shellward 0.6.1 → 0.6.3

package/dist/compliance/report.js

@@ -0,0 +1,215 @@
+// src/compliance/report.ts — 合规体检报告 Markdown 渲染
+//
+// 把 ComplianceReport 渲染成红黄绿评分卡（可截图传播 = 月1 获客钩子）。
+// 按法规分组，每项给状态图标 + 结论 + 整改建议。
+import { REGULATION_NAMES } from './regulations.js';
+import { suggestDomestic } from '../rules/domestic-alternatives.js';
+const STATUS_ICON = {
+    pass: '🟢',
+    warn: '🟡',
+    fail: '🔴',
+    manual: '⚪',
+};
+const STATUS_TEXT_ZH = {
+    pass: '合规', warn: '部分', fail: '不合规', manual: '待确认',
+};
+const STATUS_TEXT_EN = {
+    pass: 'Pass', warn: 'Partial', fail: 'Fail', manual: 'Manual',
+};
+const REGULATION_ORDER = ['CSL', 'PIPL', 'MLPS', 'CBDT', 'GENAI'];
+/** 渲染合规体检报告为 Markdown。locale 决定中英文。 */
+export function renderComplianceReport(report, locale) {
+    const zh = locale === 'zh';
+    const L = [];
+    // ===== 标题 + 总评分卡 =====
+    L.push(zh ? '# 🛡️ AI 应用合规体检报告' : '# 🛡️ AI Application Compliance Report');
+    L.push('');
+    L.push(zh
+        ? `> ShellWard 合规网关自动生成 · ${report.generatedAt.slice(0, 19).replace('T', ' ')} UTC`
+        : `> Generated by ShellWard Compliance Gateway · ${report.generatedAt.slice(0, 19).replace('T', ' ')} UTC`);
+    L.push('');
+    const bar = scoreBar(report.score);
+    L.push(zh ? '## 总评' : '## Overall');
+    L.push('');
+    L.push(`**${zh ? '合规得分' : 'Score'}: ${report.score}/100　${gradeBadge(report.grade)}**`);
+    L.push('');
+    L.push('```');
+    L.push(`${bar}  ${report.score}/100  [${report.grade}]`);
+    L.push('```');
+    L.push('');
+    L.push(zh
+        ? `🟢 合规 ${report.passed} ｜ 🟡 部分 ${report.warned} ｜ 🔴 不合规 ${report.failed} ｜ ⚪ 待确认 ${report.manual}　(共 ${report.total} 项)`
+        : `🟢 Pass ${report.passed} ｜ 🟡 Partial ${report.warned} ｜ 🔴 Fail ${report.failed} ｜ ⚪ Manual ${report.manual}　(${report.total} controls)`);
+    if (report.projectPenalty && report.projectPenalty > 0) {
+        L.push('');
+        L.push(zh
+            ? `> 含项目实测风险扣分 **-${report.projectPenalty}**（见下方「项目实测风险」）`
+            : `> Includes **-${report.projectPenalty}** from project scan findings (see Project Scan Findings)`);
+    }
+    L.push('');
+    // ===== 优先整改（fail 项，按严重度） =====
+    const fails = report.results
+        .filter(r => r.status === 'fail')
+        .sort((a, b) => severityRank(b) - severityRank(a));
+    if (fails.length > 0) {
+        L.push(zh ? '## ⚠️ 优先整改项' : '## ⚠️ Priority Fixes');
+        L.push('');
+        for (const r of fails) {
+            L.push(`- 🔴 **${zh ? r.control.title_zh : r.control.title_en}** `
+                + `(${regName(r.control.regulation, zh)} ${r.control.article})`);
+            L.push(`  - ${zh ? '整改' : 'Fix'}: ${zh ? r.control.remediation_zh : r.control.remediation_en}`);
+        }
+        L.push('');
+    }
+    // ===== 按法规分组明细 =====
+    L.push(zh ? '## 分项明细' : '## Detailed Results');
+    L.push('');
+    const grouped = groupByRegulation(report.results);
+    for (const reg of REGULATION_ORDER) {
+        const items = grouped[reg];
+        if (!items || items.length === 0)
+            continue;
+        L.push(`### ${regName(reg, zh)}`);
+        L.push('');
+        L.push(zh
+            ? '| 状态 | 控制项 | 条款 | 结论 |'
+            : '| Status | Control | Article | Result |');
+        L.push('|---|---|---|---|');
+        for (const r of items) {
+            const icon = STATUS_ICON[r.status];
+            const txt = zh ? STATUS_TEXT_ZH[r.status] : STATUS_TEXT_EN[r.status];
+            const title = zh ? r.control.title_zh : r.control.title_en;
+            const detail = (zh ? r.detail_zh : r.detail_en).replace(/\|/g, '/').replace(/\n/g, ' ');
+            L.push(`| ${icon} ${txt} | ${title} | ${r.control.article} | ${detail} |`);
+        }
+        L.push('');
+    }
+    // ===== 免责声明 =====
+    L.push('---');
+    L.push(zh
+        ? '> **说明**：本报告帮助评估并满足合规技术要求，不构成法律意见，亦不替代算法备案/定级备案/PIA 等主体责任。⚪ 待确认项需结合业务人工判定。'
+        : '> **Note**: This report assists with technical compliance and is not legal advice. ⚪ items require manual review.');
+    return L.join('\n');
+}
+const KIND_LABEL = {
+    overseas: { zh: '数据出境风险', en: 'Data export risk', icon: '🌐' },
+    secret: { zh: '硬编码密钥', en: 'Hardcoded secret', icon: '🔑' },
+    pii: { zh: '个人信息暴露', en: 'PII exposure', icon: '🪪' },
+    'env-perm': { zh: '.env 权限', en: '.env permission', icon: '📂' },
+};
+const KIND_ORDER = ['overseas', 'secret', 'pii', 'env-perm'];
+/**
+ * 渲染「项目实测风险」段 —— 关于用户项目的真实发现 (文件:行)，
+ * 这是评分卡可截图、可信的关键。附加在合规报告之后。
+ */
+export function renderProjectFindings(scan, locale) {
+    const zh = locale === 'zh';
+    const L = [];
+    L.push(zh ? '## 🔍 项目实测风险' : '## 🔍 Project Scan Findings');
+    L.push('');
+    L.push(zh
+        ? `> 已扫描 ${scan.filesScanned} 个文件${scan.truncated ? '（已达上限，部分未扫）' : ''}`
+        : `> Scanned ${scan.filesScanned} files${scan.truncated ? ' (limit reached, partial)' : ''}`);
+    L.push('');
+    if (scan.findings.length === 0) {
+        L.push(zh ? '🟢 未在项目文件中发现硬编码密钥、个人信息暴露或境外端点。' : '🟢 No hardcoded secrets, PII exposure, or overseas endpoints found in project files.');
+        L.push('');
+        return L.join('\n');
+    }
+    // 概览计数
+    const counts = KIND_ORDER
+        .filter(k => scan.counts[k] > 0)
+        .map(k => `${KIND_LABEL[k].icon} ${zh ? KIND_LABEL[k].zh : KIND_LABEL[k].en}: ${scan.counts[k]}`)
+        .join('　｜　');
+    L.push(`**${counts}**`);
+    L.push('');
+    // 按类型分组列出（每类最多 15 条，避免报告过长）
+    for (const kind of KIND_ORDER) {
+        const items = scan.findings.filter(f => f.kind === kind);
+        if (items.length === 0)
+            continue;
+        const label = KIND_LABEL[kind];
+        L.push(`### ${label.icon} ${zh ? label.zh : label.en} (${items.length})`);
+        L.push('');
+        for (const f of items.slice(0, 15)) {
+            const loc = f.line ? `${f.file}:${f.line}` : f.file;
+            L.push(`- \`${loc}\` — ${f.detail}`);
+        }
+        if (items.length > 15) {
+            L.push(zh ? `- …其余 ${items.length - 15} 项` : `- …and ${items.length - 15} more`);
+        }
+        L.push('');
+    }
+    // 处方：境内合规替代建议（仅当存在境外模型风险时）
+    L.push(...renderDomesticGuidance(scan, locale));
+    return L.join('\n');
+}
+/** 渲染「境内合规替代建议」—— 把数据出境风险变成可执行的迁移处方 */
+function renderDomesticGuidance(scan, locale) {
+    const zh = locale === 'zh';
+    const overseas = scan.findings.filter(f => f.kind === 'overseas');
+    if (overseas.length === 0)
+        return [];
+    // 去重境外厂商
+    const seen = new Set();
+    const providers = [];
+    for (const f of overseas) {
+        const key = (f.endpointId || f.provider_en || f.provider_zh || '').toLowerCase();
+        if (!key || seen.has(key))
+            continue;
+        seen.add(key);
+        providers.push({ key: f.endpointId || f.provider_en || '', zh: f.provider_zh, en: f.provider_en });
+    }
+    const L = [];
+    L.push(zh ? '## ✅ 境内合规替代建议' : '## ✅ Domestic Compliance Alternatives');
+    L.push('');
+    L.push(zh
+        ? '把数据出境风险变成可执行的迁移路径。境内主流模型多为 **OpenAI 兼容**接口：'
+        : 'Turn data-export risk into a concrete migration path. Most domestic models are **OpenAI-compatible**:');
+    L.push('');
+    // 每个境外厂商的迁移难度
+    for (const p of providers) {
+        const s = suggestDomestic(p.key, p.zh, p.en);
+        L.push(zh
+            ? `- **${s.overseas_zh}** → 迁移难度: ${s.difficulty_zh}`
+            : `- **${s.overseas_en}** → migration: ${s.difficulty_en}`);
+    }
+    L.push('');
+    // 共享的境内候选表（取第一个建议的 alternatives，避免重复）
+    const alts = suggestDomestic(providers[0].key, providers[0].zh, providers[0].en).alternatives;
+    L.push(zh ? '| 境内模型 | 厂商 | OpenAI 兼容 base_url |' : '| Domestic model | Vendor | OpenAI-compatible base_url |');
+    L.push('|---|---|---|');
+    for (const m of alts) {
+        L.push(`| ${zh ? m.name_zh : m.name_en} | ${m.vendor_zh} | \`${m.baseUrl}\` |`);
+    }
+    L.push('');
+    L.push(zh
+        ? '> 对使用 `openai` SDK 的项目：通常仅需把 `base_url` 与 `api_key` 换成上表任一境内模型即可，业务代码无需改动。迁移前请以各厂商官方文档为准。'
+        : '> For projects using the `openai` SDK: usually just swap `base_url` + `api_key` to a domestic model above — no business-code change. Verify against each vendor’s official docs first.');
+    L.push('');
+    return L;
+}
+function scoreBar(score) {
+    const filled = Math.round(score / 5);
+    return '█'.repeat(filled) + '░'.repeat(20 - filled);
+}
+function gradeBadge(grade) {
+    const map = {
+        A: '🏆 优秀', B: '✅ 良好', C: '⚠️ 及格', D: '❌ 不及格',
+    };
+    return map[grade] || grade;
+}
+function severityRank(r) {
+    return { critical: 4, high: 3, medium: 2, low: 1 }[r.control.severity];
+}
+function regName(reg, zh) {
+    return zh ? REGULATION_NAMES[reg].zh : REGULATION_NAMES[reg].en;
+}
+function groupByRegulation(results) {
+    const out = {};
+    for (const r of results) {
+        ;
+        (out[r.control.regulation] ||= []).push(r);
+    }
+    return out;
+}

package/dist/mcp-server.js

@@ -21,6 +21,8 @@
 //   }
 import { ShellWard } from './core/engine.js';
 import { McpBaseline } from './mcp-baseline.js';
+import { runComplianceAudit } from './compliance/audit.js';
+import { renderComplianceReport } from './compliance/report.js';
 import { readFileSync } from 'fs';
 import { createInterface } from 'readline';
 import { fileURLToPath } from 'url';
@@ -140,6 +142,16 @@ const TOOLS = [
             properties: {},
         },
     },
+    {
+        name: 'compliance_check',
+        description: 'Run a China AI-compliance health check (网安法/PIPL/等保2.0/数据出境/AI标识) and return a red/yellow/green scorecard report. Detects overseas LLM endpoints (data-export risk), audit-log retention, enabled defense layers, and root execution.',
+        inputSchema: {
+            type: 'object',
+            properties: {
+                format: { type: 'string', enum: ['report', 'json'], description: 'Output format: "report" (Markdown scorecard, default) or "json" (raw result)' },
+            },
+        },
+    },
 ];
 // ===== Tool Execution =====
 function executeTool(name, args) {
@@ -263,6 +275,30 @@ function executeTool(name, args) {
                 ],
             };
         }
+        case 'compliance_check': {
+            const report = runComplianceAudit(guard.config);
+            if (args.format === 'json') {
+                return {
+                    score: report.score,
+                    grade: report.grade,
+                    passed: report.passed,
+                    warned: report.warned,
+                    failed: report.failed,
+                    manual: report.manual,
+                    total: report.total,
+                    results: report.results.map(r => ({
+                        id: r.control.id,
+                        regulation: r.control.regulation,
+                        article: r.control.article,
+                        title: guard.locale === 'zh' ? r.control.title_zh : r.control.title_en,
+                        status: r.status,
+                        detail: guard.locale === 'zh' ? r.detail_zh : r.detail_en,
+                    })),
+                };
+            }
+            // default: return Markdown report as text
+            return { report: renderComplianceReport(report, guard.locale) };
+        }
         default:
             throw new Error(`Unknown tool: ${name}`);
     }

package/dist/rules/domestic-alternatives.d.ts

@@ -0,0 +1,27 @@
+export interface DomesticModel {
+    id: string;
+    name_zh: string;
+    name_en: string;
+    vendor_zh: string;
+    /** OpenAI 兼容 base_url（若支持） */
+    baseUrl: string;
+    /** 是否提供 OpenAI 兼容接口（决定迁移难度） */
+    openaiCompatible: boolean;
+}
+/** 境内主流大模型（均为境内可备案/合规部署，按知名度排序） */
+export declare const DOMESTIC_MODELS: DomesticModel[];
+export interface DomesticSuggestion {
+    /** 触发的境外厂商（中文） */
+    overseas_zh: string;
+    overseas_en: string;
+    /** 迁移难度 */
+    difficulty_zh: string;
+    difficulty_en: string;
+    /** 推荐的境内替代（取兼容优先的前几个） */
+    alternatives: DomesticModel[];
+}
+/**
+ * 针对某个境外厂商给出境内替代建议。
+ * @param key endpointId（如 'openai'）或 provider_en（如 'OpenAI'）
+ */
+export declare function suggestDomestic(key: string, provider_zh?: string, provider_en?: string): DomesticSuggestion;

package/dist/rules/domestic-alternatives.js

@@ -0,0 +1,62 @@
+// src/rules/domestic-alternatives.ts — 境内已备案大模型替代建议
+//
+// 扫到境外大模型（端点/SDK 依赖）后，给出可执行的「境内合规替代」处方：
+// 把"你有数据出境风险"变成"换成这个、这样换"。这是 ShellWard 面向中国
+// 市场最具差异化、最可执行的一环 —— 英文工具不会做。
+//
+// 杀手锏：境内主流模型多数提供 **OpenAI 兼容接口**，对 `openai` SDK 的项目
+// 往往只需改 base_url + api key、代码零改动即可迁移到合规模型。
+//
+// 注：base_url 为各厂商公开的 OpenAI 兼容端点（可能随官方调整，迁移前以官方文档为准）。
+/** 境内主流大模型（均为境内可备案/合规部署，按知名度排序） */
+export const DOMESTIC_MODELS = [
+    {
+        id: 'qwen', name_zh: '通义千问', name_en: 'Qwen', vendor_zh: '阿里云百炼/DashScope',
+        baseUrl: 'https://dashscope.aliyuncs.com/compatible-mode/v1', openaiCompatible: true,
+    },
+    {
+        id: 'deepseek', name_zh: 'DeepSeek', name_en: 'DeepSeek', vendor_zh: '深度求索',
+        baseUrl: 'https://api.deepseek.com', openaiCompatible: true,
+    },
+    {
+        id: 'kimi', name_zh: 'Kimi', name_en: 'Kimi (Moonshot)', vendor_zh: '月之暗面',
+        baseUrl: 'https://api.moonshot.cn/v1', openaiCompatible: true,
+    },
+    {
+        id: 'glm', name_zh: '智谱 GLM', name_en: 'Zhipu GLM', vendor_zh: '智谱 AI',
+        baseUrl: 'https://open.bigmodel.cn/api/paas/v4', openaiCompatible: true,
+    },
+    {
+        id: 'doubao', name_zh: '豆包', name_en: 'Doubao', vendor_zh: '字节火山方舟',
+        baseUrl: 'https://ark.cn-beijing.volces.com/api/v3', openaiCompatible: true,
+    },
+    {
+        id: 'ernie', name_zh: '文心一言', name_en: 'ERNIE', vendor_zh: '百度千帆',
+        baseUrl: 'https://qianfan.baidubce.com/v2', openaiCompatible: true,
+    },
+];
+// 哪些境外厂商走 OpenAI 兼容协议（其 SDK 项目可零代码迁移到境内兼容端点）
+const OPENAI_PROTOCOL = new Set(['openai', 'azure-openai', 'groq', 'together', 'mistral', 'perplexity', 'openrouter', 'xai']);
+/**
+ * 针对某个境外厂商给出境内替代建议。
+ * @param key endpointId（如 'openai'）或 provider_en（如 'OpenAI'）
+ */
+export function suggestDomestic(key, provider_zh, provider_en) {
+    const k = key.toLowerCase();
+    const isOpenAiProtocol = OPENAI_PROTOCOL.has(k) || /openai/.test(k);
+    // 推荐：OpenAI 兼容的境内模型优先（迁移最省事）
+    const alternatives = DOMESTIC_MODELS.filter(m => m.openaiCompatible).slice(0, 4);
+    const difficulty_zh = isOpenAiProtocol
+        ? '低 — 多为 OpenAI 兼容协议，通常只需改 base_url + API key，代码零改动'
+        : '中 — SDK 不同，建议改用境内模型的 OpenAI 兼容端点并调整调用代码';
+    const difficulty_en = isOpenAiProtocol
+        ? 'Low — OpenAI-compatible; usually just swap base_url + API key, no code change'
+        : 'Medium — different SDK; switch to a domestic OpenAI-compatible endpoint and adjust calls';
+    return {
+        overseas_zh: provider_zh || key,
+        overseas_en: provider_en || key,
+        difficulty_zh,
+        difficulty_en,
+        alternatives,
+    };
+}

package/dist/rules/overseas-llm.d.ts

@@ -0,0 +1,37 @@
+export interface OverseasEndpoint {
+    id: string;
+    /** 主机名匹配（小写、去端口）。命中其一即视为境外大模型端点 */
+    hosts: string[];
+    provider_zh: string;
+    provider_en: string;
+}
+export declare const OVERSEAS_LLM_ENDPOINTS: OverseasEndpoint[];
+export interface OverseasMatch {
+    isOverseas: boolean;
+    endpointId?: string;
+    provider_zh?: string;
+    provider_en?: string;
+    host?: string;
+}
+/**
+ * 从任意字符串（URL / base_url / 命令行 / 配置）中提取主机名并判断是否境外大模型端点。
+ * 同时识别裸 URL 与命令行里的 https://... 形式。
+ */
+export declare function detectOverseasLLM(text: string): OverseasMatch;
+/** 包名（小写）→ 厂商 */
+export declare const OVERSEAS_LLM_PACKAGES: Record<string, {
+    zh: string;
+    en: string;
+}>;
+export interface DepMatch {
+    pkg: string;
+    provider_zh: string;
+    provider_en: string;
+}
+/** 依赖清单文件名（小写）判定 */
+export declare function isDependencyManifest(filename: string): boolean;
+/**
+ * 从依赖清单内容中提取境外大模型 SDK 依赖。
+ * 对 package.json 解析 JSON 的 deps/devDeps/peerDeps；其余按"出现包名"宽松匹配。
+ */
+export declare function detectOverseasDeps(filename: string, content: string): DepMatch[];

package/dist/rules/overseas-llm.js

@@ -0,0 +1,147 @@
+// src/rules/overseas-llm.ts — 境外大模型端点识别（数据出境检测）
+//
+// 中国差异化能力：识别请求是否指向「境外大模型 / 境外 AI 服务」端点。
+// 在中国监管下，向境外大模型 API 发送个人信息/重要数据 = 数据出境，受
+// 《促进数据跨境流动规定》《数据出境安全评估办法》约束。英文工具没有
+// "出境"概念，这是 ShellWard 面向中国市场的护城河之一。
+//
+// 用途：
+//   - 体检引擎据此判断"是否存在数据出境风险"
+//   - 网关层据此标记"数据出境"事件 / 触发出境前脱敏（路线图）
+//
+// 边界：仅做端点归属判断（不做 IP 归属解析），覆盖主流境外大模型与聚合网关。
+export const OVERSEAS_LLM_ENDPOINTS = [
+    { id: 'openai', hosts: ['api.openai.com', 'openai.com'], provider_zh: 'OpenAI', provider_en: 'OpenAI' },
+    { id: 'anthropic', hosts: ['api.anthropic.com', 'anthropic.com'], provider_zh: 'Anthropic Claude', provider_en: 'Anthropic Claude' },
+    { id: 'google', hosts: ['generativelanguage.googleapis.com', 'aiplatform.googleapis.com'], provider_zh: 'Google Gemini', provider_en: 'Google Gemini' },
+    { id: 'azure-openai', hosts: ['openai.azure.com'], provider_zh: 'Azure OpenAI', provider_en: 'Azure OpenAI' },
+    { id: 'aws-bedrock', hosts: ['bedrock-runtime', 'bedrock.', 'amazonaws.com'], provider_zh: 'AWS Bedrock', provider_en: 'AWS Bedrock' },
+    { id: 'cohere', hosts: ['api.cohere.ai', 'api.cohere.com'], provider_zh: 'Cohere', provider_en: 'Cohere' },
+    { id: 'mistral', hosts: ['api.mistral.ai'], provider_zh: 'Mistral AI', provider_en: 'Mistral AI' },
+    { id: 'groq', hosts: ['api.groq.com'], provider_zh: 'Groq', provider_en: 'Groq' },
+    { id: 'together', hosts: ['api.together.xyz', 'api.together.ai'], provider_zh: 'Together AI', provider_en: 'Together AI' },
+    { id: 'perplexity', hosts: ['api.perplexity.ai'], provider_zh: 'Perplexity', provider_en: 'Perplexity' },
+    { id: 'openrouter', hosts: ['openrouter.ai'], provider_zh: 'OpenRouter (聚合网关)', provider_en: 'OpenRouter (gateway)' },
+    { id: 'huggingface', hosts: ['api-inference.huggingface.co', 'huggingface.co'], provider_zh: 'HuggingFace', provider_en: 'HuggingFace' },
+    { id: 'xai', hosts: ['api.x.ai'], provider_zh: 'xAI Grok', provider_en: 'xAI Grok' },
+];
+/**
+ * 从任意字符串（URL / base_url / 命令行 / 配置）中提取主机名并判断是否境外大模型端点。
+ * 同时识别裸 URL 与命令行里的 https://... 形式。
+ */
+export function detectOverseasLLM(text) {
+    if (!text)
+        return { isOverseas: false };
+    const lower = text.toLowerCase();
+    // 提取所有候选主机名：URL 中的 host，或文本中出现的端点关键字
+    const hosts = extractHosts(lower);
+    for (const ep of OVERSEAS_LLM_ENDPOINTS) {
+        for (const h of ep.hosts) {
+            // host 列表里带 '.' 或子串形式（如 'bedrock.'）做包含匹配，纯域名做后缀/相等匹配
+            const hit = hosts.some(host => host === h || host.endsWith('.' + h) || host.includes(h))
+                || lower.includes('://' + h)
+                || lower.includes(h);
+            if (hit) {
+                return {
+                    isOverseas: true,
+                    endpointId: ep.id,
+                    provider_zh: ep.provider_zh,
+                    provider_en: ep.provider_en,
+                    host: h,
+                };
+            }
+        }
+    }
+    return { isOverseas: false };
+}
+// ===== 境外大模型 SDK 依赖检测 =====
+// 几乎每个国产 AI 项目的依赖清单里都躺着 openai/anthropic 等境外 SDK —— 这是
+// 一条"数据出境通道"，命中率远高于扫 URL 字符串。英文工具不会把它框定为"出境"。
+/** 包名（小写）→ 厂商 */
+export const OVERSEAS_LLM_PACKAGES = {
+    // npm
+    'openai': { zh: 'OpenAI', en: 'OpenAI' },
+    '@anthropic-ai/sdk': { zh: 'Anthropic Claude', en: 'Anthropic Claude' },
+    '@google/generative-ai': { zh: 'Google Gemini', en: 'Google Gemini' },
+    '@google-cloud/aiplatform': { zh: 'Google Vertex AI', en: 'Google Vertex AI' },
+    'cohere-ai': { zh: 'Cohere', en: 'Cohere' },
+    '@mistralai/mistralai': { zh: 'Mistral AI', en: 'Mistral AI' },
+    'groq-sdk': { zh: 'Groq', en: 'Groq' },
+    '@huggingface/inference': { zh: 'HuggingFace', en: 'HuggingFace' },
+    'replicate': { zh: 'Replicate', en: 'Replicate' },
+    '@langchain/openai': { zh: 'OpenAI (LangChain)', en: 'OpenAI (LangChain)' },
+    '@langchain/anthropic': { zh: 'Anthropic (LangChain)', en: 'Anthropic (LangChain)' },
+    '@langchain/google-genai': { zh: 'Gemini (LangChain)', en: 'Gemini (LangChain)' },
+    // python
+    'anthropic': { zh: 'Anthropic Claude', en: 'Anthropic Claude' },
+    'google-generativeai': { zh: 'Google Gemini', en: 'Google Gemini' },
+    'google-cloud-aiplatform': { zh: 'Google Vertex AI', en: 'Google Vertex AI' },
+    'cohere': { zh: 'Cohere', en: 'Cohere' },
+    'mistralai': { zh: 'Mistral AI', en: 'Mistral AI' },
+    'groq': { zh: 'Groq', en: 'Groq' },
+    'together': { zh: 'Together AI', en: 'Together AI' },
+    'huggingface-hub': { zh: 'HuggingFace', en: 'HuggingFace' },
+    'langchain-openai': { zh: 'OpenAI (LangChain)', en: 'OpenAI (LangChain)' },
+    'langchain-anthropic': { zh: 'Anthropic (LangChain)', en: 'Anthropic (LangChain)' },
+    'langchain-google-genai': { zh: 'Gemini (LangChain)', en: 'Gemini (LangChain)' },
+    // go
+    'github.com/sashabaranov/go-openai': { zh: 'OpenAI (Go)', en: 'OpenAI (Go)' },
+    'github.com/anthropics/anthropic-sdk-go': { zh: 'Anthropic (Go)', en: 'Anthropic (Go)' },
+};
+/** 依赖清单文件名（小写）判定 */
+export function isDependencyManifest(filename) {
+    const f = filename.toLowerCase();
+    return f === 'package.json' || f === 'requirements.txt' || f === 'pyproject.toml' || f === 'go.mod';
+}
+/**
+ * 从依赖清单内容中提取境外大模型 SDK 依赖。
+ * 对 package.json 解析 JSON 的 deps/devDeps/peerDeps；其余按"出现包名"宽松匹配。
+ */
+export function detectOverseasDeps(filename, content) {
+    const f = filename.toLowerCase();
+    const names = new Set();
+    if (f === 'package.json') {
+        try {
+            const json = JSON.parse(content);
+            for (const field of ['dependencies', 'devDependencies', 'peerDependencies', 'optionalDependencies']) {
+                const deps = json[field];
+                if (deps && typeof deps === 'object') {
+                    for (const k of Object.keys(deps))
+                        names.add(k.toLowerCase());
+                }
+            }
+        }
+        catch { /* 解析失败则跳过 */ }
+    }
+    else {
+        // requirements.txt / pyproject.toml / go.mod：按行宽松提取包名 token
+        for (const raw of content.split('\n')) {
+            const line = raw.trim().toLowerCase();
+            if (!line || line.startsWith('#') || line.startsWith('//'))
+                continue;
+            // 提取依赖名：requirements `pkg==x` / pyproject `"pkg>=x"` / go.mod `module vX`
+            const tokens = line.match(/[a-z0-9_.\-\/@]+/g) || [];
+            for (const t of tokens)
+                names.add(t);
+        }
+    }
+    const matches = [];
+    const seen = new Set();
+    for (const [pkg, prov] of Object.entries(OVERSEAS_LLM_PACKAGES)) {
+        if (names.has(pkg.toLowerCase()) && !seen.has(pkg)) {
+            seen.add(pkg);
+            matches.push({ pkg, provider_zh: prov.zh, provider_en: prov.en });
+        }
+    }
+    return matches;
+}
+/** 从文本中粗提取主机名（URL host 段） */
+function extractHosts(lowerText) {
+    const hosts = [];
+    const urlRe = /https?:\/\/([a-z0-9.\-]+)(?::\d+)?/g;
+    let m;
+    while ((m = urlRe.exec(lowerText)) !== null) {
+        hosts.push(m[1]);
+    }
+    return hosts;
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "shellward",
-  "version": "0.6.1",
+  "version": "0.6.3",
   "mcpName": "io.github.jnMetaCode/shellward",
   "description": "AI agent security & MCP security middleware — prompt injection detection, AI firewall, runtime guardrails & data-loss prevention for LLM tool calls. 8-layer defense against data exfiltration & dangerous commands. Zero dependencies. SDK + OpenClaw plugin. Supports LangChain, AutoGPT, Claude Code, Cursor, OpenAI Agents, Hermes Agent.",
   "keywords": [
@@ -43,7 +43,7 @@
   },
   "type": "module",
   "bin": {
-    "shellward": "dist/mcp-server.js",
+    "shellward": "dist/cli.js",
     "shellward-mcp": "dist/mcp-server.js"
   },
   "main": "dist/index.js",
@@ -57,8 +57,9 @@
   "scripts": {
     "build": "tsc",
     "mcp": "npx tsx src/mcp-server.ts",
-    "test": "npx tsx test-sdk.ts && npx tsx test-integration.ts && npx tsx test-edge-cases.ts && npx tsx test-rugpull.ts && npx tsx test-redos.ts && npx tsx test-mcp-client.ts && npx tsx test-mcp.ts",
+    "test": "npx tsx test-sdk.ts && npx tsx test-integration.ts && npx tsx test-edge-cases.ts && npx tsx test-rugpull.ts && npx tsx test-redos.ts && npx tsx test-mcp-client.ts && npx tsx test-mcp.ts && npx tsx test-compliance.ts",
     "test:redos": "npx tsx test-redos.ts",
+    "test:compliance": "npx tsx test-compliance.ts",
     "test:integration": "npx tsx test-integration.ts",
     "test:edge": "npx tsx test-edge-cases.ts",
     "test:sdk": "npx tsx test-sdk.ts",