shiplint 0.1.0

package/dist/formatters/text.js

@@ -0,0 +1,128 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.formatText = formatText;
+const index_js_1 = require("../types/index.js");
+// Dynamic import for chalk (ESM)
+let chalk;
+async function getChalk() {
+    if (!chalk) {
+        const module = await import('chalk');
+        chalk = module.default;
+    }
+    return chalk;
+}
+/**
+ * Get severity color
+ */
+function getSeverityColor(severity) {
+    switch (severity) {
+        case index_js_1.Severity.Critical:
+            return (text) => chalk.red.bold(text);
+        case index_js_1.Severity.High:
+            return (text) => chalk.red(text);
+        case index_js_1.Severity.Medium:
+            return (text) => chalk.yellow(text);
+        case index_js_1.Severity.Low:
+            return (text) => chalk.blue(text);
+        case index_js_1.Severity.Info:
+            return (text) => chalk.gray(text);
+    }
+}
+/**
+ * Get confidence label
+ */
+function getConfidenceLabel(confidence) {
+    switch (confidence) {
+        case index_js_1.Confidence.High:
+            return 'high confidence';
+        case index_js_1.Confidence.Medium:
+            return 'medium confidence';
+        case index_js_1.Confidence.Low:
+            return 'low confidence';
+    }
+}
+/**
+ * Format a single finding
+ */
+async function formatFinding(finding, index) {
+    const c = await getChalk();
+    const severityColor = getSeverityColor(finding.severity);
+    const lines = [];
+    // Header
+    lines.push(`${c.bold(`${index + 1}.`)} ${severityColor(`[${finding.severity.toUpperCase()}]`)} ${c.bold(finding.title)}`);
+    // Location and guideline
+    const meta = [];
+    if (finding.location) {
+        meta.push(`📍 ${finding.location}`);
+    }
+    meta.push(`📋 Guideline ${finding.guideline}`);
+    meta.push(`🎯 ${getConfidenceLabel(finding.confidence)}`);
+    lines.push(c.dim(`   ${meta.join(' • ')}`));
+    // Description
+    lines.push('');
+    lines.push(c.white(`   ${finding.description}`));
+    // Fix guidance
+    lines.push('');
+    lines.push(c.green.bold('   How to fix:'));
+    for (const line of finding.fixGuidance.split('\n')) {
+        lines.push(c.green(`   ${line}`));
+    }
+    // Documentation URL
+    if (finding.documentationURL) {
+        lines.push('');
+        lines.push(c.cyan(`   📚 ${finding.documentationURL}`));
+    }
+    return lines.join('\n');
+}
+/**
+ * Format scan results as text
+ */
+async function formatText(result) {
+    const c = await getChalk();
+    const lines = [];
+    // Header
+    lines.push(c.bold.underline('\n🛡️  ReviewShield Scan Results\n'));
+    lines.push(`📁 Project: ${result.projectPath}`);
+    lines.push(`🕐 Scanned: ${result.timestamp.toISOString()}`);
+    lines.push(`⏱️  Duration: ${result.duration}ms`);
+    lines.push(`📊 Rules run: ${result.rulesRun.length}`);
+    lines.push('');
+    if (result.findings.length === 0) {
+        lines.push(c.green.bold('✅ No issues found! Your app looks ready for review.'));
+        lines.push('');
+        return lines.join('\n');
+    }
+    // Summary by severity
+    const bySeverity = new Map();
+    for (const finding of result.findings) {
+        const existing = bySeverity.get(finding.severity) ?? [];
+        existing.push(finding);
+        bySeverity.set(finding.severity, existing);
+    }
+    lines.push(c.bold('📊 Summary:'));
+    const severityOrder = [index_js_1.Severity.Critical, index_js_1.Severity.High, index_js_1.Severity.Medium, index_js_1.Severity.Low, index_js_1.Severity.Info];
+    for (const severity of severityOrder) {
+        const count = bySeverity.get(severity)?.length ?? 0;
+        if (count > 0) {
+            const color = getSeverityColor(severity);
+            lines.push(`   ${color(`${severity.toUpperCase()}`)}: ${count}`);
+        }
+    }
+    lines.push('');
+    // Findings
+    lines.push(c.bold.underline(`\n🔍 Found ${result.findings.length} issue(s):\n`));
+    // Sort by severity
+    const sortedFindings = [...result.findings].sort((a, b) => {
+        const order = { critical: 0, high: 1, medium: 2, low: 3, info: 4 };
+        return order[a.severity] - order[b.severity];
+    });
+    for (let i = 0; i < sortedFindings.length; i++) {
+        const formattedFinding = await formatFinding(sortedFindings[i], i);
+        lines.push(formattedFinding);
+        lines.push('');
+        lines.push(c.dim('   ' + '─'.repeat(60)));
+        lines.push('');
+    }
+    return lines.join('\n');
+}
+//# sourceMappingURL=text.js.map

package/dist/formatters/text.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"text.js","sourceRoot":"","sources":["../../src/formatters/text.ts"],"names":[],"mappings":";;AA+FA,gCAuDC;AAlJD,gDAAyD;AAEzD,iCAAiC;AACjC,IAAI,KAAqC,CAAC;AAE1C,KAAK,UAAU,QAAQ;IACrB,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,CAAC;QACrC,KAAK,GAAG,MAAM,CAAC,OAAO,CAAC;IACzB,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,SAAS,gBAAgB,CAAC,QAAkB;IAC1C,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,mBAAQ,CAAC,QAAQ;YACpB,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACxC,KAAK,mBAAQ,CAAC,IAAI;YAChB,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QACnC,KAAK,mBAAQ,CAAC,MAAM;YAClB,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QACtC,KAAK,mBAAQ,CAAC,GAAG;YACf,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACpC,KAAK,mBAAQ,CAAC,IAAI;YAChB,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACtC,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,kBAAkB,CAAC,UAAsB;IAChD,QAAQ,UAAU,EAAE,CAAC;QACnB,KAAK,qBAAU,CAAC,IAAI;YAClB,OAAO,iBAAiB,CAAC;QAC3B,KAAK,qBAAU,CAAC,MAAM;YACpB,OAAO,mBAAmB,CAAC;QAC7B,KAAK,qBAAU,CAAC,GAAG;YACjB,OAAO,gBAAgB,CAAC;IAC5B,CAAC;AACH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,aAAa,CAAC,OAAgB,EAAE,KAAa;IAC1D,MAAM,CAAC,GAAG,MAAM,QAAQ,EAAE,CAAC;IAC3B,MAAM,aAAa,GAAG,gBAAgB,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IAEzD,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,SAAS;IACT,KAAK,CAAC,IAAI,CACR,GAAG,CAAC,CAAC,IAAI,CAAC,GAAG,KAAK,GAAG,CAAC,GAAG,CAAC,IAAI,aAAa,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,WAAW,EAAE,GAAG,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAC9G,CAAC;IAEF,yBAAyB;IACzB,MAAM,IAAI,GAAa,EAAE,CAAC;IAC1B,IAAI,OAAO,CAAC,QAAQ,EAAE,CAAC;QACrB,IAAI,CAAC,IAAI,CAAC,MAAM,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC;IACtC,CAAC;IACD,IAAI,CAAC,IAAI,CAAC,gBAAgB,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC;IAC/C,IAAI,CAAC,IAAI,CAAC,MAAM,kBAAkB,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,CAAC,CAAC;IAC1D,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,MAAM,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC;IAE5C,cAAc;IACd,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;IAEjD,eAAe;IACf,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC,CAAC;IAC3C,KAAK,MAAM,IAAI,IAAI,OAAO,CAAC,WAAW,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;QACnD,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,CAAC;IACpC,CAAC;IAED,oBAAoB;IACpB,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;QAC7B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,OAAO,CAAC,gBAAgB,EAAE,CAAC,CAAC,CAAC;IAC1D,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED;;GAEG;AACI,KAAK,UAAU,UAAU,CAAC,MAAkB;IACjD,MAAM,CAAC,GAAG,MAAM,QAAQ,EAAE,CAAC;IAC3B,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,SAAS;IACT,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,oCAAoC,CAAC,CAAC,CAAC;IACnE,KAAK,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC;IAChD,KAAK,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,SAAS,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;IAC5D,KAAK,CAAC,IAAI,CAAC,iBAAiB,MAAM,CAAC,QAAQ,IAAI,CAAC,CAAC;IACjD,KAAK,CAAC,IAAI,CAAC,iBAAiB,MAAM,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IACtD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACjC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,qDAAqD,CAAC,CAAC,CAAC;QAChF,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;IAED,sBAAsB;IACtB,MAAM,UAAU,GAAG,IAAI,GAAG,EAAuB,CAAC;IAClD,KAAK,MAAM,OAAO,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;QACtC,MAAM,QAAQ,GAAG,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;QACxD,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACvB,UAAU,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;IAC7C,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC;IAClC,MAAM,aAAa,GAAG,CAAC,mBAAQ,CAAC,QAAQ,EAAE,mBAAQ,CAAC,IAAI,EAAE,mBAAQ,CAAC,MAAM,EAAE,mBAAQ,CAAC,GAAG,EAAE,mBAAQ,CAAC,IAAI,CAAC,CAAC;IACvG,KAAK,MAAM,QAAQ,IAAI,aAAa,EAAE,CAAC;QACrC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,MAAM,IAAI,CAAC,CAAC;QACpD,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;YACd,MAAM,KAAK,GAAG,gBAAgB,CAAC,QAAQ,CAAC,CAAC;YACzC,KAAK,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,GAAG,QAAQ,CAAC,WAAW,EAAE,EAAE,CAAC,KAAK,KAAK,EAAE,CAAC,CAAC;QACnE,CAAC;IACH,CAAC;IACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,WAAW;IACX,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,cAAc,MAAM,CAAC,QAAQ,CAAC,MAAM,cAAc,CAAC,CAAC,CAAC;IAEjF,mBAAmB;IACnB,MAAM,cAAc,GAAG,CAAC,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE;QACxD,MAAM,KAAK,GAAG,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,CAAC;QACnE,OAAO,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,GAAG,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;IAEH,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,cAAc,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC/C,MAAM,gBAAgB,GAAG,MAAM,aAAa,CAAC,cAAc,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QACnE,KAAK,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QAC7B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,KAAK,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;QAC1C,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACjB,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}

package/dist/index.d.ts

@@ -0,0 +1,11 @@
+/**
+ * ReviewShield - App Store Review Guideline Scanner
+ *
+ * Main library entry point for programmatic usage
+ */
+export * from './types/index.js';
+export * from './parsers/index.js';
+export { allRules, ruleRegistry, getRule, getRules, getRulesExcluding, MissingCameraPurposeRule, MissingLocationPurposeRule, LocationAlwaysUnjustifiedRule, ATTTrackingMismatchRule, ThirdPartyLoginNoSIWARule, } from './rules/index.js';
+export { scan, scanWithContext } from './core/scanner.js';
+export { format, formatText, formatJSON, formatSARIF } from './formatters/index.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,cAAc,kBAAkB,CAAC;AAGjC,cAAc,oBAAoB,CAAC;AAGnC,OAAO,EACL,QAAQ,EACR,YAAY,EACZ,OAAO,EACP,QAAQ,EACR,iBAAiB,EACjB,wBAAwB,EACxB,0BAA0B,EAC1B,6BAA6B,EAC7B,uBAAuB,EACvB,yBAAyB,GAC1B,MAAM,kBAAkB,CAAC;AAG1B,OAAO,EAAE,IAAI,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AAG1D,OAAO,EAAE,MAAM,EAAE,UAAU,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,uBAAuB,CAAC"}

package/dist/index.js

@@ -0,0 +1,49 @@
+"use strict";
+/**
+ * ReviewShield - App Store Review Guideline Scanner
+ *
+ * Main library entry point for programmatic usage
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.formatSARIF = exports.formatJSON = exports.formatText = exports.format = exports.scanWithContext = exports.scan = exports.ThirdPartyLoginNoSIWARule = exports.ATTTrackingMismatchRule = exports.LocationAlwaysUnjustifiedRule = exports.MissingLocationPurposeRule = exports.MissingCameraPurposeRule = exports.getRulesExcluding = exports.getRules = exports.getRule = exports.ruleRegistry = exports.allRules = void 0;
+// Types
+__exportStar(require("./types/index.js"), exports);
+// Parsers
+__exportStar(require("./parsers/index.js"), exports);
+// Rules
+var index_js_1 = require("./rules/index.js");
+Object.defineProperty(exports, "allRules", { enumerable: true, get: function () { return index_js_1.allRules; } });
+Object.defineProperty(exports, "ruleRegistry", { enumerable: true, get: function () { return index_js_1.ruleRegistry; } });
+Object.defineProperty(exports, "getRule", { enumerable: true, get: function () { return index_js_1.getRule; } });
+Object.defineProperty(exports, "getRules", { enumerable: true, get: function () { return index_js_1.getRules; } });
+Object.defineProperty(exports, "getRulesExcluding", { enumerable: true, get: function () { return index_js_1.getRulesExcluding; } });
+Object.defineProperty(exports, "MissingCameraPurposeRule", { enumerable: true, get: function () { return index_js_1.MissingCameraPurposeRule; } });
+Object.defineProperty(exports, "MissingLocationPurposeRule", { enumerable: true, get: function () { return index_js_1.MissingLocationPurposeRule; } });
+Object.defineProperty(exports, "LocationAlwaysUnjustifiedRule", { enumerable: true, get: function () { return index_js_1.LocationAlwaysUnjustifiedRule; } });
+Object.defineProperty(exports, "ATTTrackingMismatchRule", { enumerable: true, get: function () { return index_js_1.ATTTrackingMismatchRule; } });
+Object.defineProperty(exports, "ThirdPartyLoginNoSIWARule", { enumerable: true, get: function () { return index_js_1.ThirdPartyLoginNoSIWARule; } });
+// Core
+var scanner_js_1 = require("./core/scanner.js");
+Object.defineProperty(exports, "scan", { enumerable: true, get: function () { return scanner_js_1.scan; } });
+Object.defineProperty(exports, "scanWithContext", { enumerable: true, get: function () { return scanner_js_1.scanWithContext; } });
+// Formatters
+var index_js_2 = require("./formatters/index.js");
+Object.defineProperty(exports, "format", { enumerable: true, get: function () { return index_js_2.format; } });
+Object.defineProperty(exports, "formatText", { enumerable: true, get: function () { return index_js_2.formatText; } });
+Object.defineProperty(exports, "formatJSON", { enumerable: true, get: function () { return index_js_2.formatJSON; } });
+Object.defineProperty(exports, "formatSARIF", { enumerable: true, get: function () { return index_js_2.formatSARIF; } });
+//# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;GAIG;;;;;;;;;;;;;;;;;AAEH,QAAQ;AACR,mDAAiC;AAEjC,UAAU;AACV,qDAAmC;AAEnC,QAAQ;AACR,6CAW0B;AAVxB,oGAAA,QAAQ,OAAA;AACR,wGAAA,YAAY,OAAA;AACZ,mGAAA,OAAO,OAAA;AACP,oGAAA,QAAQ,OAAA;AACR,6GAAA,iBAAiB,OAAA;AACjB,oHAAA,wBAAwB,OAAA;AACxB,sHAAA,0BAA0B,OAAA;AAC1B,yHAAA,6BAA6B,OAAA;AAC7B,mHAAA,uBAAuB,OAAA;AACvB,qHAAA,yBAAyB,OAAA;AAG3B,OAAO;AACP,gDAA0D;AAAjD,kGAAA,IAAI,OAAA;AAAE,6GAAA,eAAe,OAAA;AAE9B,aAAa;AACb,kDAAoF;AAA3E,kGAAA,MAAM,OAAA;AAAE,sGAAA,UAAU,OAAA;AAAE,sGAAA,UAAU,OAAA;AAAE,uGAAA,WAAW,OAAA"}

package/dist/parsers/entitlements-parser.d.ts

@@ -0,0 +1,26 @@
+/**
+ * Well-known entitlement keys
+ */
+export declare const EntitlementKeys: {
+    readonly signInWithApple: "com.apple.developer.applesignin";
+    readonly pushNotifications: "aps-environment";
+    readonly iCloudContainer: "com.apple.developer.icloud-container-identifiers";
+    readonly appGroups: "com.apple.security.application-groups";
+    readonly associatedDomains: "com.apple.developer.associated-domains";
+    readonly healthKit: "com.apple.developer.healthkit";
+    readonly homeKit: "com.apple.developer.homekit";
+    readonly networkExtensions: "com.apple.developer.networking.networkextension";
+};
+/**
+ * Parses an entitlements file at the given path
+ */
+export declare function parseEntitlements(filePath: string): Record<string, unknown>;
+/**
+ * Parses entitlements from a string
+ */
+export declare function parseEntitlementsString(content: string): Record<string, unknown>;
+/**
+ * Checks if Sign in with Apple capability is enabled
+ */
+export declare function hasSignInWithApple(entitlements: Record<string, unknown>): boolean;
+//# sourceMappingURL=entitlements-parser.d.ts.map

package/dist/parsers/entitlements-parser.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"entitlements-parser.d.ts","sourceRoot":"","sources":["../../src/parsers/entitlements-parser.ts"],"names":[],"mappings":"AAMA;;GAEG;AACH,eAAO,MAAM,eAAe;;;;;;;;;CASlB,CAAC;AAEX;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,QAAQ,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAgB3E;AAED;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,OAAO,EAAE,MAAM,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAUhF;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAQjF"}

package/dist/parsers/entitlements-parser.js

@@ -0,0 +1,105 @@
+"use strict";
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.EntitlementKeys = void 0;
+exports.parseEntitlements = parseEntitlements;
+exports.parseEntitlementsString = parseEntitlementsString;
+exports.hasSignInWithApple = hasSignInWithApple;
+/**
+ * Parser for entitlements (.entitlements) files
+ */
+const fs = __importStar(require("fs"));
+const plist_1 = __importDefault(require("plist"));
+/**
+ * Well-known entitlement keys
+ */
+exports.EntitlementKeys = {
+    signInWithApple: 'com.apple.developer.applesignin',
+    pushNotifications: 'aps-environment',
+    iCloudContainer: 'com.apple.developer.icloud-container-identifiers',
+    appGroups: 'com.apple.security.application-groups',
+    associatedDomains: 'com.apple.developer.associated-domains',
+    healthKit: 'com.apple.developer.healthkit',
+    homeKit: 'com.apple.developer.homekit',
+    networkExtensions: 'com.apple.developer.networking.networkextension',
+};
+/**
+ * Parses an entitlements file at the given path
+ */
+function parseEntitlements(filePath) {
+    if (!fs.existsSync(filePath)) {
+        throw new Error(`Entitlements file not found at: ${filePath}`);
+    }
+    const content = fs.readFileSync(filePath, 'utf-8');
+    try {
+        const parsed = plist_1.default.parse(content);
+        if (typeof parsed !== 'object' || parsed === null) {
+            throw new Error('Root is not a dictionary');
+        }
+        return parsed;
+    }
+    catch (error) {
+        throw new Error(`Invalid entitlements format at ${filePath}: ${error}`);
+    }
+}
+/**
+ * Parses entitlements from a string
+ */
+function parseEntitlementsString(content) {
+    try {
+        const parsed = plist_1.default.parse(content);
+        if (typeof parsed !== 'object' || parsed === null) {
+            throw new Error('Root is not a dictionary');
+        }
+        return parsed;
+    }
+    catch (error) {
+        throw new Error(`Invalid entitlements format: ${error}`);
+    }
+}
+/**
+ * Checks if Sign in with Apple capability is enabled
+ */
+function hasSignInWithApple(entitlements) {
+    const siwaValue = entitlements[exports.EntitlementKeys.signInWithApple];
+    if (Array.isArray(siwaValue)) {
+        return siwaValue.includes('Default');
+    }
+    return siwaValue !== undefined && siwaValue !== null;
+}
+//# sourceMappingURL=entitlements-parser.js.map

package/dist/parsers/entitlements-parser.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"entitlements-parser.js","sourceRoot":"","sources":["../../src/parsers/entitlements-parser.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAuBA,8CAgBC;AAKD,0DAUC;AAKD,gDAQC;AAnED;;GAEG;AACH,uCAAyB;AACzB,kDAA0B;AAE1B;;GAEG;AACU,QAAA,eAAe,GAAG;IAC7B,eAAe,EAAE,iCAAiC;IAClD,iBAAiB,EAAE,iBAAiB;IACpC,eAAe,EAAE,kDAAkD;IACnE,SAAS,EAAE,uCAAuC;IAClD,iBAAiB,EAAE,wCAAwC;IAC3D,SAAS,EAAE,+BAA+B;IAC1C,OAAO,EAAE,6BAA6B;IACtC,iBAAiB,EAAE,iDAAiD;CAC5D,CAAC;AAEX;;GAEG;AACH,SAAgB,iBAAiB,CAAC,QAAgB;IAChD,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CAAC,mCAAmC,QAAQ,EAAE,CAAC,CAAC;IACjE,CAAC;IAED,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IAEnD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,eAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACpC,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;YAClD,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;QAC9C,CAAC;QACD,OAAO,MAAiC,CAAC;IAC3C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,kCAAkC,QAAQ,KAAK,KAAK,EAAE,CAAC,CAAC;IAC1E,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAgB,uBAAuB,CAAC,OAAe;IACrD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,eAAK,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;QACpC,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;YAClD,MAAM,IAAI,KAAK,CAAC,0BAA0B,CAAC,CAAC;QAC9C,CAAC;QACD,OAAO,MAAiC,CAAC;IAC3C,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,gCAAgC,KAAK,EAAE,CAAC,CAAC;IAC3D,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAgB,kBAAkB,CAAC,YAAqC;IACtE,MAAM,SAAS,GAAG,YAAY,CAAC,uBAAe,CAAC,eAAe,CAAC,CAAC;IAEhE,IAAI,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,CAAC;QAC7B,OAAO,SAAS,CAAC,QAAQ,CAAC,SAAS,CAAC,CAAC;IACvC,CAAC;IAED,OAAO,SAAS,KAAK,SAAS,IAAI,SAAS,KAAK,IAAI,CAAC;AACvD,CAAC"}

package/dist/parsers/framework-detector.d.ts

@@ -0,0 +1,76 @@
+import { Dependency } from '../types/index.js';
+/**
+ * Known tracking SDK patterns for ATT detection
+ */
+export declare const trackingSDKPatterns: Array<{
+    pattern: string;
+    name: string;
+}>;
+/**
+ * Known social login SDK patterns for SIWA detection
+ */
+export declare const socialLoginSDKPatterns: Array<{
+    pattern: string;
+    name: string;
+}>;
+/**
+ * Location-related frameworks
+ */
+export declare const locationFrameworks: Set<string>;
+/**
+ * Camera-related frameworks
+ */
+export declare const cameraFrameworks: Set<string>;
+/**
+ * Parses Podfile.lock to extract CocoaPods dependencies
+ */
+export declare function parsePodfileLock(filePath: string): Dependency[];
+/**
+ * Parses Podfile.lock content string
+ */
+export declare function parsePodfileLockContent(content: string): Dependency[];
+/**
+ * Parses Package.resolved to extract SPM dependencies
+ */
+export declare function parsePackageResolved(filePath: string): Dependency[];
+/**
+ * Parses Package.resolved JSON data
+ */
+export declare function parsePackageResolvedData(json: Record<string, unknown>): Dependency[];
+/**
+ * Parses project.pbxproj to extract linked frameworks
+ */
+export declare function parseProjectFrameworks(filePath: string): Set<string>;
+/**
+ * Parses project.pbxproj content to extract linked frameworks
+ */
+export declare function parseProjectFrameworksContent(content: string): Set<string>;
+/**
+ * Detects tracking SDKs from a list of dependencies
+ */
+export declare function detectTrackingSDKs(dependencies: Dependency[]): string[];
+/**
+ * Detects social login SDKs from a list of dependencies
+ */
+export declare function detectSocialLoginSDKs(dependencies: Dependency[]): string[];
+/**
+ * P2-C FIX: Loads dependencies for a specific .xcodeproj, avoiding recursive scan of whole parent
+ *
+ * Searches lockfiles only in:
+ * 1. The .xcodeproj directory itself (project.xcworkspace/xcshareddata/swiftpm/Package.resolved)
+ * 2. The parent directory of the .xcodeproj
+ * 3. The parent's .swiftpm directory
+ *
+ * This prevents picking up lockfiles from sibling projects in monorepos.
+ *
+ * @param xcodeprojPath Path to the .xcodeproj directory
+ * @returns Array of dependencies found
+ */
+export declare function loadDependenciesForProject(xcodeprojPath: string): Dependency[];
+/**
+ * Loads all dependencies from a project directory
+ * BUG FIX #3: Now searches recursively for lockfiles
+ * P2-C FIX: When given a .xcodeproj path, uses scoped search to prevent monorepo bleeding
+ */
+export declare function loadAllDependencies(projectDir: string): Dependency[];
+//# sourceMappingURL=framework-detector.d.ts.map

package/dist/parsers/framework-detector.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"framework-detector.d.ts","sourceRoot":"","sources":["../../src/parsers/framework-detector.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,UAAU,EAAoB,MAAM,mBAAmB,CAAC;AAEjE;;GAEG;AACH,eAAO,MAAM,mBAAmB,EAAE,KAAK,CAAC;IAAE,OAAO,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAA;CAAE,CAuBxE,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,sBAAsB,EAAE,KAAK,CAAC;IAAE,OAAO,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAA;CAAE,CAkB3E,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,kBAAkB,EAAE,GAAG,CAAC,MAAM,CAGzC,CAAC;AAEH;;GAEG;AACH,eAAO,MAAM,gBAAgB,EAAE,GAAG,CAAC,MAAM,CAIvC,CAAC;AAEH;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,UAAU,EAAE,CAO/D;AAED;;GAEG;AACH,wBAAgB,uBAAuB,CAAC,OAAO,EAAE,MAAM,GAAG,UAAU,EAAE,CA0DrE;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,QAAQ,EAAE,MAAM,GAAG,UAAU,EAAE,CAanE;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,UAAU,EAAE,CAsCpF;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,QAAQ,EAAE,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,CAOpE;AAED;;GAEG;AACH,wBAAgB,6BAA6B,CAAC,OAAO,EAAE,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,CAY1E;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,YAAY,EAAE,UAAU,EAAE,GAAG,MAAM,EAAE,CAavE;AAED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,YAAY,EAAE,UAAU,EAAE,GAAG,MAAM,EAAE,CAa1E;AA8FD;;;;;;;;;;;;GAYG;AACH,wBAAgB,0BAA0B,CAAC,aAAa,EAAE,MAAM,GAAG,UAAU,EAAE,CAoE9E;AAED;;;;GAIG;AACH,wBAAgB,mBAAmB,CAAC,UAAU,EAAE,MAAM,GAAG,UAAU,EAAE,CAqFpE"}