npm - secure-scan - Versions diffs - 1.2.2 - Mend

secure-scan 1.2.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (569) hide show

package/README.md +564 -0
package/dist/ai/aiAnalyzer.d.ts +99 -0
package/dist/ai/aiAnalyzer.d.ts.map +1 -0
package/dist/ai/aiAnalyzer.js +669 -0
package/dist/ai/aiAnalyzer.js.map +1 -0
package/dist/ai/index.d.ts +5 -0
package/dist/ai/index.d.ts.map +1 -0
package/dist/ai/index.js +21 -0
package/dist/ai/index.js.map +1 -0
package/dist/analyzers/base/baseAnalyzer.d.ts +44 -0
package/dist/analyzers/base/baseAnalyzer.d.ts.map +1 -0
package/dist/analyzers/base/baseAnalyzer.js +53 -0
package/dist/analyzers/base/baseAnalyzer.js.map +1 -0
package/dist/analyzers/base/index.d.ts +5 -0
package/dist/analyzers/base/index.d.ts.map +1 -0
package/dist/analyzers/base/index.js +21 -0
package/dist/analyzers/base/index.js.map +1 -0
package/dist/analyzers/c-cpp/cppAnalyzer.d.ts +60 -0
package/dist/analyzers/c-cpp/cppAnalyzer.d.ts.map +1 -0
package/dist/analyzers/c-cpp/cppAnalyzer.js +218 -0
package/dist/analyzers/c-cpp/cppAnalyzer.js.map +1 -0
package/dist/analyzers/c-cpp/index.d.ts +5 -0
package/dist/analyzers/c-cpp/index.d.ts.map +1 -0
package/dist/analyzers/c-cpp/index.js +21 -0
package/dist/analyzers/c-cpp/index.js.map +1 -0
package/dist/analyzers/core/engine/index.d.ts +5 -0
package/dist/analyzers/core/engine/index.d.ts.map +1 -0
package/dist/analyzers/core/engine/index.js +21 -0
package/dist/analyzers/core/engine/index.js.map +1 -0
package/dist/analyzers/core/engine/ruleEngine.d.ts +46 -0
package/dist/analyzers/core/engine/ruleEngine.d.ts.map +1 -0
package/dist/analyzers/core/engine/ruleEngine.js +173 -0
package/dist/analyzers/core/engine/ruleEngine.js.map +1 -0
package/dist/analyzers/core/index.d.ts +8 -0
package/dist/analyzers/core/index.d.ts.map +1 -0
package/dist/analyzers/core/index.js +24 -0
package/dist/analyzers/core/index.js.map +1 -0
package/dist/analyzers/core/scanner/fileScanner.d.ts +31 -0
package/dist/analyzers/core/scanner/fileScanner.d.ts.map +1 -0
package/dist/analyzers/core/scanner/fileScanner.js +199 -0
package/dist/analyzers/core/scanner/fileScanner.js.map +1 -0
package/dist/analyzers/core/scanner/index.d.ts +5 -0
package/dist/analyzers/core/scanner/index.d.ts.map +1 -0
package/dist/analyzers/core/scanner/index.js +21 -0
package/dist/analyzers/core/scanner/index.js.map +1 -0
package/dist/analyzers/core/scoring/index.d.ts +5 -0
package/dist/analyzers/core/scoring/index.d.ts.map +1 -0
package/dist/analyzers/core/scoring/index.js +21 -0
package/dist/analyzers/core/scoring/index.js.map +1 -0
package/dist/analyzers/core/scoring/riskScoring.d.ts +49 -0
package/dist/analyzers/core/scoring/riskScoring.d.ts.map +1 -0
package/dist/analyzers/core/scoring/riskScoring.js +180 -0
package/dist/analyzers/core/scoring/riskScoring.js.map +1 -0
package/dist/analyzers/core/securityScanner.d.ts +47 -0
package/dist/analyzers/core/securityScanner.d.ts.map +1 -0
package/dist/analyzers/core/securityScanner.js +298 -0
package/dist/analyzers/core/securityScanner.js.map +1 -0
package/dist/analyzers/csharp/csharpAnalyzer.d.ts +64 -0
package/dist/analyzers/csharp/csharpAnalyzer.d.ts.map +1 -0
package/dist/analyzers/csharp/csharpAnalyzer.js +232 -0
package/dist/analyzers/csharp/csharpAnalyzer.js.map +1 -0
package/dist/analyzers/csharp/index.d.ts +5 -0
package/dist/analyzers/csharp/index.d.ts.map +1 -0
package/dist/analyzers/csharp/index.js +21 -0
package/dist/analyzers/csharp/index.js.map +1 -0
package/dist/analyzers/iac/iacAnalyzer.d.ts +36 -0
package/dist/analyzers/iac/iacAnalyzer.d.ts.map +1 -0
package/dist/analyzers/iac/iacAnalyzer.js +182 -0
package/dist/analyzers/iac/iacAnalyzer.js.map +1 -0
package/dist/analyzers/iac/index.d.ts +5 -0
package/dist/analyzers/iac/index.d.ts.map +1 -0
package/dist/analyzers/iac/index.js +21 -0
package/dist/analyzers/iac/index.js.map +1 -0
package/dist/analyzers/index.d.ts +30 -0
package/dist/analyzers/index.d.ts.map +1 -0
package/dist/analyzers/index.js +80 -0
package/dist/analyzers/index.js.map +1 -0
package/dist/analyzers/java/index.d.ts +5 -0
package/dist/analyzers/java/index.d.ts.map +1 -0
package/dist/analyzers/java/index.js +21 -0
package/dist/analyzers/java/index.js.map +1 -0
package/dist/analyzers/java/javaAnalyzer.d.ts +64 -0
package/dist/analyzers/java/javaAnalyzer.d.ts.map +1 -0
package/dist/analyzers/java/javaAnalyzer.js +224 -0
package/dist/analyzers/java/javaAnalyzer.js.map +1 -0
package/dist/analyzers/javascript/astUtils.d.ts +170 -0
package/dist/analyzers/javascript/astUtils.d.ts.map +1 -0
package/dist/analyzers/javascript/astUtils.js +700 -0
package/dist/analyzers/javascript/astUtils.js.map +1 -0
package/dist/analyzers/javascript/index.d.ts +18 -0
package/dist/analyzers/javascript/index.d.ts.map +1 -0
package/dist/analyzers/javascript/index.js +50 -0
package/dist/analyzers/javascript/index.js.map +1 -0
package/dist/analyzers/javascript/javascriptAnalyzer.d.ts +111 -0
package/dist/analyzers/javascript/javascriptAnalyzer.d.ts.map +1 -0
package/dist/analyzers/javascript/javascriptAnalyzer.js +860 -0
package/dist/analyzers/javascript/javascriptAnalyzer.js.map +1 -0
package/dist/analyzers/javascript/malwareDetector.d.ts +102 -0
package/dist/analyzers/javascript/malwareDetector.d.ts.map +1 -0
package/dist/analyzers/javascript/malwareDetector.js +616 -0
package/dist/analyzers/javascript/malwareDetector.js.map +1 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.d.ts +87 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.d.ts.map +1 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.js +553 -0
package/dist/analyzers/javascript/packageJsonAnalyzer.js.map +1 -0
package/dist/analyzers/javascript/taintAnalyzer.d.ts +120 -0
package/dist/analyzers/javascript/taintAnalyzer.d.ts.map +1 -0
package/dist/analyzers/javascript/taintAnalyzer.js +526 -0
package/dist/analyzers/javascript/taintAnalyzer.js.map +1 -0
package/dist/analyzers/php/index.d.ts +5 -0
package/dist/analyzers/php/index.d.ts.map +1 -0
package/dist/analyzers/php/index.js +21 -0
package/dist/analyzers/php/index.js.map +1 -0
package/dist/analyzers/php/phpAnalyzer.d.ts +56 -0
package/dist/analyzers/php/phpAnalyzer.d.ts.map +1 -0
package/dist/analyzers/php/phpAnalyzer.js +202 -0
package/dist/analyzers/php/phpAnalyzer.js.map +1 -0
package/dist/analyzers/python/index.d.ts +5 -0
package/dist/analyzers/python/index.d.ts.map +1 -0
package/dist/analyzers/python/index.js +21 -0
package/dist/analyzers/python/index.js.map +1 -0
package/dist/analyzers/python/pythonAnalyzer.d.ts +64 -0
package/dist/analyzers/python/pythonAnalyzer.d.ts.map +1 -0
package/dist/analyzers/python/pythonAnalyzer.js +226 -0
package/dist/analyzers/python/pythonAnalyzer.js.map +1 -0
package/dist/cli/index.d.ts +7 -0
package/dist/cli/index.d.ts.map +1 -0
package/dist/cli/index.js +281 -0
package/dist/cli/index.js.map +1 -0
package/dist/core/engine/index.d.ts +5 -0
package/dist/core/engine/index.d.ts.map +1 -0
package/dist/core/engine/index.js +21 -0
package/dist/core/engine/index.js.map +1 -0
package/dist/core/engine/ruleEngine.d.ts +46 -0
package/dist/core/engine/ruleEngine.d.ts.map +1 -0
package/dist/core/engine/ruleEngine.js +173 -0
package/dist/core/engine/ruleEngine.js.map +1 -0
package/dist/core/index.d.ts +8 -0
package/dist/core/index.d.ts.map +1 -0
package/dist/core/index.js +24 -0
package/dist/core/index.js.map +1 -0
package/dist/core/scanner/fileScanner.d.ts +31 -0
package/dist/core/scanner/fileScanner.d.ts.map +1 -0
package/dist/core/scanner/fileScanner.js +199 -0
package/dist/core/scanner/fileScanner.js.map +1 -0
package/dist/core/scanner/index.d.ts +5 -0
package/dist/core/scanner/index.d.ts.map +1 -0
package/dist/core/scanner/index.js +21 -0
package/dist/core/scanner/index.js.map +1 -0
package/dist/core/scoring/index.d.ts +5 -0
package/dist/core/scoring/index.d.ts.map +1 -0
package/dist/core/scoring/index.js +21 -0
package/dist/core/scoring/index.js.map +1 -0
package/dist/core/scoring/riskScoring.d.ts +49 -0
package/dist/core/scoring/riskScoring.d.ts.map +1 -0
package/dist/core/scoring/riskScoring.js +180 -0
package/dist/core/scoring/riskScoring.js.map +1 -0
package/dist/core/securityScanner.d.ts +47 -0
package/dist/core/securityScanner.d.ts.map +1 -0
package/dist/core/securityScanner.js +298 -0
package/dist/core/securityScanner.js.map +1 -0
package/dist/dependencies/aiDependencyAnalyzer.d.ts +96 -0
package/dist/dependencies/aiDependencyAnalyzer.d.ts.map +1 -0
package/dist/dependencies/aiDependencyAnalyzer.js +435 -0
package/dist/dependencies/aiDependencyAnalyzer.js.map +1 -0
package/dist/dependencies/database/cveDatabase.d.ts +32 -0
package/dist/dependencies/database/cveDatabase.d.ts.map +1 -0
package/dist/dependencies/database/cveDatabase.js +393 -0
package/dist/dependencies/database/cveDatabase.js.map +1 -0
package/dist/dependencies/database/index.d.ts +6 -0
package/dist/dependencies/database/index.d.ts.map +1 -0
package/dist/dependencies/database/index.js +22 -0
package/dist/dependencies/database/index.js.map +1 -0
package/dist/dependencies/database/maliciousPackages.d.ts +43 -0
package/dist/dependencies/database/maliciousPackages.d.ts.map +1 -0
package/dist/dependencies/database/maliciousPackages.js +279 -0
package/dist/dependencies/database/maliciousPackages.js.map +1 -0
package/dist/dependencies/dependencyAnalyzer.d.ts +74 -0
package/dist/dependencies/dependencyAnalyzer.d.ts.map +1 -0
package/dist/dependencies/dependencyAnalyzer.js +349 -0
package/dist/dependencies/dependencyAnalyzer.js.map +1 -0
package/dist/dependencies/detectors/index.d.ts +7 -0
package/dist/dependencies/detectors/index.d.ts.map +1 -0
package/dist/dependencies/detectors/index.js +28 -0
package/dist/dependencies/detectors/index.js.map +1 -0
package/dist/dependencies/detectors/securityStandards.d.ts +15 -0
package/dist/dependencies/detectors/securityStandards.d.ts.map +1 -0
package/dist/dependencies/detectors/securityStandards.js +178 -0
package/dist/dependencies/detectors/securityStandards.js.map +1 -0
package/dist/dependencies/detectors/vulnerabilityDetector.d.ts +53 -0
package/dist/dependencies/detectors/vulnerabilityDetector.d.ts.map +1 -0
package/dist/dependencies/detectors/vulnerabilityDetector.js +289 -0
package/dist/dependencies/detectors/vulnerabilityDetector.js.map +1 -0
package/dist/dependencies/index.d.ts +14 -0
package/dist/dependencies/index.d.ts.map +1 -0
package/dist/dependencies/index.js +43 -0
package/dist/dependencies/index.js.map +1 -0
package/dist/dependencies/installed/index.d.ts +8 -0
package/dist/dependencies/installed/index.d.ts.map +1 -0
package/dist/dependencies/installed/index.js +24 -0
package/dist/dependencies/installed/index.js.map +1 -0
package/dist/dependencies/installed/installedScanner.d.ts +91 -0
package/dist/dependencies/installed/installedScanner.d.ts.map +1 -0
package/dist/dependencies/installed/installedScanner.js +766 -0
package/dist/dependencies/installed/installedScanner.js.map +1 -0
package/dist/dependencies/installed/malwarePatterns.d.ts +32 -0
package/dist/dependencies/installed/malwarePatterns.d.ts.map +1 -0
package/dist/dependencies/installed/malwarePatterns.js +480 -0
package/dist/dependencies/installed/malwarePatterns.js.map +1 -0
package/dist/dependencies/installed/types.d.ts +274 -0
package/dist/dependencies/installed/types.d.ts.map +1 -0
package/dist/dependencies/installed/types.js +7 -0
package/dist/dependencies/installed/types.js.map +1 -0
package/dist/dependencies/parsers/base/baseParser.d.ts +44 -0
package/dist/dependencies/parsers/base/baseParser.d.ts.map +1 -0
package/dist/dependencies/parsers/base/baseParser.js +80 -0
package/dist/dependencies/parsers/base/baseParser.js.map +1 -0
package/dist/dependencies/parsers/base/index.d.ts +6 -0
package/dist/dependencies/parsers/base/index.d.ts.map +1 -0
package/dist/dependencies/parsers/base/index.js +27 -0
package/dist/dependencies/parsers/base/index.js.map +1 -0
package/dist/dependencies/parsers/cpp/cppParser.d.ts +36 -0
package/dist/dependencies/parsers/cpp/cppParser.d.ts.map +1 -0
package/dist/dependencies/parsers/cpp/cppParser.js +196 -0
package/dist/dependencies/parsers/cpp/cppParser.js.map +1 -0
package/dist/dependencies/parsers/cpp/index.d.ts +6 -0
package/dist/dependencies/parsers/cpp/index.d.ts.map +1 -0
package/dist/dependencies/parsers/cpp/index.js +27 -0
package/dist/dependencies/parsers/cpp/index.js.map +1 -0
package/dist/dependencies/parsers/csharp/csharpParser.d.ts +32 -0
package/dist/dependencies/parsers/csharp/csharpParser.d.ts.map +1 -0
package/dist/dependencies/parsers/csharp/csharpParser.js +125 -0
package/dist/dependencies/parsers/csharp/csharpParser.js.map +1 -0
package/dist/dependencies/parsers/csharp/index.d.ts +6 -0
package/dist/dependencies/parsers/csharp/index.d.ts.map +1 -0
package/dist/dependencies/parsers/csharp/index.js +27 -0
package/dist/dependencies/parsers/csharp/index.js.map +1 -0
package/dist/dependencies/parsers/index.d.ts +24 -0
package/dist/dependencies/parsers/index.d.ts.map +1 -0
package/dist/dependencies/parsers/index.js +69 -0
package/dist/dependencies/parsers/index.js.map +1 -0
package/dist/dependencies/parsers/java/index.d.ts +6 -0
package/dist/dependencies/parsers/java/index.d.ts.map +1 -0
package/dist/dependencies/parsers/java/index.js +27 -0
package/dist/dependencies/parsers/java/index.js.map +1 -0
package/dist/dependencies/parsers/java/javaParser.d.ts +32 -0
package/dist/dependencies/parsers/java/javaParser.d.ts.map +1 -0
package/dist/dependencies/parsers/java/javaParser.js +168 -0
package/dist/dependencies/parsers/java/javaParser.js.map +1 -0
package/dist/dependencies/parsers/javascript/index.d.ts +6 -0
package/dist/dependencies/parsers/javascript/index.d.ts.map +1 -0
package/dist/dependencies/parsers/javascript/index.js +27 -0
package/dist/dependencies/parsers/javascript/index.js.map +1 -0
package/dist/dependencies/parsers/javascript/javascriptParser.d.ts +55 -0
package/dist/dependencies/parsers/javascript/javascriptParser.d.ts.map +1 -0
package/dist/dependencies/parsers/javascript/javascriptParser.js +266 -0
package/dist/dependencies/parsers/javascript/javascriptParser.js.map +1 -0
package/dist/dependencies/parsers/php/index.d.ts +6 -0
package/dist/dependencies/parsers/php/index.d.ts.map +1 -0
package/dist/dependencies/parsers/php/index.js +27 -0
package/dist/dependencies/parsers/php/index.js.map +1 -0
package/dist/dependencies/parsers/php/phpParser.d.ts +35 -0
package/dist/dependencies/parsers/php/phpParser.d.ts.map +1 -0
package/dist/dependencies/parsers/php/phpParser.js +162 -0
package/dist/dependencies/parsers/php/phpParser.js.map +1 -0
package/dist/dependencies/parsers/python/index.d.ts +6 -0
package/dist/dependencies/parsers/python/index.d.ts.map +1 -0
package/dist/dependencies/parsers/python/index.js +27 -0
package/dist/dependencies/parsers/python/index.js.map +1 -0
package/dist/dependencies/parsers/python/pythonParser.d.ts +60 -0
package/dist/dependencies/parsers/python/pythonParser.d.ts.map +1 -0
package/dist/dependencies/parsers/python/pythonParser.js +336 -0
package/dist/dependencies/parsers/python/pythonParser.js.map +1 -0
package/dist/dependencies/types.d.ts +280 -0
package/dist/dependencies/types.d.ts.map +1 -0
package/dist/dependencies/types.js +59 -0
package/dist/dependencies/types.js.map +1 -0
package/dist/i18n/index.d.ts +2 -0
package/dist/i18n/index.d.ts.map +1 -0
package/dist/i18n/index.js +18 -0
package/dist/i18n/index.js.map +1 -0
package/dist/i18n/translations.d.ts +55 -0
package/dist/i18n/translations.d.ts.map +1 -0
package/dist/i18n/translations.js +119 -0
package/dist/i18n/translations.js.map +1 -0
package/dist/index.d.ts +14 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +36 -0
package/dist/index.js.map +1 -0
package/dist/reports/dependencyReportGenerator.d.ts +20 -0
package/dist/reports/dependencyReportGenerator.d.ts.map +1 -0
package/dist/reports/dependencyReportGenerator.js +690 -0
package/dist/reports/dependencyReportGenerator.js.map +1 -0
package/dist/reports/htmlReportGenerator.d.ts +43 -0
package/dist/reports/htmlReportGenerator.d.ts.map +1 -0
package/dist/reports/htmlReportGenerator.js +793 -0
package/dist/reports/htmlReportGenerator.js.map +1 -0
package/dist/reports/index.d.ts +7 -0
package/dist/reports/index.d.ts.map +1 -0
package/dist/reports/index.js +23 -0
package/dist/reports/index.js.map +1 -0
package/dist/reports/installedDepsReportGenerator.d.ts +14 -0
package/dist/reports/installedDepsReportGenerator.d.ts.map +1 -0
package/dist/reports/installedDepsReportGenerator.js +872 -0
package/dist/reports/installedDepsReportGenerator.js.map +1 -0
package/dist/rules/index.d.ts +31 -0
package/dist/rules/index.d.ts.map +1 -0
package/dist/rules/index.js +95 -0
package/dist/rules/index.js.map +1 -0
package/dist/rules/malware/categories/backdoors.d.ts +12 -0
package/dist/rules/malware/categories/backdoors.d.ts.map +1 -0
package/dist/rules/malware/categories/backdoors.js +163 -0
package/dist/rules/malware/categories/backdoors.js.map +1 -0
package/dist/rules/malware/categories/cryptominers.d.ts +13 -0
package/dist/rules/malware/categories/cryptominers.d.ts.map +1 -0
package/dist/rules/malware/categories/cryptominers.js +415 -0
package/dist/rules/malware/categories/cryptominers.js.map +1 -0
package/dist/rules/malware/categories/exfiltration.d.ts +20 -0
package/dist/rules/malware/categories/exfiltration.d.ts.map +1 -0
package/dist/rules/malware/categories/exfiltration.js +658 -0
package/dist/rules/malware/categories/exfiltration.js.map +1 -0
package/dist/rules/malware/categories/keyloggers.d.ts +19 -0
package/dist/rules/malware/categories/keyloggers.d.ts.map +1 -0
package/dist/rules/malware/categories/keyloggers.js +763 -0
package/dist/rules/malware/categories/keyloggers.js.map +1 -0
package/dist/rules/malware/categories/loaders.d.ts +20 -0
package/dist/rules/malware/categories/loaders.d.ts.map +1 -0
package/dist/rules/malware/categories/loaders.js +702 -0
package/dist/rules/malware/categories/loaders.js.map +1 -0
package/dist/rules/malware/categories/network.d.ts +19 -0
package/dist/rules/malware/categories/network.d.ts.map +1 -0
package/dist/rules/malware/categories/network.js +622 -0
package/dist/rules/malware/categories/network.js.map +1 -0
package/dist/rules/malware/categories/obfuscation.d.ts +22 -0
package/dist/rules/malware/categories/obfuscation.d.ts.map +1 -0
package/dist/rules/malware/categories/obfuscation.js +766 -0
package/dist/rules/malware/categories/obfuscation.js.map +1 -0
package/dist/rules/malware/constants/index.d.ts +281 -0
package/dist/rules/malware/constants/index.d.ts.map +1 -0
package/dist/rules/malware/constants/index.js +327 -0
package/dist/rules/malware/constants/index.js.map +1 -0
package/dist/rules/malware/engine/index.d.ts +178 -0
package/dist/rules/malware/engine/index.d.ts.map +1 -0
package/dist/rules/malware/engine/index.js +552 -0
package/dist/rules/malware/engine/index.js.map +1 -0
package/dist/rules/malware/index.d.ts +205 -0
package/dist/rules/malware/index.d.ts.map +1 -0
package/dist/rules/malware/index.js +837 -0
package/dist/rules/malware/index.js.map +1 -0
package/dist/rules/malware/scoring/index.d.ts +84 -0
package/dist/rules/malware/scoring/index.d.ts.map +1 -0
package/dist/rules/malware/scoring/index.js +441 -0
package/dist/rules/malware/scoring/index.js.map +1 -0
package/dist/rules/malware/types/index.d.ts +616 -0
package/dist/rules/malware/types/index.d.ts.map +1 -0
package/dist/rules/malware/types/index.js +155 -0
package/dist/rules/malware/types/index.js.map +1 -0
package/dist/rules/malware/utils/index.d.ts +117 -0
package/dist/rules/malware/utils/index.d.ts.map +1 -0
package/dist/rules/malware/utils/index.js +514 -0
package/dist/rules/malware/utils/index.js.map +1 -0
package/dist/rules/standards.d.ts +26 -0
package/dist/rules/standards.d.ts.map +1 -0
package/dist/rules/standards.js +352 -0
package/dist/rules/standards.js.map +1 -0
package/dist/rules/vulnerabilities/constants/index.d.ts +835 -0
package/dist/rules/vulnerabilities/constants/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/constants/index.js +544 -0
package/dist/rules/vulnerabilities/constants/index.js.map +1 -0
package/dist/rules/vulnerabilities/engine/index.d.ts +145 -0
package/dist/rules/vulnerabilities/engine/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/engine/index.js +581 -0
package/dist/rules/vulnerabilities/engine/index.js.map +1 -0
package/dist/rules/vulnerabilities/index.d.ts +148 -0
package/dist/rules/vulnerabilities/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/index.js +252 -0
package/dist/rules/vulnerabilities/index.js.map +1 -0
package/dist/rules/vulnerabilities/rules/authentication.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/authentication.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/authentication.js +419 -0
package/dist/rules/vulnerabilities/rules/authentication.js.map +1 -0
package/dist/rules/vulnerabilities/rules/commandInjection.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/commandInjection.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/commandInjection.js +300 -0
package/dist/rules/vulnerabilities/rules/commandInjection.js.map +1 -0
package/dist/rules/vulnerabilities/rules/csrf.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/csrf.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/csrf.js +261 -0
package/dist/rules/vulnerabilities/rules/csrf.js.map +1 -0
package/dist/rules/vulnerabilities/rules/deserialization.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/deserialization.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/deserialization.js +336 -0
package/dist/rules/vulnerabilities/rules/deserialization.js.map +1 -0
package/dist/rules/vulnerabilities/rules/fileUpload.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/fileUpload.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/fileUpload.js +325 -0
package/dist/rules/vulnerabilities/rules/fileUpload.js.map +1 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.js +446 -0
package/dist/rules/vulnerabilities/rules/hardcodedSecrets.js.map +1 -0
package/dist/rules/vulnerabilities/rules/index.d.ts +17 -0
package/dist/rules/vulnerabilities/rules/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/index.js +47 -0
package/dist/rules/vulnerabilities/rules/index.js.map +1 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.js +351 -0
package/dist/rules/vulnerabilities/rules/pathTraversal.js.map +1 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.js +272 -0
package/dist/rules/vulnerabilities/rules/prototypePollution.js.map +1 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.js +438 -0
package/dist/rules/vulnerabilities/rules/securityMisconfiguration.js.map +1 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.d.ts +12 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.js +636 -0
package/dist/rules/vulnerabilities/rules/sqlInjection.js.map +1 -0
package/dist/rules/vulnerabilities/rules/ssrf.d.ts +8 -0
package/dist/rules/vulnerabilities/rules/ssrf.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/ssrf.js +401 -0
package/dist/rules/vulnerabilities/rules/ssrf.js.map +1 -0
package/dist/rules/vulnerabilities/rules/xss.d.ts +11 -0
package/dist/rules/vulnerabilities/rules/xss.d.ts.map +1 -0
package/dist/rules/vulnerabilities/rules/xss.js +724 -0
package/dist/rules/vulnerabilities/rules/xss.js.map +1 -0
package/dist/rules/vulnerabilities/scoring/index.d.ts +80 -0
package/dist/rules/vulnerabilities/scoring/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/scoring/index.js +414 -0
package/dist/rules/vulnerabilities/scoring/index.js.map +1 -0
package/dist/rules/vulnerabilities/types/index.d.ts +830 -0
package/dist/rules/vulnerabilities/types/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/types/index.js +164 -0
package/dist/rules/vulnerabilities/types/index.js.map +1 -0
package/dist/rules/vulnerabilities/utils/index.d.ts +206 -0
package/dist/rules/vulnerabilities/utils/index.d.ts.map +1 -0
package/dist/rules/vulnerabilities/utils/index.js +615 -0
package/dist/rules/vulnerabilities/utils/index.js.map +1 -0
package/dist/types/index.d.ts +359 -0
package/dist/types/index.d.ts.map +1 -0
package/dist/types/index.js +61 -0
package/dist/types/index.js.map +1 -0
package/dist/utils/index.d.ts +82 -0
package/dist/utils/index.d.ts.map +1 -0
package/dist/utils/index.js +326 -0
package/dist/utils/index.js.map +1 -0
package/dist/utils/logger.d.ts +40 -0
package/dist/utils/logger.d.ts.map +1 -0
package/dist/utils/logger.js +139 -0
package/dist/utils/logger.js.map +1 -0
package/docs/ARCHITECTURE.md +320 -0
package/docs/V1.2.1-IA_Performances.md +116 -0
package/docs/images/WIN_Defender.png +0 -0
package/package.json +68 -0
package/secure-scan.config.json +134 -0
package/secure-scan.sln +29 -0
package/src/ai/aiAnalyzer.ts +714 -0
package/src/ai/index.ts +5 -0
package/src/analyzers/base/baseAnalyzer.ts +66 -0
package/src/analyzers/base/index.ts +5 -0
package/src/analyzers/c-cpp/cppAnalyzer.ts +308 -0
package/src/analyzers/c-cpp/index.ts +5 -0
package/src/analyzers/core/engine/index.ts +5 -0
package/src/analyzers/core/engine/ruleEngine.ts +221 -0
package/src/analyzers/core/index.ts +8 -0
package/src/analyzers/core/scanner/fileScanner.ts +204 -0
package/src/analyzers/core/scanner/index.ts +5 -0
package/src/analyzers/core/scoring/index.ts +5 -0
package/src/analyzers/core/scoring/riskScoring.ts +198 -0
package/src/analyzers/core/securityScanner.ts +321 -0
package/src/analyzers/csharp/csharpAnalyzer.ts +328 -0
package/src/analyzers/csharp/index.ts +5 -0
package/src/analyzers/iac/iacAnalyzer.ts +318 -0
package/src/analyzers/iac/index.ts +5 -0
package/src/analyzers/index.ts +67 -0
package/src/analyzers/java/index.ts +5 -0
package/src/analyzers/java/javaAnalyzer.ts +320 -0
package/src/analyzers/javascript/PROMPT_JS_ANALYZER.md +267 -0
package/src/analyzers/javascript/astUtils.ts +789 -0
package/src/analyzers/javascript/index.ts +50 -0
package/src/analyzers/javascript/javascriptAnalyzer.ts +984 -0
package/src/analyzers/javascript/malwareDetector.ts +697 -0
package/src/analyzers/javascript/packageJsonAnalyzer.ts +626 -0
package/src/analyzers/javascript/taintAnalyzer.ts +630 -0
package/src/analyzers/php/index.ts +5 -0
package/src/analyzers/php/phpAnalyzer.ts +280 -0
package/src/analyzers/python/index.ts +5 -0
package/src/analyzers/python/pythonAnalyzer.ts +319 -0
package/src/cli/index.ts +276 -0
package/src/dependencies/aiDependencyAnalyzer.ts +496 -0
package/src/dependencies/database/cveDatabase.ts +426 -0
package/src/dependencies/database/index.ts +6 -0
package/src/dependencies/database/maliciousPackages.ts +286 -0
package/src/dependencies/dependencyAnalyzer.ts +394 -0
package/src/dependencies/detectors/index.ts +7 -0
package/src/dependencies/detectors/securityStandards.ts +200 -0
package/src/dependencies/detectors/vulnerabilityDetector.ts +343 -0
package/src/dependencies/index.ts +27 -0
package/src/dependencies/installed/index.ts +8 -0
package/src/dependencies/installed/installedScanner.ts +821 -0
package/src/dependencies/installed/malwarePatterns.ts +492 -0
package/src/dependencies/installed/types.ts +287 -0
package/src/dependencies/parsers/base/baseParser.ts +108 -0
package/src/dependencies/parsers/base/index.ts +6 -0
package/src/dependencies/parsers/cpp/cppParser.ts +245 -0
package/src/dependencies/parsers/cpp/index.ts +6 -0
package/src/dependencies/parsers/csharp/csharpParser.ts +151 -0
package/src/dependencies/parsers/csharp/index.ts +6 -0
package/src/dependencies/parsers/index.ts +56 -0
package/src/dependencies/parsers/java/index.ts +6 -0
package/src/dependencies/parsers/java/javaParser.ts +203 -0
package/src/dependencies/parsers/javascript/index.ts +6 -0
package/src/dependencies/parsers/javascript/javascriptParser.ts +362 -0
package/src/dependencies/parsers/php/index.ts +6 -0
package/src/dependencies/parsers/php/phpParser.ts +208 -0
package/src/dependencies/parsers/python/index.ts +6 -0
package/src/dependencies/parsers/python/pythonParser.ts +437 -0
package/src/dependencies/types.ts +330 -0
package/src/i18n/index.ts +1 -0
package/src/i18n/translations.ts +194 -0
package/src/index.ts +16 -0
package/src/reports/dependencyReportGenerator.ts +717 -0
package/src/reports/htmlReportGenerator.ts +781 -0
package/src/reports/index.ts +7 -0
package/src/reports/installedDepsReportGenerator.ts +899 -0
package/src/rules/index.ts +58 -0
package/src/rules/malware/INFO.md +287 -0
package/src/rules/malware/categories/backdoors.ts +174 -0
package/src/rules/malware/categories/cryptominers.ts +434 -0
package/src/rules/malware/categories/exfiltration.ts +677 -0
package/src/rules/malware/categories/keyloggers.ts +780 -0
package/src/rules/malware/categories/loaders.ts +721 -0
package/src/rules/malware/categories/network.ts +639 -0
package/src/rules/malware/categories/obfuscation.ts +788 -0
package/src/rules/malware/constants/index.ts +358 -0
package/src/rules/malware/engine/index.ts +758 -0
package/src/rules/malware/index.ts +928 -0
package/src/rules/malware/scoring/index.ts +549 -0
package/src/rules/malware/types/index.ts +752 -0
package/src/rules/malware/utils/index.ts +643 -0
package/src/rules/standards.ts +372 -0
package/src/rules/vulnerabilities/PROMPT_VULNERABILITIES.md +226 -0
package/src/rules/vulnerabilities/constants/index.ts +625 -0
package/src/rules/vulnerabilities/engine/index.ts +831 -0
package/src/rules/vulnerabilities/index.ts +312 -0
package/src/rules/vulnerabilities/rules/authentication.ts +426 -0
package/src/rules/vulnerabilities/rules/commandInjection.ts +307 -0
package/src/rules/vulnerabilities/rules/csrf.ts +268 -0
package/src/rules/vulnerabilities/rules/deserialization.ts +343 -0
package/src/rules/vulnerabilities/rules/fileUpload.ts +332 -0
package/src/rules/vulnerabilities/rules/hardcodedSecrets.ts +453 -0
package/src/rules/vulnerabilities/rules/index.ts +17 -0
package/src/rules/vulnerabilities/rules/pathTraversal.ts +358 -0
package/src/rules/vulnerabilities/rules/prototypePollution.ts +279 -0
package/src/rules/vulnerabilities/rules/securityMisconfiguration.ts +445 -0
package/src/rules/vulnerabilities/rules/sqlInjection.ts +669 -0
package/src/rules/vulnerabilities/rules/ssrf.ts +408 -0
package/src/rules/vulnerabilities/rules/xss.ts +753 -0
package/src/rules/vulnerabilities/scoring/index.ts +543 -0
package/src/rules/vulnerabilities/types/index.ts +1004 -0
package/src/rules/vulnerabilities/utils/index.ts +709 -0
package/src/types/index.ts +391 -0
package/src/utils/index.ts +306 -0
package/src/utils/logger.ts +150 -0
package/test-installed-scanner.ts +136 -0
package/tsconfig.json +30 -0

package/src/dependencies/installed/types.ts ADDED Viewed

@@ -0,0 +1,287 @@
+/**
+ * Types for Installed Dependencies Analysis
+ * Scans actual installed packages (node_modules, vendor, venv, etc.)
+ */
+import { PackageEcosystem, MalwareIndicator, Dependency } from '../types';
+import { Severity } from '../../types';
+/**
+ * Simplified security standard reference for malware patterns
+ */
+export interface MalwareSecurityStandard {
+  /** Standard name */
+  standard: 'CWE' | 'MITRE' | 'OWASP' | 'SANS';
+  /** Standard ID */
+  id: string;
+  /** Standard description */
+  description: string;
+}
+/**
+ * Installed package information
+ */
+export interface InstalledPackage {
+  /** Package name */
+  name: string;
+  /** Installed version */
+  version: string;
+  /** Package ecosystem */
+  ecosystem: PackageEcosystem;
+  /** Installation path */
+  installPath: string;
+  /** Total size in bytes */
+  sizeBytes: number;
+  /** Number of files */
+  fileCount: number;
+  /** Has post-install scripts */
+  hasPostInstallScripts: boolean;
+  /** Post-install script content (if any) */
+  postInstallScripts?: PostInstallScript[];
+  /** Package metadata */
+  metadata?: InstalledPackageMetadata;
+  /** Integrity check result */
+  integrityStatus?: IntegrityStatus;
+}
+/**
+ * Package metadata from installed package
+ */
+export interface InstalledPackageMetadata {
+  /** Author */
+  author?: string;
+  /** License */
+  license?: string;
+  /** Homepage */
+  homepage?: string;
+  /** Repository URL */
+  repository?: string;
+  /** Description */
+  description?: string;
+  /** Install date (if available) */
+  installDate?: Date;
+  /** Main entry point */
+  main?: string;
+  /** Binary commands */
+  binaries?: string[];
+}
+/**
+ * Post-install script information
+ */
+export interface PostInstallScript {
+  /** Script type */
+  type: 'preinstall' | 'install' | 'postinstall' | 'preuninstall' | 'postuninstall';
+  /** Script command */
+  command: string;
+  /** Script file path (if file) */
+  scriptPath?: string;
+  /** Script content (if readable) */
+  content?: string;
+  /** Risk level */
+  riskLevel: Severity;
+  /** Risk indicators found */
+  riskIndicators: string[];
+}
+/**
+ * Integrity verification status
+ */
+export interface IntegrityStatus {
+  /** Overall status */
+  status: 'verified' | 'mismatch' | 'unknown' | 'missing_lockfile';
+  /** Expected version from lock file */
+  expectedVersion?: string;
+  /** Installed version */
+  installedVersion: string;
+  /** Expected integrity hash */
+  expectedHash?: string;
+  /** Actual integrity hash */
+  actualHash?: string;
+  /** Mismatch details */
+  mismatchDetails?: string;
+}
+/**
+ * Malware scan result for installed package
+ */
+export interface InstalledMalwareFinding {
+  /** Unique finding ID */
+  id: string;
+  /** Affected package */
+  package: InstalledPackage;
+  /** File where malware was detected */
+  filePath: string;
+  /** Line number (if applicable) */
+  lineNumber?: number;
+  /** Column number (if applicable) */
+  columnNumber?: number;
+  /** Malware indicators detected */
+  indicators: MalwareIndicator[];
+  /** Severity level */
+  severity: Severity;
+  /** Finding title */
+  title: string;
+  /** Detailed description */
+  description: string;
+  /** Matched pattern/signature */
+  matchedPattern: string;
+  /** Code snippet with malware */
+  codeSnippet?: string;
+  /** Security standards */
+  standards: MalwareSecurityStandard[];
+  /** Recommendation */
+  recommendation: string;
+  /** Confidence level (0-100) */
+  confidence: number;
+  /** Detection timestamp */
+  timestamp: Date;
+}
+/**
+ * Malware detection pattern
+ */
+export interface MalwarePattern {
+  /** Pattern ID */
+  id: string;
+  /** Pattern name */
+  name: string;
+  /** Pattern description */
+  description: string;
+  /** Malware indicator type */
+  indicator: MalwareIndicator;
+  /** Severity */
+  severity: Severity;
+  /** Regex patterns */
+  patterns: RegExp[];
+  /** File extensions to scan */
+  fileExtensions: string[];
+  /** Keywords that trigger deeper analysis */
+  keywords?: string[];
+  /** Confidence level (0-100) */
+  confidence: number;
+  /** Related security standards */
+  standards: MalwareSecurityStandard[];
+}
+/**
+ * Installed dependencies scan result
+ */
+export interface InstalledDependenciesScanResult {
+  /** Scanned package folders */
+  scannedFolders: ScannedFolder[];
+  /** All installed packages found */
+  installedPackages: InstalledPackage[];
+  /** Malware findings */
+  malwareFindings: InstalledMalwareFinding[];
+  /** Integrity issues */
+  integrityIssues: IntegrityIssue[];
+  /** Suspicious post-install scripts */
+  suspiciousScripts: SuspiciousScriptFinding[];
+  /** Statistics */
+  stats: InstalledScanStats;
+  /** Timestamp */
+  timestamp: Date;
+}
+/**
+ * Scanned folder information
+ */
+export interface ScannedFolder {
+  /** Folder path */
+  path: string;
+  /** Folder type */
+  type: 'node_modules' | 'vendor' | 'venv' | 'site-packages' | 'packages' | 'other';
+  /** Ecosystem */
+  ecosystem: PackageEcosystem;
+  /** Number of packages */
+  packageCount: number;
+  /** Total size */
+  totalSizeBytes: number;
+  /** Files scanned */
+  filesScanned: number;
+}
+/**
+ * Integrity issue
+ */
+export interface IntegrityIssue {
+  /** Package name */
+  packageName: string;
+  /** Issue type */
+  issueType: 'version_mismatch' | 'hash_mismatch' | 'unexpected_package' | 'missing_package' | 'tampered';
+  /** Severity */
+  severity: Severity;
+  /** Description */
+  description: string;
+  /** Expected value */
+  expected?: string;
+  /** Actual value */
+  actual?: string;
+}
+/**
+ * Suspicious script finding
+ */
+export interface SuspiciousScriptFinding {
+  /** Package name */
+  packageName: string;
+  /** Script info */
+  script: PostInstallScript;
+  /** Severity */
+  severity: Severity;
+  /** Description */
+  description: string;
+  /** Risk indicators */
+  riskIndicators: string[];
+}
+/**
+ * Statistics for installed dependencies scan
+ */
+export interface InstalledScanStats {
+  /** Total folders scanned */
+  totalFoldersScanned: number;
+  /** Total packages found */
+  totalPackagesFound: number;
+  /** Total files scanned */
+  totalFilesScanned: number;
+  /** Total bytes scanned */
+  totalBytesScanned: number;
+  /** Malware findings count */
+  malwareFindingsCount: number;
+  /** Integrity issues count */
+  integrityIssuesCount: number;
+  /** Suspicious scripts count */
+  suspiciousScriptsCount: number;
+  /** Packages by ecosystem */
+  packagesByEcosystem: Record<PackageEcosystem, number>;
+  /** Findings by severity */
+  findingsBySeverity: Record<Severity, number>;
+  /** Scan duration in ms */
+  duration: number;
+}
+/**
+ * Installed dependencies scanner configuration
+ */
+export interface InstalledScanConfig {
+  /** Project root path */
+  projectPath: string;
+  /** Folders to scan */
+  foldersToScan?: string[];
+  /** Maximum file size to scan (bytes) */
+  maxFileSizeBytes?: number;
+  /** File extensions to scan */
+  fileExtensions?: string[];
+  /** Enable integrity verification */
+  verifyIntegrity?: boolean;
+  /** Scan post-install scripts */
+  scanPostInstallScripts?: boolean;
+  /** Maximum depth in node_modules */
+  maxDepth?: number;
+  /** Verbose logging */
+  verbose?: boolean;
+  /** Parallel scan threads */
+  parallelScans?: number;
+}

package/src/dependencies/parsers/base/baseParser.ts ADDED Viewed

@@ -0,0 +1,108 @@
+/**
+ * Base Dependency Parser
+ * Abstract base class for ecosystem-specific parsers
+ */
+import {
+  DependencyParser,
+  DependencyManifest,
+  ManifestFileType,
+  PackageEcosystem,
+  Dependency
+} from '../../types';
+import { logger } from '../../../utils/logger';
+/**
+ * Base Parser Class
+ * Provides common functionality for all dependency parsers
+ */
+export abstract class BaseDependencyParser implements DependencyParser {
+  abstract name: string;
+  abstract supportedFiles: ManifestFileType[];
+  abstract ecosystem: PackageEcosystem;
+  /**
+   * Check if parser supports a file
+   */
+  supports(fileName: string): boolean {
+    const baseName = fileName.split(/[/\\]/).pop() || '';
+    // Special handling for .csproj files
+    if (baseName.endsWith('.csproj')) {
+      return this.supportedFiles.includes('csproj');
+    }
+    return this.supportedFiles.some(ft => baseName === ft || baseName.endsWith(ft));
+  }
+  /**
+   * Parse manifest file - must be implemented by subclasses
+   */
+  abstract parse(filePath: string, content: string): Promise<DependencyManifest>;
+  /**
+   * Helper to create a dependency object
+   */
+  protected createDependency(
+    name: string,
+    version: string,
+    sourceFile: string,
+    options: Partial<Dependency> = {}
+  ): Dependency {
+    return {
+      name,
+      version,
+      ecosystem: this.ecosystem,
+      dependencyType: 'direct',
+      depth: 0,
+      sourceFile,
+      ...options
+    };
+  }
+  /**
+   * Helper to normalize version string
+   */
+  protected normalizeVersion(version: string): string {
+    if (!version) return '*';
+    // Remove common prefixes
+    version = version.replace(/^[v=~^]/, '');
+    // Handle special cases
+    if (version === 'latest' || version === '*') {
+      return '*';
+    }
+    return version.trim();
+  }
+  /**
+   * Helper to determine if file is a lock file
+   */
+  protected isLockFile(fileName: string): boolean {
+    const lockPatterns = [
+      'package-lock.json',
+      'yarn.lock',
+      'Pipfile.lock',
+      'composer.lock'
+    ];
+    return lockPatterns.some(p => fileName.endsWith(p));
+  }
+  /**
+   * Log parsing info
+   */
+  protected logParsing(filePath: string): void {
+    logger.debug(`[${this.name}] Parsing: ${filePath}`);
+  }
+  /**
+   * Log parsing error
+   */
+  protected logError(filePath: string, error: string): void {
+    logger.debug(`[${this.name}] Error parsing ${filePath}: ${error}`);
+  }
+}
+export default BaseDependencyParser;

package/src/dependencies/parsers/base/index.ts ADDED Viewed

@@ -0,0 +1,6 @@
+/**
+ * Base Parser Module Exports
+ */
+export * from './baseParser';
+export { default as BaseDependencyParser } from './baseParser';

package/src/dependencies/parsers/cpp/cppParser.ts ADDED Viewed

@@ -0,0 +1,245 @@
+/**
+ * C/C++ Dependency Parser
+ * Parses vcpkg.json, conanfile.txt, and CMakeLists.txt
+ */
+import { BaseDependencyParser } from '../base';
+import {
+  DependencyManifest,
+  ManifestFileType,
+  PackageEcosystem,
+  Dependency
+} from '../../types';
+/**
+ * vcpkg.json structure
+ */
+interface VcpkgJson {
+  name?: string;
+  version?: string;
+  dependencies?: (string | VcpkgDependency)[];
+  'default-features'?: boolean;
+  features?: Record<string, VcpkgFeature>;
+}
+interface VcpkgDependency {
+  name: string;
+  version?: string;
+  'version>='?: string;
+  features?: string[];
+  platform?: string;
+}
+interface VcpkgFeature {
+  description?: string;
+  dependencies?: (string | VcpkgDependency)[];
+}
+/**
+ * C/C++ Dependency Parser
+ */
+export class CppDependencyParser extends BaseDependencyParser {
+  name = 'C/C++ Dependency Parser';
+  supportedFiles: ManifestFileType[] = ['vcpkg.json', 'conanfile.txt', 'CMakeLists.txt'];
+  ecosystem: PackageEcosystem = 'vcpkg';
+  /**
+   * Parse manifest file
+   */
+  async parse(filePath: string, content: string): Promise<DependencyManifest> {
+    this.logParsing(filePath);
+    const fileName = filePath.split(/[/\\]/).pop() || '';
+    const dependencies: Dependency[] = [];
+    const parseErrors: string[] = [];
+    let ecosystem: PackageEcosystem = 'vcpkg';
+    try {
+      if (fileName === 'vcpkg.json') {
+        dependencies.push(...this.parseVcpkgJson(content, filePath, parseErrors));
+        ecosystem = 'vcpkg';
+      } else if (fileName === 'conanfile.txt') {
+        dependencies.push(...this.parseConanfile(content, filePath, parseErrors));
+        ecosystem = 'conan';
+      } else if (fileName === 'CMakeLists.txt') {
+        dependencies.push(...this.parseCMakeLists(content, filePath, parseErrors));
+        ecosystem = 'cmake';
+      }
+    } catch (error) {
+      const errorMsg = error instanceof Error ? error.message : String(error);
+      parseErrors.push(`Failed to parse ${fileName}: ${errorMsg}`);
+      this.logError(filePath, errorMsg);
+    }
+    return {
+      filePath,
+      fileType: fileName as ManifestFileType,
+      ecosystem,
+      dependencies,
+      parseErrors: parseErrors.length > 0 ? parseErrors : undefined,
+      isLockFile: false
+    };
+  }
+  /**
+   * Check if parser supports file
+   */
+  supports(fileName: string): boolean {
+    const baseName = fileName.split(/[/\\]/).pop() || '';
+    return this.supportedFiles.some(ft => baseName === ft);
+  }
+  /**
+   * Parse vcpkg.json
+   */
+  private parseVcpkgJson(content: string, filePath: string, errors: string[]): Dependency[] {
+    const dependencies: Dependency[] = [];
+    let vcpkg: VcpkgJson;
+    try {
+      vcpkg = JSON.parse(content);
+    } catch (e) {
+      errors.push('Invalid JSON in vcpkg.json');
+      return dependencies;
+    }
+    if (vcpkg.dependencies) {
+      for (const dep of vcpkg.dependencies) {
+        if (typeof dep === 'string') {
+          dependencies.push(this.createDependency(dep, '*', filePath, {
+            dependencyType: 'direct',
+            ecosystem: 'vcpkg'
+          }));
+        } else {
+          const version = dep.version || dep['version>='] || '*';
+          dependencies.push(this.createDependency(dep.name, version, filePath, {
+            dependencyType: 'direct',
+            ecosystem: 'vcpkg'
+          }));
+        }
+      }
+    }
+    // Parse feature dependencies
+    if (vcpkg.features) {
+      for (const [featureName, feature] of Object.entries(vcpkg.features)) {
+        if (feature.dependencies) {
+          for (const dep of feature.dependencies) {
+            const name = typeof dep === 'string' ? dep : dep.name;
+            const version = typeof dep === 'string' ? '*' : (dep.version || dep['version>='] || '*');
+            dependencies.push(this.createDependency(name, version, filePath, {
+              dependencyType: 'optional',
+              ecosystem: 'vcpkg'
+            }));
+          }
+        }
+      }
+    }
+    return dependencies;
+  }
+  /**
+   * Parse conanfile.txt
+   */
+  private parseConanfile(content: string, filePath: string, errors: string[]): Dependency[] {
+    const dependencies: Dependency[] = [];
+    const lines = content.split('\n');
+    let inRequires = false;
+    let inBuildRequires = false;
+    for (const line of lines) {
+      const trimmed = line.trim();
+      // Track sections
+      if (trimmed === '[requires]') {
+        inRequires = true;
+        inBuildRequires = false;
+        continue;
+      }
+      if (trimmed === '[build_requires]' || trimmed === '[tool_requires]') {
+        inRequires = false;
+        inBuildRequires = true;
+        continue;
+      }
+      if (trimmed.startsWith('[')) {
+        inRequires = false;
+        inBuildRequires = false;
+        continue;
+      }
+      // Skip comments and empty lines
+      if (!trimmed || trimmed.startsWith('#')) continue;
+      // Parse requirement line (format: package/version)
+      if (inRequires || inBuildRequires) {
+        const match = trimmed.match(/^([^/\s@]+)(?:\/([^@\s]+))?/);
+        if (match) {
+          const name = match[1];
+          const version = match[2] || '*';
+          dependencies.push(this.createDependency(name, version, filePath, {
+            dependencyType: inBuildRequires ? 'dev' : 'direct',
+            ecosystem: 'conan'
+          }));
+        }
+      }
+    }
+    return dependencies;
+  }
+  /**
+   * Parse CMakeLists.txt
+   */
+  private parseCMakeLists(content: string, filePath: string, errors: string[]): Dependency[] {
+    const dependencies: Dependency[] = [];
+    // find_package(Package VERSION x.x REQUIRED)
+    const findPackageRegex = /find_package\s*\(\s*(\w+)(?:\s+(\d+(?:\.\d+)*))?[^)]*\)/gi;
+    let match;
+    while ((match = findPackageRegex.exec(content)) !== null) {
+      const name = match[1];
+      const version = match[2] || '*';
+      // Skip CMake built-in packages
+      const builtins = ['CMake', 'CTest', 'GTest'];
+      if (builtins.includes(name)) continue;
+      dependencies.push(this.createDependency(name, version, filePath, {
+        dependencyType: 'direct',
+        ecosystem: 'cmake'
+      }));
+    }
+    // FetchContent_Declare(name GIT_REPOSITORY url GIT_TAG tag)
+    const fetchContentRegex = /FetchContent_Declare\s*\(\s*(\w+)[^)]*GIT_TAG\s+([^\s)]+)/gi;
+    while ((match = fetchContentRegex.exec(content)) !== null) {
+      const name = match[1];
+      const version = match[2] || '*';
+      dependencies.push(this.createDependency(name, version, filePath, {
+        dependencyType: 'direct',
+        ecosystem: 'cmake'
+      }));
+    }
+    // CPMAddPackage
+    const cpmRegex = /CPMAddPackage\s*\([^)]*NAME\s+(\w+)[^)]*VERSION\s+([^\s)]+)/gi;
+    while ((match = cpmRegex.exec(content)) !== null) {
+      const name = match[1];
+      const version = match[2] || '*';
+      dependencies.push(this.createDependency(name, version, filePath, {
+        dependencyType: 'direct',
+        ecosystem: 'cmake'
+      }));
+    }
+    return dependencies;
+  }
+}
+export default CppDependencyParser;

package/src/dependencies/parsers/cpp/index.ts ADDED Viewed

@@ -0,0 +1,6 @@
+/**
+ * C/C++ Parser Module Exports
+ */
+export * from './cppParser';
+export { default as CppDependencyParser } from './cppParser';