shellward 0.6.1 → 0.6.2

package/dist/compliance/project-scan.js

@@ -0,0 +1,225 @@
+// src/compliance/project-scan.ts — 项目真实风险扫描
+//
+// 体检的灵魂：报告的是「用户项目的真实风险」，不是「ShellWard 的开关」。
+// 零依赖遍历当前项目目录，找出可截图、可定位 (文件:行) 的合规风险：
+//   ① 境外大模型端点（硬编码 base_url/key）→ 数据出境风险
+//   ② 硬编码密钥（API key / 私钥 / 口令 / 连接串）
+//   ③ 文件中的中文 PII（身份证 / 手机号 / 银行卡）
+//   ④ .env 等敏感文件权限过宽
+import { readdirSync, statSync, readFileSync } from 'fs';
+import { join, relative, basename } from 'path';
+import { detectOverseasLLM, detectOverseasDeps, isDependencyManifest } from '../rules/overseas-llm.js';
+import { SENSITIVE_PATTERNS } from '../rules/sensitive-patterns.js';
+// ===== 扫描边界（零依赖、可控） =====
+const SKIP_DIRS = new Set([
+    'node_modules', '.git', 'dist', 'build', '.next', 'out',
+    'vendor', 'coverage', '.venv', 'venv', '__pycache__', '.cache', 'target',
+]);
+const SCAN_EXT = new Set([
+    '.ts', '.tsx', '.js', '.jsx', '.mjs', '.cjs',
+    '.py', '.go', '.rb', '.java', '.php', '.rs',
+    '.json', '.yaml', '.yml', '.toml', '.ini', '.conf', '.sh', '.txt', '.csv',
+]);
+const MAX_FILES = 3000;
+const MAX_FILE_BYTES = 512 * 1024;
+const MAX_FINDINGS_PER_FILE = 20;
+const MAX_TOTAL_FINDINGS = 500;
+// 密钥类 vs PII 类（按 sensitive-patterns 的 id 归类）
+const SECRET_IDS = new Set([
+    'openai_key', 'anthropic_key', 'aws_access', 'github_token',
+    'generic_api_key', 'private_key', 'jwt', 'password', 'conn_string',
+]);
+const PII_IDS = new Set(['id_card_cn', 'phone_cn', 'bank_card_cn', 'ssn_us', 'credit_card']);
+/** 扫描项目目录，返回真实风险发现 */
+export function scanProject(root) {
+    const findings = [];
+    const state = { files: 0, truncated: false };
+    walk(root, root, findings, state);
+    const counts = { overseas: 0, secret: 0, pii: 0, 'env-perm': 0 };
+    for (const f of findings)
+        counts[f.kind]++;
+    return {
+        root,
+        filesScanned: state.files,
+        truncated: state.truncated,
+        findings,
+        counts,
+    };
+}
+function walk(dir, root, findings, state) {
+    if (state.files >= MAX_FILES || findings.length >= MAX_TOTAL_FINDINGS) {
+        state.truncated = true;
+        return;
+    }
+    let entries;
+    try {
+        entries = readdirSync(dir);
+    }
+    catch {
+        return;
+    }
+    for (const name of entries) {
+        if (state.files >= MAX_FILES || findings.length >= MAX_TOTAL_FINDINGS) {
+            state.truncated = true;
+            return;
+        }
+        if (name.startsWith('.') && !name.startsWith('.env')) {
+            // 跳过隐藏文件/目录，但保留 .env*
+            if (name !== '.')
+                continue;
+        }
+        const full = join(dir, name);
+        let st;
+        try {
+            st = statSync(full);
+        }
+        catch {
+            continue;
+        }
+        if (st.isDirectory()) {
+            if (SKIP_DIRS.has(name))
+                continue;
+            walk(full, root, findings, state);
+            continue;
+        }
+        if (!st.isFile())
+            continue;
+        // .env 权限检查（任意大小）
+        if (/^\.env(\..+)?$/.test(name)) {
+            checkEnvPerm(full, root, st.mode, findings);
+        }
+        // 内容扫描：文本类扩展 + .env* + 依赖清单(含 go.mod)，且大小受限
+        const isEnv = /^\.env(\..+)?$/.test(name);
+        const isDep = isDependencyManifest(name);
+        const ext = name.includes('.') ? name.slice(name.lastIndexOf('.')) : '';
+        if (!isEnv && !isDep && !SCAN_EXT.has(ext))
+            continue;
+        if (st.size > MAX_FILE_BYTES)
+            continue;
+        let content;
+        try {
+            content = readFileSync(full, 'utf-8');
+        }
+        catch {
+            continue;
+        }
+        state.files++;
+        if (isDep)
+            scanDependencies(name, content, full, root, findings);
+        scanContent(content, full, root, findings);
+    }
+}
+function scanDependencies(name, content, full, root, findings) {
+    const deps = detectOverseasDeps(name, content);
+    if (deps.length === 0)
+        return;
+    const file = rel(root, full);
+    const lines = content.split('\n');
+    for (const d of deps) {
+        if (findings.length >= MAX_TOTAL_FINDINGS)
+            break;
+        // 粗定位包名所在行
+        let line;
+        for (let i = 0; i < lines.length; i++) {
+            if (lines[i].toLowerCase().includes(d.pkg.toLowerCase())) {
+                line = i + 1;
+                break;
+            }
+        }
+        findings.push({
+            kind: 'overseas',
+            file,
+            line,
+            detail: `境外大模型 SDK 依赖: ${d.pkg} (${d.provider_zh}) — 项目内含数据出境通道，调用即可能构成出境`,
+            severity: 'high',
+            provider_zh: d.provider_zh,
+            provider_en: d.provider_en,
+        });
+    }
+}
+function checkEnvPerm(full, root, mode, findings) {
+    // 仅 POSIX 有意义；Windows 上 mode 不可靠，跳过
+    if (process.platform === 'win32')
+        return;
+    const perm = mode & 0o777;
+    if (perm > 0o600) {
+        findings.push({
+            kind: 'env-perm',
+            file: rel(root, full),
+            detail: `权限过宽 (${perm.toString(8)})，建议 chmod 600 — 含密钥的 .env 不应组/其他可读`,
+            severity: 'high',
+        });
+    }
+}
+function scanContent(content, full, root, findings) {
+    const file = rel(root, full);
+    const lines = content.split('\n');
+    let perFile = 0;
+    const dedup = new Set();
+    for (let i = 0; i < lines.length; i++) {
+        if (perFile >= MAX_FINDINGS_PER_FILE || findings.length >= MAX_TOTAL_FINDINGS)
+            break;
+        const line = lines[i];
+        if (!line || line.length > 4000)
+            continue;
+        // ① 境外大模型端点
+        const ov = detectOverseasLLM(line);
+        if (ov.isOverseas) {
+            const key = `overseas:${ov.endpointId}`;
+            if (!dedup.has(key)) {
+                dedup.add(key);
+                findings.push({
+                    kind: 'overseas',
+                    file,
+                    line: i + 1,
+                    detail: `境外大模型端点: ${ov.provider_zh} — 向其发送个人信息/重要数据即构成数据出境`,
+                    severity: 'critical',
+                    endpointId: ov.endpointId,
+                    provider_zh: ov.provider_zh,
+                    provider_en: ov.provider_en,
+                });
+                perFile++;
+            }
+        }
+        // ② / ③ 密钥与 PII
+        for (const pat of SENSITIVE_PATTERNS) {
+            if (perFile >= MAX_FINDINGS_PER_FILE)
+                break;
+            const isSecret = SECRET_IDS.has(pat.id);
+            const isPII = PII_IDS.has(pat.id);
+            if (!isSecret && !isPII)
+                continue;
+            const re = new RegExp(pat.regex.source, pat.regex.flags);
+            let m;
+            while ((m = re.exec(line)) !== null) {
+                if (pat.validate && !pat.validate(m[0]))
+                    continue;
+                const key = `${pat.id}:${i}`;
+                if (dedup.has(key))
+                    break;
+                dedup.add(key);
+                findings.push({
+                    kind: isSecret ? 'secret' : 'pii',
+                    file,
+                    line: i + 1,
+                    detail: isSecret
+                        ? `硬编码${pat.name}: ${preview(m[0])} — 凭据不应写入源码/配置`
+                        : `${pat.name}: ${preview(m[0])} — 个人信息出现在文件中，需评估最小必要与脱敏`,
+                    severity: isSecret ? 'critical' : 'high',
+                });
+                perFile++;
+                if (perFile >= MAX_FINDINGS_PER_FILE)
+                    break;
+                if (!re.global)
+                    break;
+            }
+        }
+    }
+}
+function preview(s) {
+    return s.length > 10 ? s.slice(0, 6) + '***' : s.slice(0, 3) + '***';
+}
+function rel(root, full) {
+    const r = relative(root, full);
+    return r || basename(full);
+}

package/dist/compliance/regulations.d.ts

@@ -0,0 +1,35 @@
+/** 控制项归属的法规 */
+export type Regulation = 'CSL' | 'PIPL' | 'MLPS' | 'CBDT' | 'GENAI';
+/** 控制项的检测方式 —— 决定体检引擎用哪种 checker */
+export type CheckMethod = 'capability' | 'config' | 'audit' | 'env' | 'manual';
+export type Severity = 'critical' | 'high' | 'medium' | 'low';
+export interface ComplianceControl {
+    /** 稳定 ID，体检引擎据此映射 checker，报告据此引用 */
+    id: string;
+    regulation: Regulation;
+    /** 法规条款 / 国标编号 */
+    article: string;
+    title_zh: string;
+    title_en: string;
+    /** 监管要求原文要点 */
+    requirement_zh: string;
+    requirement_en: string;
+    method: CheckMethod;
+    severity: Severity;
+    /** 不满足时的整改建议 */
+    remediation_zh: string;
+    remediation_en: string;
+}
+/** 法规中文显示名 */
+export declare const REGULATION_NAMES: Record<Regulation, {
+    zh: string;
+    en: string;
+}>;
+/**
+ * 合规控制项清单。
+ * 注：本清单帮助企业"满足"合规技术要求，不等于"替企业完成"合规
+ * （备案 / 定级 / PIA 主体责任不可外包）。method='manual' 的项 ShellWard 仅提供举证支撑。
+ */
+export declare const COMPLIANCE_CONTROLS: ComplianceControl[];
+/** 按法规分组 */
+export declare function controlsByRegulation(): Record<Regulation, ComplianceControl[]>;

package/dist/compliance/regulations.js

@@ -0,0 +1,218 @@
+// src/compliance/regulations.ts — 中国 AI 合规控制项映射层
+//
+// 把网安法 / PIPL / 等保2.0 / 数据出境 / 生成式AI标识 等法规的「可核查控制项」
+// 结构化为统一数据模型，作为合规体检引擎 (compliance/audit.ts) 的数据源。
+//
+// 每条控制项 = 一条真实法规条款 → 一个可被 ShellWard 检测或支撑的技术点。
+// 法规出处见 README「合规」章节与研究报告（cac.gov.cn / npc.gov.cn / 国标平台）。
+/** 法规中文显示名 */
+export const REGULATION_NAMES = {
+    CSL: { zh: '网络安全法 (2026.1.1)', en: 'Cybersecurity Law (2026-01-01)' },
+    PIPL: { zh: '个人信息保护法', en: 'PIPL' },
+    MLPS: { zh: '等保 2.0 (GB/T 22239)', en: 'MLPS 2.0' },
+    CBDT: { zh: '数据出境', en: 'Cross-Border Data Transfer' },
+    GENAI: { zh: '生成式AI / 内容标识', en: 'GenAI / Content Labeling' },
+};
+/**
+ * 合规控制项清单。
+ * 注：本清单帮助企业"满足"合规技术要求，不等于"替企业完成"合规
+ * （备案 / 定级 / PIA 主体责任不可外包）。method='manual' 的项 ShellWard 仅提供举证支撑。
+ */
+export const COMPLIANCE_CONTROLS = [
+    // ===== 网络安全法 (CSL) =====
+    {
+        id: 'csl-audit-log',
+        regulation: 'CSL',
+        article: '第二十三条',
+        title_zh: '网络日志留存不少于 6 个月',
+        title_en: 'Retain network logs for ≥6 months',
+        requirement_zh: '采取监测、记录网络运行状态的技术措施，留存相关网络日志不少于六个月。',
+        requirement_en: 'Retain network operation logs for no less than six months.',
+        method: 'audit',
+        severity: 'high',
+        remediation_zh: '启用 ShellWard 审计日志，确保工具调用 / prompt / 决策链统一留痕、防篡改、保留 ≥6 个月。',
+        remediation_en: 'Enable ShellWard audit logging with ≥6-month, tamper-resistant retention.',
+    },
+    {
+        id: 'csl-content-block',
+        regulation: 'CSL',
+        article: '第四十九条',
+        title_zh: '发现禁止信息立即停止传输并留痕',
+        title_en: 'Stop transmission of prohibited info & keep records',
+        requirement_zh: '发现法律禁止发布或传输的信息，立即停止传输、采取处置措施、保存记录并报告。',
+        requirement_en: 'On detecting prohibited information, immediately stop transmission, dispose, record and report.',
+        method: 'capability',
+        severity: 'high',
+        remediation_zh: '启用输出内容审查层 (outputScanner / outboundGuard)，对生成内容实时审查、阻断并留痕。',
+        remediation_en: 'Enable output content review layers to block and log prohibited content in real time.',
+    },
+    {
+        id: 'csl-intrusion',
+        regulation: 'CSL',
+        article: '第二十一条 / 等保',
+        title_zh: '入侵防范与异常监测',
+        title_en: 'Intrusion prevention & anomaly monitoring',
+        requirement_zh: '采取防范计算机病毒和网络攻击、网络侵入等危害网络安全行为的技术措施。',
+        requirement_en: 'Take technical measures against intrusion and attacks endangering network security.',
+        method: 'capability',
+        severity: 'medium',
+        remediation_zh: '启用提示注入检测 (inputAuditor) 与危险命令拦截 (toolBlocker)。',
+        remediation_en: 'Enable prompt-injection detection and dangerous-command blocking.',
+    },
+    // ===== 个人信息保护法 (PIPL) =====
+    {
+        id: 'pipl-spi-detect',
+        regulation: 'PIPL',
+        article: '第二十八条',
+        title_zh: '敏感个人信息识别 (7类+未成年人)',
+        title_en: 'Detect sensitive personal information',
+        requirement_zh: '识别生物识别、医疗健康、金融账户、行踪轨迹等敏感个人信息及不满14岁未成年人信息。',
+        requirement_en: 'Detect sensitive PI: biometrics, health, financial accounts, location, minors under 14.',
+        method: 'capability',
+        severity: 'critical',
+        remediation_zh: '启用 PII/敏感数据扫描层 (outputScanner)，覆盖身份证、银行卡、手机号等中文敏感信息。',
+        remediation_en: 'Enable PII/SPI scanning covering Chinese ID, bank card, phone, etc.',
+    },
+    {
+        id: 'pipl-minimize',
+        regulation: 'PIPL',
+        article: '第六条 / 第十九条',
+        title_zh: '最小必要 + 数据流向管控',
+        title_en: 'Data minimization & flow control',
+        requirement_zh: '处理个人信息应限于实现处理目的的最小范围，非必要不收集、不外发。',
+        requirement_en: 'Process PI within the minimum scope necessary for the purpose.',
+        method: 'capability',
+        severity: 'high',
+        remediation_zh: '启用数据流追踪层 (dataFlowGuard)：读取敏感数据后向外发送将被拦截。',
+        remediation_en: 'Enable data-flow tracking: outbound send is blocked after sensitive data access.',
+    },
+    {
+        id: 'pipl-pia',
+        regulation: 'PIPL',
+        article: '第五十五条 / 第五十六条',
+        title_zh: '个人信息保护影响评估 (PIA) 并留存 ≥3 年',
+        title_en: 'Conduct PIA & retain records ≥3 years',
+        requirement_zh: '处理敏感PI、自动化决策、对外提供、出境等情形须事前进行 PIA，报告留存至少 3 年。',
+        requirement_en: 'Conduct a PIA for sensitive PI / automated decisions / cross-border transfer; retain ≥3 years.',
+        method: 'audit',
+        severity: 'high',
+        remediation_zh: '由数据流入/出口触发 PIA 工作流并将报告纳入防篡改审计存储（≥3 年）。',
+        remediation_en: 'Trigger PIA workflow on data ingress/egress; store reports in tamper-resistant audit (≥3y).',
+    },
+    {
+        id: 'pipl-auto-decision',
+        regulation: 'PIPL',
+        article: '第二十四条',
+        title_zh: '自动化决策记录 + 人工复核回退',
+        title_en: 'Automated-decision logging & human-in-the-loop',
+        requirement_zh: '自动化决策应保证透明、结果公平，并提供拒绝纯自动化决策、要求说明的途径。',
+        requirement_en: 'Ensure transparency for automated decisions and a human-review fallback.',
+        method: 'capability',
+        severity: 'medium',
+        remediation_zh: '记录自动化决策调用（输入特征/模型版本/输出），高风险动作转人工复核 (securityGate)。',
+        remediation_en: 'Log automated decisions and route high-risk actions to human review.',
+    },
+    // ===== 等保 2.0 (MLPS) =====
+    {
+        id: 'mlps-audit-fields',
+        regulation: 'MLPS',
+        article: 'GB/T 22239 8.1.4.3',
+        title_zh: '安全审计：覆盖每用户、记录五要素',
+        title_en: 'Security audit: per-user, five-element records',
+        requirement_zh: '审计覆盖每个用户，记录时间、用户、类型、成败及其他相关信息，审计记录受保护防中断。',
+        requirement_en: 'Audit each user; record time, user, type, result and other info; protect audit records.',
+        method: 'audit',
+        severity: 'high',
+        remediation_zh: '使用 ShellWard 审计日志记录五要素并集中防篡改存储。',
+        remediation_en: 'Use ShellWard audit log to record five elements with tamper-resistant storage.',
+    },
+    {
+        id: 'mlps-access-control',
+        regulation: 'MLPS',
+        article: 'GB/T 22239 8.1.4.2',
+        title_zh: '访问控制：最小权限 + 工具/数据粒度',
+        title_en: 'Access control: least privilege & granularity',
+        requirement_zh: '按最小权限分配，访问控制粒度达到用户/进程级及文件/数据库表级。',
+        requirement_en: 'Assign least privilege; control granularity to user/process and file/table level.',
+        method: 'capability',
+        severity: 'medium',
+        remediation_zh: '启用工具策略层 (securityGate)，对高风险工具/资源按最小授权管控。',
+        remediation_en: 'Enable tool-policy gate with least-privilege control over high-risk tools.',
+    },
+    {
+        id: 'mlps-not-root',
+        regulation: 'MLPS',
+        article: 'GB/T 22239 8.1.x',
+        title_zh: '不以特权账户 (root) 运行',
+        title_en: 'Do not run as privileged (root) account',
+        requirement_zh: '应遵循最小化原则，避免以最高权限账户长期运行业务进程。',
+        requirement_en: 'Follow minimization; avoid running business processes as the root account.',
+        method: 'env',
+        severity: 'medium',
+        remediation_zh: '使用普通用户运行 + 容器隔离，避免以 root 启动 Agent。',
+        remediation_en: 'Run as non-root user with container isolation.',
+    },
+    // ===== 数据出境 (CBDT) =====
+    {
+        id: 'cbdt-overseas-llm',
+        regulation: 'CBDT',
+        article: '促进数据跨境流动规定',
+        title_zh: '境外大模型调用 = 数据出境识别',
+        title_en: 'Detect overseas LLM calls as data export',
+        requirement_zh: '向境外接收方提供个人信息/重要数据须识别并走相应路径；重要数据一律不得无评估出境。',
+        requirement_en: 'Identify PI/important-data export to overseas recipients; important data needs assessment.',
+        method: 'env',
+        severity: 'critical',
+        remediation_zh: '识别请求目的地是否境外大模型端点 (OpenAI/Anthropic/Gemini 等)，标记"数据出境"事件；含敏感数据应路由境内已备案模型或先脱敏。',
+        remediation_en: 'Detect overseas LLM endpoints, flag data-export events; route sensitive data to domestic models or de-identify first.',
+    },
+    {
+        id: 'cbdt-redact-before-export',
+        regulation: 'CBDT',
+        article: '安全评估 / 标准合同',
+        title_zh: '出境前脱敏 / 防裸数据出境',
+        title_en: 'De-identify before export / block raw export',
+        requirement_zh: '出境数据应最小化并采取加密、去标识化等安全措施，防止敏感个人信息裸数据出境。',
+        requirement_en: 'Minimize and de-identify export data; prevent raw sensitive PI from leaving the border.',
+        method: 'capability',
+        severity: 'high',
+        remediation_zh: '启用数据流追踪 + 出境拦截：检测到敏感数据流向境外端点时阻断或脱敏。',
+        remediation_en: 'Enable data-flow tracking + export interception to block or de-identify sensitive egress.',
+    },
+    // ===== 生成式AI / 内容标识 (GENAI) =====
+    {
+        id: 'genai-label',
+        regulation: 'GENAI',
+        article: '标识办法 / GB 45438-2025',
+        title_zh: 'AI生成内容标识 (显式 + 元数据)',
+        title_en: 'Label AI-generated content (explicit + metadata)',
+        requirement_zh: '生成合成内容须添加用户可感知的显式标识及文件元数据隐式标识 (XMP / TC260 命名空间)。',
+        requirement_en: 'Add user-visible explicit labels and metadata implicit labels (XMP / TC260 namespace).',
+        method: 'manual',
+        severity: 'high',
+        remediation_zh: '在输出层追加"AI生成"显式标识，导出文件按 GB 45438 写入 XMP 元数据 7 字段（路线图功能）。',
+        remediation_en: 'Append explicit "AI-generated" labels; write GB 45438 XMP metadata on export (roadmap).',
+    },
+    {
+        id: 'genai-content-safety',
+        regulation: 'GENAI',
+        article: '暂行办法第四条 / 安全基本要求',
+        title_zh: '内容安全过滤 (违禁类别 + 拒答率)',
+        title_en: 'Content safety filtering (prohibited categories)',
+        requirement_zh: '生成内容不得含违法不良信息；安全评估要求应拒答率 ≥95%、误拒率 ≤5%。',
+        requirement_en: 'Generated content must exclude prohibited info; refusal rate ≥95%, false-refusal ≤5%.',
+        method: 'manual',
+        severity: 'high',
+        remediation_zh: '接入内容安全过滤引擎对标 31 类违禁内容（路线图功能，可对接国产审核 API）。',
+        remediation_en: 'Integrate content-safety filtering for the 31 prohibited categories (roadmap).',
+    },
+];
+/** 按法规分组 */
+export function controlsByRegulation() {
+    const out = {};
+    for (const c of COMPLIANCE_CONTROLS) {
+        ;
+        (out[c.regulation] ||= []).push(c);
+    }
+    return out;
+}

package/dist/compliance/report.d.ts

@@ -0,0 +1,9 @@
+import type { ComplianceReport } from './audit.js';
+import type { ProjectScanResult } from './project-scan.js';
+/** 渲染合规体检报告为 Markdown。locale 决定中英文。 */
+export declare function renderComplianceReport(report: ComplianceReport, locale: 'zh' | 'en'): string;
+/**
+ * 渲染「项目实测风险」段 —— 关于用户项目的真实发现 (文件:行)，
+ * 这是评分卡可截图、可信的关键。附加在合规报告之后。
+ */
+export declare function renderProjectFindings(scan: ProjectScanResult, locale: 'zh' | 'en'): string;

package/dist/compliance/report.js

@@ -0,0 +1,167 @@
+// src/compliance/report.ts — 合规体检报告 Markdown 渲染
+//
+// 把 ComplianceReport 渲染成红黄绿评分卡（可截图传播 = 月1 获客钩子）。
+// 按法规分组，每项给状态图标 + 结论 + 整改建议。
+import { REGULATION_NAMES } from './regulations.js';
+const STATUS_ICON = {
+    pass: '🟢',
+    warn: '🟡',
+    fail: '🔴',
+    manual: '⚪',
+};
+const STATUS_TEXT_ZH = {
+    pass: '合规', warn: '部分', fail: '不合规', manual: '待确认',
+};
+const STATUS_TEXT_EN = {
+    pass: 'Pass', warn: 'Partial', fail: 'Fail', manual: 'Manual',
+};
+const REGULATION_ORDER = ['CSL', 'PIPL', 'MLPS', 'CBDT', 'GENAI'];
+/** 渲染合规体检报告为 Markdown。locale 决定中英文。 */
+export function renderComplianceReport(report, locale) {
+    const zh = locale === 'zh';
+    const L = [];
+    // ===== 标题 + 总评分卡 =====
+    L.push(zh ? '# 🛡️ AI 应用合规体检报告' : '# 🛡️ AI Application Compliance Report');
+    L.push('');
+    L.push(zh
+        ? `> ShellWard 合规网关自动生成 · ${report.generatedAt.slice(0, 19).replace('T', ' ')} UTC`
+        : `> Generated by ShellWard Compliance Gateway · ${report.generatedAt.slice(0, 19).replace('T', ' ')} UTC`);
+    L.push('');
+    const bar = scoreBar(report.score);
+    L.push(zh ? '## 总评' : '## Overall');
+    L.push('');
+    L.push(`**${zh ? '合规得分' : 'Score'}: ${report.score}/100　${gradeBadge(report.grade)}**`);
+    L.push('');
+    L.push('```');
+    L.push(`${bar}  ${report.score}/100  [${report.grade}]`);
+    L.push('```');
+    L.push('');
+    L.push(zh
+        ? `🟢 合规 ${report.passed} ｜ 🟡 部分 ${report.warned} ｜ 🔴 不合规 ${report.failed} ｜ ⚪ 待确认 ${report.manual}　(共 ${report.total} 项)`
+        : `🟢 Pass ${report.passed} ｜ 🟡 Partial ${report.warned} ｜ 🔴 Fail ${report.failed} ｜ ⚪ Manual ${report.manual}　(${report.total} controls)`);
+    if (report.projectPenalty && report.projectPenalty > 0) {
+        L.push('');
+        L.push(zh
+            ? `> 含项目实测风险扣分 **-${report.projectPenalty}**（见下方「项目实测风险」）`
+            : `> Includes **-${report.projectPenalty}** from project scan findings (see Project Scan Findings)`);
+    }
+    L.push('');
+    // ===== 优先整改（fail 项，按严重度） =====
+    const fails = report.results
+        .filter(r => r.status === 'fail')
+        .sort((a, b) => severityRank(b) - severityRank(a));
+    if (fails.length > 0) {
+        L.push(zh ? '## ⚠️ 优先整改项' : '## ⚠️ Priority Fixes');
+        L.push('');
+        for (const r of fails) {
+            L.push(`- 🔴 **${zh ? r.control.title_zh : r.control.title_en}** `
+                + `(${regName(r.control.regulation, zh)} ${r.control.article})`);
+            L.push(`  - ${zh ? '整改' : 'Fix'}: ${zh ? r.control.remediation_zh : r.control.remediation_en}`);
+        }
+        L.push('');
+    }
+    // ===== 按法规分组明细 =====
+    L.push(zh ? '## 分项明细' : '## Detailed Results');
+    L.push('');
+    const grouped = groupByRegulation(report.results);
+    for (const reg of REGULATION_ORDER) {
+        const items = grouped[reg];
+        if (!items || items.length === 0)
+            continue;
+        L.push(`### ${regName(reg, zh)}`);
+        L.push('');
+        L.push(zh
+            ? '| 状态 | 控制项 | 条款 | 结论 |'
+            : '| Status | Control | Article | Result |');
+        L.push('|---|---|---|---|');
+        for (const r of items) {
+            const icon = STATUS_ICON[r.status];
+            const txt = zh ? STATUS_TEXT_ZH[r.status] : STATUS_TEXT_EN[r.status];
+            const title = zh ? r.control.title_zh : r.control.title_en;
+            const detail = (zh ? r.detail_zh : r.detail_en).replace(/\|/g, '/').replace(/\n/g, ' ');
+            L.push(`| ${icon} ${txt} | ${title} | ${r.control.article} | ${detail} |`);
+        }
+        L.push('');
+    }
+    // ===== 免责声明 =====
+    L.push('---');
+    L.push(zh
+        ? '> **说明**：本报告帮助评估并满足合规技术要求，不构成法律意见，亦不替代算法备案/定级备案/PIA 等主体责任。⚪ 待确认项需结合业务人工判定。'
+        : '> **Note**: This report assists with technical compliance and is not legal advice. ⚪ items require manual review.');
+    return L.join('\n');
+}
+const KIND_LABEL = {
+    overseas: { zh: '数据出境风险', en: 'Data export risk', icon: '🌐' },
+    secret: { zh: '硬编码密钥', en: 'Hardcoded secret', icon: '🔑' },
+    pii: { zh: '个人信息暴露', en: 'PII exposure', icon: '🪪' },
+    'env-perm': { zh: '.env 权限', en: '.env permission', icon: '📂' },
+};
+const KIND_ORDER = ['overseas', 'secret', 'pii', 'env-perm'];
+/**
+ * 渲染「项目实测风险」段 —— 关于用户项目的真实发现 (文件:行)，
+ * 这是评分卡可截图、可信的关键。附加在合规报告之后。
+ */
+export function renderProjectFindings(scan, locale) {
+    const zh = locale === 'zh';
+    const L = [];
+    L.push(zh ? '## 🔍 项目实测风险' : '## 🔍 Project Scan Findings');
+    L.push('');
+    L.push(zh
+        ? `> 已扫描 ${scan.filesScanned} 个文件${scan.truncated ? '（已达上限，部分未扫）' : ''}`
+        : `> Scanned ${scan.filesScanned} files${scan.truncated ? ' (limit reached, partial)' : ''}`);
+    L.push('');
+    if (scan.findings.length === 0) {
+        L.push(zh ? '🟢 未在项目文件中发现硬编码密钥、个人信息暴露或境外端点。' : '🟢 No hardcoded secrets, PII exposure, or overseas endpoints found in project files.');
+        L.push('');
+        return L.join('\n');
+    }
+    // 概览计数
+    const counts = KIND_ORDER
+        .filter(k => scan.counts[k] > 0)
+        .map(k => `${KIND_LABEL[k].icon} ${zh ? KIND_LABEL[k].zh : KIND_LABEL[k].en}: ${scan.counts[k]}`)
+        .join('　｜　');
+    L.push(`**${counts}**`);
+    L.push('');
+    // 按类型分组列出（每类最多 15 条，避免报告过长）
+    for (const kind of KIND_ORDER) {
+        const items = scan.findings.filter(f => f.kind === kind);
+        if (items.length === 0)
+            continue;
+        const label = KIND_LABEL[kind];
+        L.push(`### ${label.icon} ${zh ? label.zh : label.en} (${items.length})`);
+        L.push('');
+        for (const f of items.slice(0, 15)) {
+            const loc = f.line ? `${f.file}:${f.line}` : f.file;
+            L.push(`- \`${loc}\` — ${f.detail}`);
+        }
+        if (items.length > 15) {
+            L.push(zh ? `- …其余 ${items.length - 15} 项` : `- …and ${items.length - 15} more`);
+        }
+        L.push('');
+    }
+    return L.join('\n');
+}
+function scoreBar(score) {
+    const filled = Math.round(score / 5);
+    return '█'.repeat(filled) + '░'.repeat(20 - filled);
+}
+function gradeBadge(grade) {
+    const map = {
+        A: '🏆 优秀', B: '✅ 良好', C: '⚠️ 及格', D: '❌ 不及格',
+    };
+    return map[grade] || grade;
+}
+function severityRank(r) {
+    return { critical: 4, high: 3, medium: 2, low: 1 }[r.control.severity];
+}
+function regName(reg, zh) {
+    return zh ? REGULATION_NAMES[reg].zh : REGULATION_NAMES[reg].en;
+}
+function groupByRegulation(results) {
+    const out = {};
+    for (const r of results) {
+        ;
+        (out[r.control.regulation] ||= []).push(r);
+    }
+    return out;
+}