sentinelflow 0.2.0

package/dist/commands/init.d.ts

@@ -0,0 +1,8 @@
+/**
+ * sentinelflow init [path]
+ *
+ * Initializes SentinelFlow governance in a project by creating
+ * the .sentinelflow/ directory and a default manifest.
+ */
+export declare function initCommand(targetPath: string): Promise<void>;
+//# sourceMappingURL=init.d.ts.map

package/dist/commands/init.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"init.d.ts","sourceRoot":"","sources":["../../src/commands/init.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAkDH,wBAAsB,WAAW,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC,CAoDnE"}

package/dist/commands/init.js

@@ -0,0 +1,130 @@
+"use strict";
+/**
+ * sentinelflow init [path]
+ *
+ * Initializes SentinelFlow governance in a project by creating
+ * the .sentinelflow/ directory and a default manifest.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.initCommand = initCommand;
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+const DEFAULT_MANIFEST = `# SentinelFlow Configuration
+# https://github.com/omswaroop/sentinelflow
+
+# Governance settings for this project
+governance:
+  # Who is responsible for AI agents in this project?
+  default_owner: ""
+  default_team: ""
+
+  # Minimum scan requirements
+  require_scan_before_commit: false
+  min_severity_to_block: "critical"
+
+  # Compliance standards to enforce
+  compliance:
+    # - eu-ai-act
+    # - soc2
+    # - hipaa
+    # - iso-42001
+
+# Scanner settings
+scanner:
+  # Rules to skip (by ID)
+  skip_rules: []
+
+  # Additional paths to scan for agent configs
+  include_paths: []
+
+  # Paths to exclude from scanning
+  exclude_paths:
+    - node_modules
+    - .git
+    - dist
+    - build
+
+# Registry settings
+registry:
+  # Where to store the registry (local = SQLite file)
+  backend: local
+
+  # SentinelFlow Cloud URL (for team sync, Phase 2+)
+  # cloud_url: https://api.sentinelflow.ai
+  # cloud_token: $SENTINELFLOW_TOKEN
+`;
+async function initCommand(targetPath) {
+    const rootDir = path.resolve(targetPath);
+    const sfDir = path.join(rootDir, ".sentinelflow");
+    if (fs.existsSync(sfDir)) {
+        console.log("\n  SentinelFlow already initialized in this project.");
+        console.log(`  Config: ${sfDir}/config.yaml`);
+        console.log("  Run 'sentinelflow scan' to scan for agents.\n");
+        return;
+    }
+    // Create .sentinelflow/ directory
+    fs.mkdirSync(sfDir, { recursive: true });
+    fs.mkdirSync(path.join(sfDir, "reports"), { recursive: true });
+    // Write default config
+    fs.writeFileSync(path.join(sfDir, "config.yaml"), DEFAULT_MANIFEST, "utf-8");
+    // Add to .gitignore if it exists
+    const gitignorePath = path.join(rootDir, ".gitignore");
+    if (fs.existsSync(gitignorePath)) {
+        const gitignore = fs.readFileSync(gitignorePath, "utf-8");
+        if (!gitignore.includes(".sentinelflow/registry")) {
+            fs.appendFileSync(gitignorePath, "\n# SentinelFlow local registry (config is committed, data is not)\n" +
+                ".sentinelflow/agents.json\n" +
+                ".sentinelflow/reports.json\n" +
+                ".sentinelflow/events.json\n" +
+                ".sentinelflow/registry.db\n");
+        }
+    }
+    console.log(`
+  \x1b[32m✓\x1b[0m SentinelFlow initialized!
+
+  Created:
+    ${sfDir}/config.yaml     — Governance configuration
+    ${sfDir}/reports/         — Scan report storage
+
+  Next steps:
+    1. Edit .sentinelflow/config.yaml to set your team info
+    2. Run \x1b[1msentinelflow scan\x1b[0m to discover agents
+    3. Review findings and register agents
+
+  Learn more: https://github.com/omswaroop/sentinelflow
+`);
+}
+//# sourceMappingURL=init.js.map

package/dist/commands/init.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"init.js","sourceRoot":"","sources":["../../src/commands/init.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAkDH,kCAoDC;AApGD,uCAAyB;AACzB,2CAA6B;AAE7B,MAAM,gBAAgB,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA2CxB,CAAC;AAEK,KAAK,UAAU,WAAW,CAAC,UAAkB;IAClD,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IACzC,MAAM,KAAK,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,eAAe,CAAC,CAAC;IAElD,IAAI,EAAE,CAAC,UAAU,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,CAAC,GAAG,CAAC,uDAAuD,CAAC,CAAC;QACrE,OAAO,CAAC,GAAG,CAAC,aAAa,KAAK,cAAc,CAAC,CAAC;QAC9C,OAAO,CAAC,GAAG,CAAC,iDAAiD,CAAC,CAAC;QAC/D,OAAO;IACT,CAAC;IAED,kCAAkC;IAClC,EAAE,CAAC,SAAS,CAAC,KAAK,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACzC,EAAE,CAAC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,SAAS,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAE/D,uBAAuB;IACvB,EAAE,CAAC,aAAa,CACd,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,aAAa,CAAC,EAC/B,gBAAgB,EAChB,OAAO,CACR,CAAC;IAEF,iCAAiC;IACjC,MAAM,aAAa,GAAG,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,YAAY,CAAC,CAAC;IACvD,IAAI,EAAE,CAAC,UAAU,CAAC,aAAa,CAAC,EAAE,CAAC;QACjC,MAAM,SAAS,GAAG,EAAE,CAAC,YAAY,CAAC,aAAa,EAAE,OAAO,CAAC,CAAC;QAC1D,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,wBAAwB,CAAC,EAAE,CAAC;YAClD,EAAE,CAAC,cAAc,CACf,aAAa,EACb,sEAAsE;gBACpE,6BAA6B;gBAC7B,8BAA8B;gBAC9B,6BAA6B;gBAC7B,6BAA6B,CAChC,CAAC;QACJ,CAAC;IACH,CAAC;IAED,OAAO,CAAC,GAAG,CAAC;;;;MAIR,KAAK;MACL,KAAK;;;;;;;;CAQV,CAAC,CAAC;AACH,CAAC"}

package/dist/commands/scan.d.ts

@@ -0,0 +1,24 @@
+/**
+ * sentinelflow scan [path]
+ *
+ * The main scanning command. Detects frameworks, parses agents,
+ * runs governance rules, applies suppressions, and reports findings.
+ *
+ * Phase 1.5 additions:
+ * - --preset flag (strict/standard/monitor) for progressive adoption
+ * - --show-suppressed flag for audit review of hidden findings
+ * - .sentinelflow-policy.yaml loading for project-level suppressions
+ * - Coverage footer showing what static analysis can and cannot see
+ * - Preset-aware exit codes (monitor never fails CI)
+ */
+interface ScanCommandOptions {
+    format: string;
+    minSeverity?: string;
+    rules?: string;
+    registry?: boolean;
+    preset?: string;
+    showSuppressed?: boolean;
+}
+export declare function scanCommand(targetPath: string, options: ScanCommandOptions): Promise<void>;
+export {};
+//# sourceMappingURL=scan.d.ts.map

package/dist/commands/scan.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"scan.d.ts","sourceRoot":"","sources":["../../src/commands/scan.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAwBH,UAAU,kBAAkB;IAC1B,MAAM,EAAE,MAAM,CAAC;IACf,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,cAAc,CAAC,EAAE,OAAO,CAAC;CAC1B;AAED,wBAAsB,WAAW,CAC/B,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE,kBAAkB,GAC1B,OAAO,CAAC,IAAI,CAAC,CA0Mf"}

package/dist/commands/scan.js

@@ -0,0 +1,232 @@
+"use strict";
+/**
+ * sentinelflow scan [path]
+ *
+ * The main scanning command. Detects frameworks, parses agents,
+ * runs governance rules, applies suppressions, and reports findings.
+ *
+ * Phase 1.5 additions:
+ * - --preset flag (strict/standard/monitor) for progressive adoption
+ * - --show-suppressed flag for audit review of hidden findings
+ * - .sentinelflow-policy.yaml loading for project-level suppressions
+ * - Coverage footer showing what static analysis can and cannot see
+ * - Preset-aware exit codes (monitor never fails CI)
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.scanCommand = scanCommand;
+const fs = __importStar(require("fs"));
+const path = __importStar(require("path"));
+const scanner_1 = require("@sentinelflow/scanner");
+const VALID_FORMATS = ["terminal", "json", "md", "sarif"];
+const VALID_SEVERITIES = ["critical", "high", "medium", "low", "info"];
+const VALID_PRESETS = ["strict", "standard", "monitor"];
+async function scanCommand(targetPath, options) {
+    const rootDir = path.resolve(targetPath);
+    // ── Input Validation ──────────────────────────────────────
+    if (!fs.existsSync(rootDir)) {
+        console.error(`\n  \x1b[31mError:\x1b[0m Directory not found: ${rootDir}\n`);
+        process.exit(2);
+    }
+    if (!fs.statSync(rootDir).isDirectory()) {
+        console.error(`\n  \x1b[31mError:\x1b[0m Not a directory: ${rootDir}\n`);
+        process.exit(2);
+    }
+    const format = options.format;
+    if (!VALID_FORMATS.includes(format)) {
+        console.error(`\n  \x1b[31mError:\x1b[0m Invalid format "${options.format}". ` +
+            `Valid formats: ${VALID_FORMATS.join(", ")}\n`);
+        process.exit(2);
+    }
+    if (options.minSeverity && !VALID_SEVERITIES.includes(options.minSeverity)) {
+        console.error(`\n  \x1b[31mError:\x1b[0m Invalid severity "${options.minSeverity}". ` +
+            `Valid values: ${VALID_SEVERITIES.join(", ")}\n`);
+        process.exit(2);
+    }
+    const preset = (options.preset ?? "standard");
+    if (!VALID_PRESETS.includes(preset)) {
+        console.error(`\n  \x1b[31mError:\x1b[0m Invalid preset "${options.preset}". ` +
+            `Valid presets: ${VALID_PRESETS.join(", ")}\n`);
+        process.exit(2);
+    }
+    // ── Run Scan ──────────────────────────────────────────────
+    try {
+        const result = await (0, scanner_1.scan)({
+            rootDir,
+            minSeverity: options.minSeverity,
+            rules: options.rules?.split(",").map((r) => r.trim()),
+            updateRegistry: options.registry,
+        });
+        // ── Handle Empty Scans ────────────────────────────────
+        if (result.frameworks.length === 0 && format === "terminal") {
+            console.log(`
+  \x1b[36m\x1b[1mSentinelFlow v0.2.0\x1b[0m — Agent Governance Scanner
+
+  Scanning ${rootDir}...
+
+  \x1b[33mNo agent frameworks detected.\x1b[0m
+
+  SentinelFlow scans for agents in:
+    • Claude Code  (.claude/ directory, CLAUDE.md, AGENTS.md)
+    • Cursor       (.cursor/ directory, .cursorrules)
+    • Codex        (.codex/ directory, .agents/)
+    • LangChain    (pyproject.toml with langchain dependency)
+    • CrewAI       (crew.yaml, agents.yaml)
+    • Kiro         (.kiro/ directory)
+
+  Run \x1b[1msentinelflow init\x1b[0m to set up governance for this project.
+`);
+            return;
+        }
+        // ── Apply Suppressions ────────────────────────────────
+        // Load policy file if it exists
+        const { policy, warnings: policyWarnings } = (0, scanner_1.loadPolicyFile)(rootDir);
+        // Determine effective preset (CLI flag overrides policy file)
+        const effectivePreset = options.preset
+            ? preset
+            : policy?.preset ?? "standard";
+        // Apply suppressions from inline comments + policy file
+        // Pass empty config files array — inline suppression parsing happens
+        // inside applySuppressions via the policy file loader. Config file content
+        // isn't available from ScanResult, but policy-file and preset suppressions
+        // still work fully.
+        const suppressionResult = (0, scanner_1.applySuppressions)(result.report.findings, [], rootDir);
+        // Replace findings with active-only (unless --show-suppressed)
+        if (!options.showSuppressed) {
+            result.report.findings = suppressionResult.active;
+            // Recalculate summary
+            result.report.summary = {
+                critical: result.report.findings.filter((f) => f.severity === "critical").length,
+                high: result.report.findings.filter((f) => f.severity === "high").length,
+                medium: result.report.findings.filter((f) => f.severity === "medium").length,
+                low: result.report.findings.filter((f) => f.severity === "low").length,
+                info: result.report.findings.filter((f) => f.severity === "info").length,
+                total: result.report.findings.length,
+            };
+        }
+        // ── Output in Requested Format ────────────────────────
+        switch (format) {
+            case "json":
+                console.log((0, scanner_1.formatJSON)(result));
+                break;
+            case "md":
+                console.log((0, scanner_1.formatMarkdown)(result));
+                break;
+            case "sarif":
+                console.log((0, scanner_1.formatSARIF)(result));
+                break;
+            case "terminal":
+            default:
+                console.log((0, scanner_1.formatTerminal)(result));
+                break;
+        }
+        // ── Suppression Summary (terminal only) ───────────────
+        if (format === "terminal" && suppressionResult.suppressed.length > 0) {
+            if (options.showSuppressed) {
+                console.log(`  \x1b[33mSuppressed findings (${suppressionResult.suppressed.length}):\x1b[0m`);
+                for (const { finding, suppression } of suppressionResult.suppressed) {
+                    console.log(`    \x1b[2m${finding.rule_id}\x1b[0m ${finding.title}`);
+                    console.log(`      Reason: ${suppression.reason}`);
+                    if (suppression.expires)
+                        console.log(`      Expires: ${suppression.expires}`);
+                    if (suppression.ticket)
+                        console.log(`      Ticket: ${suppression.ticket}`);
+                }
+                console.log("");
+            }
+            else {
+                console.log(`  \x1b[2m${suppressionResult.suppressed.length} finding(s) suppressed. ` +
+                    `Use --show-suppressed to review.\x1b[0m`);
+                console.log("");
+            }
+        }
+        // ── Expired Suppressions Warning ──────────────────────
+        if (format === "terminal" && suppressionResult.expired_suppressions.length > 0) {
+            console.log(`  \x1b[33m⚠ ${suppressionResult.expired_suppressions.length} expired suppression(s):\x1b[0m`);
+            for (const exp of suppressionResult.expired_suppressions) {
+                console.log(`    ${exp.rule_id} — expired ${exp.expires} — ${exp.reason}`);
+            }
+            console.log("  \x1b[2mRemove expired entries from .sentinelflow-policy.yaml\x1b[0m");
+            console.log("");
+        }
+        // ── Coverage Footer ───────────────────────────────────
+        if (format === "terminal") {
+            const agentCount = result.agents.length;
+            const configCount = result.report.findings.length;
+            console.log(`  \x1b[2m┌─ Coverage ──────────────────────────────────────────┐\x1b[0m`);
+            console.log(`  \x1b[2m│ Static analysis of ${agentCount} agent definition(s).          │\x1b[0m`);
+            console.log(`  \x1b[2m│                                                    │\x1b[0m`);
+            console.log(`  \x1b[2m│ Not analyzed (requires runtime context):            │\x1b[0m`);
+            console.log(`  \x1b[2m│  · IAM roles and cloud permissions                  │\x1b[0m`);
+            console.log(`  \x1b[2m│  · Secrets injected via Vault / env variables       │\x1b[0m`);
+            console.log(`  \x1b[2m│  · Network policies and service mesh config         │\x1b[0m`);
+            console.log(`  \x1b[2m│  · Feature flags gating agent capabilities          │\x1b[0m`);
+            console.log(`  \x1b[2m│                                                    │\x1b[0m`);
+            console.log(`  \x1b[2m│ Preset: ${effectivePreset.padEnd(10)} Docs: sentinelflow.dev │\x1b[0m`);
+            console.log(`  \x1b[2m└────────────────────────────────────────────────────┘\x1b[0m`);
+            console.log("");
+        }
+        // Print warnings
+        const allWarnings = [...result.warnings, ...policyWarnings];
+        if (allWarnings.length > 0 && format === "terminal") {
+            console.log("  \x1b[33mWarnings:\x1b[0m");
+            for (const warning of allWarnings) {
+                console.log(`    \x1b[33m⚠\x1b[0m ${warning}`);
+            }
+            console.log("");
+        }
+        // ── Exit Code (preset-aware) ──────────────────────────
+        const presetConfig = scanner_1.PRESETS[effectivePreset];
+        const { summary } = result.report;
+        const shouldFail = presetConfig.exitOnSeverities.some((sev) => {
+            switch (sev) {
+                case "critical": return summary.critical > 0;
+                case "high": return summary.high > 0;
+                case "medium": return summary.medium > 0;
+                case "low": return summary.low > 0;
+                default: return false;
+            }
+        });
+        if (shouldFail) {
+            process.exit(1);
+        }
+    }
+    catch (error) {
+        const message = error instanceof Error ? error.message : String(error);
+        console.error(`\n  \x1b[31mError:\x1b[0m ${message}\n`);
+        process.exit(2);
+    }
+}
+//# sourceMappingURL=scan.js.map

package/dist/commands/scan.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scan.js","sourceRoot":"","sources":["../../src/commands/scan.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;GAYG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiCH,kCA6MC;AA5OD,uCAAyB;AACzB,2CAA6B;AAC7B,mDAW+B;AAE/B,MAAM,aAAa,GAAG,CAAC,UAAU,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,CAAU,CAAC;AACnE,MAAM,gBAAgB,GAAG,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,MAAM,CAAU,CAAC;AAChF,MAAM,aAAa,GAAG,CAAC,QAAQ,EAAE,UAAU,EAAE,SAAS,CAAU,CAAC;AAc1D,KAAK,UAAU,WAAW,CAC/B,UAAkB,EAClB,OAA2B;IAE3B,MAAM,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC;IAEzC,6DAA6D;IAC7D,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QAC5B,OAAO,CAAC,KAAK,CAAC,kDAAkD,OAAO,IAAI,CAAC,CAAC;QAC7E,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC;QACxC,OAAO,CAAC,KAAK,CAAC,8CAA8C,OAAO,IAAI,CAAC,CAAC;QACzE,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,MAAM,GAAG,OAAO,CAAC,MAAsB,CAAC;IAC9C,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QACpC,OAAO,CAAC,KAAK,CACX,6CAA6C,OAAO,CAAC,MAAM,KAAK;YAC9D,kBAAkB,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CACjD,CAAC;QACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,IAAI,OAAO,CAAC,WAAW,IAAI,CAAC,gBAAgB,CAAC,QAAQ,CAAC,OAAO,CAAC,WAAuB,CAAC,EAAE,CAAC;QACvF,OAAO,CAAC,KAAK,CACX,+CAA+C,OAAO,CAAC,WAAW,KAAK;YACrE,iBAAiB,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CACnD,CAAC;QACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,MAAM,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,UAAU,CAAe,CAAC;IAC5D,IAAI,CAAC,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;QACpC,OAAO,CAAC,KAAK,CACX,6CAA6C,OAAO,CAAC,MAAM,KAAK;YAC9D,kBAAkB,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CACjD,CAAC;QACF,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;IAED,6DAA6D;IAC7D,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,IAAA,cAAI,EAAC;YACxB,OAAO;YACP,WAAW,EAAE,OAAO,CAAC,WAAmC;YACxD,KAAK,EAAE,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;YACrD,cAAc,EAAE,OAAO,CAAC,QAAQ;SACjC,CAAC,CAAC;QAEH,yDAAyD;QACzD,IAAI,MAAM,CAAC,UAAU,CAAC,MAAM,KAAK,CAAC,IAAI,MAAM,KAAK,UAAU,EAAE,CAAC;YAC5D,OAAO,CAAC,GAAG,CAAC;;;aAGL,OAAO;;;;;;;;;;;;;CAanB,CAAC,CAAC;YACG,OAAO;QACT,CAAC;QAED,yDAAyD;QACzD,gCAAgC;QAChC,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,cAAc,EAAE,GAAG,IAAA,wBAAc,EAAC,OAAO,CAAC,CAAC;QAErE,8DAA8D;QAC9D,MAAM,eAAe,GAAG,OAAO,CAAC,MAAM;YACpC,CAAC,CAAC,MAAM;YACR,CAAC,CAAE,MAAM,EAAE,MAAqB,IAAI,UAAU,CAAC;QAEjD,wDAAwD;QACxD,qEAAqE;QACrE,2EAA2E;QAC3E,2EAA2E;QAC3E,oBAAoB;QACpB,MAAM,iBAAiB,GAAsB,IAAA,2BAAiB,EAC5D,MAAM,CAAC,MAAM,CAAC,QAAiB,EAC/B,EAAE,EACF,OAAO,CACR,CAAC;QAEF,+DAA+D;QAC/D,IAAI,CAAC,OAAO,CAAC,cAAc,EAAE,CAAC;YAC5B,MAAM,CAAC,MAAM,CAAC,QAAQ,GAAG,iBAAiB,CAAC,MAAe,CAAC;YAC3D,sBAAsB;YACtB,MAAM,CAAC,MAAM,CAAC,OAAO,GAAG;gBACtB,QAAQ,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM;gBAChF,IAAI,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM;gBACxE,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM;gBAC5E,GAAG,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,KAAK,CAAC,CAAC,MAAM;gBACtE,IAAI,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM;gBACxE,KAAK,EAAE,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM;aACrC,CAAC;QACJ,CAAC;QAED,yDAAyD;QACzD,QAAQ,MAAM,EAAE,CAAC;YACf,KAAK,MAAM;gBACT,OAAO,CAAC,GAAG,CAAC,IAAA,oBAAU,EAAC,MAAM,CAAC,CAAC,CAAC;gBAChC,MAAM;YACR,KAAK,IAAI;gBACP,OAAO,CAAC,GAAG,CAAC,IAAA,wBAAc,EAAC,MAAM,CAAC,CAAC,CAAC;gBACpC,MAAM;YACR,KAAK,OAAO;gBACV,OAAO,CAAC,GAAG,CAAC,IAAA,qBAAW,EAAC,MAAM,CAAC,CAAC,CAAC;gBACjC,MAAM;YACR,KAAK,UAAU,CAAC;YAChB;gBACE,OAAO,CAAC,GAAG,CAAC,IAAA,wBAAc,EAAC,MAAM,CAAC,CAAC,CAAC;gBACpC,MAAM;QACV,CAAC;QAED,yDAAyD;QACzD,IAAI,MAAM,KAAK,UAAU,IAAI,iBAAiB,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACrE,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;gBAC3B,OAAO,CAAC,GAAG,CAAC,kCAAkC,iBAAiB,CAAC,UAAU,CAAC,MAAM,WAAW,CAAC,CAAC;gBAC9F,KAAK,MAAM,EAAE,OAAO,EAAE,WAAW,EAAE,IAAI,iBAAiB,CAAC,UAAU,EAAE,CAAC;oBACpE,OAAO,CAAC,GAAG,CAAC,cAAc,OAAO,CAAC,OAAO,WAAW,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;oBACrE,OAAO,CAAC,GAAG,CAAC,iBAAiB,WAAW,CAAC,MAAM,EAAE,CAAC,CAAC;oBACnD,IAAI,WAAW,CAAC,OAAO;wBAAE,OAAO,CAAC,GAAG,CAAC,kBAAkB,WAAW,CAAC,OAAO,EAAE,CAAC,CAAC;oBAC9E,IAAI,WAAW,CAAC,MAAM;wBAAE,OAAO,CAAC,GAAG,CAAC,iBAAiB,WAAW,CAAC,MAAM,EAAE,CAAC,CAAC;gBAC7E,CAAC;gBACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAClB,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,GAAG,CACT,YAAY,iBAAiB,CAAC,UAAU,CAAC,MAAM,0BAA0B;oBACvE,yCAAyC,CAC5C,CAAC;gBACF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;YAClB,CAAC;QACH,CAAC;QAED,yDAAyD;QACzD,IAAI,MAAM,KAAK,UAAU,IAAI,iBAAiB,CAAC,oBAAoB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/E,OAAO,CAAC,GAAG,CAAC,eAAe,iBAAiB,CAAC,oBAAoB,CAAC,MAAM,iCAAiC,CAAC,CAAC;YAC3G,KAAK,MAAM,GAAG,IAAI,iBAAiB,CAAC,oBAAoB,EAAE,CAAC;gBACzD,OAAO,CAAC,GAAG,CAAC,OAAO,GAAG,CAAC,OAAO,cAAc,GAAG,CAAC,OAAO,MAAM,GAAG,CAAC,MAAM,EAAE,CAAC,CAAC;YAC7E,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,uEAAuE,CAAC,CAAC;YACrF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QAED,yDAAyD;QACzD,IAAI,MAAM,KAAK,UAAU,EAAE,CAAC;YAC1B,MAAM,UAAU,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;YACxC,MAAM,WAAW,GAAG,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC;YAClD,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;YACvF,OAAO,CAAC,GAAG,CAAC,iCAAiC,UAAU,yCAAyC,CAAC,CAAC;YAClG,OAAO,CAAC,GAAG,CAAC,wEAAwE,CAAC,CAAC;YACtF,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;YACvF,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;YACvF,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;YACvF,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;YACvF,OAAO,CAAC,GAAG,CAAC,yEAAyE,CAAC,CAAC;YACvF,OAAO,CAAC,GAAG,CAAC,wEAAwE,CAAC,CAAC;YACtF,OAAO,CAAC,GAAG,CAAC,sBAAsB,eAAe,CAAC,MAAM,CAAC,EAAE,CAAC,kCAAkC,CAAC,CAAC;YAChG,OAAO,CAAC,GAAG,CAAC,wEAAwE,CAAC,CAAC;YACtF,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QAED,iBAAiB;QACjB,MAAM,WAAW,GAAG,CAAC,GAAG,MAAM,CAAC,QAAQ,EAAE,GAAG,cAAc,CAAC,CAAC;QAC5D,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,IAAI,MAAM,KAAK,UAAU,EAAE,CAAC;YACpD,OAAO,CAAC,GAAG,CAAC,4BAA4B,CAAC,CAAC;YAC1C,KAAK,MAAM,OAAO,IAAI,WAAW,EAAE,CAAC;gBAClC,OAAO,CAAC,GAAG,CAAC,wBAAwB,OAAO,EAAE,CAAC,CAAC;YACjD,CAAC;YACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAClB,CAAC;QAED,yDAAyD;QACzD,MAAM,YAAY,GAAG,iBAAO,CAAC,eAAe,CAAC,CAAC;QAC9C,MAAM,EAAE,OAAO,EAAE,GAAG,MAAM,CAAC,MAAM,CAAC;QAElC,MAAM,UAAU,GAAG,YAAY,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE;YAC5D,QAAQ,GAAG,EAAE,CAAC;gBACZ,KAAK,UAAU,CAAC,CAAC,OAAO,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC;gBAC7C,KAAK,MAAM,CAAC,CAAC,OAAO,OAAO,CAAC,IAAI,GAAG,CAAC,CAAC;gBACrC,KAAK,QAAQ,CAAC,CAAC,OAAO,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC;gBACzC,KAAK,KAAK,CAAC,CAAC,OAAO,OAAO,CAAC,GAAG,GAAG,CAAC,CAAC;gBACnC,OAAO,CAAC,CAAC,OAAO,KAAK,CAAC;YACxB,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,IAAI,UAAU,EAAE,CAAC;YACf,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;IACH,CAAC;IAAC,OAAO,KAAc,EAAE,CAAC;QACxB,MAAM,OAAO,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;QACvE,OAAO,CAAC,KAAK,CAAC,6BAA6B,OAAO,IAAI,CAAC,CAAC;QACxD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC;AACH,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,20 @@
+#!/usr/bin/env node
+/**
+ * SentinelFlow CLI
+ *
+ * The vendor-neutral governance layer for enterprise AI agents.
+ *
+ * Usage:
+ *   sentinelflow scan [path]       Scan for agents and governance issues
+ *   sentinelflow init              Initialize SentinelFlow in a project
+ *   sentinelflow registry list     List registered agents
+ *
+ * Future (Phase 2):
+ *   sentinelflow monitor           Live-tail agent events
+ *   sentinelflow dashboard         Launch the governance dashboard
+ *
+ * Future (Phase 3):
+ *   sentinelflow comply <standard> Run compliance checks
+ */
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAEA;;;;;;;;;;;;;;;;GAgBG"}

package/dist/index.js

@@ -0,0 +1,118 @@
+#!/usr/bin/env node
+"use strict";
+/**
+ * SentinelFlow CLI
+ *
+ * The vendor-neutral governance layer for enterprise AI agents.
+ *
+ * Usage:
+ *   sentinelflow scan [path]       Scan for agents and governance issues
+ *   sentinelflow init              Initialize SentinelFlow in a project
+ *   sentinelflow registry list     List registered agents
+ *
+ * Future (Phase 2):
+ *   sentinelflow monitor           Live-tail agent events
+ *   sentinelflow dashboard         Launch the governance dashboard
+ *
+ * Future (Phase 3):
+ *   sentinelflow comply <standard> Run compliance checks
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+const commander_1 = require("commander");
+const scan_1 = require("./commands/scan");
+const init_1 = require("./commands/init");
+const program = new commander_1.Command();
+program
+    .name("sentinelflow")
+    .description("The vendor-neutral governance layer for enterprise AI agents")
+    .version("0.1.0");
+// ── sentinelflow scan ───────────────────────────────────────
+program
+    .command("scan")
+    .description("Scan for AI agents and governance issues")
+    .argument("[path]", "Project directory to scan", ".")
+    .option("-f, --format <format>", "Output format: terminal, json, md, sarif", "terminal")
+    .option("--min-severity <severity>", "Minimum severity: critical, high, medium, low, info")
+    .option("--rules <rules>", "Comma-separated rule IDs to run")
+    .option("--preset <preset>", "Scan preset: strict, standard, monitor", "standard")
+    .option("--show-suppressed", "Show suppressed findings for audit review")
+    .option("--no-registry", "Skip updating the local registry")
+    .action(scan_1.scanCommand);
+// ── sentinelflow init ───────────────────────────────────────
+program
+    .command("init")
+    .description("Initialize SentinelFlow in the current project")
+    .argument("[path]", "Project directory", ".")
+    .action(init_1.initCommand);
+// ── sentinelflow registry ───────────────────────────────────
+const registry = program
+    .command("registry")
+    .description("Manage the agent registry");
+registry
+    .command("list")
+    .description("List all registered agents")
+    .option("--framework <framework>", "Filter by framework")
+    .option("--status <status>", "Filter by governance status")
+    .option("--json", "Output as JSON")
+    .action(async (options) => {
+    const path = await Promise.resolve().then(() => __importStar(require("path")));
+    const { LocalRegistry } = await Promise.resolve().then(() => __importStar(require("@sentinelflow/core")));
+    const reg = new LocalRegistry(process.cwd());
+    await reg.initialize();
+    const agents = await reg.listAgents({
+        framework: options.framework,
+        status: options.status,
+    });
+    if (options.json) {
+        console.log(JSON.stringify(agents, null, 2));
+    }
+    else {
+        if (agents.length === 0) {
+            console.log("\n  No agents registered. Run 'sentinelflow scan' first.\n");
+            return;
+        }
+        console.log(`\n  ${agents.length} agents registered:\n`);
+        for (const agent of agents) {
+            const risk = agent.governance.risk_level ?? "unassessed";
+            const status = agent.governance.status;
+            console.log(`    ${agent.name} (${agent.framework}) — ${status} — risk: ${risk}`);
+        }
+        console.log("");
+    }
+    await reg.close();
+});
+program.parse();
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";;AAEA;;;;;;;;;;;;;;;;GAgBG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,yCAAoC;AACpC,0CAA8C;AAC9C,0CAA8C;AAE9C,MAAM,OAAO,GAAG,IAAI,mBAAO,EAAE,CAAC;AAE9B,OAAO;KACJ,IAAI,CAAC,cAAc,CAAC;KACpB,WAAW,CAAC,8DAA8D,CAAC;KAC3E,OAAO,CAAC,OAAO,CAAC,CAAC;AAEpB,+DAA+D;AAC/D,OAAO;KACJ,OAAO,CAAC,MAAM,CAAC;KACf,WAAW,CAAC,0CAA0C,CAAC;KACvD,QAAQ,CAAC,QAAQ,EAAE,2BAA2B,EAAE,GAAG,CAAC;KACpD,MAAM,CAAC,uBAAuB,EAAE,0CAA0C,EAAE,UAAU,CAAC;KACvF,MAAM,CAAC,2BAA2B,EAAE,qDAAqD,CAAC;KAC1F,MAAM,CAAC,iBAAiB,EAAE,iCAAiC,CAAC;KAC5D,MAAM,CAAC,mBAAmB,EAAE,wCAAwC,EAAE,UAAU,CAAC;KACjF,MAAM,CAAC,mBAAmB,EAAE,2CAA2C,CAAC;KACxE,MAAM,CAAC,eAAe,EAAE,kCAAkC,CAAC;KAC3D,MAAM,CAAC,kBAAW,CAAC,CAAC;AAEvB,+DAA+D;AAC/D,OAAO;KACJ,OAAO,CAAC,MAAM,CAAC;KACf,WAAW,CAAC,gDAAgD,CAAC;KAC7D,QAAQ,CAAC,QAAQ,EAAE,mBAAmB,EAAE,GAAG,CAAC;KAC5C,MAAM,CAAC,kBAAW,CAAC,CAAC;AAEvB,+DAA+D;AAC/D,MAAM,QAAQ,GAAG,OAAO;KACrB,OAAO,CAAC,UAAU,CAAC;KACnB,WAAW,CAAC,2BAA2B,CAAC,CAAC;AAE5C,QAAQ;KACL,OAAO,CAAC,MAAM,CAAC;KACf,WAAW,CAAC,4BAA4B,CAAC;KACzC,MAAM,CAAC,yBAAyB,EAAE,qBAAqB,CAAC;KACxD,MAAM,CAAC,mBAAmB,EAAE,6BAA6B,CAAC;KAC1D,MAAM,CAAC,QAAQ,EAAE,gBAAgB,CAAC;KAClC,MAAM,CAAC,KAAK,EAAE,OAAO,EAAE,EAAE;IACxB,MAAM,IAAI,GAAG,wDAAa,MAAM,GAAC,CAAC;IAClC,MAAM,EAAE,aAAa,EAAE,GAAG,wDAAa,oBAAoB,GAAC,CAAC;IAC7D,MAAM,GAAG,GAAG,IAAI,aAAa,CAAC,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;IAC7C,MAAM,GAAG,CAAC,UAAU,EAAE,CAAC;IAEvB,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,UAAU,CAAC;QAClC,SAAS,EAAE,OAAO,CAAC,SAAS;QAC5B,MAAM,EAAE,OAAO,CAAC,MAAM;KACvB,CAAC,CAAC;IAEH,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC;QACjB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;SAAM,CAAC;QACN,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,OAAO,CAAC,GAAG,CAAC,4DAA4D,CAAC,CAAC;YAC1E,OAAO;QACT,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,OAAO,MAAM,CAAC,MAAM,uBAAuB,CAAC,CAAC;QACzD,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,MAAM,IAAI,GAAG,KAAK,CAAC,UAAU,CAAC,UAAU,IAAI,YAAY,CAAC;YACzD,MAAM,MAAM,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC;YACvC,OAAO,CAAC,GAAG,CACT,OAAO,KAAK,CAAC,IAAI,KAAK,KAAK,CAAC,SAAS,OAAO,MAAM,YAAY,IAAI,EAAE,CACrE,CAAC;QACJ,CAAC;QACD,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;IAClB,CAAC;IAED,MAAM,GAAG,CAAC,KAAK,EAAE,CAAC;AACpB,CAAC,CAAC,CAAC;AAEL,OAAO,CAAC,KAAK,EAAE,CAAC"}

package/package.json

@@ -0,0 +1,57 @@
+{
+  "name": "sentinelflow",
+  "version": "0.2.0",
+  "description": "The vendor-neutral governance scanner for AI agents. Scans Claude Code, Cursor, Codex, LangChain, CrewAI, and Kiro configs for security and compliance issues.",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "bin": {
+    "sentinelflow": "dist/index.js"
+  },
+  "license": "MIT",
+  "author": "Om Satya Swaroop",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/Omsatyaswaroop29/sentinelflow.git"
+  },
+  "homepage": "https://github.com/Omsatyaswaroop29/sentinelflow#readme",
+  "bugs": {
+    "url": "https://github.com/Omsatyaswaroop29/sentinelflow/issues"
+  },
+  "files": ["dist"],
+  "keywords": [
+    "ai",
+    "ai-agents",
+    "governance",
+    "security",
+    "scanner",
+    "claude-code",
+    "cursor",
+    "codex",
+    "langchain",
+    "crewai",
+    "llm",
+    "compliance",
+    "eu-ai-act",
+    "owasp",
+    "sarif",
+    "sast",
+    "devsecops"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "test": "vitest run",
+    "lint": "tsc --noEmit",
+    "clean": "rm -rf dist"
+  },
+  "dependencies": {
+    "@sentinelflow/core": "workspace:*",
+    "@sentinelflow/parsers": "workspace:*",
+    "@sentinelflow/scanner": "workspace:*",
+    "commander": "^13.0.0"
+  },
+  "devDependencies": {
+    "vitest": "^2.1.0",
+    "typescript": "^5.7.0"
+  }
+}