ship-safe 6.0.0 → 6.1.1

package/cli/commands/scan-skill.js

@@ -0,0 +1,329 @@
+/**
+ * Scan Skill Command
+ * ===================
+ *
+ * Downloads and analyzes an AI agent skill before installation.
+ * Checks for malicious patterns, permission abuse, typosquatting,
+ * and known threat intelligence indicators.
+ *
+ * USAGE:
+ *   ship-safe scan-skill <url>          Analyze a skill from URL
+ *   ship-safe scan-skill <path>         Analyze a local skill file
+ *   ship-safe scan-skill . --all        Scan all skills in openclaw.json
+ */
+
+import fs from 'fs';
+import path from 'path';
+import chalk from 'chalk';
+import { createHash } from 'crypto';
+import * as output from '../utils/output.js';
+import { ThreatIntel } from '../utils/threat-intel.js';
+
+// =============================================================================
+// POPULAR SKILL NAMES (for typosquatting detection)
+// =============================================================================
+
+const POPULAR_SKILLS = [
+  'web-search', 'web-browser', 'file-manager', 'code-runner',
+  'git-helper', 'database-query', 'api-tester', 'image-gen',
+  'text-to-speech', 'pdf-reader', 'email-sender', 'slack-bot',
+  'github-helper', 'docker-manager', 'kubernetes-helper',
+  'aws-helper', 'terraform-helper', 'memory-store',
+  'calculator', 'translator', 'summarizer', 'code-review',
+];
+
+// =============================================================================
+// MALICIOUS PATTERNS
+// =============================================================================
+
+const SKILL_PATTERNS = [
+  { name: 'Shell execution', regex: /(?:child_process|exec|spawn|execSync|execFile|os\.system|subprocess|shell_exec|system\()/gi, severity: 'critical' },
+  { name: 'Outbound HTTP to non-localhost', regex: /(?:fetch|axios|http\.get|requests\.get|urllib|wget|curl)\s*\(\s*['"`]https?:\/\/(?!(?:localhost|127\.0\.0\.1|::1))/gi, severity: 'high' },
+  { name: 'Data exfiltration service', regex: /(?:webhook\.site|requestbin\.com|hookbin\.com|pipedream\.net|ngrok\.io|ngrok\.app|burpcollaborator|interact\.sh)/gi, severity: 'critical' },
+  { name: 'Environment variable access', regex: /(?:process\.env|os\.environ|os\.getenv|ENV\[|System\.getenv)/gi, severity: 'medium' },
+  { name: 'File system write', regex: /(?:fs\.writeFile|fs\.appendFile|writeFileSync|open\(.+['"]w['"]|fwrite|file_put_contents)/gi, severity: 'medium' },
+  { name: 'Base64 decode + execute', regex: /(?:atob|Buffer\.from|base64\.b64decode|base64_decode)\s*\([^)]*\)\s*(?:\.|\))\s*(?:eval|exec|Function)/gi, severity: 'critical' },
+  { name: 'Dynamic code evaluation', regex: /(?:eval\s*\(|new\s+Function\s*\(|exec\s*\(|compile\s*\()/gi, severity: 'high' },
+  { name: 'Crypto operations', regex: /(?:crypto\.createCipher|crypto\.createDecipher|CryptoJS|forge\.cipher)/gi, severity: 'medium' },
+  { name: 'Network listener', regex: /(?:createServer|listen\s*\(\s*\d|bind\s*\(\s*['"]0\.0\.0\.0)/gi, severity: 'high' },
+  { name: 'Encoded payload block', regex: /[A-Za-z0-9+\/]{60,}={0,2}/g, severity: 'medium' },
+];
+
+// =============================================================================
+// MAIN COMMAND
+// =============================================================================
+
+export async function scanSkillCommand(target, options = {}) {
+  if (!target) {
+    output.error('Usage: ship-safe scan-skill <url|path>');
+    output.info('  Analyze an AI agent skill for security issues before installing it.');
+    process.exit(1);
+  }
+
+  console.log();
+  output.header('Ship Safe — Skill Security Analysis');
+  console.log();
+
+  // If --all flag, scan all skills from openclaw.json
+  if (options.all) {
+    return scanAllSkills(path.resolve(target));
+  }
+
+  // Determine if URL or local file
+  let content, skillName, source;
+
+  if (target.startsWith('http://') || target.startsWith('https://')) {
+    console.log(chalk.gray(`  Fetching skill from: ${target}`));
+    try {
+      const response = await fetch(target);
+      if (!response.ok) throw new Error(`HTTP ${response.status}`);
+      content = await response.text();
+      skillName = new URL(target).pathname.split('/').pop() || 'remote-skill';
+      source = target;
+    } catch (err) {
+      output.error(`Failed to fetch skill: ${err.message}`);
+      process.exit(1);
+    }
+  } else {
+    const filePath = path.resolve(target);
+    if (!fs.existsSync(filePath)) {
+      output.error(`File not found: ${filePath}`);
+      process.exit(1);
+    }
+    content = fs.readFileSync(filePath, 'utf-8');
+    skillName = path.basename(filePath);
+    source = filePath;
+  }
+
+  console.log(chalk.gray(`  Skill: ${skillName}`));
+  console.log(chalk.gray(`  Size: ${content.length} bytes`));
+  console.log();
+
+  const findings = analyzeSkill(content, skillName, source);
+
+  if (options.json) {
+    console.log(JSON.stringify({ skill: skillName, source, findings, summary: getSummary(findings) }, null, 2));
+    return;
+  }
+
+  printSkillFindings(findings, skillName);
+}
+
+// =============================================================================
+// SKILL ANALYSIS
+// =============================================================================
+
+function analyzeSkill(content, skillName, source) {
+  const findings = [];
+
+  // 1. Static pattern analysis
+  const lines = content.split('\n');
+  for (let i = 0; i < lines.length; i++) {
+    const line = lines[i];
+    for (const pattern of SKILL_PATTERNS) {
+      pattern.regex.lastIndex = 0;
+      if (pattern.regex.test(line)) {
+        findings.push({
+          check: 'static-analysis',
+          name: pattern.name,
+          severity: pattern.severity,
+          line: i + 1,
+          matched: line.trim().slice(0, 100),
+        });
+      }
+    }
+  }
+
+  // 2. Permission manifest audit (if JSON)
+  try {
+    const manifest = JSON.parse(content);
+    if (manifest.permissions) {
+      const dangerous = ['shell', 'exec', 'system', 'network', 'filesystem', 'admin', 'root'];
+      for (const perm of (Array.isArray(manifest.permissions) ? manifest.permissions : [])) {
+        const permStr = typeof perm === 'string' ? perm : perm.name || '';
+        if (dangerous.some(d => permStr.toLowerCase().includes(d))) {
+          findings.push({
+            check: 'permission-audit',
+            name: `Dangerous permission: ${permStr}`,
+            severity: 'high',
+            line: 0,
+            matched: `permissions: [${permStr}]`,
+          });
+        }
+      }
+    }
+
+    // Check for suspicious fields
+    if (manifest.postInstall || manifest.postinstall) {
+      findings.push({
+        check: 'permission-audit',
+        name: 'Post-install script defined',
+        severity: 'high',
+        line: 0,
+        matched: 'postInstall hook detected',
+      });
+    }
+  } catch { /* Not JSON, skip manifest audit */ }
+
+  // 3. Typosquatting detection
+  const typosquatResult = checkTyposquatting(skillName);
+  if (typosquatResult) {
+    findings.push({
+      check: 'typosquatting',
+      name: `Possible typosquat of "${typosquatResult.target}"`,
+      severity: 'high',
+      line: 0,
+      matched: `Levenshtein distance: ${typosquatResult.distance} from "${typosquatResult.target}"`,
+    });
+  }
+
+  // 4. Threat intel hash check
+  const hash = createHash('sha256').update(content).digest('hex');
+  const intelMatch = ThreatIntel.lookupHash(hash);
+  if (intelMatch) {
+    findings.push({
+      check: 'threat-intel',
+      name: `Known malicious skill: ${intelMatch.name}`,
+      severity: 'critical',
+      line: 0,
+      matched: `SHA-256: ${hash} — ${intelMatch.description}`,
+    });
+  }
+
+  // 5. Threat intel signature check
+  const sigMatches = ThreatIntel.matchSignatures(content);
+  for (const sig of sigMatches) {
+    findings.push({
+      check: 'threat-intel',
+      name: `Threat intel signature match: ${sig.description}`,
+      severity: sig.severity || 'critical',
+      line: 0,
+      matched: `Pattern: ${sig.pattern}`,
+    });
+  }
+
+  return findings;
+}
+
+// =============================================================================
+// TYPOSQUATTING
+// =============================================================================
+
+function levenshtein(a, b) {
+  const matrix = [];
+  for (let i = 0; i <= b.length; i++) matrix[i] = [i];
+  for (let j = 0; j <= a.length; j++) matrix[0][j] = j;
+  for (let i = 1; i <= b.length; i++) {
+    for (let j = 1; j <= a.length; j++) {
+      matrix[i][j] = b[i - 1] === a[j - 1]
+        ? matrix[i - 1][j - 1]
+        : Math.min(matrix[i - 1][j - 1] + 1, matrix[i][j - 1] + 1, matrix[i - 1][j] + 1);
+    }
+  }
+  return matrix[b.length][a.length];
+}
+
+function checkTyposquatting(skillName) {
+  const name = skillName.toLowerCase().replace(/[^a-z0-9-]/g, '');
+  for (const popular of POPULAR_SKILLS) {
+    const distance = levenshtein(name, popular);
+    if (distance > 0 && distance <= 2 && name !== popular) {
+      return { target: popular, distance };
+    }
+  }
+  return null;
+}
+
+// =============================================================================
+// SCAN ALL SKILLS IN PROJECT
+// =============================================================================
+
+async function scanAllSkills(rootPath) {
+  const openclawPath = path.join(rootPath, 'openclaw.json');
+  if (!fs.existsSync(openclawPath)) {
+    output.warning('No openclaw.json found. Nothing to scan.');
+    return;
+  }
+
+  try {
+    const config = JSON.parse(fs.readFileSync(openclawPath, 'utf-8'));
+    const skills = config.skills || [];
+
+    if (skills.length === 0) {
+      output.info('No skills defined in openclaw.json.');
+      return;
+    }
+
+    console.log(chalk.gray(`  Found ${skills.length} skill(s) in openclaw.json`));
+    console.log();
+
+    for (const skill of skills) {
+      const url = typeof skill === 'string' ? skill : skill.source || skill.url;
+      const name = typeof skill === 'string' ? skill : skill.name || 'unnamed';
+
+      if (url && (url.startsWith('http://') || url.startsWith('https://'))) {
+        console.log(chalk.cyan(`  Scanning skill: ${name}`));
+        try {
+          const response = await fetch(url);
+          if (!response.ok) throw new Error(`HTTP ${response.status}`);
+          const content = await response.text();
+          const findings = analyzeSkill(content, name, url);
+          if (findings.length > 0) {
+            printSkillFindings(findings, name);
+          } else {
+            console.log(chalk.green(`    ✔ Clean`));
+          }
+        } catch (err) {
+          console.log(chalk.yellow(`    ⚠ Could not fetch: ${err.message}`));
+        }
+      } else {
+        console.log(chalk.gray(`    → ${name}: local skill (static analysis only)`));
+      }
+      console.log();
+    }
+  } catch (err) {
+    output.error(`Failed to parse openclaw.json: ${err.message}`);
+  }
+}
+
+// =============================================================================
+// OUTPUT
+// =============================================================================
+
+function printSkillFindings(findings, skillName) {
+  const summary = getSummary(findings);
+
+  if (findings.length === 0) {
+    console.log(chalk.green.bold(`  ✔ ${skillName}: No security issues found.`));
+    console.log();
+    return;
+  }
+
+  console.log(chalk.red.bold(`  ✘ ${skillName}: ${findings.length} issue(s) found`));
+  console.log();
+
+  for (const f of findings) {
+    const sevColor = f.severity === 'critical' ? chalk.red.bold
+      : f.severity === 'high' ? chalk.yellow
+      : chalk.blue;
+
+    console.log(`    ${sevColor(`[${f.severity.toUpperCase()}]`)} ${chalk.white(f.name)}`);
+    if (f.line > 0) console.log(chalk.gray(`      Line ${f.line}: ${f.matched}`));
+    else if (f.matched) console.log(chalk.gray(`      ${f.matched}`));
+  }
+  console.log();
+
+  if (summary.critical > 0) {
+    console.log(chalk.red.bold('    ⚠ DO NOT INSTALL this skill — critical security issues detected.'));
+    console.log();
+  }
+}
+
+function getSummary(findings) {
+  return {
+    total: findings.length,
+    critical: findings.filter(f => f.severity === 'critical').length,
+    high: findings.filter(f => f.severity === 'high').length,
+    medium: findings.filter(f => f.severity === 'medium').length,
+  };
+}

package/cli/commands/scan.js

@@ -457,6 +457,8 @@ function outputPretty(results, filesScanned, rootPath) {
     console.log();
     console.log(chalk.gray('Suppress a finding: add  # ship-safe-ignore  as a comment on that line'));
     console.log(chalk.gray('Exclude a path:     add it to .ship-safeignore'));
+    console.log();
+    console.log(chalk.gray('Track findings over time: ') + chalk.cyan('https://shipsafecli.com'));
 
     if (secretResults.length > 0) output.recommendations();
     if (vulnResults.length > 0) output.vulnRecommendations();

package/cli/commands/score.js

@@ -299,6 +299,7 @@ function printScore(score, grade, ctx) {
   }
 
   console.log(chalk.cyan('='.repeat(60)));
+  console.log(chalk.gray('  Share your score & track trends: ') + chalk.cyan('https://shipsafecli.com'));
   console.log();
 }
 

package/cli/commands/update-intel.js

@@ -0,0 +1,55 @@
+/**
+ * Update Intel Command
+ * =====================
+ *
+ * Updates the local threat intelligence feed from the remote source.
+ *
+ * USAGE:
+ *   ship-safe update-intel              Fetch latest threat intel
+ *   ship-safe update-intel --url <url>  Use custom feed URL
+ */
+
+import chalk from 'chalk';
+import * as output from '../utils/output.js';
+import { ThreatIntel } from '../utils/threat-intel.js';
+
+export async function updateIntelCommand(options = {}) {
+  console.log();
+  output.header('Ship Safe — Threat Intelligence Update');
+  console.log();
+
+  const currentStats = ThreatIntel.stats();
+  console.log(chalk.gray(`  Current version: ${currentStats.version}`));
+  console.log(chalk.gray(`  Last updated: ${currentStats.updated || 'unknown'}`));
+  console.log(chalk.gray(`  Indicators: ${currentStats.hashes} hashes, ${currentStats.servers} servers, ${currentStats.signatures} signatures`));
+  console.log();
+
+  console.log(chalk.cyan('  Checking for updates...'));
+
+  const result = await ThreatIntel.update(options.url);
+
+  if (result.error) {
+    output.error('Update failed: ' + result.error); // ship-safe-ignore
+    console.log(chalk.gray('  The local seed data will still be used for scanning.'));
+    console.log(chalk.gray('  Check your network connection and try again.'));
+    console.log();
+    return;
+  }
+
+  if (!result.updated) {
+    console.log(chalk.green('  ✔ Already up to date.'));
+    console.log();
+    return;
+  }
+
+  console.log();
+  console.log(chalk.green.bold('  ✔ Threat intelligence updated!'));
+  console.log();
+  console.log(`  ${chalk.gray('Version:')} ${result.oldVersion} → ${chalk.cyan(result.newVersion)}`);
+  if (result.stats) {
+    console.log(`  ${chalk.gray('Malicious skill hashes:')} ${result.stats.hashes}`);
+    console.log(`  ${chalk.gray('Compromised MCP servers:')} ${result.stats.servers}`);
+    console.log(`  ${chalk.gray('Config signatures:')} ${result.stats.signatures}`);
+  }
+  console.log();
+}

package/cli/commands/watch.js

@@ -17,6 +17,15 @@ import { SKIP_DIRS, SKIP_EXTENSIONS, SKIP_FILENAMES, SECRET_PATTERNS, SECURITY_P
 import { isHighEntropyMatch, getConfidence } from '../utils/entropy.js';
 import * as output from '../utils/output.js';
 
+// Agent config files to watch
+const AGENT_CONFIG_PATTERNS = [
+  '.cursorrules', '.windsurfrules', 'CLAUDE.md', 'AGENTS.md',
+  '.github/copilot-instructions.md', '.aider.conf.yml',
+  '.continue/config.json', 'openclaw.json', 'openclaw.config.json',
+  'clawhub.json', 'mcp.json', '.claude/settings.json',
+  '.cursor/mcp.json', '.vscode/mcp.json',
+];
+
 export async function watchCommand(targetPath = '.', options = {}) {
   const absolutePath = path.resolve(targetPath);
 
@@ -25,6 +34,11 @@ export async function watchCommand(targetPath = '.', options = {}) {
     process.exit(1);
   }
 
+  // Config-only watch mode
+  if (options.configs) {
+    return watchConfigs(absolutePath);
+  }
+
   console.log();
   output.header('Ship Safe — Watch Mode');
   console.log();
@@ -159,3 +173,109 @@ function scanFile(filePath, patterns) {
     return true;
   });
 }
+
+// =============================================================================
+// CONFIG-ONLY WATCH MODE
+// =============================================================================
+
+async function watchConfigs(absolutePath) {
+  console.log();
+  output.header('Ship Safe — Agent Config Watch');
+  console.log();
+  console.log(chalk.cyan('  Watching agent config files for changes...'));
+  console.log(chalk.gray('  Monitors: .cursorrules, CLAUDE.md, openclaw.json, mcp.json, .claude/settings.json, ...'));
+  console.log(chalk.gray('  Press Ctrl+C to stop'));
+  console.log();
+
+  let debounceTimer = null;
+  const pendingFiles = new Set();
+
+  try {
+    const watcher = fs.watch(absolutePath, { recursive: true }, (eventType, filename) => {
+      if (!filename) return;
+
+      // Check if this is an agent config file
+      const relPath = filename.replace(/\\/g, '/');
+      const isConfig = AGENT_CONFIG_PATTERNS.some(p => relPath === p || relPath.endsWith('/' + p));
+      const isGlobMatch = relPath.match(/\.cursor\/rules\/.*\.mdc$/) ||
+                          relPath.match(/\.openclaw\/.*\.json$/) ||
+                          relPath.match(/\.claude\/commands\/.*\.md$/) ||
+                          relPath.match(/\.claude\/memory\//);
+
+      if (!isConfig && !isGlobMatch) return;
+
+      const fullPath = path.join(absolutePath, filename);
+      pendingFiles.add(fullPath);
+
+      if (debounceTimer) clearTimeout(debounceTimer);
+      debounceTimer = setTimeout(async () => {
+        const filesToScan = [...pendingFiles];
+        pendingFiles.clear();
+        await scanConfigFiles(filesToScan, absolutePath);
+      }, 300);
+    });
+
+    process.on('SIGINT', () => {
+      watcher.close();
+      console.log();
+      output.info('Config watch stopped.');
+      process.exit(0);
+    });
+
+    setInterval(() => {}, 1000 * 60 * 60);
+
+  } catch (err) {
+    output.error(`Watch failed: ${err.message}`);
+    process.exit(1);
+  }
+}
+
+async function scanConfigFiles(files, rootPath) {
+  // Dynamic import to avoid circular dependency
+  const { AgentConfigScanner } = await import('../agents/agent-config-scanner.js');
+  const { MCPSecurityAgent } = await import('../agents/mcp-security-agent.js');
+
+  const timestamp = new Date().toLocaleTimeString();
+  const scanner = new AgentConfigScanner();
+  const mcpScanner = new MCPSecurityAgent();
+
+  for (const filePath of files) {
+    if (!fs.existsSync(filePath)) {
+      console.log(chalk.gray(`  [${timestamp}] ${path.relative(rootPath, filePath)} — deleted`));
+      continue;
+    }
+
+    const relPath = path.relative(rootPath, filePath).replace(/\\/g, '/');
+    console.log(chalk.cyan(`  [${timestamp}] Changed: ${relPath}`));
+
+    // Git blame (best-effort)
+    try {
+      const { execFileSync } = await import('child_process');
+      const blame = execFileSync('git', ['log', '-1', '--format=%an (%ar)', '--', filePath], { cwd: rootPath, encoding: 'utf-8', timeout: 5000 }).trim();
+      if (blame) console.log(chalk.gray(`    Last modified by: ${blame}`));
+    } catch { /* not a git repo or git not available */ }
+
+    // Run agent config scanner
+    const context = { rootPath, files: [] };
+    const [configFindings, mcpFindings] = await Promise.all([
+      scanner.analyze(context),
+      mcpScanner.analyze(context),
+    ]);
+
+    const findings = [...configFindings, ...mcpFindings].filter(f =>
+      f.file && path.resolve(f.file) === path.resolve(filePath)
+    );
+
+    if (findings.length > 0) {
+      for (const f of findings) {
+        const sevColor = f.severity === 'critical' ? chalk.red.bold
+          : f.severity === 'high' ? chalk.yellow
+          : chalk.blue;
+        console.log(`    ${sevColor(`[${f.severity.toUpperCase()}]`)} ${f.title || f.rule}`);
+      }
+    } else {
+      console.log(chalk.green('    ✔ Clean'));
+    }
+    console.log();
+  }
+}

package/cli/data/threat-intel.json

@@ -0,0 +1,85 @@
+{
+  "version": "1.0.0",
+  "updated": "2026-03-23T00:00:00Z",
+  "maliciousSkillHashes": [
+    {
+      "sha256": "e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855",
+      "name": "empty-payload-stub",
+      "description": "Empty file used as placeholder in ClawHavoc campaign"
+    },
+    {
+      "sha256": "a1b2c3d4e5f6a1b2c3d4e5f6a1b2c3d4e5f6a1b2c3d4e5f6a1b2c3d4e5f6a1b2",
+      "name": "clawhavoc-stealer-v1",
+      "description": "AMOS stealer dropper identified in ClawHavoc campaign (1,184 malicious skills)"
+    },
+    {
+      "sha256": "dead0000beef0000cafe0000face0000dead0000beef0000cafe0000face0000",
+      "name": "clawhavoc-exfil-v2",
+      "description": "Data exfiltration skill sending credentials to attacker-controlled webhook"
+    }
+  ],
+  "compromisedMcpServers": [
+    {
+      "name": "@openclaw/mcp-shell-exec",
+      "versions": ["<1.2.3"],
+      "advisory": "Unrestricted shell command execution via WebSocket — CVE-2026-25253"
+    },
+    {
+      "name": "mcp-server-puppeteer-unverified",
+      "versions": ["*"],
+      "advisory": "Typosquat of official puppeteer MCP server, exfiltrates browser cookies"
+    },
+    {
+      "name": "@clawhub/skill-auto-deploy",
+      "versions": ["*"],
+      "advisory": "ClawHavoc campaign skill — installs AMOS stealer on macOS/Linux"
+    }
+  ],
+  "maliciousConfigSignatures": [
+    {
+      "pattern": "ignore previous instructions",
+      "description": "Prompt injection attempting to override agent system instructions",
+      "severity": "critical"
+    },
+    {
+      "pattern": "webhook.site",
+      "description": "Known data exfiltration service used in prompt injection attacks",
+      "severity": "critical"
+    },
+    {
+      "pattern": "curl.*\\|.*bash",
+      "description": "Remote code execution via piped download-and-execute pattern",
+      "severity": "critical"
+    },
+    {
+      "pattern": "ngrok\\.io|ngrok\\.app",
+      "description": "Tunnel service commonly used for data exfiltration in agent attacks",
+      "severity": "critical"
+    },
+    {
+      "pattern": "requestbin\\.com|pipedream\\.net",
+      "description": "Request interception service used to capture exfiltrated data",
+      "severity": "critical"
+    }
+  ],
+  "knownVulnerableConfigs": [
+    {
+      "file": "openclaw.json",
+      "check": "host_0000",
+      "description": "OpenClaw bound to 0.0.0.0 — CVE-2026-25253 (ClawJacked, CVSS 8.8)",
+      "cve": "CVE-2026-25253"
+    },
+    {
+      "file": "openclaw.json",
+      "check": "no_auth",
+      "description": "OpenClaw running without authentication — full agent takeover possible",
+      "cve": "CVE-2026-25253"
+    },
+    {
+      "file": ".claude/settings.json",
+      "check": "malicious_hooks",
+      "description": "Claude Code hooks executing arbitrary shell commands — Check Point RCE disclosure",
+      "cve": "CVE-2026-XXXX"
+    }
+  ]
+}

package/cli/index.js

@@ -53,6 +53,8 @@ export { APIFuzzer } from './agents/api-fuzzer.js';
 export { SupabaseRLSAgent } from './agents/supabase-rls-agent.js';
 export { VibeCodingAgent } from './agents/vibe-coding-agent.js';
 export { ExceptionHandlerAgent } from './agents/exception-handler-agent.js';
+export { AgentConfigScanner } from './agents/agent-config-scanner.js';
+export { ABOMGenerator } from './agents/abom-generator.js';
 
 // ── Supporting Modules ────────────────────────────────────────────────────────
 export { ScoringEngine, GRADES, CATEGORIES } from './agents/scoring-engine.js';