScanner.ts +321 -0
package/src/analyzers/csharp/csharpAnalyzer.ts +328 -0
package/src/analyzers/csharp/index.ts +5 -0
package/src/analyzers/iac/iacAnalyzer.ts +318 -0
package/src/analyzers/iac/index.ts +5 -0
package/src/analyzers/index.ts +67 -0
package/src/analyzers/java/index.ts +5 -0
package/src/analyzers/java/javaAnalyzer.ts +320 -0
package/src/analyzers/javascript/PROMPT_JS_ANALYZER.md +267 -0
package/src/analyzers/javascript/astUtils.ts +789 -0
package/src/analyzers/javascript/index.ts +50 -0
package/src/analyzers/javascript/javascriptAnalyzer.ts +984 -0
package/src/analyzers/javascript/malwareDetector.ts +697 -0
package/src/analyzers/javascript/packageJsonAnalyzer.ts +626 -0
package/src/analyzers/javascript/taintAnalyzer.ts +630 -0
package/src/analyzers/php/index.ts +5 -0
package/src/analyzers/php/phpAnalyzer.ts +280 -0
package/src/analyzers/python/index.ts +5 -0
package/src/analyzers/python/pythonAnalyzer.ts +319 -0
package/src/cli/index.ts +276 -0
package/src/dependencies/aiDependencyAnalyzer.ts +496 -0
package/src/dependencies/database/cveDatabase.ts +426 -0
package/src/dependencies/database/index.ts +6 -0
package/src/dependencies/database/maliciousPackages.ts +286 -0
package/src/dependencies/dependencyAnalyzer.ts +394 -0
package/src/dependencies/detectors/index.ts +7 -0
package/src/dependencies/detectors/securityStandards.ts +200 -0
package/src/dependencies/detectors/vulnerabilityDetector.ts +343 -0
package/src/dependencies/index.ts +27 -0
package/src/dependencies/installed/index.ts +8 -0
package/src/dependencies/installed/installedScanner.ts +821 -0
package/src/dependencies/installed/malwarePatterns.ts +492 -0
package/src/dependencies/installed/types.ts +287 -0
package/src/dependencies/parsers/base/baseParser.ts +108 -0
package/src/dependencies/parsers/base/index.ts +6 -0
package/src/dependencies/parsers/cpp/cppParser.ts +245 -0
package/src/dependencies/parsers/cpp/index.ts +6 -0
package/src/dependencies/parsers/csharp/csharpParser.ts +151 -0
package/src/dependencies/parsers/csharp/index.ts +6 -0
package/src/dependencies/parsers/index.ts +56 -0
package/src/dependencies/parsers/java/index.ts +6 -0
package/src/dependencies/parsers/java/javaParser.ts +203 -0
package/src/dependencies/parsers/javascript/index.ts +6 -0
package/src/dependencies/parsers/javascript/javascriptParser.ts +362 -0
package/src/dependencies/parsers/php/index.ts +6 -0
package/src/dependencies/parsers/php/phpParser.ts +208 -0
package/src/dependencies/parsers/python/index.ts +6 -0
package/src/dependencies/parsers/python/pythonParser.ts +437 -0
package/src/dependencies/types.ts +330 -0
package/src/i18n/index.ts +1 -0
package/src/i18n/translations.ts +194 -0
package/src/index.ts +16 -0
package/src/reports/dependencyReportGenerator.ts +717 -0
package/src/reports/htmlReportGenerator.ts +781 -0
package/src/reports/index.ts +7 -0
package/src/reports/installedDepsReportGenerator.ts +899 -0
package/src/rules/index.ts +58 -0
package/src/rules/malware/INFO.md +287 -0
package/src/rules/malware/categories/backdoors.ts +174 -0
package/src/rules/malware/categories/cryptominers.ts +434 -0
package/src/rules/malware/categories/exfiltration.ts +677 -0
package/src/rules/malware/categories/keyloggers.ts +780 -0
package/src/rules/malware/categories/loaders.ts +721 -0
package/src/rules/malware/categories/network.ts +639 -0
package/src/rules/malware/categories/obfuscation.ts +788 -0
package/src/rules/malware/constants/index.ts +358 -0
package/src/rules/malware/engine/index.ts +758 -0
package/src/rules/malware/index.ts +928 -0
package/src/rules/malware/scoring/index.ts +549 -0
package/src/rules/malware/types/index.ts +752 -0
package/src/rules/malware/utils/index.ts +643 -0
package/src/rules/standards.ts +372 -0
package/src/rules/vulnerabilities/PROMPT_VULNERABILITIES.md +226 -0
package/src/rules/vulnerabilities/constants/index.ts +625 -0
package/src/rules/vulnerabilities/engine/index.ts +831 -0
package/src/rules/vulnerabilities/index.ts +312 -0
package/src/rules/vulnerabilities/rules/authentication.ts +426 -0
package/src/rules/vulnerabilities/rules/commandInjection.ts +307 -0
package/src/rules/vulnerabilities/rules/csrf.ts +268 -0
package/src/rules/vulnerabilities/rules/deserialization.ts +343 -0
package/src/rules/vulnerabilities/rules/fileUpload.ts +332 -0
package/src/rules/vulnerabilities/rules/hardcodedSecrets.ts +453 -0
package/src/rules/vulnerabilities/rules/index.ts +17 -0
package/src/rules/vulnerabilities/rules/pathTraversal.ts +358 -0
package/src/rules/vulnerabilities/rules/prototypePollution.ts +279 -0
package/src/rules/vulnerabilities/rules/securityMisconfiguration.ts +445 -0
package/src/rules/vulnerabilities/rules/sqlInjection.ts +669 -0
package/src/rules/vulnerabilities/rules/ssrf.ts +408 -0
package/src/rules/vulnerabilities/rules/xss.ts +753 -0
package/src/rules/vulnerabilities/scoring/index.ts +543 -0
package/src/rules/vulnerabilities/types/index.ts +1004 -0
package/src/rules/vulnerabilities/utils/index.ts +709 -0
package/src/types/index.ts +391 -0
package/src/utils/index.ts +306 -0
package/src/utils/logger.ts +150 -0
package/test-installed-scanner.ts +136 -0
package/tsconfig.json +30 -0

package/src/analyzers/javascript/astUtils.ts ADDED Viewed

@@ -0,0 +1,789 @@
+/**
+ * AST Utilities for JavaScript/TypeScript Analysis
+ * Provides AST parsing and traversal utilities using Babel Parser
+ *
+ * Inspired by Semgrep's AST pattern matching
+ */
+import * as parser from '@babel/parser';
+import traverse, { NodePath } from '@babel/traverse';
+import * as t from '@babel/types';
+/**
+ * AST Parse Options
+ */
+export interface ASTParseOptions {
+  /** Source type (script, module, unambiguous) */
+  sourceType?: 'script' | 'module' | 'unambiguous';
+  /** Enable TypeScript parsing */
+  typescript?: boolean;
+  /** Enable JSX parsing */
+  jsx?: boolean;
+  /** Allow return outside function */
+  allowReturnOutsideFunction?: boolean;
+  /** Error recovery mode */
+  errorRecovery?: boolean;
+}
+/**
+ * AST Node Location
+ */
+export interface ASTLocation {
+  startLine: number;
+  endLine: number;
+  startColumn: number;
+  endColumn: number;
+}
+/**
+ * Dangerous call detected in AST
+ */
+export interface DangerousCall {
+  /** Name of the dangerous function/method */
+  name: string;
+  /** Full call expression code */
+  code: string;
+  /** Location in source */
+  location: ASTLocation;
+  /** Type of dangerous pattern */
+  patternType: DangerousPatternType;
+  /** Arguments passed to the call */
+  arguments: string[];
+  /** Caller object (for method calls) */
+  callee?: string;
+  /** Additional context */
+  context?: string;
+}
+/**
+ * Types of dangerous patterns
+ */
+export enum DangerousPatternType {
+  CODE_EXECUTION = 'code_execution',
+  COMMAND_INJECTION = 'command_injection',
+  PROTOTYPE_POLLUTION = 'prototype_pollution',
+  XSS_SINK = 'xss_sink',
+  DYNAMIC_REQUIRE = 'dynamic_require',
+  INSECURE_RANDOM = 'insecure_random',
+  HARDCODED_SECRET = 'hardcoded_secret',
+  DANGEROUS_REGEX = 'dangerous_regex',
+  UNSAFE_ASSIGNMENT = 'unsafe_assignment',
+  NETWORK_REQUEST = 'network_request',
+  FILE_OPERATION = 'file_operation',
+  CRYPTO_WEAKNESS = 'crypto_weakness'
+}
+/**
+ * AST Pattern definition
+ */
+export interface ASTPattern {
+  /** Pattern type */
+  type: DangerousPatternType;
+  /** Description of the pattern */
+  description: string;
+  /** Matcher function */
+  matcher: (path: NodePath, context: ASTContext) => boolean;
+  /** Extract relevant information */
+  extractor?: (path: NodePath) => Partial<DangerousCall>;
+}
+/**
+ * AST Analysis Context
+ */
+export interface ASTContext {
+  /** Current file path */
+  filePath: string;
+  /** Source content */
+  source: string;
+  /** Detected imports/requires */
+  imports: Map<string, string>;
+  /** Is this TypeScript? */
+  isTypeScript: boolean;
+  /** Is this JSX? */
+  isJSX: boolean;
+}
+/**
+ * Dangerous function calls to detect
+ */
+const DANGEROUS_FUNCTIONS = new Map<string, DangerousPatternType>([
+  // Code execution
+  ['eval', DangerousPatternType.CODE_EXECUTION],
+  ['Function', DangerousPatternType.CODE_EXECUTION],
+  ['execScript', DangerousPatternType.CODE_EXECUTION],
+  // Command injection
+  ['exec', DangerousPatternType.COMMAND_INJECTION],
+  ['execSync', DangerousPatternType.COMMAND_INJECTION],
+  ['spawn', DangerousPatternType.COMMAND_INJECTION],
+  ['spawnSync', DangerousPatternType.COMMAND_INJECTION],
+  ['execFile', DangerousPatternType.COMMAND_INJECTION],
+  ['execFileSync', DangerousPatternType.COMMAND_INJECTION],
+  ['fork', DangerousPatternType.COMMAND_INJECTION],
+  // Insecure random
+  ['Math.random', DangerousPatternType.INSECURE_RANDOM],
+]);
+/**
+ * Dangerous method calls to detect (callee.method)
+ */
+const DANGEROUS_METHODS = new Map<string, Map<string, DangerousPatternType>>([
+  ['child_process', new Map([
+    ['exec', DangerousPatternType.COMMAND_INJECTION],
+    ['execSync', DangerousPatternType.COMMAND_INJECTION],
+    ['spawn', DangerousPatternType.COMMAND_INJECTION],
+    ['spawnSync', DangerousPatternType.COMMAND_INJECTION],
+  ])],
+  ['document', new Map([
+    ['write', DangerousPatternType.XSS_SINK],
+    ['writeln', DangerousPatternType.XSS_SINK],
+  ])],
+  ['fs', new Map([
+    ['readFile', DangerousPatternType.FILE_OPERATION],
+    ['readFileSync', DangerousPatternType.FILE_OPERATION],
+    ['writeFile', DangerousPatternType.FILE_OPERATION],
+    ['writeFileSync', DangerousPatternType.FILE_OPERATION],
+    ['unlink', DangerousPatternType.FILE_OPERATION],
+    ['unlinkSync', DangerousPatternType.FILE_OPERATION],
+  ])],
+]);
+/**
+ * AST Utilities Class
+ */
+export class ASTUtils {
+  private ast: t.File | null = null;
+  private source: string = '';
+  private context: ASTContext | null = null;
+  /**
+   * Parse source code to AST
+   */
+  parse(source: string, options: ASTParseOptions = {}): t.File | null {
+    this.source = source;
+    const parseOptions: parser.ParserOptions = {
+      sourceType: options.sourceType || 'unambiguous',
+      allowReturnOutsideFunction: options.allowReturnOutsideFunction ?? true,
+      errorRecovery: options.errorRecovery ?? true,
+      plugins: [
+        'decorators-legacy',
+        'classProperties',
+        'classPrivateProperties',
+        'classPrivateMethods',
+        'exportDefaultFrom',
+        'exportNamespaceFrom',
+        'dynamicImport',
+        'nullishCoalescingOperator',
+        'optionalChaining',
+        'optionalCatchBinding',
+        'objectRestSpread',
+        'numericSeparator',
+        'bigInt',
+        'asyncGenerators',
+        'functionBind',
+        'throwExpressions',
+        'partialApplication',
+        'topLevelAwait',
+      ]
+    };
+    // Add TypeScript plugin if needed
+    if (options.typescript) {
+      parseOptions.plugins!.push('typescript');
+    }
+    // Add JSX plugin if needed
+    if (options.jsx) {
+      parseOptions.plugins!.push('jsx');
+    }
+    try {
+      this.ast = parser.parse(source, parseOptions);
+      return this.ast;
+    } catch (error) {
+      // Try with error recovery
+      try {
+        parseOptions.errorRecovery = true;
+        this.ast = parser.parse(source, parseOptions);
+        return this.ast;
+      } catch {
+        return null;
+      }
+    }
+  }
+  /**
+   * Safe AST parsing with automatic feature detection
+   */
+  safeParse(source: string, filePath: string): t.File | null {
+    const isTypeScript = /\.tsx?$/i.test(filePath);
+    const isJSX = /\.[jt]sx$/i.test(filePath) || source.includes('React') || /<\w+[^>]*>/.test(source);
+    return this.parse(source, {
+      typescript: isTypeScript,
+      jsx: isJSX,
+      sourceType: 'unambiguous',
+      errorRecovery: true
+    });
+  }
+  /**
+   * Find all dangerous calls in the AST
+   */
+  findDangerousCalls(filePath: string): DangerousCall[] {
+    if (!this.ast) return [];
+    const calls: DangerousCall[] = [];
+    const imports = this.extractImports();
+    this.context = {
+      filePath,
+      source: this.source,
+      imports,
+      isTypeScript: /\.tsx?$/i.test(filePath),
+      isJSX: /\.[jt]sx$/i.test(filePath)
+    };
+    try {
+      traverse(this.ast, {
+        CallExpression: (path) => {
+          const call = this.analyzeCallExpression(path);
+          if (call) calls.push(call);
+        },
+        NewExpression: (path) => {
+          const call = this.analyzeNewExpression(path);
+          if (call) calls.push(call);
+        },
+        AssignmentExpression: (path) => {
+          const call = this.analyzeAssignment(path);
+          if (call) calls.push(call);
+        },
+        MemberExpression: (path) => {
+          const call = this.analyzeMemberExpression(path);
+          if (call) calls.push(call);
+        }
+      });
+    } catch {
+      // Traversal error, return what we have
+    }
+    return calls;
+  }
+  /**
+   * Analyze a call expression for dangerous patterns
+   */
+  private analyzeCallExpression(path: NodePath<t.CallExpression>): DangerousCall | null {
+    const node = path.node;
+    const callee = node.callee;
+    // Direct function call: eval(), Function(), etc.
+    if (t.isIdentifier(callee)) {
+      const funcName = callee.name;
+      const patternType = DANGEROUS_FUNCTIONS.get(funcName);
+      if (patternType) {
+        return {
+          name: funcName,
+          code: this.getNodeCode(node),
+          location: this.getLocation(node),
+          patternType,
+          arguments: this.extractArguments(node.arguments)
+        };
+      }
+      // Dynamic require
+      if (funcName === 'require' && node.arguments.length > 0) {
+        const arg = node.arguments[0];
+        if (!t.isStringLiteral(arg)) {
+          return {
+            name: 'require',
+            code: this.getNodeCode(node),
+            location: this.getLocation(node),
+            patternType: DangerousPatternType.DYNAMIC_REQUIRE,
+            arguments: this.extractArguments(node.arguments),
+            context: 'Dynamic require with non-literal argument'
+          };
+        }
+      }
+    }
+    // Method call: obj.method()
+    if (t.isMemberExpression(callee)) {
+      const result = this.analyzeMemberCall(node, callee);
+      if (result) return result;
+    }
+    return null;
+  }
+  /**
+   * Analyze a method call (obj.method())
+   */
+  private analyzeMemberCall(
+    node: t.CallExpression,
+    callee: t.MemberExpression
+  ): DangerousCall | null {
+    let objectName = '';
+    let methodName = '';
+    // Get object name
+    if (t.isIdentifier(callee.object)) {
+      objectName = callee.object.name;
+    } else if (t.isMemberExpression(callee.object) && t.isIdentifier(callee.object.property)) {
+      // Handle child_process.exec
+      objectName = this.getMemberExpressionName(callee.object);
+    }
+    // Get method name
+    if (t.isIdentifier(callee.property)) {
+      methodName = callee.property.name;
+    } else if (t.isStringLiteral(callee.property)) {
+      methodName = callee.property.value;
+    }
+    // Check for dangerous methods
+    const moduleMethods = DANGEROUS_METHODS.get(objectName);
+    if (moduleMethods) {
+      const patternType = moduleMethods.get(methodName);
+      if (patternType) {
+        return {
+          name: methodName,
+          code: this.getNodeCode(node),
+          location: this.getLocation(node),
+          patternType,
+          arguments: this.extractArguments(node.arguments),
+          callee: objectName
+        };
+      }
+    }
+    // Check for Math.random
+    if (objectName === 'Math' && methodName === 'random') {
+      return {
+        name: 'Math.random',
+        code: this.getNodeCode(node),
+        location: this.getLocation(node),
+        patternType: DangerousPatternType.INSECURE_RANDOM,
+        arguments: [],
+        callee: 'Math'
+      };
+    }
+    // Check for DOM XSS sinks
+    const xssMethods = ['write', 'writeln'];
+    if (objectName === 'document' && xssMethods.includes(methodName)) {
+      return {
+        name: methodName,
+        code: this.getNodeCode(node),
+        location: this.getLocation(node),
+        patternType: DangerousPatternType.XSS_SINK,
+        arguments: this.extractArguments(node.arguments),
+        callee: 'document'
+      };
+    }
+    return null;
+  }
+  /**
+   * Analyze new expression: new Function(), etc.
+   */
+  private analyzeNewExpression(path: NodePath<t.NewExpression>): DangerousCall | null {
+    const node = path.node;
+    if (t.isIdentifier(node.callee)) {
+      const className = node.callee.name;
+      // new Function(...) is like eval
+      if (className === 'Function') {
+        return {
+          name: 'new Function',
+          code: this.getNodeCode(node),
+          location: this.getLocation(node),
+          patternType: DangerousPatternType.CODE_EXECUTION,
+          arguments: this.extractArguments(node.arguments)
+        };
+      }
+      // new WebAssembly.Instance with potentially malicious wasm
+      if (className === 'WebAssembly') {
+        return {
+          name: 'new WebAssembly',
+          code: this.getNodeCode(node),
+          location: this.getLocation(node),
+          patternType: DangerousPatternType.CODE_EXECUTION,
+          arguments: this.extractArguments(node.arguments),
+          context: 'WebAssembly instantiation - verify source'
+        };
+      }
+    }
+    return null;
+  }
+  /**
+   * Analyze assignment for dangerous patterns
+   */
+  private analyzeAssignment(path: NodePath<t.AssignmentExpression>): DangerousCall | null {
+    const node = path.node;
+    // Check for innerHTML/outerHTML assignment
+    if (t.isMemberExpression(node.left)) {
+      const property = node.left.property;
+      let propName = '';
+      if (t.isIdentifier(property)) {
+        propName = property.name;
+      } else if (t.isStringLiteral(property)) {
+        propName = property.value;
+      }
+      const xssSinks = ['innerHTML', 'outerHTML'];
+      if (xssSinks.includes(propName)) {
+        return {
+          name: propName,
+          code: this.getNodeCode(node),
+          location: this.getLocation(node),
+          patternType: DangerousPatternType.XSS_SINK,
+          arguments: [this.getNodeCode(node.right)]
+        };
+      }
+      // Check for prototype pollution
+      if (propName === '__proto__' ||
+          (t.isIdentifier(property) && property.name === 'prototype')) {
+        return {
+          name: '__proto__',
+          code: this.getNodeCode(node),
+          location: this.getLocation(node),
+          patternType: DangerousPatternType.PROTOTYPE_POLLUTION,
+          arguments: [this.getNodeCode(node.right)]
+        };
+      }
+    }
+    return null;
+  }
+  /**
+   * Analyze member expression for dangerous patterns
+   */
+  private analyzeMemberExpression(path: NodePath<t.MemberExpression>): DangerousCall | null {
+    const node = path.node;
+    // Check for prototype access
+    if (t.isIdentifier(node.property) && node.property.name === '__proto__') {
+      // Skip if already analyzed as assignment
+      if (t.isAssignmentExpression(path.parent)) return null;
+      return {
+        name: '__proto__',
+        code: this.getNodeCode(node),
+        location: this.getLocation(node),
+        patternType: DangerousPatternType.PROTOTYPE_POLLUTION,
+        arguments: []
+      };
+    }
+    // Check for bracket notation with __proto__
+    if (t.isStringLiteral(node.property) && node.property.value === '__proto__') {
+      return {
+        name: '__proto__',
+        code: this.getNodeCode(node),
+        location: this.getLocation(node),
+        patternType: DangerousPatternType.PROTOTYPE_POLLUTION,
+        arguments: []
+      };
+    }
+    return null;
+  }
+  /**
+   * Extract imports/requires from the AST
+   */
+  private extractImports(): Map<string, string> {
+    const imports = new Map<string, string>();
+    if (!this.ast) return imports;
+    try {
+      traverse(this.ast, {
+        ImportDeclaration: (path) => {
+          const source = path.node.source.value;
+          for (const specifier of path.node.specifiers) {
+            if (t.isImportDefaultSpecifier(specifier) || t.isImportNamespaceSpecifier(specifier)) {
+              imports.set(specifier.local.name, source);
+            } else if (t.isImportSpecifier(specifier)) {
+              imports.set(specifier.local.name, source);
+            }
+          }
+        },
+        VariableDeclarator: (path) => {
+          const node = path.node;
+          if (t.isCallExpression(node.init) &&
+              t.isIdentifier(node.init.callee) &&
+              node.init.callee.name === 'require' &&
+              node.init.arguments.length > 0 &&
+              t.isStringLiteral(node.init.arguments[0])) {
+            const source = node.init.arguments[0].value;
+            if (t.isIdentifier(node.id)) {
+              imports.set(node.id.name, source);
+            } else if (t.isObjectPattern(node.id)) {
+              for (const prop of node.id.properties) {
+                if (t.isObjectProperty(prop) && t.isIdentifier(prop.value)) {
+                  imports.set(prop.value.name, source);
+                }
+              }
+            }
+          }
+        }
+      });
+    } catch {
+      // Ignore traversal errors
+    }
+    return imports;
+  }
+  /**
+   * Get the source code for a node
+   */
+  private getNodeCode(node: t.Node): string {
+    if (node.start !== null && node.start !== undefined &&
+        node.end !== null && node.end !== undefined) {
+      return this.source.substring(node.start, node.end);
+    }
+    return '';
+  }
+  /**
+   * Get location information for a node
+   */
+  private getLocation(node: t.Node): ASTLocation {
+    return {
+      startLine: node.loc?.start.line || 1,
+      endLine: node.loc?.end.line || 1,
+      startColumn: node.loc?.start.column || 0,
+      endColumn: node.loc?.end.column || 0
+    };
+  }
+  /**
+   * Extract arguments as strings
+   */
+  private extractArguments(args: (t.Expression | t.SpreadElement | t.ArgumentPlaceholder)[]): string[] {
+    return args.map(arg => {
+      if (t.isSpreadElement(arg)) {
+        return `...${this.getNodeCode(arg.argument)}`;
+      }
+      return this.getNodeCode(arg);
+    });
+  }
+  /**
+   * Get full name of member expression
+   */
+  private getMemberExpressionName(node: t.MemberExpression): string {
+    const parts: string[] = [];
+    let current: t.Node = node;
+    while (t.isMemberExpression(current)) {
+      if (t.isIdentifier(current.property)) {
+        parts.unshift(current.property.name);
+      } else if (t.isStringLiteral(current.property)) {
+        parts.unshift(current.property.value);
+      }
+      current = current.object;
+    }
+    if (t.isIdentifier(current)) {
+      parts.unshift(current.name);
+    }
+    return parts.join('.');
+  }
+  /**
+   * Find all string literals that look like hardcoded secrets
+   */
+  findHardcodedSecrets(): DangerousCall[] {
+    const secrets: DangerousCall[] = [];
+    if (!this.ast) return secrets;
+    const secretPatterns = [
+      { pattern: /^(api[_-]?key|apikey)\s*[:=]\s*['"`]([^'"`]{10,})['"`]/i, name: 'API Key' },
+      { pattern: /^(secret|password|passwd|pwd)\s*[:=]\s*['"`]([^'"`]{6,})['"`]/i, name: 'Password/Secret' },
+      { pattern: /^(token|access[_-]?token|auth[_-]?token)\s*[:=]\s*['"`]([^'"`]{10,})['"`]/i, name: 'Token' },
+      { pattern: /^(private[_-]?key)\s*[:=]\s*['"`]([^'"`]{20,})['"`]/i, name: 'Private Key' },
+    ];
+    const stringLiteralPatterns = [
+      { pattern: /^(sk[_-]live[_-][a-zA-Z0-9]{24,})$/, name: 'Stripe Secret Key' },
+      { pattern: /^(sk[_-]test[_-][a-zA-Z0-9]{24,})$/, name: 'Stripe Test Key' },
+      { pattern: /^(ghp_[a-zA-Z0-9]{36})$/, name: 'GitHub Personal Access Token' },
+      { pattern: /^(gho_[a-zA-Z0-9]{36})$/, name: 'GitHub OAuth Token' },
+      { pattern: /^(glpat-[a-zA-Z0-9-_]{20,})$/, name: 'GitLab Personal Access Token' },
+      { pattern: /^(xox[baprs]-[0-9]{10,13}-[a-zA-Z0-9-]+)$/, name: 'Slack Token' },
+      { pattern: /^(AKIA[0-9A-Z]{16})$/, name: 'AWS Access Key ID' },
+      { pattern: /^(eyJ[a-zA-Z0-9_-]+\.eyJ[a-zA-Z0-9_-]+\.[a-zA-Z0-9_-]+)$/, name: 'JWT Token' },
+    ];
+    try {
+      traverse(this.ast, {
+        StringLiteral: (path) => {
+          const value = path.node.value;
+          for (const { pattern, name } of stringLiteralPatterns) {
+            if (pattern.test(value)) {
+              secrets.push({
+                name,
+                code: `"${value.substring(0, 20)}..."`,
+                location: this.getLocation(path.node),
+                patternType: DangerousPatternType.HARDCODED_SECRET,
+                arguments: [],
+                context: `Hardcoded ${name} detected`
+              });
+            }
+          }
+        },
+        VariableDeclarator: (path) => {
+          if (t.isIdentifier(path.node.id) && t.isStringLiteral(path.node.init)) {
+            const varName = path.node.id.name.toLowerCase();
+            const value = path.node.init.value;
+            for (const { pattern, name } of secretPatterns) {
+              const testStr = `${varName}="${value}"`;
+              if (pattern.test(testStr) && value.length >= 8) {
+                secrets.push({
+                  name,
+                  code: `${path.node.id.name} = "${value.substring(0, 10)}..."`,
+                  location: this.getLocation(path.node),
+                  patternType: DangerousPatternType.HARDCODED_SECRET,
+                  arguments: [],
+                  context: `Potential hardcoded ${name}`
+                });
+              }
+            }
+          }
+        }
+      });
+    } catch {
+      // Ignore traversal errors
+    }
+    return secrets;
+  }
+  /**
+   * Find ReDoS-vulnerable regex patterns
+   */
+  findDangerousRegex(): DangerousCall[] {
+    const dangerous: DangerousCall[] = [];
+    if (!this.ast) return dangerous;
+    // Patterns that can cause ReDoS
+    const redosPatterns = [
+      /(\+|\*)\1/, // Nested quantifiers like (a+)+
+      /\([^)]*\+[^)]*\)\+/, // (a+)+
+      /\([^)]*\*[^)]*\)\*/, // (a*)*
+      /\([^)]*\+[^)]*\)\*/, // (a+)*
+      /\([^)]*\*[^)]*\)\+/, // (a*)+
+    ];
+    try {
+      traverse(this.ast, {
+        RegExpLiteral: (path) => {
+          const pattern = path.node.pattern;
+          for (const redos of redosPatterns) {
+            if (redos.test(pattern)) {
+              dangerous.push({
+                name: 'ReDoS Pattern',
+                code: `/${pattern}/${path.node.flags}`,
+                location: this.getLocation(path.node),
+                patternType: DangerousPatternType.DANGEROUS_REGEX,
+                arguments: [],
+                context: 'Potential ReDoS vulnerability'
+              });
+              break;
+            }
+          }
+        },
+        NewExpression: (path) => {
+          if (t.isIdentifier(path.node.callee) &&
+              path.node.callee.name === 'RegExp' &&
+              path.node.arguments.length > 0 &&
+              t.isStringLiteral(path.node.arguments[0])) {
+            const pattern = path.node.arguments[0].value;
+            for (const redos of redosPatterns) {
+              if (redos.test(pattern)) {
+                dangerous.push({
+                  name: 'ReDoS Pattern',
+                  code: `new RegExp("${pattern}")`,
+                  location: this.getLocation(path.node),
+                  patternType: DangerousPatternType.DANGEROUS_REGEX,
+                  arguments: [pattern],
+                  context: 'Potential ReDoS vulnerability'
+                });
+                break;
+              }
+            }
+          }
+        }
+      });
+    } catch {
+      // Ignore traversal errors
+    }
+    return dangerous;
+  }
+  /**
+   * Check if code contains anti-debugging techniques
+   */
+  findAntiDebugging(): DangerousCall[] {
+    const detected: DangerousCall[] = [];
+    if (!this.ast) return detected;
+    try {
+      traverse(this.ast, {
+        MemberExpression: (path) => {
+          // Check for debugger detection via console timing
+          if (t.isIdentifier(path.node.object) &&
+              path.node.object.name === 'console' &&
+              t.isIdentifier(path.node.property)) {
+            // Look for timing-based detection
+            const parent = path.parent;
+            if (t.isCallExpression(parent)) {
+              const funcParent = path.findParent(p => t.isFunctionDeclaration(p.node) || t.isFunctionExpression(p.node));
+              // Check context for anti-debugging patterns (unused for now)
+              void funcParent;
+            }
+          }
+        },
+        DebuggerStatement: (path) => {
+          // Multiple debugger statements can be used to annoy debuggers
+          detected.push({
+            name: 'debugger',
+            code: 'debugger',
+            location: this.getLocation(path.node),
+            patternType: DangerousPatternType.CODE_EXECUTION,
+            arguments: [],
+            context: 'Debugger statement detected'
+          });
+        }
+      });
+    } catch {
+      // Ignore traversal errors
+    }
+    return detected;
+  }
+}
+export default ASTUtils;