vanguard-cli 3.1.18 → 3.1.20

package/README.md

@@ -26,7 +26,8 @@ Modern software supply chain attacks are sophisticated. Traditional antiviruses
 *   🧠 **Hybrid Intelligence:** Combines **Google Gemini 2.0**'s reasoning with a curated **Threat Intelligence DB** and **OSV.dev** vulnerability data.
 *   ⚡ **Zero-Latency Caching:** Uses SHA-256 hashing to memorize safe files. Re-scanning a project takes milliseconds.
 *   🔒 **Privacy First:** Supports **Local Ollama**. Your code never leaves your machine if you choose local models.
-*   🛡️ **Proactive Defense:** It doesn't just scan; it intercepts Git commands to prevent bad code from reaching your machine.
+*   🛡️ **Proactive Defense:** It doesn't just scan; it intercepts Git commands to prevent bad code from reaching your disk.
+*   ⚡ **Flexible Audit Modes:** Choose between a **Quick Audit** (targeting configuration and entry files) or a **Deep Audit** (full behavioral analysis of all code files).
 
 ---
 

package/bin/vanguard.js

@@ -8,11 +8,15 @@ import { runIntegrate } from '../lib/commands/integrate.js';
 import { handlePull, handleClone } from '../lib/commands/scan.js';
 import { showBanner, showFooter } from '../lib/utils/ui.js';
 import config from '../lib/utils/config.js';
+import { checkForUpdates } from '../lib/utils/update.js';
 
 import { createRequire } from 'module';
 const require = createRequire(import.meta.url);
 const pkg = require('../package.json');
 
+// Check for updates in the background
+checkForUpdates(pkg.version);
+
 const program = new Command();
 
 async function handleAction(actionName, logicFn) {
@@ -35,38 +39,24 @@ async function handleAction(actionName, logicFn) {
     const options = program.opts();
     config.set('VERBOSE', !!options.verbose);
 
-    const { proceed } = await inquirer.prompt([
+    const { mode } = await inquirer.prompt([
         {
-            type: 'confirm',
-            name: 'proceed',
-            message: `🛡️ Vanguard Enterprise Edition detected a ${actionName}. Activate Hybrid Intelligence?`,
-            default: true,
+            type: 'list',
+            name: 'mode',
+            message: `🛡️ Vanguard Enterprise Edition detected a ${actionName}. Select protection level:`,
+            choices: [
+                { name: chalk.green('⚡ Quick Audit ') + chalk.dim('(Config & Entry Files)'), value: 'quick' },
+                { name: chalk.cyan('🛡️  Deep Audit  ') + chalk.dim('(Full behavioral scanning)'), value: 'deep' },
+                { name: chalk.yellow('⚠️  Skip        ') + chalk.dim('(Direct execution - RISKY)'), value: 'skip' },
+            ],
+            default: 'quick',
         },
     ]);
 
-    if (!proceed) {
-        console.log(chalk.yellow('⚠️  Skipping protection. Proceeding at your own risk.'));
+    if (mode === 'skip') {
+        console.log(chalk.yellow('\n⚠️  Skipping protection. Proceeding at your own risk.'));
 
-        // If the user skips Vanguard, we must execute the original git command
         if (actionName === 'CLONE') {
-            // Reconstruct arguments
-            const args = process.argv.slice(3); // Remove node, bin, clone
-            // This is a simplified fallback. In a real integration, we'd want to execSync/spawn 
-            // "git clone ..." but since we are inside a node process wrapping git, 
-            // we can suggest the user run usage logic or attempt spawn.
-
-            // However, for the 'integrate' shell function, if 'vanguard' exits with 0 and no output,
-            // the shell function expects to be done.
-            // The Shell Integration logic:
-            // if [ "$1" = "clone" ] ... vanguard clone ... else git clone ...
-
-            // If we return here, Vanguard finishes. The shell wrapper won't run `git clone` because 
-            // it delegated the job to `vanguard clone`.
-
-            // SO: We must actually perform the git clone ourselves now, or exit with a specific code 
-            // that tells the shell wrapper to fallback (complex).
-
-            // Easiest path: Spawn 'git' directly here.
             const { spawn } = await import('child_process');
             const gitArgs = [actionName.toLowerCase(), ...process.argv.slice(3)];
 
@@ -74,13 +64,12 @@ async function handleAction(actionName, logicFn) {
             child.on('close', (code) => {
                 process.exit(code);
             });
-            // We return promise to await exit
             return new Promise(() => { });
         }
         return;
     }
 
-    await logicFn();
+    await logicFn(mode);
     showFooter();
 }
 
@@ -117,7 +106,7 @@ program
     .description('Audit and pull upstream changes')
     .option('-f, --force', 'Force merge even if threats are detected')
     .action(async (cmdOptions) => {
-        await handleAction('PULL', () => handlePull(cmdOptions, program.opts()));
+        await handleAction('PULL', (mode) => handlePull(cmdOptions, program.opts(), mode));
     });
 
 program
@@ -126,7 +115,7 @@ program
     .argument('<url>', 'Git URL')
     .argument('[directory]', 'Target directory')
     .action(async (url, directory) => {
-        await handleAction('CLONE', () => handleClone(url, directory, program.opts()));
+        await handleAction('CLONE', (mode) => handleClone(url, directory, program.opts(), mode));
     });
 
 showBanner(pkg.version);

package/lib/commands/scan.js

@@ -11,24 +11,27 @@ import { walkProject } from '../utils/walker.js';
 import {
     fetchUpstream,
     getUpstreamDiff,
+    getUpstreamDiffFiles,
     mergeUpstream,
     createSandboxClone,
     finalizeClone,
     cleanupSandbox,
 } from '../services/git.js';
 
-export async function handlePull(cmdOptions, programOptions) {
+export async function handlePull(cmdOptions, programOptions, mode = 'deep') {
     if (programOptions.clearCache) CacheManager.clear();
+    const scanner = new VanguardScanner(programOptions.model);
 
     const intel = new IntelligenceEngine(programOptions.verbose);
     const spinner = createSpinner('🚀 Syncing intelligence & probing connections...').start();
 
     const pkgContent = await fs.readFile(path.join(process.cwd(), 'package.json'), 'utf-8').catch(() => null);
     const context = await intel.sync(pkgContent);
+    scanner.intelligenceContext = context;
 
     spinner.text = '🔍 Auditing diff for supply chain threats...';
     await fetchUpstream();
-    const diff = await getUpstreamDiff();
+    let diff = await getUpstreamDiff();
 
     if (!diff || diff.trim() === '') {
         spinner.succeed('✅ No upstream changes to audit.');
@@ -36,13 +39,28 @@ export async function handlePull(cmdOptions, programOptions) {
         return;
     }
 
-    const scanner = new VanguardScanner(programOptions.model, context);
+    if (mode === 'quick') {
+        const filenames = await getUpstreamDiffFiles();
+        const highRiskFilenames = filenames.filter(f => scanner.isHighRisk(f));
+
+        if (highRiskFilenames.length === 0) {
+            spinner.succeed('✅ No high-risk files modified. Quick Scan Passed.');
+            await mergeUpstream();
+            return;
+        }
+
+        console.log(chalk.cyan(`\n⚡ Quick Audit: ${highRiskFilenames.length}/${filenames.length} modified files targeted.`));
+        // Get diff only for high risk files
+        diff = await getUpstreamDiff(highRiskFilenames);
+    }
+
     let analysis;
     try {
         analysis = await scanner.scan('git_diff', diff, spinner);
     } catch (err) {
         if (err.message === 'CRITICAL_AUTH_FAILURE') {
-            process.exit(1);
+            process.exitCode = 1;
+            return;
         }
         let msg = err.message;
         if (msg.includes('[GoogleGenerativeAI Error]')) {
@@ -67,7 +85,7 @@ export async function handlePull(cmdOptions, programOptions) {
             : await inquirer.prompt([
                 {
                     type: 'confirm',
-                    name: 'force',
+                    name: 'proceed',
                     message: '⚠️ BLOCK VERDICT. Force override merge?',
                     default: false,
                 },
@@ -81,7 +99,7 @@ export async function handlePull(cmdOptions, programOptions) {
     }
 }
 
-export async function handleClone(url, directory, programOptions) {
+export async function handleClone(url, directory, programOptions, mode = 'deep') {
     const targetPath = directory || path.basename(url, '.git');
 
     const intel = new IntelligenceEngine(programOptions.verbose);
@@ -93,20 +111,28 @@ export async function handleClone(url, directory, programOptions) {
     const pkgContent = await fs.readFile(path.join(tempPath, 'package.json'), 'utf-8').catch(() => null);
     const context = await intel.sync(pkgContent);
 
-    const files = await walkProject(tempPath);
+    const allFiles = await walkProject(tempPath);
     spinner.stop();
 
-    console.log(chalk.cyan(`\n📑 Batch Audit: ${files.length} files identified.`));
-
     const scanner = new VanguardScanner(programOptions.model, context);
+
+    // Filtering based on mode
+    let filesToScan = allFiles;
+    if (mode === 'quick') {
+        filesToScan = allFiles.filter(f => scanner.isHighRisk(f));
+        console.log(chalk.cyan(`\n⚡ Quick Audit: ${filesToScan.length}/${allFiles.length} critical files targeted.`));
+    } else {
+        console.log(chalk.cyan(`\n📑 Batch Audit: ${allFiles.length} files identified.`));
+    }
+
     let finalVerdict = 'SAFE';
     let allThreats = [];
     let cachedCount = 0;
     let skippedCount = 0;
 
-    const scanSpinner = createSpinner(`🧠 Auditing ${files.length} files...`).start();
+    const scanSpinner = createSpinner(`🧠 Auditing ${filesToScan.length} files...`).start();
 
-    for (const file of files) {
+    for (const file of filesToScan) {
         const stats = await fs.stat(file);
 
         // Enterprise Filtering
@@ -136,12 +162,12 @@ export async function handleClone(url, directory, programOptions) {
         } catch (err) {
             if (err.message === 'CRITICAL_AUTH_FAILURE') {
                 await cleanupSandbox(tempPath);
-                process.exit(1);
+                process.exitCode = 1;
+                return;
             }
             let msg = err.message;
-            // Clean up Google's noisy JSON error if it slipped through
             if (msg.includes('[GoogleGenerativeAI Error]')) {
-                msg = msg.split('[')[0].trim(); // Take the first part or default to simple text
+                msg = msg.split('[')[0].trim();
                 if (msg.includes('400')) msg = 'Invalid API Request (400). Check configuration.';
                 else if (msg.length > 100) msg = 'AI Service Error (Check connection/quota)';
             }
@@ -153,19 +179,20 @@ export async function handleClone(url, directory, programOptions) {
         }
     }
 
-    scanSpinner.succeed(`Audit Complete: ${files.length} identified (${cachedCount} cached, ${skippedCount} skipped).`);
+    scanSpinner.succeed(`Audit Complete: ${filesToScan.length} scanned (${cachedCount} cached, ${skippedCount} skipped).`);
 
     if (finalVerdict === 'BLOCK') {
         showAlert({
             verdict: 'BLOCK',
             risk_score: 99,
             threats: allThreats,
-            summary: 'Enterprise Deep Audit identified multiple high-risk vectors.',
+            summary: `Enterprise ${mode.toUpperCase()} Audit identified multiple high-risk vectors.`,
         });
         await cleanupSandbox(tempPath);
         console.log(chalk.red.bold('\n🛡️ Malware Detected! Clone aborted. Your disk is safe.'));
     } else {
-        console.log(chalk.green(`\n✅ Deep Audit Passed. Finalizing clone to ${targetPath}...`));
+        const label = mode === 'quick' ? 'Quick Audit' : 'Deep Audit';
+        console.log(chalk.green(`\n✅ ${label} Passed. Finalizing clone to ${targetPath}...`));
         await finalizeClone(tempPath, targetPath);
     }
 }

package/lib/services/git.js

@@ -17,9 +17,19 @@ export async function fetchUpstream() {
 /**
  * Gets the diff string for scanning.
  */
-export async function getUpstreamDiff() {
+export async function getUpstreamDiff(files = []) {
   // Compare HEAD vs FETCH_HEAD (which is what was just fetched)
-  return await git.diff(['HEAD..FETCH_HEAD']);
+  const args = ['HEAD..FETCH_HEAD'];
+  if (files.length > 0) args.push('--', ...files);
+  return await git.diff(args);
+}
+
+/**
+ * Gets the list of filenames changed in upstream.
+ */
+export async function getUpstreamDiffFiles() {
+  const diffSummary = await git.diffSummary(['HEAD..FETCH_HEAD']);
+  return diffSummary.files.map(f => f.file);
 }
 
 /**

package/lib/services/scanner.js

@@ -1,190 +1,217 @@
-import { GoogleGenerativeAI } from '@google/generative-ai';
-import config from '../utils/config.js';
-import fetch from 'node-fetch';
-import fs from 'fs/promises';
-import path from 'path';
-import { fileURLToPath } from 'url';
-import chalk from 'chalk';
-import pLimit from 'p-limit';
-
-const __dirname = path.dirname(fileURLToPath(import.meta.url));
-const THREATS_PATH = path.join(__dirname, '../threats.json');
-
-const limit = pLimit(1); // Conservative concurrency for free tier stability
-
-export const sleep = (ms) => new Promise((resolve) => setTimeout(resolve, ms));
-
-export class VanguardScanner {
-  constructor(modelOverride, intelligenceContext = '') {
-    this.provider = config.get('AI_PROVIDER');
-    this.modelOverride = modelOverride;
-    this.intelligenceContext = intelligenceContext;
-  }
-
-  shouldSkip(filePath, stats) {
-    const ext = path.extname(filePath).toLowerCase();
-    const binaryExtensions = [
-      '.exe', '.dll', '.so', '.bin', '.png', '.jpg', '.jpeg', '.gif', '.pdf', '.zip', '.gz',
-    ];
-    if (binaryExtensions.includes(ext)) return true;
-    if (stats.size > 100 * 1024) return true;
-    if (filePath.includes('node_modules')) return true;
-    return false;
-  }
-
-  async getSystemInstruction() {
-    const threatsData = await fs.readFile(THREATS_PATH, 'utf-8');
-    const threats = JSON.parse(threatsData);
-    const categoriesListing = threats
-      .map((t, i) => `${i + 1}. **${t.name}:** ${t.description}`)
-      .join('\n');
-
-    return `
-You are a Senior Security Architect & Auditor. YOUR MISSION: Prevent Supply Chain Attacks.
-Analyze the provided code/diff with extreme scrutiny.
-
-YOU MUST BLOCK IF YOU DETECT ANY OF THESE CATEGORIES:
-${categoriesListing}
-
-${this.intelligenceContext}
-
-JSON OUTPUT RULES:
-- risk_score: 0-100.
-- verdict: "BLOCK" or "SAFE".
-- threats: Array of { "file", "line", "threat", "reason" }
-- summary: Clear explanation.
-
-RESPONSE FORMAT (JSON ONLY):
-{ "risk_score": 95, "verdict": "BLOCK", "threats": [], "summary": "..." }
-`;
-  }
-
-  async scan(filePath, content, spinner = null) {
-    // Random Jitter Throttling (1s - 3s)
-    if (this.provider === 'gemini') {
-      const jitter = Math.floor(Math.random() * 2000) + 1000;
-      await sleep(jitter);
-    }
-    return limit(() => this.scanWithRetry(filePath, content, spinner));
-  }
-
-  async scanWithRetry(filePath, content, spinner, attempt = 1) {
-    const maxAttempts = 3;
-    try {
-      if (this.provider === 'gemini') {
-        return await this.scanWithGemini(content);
-      } else {
-        return await this.scanWithOllama(content);
-      }
-    } catch (error) {
-      const isRateLimit =
-        error.message.includes('429') ||
-        error.message.includes('Too Many Requests') ||
-        error.message.includes('Quota');
-
-      const isServerErr = error.message.includes('500') || error.message.includes('503');
-
-      if (isRateLimit && attempt <= maxAttempts) {
-        const waitTime = attempt === 1 ? 30 : 60;
-        if (spinner) {
-          const originalText = spinner.text;
-          for (let i = waitTime; i > 0; i--) {
-            // Only update once per second to prevent terminal flickering
-            if (spinner.text.includes(`${i}s`)) continue;
-            spinner.text = `❄️ Quota hit (${i}s). Waiting... (Tip: Ctrl+C -> 'vanguard config' to switch AI)`;
-            await sleep(1000);
-          }
-          spinner.text = originalText;
-        } else {
-          console.log(chalk.yellow(`\n⚠️ Rate limit hit. Cooling down for ${waitTime}s... (Tip: 'vanguard config' to switch AI)`));
-          await sleep(waitTime * 1000);
-        }
-        return this.scanWithRetry(filePath, content, spinner, attempt + 1);
-      } else if (isRateLimit) {
-        // Final failure after retries
-        console.log(chalk.blue('\n💡 Tip: Gemini Quota exceeded? Switch to local offline mode:'));
-        console.log(chalk.cyan('   vanguard config  -> Select "Local Ollama"'));
-      }
-
-      const isOllamaError = error.message.includes('Ollama error') || error.message.includes('fetch failed');
-      if (isOllamaError) {
-        console.log(chalk.blue('\n💡 Tip: Local AI failing? Switch to Cloud fallback:'));
-        console.log(chalk.cyan('   vanguard config  -> Select "Google Gemini"'));
-      }
-
-      const isAuthError =
-        error.message.includes('API key') ||
-        error.message.includes('400') ||
-        error.message.includes('PERMISSION_DENIED');
-
-      if (isAuthError) {
-        if (spinner) spinner.fail('Authentication Failed');
-        console.log(chalk.red('\n❌ Critical: Gemini API Key is invalid, expired, or missing permissions.'));
-        console.log(chalk.yellow('👉 Run "vanguard config" to update your credentials.'));
-        // We fail closed - do not allow the scan to proceed or return 'safe'
-        // process.exit(1) can cause UV_HANDLE_CLOSING assertion on Windows if async ops are pending.
-        // Instead, throw a specific error that the caller can catch and exit cleanly.
-        throw new Error('CRITICAL_AUTH_FAILURE');
-      }
-
-      if (isServerErr && attempt === 1) {
-        if (spinner) spinner.text = '🔄 AI Server hiccup. Retrying immediately...';
-        return this.scanWithRetry(filePath, content, spinner, attempt + 1);
-      }
-
-      throw error;
-    }
-  }
-
-  async scanWithGemini(content) {
-    const apiKey = config.get('GEMINI_KEY');
-    if (!apiKey) throw new Error('Gemini API Key missing. Run "vanguard config"');
-
-    if (!apiKey || apiKey.trim() === '') {
-      throw new Error('API key is missing.');
-    }
-    const genAI = new GoogleGenerativeAI(apiKey.trim());
-    // Use the latest stable pro flash model for the best performance/quota ratio
-    const model = genAI.getGenerativeModel({ model: 'gemini-2.0-flash' });
-    const instruction = await this.getSystemInstruction();
-
-    const result = await model.generateContent({
-      contents: [{ role: 'user', parts: [{ text: `${instruction}\n\nFILE CONTENT:\n${content}` }] }],
-    });
-
-    const response = await result.response;
-    return this.parseResponse(response.text());
-  }
-
-  async scanWithOllama(content) {
-    const model = this.modelOverride || config.get('OLLAMA_MODEL');
-    const url = `${config.get('OLLAMA_URL')}/api/generate`;
-    const instruction = await this.getSystemInstruction();
-
-    const response = await fetch(url, {
-      method: 'POST',
-      headers: { 'Content-Type': 'application/json' },
-      body: JSON.stringify({
-        model: model,
-        prompt: `${instruction}\n\nFILE CONTENT:\n${content}`,
-        stream: false,
-        format: 'json',
-      }),
-    });
-
-    if (!response.ok) throw new Error(`Ollama error: ${response.statusText}`);
-    const data = await response.json();
-    return this.parseResponse(data.response);
-  }
-
-  parseResponse(text) {
-    try {
-      const start = text.indexOf('{');
-      const end = text.lastIndexOf('}');
-      if (start === -1 || end === -1) throw new Error('No JSON object found');
-      return JSON.parse(text.substring(start, end + 1));
-    } catch (e) {
-      throw new Error(`Invalid AI JSON format: ${e.message}`);
-    }
-  }
-}
+import { GoogleGenerativeAI } from '@google/generative-ai';
+import config from '../utils/config.js';
+import fetch from 'node-fetch';
+import fs from 'fs/promises';
+import path from 'path';
+import { fileURLToPath } from 'url';
+import chalk from 'chalk';
+import pLimit from 'p-limit';
+
+const __dirname = path.dirname(fileURLToPath(import.meta.url));
+const THREATS_PATH = path.join(__dirname, '../threats.json');
+
+const limit = pLimit(1); // Conservative concurrency for free tier stability
+
+export const sleep = (ms) => new Promise((resolve) => setTimeout(resolve, ms));
+
+export class VanguardScanner {
+  constructor(modelOverride, intelligenceContext = '') {
+    this.provider = config.get('AI_PROVIDER');
+    this.modelOverride = modelOverride;
+    this.intelligenceContext = intelligenceContext;
+  }
+
+  shouldSkip(filePath, stats) {
+    const ext = path.extname(filePath).toLowerCase();
+    const binaryExtensions = [
+      '.exe', '.dll', '.so', '.bin', '.png', '.jpg', '.jpeg', '.gif', '.pdf', '.zip', '.gz',
+      '.ico', '.svg', '.woff', '.woff2', '.ttf', '.eot', '.webp', '.map', '.pyc', '.jar',
+    ];
+    if (binaryExtensions.includes(ext)) return true;
+    if (stats.size > 100 * 1024) return true;
+    if (filePath.includes('node_modules')) return true;
+    return false;
+  }
+
+  isHighRisk(filePath) {
+    const filename = path.basename(filePath).toLowerCase();
+    const highRiskFiles = [
+      'package.json',
+      'package-lock.json',
+      'yarn.lock',
+      'pnpm-lock.yaml',
+      'tsconfig.json',
+      'jsconfig.json',
+      '.env',
+      'install.js',
+      'postinstall.js',
+      'preinstall.js',
+    ];
+
+    if (highRiskFiles.includes(filename)) return true;
+    if (filePath.includes('.github/workflows')) return true;
+    if (filePath.includes('.vscode')) return true;
+
+    // Common entry points
+    const entryPoints = ['index.js', 'main.js', 'server.js', 'app.js', 'cli.js'];
+    if (entryPoints.includes(filename)) return true;
+
+    return false;
+  }
+
+  async getSystemInstruction() {
+    const threatsData = await fs.readFile(THREATS_PATH, 'utf-8');
+    const threats = JSON.parse(threatsData);
+    const categoriesListing = threats
+      .map((t, i) => `${i + 1}. **${t.name}:** ${t.description}`)
+      .join('\n');
+
+    return `
+You are a Senior Security Architect & Auditor. YOUR MISSION: Prevent Supply Chain Attacks.
+Analyze the provided code/diff with extreme scrutiny.
+
+YOU MUST BLOCK IF YOU DETECT ANY OF THESE CATEGORIES:
+${categoriesListing}
+
+${this.intelligenceContext}
+
+JSON OUTPUT RULES:
+- risk_score: 0-100.
+- verdict: "BLOCK" or "SAFE".
+- threats: Array of { "file", "line", "threat", "reason" }
+- summary: Clear explanation.
+
+RESPONSE FORMAT (JSON ONLY):
+{ "risk_score": 95, "verdict": "BLOCK", "threats": [], "summary": "..." }
+`;
+  }
+
+  async scan(filePath, content, spinner = null) {
+    // Random Jitter Throttling (1s - 3s)
+    if (this.provider === 'gemini') {
+      const jitter = Math.floor(Math.random() * 2000) + 1000;
+      await sleep(jitter);
+    }
+    return limit(() => this.scanWithRetry(filePath, content, spinner));
+  }
+
+  async scanWithRetry(filePath, content, spinner, attempt = 1) {
+    const maxAttempts = 3;
+    try {
+      if (this.provider === 'gemini') {
+        return await this.scanWithGemini(content);
+      } else {
+        return await this.scanWithOllama(content);
+      }
+    } catch (error) {
+      const isRateLimit =
+        error.message.includes('429') ||
+        error.message.includes('Too Many Requests') ||
+        error.message.includes('Quota');
+
+      const isServerErr = error.message.includes('500') || error.message.includes('503');
+
+      if (isRateLimit && attempt <= maxAttempts) {
+        const waitTime = attempt === 1 ? 30 : 60;
+        if (spinner) {
+          const originalText = spinner.text;
+          for (let i = waitTime; i > 0; i--) {
+            // Only update once per second to prevent terminal flickering
+            if (spinner.text.includes(`${i}s`)) continue;
+            spinner.text = `❄️ Quota hit (${i}s). Waiting... (Tip: Ctrl+C -> 'vanguard config' to switch AI)`;
+            await sleep(1000);
+          }
+          spinner.text = originalText;
+        } else {
+          console.log(chalk.yellow(`\n⚠️ Rate limit hit. Cooling down for ${waitTime}s... (Tip: 'vanguard config' to switch AI)`));
+          await sleep(waitTime * 1000);
+        }
+        return this.scanWithRetry(filePath, content, spinner, attempt + 1);
+      } else if (isRateLimit) {
+        // Final failure after retries
+        console.log(chalk.blue('\n💡 Tip: Gemini Quota exceeded? Switch to local offline mode:'));
+        console.log(chalk.cyan('   vanguard config  -> Select "Local Ollama"'));
+      }
+
+      const isOllamaError = error.message.includes('Ollama error') || error.message.includes('fetch failed');
+      if (isOllamaError) {
+        console.log(chalk.blue('\n💡 Tip: Local AI failing? Switch to Cloud fallback:'));
+        console.log(chalk.cyan('   vanguard config  -> Select "Google Gemini"'));
+      }
+
+      const isAuthError =
+        error.message.includes('API key') ||
+        error.message.includes('400') ||
+        error.message.includes('PERMISSION_DENIED');
+
+      if (isAuthError) {
+        if (spinner) spinner.fail('Authentication Failed');
+        console.log(chalk.red('\n❌ Critical: Gemini API Key is invalid, expired, or missing permissions.'));
+        console.log(chalk.yellow('👉 Run "vanguard config" to update your credentials.'));
+        // We fail closed - do not allow the scan to proceed or return 'safe'
+        // process.exit(1) can cause UV_HANDLE_CLOSING assertion on Windows if async ops are pending.
+        // Instead, throw a specific error that the caller can catch and exit cleanly.
+        throw new Error('CRITICAL_AUTH_FAILURE');
+      }
+
+      if (isServerErr && attempt === 1) {
+        if (spinner) spinner.text = '🔄 AI Server hiccup. Retrying immediately...';
+        return this.scanWithRetry(filePath, content, spinner, attempt + 1);
+      }
+
+      throw error;
+    }
+  }
+
+  async scanWithGemini(content) {
+    const apiKey = config.get('GEMINI_KEY');
+    if (!apiKey) throw new Error('Gemini API Key missing. Run "vanguard config"');
+
+    if (!apiKey || apiKey.trim() === '') {
+      throw new Error('API key is missing.');
+    }
+    const genAI = new GoogleGenerativeAI(apiKey.trim());
+    // Use the latest stable pro flash model for the best performance/quota ratio
+    const model = genAI.getGenerativeModel({ model: 'gemini-2.0-flash' });
+    const instruction = await this.getSystemInstruction();
+
+    const result = await model.generateContent({
+      contents: [{ role: 'user', parts: [{ text: `${instruction}\n\nFILE CONTENT:\n${content}` }] }],
+    });
+
+    const response = await result.response;
+    return this.parseResponse(response.text());
+  }
+
+  async scanWithOllama(content) {
+    const model = this.modelOverride || config.get('OLLAMA_MODEL');
+    const url = `${config.get('OLLAMA_URL')}/api/generate`;
+    const instruction = await this.getSystemInstruction();
+
+    const response = await fetch(url, {
+      method: 'POST',
+      headers: { 'Content-Type': 'application/json' },
+      body: JSON.stringify({
+        model: model,
+        prompt: `${instruction}\n\nFILE CONTENT:\n${content}`,
+        stream: false,
+        format: 'json',
+      }),
+    });
+
+    if (!response.ok) throw new Error(`Ollama error: ${response.statusText}`);
+    const data = await response.json();
+    return this.parseResponse(data.response);
+  }
+
+  parseResponse(text) {
+    try {
+      const start = text.indexOf('{');
+      const end = text.lastIndexOf('}');
+      if (start === -1 || end === -1) throw new Error('No JSON object found');
+      return JSON.parse(text.substring(start, end + 1));
+    } catch (e) {
+      throw new Error(`Invalid AI JSON format: ${e.message}`);
+    }
+  }
+}

package/lib/utils/ui.js

@@ -27,12 +27,13 @@ export function showAlert(analysis) {
       ? threats.map((t) => {
         const loc = t.file ? chalk.yellow(`[${t.file}${t.line ? `:${t.line}` : ''}] `) : '';
         const tag = t.threat ? chalk.red(`(${t.threat})`) : '';
-        return `• ${loc}${tag}\n  ${chalk.dim(t.reason || t)}`;
+        const reason = t.reason || (typeof t === 'string' ? t : 'Potential threat detected without specific details.');
+        return `• ${loc}${tag}\n  ${chalk.dim(reason)}`;
       })
       : [chalk.dim('• No targeted threats identified.')]),
     '',
     chalk.bold('📝 Auditor Summary:'),
-    summary,
+    typeof summary === 'string' ? summary : JSON.stringify(summary, null, 2),
   ].join('\n');
 
   console.log(

package/lib/utils/update.js

@@ -0,0 +1,41 @@
+import fetch from 'node-fetch';
+import chalk from 'chalk';
+import boxen from 'boxen';
+
+export async function checkForUpdates(currentVersion) {
+    try {
+        // We use a short timeout to prevent hanging the CLI if the network is slow
+        const response = await fetch('https://registry.npmjs.org/vanguard-cli/latest', {
+            timeout: 1500,
+        });
+
+        if (!response.ok) return;
+
+        const data = await response.json();
+        const latestVersion = data.version;
+
+        if (latestVersion && latestVersion !== currentVersion) {
+            const message = [
+                chalk.bold(`Update Available!`),
+                `${chalk.dim('Current:')} ${chalk.red(currentVersion)}`,
+                `${chalk.dim('Latest: ')} ${chalk.green(latestVersion)}`,
+                '',
+                chalk.cyan('Run the following to upgrade:'),
+                chalk.white.bgBlack(` npm install -g vanguard-cli@latest `),
+            ].join('\n');
+
+            console.log(
+                boxen(message, {
+                    padding: 1,
+                    margin: 1,
+                    borderStyle: 'round',
+                    borderColor: 'yellow',
+                    title: '🚀 Vanguard Upgrade',
+                    titleAlignment: 'center',
+                })
+            );
+        }
+    } catch (error) {
+        // Silently ignore update check failures to maintain UX
+    }
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "vanguard-cli",
-  "version": "3.1.18",
+  "version": "3.1.20",
   "description": "AI-Powered Supply Chain Firewall for Git",
   "type": "module",
   "bin": {

package/scan_output.txt

@@ -0,0 +1,79 @@
+ __     __     _      _   _    ____   _   _      _      ____    ____  
+ \ \   / /    / \    | \ | |  / ___| | | | |    / \    |  _ \  |  _ \ 
+  \ \ / /    / _ \   |  \| | | |  _  | | | |   / _ \   | |_) | | | | |
+   \ V /    / ___ \  | |\  | | |_| | | |_| |  / ___ \  |  _ <  | |_| |
+    \_/    /_/   \_\ |_| \_|  \____|  \___/  /_/   \_\ |_| \_\ |____/ 
+                                                                      
+🛡️  Enterprise AI Supply Chain Firewall v3.1.19
+
+? 🛡️ Vanguard Enterprise Edition detected a CLONE. Select protection level: (Use
+ arrow keys)
+> ΓÜí Quick Audit (Config & Entry Files) 
+  🛡️  Deep Audit  (Full behavioral scanning) 
+  ⚠️  Skip        (Direct execution - RISKY) ? 🛡️ Vanguard Enterprise Edition detected a CLONE. Select protection level: ⚡ 
+Quick Audit (Config & Entry Files)
+- ⬇️  Isolating repository in sandbox...
+  ⚠️  Using Local Rules Only (Offline Fallback)
+
+📦 OSV.dev Dependency Audit:
+ΓöîΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö¼ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö¼ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÉ
+Γöé Dependency         Γöé Status   Γöé Vulnerabilities    Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé @babel/core        Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+│ @logux/eslint-con… │ 200      │ 0                  │
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé @lukeed/uuid       Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé @napi-rs/uuid      Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+│ @originjs/vite-pl… │ 200      │ 0                  │
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé @size-limit/file   Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+│ @size-limit/webpa… │ 200      │ 0                  │
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé @types/node        Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé actions-up         Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé better-node-test   Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé c8                 Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé clean-publish      Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé eslint             Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé rndm               Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+│ secure-random-str… │ 200      │ 0                  │
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé shortid            Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé size-limit         Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé terser             Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé tinybench          Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé uid                Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé uid-safe           Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé uuid               Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé vite               Γöé 200      Γöé 1                  Γöé
+ΓööΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö┤ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö┤ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÿ
+
+ΓÜí Quick Audit: 5/34 critical files targeted.
+- 🧠 Auditing 5 files...
+Γ£ö Audit Complete: 5 scanned (4 cached, 0 skipped).
+
+✅ Quick Audit Passed. Finalizing clone to test-nanoid-log...
+
+ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇ
+🤝  Contribute: https://github.com/bazobehram/vanguard
+Γÿò  Support:    https://www.buymeacoffee.com/bazobehram
+ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇ
+

package/vanguard_scan.txt

@@ -0,0 +1,107 @@
+ __     __     _      _   _    ____   _   _      _      ____    ____  
+ \ \   / /    / \    | \ | |  / ___| | | | |    / \    |  _ \  |  _ \ 
+  \ \ / /    / _ \   |  \| | | |  _  | | | |   / _ \   | |_) | | | | |
+   \ V /    / ___ \  | |\  | | |_| | | |_| |  / ___ \  |  _ <  | |_| |
+    \_/    /_/   \_\ |_| \_|  \____|  \___/  /_/   \_\ |_| \_\ |____/ 
+                                                                      
+🛡️  Enterprise AI Supply Chain Firewall v3.1.19
+
+? 🛡️ Vanguard Enterprise Edition detected a CLONE. Select protection level: (Use
+ arrow keys)
+> ΓÜí Quick Audit (Config & Entry Files) 
+  🛡️  Deep Audit  (Full behavioral scanning) 
+  ⚠️  Skip        (Direct execution - RISKY) ? 🛡️ Vanguard Enterprise Edition detected a CLONE. Select protection level: ⚡ 
+Quick Audit (Config & Entry Files)
+- ⬇️  Isolating repository in sandbox...
+  ⚠️  Using Local Rules Only (Offline Fallback)
+
+📦 OSV.dev Dependency Audit:
+ΓöîΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö¼ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö¼ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÉ
+Γöé Dependency         Γöé Status   Γöé Vulnerabilities    Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+│ @google/generativ… │ 200      │ 0                  │
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé boxen              Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé chalk              Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé cli-table3         Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé commander          Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé conf               Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé crypto-js          Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé figlet             Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé fs-extra           Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé inquirer           Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé nanoid             Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé node-fetch         Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé ora                Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé p-limit            Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé simple-git         Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé @eslint/js         Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+│ @release-it/conve… │ 200      │ 0                  │
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé eslint             Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+│ eslint-config-pre… │ 200      │ 0                  │
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé eslint-plugin-node Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé globals            Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé nock               Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé prettier           Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé release-it         Γöé 200      Γöé 0                  Γöé
+Γö£ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö╝ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöñ
+Γöé vitest             Γöé 200      Γöé 0                  Γöé
+ΓööΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö┤ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓö┤ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÿ
+
+ΓÜí Quick Audit: 2/68 critical files targeted.
+- 🧠 Auditing 2 files...
+Γ£ö Audit Complete: 2 scanned (1 cached, 0 skipped).
+
+╔═══════════════════════════ ⚠️ HIGH RISK DETECTED ════════════════════════════╗
+Γòæ                                                                              Γòæ
+Γòæ   Verdict: BLOCK                                                             Γòæ
+Γòæ   Risk Score: 99/100                                                         Γòæ
+Γòæ                                                                              Γòæ
+║   🚨 Detailed Threat Audit:                                                  ║
+Γòæ   ΓÇó [test\fixtures\malicious\index.js:7] (Secret Exfiltration)               Γòæ
+Γòæ   Reading and exfiltrating the contents of .env file to an external          Γòæ
+Γòæ   endpoint.                                                                  Γòæ
+Γòæ   ΓÇó [test\fixtures\malicious\index.js:14] (Obfuscation & Evasion)            Γòæ
+Γòæ   Using Base64 encoding followed by eval() to execute obfuscated code.       Γòæ
+Γòæ   ΓÇó [test\fixtures\malicious\index.js:23] (Spyware/Harvesting)               Γòæ
+Γòæ   Collecting system and network information, which could be used for         Γòæ
+Γòæ   unauthorized surveillance.                                                 Γòæ
+Γòæ   ΓÇó [test\fixtures\malicious\index.js:30] (Web3/Wallet Draining)             Γòæ
+Γòæ   Simulating a fraudulent transaction request to drain cryptocurrency        Γòæ
+Γòæ   wallets.                                                                   Γòæ
+Γòæ                                                                              Γòæ
+║   📝 Auditor Summary:                                                        ║
+Γòæ   Enterprise QUICK Audit identified multiple high-risk vectors.              Γòæ
+Γòæ                                                                              Γòæ
+ΓòÜΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓòÉΓò¥
+
+
+🛡️ Malware Detected! Clone aborted. Your disk is safe.
+
+ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇ
+🤝  Contribute: https://github.com/bazobehram/vanguard
+Γÿò  Support:    https://www.buymeacoffee.com/bazobehram
+ΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇΓöÇ
+