skillshield 1.0.0

package/dist/sandbox/index.js

@@ -0,0 +1,248 @@
+import { spawn, exec } from 'child_process';
+import { promisify } from 'util';
+import { SandboxError, TimeoutError } from '../utils/errors.js';
+import { Logger } from '../utils/logger.js';
+const execAsync = promisify(exec);
+export class ProcessSandbox {
+    constructor(options = {}) {
+        this.logger = new Logger({ level: 'warn' });
+        this.timeout = options.timeout || 30000; // 30 seconds default
+        this.memoryLimit = options.memoryLimit || '256m';
+        // SECURITY: Only pass safe env vars — strip ALL API keys and secrets
+        const safeEnv = {
+            NODE_ENV: 'sandbox',
+            PATH: process.env.PATH || '',
+            HOME: process.env.HOME || '/tmp',
+            LANG: process.env.LANG || 'en_US.UTF-8',
+        };
+        this.env = {
+            ...safeEnv,
+            ...options.env,
+        };
+        this.workDir = options.workDir || '/tmp';
+    }
+    async execute(code) {
+        const startTime = Date.now();
+        // Validate code before execution
+        const validation = new SandboxManager().validateCode(code);
+        if (!validation.valid) {
+            return {
+                stdout: '',
+                stderr: `BLOCKED by sandbox: ${validation.errors.join('; ')}`,
+                exitCode: 1,
+                signal: null,
+                duration: Date.now() - startTime,
+                timedOut: false,
+            };
+        }
+        try {
+            // Safely parse memory limit — strip all non-numeric chars to prevent injection
+            const rawMem = this.memoryLimit.toLowerCase();
+            let memLimitMB;
+            if (rawMem.endsWith('g')) {
+                memLimitMB = parseInt(rawMem.replace(/[^0-9]/g, ''), 10) * 1000 || 256;
+            }
+            else {
+                memLimitMB = parseInt(rawMem.replace(/[^0-9]/g, ''), 10) || 256;
+            }
+            const result = await Promise.race([
+                this.executeWithNode(code, memLimitMB),
+                this.createTimeoutPromise(),
+            ]);
+            const duration = Date.now() - startTime;
+            return {
+                ...result,
+                duration,
+                timedOut: false,
+            };
+        }
+        catch (error) {
+            const duration = Date.now() - startTime;
+            if (error instanceof TimeoutError) {
+                return {
+                    stdout: '',
+                    stderr: 'Execution timed out',
+                    exitCode: null,
+                    signal: 'SIGKILL',
+                    duration,
+                    timedOut: true,
+                };
+            }
+            throw error;
+        }
+    }
+    async executeWithNode(code, memLimitMB) {
+        return new Promise((resolve, reject) => {
+            // SECURITY: Use array form spawn with shell: false to prevent command injection
+            const child = spawn('node', [`--max-old-space-size=${memLimitMB}`, '-e', code], {
+                cwd: this.workDir,
+                env: this.env,
+                timeout: this.timeout,
+                shell: false,
+            });
+            let stdout = '';
+            let stderr = '';
+            child.stdout?.on('data', (data) => {
+                stdout += data.toString();
+            });
+            child.stderr?.on('data', (data) => {
+                stderr += data.toString();
+            });
+            child.on('error', (error) => {
+                reject(new SandboxError(`Execution error: ${error.message}`, { originalError: error.message }));
+            });
+            child.on('exit', (code, signal) => {
+                resolve({
+                    stdout: stdout.trim(),
+                    stderr: stderr.trim(),
+                    exitCode: code,
+                    signal: signal || null,
+                });
+            });
+            child.on('timeout', () => {
+                child.kill('SIGKILL');
+                reject(new TimeoutError(`Process exceeded ${this.timeout}ms timeout`));
+            });
+        });
+    }
+    createTimeoutPromise() {
+        return new Promise((_, reject) => {
+            setTimeout(() => {
+                reject(new TimeoutError(`Operation exceeded ${this.timeout}ms timeout`));
+            }, this.timeout + 1000); // Add buffer
+        });
+    }
+}
+export class DockerSandbox {
+    constructor(options = {}) {
+        this.logger = new Logger({ level: 'warn' });
+        this.timeout = options.timeout || 30000;
+        this.memoryLimit = options.memoryLimit || '256m';
+        this.cpuLimit = options.cpuLimit || 50;
+        this.networkEnabled = options.networkEnabled !== false;
+    }
+    async execute(code) {
+        const startTime = Date.now();
+        // Check if Docker is available
+        try {
+            await execAsync('docker --version');
+        }
+        catch {
+            throw new SandboxError('Docker is not available. Falling back to process sandbox.');
+        }
+        try {
+            // Create container command with security restrictions
+            const containerCmd = `docker run --rm \
+        --memory=${this.memoryLimit} \
+        --cpus=${this.cpuLimit / 100} \
+        ${!this.networkEnabled ? '--network=none' : ''} \
+        --read-only \
+        --tmpfs /tmp:rw \
+        -e NODE_ENV=sandbox \
+        node:18-alpine \
+        node -e ${JSON.stringify(code)}`;
+            const timeoutSecs = Math.ceil(this.timeout / 1000);
+            const fullCmd = `timeout ${timeoutSecs}s ${containerCmd}`;
+            const { stdout, stderr } = await execAsync(fullCmd);
+            const duration = Date.now() - startTime;
+            return {
+                stdout: stdout.trim(),
+                stderr: stderr.trim(),
+                exitCode: 0,
+                signal: null,
+                duration,
+                timedOut: false,
+            };
+        }
+        catch (error) {
+            const duration = Date.now() - startTime;
+            if (error instanceof Error && error.message.includes('timed out')) {
+                return {
+                    stdout: '',
+                    stderr: 'Execution timed out',
+                    exitCode: null,
+                    signal: 'SIGKILL',
+                    duration,
+                    timedOut: true,
+                };
+            }
+            throw new SandboxError(`Docker execution failed: ${String(error)}`, {
+                originalError: String(error),
+            });
+        }
+    }
+}
+export class SandboxManager {
+    constructor() {
+        this.processSandbox = null;
+        this.dockerSandbox = null;
+        this.logger = new Logger({ level: 'warn' });
+    }
+    async createSandbox(type = 'process', options) {
+        if (type === 'docker') {
+            if (!this.dockerSandbox) {
+                this.dockerSandbox = new DockerSandbox(options);
+            }
+            return this.dockerSandbox;
+        }
+        if (!this.processSandbox) {
+            this.processSandbox = new ProcessSandbox(options);
+        }
+        return this.processSandbox;
+    }
+    async executeInSandbox(code, options) {
+        const sandboxType = options?.type || 'process';
+        try {
+            const sandbox = await this.createSandbox(sandboxType, options);
+            return await sandbox.execute(code);
+        }
+        catch (error) {
+            // Fallback to process sandbox if Docker fails
+            if (sandboxType === 'docker' && error instanceof SandboxError) {
+                this.logger.warn('Docker sandbox unavailable, falling back to process sandbox');
+                const sandbox = await this.createSandbox('process', options);
+                return await sandbox.execute(code);
+            }
+            throw error;
+        }
+    }
+    validateCode(code) {
+        const errors = [];
+        const dangerousPatterns = [
+            // Filesystem access
+            /require\s*\(\s*['"]fs['"]/,
+            /import.*from\s+['"]fs['"]/,
+            /require\s*\(\s*['"]fs\/promises['"]/,
+            // Process spawning
+            /require\s*\(\s*['"]child_process['"]/,
+            /import.*from\s+['"]child_process['"]/,
+            // Network access
+            /require\s*\(\s*['"]net['"]/,
+            /require\s*\(\s*['"]http['"]/,
+            /require\s*\(\s*['"]https['"]/,
+            /require\s*\(\s*['"]dgram['"]/,
+            // Process manipulation
+            /process\.exit/,
+            /process\.env/,
+            /process\.kill/,
+            // Code execution
+            /\beval\s*\(/,
+            /new\s+Function\s*\(/,
+            // Dynamic requires (obfuscation bypass)
+            /require\s*\(\s*[^'"]/,
+            // OS access
+            /require\s*\(\s*['"]os['"]/,
+            /require\s*\(\s*['"]path['"]/,
+        ];
+        for (const pattern of dangerousPatterns) {
+            if (pattern.test(code)) {
+                errors.push(`Dangerous pattern detected: ${pattern.source}`);
+            }
+        }
+        return {
+            valid: errors.length === 0,
+            errors,
+        };
+    }
+}
+//# sourceMappingURL=index.js.map

package/dist/sandbox/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/sandbox/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,eAAe,CAAC;AAC5C,OAAO,EAAE,SAAS,EAAE,MAAM,MAAM,CAAC;AACjC,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AAChE,OAAO,EAAE,MAAM,EAAE,MAAM,oBAAoB,CAAC;AAE5C,MAAM,SAAS,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;AAwBlC,MAAM,OAAO,cAAc;IAOzB,YAAY,UAA0B,EAAE;QACtC,IAAI,CAAC,MAAM,GAAG,IAAI,MAAM,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;QAC5C,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,KAAK,CAAC,CAAC,qBAAqB;QAC9D,IAAI,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,MAAM,CAAC;QACjD,qEAAqE;QACrE,MAAM,OAAO,GAA2B;YACtC,QAAQ,EAAE,SAAS;YACnB,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,EAAE;YAC5B,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,MAAM;YAChC,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,aAAa;SACxC,CAAC;QACF,IAAI,CAAC,GAAG,GAAG;YACT,GAAG,OAAO;YACV,GAAG,OAAO,CAAC,GAAG;SACf,CAAC;QACF,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,MAAM,CAAC;IAC3C,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,IAAY;QACxB,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,iCAAiC;QACjC,MAAM,UAAU,GAAG,IAAI,cAAc,EAAE,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;QAC3D,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,CAAC;YACtB,OAAO;gBACL,MAAM,EAAE,EAAE;gBACV,MAAM,EAAE,uBAAuB,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;gBAC7D,QAAQ,EAAE,CAAC;gBACX,MAAM,EAAE,IAAI;gBACZ,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;gBAChC,QAAQ,EAAE,KAAK;aAChB,CAAC;QACJ,CAAC;QAED,IAAI,CAAC;YACH,+EAA+E;YAC/E,MAAM,MAAM,GAAG,IAAI,CAAC,WAAW,CAAC,WAAW,EAAE,CAAC;YAC9C,IAAI,UAAkB,CAAC;YACvB,IAAI,MAAM,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;gBACzB,UAAU,GAAG,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,GAAG,IAAI,IAAI,GAAG,CAAC;YACzE,CAAC;iBAAM,CAAC;gBACN,UAAU,GAAG,QAAQ,CAAC,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,EAAE,EAAE,CAAC,IAAI,GAAG,CAAC;YAClE,CAAC;YAED,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,IAAI,CAAC;gBAChC,IAAI,CAAC,eAAe,CAAC,IAAI,EAAE,UAAU,CAAC;gBACtC,IAAI,CAAC,oBAAoB,EAAE;aAC5B,CAAC,CAAC;YAEH,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YACxC,OAAO;gBACL,GAAG,MAAM;gBACT,QAAQ;gBACR,QAAQ,EAAE,KAAK;aAChB,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAExC,IAAI,KAAK,YAAY,YAAY,EAAE,CAAC;gBAClC,OAAO;oBACL,MAAM,EAAE,EAAE;oBACV,MAAM,EAAE,qBAAqB;oBAC7B,QAAQ,EAAE,IAAI;oBACd,MAAM,EAAE,SAAS;oBACjB,QAAQ;oBACR,QAAQ,EAAE,IAAI;iBACf,CAAC;YACJ,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAEO,KAAK,CAAC,eAAe,CAAC,IAAY,EAAE,UAAkB;QAC5D,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACrC,gFAAgF;YAChF,MAAM,KAAK,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,wBAAwB,UAAU,EAAE,EAAE,IAAI,EAAE,IAAI,CAAC,EAAE;gBAC9E,GAAG,EAAE,IAAI,CAAC,OAAO;gBACjB,GAAG,EAAE,IAAI,CAAC,GAAG;gBACb,OAAO,EAAE,IAAI,CAAC,OAAO;gBACrB,KAAK,EAAE,KAAK;aACb,CAAC,CAAC;YAEH,IAAI,MAAM,GAAG,EAAE,CAAC;YAChB,IAAI,MAAM,GAAG,EAAE,CAAC;YAEhB,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;gBAChC,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC5B,CAAC,CAAC,CAAC;YAEH,KAAK,CAAC,MAAM,EAAE,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE;gBAChC,MAAM,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC5B,CAAC,CAAC,CAAC;YAEH,KAAK,CAAC,EAAE,CAAC,OAAO,EAAE,CAAC,KAAK,EAAE,EAAE;gBAC1B,MAAM,CAAC,IAAI,YAAY,CAAC,oBAAoB,KAAK,CAAC,OAAO,EAAE,EAAE,EAAE,aAAa,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC;YAClG,CAAC,CAAC,CAAC;YAEH,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,EAAE;gBAChC,OAAO,CAAC;oBACN,MAAM,EAAE,MAAM,CAAC,IAAI,EAAE;oBACrB,MAAM,EAAE,MAAM,CAAC,IAAI,EAAE;oBACrB,QAAQ,EAAE,IAAI;oBACd,MAAM,EAAE,MAAM,IAAI,IAAI;iBACvB,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;YAEH,KAAK,CAAC,EAAE,CAAC,SAAS,EAAE,GAAG,EAAE;gBACvB,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;gBACtB,MAAM,CAAC,IAAI,YAAY,CAAC,oBAAoB,IAAI,CAAC,OAAO,YAAY,CAAC,CAAC,CAAC;YACzE,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC;IAEO,oBAAoB;QAC1B,OAAO,IAAI,OAAO,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,EAAE;YAC/B,UAAU,CAAC,GAAG,EAAE;gBACd,MAAM,CAAC,IAAI,YAAY,CAAC,sBAAsB,IAAI,CAAC,OAAO,YAAY,CAAC,CAAC,CAAC;YAC3E,CAAC,EAAE,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC,CAAC,aAAa;QACxC,CAAC,CAAC,CAAC;IACL,CAAC;CACF;AAED,MAAM,OAAO,aAAa;IAOxB,YAAY,UAA0B,EAAE;QACtC,IAAI,CAAC,MAAM,GAAG,IAAI,MAAM,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;QAC5C,IAAI,CAAC,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,KAAK,CAAC;QACxC,IAAI,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,MAAM,CAAC;QACjD,IAAI,CAAC,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,EAAE,CAAC;QACvC,IAAI,CAAC,cAAc,GAAG,OAAO,CAAC,cAAc,KAAK,KAAK,CAAC;IACzD,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,IAAY;QACxB,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,+BAA+B;QAC/B,IAAI,CAAC;YACH,MAAM,SAAS,CAAC,kBAAkB,CAAC,CAAC;QACtC,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,IAAI,YAAY,CAAC,2DAA2D,CAAC,CAAC;QACtF,CAAC;QAED,IAAI,CAAC;YACH,sDAAsD;YACtD,MAAM,YAAY,GAAG;mBACR,IAAI,CAAC,WAAW;iBAClB,IAAI,CAAC,QAAQ,GAAG,GAAG;UAC1B,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,CAAC,gBAAgB,CAAC,CAAC,CAAC,EAAE;;;;;kBAKpC,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC;YAEnC,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC;YACnD,MAAM,OAAO,GAAG,WAAW,WAAW,KAAK,YAAY,EAAE,CAAC;YAE1D,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,SAAS,CAAC,OAAO,CAAC,CAAC;YACpD,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAExC,OAAO;gBACL,MAAM,EAAE,MAAM,CAAC,IAAI,EAAE;gBACrB,MAAM,EAAE,MAAM,CAAC,IAAI,EAAE;gBACrB,QAAQ,EAAE,CAAC;gBACX,MAAM,EAAE,IAAI;gBACZ,QAAQ;gBACR,QAAQ,EAAE,KAAK;aAChB,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAExC,IAAI,KAAK,YAAY,KAAK,IAAI,KAAK,CAAC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAC,EAAE,CAAC;gBAClE,OAAO;oBACL,MAAM,EAAE,EAAE;oBACV,MAAM,EAAE,qBAAqB;oBAC7B,QAAQ,EAAE,IAAI;oBACd,MAAM,EAAE,SAAS;oBACjB,QAAQ;oBACR,QAAQ,EAAE,IAAI;iBACf,CAAC;YACJ,CAAC;YAED,MAAM,IAAI,YAAY,CAAC,4BAA4B,MAAM,CAAC,KAAK,CAAC,EAAE,EAAE;gBAClE,aAAa,EAAE,MAAM,CAAC,KAAK,CAAC;aAC7B,CAAC,CAAC;QACL,CAAC;IACH,CAAC;CACF;AAED,MAAM,OAAO,cAAc;IAKzB;QAJQ,mBAAc,GAA0B,IAAI,CAAC;QAC7C,kBAAa,GAAyB,IAAI,CAAC;QAIjD,IAAI,CAAC,MAAM,GAAG,IAAI,MAAM,CAAC,EAAE,KAAK,EAAE,MAAM,EAAE,CAAC,CAAC;IAC9C,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,OAAoB,SAAS,EAAE,OAAwB;QACzE,IAAI,IAAI,KAAK,QAAQ,EAAE,CAAC;YACtB,IAAI,CAAC,IAAI,CAAC,aAAa,EAAE,CAAC;gBACxB,IAAI,CAAC,aAAa,GAAG,IAAI,aAAa,CAAC,OAAO,CAAC,CAAC;YAClD,CAAC;YACD,OAAO,IAAI,CAAC,aAAa,CAAC;QAC5B,CAAC;QAED,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,CAAC;YACzB,IAAI,CAAC,cAAc,GAAG,IAAI,cAAc,CAAC,OAAO,CAAC,CAAC;QACpD,CAAC;QACD,OAAO,IAAI,CAAC,cAAc,CAAC;IAC7B,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,IAAY,EAAE,OAAwB;QAC3D,MAAM,WAAW,GAAgB,OAAO,EAAE,IAAI,IAAI,SAAS,CAAC;QAE5D,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;YAC/D,OAAO,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QACrC,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,8CAA8C;YAC9C,IAAI,WAAW,KAAK,QAAQ,IAAI,KAAK,YAAY,YAAY,EAAE,CAAC;gBAC9D,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,6DAA6D,CAAC,CAAC;gBAChF,MAAM,OAAO,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,SAAS,EAAE,OAAO,CAAC,CAAC;gBAC7D,OAAO,MAAM,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;YACrC,CAAC;YAED,MAAM,KAAK,CAAC;QACd,CAAC;IACH,CAAC;IAED,YAAY,CAAC,IAAY;QACvB,MAAM,MAAM,GAAa,EAAE,CAAC;QAC5B,MAAM,iBAAiB,GAAG;YACxB,oBAAoB;YACpB,2BAA2B;YAC3B,2BAA2B;YAC3B,qCAAqC;YACrC,mBAAmB;YACnB,sCAAsC;YACtC,sCAAsC;YACtC,iBAAiB;YACjB,4BAA4B;YAC5B,6BAA6B;YAC7B,8BAA8B;YAC9B,8BAA8B;YAC9B,uBAAuB;YACvB,eAAe;YACf,cAAc;YACd,eAAe;YACf,iBAAiB;YACjB,aAAa;YACb,qBAAqB;YACrB,wCAAwC;YACxC,sBAAsB;YACtB,YAAY;YACZ,2BAA2B;YAC3B,6BAA6B;SAC9B,CAAC;QAEF,KAAK,MAAM,OAAO,IAAI,iBAAiB,EAAE,CAAC;YACxC,IAAI,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBACvB,MAAM,CAAC,IAAI,CAAC,+BAA+B,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;YAC/D,CAAC;QACH,CAAC;QAED,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC;YAC1B,MAAM;SACP,CAAC;IACJ,CAAC;CACF"}

package/dist/security/skillguard.d.ts

@@ -0,0 +1,25 @@
+export interface Threat {
+    severity: 'critical' | 'high' | 'medium' | 'low';
+    description: string;
+    line: number;
+    pattern?: string;
+}
+export interface ScanResult {
+    score: number;
+    threats: Threat[];
+    scannedAt: string;
+}
+/**
+ * Security scanning engine for SKILL.md files
+ * Uses pattern matching to detect common threats
+ */
+export declare function scanSkill(skillPath: string): Promise<ScanResult>;
+/**
+ * Get threat severity color for display
+ */
+export declare function getSeverityColor(severity: 'critical' | 'high' | 'medium' | 'low'): string;
+/**
+ * Generate security report summary
+ */
+export declare function generateSecurityReport(result: ScanResult): string;
+//# sourceMappingURL=skillguard.d.ts.map

package/dist/security/skillguard.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"skillguard.d.ts","sourceRoot":"","sources":["../../src/security/skillguard.ts"],"names":[],"mappings":"AAGA,MAAM,WAAW,MAAM;IACrB,QAAQ,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;IACjD,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,UAAU;IACzB,KAAK,EAAE,MAAM,CAAC;IACd,OAAO,EAAE,MAAM,EAAE,CAAC;IAClB,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;;GAGG;AACH,wBAAsB,SAAS,CAAC,SAAS,EAAE,MAAM,GAAG,OAAO,CAAC,UAAU,CAAC,CAmGtE;AAED;;GAEG;AACH,wBAAgB,gBAAgB,CAC9B,QAAQ,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAC/C,MAAM,CAWR;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,MAAM,EAAE,UAAU,GAAG,MAAM,CA0BjE"}

package/dist/security/skillguard.js

@@ -0,0 +1,137 @@
+import * as fs from 'fs/promises';
+import { resolve } from 'path';
+/**
+ * Security scanning engine for SKILL.md files
+ * Uses pattern matching to detect common threats
+ */
+export async function scanSkill(skillPath) {
+    let content;
+    // Handle both file paths and raw content
+    if (skillPath.includes('\n') || skillPath.length > 500) {
+        content = skillPath;
+    }
+    else {
+        try {
+            content = await fs.readFile(resolve(skillPath), 'utf-8');
+        }
+        catch {
+            throw new Error(`Cannot read skill file: ${skillPath}`);
+        }
+    }
+    const threats = [];
+    const lines = content.split('\n');
+    // Security patterns to detect
+    const securityPatterns = [
+        {
+            name: 'Shell injection',
+            patterns: [/\$\(.*\)/g, /`.*`/g],
+            severity: 'critical',
+        },
+        {
+            name: 'Hardcoded secrets',
+            patterns: [/api[_-]?key\s*[=:]/i, /password\s*[=:]/i, /secret\s*[=:]/i],
+            severity: 'critical',
+        },
+        {
+            name: 'File system access',
+            patterns: [/fs\.unlink/g, /fs\.rmdir/g, /rm\s+-rf/g],
+            severity: 'high',
+        },
+        {
+            name: 'Network access without validation',
+            patterns: [/fetch\s*\(\s*user/i, /https?:\/\/.*\$\{/g],
+            severity: 'high',
+        },
+        {
+            name: 'eval or dynamic code execution',
+            patterns: [/eval\s*\(/g, /new\s+Function\s*\(/g, /exec\s*\(/g],
+            severity: 'critical',
+        },
+        {
+            name: 'SQL injection vulnerability',
+            patterns: [/sql.*\$\{/i, /query.*concat/i],
+            severity: 'high',
+        },
+        {
+            name: 'Unvalidated user input',
+            patterns: [/user\s*input|user.*data/i],
+            severity: 'medium',
+        },
+        {
+            name: 'Missing input validation',
+            patterns: [/process\.argv/g, /process\.env/g],
+            severity: 'medium',
+        },
+    ];
+    // Scan each line
+    lines.forEach((line, idx) => {
+        const lineNum = idx + 1;
+        securityPatterns.forEach((checker) => {
+            checker.patterns.forEach((pattern) => {
+                if (pattern.test(line)) {
+                    threats.push({
+                        severity: checker.severity,
+                        description: checker.name,
+                        line: lineNum,
+                        pattern: line.trim(),
+                    });
+                }
+            });
+        });
+    });
+    // Remove duplicates
+    const uniqueThreats = Array.from(new Map(threats.map((t) => [`${t.line}-${t.description}`, t])).values());
+    // Calculate score
+    const criticalCount = uniqueThreats.filter((t) => t.severity === 'critical').length;
+    const highCount = uniqueThreats.filter((t) => t.severity === 'high').length;
+    const mediumCount = uniqueThreats.filter((t) => t.severity === 'medium').length;
+    const score = Math.max(0, 100 - criticalCount * 30 - highCount * 15 - mediumCount * 5);
+    return {
+        score: Math.round(score),
+        threats: uniqueThreats,
+        scannedAt: new Date().toISOString(),
+    };
+}
+/**
+ * Get threat severity color for display
+ */
+export function getSeverityColor(severity) {
+    switch (severity) {
+        case 'critical':
+            return 'red';
+        case 'high':
+            return 'yellow';
+        case 'medium':
+            return 'blue';
+        case 'low':
+            return 'gray';
+    }
+}
+/**
+ * Generate security report summary
+ */
+export function generateSecurityReport(result) {
+    const lines = [];
+    lines.push(`Security Scan Report`);
+    lines.push(`====================`);
+    lines.push(`Overall Score: ${result.score}/100`);
+    lines.push(`Scanned at: ${result.scannedAt}`);
+    lines.push('');
+    if (result.threats.length === 0) {
+        lines.push('No threats detected.');
+    }
+    else {
+        lines.push(`Threats Found: ${result.threats.length}`);
+        lines.push('');
+        result.threats.forEach((threat, idx) => {
+            lines.push(`${idx + 1}. [${threat.severity.toUpperCase()}] ${threat.description}`);
+            lines.push(`   Line: ${threat.line}`);
+            if (threat.pattern) {
+                lines.push(`   Pattern: ${threat.pattern}`);
+            }
+            lines.push('');
+        });
+    }
+    return lines.join('\n');
+}
+//# sourceMappingURL=skillguard.js.map

package/dist/security/skillguard.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"skillguard.js","sourceRoot":"","sources":["../../src/security/skillguard.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,aAAa,CAAC;AAClC,OAAO,EAAE,OAAO,EAAE,MAAM,MAAM,CAAC;AAe/B;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,SAAS,CAAC,SAAiB;IAC/C,IAAI,OAAe,CAAC;IAEpB,yCAAyC;IACzC,IAAI,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,SAAS,CAAC,MAAM,GAAG,GAAG,EAAE,CAAC;QACvD,OAAO,GAAG,SAAS,CAAC;IACtB,CAAC;SAAM,CAAC;QACN,IAAI,CAAC;YACH,OAAO,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,SAAS,CAAC,EAAE,OAAO,CAAC,CAAC;QAC3D,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,IAAI,KAAK,CAAC,2BAA2B,SAAS,EAAE,CAAC,CAAC;QAC1D,CAAC;IACH,CAAC;IAED,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAElC,8BAA8B;IAC9B,MAAM,gBAAgB,GAAG;QACvB;YACE,IAAI,EAAE,iBAAiB;YACvB,QAAQ,EAAE,CAAC,WAAW,EAAE,OAAO,CAAC;YAChC,QAAQ,EAAE,UAAmB;SAC9B;QACD;YACE,IAAI,EAAE,mBAAmB;YACzB,QAAQ,EAAE,CAAC,qBAAqB,EAAE,kBAAkB,EAAE,gBAAgB,CAAC;YACvE,QAAQ,EAAE,UAAmB;SAC9B;QACD;YACE,IAAI,EAAE,oBAAoB;YAC1B,QAAQ,EAAE,CAAC,aAAa,EAAE,YAAY,EAAE,WAAW,CAAC;YACpD,QAAQ,EAAE,MAAe;SAC1B;QACD;YACE,IAAI,EAAE,mCAAmC;YACzC,QAAQ,EAAE,CAAC,oBAAoB,EAAE,oBAAoB,CAAC;YACtD,QAAQ,EAAE,MAAe;SAC1B;QACD;YACE,IAAI,EAAE,gCAAgC;YACtC,QAAQ,EAAE,CAAC,YAAY,EAAE,sBAAsB,EAAE,YAAY,CAAC;YAC9D,QAAQ,EAAE,UAAmB;SAC9B;QACD;YACE,IAAI,EAAE,6BAA6B;YACnC,QAAQ,EAAE,CAAC,YAAY,EAAE,gBAAgB,CAAC;YAC1C,QAAQ,EAAE,MAAe;SAC1B;QACD;YACE,IAAI,EAAE,wBAAwB;YAC9B,QAAQ,EAAE,CAAC,0BAA0B,CAAC;YACtC,QAAQ,EAAE,QAAiB;SAC5B;QACD;YACE,IAAI,EAAE,0BAA0B;YAChC,QAAQ,EAAE,CAAC,gBAAgB,EAAE,eAAe,CAAC;YAC7C,QAAQ,EAAE,QAAiB;SAC5B;KACF,CAAC;IAEF,iBAAiB;IACjB,KAAK,CAAC,OAAO,CAAC,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE;QAC1B,MAAM,OAAO,GAAG,GAAG,GAAG,CAAC,CAAC;QAExB,gBAAgB,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;YACnC,OAAO,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;gBACnC,IAAI,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;oBACvB,OAAO,CAAC,IAAI,CAAC;wBACX,QAAQ,EAAE,OAAO,CAAC,QAAQ;wBAC1B,WAAW,EAAE,OAAO,CAAC,IAAI;wBACzB,IAAI,EAAE,OAAO;wBACb,OAAO,EAAE,IAAI,CAAC,IAAI,EAAE;qBACrB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC,CAAC,CAAC;QACL,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,oBAAoB;IACpB,MAAM,aAAa,GAAG,KAAK,CAAC,IAAI,CAC9B,IAAI,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,EAAE,CACxE,CAAC;IAEF,kBAAkB;IAClB,MAAM,aAAa,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,UAAU,CAAC,CAAC,MAAM,CAAC;IACpF,MAAM,SAAS,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,MAAM,CAAC,CAAC,MAAM,CAAC;IAC5E,MAAM,WAAW,GAAG,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC,MAAM,CAAC;IAEhF,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CACpB,CAAC,EACD,GAAG,GAAG,aAAa,GAAG,EAAE,GAAG,SAAS,GAAG,EAAE,GAAG,WAAW,GAAG,CAAC,CAC5D,CAAC;IAEF,OAAO;QACL,KAAK,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC;QACxB,OAAO,EAAE,aAAa;QACtB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;KACpC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAC9B,QAAgD;IAEhD,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,UAAU;YACb,OAAO,KAAK,CAAC;QACf,KAAK,MAAM;YACT,OAAO,QAAQ,CAAC;QAClB,KAAK,QAAQ;YACX,OAAO,MAAM,CAAC;QAChB,KAAK,KAAK;YACR,OAAO,MAAM,CAAC;IAClB,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CAAC,MAAkB;IACvD,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,KAAK,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;IACnC,KAAK,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;IACnC,KAAK,CAAC,IAAI,CAAC,kBAAkB,MAAM,CAAC,KAAK,MAAM,CAAC,CAAC;IACjD,KAAK,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,SAAS,EAAE,CAAC,CAAC;IAC9C,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAEf,IAAI,MAAM,CAAC,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAChC,KAAK,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;IACrC,CAAC;SAAM,CAAC;QACN,KAAK,CAAC,IAAI,CAAC,kBAAkB,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC,CAAC;QACtD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEf,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC,MAAM,EAAE,GAAG,EAAE,EAAE;YACrC,KAAK,CAAC,IAAI,CAAC,GAAG,GAAG,GAAG,CAAC,MAAM,MAAM,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,MAAM,CAAC,WAAW,EAAE,CAAC,CAAC;YACnF,KAAK,CAAC,IAAI,CAAC,YAAY,MAAM,CAAC,IAAI,EAAE,CAAC,CAAC;YACtC,IAAI,MAAM,CAAC,OAAO,EAAE,CAAC;gBACnB,KAAK,CAAC,IAAI,CAAC,eAAe,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;YAC9C,CAAC;YACD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACjB,CAAC,CAAC,CAAC;IACL,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC"}

package/dist/tools/index.d.ts

@@ -0,0 +1,55 @@
+import { ZodSchema } from 'zod';
+export interface SkillTool {
+    name: string;
+    description: string;
+    schema: ZodSchema;
+    execute(input: unknown): Promise<unknown>;
+}
+export interface ToolDefinition {
+    name: string;
+    description: string;
+    schema: Record<string, unknown>;
+}
+export interface ToolCallRequest {
+    name: string;
+    input: Record<string, unknown>;
+}
+export interface ToolCallResult {
+    toolName: string;
+    input: Record<string, unknown>;
+    output: unknown;
+    duration: number;
+    success: boolean;
+    error?: string;
+}
+export declare class ToolRegistry {
+    private tools;
+    private logger;
+    private webToolsRegistered;
+    constructor();
+    /**
+     * Register all 5 native web intelligence tools as first-class built-ins.
+     * No API keys required — all engines work out of the box.
+     *
+     * Tools registered:
+     *   web_search    — DuckDuckGo + Google + SearXNG search
+     *   web_extract   — Content-density extraction from any URL
+     *   web_crawl     — BFS crawler with depth control
+     *   web_research  — Multi-round search+extract+synthesis
+     *   web_map       — Sitemap.xml + link discovery
+     */
+    private registerNativeWebTools;
+    /** Check if native web intelligence tools are active */
+    isWebIntelligenceActive(): boolean;
+    /** Register a SkillTool instance directly (used by plugins, custom tools, etc.) */
+    register(tool: SkillTool): void;
+    private registerBuiltins;
+    registerTool(name: string, handler: (input: unknown) => Promise<unknown>, schema: ZodSchema): void;
+    getTool(name: string): SkillTool | undefined;
+    executeTool(request: ToolCallRequest): Promise<ToolCallResult>;
+    listTools(): ToolDefinition[];
+    getToolsForVercelAI(): Record<string, any>;
+    private zodSchemaToJsonSchema;
+    private mapZodToJsonType;
+}
+//# sourceMappingURL=index.d.ts.map

package/dist/tools/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/tools/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAK,SAAS,EAAE,MAAM,KAAK,CAAC;AAKnC,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,SAAS,CAAC;IAClB,OAAO,CAAC,KAAK,EAAE,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC;CAC3C;AAED,MAAM,WAAW,cAAc;IAC7B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACjC;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAC/B,MAAM,EAAE,OAAO,CAAC;IAChB,QAAQ,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED,qBAAa,YAAY;IACvB,OAAO,CAAC,KAAK,CAAqC;IAClD,OAAO,CAAC,MAAM,CAAS;IACvB,OAAO,CAAC,kBAAkB,CAAS;;IAQnC;;;;;;;;;;OAUG;IACH,OAAO,CAAC,sBAAsB;IAe9B,wDAAwD;IACxD,uBAAuB,IAAI,OAAO;IAIlC,mFAAmF;IACnF,QAAQ,CAAC,IAAI,EAAE,SAAS,GAAG,IAAI;IAI/B,OAAO,CAAC,gBAAgB;IAgJxB,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,KAAK,EAAE,OAAO,KAAK,OAAO,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,SAAS,GAAG,IAAI;IAWlG,OAAO,CAAC,IAAI,EAAE,MAAM,GAAG,SAAS,GAAG,SAAS;IAItC,WAAW,CAAC,OAAO,EAAE,eAAe,GAAG,OAAO,CAAC,cAAc,CAAC;IAsCpE,SAAS,IAAI,cAAc,EAAE;IAuB7B,mBAAmB,IAAI,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC;IAa1C,OAAO,CAAC,qBAAqB;IA6B7B,OAAO,CAAC,gBAAgB;CAczB"}