shieldcortex 2.0.0

package/dist/defence/audit/queries.js

@@ -0,0 +1,103 @@
+/**
+ * Forensic query helpers for the defence audit log
+ */
+import { getDatabase } from '../../database/init.js';
+// ── Query Functions ──
+/**
+ * Query audit logs with flexible filters.
+ */
+export function queryAuditLogs(options = {}) {
+    const db = getDatabase();
+    const conditions = [];
+    const params = {};
+    if (options.startTime) {
+        conditions.push('timestamp >= @startTime');
+        params.startTime = options.startTime;
+    }
+    if (options.endTime) {
+        conditions.push('timestamp <= @endTime');
+        params.endTime = options.endTime;
+    }
+    if (options.firewallResult) {
+        conditions.push('firewall_result = @firewallResult');
+        params.firewallResult = options.firewallResult;
+    }
+    if (options.source) {
+        conditions.push('source_type = @source');
+        params.source = options.source;
+    }
+    if (options.memoryId !== undefined) {
+        conditions.push('memory_id = @memoryId');
+        params.memoryId = options.memoryId;
+    }
+    const where = conditions.length > 0 ? `WHERE ${conditions.join(' AND ')}` : '';
+    const limit = options.limit ?? 50;
+    const sql = `SELECT * FROM defence_audit ${where} ORDER BY timestamp DESC LIMIT @limit`;
+    params.limit = limit;
+    return db.prepare(sql).all(params);
+}
+/**
+ * Get aggregate audit statistics for a time range.
+ */
+export function getAuditStats(timeRange) {
+    const db = getDatabase();
+    const hoursMap = { '24h': 24, '7d': 168, '30d': 720 };
+    const hours = hoursMap[timeRange];
+    const since = new Date(Date.now() - hours * 3600_000).toISOString();
+    // Counts by firewall result
+    const counts = db.prepare(`
+    SELECT firewall_result, COUNT(*) as cnt
+    FROM defence_audit
+    WHERE timestamp >= ?
+    GROUP BY firewall_result
+  `).all(since);
+    let totalOperations = 0;
+    let allowedCount = 0;
+    let blockedCount = 0;
+    let quarantinedCount = 0;
+    for (const row of counts) {
+        totalOperations += row.cnt;
+        if (row.firewall_result === 'ALLOW')
+            allowedCount = row.cnt;
+        else if (row.firewall_result === 'BLOCK')
+            blockedCount = row.cnt;
+        else if (row.firewall_result === 'QUARANTINE')
+            quarantinedCount = row.cnt;
+    }
+    // Top sources
+    const topSources = db.prepare(`
+    SELECT source_type as source, COUNT(*) as count
+    FROM defence_audit
+    WHERE timestamp >= ?
+    GROUP BY source_type
+    ORDER BY count DESC
+    LIMIT 10
+  `).all(since);
+    // Threat indicator breakdown
+    const rows = db.prepare(`
+    SELECT threat_indicators
+    FROM defence_audit
+    WHERE timestamp >= ? AND threat_indicators != '[]'
+  `).all(since);
+    const threatBreakdown = {};
+    for (const row of rows) {
+        try {
+            const indicators = JSON.parse(row.threat_indicators);
+            for (const indicator of indicators) {
+                threatBreakdown[indicator] = (threatBreakdown[indicator] ?? 0) + 1;
+            }
+        }
+        catch {
+            // Skip malformed JSON
+        }
+    }
+    return {
+        totalOperations,
+        allowedCount,
+        blockedCount,
+        quarantinedCount,
+        topSources,
+        threatBreakdown,
+    };
+}
+//# sourceMappingURL=queries.js.map

package/dist/defence/audit/queries.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"queries.js","sourceRoot":"","sources":["../../../src/defence/audit/queries.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,wBAAwB,CAAC;AAwBrD,wBAAwB;AAExB;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,UAA6B,EAAE;IAC5D,MAAM,EAAE,GAAG,WAAW,EAAE,CAAC;IACzB,MAAM,UAAU,GAAa,EAAE,CAAC;IAChC,MAAM,MAAM,GAA4B,EAAE,CAAC;IAE3C,IAAI,OAAO,CAAC,SAAS,EAAE,CAAC;QACtB,UAAU,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;QAC3C,MAAM,CAAC,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC;IACvC,CAAC;IACD,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;QACpB,UAAU,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;QACzC,MAAM,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;IACnC,CAAC;IACD,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;QAC3B,UAAU,CAAC,IAAI,CAAC,mCAAmC,CAAC,CAAC;QACrD,MAAM,CAAC,cAAc,GAAG,OAAO,CAAC,cAAc,CAAC;IACjD,CAAC;IACD,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;QACnB,UAAU,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;QACzC,MAAM,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IACjC,CAAC;IACD,IAAI,OAAO,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;QACnC,UAAU,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;QACzC,MAAM,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,CAAC;IACrC,CAAC;IAED,MAAM,KAAK,GAAG,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,SAAS,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;IAC/E,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,EAAE,CAAC;IAElC,MAAM,GAAG,GAAG,+BAA+B,KAAK,uCAAuC,CAAC;IACxF,MAAM,CAAC,KAAK,GAAG,KAAK,CAAC;IAErB,OAAO,EAAE,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,MAAM,CAAiB,CAAC;AACrD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,SAA+B;IAC3D,MAAM,EAAE,GAAG,WAAW,EAAE,CAAC;IAEzB,MAAM,QAAQ,GAAG,EAAE,KAAK,EAAE,EAAE,EAAE,IAAI,EAAE,GAAG,EAAE,KAAK,EAAE,GAAG,EAAE,CAAC;IACtD,MAAM,KAAK,GAAG,QAAQ,CAAC,SAAS,CAAC,CAAC;IAClC,MAAM,KAAK,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,KAAK,GAAG,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC;IAEpE,4BAA4B;IAC5B,MAAM,MAAM,GAAG,EAAE,CAAC,OAAO,CAAC;;;;;GAKzB,CAAC,CAAC,GAAG,CAAC,KAAK,CAA+C,CAAC;IAE5D,IAAI,eAAe,GAAG,CAAC,CAAC;IACxB,IAAI,YAAY,GAAG,CAAC,CAAC;IACrB,IAAI,YAAY,GAAG,CAAC,CAAC;IACrB,IAAI,gBAAgB,GAAG,CAAC,CAAC;IAEzB,KAAK,MAAM,GAAG,IAAI,MAAM,EAAE,CAAC;QACzB,eAAe,IAAI,GAAG,CAAC,GAAG,CAAC;QAC3B,IAAI,GAAG,CAAC,eAAe,KAAK,OAAO;YAAE,YAAY,GAAG,GAAG,CAAC,GAAG,CAAC;aACvD,IAAI,GAAG,CAAC,eAAe,KAAK,OAAO;YAAE,YAAY,GAAG,GAAG,CAAC,GAAG,CAAC;aAC5D,IAAI,GAAG,CAAC,eAAe,KAAK,YAAY;YAAE,gBAAgB,GAAG,GAAG,CAAC,GAAG,CAAC;IAC5E,CAAC;IAED,cAAc;IACd,MAAM,UAAU,GAAG,EAAE,CAAC,OAAO,CAAC;;;;;;;GAO7B,CAAC,CAAC,GAAG,CAAC,KAAK,CAAwC,CAAC;IAErD,6BAA6B;IAC7B,MAAM,IAAI,GAAG,EAAE,CAAC,OAAO,CAAC;;;;GAIvB,CAAC,CAAC,GAAG,CAAC,KAAK,CAAoC,CAAC;IAEjD,MAAM,eAAe,GAA2B,EAAE,CAAC;IACnD,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,IAAI,CAAC;YACH,MAAM,UAAU,GAAa,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,iBAAiB,CAAC,CAAC;YAC/D,KAAK,MAAM,SAAS,IAAI,UAAU,EAAE,CAAC;gBACnC,eAAe,CAAC,SAAS,CAAC,GAAG,CAAC,eAAe,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;YACrE,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,sBAAsB;QACxB,CAAC;IACH,CAAC;IAED,OAAO;QACL,eAAe;QACf,YAAY;QACZ,YAAY;QACZ,gBAAgB;QAChB,UAAU;QACV,eAAe;KAChB,CAAC;AACJ,CAAC"}

package/dist/defence/firewall/anomaly-scorer.d.ts

@@ -0,0 +1,8 @@
+/**
+ * Anomaly Scorer
+ *
+ * Scores how anomalous content is compared to normal memory patterns.
+ * Returns 0 (normal) to 1 (very anomalous).
+ */
+export declare function scoreAnomaly(content: string, title: string): number;
+//# sourceMappingURL=anomaly-scorer.d.ts.map

package/dist/defence/firewall/anomaly-scorer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"anomaly-scorer.d.ts","sourceRoot":"","sources":["../../../src/defence/firewall/anomaly-scorer.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAQH,wBAAgB,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,GAAG,MAAM,CAoDnE"}

package/dist/defence/firewall/anomaly-scorer.js

@@ -0,0 +1,58 @@
+/**
+ * Anomaly Scorer
+ *
+ * Scores how anomalous content is compared to normal memory patterns.
+ * Returns 0 (normal) to 1 (very anomalous).
+ */
+const URL_PATTERN = /https?:\/\/[^\s"'<>]+/gi;
+const SPECIAL_CHAR_PATTERN = /[^a-zA-Z0-9\s.,!?;:'"()\-]/g;
+const ALL_CAPS_SECTION = /\b[A-Z]{5,}\b/g;
+const EXCESSIVE_PUNCTUATION = /[!?]{3,}/g;
+const CODE_INDICATORS = /[{}()\[\];=<>|&$`\\]/g;
+export function scoreAnomaly(content, title) {
+    const signals = [];
+    // Very long content
+    if (content.length > 5000) {
+        signals.push(Math.min((content.length - 5000) / 10000, 1.0) * 0.3);
+    }
+    // Special character ratio
+    const specialChars = (content.match(SPECIAL_CHAR_PATTERN) || []).length;
+    const specialRatio = specialChars / Math.max(content.length, 1);
+    if (specialRatio > 0.15) {
+        signals.push(Math.min((specialRatio - 0.15) / 0.35, 1.0) * 0.25);
+    }
+    // Many URLs
+    const urls = content.match(URL_PATTERN) || [];
+    if (urls.length > 3) {
+        signals.push(Math.min((urls.length - 3) / 7, 1.0) * 0.2);
+    }
+    // Mixed natural language with code/commands
+    const words = content.split(/\s+/).length;
+    const codeChars = (content.match(CODE_INDICATORS) || []).length;
+    const codeRatio = codeChars / Math.max(content.length, 1);
+    const hasNaturalLanguage = words > 10;
+    if (hasNaturalLanguage && codeRatio > 0.05) {
+        signals.push(Math.min(codeRatio / 0.15, 1.0) * 0.2);
+    }
+    // ALL CAPS sections
+    const capsMatches = content.match(ALL_CAPS_SECTION) || [];
+    if (capsMatches.length > 2) {
+        signals.push(Math.min(capsMatches.length / 10, 1.0) * 0.15);
+    }
+    // Excessive punctuation
+    const punctMatches = content.match(EXCESSIVE_PUNCTUATION) || [];
+    if (punctMatches.length > 0) {
+        signals.push(Math.min(punctMatches.length / 5, 1.0) * 0.15);
+    }
+    // Title anomalies — very long or very short titles
+    if (title.length > 200) {
+        signals.push(0.1);
+    }
+    else if (title.length === 0) {
+        signals.push(0.05);
+    }
+    // Sum all signals, cap at 1.0
+    const score = Math.min(signals.reduce((a, b) => a + b, 0), 1.0);
+    return Math.round(score * 100) / 100;
+}
+//# sourceMappingURL=anomaly-scorer.js.map

package/dist/defence/firewall/anomaly-scorer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"anomaly-scorer.js","sourceRoot":"","sources":["../../../src/defence/firewall/anomaly-scorer.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,MAAM,WAAW,GAAG,yBAAyB,CAAC;AAC9C,MAAM,oBAAoB,GAAG,6BAA6B,CAAC;AAC3D,MAAM,gBAAgB,GAAG,gBAAgB,CAAC;AAC1C,MAAM,qBAAqB,GAAG,WAAW,CAAC;AAC1C,MAAM,eAAe,GAAG,uBAAuB,CAAC;AAEhD,MAAM,UAAU,YAAY,CAAC,OAAe,EAAE,KAAa;IACzD,MAAM,OAAO,GAAa,EAAE,CAAC;IAE7B,oBAAoB;IACpB,IAAI,OAAO,CAAC,MAAM,GAAG,IAAI,EAAE,CAAC;QAC1B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,GAAG,KAAK,EAAE,GAAG,CAAC,GAAG,GAAG,CAAC,CAAC;IACrE,CAAC;IAED,0BAA0B;IAC1B,MAAM,YAAY,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,oBAAoB,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IACxE,MAAM,YAAY,GAAG,YAAY,GAAG,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;IAChE,IAAI,YAAY,GAAG,IAAI,EAAE,CAAC;QACxB,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,YAAY,GAAG,IAAI,CAAC,GAAG,IAAI,EAAE,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC;IACnE,CAAC;IAED,YAAY;IACZ,MAAM,IAAI,GAAG,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;IAC9C,IAAI,IAAI,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpB,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,CAAC,EAAE,GAAG,CAAC,GAAG,GAAG,CAAC,CAAC;IAC3D,CAAC;IAED,4CAA4C;IAC5C,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,MAAM,CAAC;IAC1C,MAAM,SAAS,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,eAAe,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;IAChE,MAAM,SAAS,GAAG,SAAS,GAAG,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC,CAAC;IAC1D,MAAM,kBAAkB,GAAG,KAAK,GAAG,EAAE,CAAC;IACtC,IAAI,kBAAkB,IAAI,SAAS,GAAG,IAAI,EAAE,CAAC;QAC3C,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,GAAG,IAAI,EAAE,GAAG,CAAC,GAAG,GAAG,CAAC,CAAC;IACtD,CAAC;IAED,oBAAoB;IACpB,MAAM,WAAW,GAAG,OAAO,CAAC,KAAK,CAAC,gBAAgB,CAAC,IAAI,EAAE,CAAC;IAC1D,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC3B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,WAAW,CAAC,MAAM,GAAG,EAAE,EAAE,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC;IAC9D,CAAC;IAED,wBAAwB;IACxB,MAAM,YAAY,GAAG,OAAO,CAAC,KAAK,CAAC,qBAAqB,CAAC,IAAI,EAAE,CAAC;IAChE,IAAI,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC5B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,MAAM,GAAG,CAAC,EAAE,GAAG,CAAC,GAAG,IAAI,CAAC,CAAC;IAC9D,CAAC;IAED,mDAAmD;IACnD,IAAI,KAAK,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;QACvB,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACpB,CAAC;SAAM,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC9B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACrB,CAAC;IAED,8BAA8B;IAC9B,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;IAChE,OAAO,IAAI,CAAC,KAAK,CAAC,KAAK,GAAG,GAAG,CAAC,GAAG,GAAG,CAAC;AACvC,CAAC"}

package/dist/defence/firewall/encoding-detector.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Encoding Detector
+ *
+ * Detects obfuscation attempts including base64, unicode tricks,
+ * hex encoding, suspicious URL encoding, and invisible characters.
+ */
+export interface EncodingDetectionResult {
+    detected: boolean;
+    encodingTypes: string[];
+    decodedSnippets: string[];
+}
+export declare function detectEncoding(content: string): EncodingDetectionResult;
+//# sourceMappingURL=encoding-detector.d.ts.map

package/dist/defence/firewall/encoding-detector.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"encoding-detector.d.ts","sourceRoot":"","sources":["../../../src/defence/firewall/encoding-detector.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,MAAM,WAAW,uBAAuB;IACtC,QAAQ,EAAE,OAAO,CAAC;IAClB,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,EAAE,MAAM,EAAE,CAAC;CAC3B;AA8DD,wBAAgB,cAAc,CAAC,OAAO,EAAE,MAAM,GAAG,uBAAuB,CAgEvE"}

package/dist/defence/firewall/encoding-detector.js

@@ -0,0 +1,120 @@
+/**
+ * Encoding Detector
+ *
+ * Detects obfuscation attempts including base64, unicode tricks,
+ * hex encoding, suspicious URL encoding, and invisible characters.
+ */
+// Base64: at least 20 chars of base64 alphabet, optionally padded
+const BASE64_PATTERN = /(?:[A-Za-z0-9+/]{4}){5,}(?:[A-Za-z0-9+/]{2}==|[A-Za-z0-9+/]{3}=)?/g;
+// Hex sequences
+const HEX_PATTERN = /(?:0x[0-9a-fA-F]{2}\s*){4,}|(?:\\x[0-9a-fA-F]{2}){4,}/g;
+// Suspicious URL encoding (4+ encoded chars in sequence)
+const URL_ENCODING_PATTERN = /(?:%[0-9A-Fa-f]{2}){4,}/g;
+// Zero-width characters
+const ZERO_WIDTH_PATTERN = /[\u200B\u200C\u200D\uFEFF]/g;
+// RTL override
+const RTL_OVERRIDE_PATTERN = /\u202E/g;
+// Unicode homoglyphs — Cyrillic characters that look like Latin
+const CYRILLIC_HOMOGLYPHS = /[\u0430\u0435\u043E\u0440\u0441\u0443\u0445\u0410\u0412\u0415\u041A\u041C\u041D\u041E\u0420\u0421\u0422\u0423\u0425]/g;
+function tryBase64Decode(str) {
+    try {
+        const decoded = Buffer.from(str, 'base64').toString('utf-8');
+        // Check if decoded result looks like readable text (mostly printable ASCII)
+        const printableRatio = decoded.replace(/[^\x20-\x7E]/g, '').length / decoded.length;
+        if (printableRatio > 0.7 && decoded.length > 3) {
+            return decoded.slice(0, 100);
+        }
+        return null;
+    }
+    catch {
+        return null;
+    }
+}
+function tryHexDecode(str) {
+    try {
+        const hexChars = str.replace(/0x|\\x|\s/g, '');
+        const bytes = hexChars.match(/.{2}/g);
+        if (!bytes)
+            return null;
+        const decoded = bytes.map((b) => String.fromCharCode(parseInt(b, 16))).join('');
+        const printableRatio = decoded.replace(/[^\x20-\x7E]/g, '').length / decoded.length;
+        if (printableRatio > 0.7 && decoded.length > 3) {
+            return decoded.slice(0, 100);
+        }
+        return null;
+    }
+    catch {
+        return null;
+    }
+}
+function tryUrlDecode(str) {
+    try {
+        const decoded = decodeURIComponent(str);
+        if (decoded !== str && decoded.length > 3) {
+            return decoded.slice(0, 100);
+        }
+        return null;
+    }
+    catch {
+        return null;
+    }
+}
+export function detectEncoding(content) {
+    const encodingTypes = [];
+    const decodedSnippets = [];
+    // Base64
+    const base64Matches = content.match(BASE64_PATTERN);
+    if (base64Matches) {
+        for (const match of base64Matches) {
+            const decoded = tryBase64Decode(match);
+            if (decoded) {
+                encodingTypes.push('base64');
+                decodedSnippets.push(decoded);
+                break;
+            }
+        }
+    }
+    // Hex encoding
+    const hexMatches = content.match(HEX_PATTERN);
+    if (hexMatches) {
+        for (const match of hexMatches) {
+            const decoded = tryHexDecode(match);
+            if (decoded) {
+                encodingTypes.push('hex');
+                decodedSnippets.push(decoded);
+                break;
+            }
+        }
+    }
+    // URL encoding
+    const urlMatches = content.match(URL_ENCODING_PATTERN);
+    if (urlMatches) {
+        for (const match of urlMatches) {
+            const decoded = tryUrlDecode(match);
+            if (decoded) {
+                encodingTypes.push('url_encoding');
+                decodedSnippets.push(decoded);
+                break;
+            }
+        }
+    }
+    // Zero-width characters
+    if (ZERO_WIDTH_PATTERN.test(content)) {
+        encodingTypes.push('zero_width_chars');
+    }
+    // RTL override
+    if (RTL_OVERRIDE_PATTERN.test(content)) {
+        encodingTypes.push('rtl_override');
+    }
+    // Unicode homoglyphs
+    const homoglyphMatches = content.match(CYRILLIC_HOMOGLYPHS);
+    if (homoglyphMatches && homoglyphMatches.length >= 2) {
+        encodingTypes.push('unicode_homoglyph');
+    }
+    return {
+        detected: encodingTypes.length > 0,
+        encodingTypes: [...new Set(encodingTypes)],
+        decodedSnippets,
+    };
+}
+//# sourceMappingURL=encoding-detector.js.map

package/dist/defence/firewall/encoding-detector.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"encoding-detector.js","sourceRoot":"","sources":["../../../src/defence/firewall/encoding-detector.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAQH,kEAAkE;AAClE,MAAM,cAAc,GAAG,oEAAoE,CAAC;AAE5F,gBAAgB;AAChB,MAAM,WAAW,GAAG,wDAAwD,CAAC;AAE7E,yDAAyD;AACzD,MAAM,oBAAoB,GAAG,0BAA0B,CAAC;AAExD,wBAAwB;AACxB,MAAM,kBAAkB,GAAG,6BAA6B,CAAC;AAEzD,eAAe;AACf,MAAM,oBAAoB,GAAG,SAAS,CAAC;AAEvC,gEAAgE;AAChE,MAAM,mBAAmB,GAAG,uHAAuH,CAAC;AAEpJ,SAAS,eAAe,CAAC,GAAW;IAClC,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;QAC7D,4EAA4E;QAC5E,MAAM,cAAc,GAAG,OAAO,CAAC,OAAO,CAAC,eAAe,EAAE,EAAE,CAAC,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QACpF,IAAI,cAAc,GAAG,GAAG,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/C,OAAO,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;QAC/B,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,SAAS,YAAY,CAAC,GAAW;IAC/B,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,GAAG,CAAC,OAAO,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC;QAC/C,MAAM,KAAK,GAAG,QAAQ,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACtC,IAAI,CAAC,KAAK;YAAE,OAAO,IAAI,CAAC;QACxB,MAAM,OAAO,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,YAAY,CAAC,QAAQ,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAChF,MAAM,cAAc,GAAG,OAAO,CAAC,OAAO,CAAC,eAAe,EAAE,EAAE,CAAC,CAAC,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;QACpF,IAAI,cAAc,GAAG,GAAG,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC/C,OAAO,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;QAC/B,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,SAAS,YAAY,CAAC,GAAW;IAC/B,IAAI,CAAC;QACH,MAAM,OAAO,GAAG,kBAAkB,CAAC,GAAG,CAAC,CAAC;QACxC,IAAI,OAAO,KAAK,GAAG,IAAI,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC1C,OAAO,OAAO,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;QAC/B,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED,MAAM,UAAU,cAAc,CAAC,OAAe;IAC5C,MAAM,aAAa,GAAa,EAAE,CAAC;IACnC,MAAM,eAAe,GAAa,EAAE,CAAC;IAErC,SAAS;IACT,MAAM,aAAa,GAAG,OAAO,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;IACpD,IAAI,aAAa,EAAE,CAAC;QAClB,KAAK,MAAM,KAAK,IAAI,aAAa,EAAE,CAAC;YAClC,MAAM,OAAO,GAAG,eAAe,CAAC,KAAK,CAAC,CAAC;YACvC,IAAI,OAAO,EAAE,CAAC;gBACZ,aAAa,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;gBAC7B,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;gBAC9B,MAAM;YACR,CAAC;QACH,CAAC;IACH,CAAC;IAED,eAAe;IACf,MAAM,UAAU,GAAG,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;IAC9C,IAAI,UAAU,EAAE,CAAC;QACf,KAAK,MAAM,KAAK,IAAI,UAAU,EAAE,CAAC;YAC/B,MAAM,OAAO,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC;YACpC,IAAI,OAAO,EAAE,CAAC;gBACZ,aAAa,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAC1B,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;gBAC9B,MAAM;YACR,CAAC;QACH,CAAC;IACH,CAAC;IAED,eAAe;IACf,MAAM,UAAU,GAAG,OAAO,CAAC,KAAK,CAAC,oBAAoB,CAAC,CAAC;IACvD,IAAI,UAAU,EAAE,CAAC;QACf,KAAK,MAAM,KAAK,IAAI,UAAU,EAAE,CAAC;YAC/B,MAAM,OAAO,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC;YACpC,IAAI,OAAO,EAAE,CAAC;gBACZ,aAAa,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;gBACnC,eAAe,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;gBAC9B,MAAM;YACR,CAAC;QACH,CAAC;IACH,CAAC;IAED,wBAAwB;IACxB,IAAI,kBAAkB,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACrC,aAAa,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;IACzC,CAAC;IAED,eAAe;IACf,IAAI,oBAAoB,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACvC,aAAa,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;IACrC,CAAC;IAED,qBAAqB;IACrB,MAAM,gBAAgB,GAAG,OAAO,CAAC,KAAK,CAAC,mBAAmB,CAAC,CAAC;IAC5D,IAAI,gBAAgB,IAAI,gBAAgB,CAAC,MAAM,IAAI,CAAC,EAAE,CAAC;QACrD,aAAa,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;IAC1C,CAAC;IAED,OAAO;QACL,QAAQ,EAAE,aAAa,CAAC,MAAM,GAAG,CAAC;QAClC,aAAa,EAAE,CAAC,GAAG,IAAI,GAAG,CAAC,aAAa,CAAC,CAAC;QAC1C,eAAe;KAChB,CAAC;AACJ,CAAC"}

package/dist/defence/firewall/index.d.ts

@@ -0,0 +1,21 @@
+/**
+ * Memory Firewall
+ *
+ * Orchestrates all detection modules to scan memory writes for threats.
+ * Combines instruction detection, privilege escalation detection,
+ * encoding obfuscation detection, and anomaly scoring into a single
+ * firewall analysis result.
+ */
+import type { FirewallAnalysis, DefenceSource, DefenceConfig } from '../types.js';
+export { detectInstructions } from './instruction-detector.js';
+export type { InstructionDetectionResult } from './instruction-detector.js';
+export { detectPrivilegeEscalation } from './privilege-detector.js';
+export type { PrivilegeDetectionResult } from './privilege-detector.js';
+export { detectEncoding } from './encoding-detector.js';
+export type { EncodingDetectionResult } from './encoding-detector.js';
+export { scoreAnomaly } from './anomaly-scorer.js';
+/**
+ * Run the full firewall analysis pipeline on memory content.
+ */
+export declare function analyzeFirewall(content: string, title: string, source: DefenceSource, trustScore: number, config: DefenceConfig): FirewallAnalysis;
+//# sourceMappingURL=index.d.ts.map

package/dist/defence/firewall/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/defence/firewall/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,KAAK,EACV,gBAAgB,EAEhB,aAAa,EACb,aAAa,EAEd,MAAM,aAAa,CAAC;AAcrB,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAC/D,YAAY,EAAE,0BAA0B,EAAE,MAAM,2BAA2B,CAAC;AAC5E,OAAO,EAAE,yBAAyB,EAAE,MAAM,yBAAyB,CAAC;AACpE,YAAY,EAAE,wBAAwB,EAAE,MAAM,yBAAyB,CAAC;AACxE,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AACxD,YAAY,EAAE,uBAAuB,EAAE,MAAM,wBAAwB,CAAC;AACtE,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEnD;;GAEG;AACH,wBAAgB,eAAe,CAC7B,OAAO,EAAE,MAAM,EACf,KAAK,EAAE,MAAM,EACb,MAAM,EAAE,aAAa,EACrB,UAAU,EAAE,MAAM,EAClB,MAAM,EAAE,aAAa,GACpB,gBAAgB,CAoDlB"}

package/dist/defence/firewall/index.js

@@ -0,0 +1,133 @@
+/**
+ * Memory Firewall
+ *
+ * Orchestrates all detection modules to scan memory writes for threats.
+ * Combines instruction detection, privilege escalation detection,
+ * encoding obfuscation detection, and anomaly scoring into a single
+ * firewall analysis result.
+ */
+import { detectInstructions } from './instruction-detector.js';
+import { detectPrivilegeEscalation } from './privilege-detector.js';
+import { detectEncoding } from './encoding-detector.js';
+import { scoreAnomaly } from './anomaly-scorer.js';
+// Re-exports
+export { detectInstructions } from './instruction-detector.js';
+export { detectPrivilegeEscalation } from './privilege-detector.js';
+export { detectEncoding } from './encoding-detector.js';
+export { scoreAnomaly } from './anomaly-scorer.js';
+/**
+ * Run the full firewall analysis pipeline on memory content.
+ */
+export function analyzeFirewall(content, title, source, trustScore, config) {
+    const instructions = detectInstructions(content);
+    const privilege = detectPrivilegeEscalation(content);
+    const encoding = detectEncoding(content);
+    const anomaly = scoreAnomaly(content, title);
+    // Collect threat indicators
+    const threatIndicators = [];
+    const blockedPatterns = [];
+    if (instructions.detected) {
+        threatIndicators.push('instruction_injection');
+        blockedPatterns.push(...instructions.patterns);
+    }
+    if (privilege.detected) {
+        if (privilege.indicators.includes('credential_reference')) {
+            threatIndicators.push('credential_leak');
+        }
+        if (privilege.indicators.includes('external_url')) {
+            threatIndicators.push('external_url');
+        }
+        if (privilege.indicators.includes('system_access') ||
+            privilege.indicators.includes('destructive_filesystem') ||
+            privilege.indicators.includes('network_exfiltration')) {
+            threatIndicators.push('privilege_escalation');
+        }
+    }
+    if (encoding.detected) {
+        threatIndicators.push('encoding_obfuscation');
+        blockedPatterns.push(...encoding.encodingTypes);
+    }
+    // Determine result based on mode
+    const { result, reason } = determineResult(config.mode, instructions, privilege, encoding, anomaly, trustScore, threatIndicators);
+    return {
+        result,
+        reason,
+        threatIndicators,
+        anomalyScore: anomaly,
+        blockedPatterns,
+    };
+}
+function determineResult(mode, instructions, privilege, encoding, anomalyScore, trustScore, threatIndicators) {
+    const lowTrust = trustScore < 0.5;
+    const detectionCount = threatIndicators.length;
+    // ── Strict mode: any detection blocks ──
+    if (mode === 'strict') {
+        if (detectionCount > 0) {
+            return {
+                result: 'BLOCK',
+                reason: `Strict mode: detected ${threatIndicators.join(', ')}`,
+            };
+        }
+        if (anomalyScore > 0.7) {
+            return {
+                result: 'BLOCK',
+                reason: `Strict mode: high anomaly score (${anomalyScore})`,
+            };
+        }
+        return { result: 'ALLOW', reason: 'No threats detected' };
+    }
+    // ── Permissive mode: always allow, but populate indicators ──
+    if (mode === 'permissive') {
+        const reason = detectionCount > 0
+            ? `Permissive mode: allowing despite ${threatIndicators.join(', ')}`
+            : 'No threats detected';
+        return { result: 'ALLOW', reason };
+    }
+    // ── Balanced mode ──
+    // Instruction injection → quarantine
+    if (instructions.detected) {
+        const result = lowTrust ? 'BLOCK' : 'QUARANTINE';
+        return {
+            result,
+            reason: `Instruction injection detected (confidence: ${instructions.confidence})${lowTrust ? ', low trust source' : ''}`,
+        };
+    }
+    // High severity privilege escalation → quarantine
+    if (privilege.detected && privilege.severity === 'high') {
+        const result = lowTrust ? 'BLOCK' : 'QUARANTINE';
+        return {
+            result,
+            reason: `High severity privilege escalation: ${privilege.indicators.join(', ')}${lowTrust ? ', low trust source' : ''}`,
+        };
+    }
+    // Encoding combined with another detection → quarantine
+    if (encoding.detected && detectionCount >= 2) {
+        return {
+            result: 'QUARANTINE',
+            reason: `Encoding obfuscation combined with ${threatIndicators.filter((t) => t !== 'encoding_obfuscation').join(', ')}`,
+        };
+    }
+    // Low trust bumps medium-severity detections to quarantine
+    if (lowTrust && detectionCount > 0) {
+        return {
+            result: 'QUARANTINE',
+            reason: `Low trust source (${trustScore}) with detections: ${threatIndicators.join(', ')}`,
+        };
+    }
+    // Single low-severity detection → allow with warning
+    if (detectionCount > 0) {
+        return {
+            result: 'ALLOW',
+            reason: `Low severity detections: ${threatIndicators.join(', ')}`,
+        };
+    }
+    // High anomaly score alone
+    if (anomalyScore > 0.7 && lowTrust) {
+        return {
+            result: 'QUARANTINE',
+            reason: `High anomaly score (${anomalyScore}) from low trust source`,
+        };
+    }
+    return { result: 'ALLOW', reason: 'No threats detected' };
+}
+//# sourceMappingURL=index.js.map

package/dist/defence/firewall/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/defence/firewall/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAUH,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAG/D,OAAO,EAAE,yBAAyB,EAAE,MAAM,yBAAyB,CAAC;AAGpE,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAGxD,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEnD,aAAa;AACb,OAAO,EAAE,kBAAkB,EAAE,MAAM,2BAA2B,CAAC;AAE/D,OAAO,EAAE,yBAAyB,EAAE,MAAM,yBAAyB,CAAC;AAEpE,OAAO,EAAE,cAAc,EAAE,MAAM,wBAAwB,CAAC;AAExD,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AAEnD;;GAEG;AACH,MAAM,UAAU,eAAe,CAC7B,OAAe,EACf,KAAa,EACb,MAAqB,EACrB,UAAkB,EAClB,MAAqB;IAErB,MAAM,YAAY,GAAG,kBAAkB,CAAC,OAAO,CAAC,CAAC;IACjD,MAAM,SAAS,GAAG,yBAAyB,CAAC,OAAO,CAAC,CAAC;IACrD,MAAM,QAAQ,GAAG,cAAc,CAAC,OAAO,CAAC,CAAC;IACzC,MAAM,OAAO,GAAG,YAAY,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC;IAE7C,4BAA4B;IAC5B,MAAM,gBAAgB,GAAsB,EAAE,CAAC;IAC/C,MAAM,eAAe,GAAa,EAAE,CAAC;IAErC,IAAI,YAAY,CAAC,QAAQ,EAAE,CAAC;QAC1B,gBAAgB,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;QAC/C,eAAe,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,QAAQ,CAAC,CAAC;IACjD,CAAC;IAED,IAAI,SAAS,CAAC,QAAQ,EAAE,CAAC;QACvB,IAAI,SAAS,CAAC,UAAU,CAAC,QAAQ,CAAC,sBAAsB,CAAC,EAAE,CAAC;YAC1D,gBAAgB,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAC3C,CAAC;QACD,IAAI,SAAS,CAAC,UAAU,CAAC,QAAQ,CAAC,cAAc,CAAC,EAAE,CAAC;YAClD,gBAAgB,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACxC,CAAC;QACD,IAAI,SAAS,CAAC,UAAU,CAAC,QAAQ,CAAC,eAAe,CAAC;YAC9C,SAAS,CAAC,UAAU,CAAC,QAAQ,CAAC,wBAAwB,CAAC;YACvD,SAAS,CAAC,UAAU,CAAC,QAAQ,CAAC,sBAAsB,CAAC,EAAE,CAAC;YAC1D,gBAAgB,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QAChD,CAAC;IACH,CAAC;IAED,IAAI,QAAQ,CAAC,QAAQ,EAAE,CAAC;QACtB,gBAAgB,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QAC9C,eAAe,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,aAAa,CAAC,CAAC;IAClD,CAAC;IAED,iCAAiC;IACjC,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,eAAe,CACxC,MAAM,CAAC,IAAI,EACX,YAAY,EACZ,SAAS,EACT,QAAQ,EACR,OAAO,EACP,UAAU,EACV,gBAAgB,CACjB,CAAC;IAEF,OAAO;QACL,MAAM;QACN,MAAM;QACN,gBAAgB;QAChB,YAAY,EAAE,OAAO;QACrB,eAAe;KAChB,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CACtB,IAA2B,EAC3B,YAAwC,EACxC,SAAmC,EACnC,QAAiC,EACjC,YAAoB,EACpB,UAAkB,EAClB,gBAAmC;IAEnC,MAAM,QAAQ,GAAG,UAAU,GAAG,GAAG,CAAC;IAClC,MAAM,cAAc,GAAG,gBAAgB,CAAC,MAAM,CAAC;IAE/C,0CAA0C;IAC1C,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;QACtB,IAAI,cAAc,GAAG,CAAC,EAAE,CAAC;YACvB,OAAO;gBACL,MAAM,EAAE,OAAO;gBACf,MAAM,EAAE,yBAAyB,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;aAC/D,CAAC;QACJ,CAAC;QACD,IAAI,YAAY,GAAG,GAAG,EAAE,CAAC;YACvB,OAAO;gBACL,MAAM,EAAE,OAAO;gBACf,MAAM,EAAE,oCAAoC,YAAY,GAAG;aAC5D,CAAC;QACJ,CAAC;QACD,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,qBAAqB,EAAE,CAAC;IAC5D,CAAC;IAED,+DAA+D;IAC/D,IAAI,IAAI,KAAK,YAAY,EAAE,CAAC;QAC1B,MAAM,MAAM,GAAG,cAAc,GAAG,CAAC;YAC/B,CAAC,CAAC,qCAAqC,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;YACpE,CAAC,CAAC,qBAAqB,CAAC;QAC1B,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;IACrC,CAAC;IAED,sBAAsB;IAEtB,qCAAqC;IACrC,IAAI,YAAY,CAAC,QAAQ,EAAE,CAAC;QAC1B,MAAM,MAAM,GAAmB,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC;QACjE,OAAO;YACL,MAAM;YACN,MAAM,EAAE,+CAA+C,YAAY,CAAC,UAAU,IAAI,QAAQ,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,CAAC,EAAE,EAAE;SACzH,CAAC;IACJ,CAAC;IAED,kDAAkD;IAClD,IAAI,SAAS,CAAC,QAAQ,IAAI,SAAS,CAAC,QAAQ,KAAK,MAAM,EAAE,CAAC;QACxD,MAAM,MAAM,GAAmB,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,YAAY,CAAC;QACjE,OAAO;YACL,MAAM;YACN,MAAM,EAAE,uCAAuC,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,QAAQ,CAAC,CAAC,CAAC,oBAAoB,CAAC,CAAC,CAAC,EAAE,EAAE;SACxH,CAAC;IACJ,CAAC;IAED,wDAAwD;IACxD,IAAI,QAAQ,CAAC,QAAQ,IAAI,cAAc,IAAI,CAAC,EAAE,CAAC;QAC7C,OAAO;YACL,MAAM,EAAE,YAAY;YACpB,MAAM,EAAE,sCAAsC,gBAAgB,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,sBAAsB,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;SACxH,CAAC;IACJ,CAAC;IAED,2DAA2D;IAC3D,IAAI,QAAQ,IAAI,cAAc,GAAG,CAAC,EAAE,CAAC;QACnC,OAAO;YACL,MAAM,EAAE,YAAY;YACpB,MAAM,EAAE,qBAAqB,UAAU,sBAAsB,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;SAC3F,CAAC;IACJ,CAAC;IAED,qDAAqD;IACrD,IAAI,cAAc,GAAG,CAAC,EAAE,CAAC;QACvB,OAAO;YACL,MAAM,EAAE,OAAO;YACf,MAAM,EAAE,4BAA4B,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;SAClE,CAAC;IACJ,CAAC;IAED,2BAA2B;IAC3B,IAAI,YAAY,GAAG,GAAG,IAAI,QAAQ,EAAE,CAAC;QACnC,OAAO;YACL,MAAM,EAAE,YAAY;YACpB,MAAM,EAAE,uBAAuB,YAAY,yBAAyB;SACrE,CAAC;IACJ,CAAC;IAED,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,qBAAqB,EAAE,CAAC;AAC5D,CAAC"}

package/dist/defence/firewall/instruction-detector.d.ts

@@ -0,0 +1,12 @@
+/**
+ * Instruction Detector
+ *
+ * Detects prompt injection and hidden instruction patterns in memory content.
+ */
+export interface InstructionDetectionResult {
+    detected: boolean;
+    patterns: string[];
+    confidence: number;
+}
+export declare function detectInstructions(content: string): InstructionDetectionResult;
+//# sourceMappingURL=instruction-detector.d.ts.map

package/dist/defence/firewall/instruction-detector.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"instruction-detector.d.ts","sourceRoot":"","sources":["../../../src/defence/firewall/instruction-detector.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,MAAM,WAAW,0BAA0B;IACzC,QAAQ,EAAE,OAAO,CAAC;IAClB,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,UAAU,EAAE,MAAM,CAAC;CACpB;AA2ED,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,MAAM,GAAG,0BAA0B,CA6B9E"}

package/dist/defence/firewall/instruction-detector.js

@@ -0,0 +1,99 @@
+/**
+ * Instruction Detector
+ *
+ * Detects prompt injection and hidden instruction patterns in memory content.
+ */
+const PATTERN_GROUPS = [
+    {
+        name: 'system_prompt_marker',
+        weight: 0.9,
+        patterns: [
+            /\[SYSTEM:/i,
+            /<<SYS>>/i,
+            /\[INST\]/i,
+            /<\/s>/i,
+            /<\|im_start\|>/i,
+            /<\|system\|>/i,
+            /<\|endoftext\|>/i,
+        ],
+    },
+    {
+        name: 'hidden_instruction',
+        weight: 0.8,
+        patterns: [
+            /ignore\s+(all\s+)?previous\s+(instructions?|prompts?|context)/i,
+            /forget\s+everything/i,
+            /new\s+instructions?\s*:/i,
+            /you\s+are\s+now\b/i,
+            /act\s+as\s+(a\s+|an\s+)?/i,
+            /pretend\s+to\s+be/i,
+            /disregard\s+(all\s+)?(previous|above|prior)/i,
+            /override\s+(previous|all|system)/i,
+        ],
+    },
+    {
+        name: 'memory_manipulation',
+        weight: 0.7,
+        patterns: [
+            /save\s+(this\s+)?to\s+memory/i,
+            /remember\s+this\s+(instruction|command|rule)/i,
+            /store\s+this\s+instruction/i,
+            /when\s+(the\s+)?user\s+asks/i,
+            /always\s+respond\s+with/i,
+            /from\s+now\s+on\s*(,\s*)?always/i,
+            /inject\s+(into\s+)?memory/i,
+        ],
+    },
+    {
+        name: 'command_injection',
+        weight: 0.85,
+        patterns: [
+            /\beval\s*\(/i,
+            /\bexec\s*\(/i,
+            /\bsystem\s*\(/i,
+            /\bimport\s+os\b/i,
+            /\brun\s+command\b/i,
+            /\bexecute\s+(this\s+)?(command|code|script)/i,
+            /\b__import__\s*\(/i,
+            /\bsubprocess\b/i,
+        ],
+    },
+    {
+        name: 'delimiter_attack',
+        weight: 0.75,
+        patterns: [
+            /\n{5,}.*\b(instruction|command|system|ignore)\b/is,
+            /<!--\s*(instruction|command|system|ignore|inject|override).*?-->/is,
+            /\r?\n-{5,}\r?\n/,
+            /\r?\n={5,}\r?\n/,
+        ],
+    },
+];
+export function detectInstructions(content) {
+    const matchedPatterns = [];
+    let totalWeight = 0;
+    let maxWeight = 0;
+    for (const group of PATTERN_GROUPS) {
+        for (const pattern of group.patterns) {
+            if (pattern.test(content)) {
+                matchedPatterns.push(group.name);
+                totalWeight += group.weight;
+                if (group.weight > maxWeight) {
+                    maxWeight = group.weight;
+                }
+                break; // one match per group is enough
+            }
+        }
+    }
+    // Confidence is based on the strongest match + bonus for multiple groups
+    const groupBonus = Math.min((matchedPatterns.length - 1) * 0.1, 0.3);
+    const confidence = matchedPatterns.length > 0
+        ? Math.min(maxWeight + groupBonus, 1.0)
+        : 0;
+    return {
+        detected: matchedPatterns.length > 0,
+        patterns: [...new Set(matchedPatterns)],
+        confidence: Math.round(confidence * 100) / 100,
+    };
+}
+//# sourceMappingURL=instruction-detector.js.map

package/dist/defence/firewall/instruction-detector.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"instruction-detector.js","sourceRoot":"","sources":["../../../src/defence/firewall/instruction-detector.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAcH,MAAM,cAAc,GAAmB;IACrC;QACE,IAAI,EAAE,sBAAsB;QAC5B,MAAM,EAAE,GAAG;QACX,QAAQ,EAAE;YACR,YAAY;YACZ,UAAU;YACV,WAAW;YACX,QAAQ;YACR,iBAAiB;YACjB,eAAe;YACf,kBAAkB;SACnB;KACF;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,MAAM,EAAE,GAAG;QACX,QAAQ,EAAE;YACR,gEAAgE;YAChE,sBAAsB;YACtB,0BAA0B;YAC1B,oBAAoB;YACpB,2BAA2B;YAC3B,oBAAoB;YACpB,8CAA8C;YAC9C,mCAAmC;SACpC;KACF;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,MAAM,EAAE,GAAG;QACX,QAAQ,EAAE;YACR,+BAA+B;YAC/B,+CAA+C;YAC/C,6BAA6B;YAC7B,8BAA8B;YAC9B,0BAA0B;YAC1B,kCAAkC;YAClC,4BAA4B;SAC7B;KACF;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,MAAM,EAAE,IAAI;QACZ,QAAQ,EAAE;YACR,cAAc;YACd,cAAc;YACd,gBAAgB;YAChB,kBAAkB;YAClB,oBAAoB;YACpB,8CAA8C;YAC9C,oBAAoB;YACpB,iBAAiB;SAClB;KACF;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,MAAM,EAAE,IAAI;QACZ,QAAQ,EAAE;YACR,mDAAmD;YACnD,oEAAoE;YACpE,iBAAiB;YACjB,iBAAiB;SAClB;KACF;CACF,CAAC;AAEF,MAAM,UAAU,kBAAkB,CAAC,OAAe;IAChD,MAAM,eAAe,GAAa,EAAE,CAAC;IACrC,IAAI,WAAW,GAAG,CAAC,CAAC;IACpB,IAAI,SAAS,GAAG,CAAC,CAAC;IAElB,KAAK,MAAM,KAAK,IAAI,cAAc,EAAE,CAAC;QACnC,KAAK,MAAM,OAAO,IAAI,KAAK,CAAC,QAAQ,EAAE,CAAC;YACrC,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gBAC1B,eAAe,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;gBACjC,WAAW,IAAI,KAAK,CAAC,MAAM,CAAC;gBAC5B,IAAI,KAAK,CAAC,MAAM,GAAG,SAAS,EAAE,CAAC;oBAC7B,SAAS,GAAG,KAAK,CAAC,MAAM,CAAC;gBAC3B,CAAC;gBACD,MAAM,CAAC,gCAAgC;YACzC,CAAC;QACH,CAAC;IACH,CAAC;IAED,yEAAyE;IACzE,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,eAAe,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,GAAG,EAAE,GAAG,CAAC,CAAC;IACrE,MAAM,UAAU,GAAG,eAAe,CAAC,MAAM,GAAG,CAAC;QAC3C,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,SAAS,GAAG,UAAU,EAAE,GAAG,CAAC;QACvC,CAAC,CAAC,CAAC,CAAC;IAEN,OAAO;QACL,QAAQ,EAAE,eAAe,CAAC,MAAM,GAAG,CAAC;QACpC,QAAQ,EAAE,CAAC,GAAG,IAAI,GAAG,CAAC,eAAe,CAAC,CAAC;QACvC,UAAU,EAAE,IAAI,CAAC,KAAK,CAAC,UAAU,GAAG,GAAG,CAAC,GAAG,GAAG;KAC/C,CAAC;AACJ,CAAC"}

package/dist/defence/firewall/privilege-detector.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Privilege Detector
+ *
+ * Detects credential references, external URLs, system access,
+ * and network exfiltration attempts in memory content.
+ */
+export interface PrivilegeDetectionResult {
+    detected: boolean;
+    indicators: string[];
+    severity: 'low' | 'medium' | 'high';
+}
+export declare function detectPrivilegeEscalation(content: string): PrivilegeDetectionResult;
+//# sourceMappingURL=privilege-detector.d.ts.map

package/dist/defence/firewall/privilege-detector.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"privilege-detector.d.ts","sourceRoot":"","sources":["../../../src/defence/firewall/privilege-detector.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,MAAM,WAAW,wBAAwB;IACvC,QAAQ,EAAE,OAAO,CAAC;IAClB,UAAU,EAAE,MAAM,EAAE,CAAC;IACrB,QAAQ,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,CAAC;CACrC;AAwED,wBAAgB,yBAAyB,CAAC,OAAO,EAAE,MAAM,GAAG,wBAAwB,CAqBnF"}