vaspera 2.11.0 → 2.13.0

package/dist/integrations/siem/format.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"format.js","sourceRoot":"","sources":["../../../src/integrations/siem/format.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAaH,MAAM,aAAa,GAAG,SAAS,CAAC;AAChC,MAAM,cAAc,GAAG,eAAe,CAAC;AACvC,MAAM,cAAc,GAAG,QAAQ,CAAC;AAEhC;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,QAAkB;IAC5C,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,UAAU;YACb,OAAO,UAAU,CAAC;QACpB,KAAK,MAAM;YACT,OAAO,MAAM,CAAC;QAChB,KAAK,QAAQ;YACX,OAAO,QAAQ,CAAC;QAClB,KAAK,KAAK;YACR,OAAO,KAAK,CAAC;QACf,KAAK,MAAM;YACT,OAAO,eAAe,CAAC;QACzB;YACE,OAAO,eAAe,CAAC;IAC3B,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa,CAAC,QAAsB;IAClD,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,UAAU;YACb,OAAO,EAAE,CAAC;QACZ,KAAK,MAAM;YACT,OAAO,CAAC,CAAC;QACX,KAAK,QAAQ;YACX,OAAO,CAAC,CAAC;QACX,KAAK,KAAK;YACR,OAAO,CAAC,CAAC;QACX,KAAK,eAAe;YAClB,OAAO,CAAC,CAAC;QACX;YACE,OAAO,CAAC,CAAC;IACb,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,sBAAsB,CAAC,SAAwB;IACtD,MAAM,OAAO,GAAkC;QAC7C,aAAa,EAAE,UAAU;QACzB,eAAe,EAAE,UAAU;QAC3B,wBAAwB,EAAE,UAAU;QACpC,cAAc,EAAE,UAAU;QAC1B,gBAAgB,EAAE,UAAU;QAC5B,aAAa,EAAE,UAAU;QACzB,uBAAuB,EAAE,UAAU;QACnC,yBAAyB,EAAE,UAAU;QACrC,mBAAmB,EAAE,UAAU;QAC/B,iBAAiB,EAAE,UAAU;QAC7B,oBAAoB,EAAE,UAAU;KACjC,CAAC;IACF,OAAO,OAAO,CAAC,SAAS,CAAC,IAAI,UAAU,CAAC;AAC1C,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,SAAwB;IAC/C,MAAM,OAAO,GAAkC;QAC7C,aAAa,EAAE,sBAAsB;QACrC,eAAe,EAAE,wBAAwB;QACzC,wBAAwB,EAAE,+BAA+B;QACzD,cAAc,EAAE,uBAAuB;QACvC,gBAAgB,EAAE,yBAAyB;QAC3C,aAAa,EAAE,sBAAsB;QACrC,uBAAuB,EAAE,uBAAuB;QAChD,yBAAyB,EAAE,yBAAyB;QACpD,mBAAmB,EAAE,6BAA6B;QAClD,iBAAiB,EAAE,iBAAiB;QACpC,oBAAoB,EAAE,8BAA8B;KACrD,CAAC;IACF,OAAO,OAAO,CAAC,SAAS,CAAC,IAAI,eAAe,CAAC;AAC/C,CAAC;AAED;;GAEG;AACH,SAAS,SAAS,CAAC,KAAa;IAC9B,OAAO,KAAK;SACT,OAAO,CAAC,KAAK,EAAE,MAAM,CAAC;SACtB,OAAO,CAAC,IAAI,EAAE,KAAK,CAAC;SACpB,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC;SACrB,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC;SACrB,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;AAC3B,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,WAAW,CAAC,KAAgB;IAC1C,MAAM,MAAM,GAAc;QACxB,OAAO,EAAE,CAAC;QACV,YAAY,EAAE,aAAa;QAC3B,aAAa,EAAE,cAAc;QAC7B,aAAa,EAAE,cAAc;QAC7B,WAAW,EAAE,sBAAsB,CAAC,KAAK,CAAC,SAAS,CAAC;QACpD,IAAI,EAAE,eAAe,CAAC,KAAK,CAAC,SAAS,CAAC;QACtC,QAAQ,EAAE,aAAa,CAAC,KAAK,CAAC,QAAQ,CAAC;QACvC,SAAS,EAAE,EAAE;KACd,CAAC;IAEF,yBAAyB;IACzB,MAAM,GAAG,GAAG,MAAM,CAAC,SAAS,CAAC;IAC7B,GAAG,CAAC,IAAI,CAAC,GAAG,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,CAAC;IAChD,GAAG,CAAC,KAAK,CAAC,GAAG,SAAS,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IACtC,GAAG,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,MAAM,CAAC;IAC1B,GAAG,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,OAAO,CAAC;IAC3B,GAAG,CAAC,UAAU,CAAC,GAAG,SAAS,CAAC;IAE5B,IAAI,KAAK,CAAC,eAAe,EAAE,CAAC;QAC1B,GAAG,CAAC,KAAK,CAAC,GAAG,KAAK,CAAC,eAAe,CAAC;QACnC,GAAG,CAAC,UAAU,CAAC,GAAG,iBAAiB,CAAC;IACtC,CAAC;IAED,8BAA8B;IAC9B,MAAM,IAAI,GAAG,KAAK,CAAC,IAAmC,CAAC;IACvD,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;QACnB,GAAG,CAAC,YAAY,CAAC,GAAG,IAAI,CAAC,SAAS,CAAC;IACrC,CAAC;IACD,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;QACd,GAAG,CAAC,UAAU,CAAC,GAAG,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IACzC,CAAC;IACD,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;QACd,GAAG,CAAC,QAAQ,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC;IAC5B,CAAC;IACD,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;QAClB,GAAG,CAAC,KAAK,CAAC,GAAG,SAAS,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IACxC,CAAC;IACD,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;QACjB,GAAG,CAAC,qBAAqB,CAAC,GAAG,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACrD,GAAG,CAAC,0BAA0B,CAAC,GAAG,SAAS,CAAC;IAC9C,CAAC;IACD,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;QAChB,GAAG,CAAC,KAAK,CAAC,GAAG,SAAS,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACpC,GAAG,CAAC,UAAU,CAAC,GAAG,QAAQ,CAAC;IAC7B,CAAC;IACD,IAAI,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC1C,GAAG,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACnC,GAAG,CAAC,UAAU,CAAC,GAAG,QAAQ,CAAC;IAC7B,CAAC;IAED,oBAAoB;IACpB,MAAM,MAAM,GAAG;QACb,OAAO,MAAM,CAAC,OAAO,EAAE;QACvB,SAAS,CAAC,MAAM,CAAC,YAAY,CAAC;QAC9B,SAAS,CAAC,MAAM,CAAC,aAAa,CAAC;QAC/B,SAAS,CAAC,MAAM,CAAC,aAAa,CAAC;QAC/B,SAAS,CAAC,MAAM,CAAC,WAAW,CAAC;QAC7B,SAAS,CAAC,MAAM,CAAC,IAAI,CAAC;QACtB,MAAM,CAAC,QAAQ,CAAC,QAAQ,EAAE;KAC3B,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IAEZ,mBAAmB;IACnB,MAAM,SAAS,GAAG,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC;SAClC,GAAG,CAAC,CAAC,CAAC,GAAG,EAAE,KAAK,CAAC,EAAE,EAAE,CAAC,GAAG,GAAG,IAAI,KAAK,EAAE,CAAC;SACxC,IAAI,CAAC,GAAG,CAAC,CAAC;IAEb,OAAO,GAAG,MAAM,IAAI,SAAS,EAAE,CAAC;AAClC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,KAAgB;IAC3C,OAAO;QACL,YAAY,EAAE,KAAK,CAAC,SAAS;QAC7B,KAAK,EAAE;YACL,IAAI,EAAE,OAAO;YACb,QAAQ,EAAE,CAAC,UAAU,CAAC;YACtB,IAAI,EAAE,CAAC,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;YACrC,MAAM,EAAE,KAAK,CAAC,SAAS;YACvB,QAAQ,EAAE,aAAa,CAAC,KAAK,CAAC,QAAQ,CAAC;YACvC,aAAa,EAAE,KAAK,CAAC,QAAQ;SAC9B;QACD,OAAO,EAAE,KAAK,CAAC,OAAO;QACtB,MAAM,EAAE;YACN,QAAQ,EAAE,KAAK,CAAC,MAAM;YACtB,OAAO,EAAE,cAAc;SACxB;QACD,OAAO,EAAE;YACP,IAAI,EAAE,KAAK,CAAC,OAAO;YACnB,gBAAgB,EAAE,KAAK,CAAC,eAAe;SACxC;QACD,OAAO,EAAE,KAAK,CAAC,IAAI;KACpB,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAC7B,KAAgB,EAChB,UAKI,EAAE;IAEN,OAAO;QACL,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC;QAC5D,IAAI,EAAE,OAAO,CAAC,IAAI,IAAI,SAAS;QAC/B,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,mBAAmB;QAC7C,UAAU,EAAE,OAAO,CAAC,UAAU,IAAI,OAAO;QACzC,KAAK,EAAE,OAAO,CAAC,KAAK;QACpB,KAAK,EAAE,YAAY,CAAC,KAAK,CAAC;KAC3B,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,KAAgB;IAChD,MAAM,IAAI,GAAG,YAAY,CAAC,KAAK,CAA4B,CAAC;IAC5D,OAAO;QACL,aAAa,EAAE,KAAK,CAAC,SAAS;QAC9B,WAAW,EAAE,KAAK,CAAC,SAAS;QAC5B,UAAU,EAAE,KAAK,CAAC,QAAQ;QAC1B,SAAS,EAAE,KAAK,CAAC,OAAO;QACxB,iBAAiB,EAAE,KAAK,CAAC,eAAe,IAAI,EAAE;QAC9C,SAAS,EAAE,KAAK,CAAC,OAAO;QACxB,QAAQ,EAAE,KAAK,CAAC,MAAM;QACtB,UAAU,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,IAAI,CAAC;QACtC,GAAG,WAAW,CAAC,KAAK,CAAC,IAAI,EAAE,GAAG,CAAC;KAChC,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAC9B,KAAgB,EAChB,UAII,EAAE;IAEN,MAAM,IAAI,GAAG;QACX,WAAW,KAAK,CAAC,OAAO,EAAE;QAC1B,cAAc,KAAK,CAAC,SAAS,EAAE;QAC/B,YAAY,KAAK,CAAC,QAAQ,EAAE;QAC5B,GAAG,CAAC,KAAK,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,oBAAoB,KAAK,CAAC,eAAe,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;QAC/E,GAAG,CAAC,OAAO,CAAC,IAAI,IAAI,EAAE,CAAC;KACxB,CAAC;IAEF,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;QAChB,IAAI,CAAC,IAAI,CAAC,OAAO,OAAO,CAAC,GAAG,EAAE,CAAC,CAAC;IAClC,CAAC;IAED,OAAO;QACL,QAAQ,EAAE,SAAS;QACnB,MAAM,EAAE,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC;QACtB,QAAQ,EAAE,aAAa;QACvB,OAAO,EAAE,OAAO,CAAC,OAAO,IAAI,mBAAmB;QAC/C,MAAM,EAAE,0BAA0B,CAAC,KAAK,CAAC,QAAQ,CAAC;QAClD,OAAO,EAAE,KAAK,CAAC,OAAO;QACtB,YAAY,EAAE,KAAK,CAAC,SAAS;QAC7B,UAAU,EAAE,KAAK,CAAC,SAAS;QAC3B,OAAO,EAAE,KAAK,CAAC,OAAO;QACtB,gBAAgB,EAAE,KAAK,CAAC,eAAe;QACvC,IAAI,EAAE,KAAK,CAAC,IAAI;KACjB,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,SAAS,0BAA0B,CAAC,QAAsB;IACxD,QAAQ,QAAQ,EAAE,CAAC;QACjB,KAAK,UAAU;YACb,OAAO,WAAW,CAAC;QACrB,KAAK,MAAM;YACT,OAAO,OAAO,CAAC;QACjB,KAAK,QAAQ;YACX,OAAO,SAAS,CAAC;QACnB,KAAK,KAAK;YACR,OAAO,MAAM,CAAC;QAChB,KAAK,eAAe;YAClB,OAAO,OAAO,CAAC;QACjB;YACE,OAAO,MAAM,CAAC;IAClB,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,WAAW,CAClB,IAA6B,EAC7B,MAAc,EACd,MAAM,GAAG,EAAE;IAEX,MAAM,MAAM,GAA8C,EAAE,CAAC;IAE7D,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAChD,MAAM,MAAM,GAAG,MAAM,CAAC,CAAC,CAAC,GAAG,MAAM,IAAI,GAAG,GAAG,MAAM,EAAE,CAAC,CAAC,CAAC,GAAG,GAAG,GAAG,MAAM,EAAE,CAAC;QAExE,IAAI,KAAK,KAAK,IAAI,IAAI,KAAK,KAAK,SAAS,EAAE,CAAC;YAC1C,SAAS;QACX,CAAC;QAED,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YACvD,MAAM,CAAC,MAAM,CAAC,MAAM,EAAE,WAAW,CAAC,KAAgC,EAAE,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC;QACpF,CAAC;aAAM,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;YAChC,MAAM,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACnC,CAAC;aAAM,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,OAAO,KAAK,KAAK,SAAS,EAAE,CAAC;YAChG,MAAM,CAAC,MAAM,CAAC,GAAG,KAAK,CAAC;QACzB,CAAC;IACH,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,kBAAkB,CAChC,OAAe,EACf,SAAqE,EACrE,OAAyB,EACzB,eAAwB;IAExB,MAAM,UAAU,GAAG,SAAS,KAAK,aAAa,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,KAAK,eAAe,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,0BAA0B,CAAC;IAEnI,OAAO;QACL,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,SAAS;QACT,QAAQ,EAAE,WAAW,CAAC,OAAO,CAAC,QAAQ,CAAC;QACvC,OAAO;QACP,eAAe;QACf,OAAO,EAAE,oBAAoB,UAAU,KAAK,OAAO,CAAC,QAAQ,OAAO,OAAO,CAAC,IAAI,IAAI,SAAS,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE;QACvI,MAAM,EAAE,SAAS;QACjB,IAAI,EAAE,OAA6C;KACpD,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAC7B,OAAe,EACf,SAA4D,EAC5D,IAAmB,EACnB,eAAwB;IAExB,IAAI,QAAQ,GAAiB,eAAe,CAAC;IAC7C,IAAI,OAAe,CAAC;IAEpB,QAAQ,SAAS,EAAE,CAAC;QAClB,KAAK,cAAc;YACjB,OAAO,GAAG,wCAAwC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAC7E,MAAM;QACR,KAAK,gBAAgB;YACnB,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,eAAe,CAAC;YAC3G,OAAO,GAAG,4BAA4B,IAAI,CAAC,aAAa,cAAc,IAAI,CAAC,UAAU,CAAC,QAAQ,cAAc,IAAI,CAAC,UAAU,CAAC,IAAI,QAAQ,CAAC;YACzI,MAAM;QACR,KAAK,aAAa;YAChB,QAAQ,GAAG,MAAM,CAAC;YAClB,OAAO,GAAG,yBAAyB,IAAI,CAAC,KAAK,IAAI,eAAe,EAAE,CAAC;YACnE,MAAM;IACV,CAAC;IAED,OAAO;QACL,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,SAAS;QACT,QAAQ;QACR,OAAO;QACP,eAAe;QACf,OAAO;QACP,MAAM,EAAE,SAAS;QACjB,IAAI,EAAE,IAA0C;KACjD,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,wBAAwB,CACtC,OAAe,EACf,SAA8D,EAC9D,aAAqC;IAErC,IAAI,QAAQ,GAAiB,eAAe,CAAC;IAC7C,IAAI,OAAe,CAAC;IAEpB,IAAI,SAAS,KAAK,uBAAuB,EAAE,CAAC;QAC1C,OAAO,GAAG,0BAA0B,aAAa,CAAC,eAAe,EAAE,CAAC;IACtE,CAAC;SAAM,CAAC;QACN,QAAQ,GAAG,aAAa,CAAC,KAAK,IAAI,aAAa,CAAC,KAAK,IAAI,EAAE,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,QAAQ,CAAC;QACzF,OAAO,GAAG,4BAA4B,aAAa,CAAC,KAAK,IAAI,SAAS,YAAY,aAAa,CAAC,KAAK,IAAI,CAAC,GAAG,CAAC;IAChH,CAAC;IAED,OAAO;QACL,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACnC,SAAS;QACT,QAAQ;QACR,OAAO;QACP,eAAe,EAAE,aAAa,CAAC,eAAe;QAC9C,OAAO;QACP,MAAM,EAAE,SAAS;QACjB,IAAI,EAAE,aAAmD;KAC1D,CAAC;AACJ,CAAC"}

package/dist/integrations/siem/index.d.ts

@@ -0,0 +1,56 @@
+/**
+ * SIEM Integration
+ *
+ * Export findings and events to enterprise SIEM platforms.
+ * Supports Splunk, Microsoft Sentinel, and Datadog.
+ *
+ * @module integrations/siem
+ */
+export * from "./types.js";
+export * from "./format.js";
+export { SplunkClient, createSplunkClient } from "./splunk.js";
+export { SentinelClient, createSentinelClient } from "./sentinel.js";
+export { DatadogClient, createDatadogClient } from "./datadog.js";
+import type { SIEMClient, SIEMProvider, SIEMConfig } from "./types.js";
+/**
+ * Create a SIEM client from configuration
+ */
+export declare function createSIEMClient(config: SIEMConfig): SIEMClient;
+/**
+ * SIEM client registry for managing multiple connections
+ */
+export declare class SIEMRegistry {
+    private clients;
+    /**
+     * Register a SIEM client
+     */
+    register(name: string, client: SIEMClient): void;
+    /**
+     * Get a registered client
+     */
+    get(name: string): SIEMClient | undefined;
+    /**
+     * List all registered clients
+     */
+    list(): Array<{
+        name: string;
+        provider: SIEMProvider;
+    }>;
+    /**
+     * Unregister and close a client
+     */
+    unregister(name: string): Promise<void>;
+    /**
+     * Close all clients
+     */
+    closeAll(): Promise<void>;
+}
+/**
+ * Get the global SIEM registry
+ */
+export declare function getSIEMRegistry(): SIEMRegistry;
+/**
+ * Close the global SIEM registry
+ */
+export declare function closeSIEMRegistry(): Promise<void>;
+//# sourceMappingURL=index.d.ts.map

package/dist/integrations/siem/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/integrations/siem/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,cAAc,YAAY,CAAC;AAC3B,cAAc,aAAa,CAAC;AAE5B,OAAO,EAAE,YAAY,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAC/D,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrE,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAKlE,OAAO,KAAK,EAAE,UAAU,EAAE,YAAY,EAAE,UAAU,EAAE,MAAM,YAAY,CAAC;AAEvE;;GAEG;AACH,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,UAAU,GAAG,UAAU,CAiC/D;AAED;;GAEG;AACH,qBAAa,YAAY;IACvB,OAAO,CAAC,OAAO,CAAsC;IAErD;;OAEG;IACH,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,UAAU,GAAG,IAAI;IAIhD;;OAEG;IACH,GAAG,CAAC,IAAI,EAAE,MAAM,GAAG,UAAU,GAAG,SAAS;IAIzC;;OAEG;IACH,IAAI,IAAI,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,YAAY,CAAA;KAAE,CAAC;IAOvD;;OAEG;IACG,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,IAAI,CAAC;IAQ7C;;OAEG;IACG,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC;CAMhC;AAKD;;GAEG;AACH,wBAAgB,eAAe,IAAI,YAAY,CAK9C;AAED;;GAEG;AACH,wBAAsB,iBAAiB,IAAI,OAAO,CAAC,IAAI,CAAC,CAKvD"}

package/dist/integrations/siem/index.js

@@ -0,0 +1,117 @@
+/**
+ * SIEM Integration
+ *
+ * Export findings and events to enterprise SIEM platforms.
+ * Supports Splunk, Microsoft Sentinel, and Datadog.
+ *
+ * @module integrations/siem
+ */
+export * from "./types.js";
+export * from "./format.js";
+export { SplunkClient, createSplunkClient } from "./splunk.js";
+export { SentinelClient, createSentinelClient } from "./sentinel.js";
+export { DatadogClient, createDatadogClient } from "./datadog.js";
+import { createSplunkClient } from "./splunk.js";
+import { createSentinelClient } from "./sentinel.js";
+import { createDatadogClient } from "./datadog.js";
+/**
+ * Create a SIEM client from configuration
+ */
+export function createSIEMClient(config) {
+    switch (config.provider) {
+        case "splunk":
+            return createSplunkClient({
+                endpoint: config.endpoint,
+                token: config.token,
+                index: config.options?.index,
+                sourceType: config.options?.sourceType,
+                source: config.options?.source,
+                host: config.options?.host,
+                verifySsl: config.options?.verifySsl,
+            });
+        case "sentinel":
+            return createSentinelClient({
+                workspaceId: config.options?.workspaceId || "",
+                sharedKey: config.token,
+                logType: config.options?.logType,
+                timeGeneratedField: config.options?.timeGeneratedField,
+            });
+        case "datadog":
+            return createDatadogClient({
+                apiKey: config.token,
+                site: config.options?.site,
+                service: config.options?.service,
+                env: config.options?.env,
+                tags: config.options?.tags,
+            });
+        default:
+            throw new Error(`Unknown SIEM provider: ${config.provider}`);
+    }
+}
+/**
+ * SIEM client registry for managing multiple connections
+ */
+export class SIEMRegistry {
+    clients = new Map();
+    /**
+     * Register a SIEM client
+     */
+    register(name, client) {
+        this.clients.set(name, client);
+    }
+    /**
+     * Get a registered client
+     */
+    get(name) {
+        return this.clients.get(name);
+    }
+    /**
+     * List all registered clients
+     */
+    list() {
+        return Array.from(this.clients.entries()).map(([name, client]) => ({
+            name,
+            provider: client.provider,
+        }));
+    }
+    /**
+     * Unregister and close a client
+     */
+    async unregister(name) {
+        const client = this.clients.get(name);
+        if (client) {
+            await client.close();
+            this.clients.delete(name);
+        }
+    }
+    /**
+     * Close all clients
+     */
+    async closeAll() {
+        for (const client of this.clients.values()) {
+            await client.close();
+        }
+        this.clients.clear();
+    }
+}
+// Global registry instance
+let globalRegistry = null;
+/**
+ * Get the global SIEM registry
+ */
+export function getSIEMRegistry() {
+    if (!globalRegistry) {
+        globalRegistry = new SIEMRegistry();
+    }
+    return globalRegistry;
+}
+/**
+ * Close the global SIEM registry
+ */
+export async function closeSIEMRegistry() {
+    if (globalRegistry) {
+        await globalRegistry.closeAll();
+        globalRegistry = null;
+    }
+}
+//# sourceMappingURL=index.js.map

package/dist/integrations/siem/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/integrations/siem/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,cAAc,YAAY,CAAC;AAC3B,cAAc,aAAa,CAAC;AAE5B,OAAO,EAAE,YAAY,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAC/D,OAAO,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrE,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAElE,OAAO,EAAgB,kBAAkB,EAAE,MAAM,aAAa,CAAC;AAC/D,OAAO,EAAkB,oBAAoB,EAAE,MAAM,eAAe,CAAC;AACrE,OAAO,EAAiB,mBAAmB,EAAE,MAAM,cAAc,CAAC;AAGlE;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,MAAkB;IACjD,QAAQ,MAAM,CAAC,QAAQ,EAAE,CAAC;QACxB,KAAK,QAAQ;YACX,OAAO,kBAAkB,CAAC;gBACxB,QAAQ,EAAE,MAAM,CAAC,QAAQ;gBACzB,KAAK,EAAE,MAAM,CAAC,KAAK;gBACnB,KAAK,EAAG,MAAM,CAAC,OAAe,EAAE,KAAK;gBACrC,UAAU,EAAG,MAAM,CAAC,OAAe,EAAE,UAAU;gBAC/C,MAAM,EAAG,MAAM,CAAC,OAAe,EAAE,MAAM;gBACvC,IAAI,EAAG,MAAM,CAAC,OAAe,EAAE,IAAI;gBACnC,SAAS,EAAG,MAAM,CAAC,OAAe,EAAE,SAAS;aAC9C,CAAC,CAAC;QAEL,KAAK,UAAU;YACb,OAAO,oBAAoB,CAAC;gBAC1B,WAAW,EAAG,MAAM,CAAC,OAAe,EAAE,WAAW,IAAI,EAAE;gBACvD,SAAS,EAAE,MAAM,CAAC,KAAK;gBACvB,OAAO,EAAG,MAAM,CAAC,OAAe,EAAE,OAAO;gBACzC,kBAAkB,EAAG,MAAM,CAAC,OAAe,EAAE,kBAAkB;aAChE,CAAC,CAAC;QAEL,KAAK,SAAS;YACZ,OAAO,mBAAmB,CAAC;gBACzB,MAAM,EAAE,MAAM,CAAC,KAAK;gBACpB,IAAI,EAAG,MAAM,CAAC,OAAe,EAAE,IAAI;gBACnC,OAAO,EAAG,MAAM,CAAC,OAAe,EAAE,OAAO;gBACzC,GAAG,EAAG,MAAM,CAAC,OAAe,EAAE,GAAG;gBACjC,IAAI,EAAG,MAAM,CAAC,OAAe,EAAE,IAAI;aACpC,CAAC,CAAC;QAEL;YACE,MAAM,IAAI,KAAK,CAAC,0BAA0B,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;IACjE,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,OAAO,YAAY;IACf,OAAO,GAA4B,IAAI,GAAG,EAAE,CAAC;IAErD;;OAEG;IACH,QAAQ,CAAC,IAAY,EAAE,MAAkB;QACvC,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;IACjC,CAAC;IAED;;OAEG;IACH,GAAG,CAAC,IAAY;QACd,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IAChC,CAAC;IAED;;OAEG;IACH,IAAI;QACF,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,EAAE,MAAM,CAAC,EAAE,EAAE,CAAC,CAAC;YACjE,IAAI;YACJ,QAAQ,EAAE,MAAM,CAAC,QAAQ;SAC1B,CAAC,CAAC,CAAC;IACN,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CAAC,IAAY;QAC3B,MAAM,MAAM,GAAG,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QACtC,IAAI,MAAM,EAAE,CAAC;YACX,MAAM,MAAM,CAAC,KAAK,EAAE,CAAC;YACrB,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QAC5B,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,QAAQ;QACZ,KAAK,MAAM,MAAM,IAAI,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC;YAC3C,MAAM,MAAM,CAAC,KAAK,EAAE,CAAC;QACvB,CAAC;QACD,IAAI,CAAC,OAAO,CAAC,KAAK,EAAE,CAAC;IACvB,CAAC;CACF;AAED,2BAA2B;AAC3B,IAAI,cAAc,GAAwB,IAAI,CAAC;AAE/C;;GAEG;AACH,MAAM,UAAU,eAAe;IAC7B,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,cAAc,GAAG,IAAI,YAAY,EAAE,CAAC;IACtC,CAAC;IACD,OAAO,cAAc,CAAC;AACxB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB;IACrC,IAAI,cAAc,EAAE,CAAC;QACnB,MAAM,cAAc,CAAC,QAAQ,EAAE,CAAC;QAChC,cAAc,GAAG,IAAI,CAAC;IACxB,CAAC;AACH,CAAC"}

package/dist/integrations/siem/sentinel.d.ts

@@ -0,0 +1,53 @@
+/**
+ * Microsoft Sentinel Client
+ *
+ * Log Analytics Data Collector API client for Microsoft Sentinel integration.
+ *
+ * @module integrations/siem/sentinel
+ */
+import type { SIEMClient, SIEMEvent, SIEMTestResult, SIEMSendResult, SIEMBatchResult, SentinelConfig } from "./types.js";
+/**
+ * Microsoft Sentinel (Log Analytics) client
+ */
+export declare class SentinelClient implements SIEMClient {
+    readonly provider: "sentinel";
+    private config;
+    private workspaceId;
+    private sharedKey;
+    private logType;
+    constructor(config: SentinelConfig);
+    /**
+     * Build authorization signature for Log Analytics API
+     */
+    private buildSignature;
+    /**
+     * Get RFC1123 formatted date
+     */
+    private getRfc1123Date;
+    /**
+     * Test connection to Sentinel
+     */
+    testConnection(): Promise<SIEMTestResult>;
+    /**
+     * Send a single event to Sentinel
+     */
+    sendEvent(event: SIEMEvent): Promise<SIEMSendResult>;
+    /**
+     * Send multiple events in batch
+     */
+    sendEvents(events: SIEMEvent[]): Promise<SIEMBatchResult>;
+    /**
+     * Close connection
+     */
+    close(): Promise<void>;
+}
+/**
+ * Create a Sentinel client from configuration
+ */
+export declare function createSentinelClient(config: {
+    workspaceId: string;
+    sharedKey: string;
+    logType?: string;
+    timeGeneratedField?: string;
+}): SentinelClient;
+//# sourceMappingURL=sentinel.d.ts.map

package/dist/integrations/siem/sentinel.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"sentinel.d.ts","sourceRoot":"","sources":["../../../src/integrations/siem/sentinel.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAKH,OAAO,KAAK,EACV,UAAU,EACV,SAAS,EACT,cAAc,EACd,cAAc,EACd,eAAe,EACf,cAAc,EACf,MAAM,YAAY,CAAC;AAEpB;;GAEG;AACH,qBAAa,cAAe,YAAW,UAAU;IAC/C,QAAQ,CAAC,QAAQ,EAAG,UAAU,CAAU;IACxC,OAAO,CAAC,MAAM,CAAiB;IAC/B,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,SAAS,CAAS;IAC1B,OAAO,CAAC,OAAO,CAAS;gBAEZ,MAAM,EAAE,cAAc;IAOlC;;OAEG;IACH,OAAO,CAAC,cAAc;IAkBtB;;OAEG;IACH,OAAO,CAAC,cAAc;IAItB;;OAEG;IACG,cAAc,IAAI,OAAO,CAAC,cAAc,CAAC;IAoC/C;;OAEG;IACG,SAAS,CAAC,KAAK,EAAE,SAAS,GAAG,OAAO,CAAC,cAAc,CAAC;IAqE1D;;OAEG;IACG,UAAU,CAAC,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,eAAe,CAAC;IAmF/D;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;CAG7B;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,MAAM,EAAE;IAC3C,WAAW,EAAE,MAAM,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,kBAAkB,CAAC,EAAE,MAAM,CAAC;CAC7B,GAAG,cAAc,CAYjB"}

package/dist/integrations/siem/sentinel.js

@@ -0,0 +1,231 @@
+/**
+ * Microsoft Sentinel Client
+ *
+ * Log Analytics Data Collector API client for Microsoft Sentinel integration.
+ *
+ * @module integrations/siem/sentinel
+ */
+import { createHmac } from "crypto";
+import { logger } from "../../logger.js";
+import { formatForSentinel } from "./format.js";
+/**
+ * Microsoft Sentinel (Log Analytics) client
+ */
+export class SentinelClient {
+    provider = "sentinel";
+    config;
+    workspaceId;
+    sharedKey;
+    logType;
+    constructor(config) {
+        this.config = config;
+        this.workspaceId = config.options?.workspaceId || "";
+        this.sharedKey = config.token;
+        this.logType = config.options?.logType || "VasperaHardening";
+    }
+    /**
+     * Build authorization signature for Log Analytics API
+     */
+    buildSignature(date, contentLength, method, contentType, resource) {
+        const xHeaders = `x-ms-date:${date}`;
+        const stringToHash = `${method}\n${contentLength}\n${contentType}\n${xHeaders}\n${resource}`;
+        const decodedKey = Buffer.from(this.sharedKey, "base64");
+        const hmac = createHmac("sha256", decodedKey);
+        hmac.update(stringToHash, "utf8");
+        const encodedHash = hmac.digest("base64");
+        return `SharedKey ${this.workspaceId}:${encodedHash}`;
+    }
+    /**
+     * Get RFC1123 formatted date
+     */
+    getRfc1123Date() {
+        return new Date().toUTCString();
+    }
+    /**
+     * Test connection to Sentinel
+     */
+    async testConnection() {
+        const startTime = Date.now();
+        // Sentinel doesn't have a health endpoint, so we send a test event
+        try {
+            const testEvent = {
+                timestamp: new Date().toISOString(),
+                eventType: "scan.started",
+                severity: "informational",
+                project: "test",
+                message: "Vaspera connection test",
+                source: "vaspera",
+                data: { test: true },
+            };
+            const result = await this.sendEvent(testEvent);
+            return {
+                success: result.success,
+                provider: "sentinel",
+                endpoint: this.config.endpoint,
+                latencyMs: Date.now() - startTime,
+                error: result.error,
+                details: { workspaceId: this.workspaceId, logType: this.logType },
+            };
+        }
+        catch (error) {
+            return {
+                success: false,
+                provider: "sentinel",
+                endpoint: this.config.endpoint,
+                latencyMs: Date.now() - startTime,
+                error: error instanceof Error ? error.message : String(error),
+            };
+        }
+    }
+    /**
+     * Send a single event to Sentinel
+     */
+    async sendEvent(event) {
+        const timestamp = new Date().toISOString();
+        try {
+            const payload = formatForSentinel(event);
+            const body = JSON.stringify([payload]);
+            const contentLength = Buffer.byteLength(body, "utf8");
+            const date = this.getRfc1123Date();
+            const resource = `/api/logs`;
+            const contentType = "application/json";
+            const signature = this.buildSignature(date, contentLength, "POST", contentType, resource);
+            const url = `https://${this.workspaceId}.ods.opinsights.azure.com${resource}?api-version=2016-04-01`;
+            const response = await fetch(url, {
+                method: "POST",
+                headers: {
+                    "Content-Type": contentType,
+                    Authorization: signature,
+                    "Log-Type": this.logType,
+                    "x-ms-date": date,
+                    "time-generated-field": this.config.options?.timeGeneratedField || "TimeGenerated",
+                },
+                body,
+                signal: AbortSignal.timeout(30000),
+            });
+            if (response.ok || response.status === 200) {
+                logger.debug("siem.sentinel.event_sent", {
+                    eventType: event.eventType,
+                    logType: this.logType,
+                });
+                return {
+                    success: true,
+                    timestamp,
+                };
+            }
+            const errorText = await response.text();
+            logger.warn("siem.sentinel.send_failed", {
+                status: response.status,
+                error: errorText,
+            });
+            return {
+                success: false,
+                timestamp,
+                error: `HTTP ${response.status}: ${errorText}`,
+            };
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : String(error);
+            logger.error("siem.sentinel.send_error", { error: errorMessage });
+            return {
+                success: false,
+                timestamp,
+                error: errorMessage,
+            };
+        }
+    }
+    /**
+     * Send multiple events in batch
+     */
+    async sendEvents(events) {
+        if (events.length === 0) {
+            return {
+                success: true,
+                totalEvents: 0,
+                successCount: 0,
+                failureCount: 0,
+            };
+        }
+        try {
+            const payloads = events.map((event) => formatForSentinel(event));
+            const body = JSON.stringify(payloads);
+            const contentLength = Buffer.byteLength(body, "utf8");
+            const date = this.getRfc1123Date();
+            const resource = `/api/logs`;
+            const contentType = "application/json";
+            const signature = this.buildSignature(date, contentLength, "POST", contentType, resource);
+            const url = `https://${this.workspaceId}.ods.opinsights.azure.com${resource}?api-version=2016-04-01`;
+            const response = await fetch(url, {
+                method: "POST",
+                headers: {
+                    "Content-Type": contentType,
+                    Authorization: signature,
+                    "Log-Type": this.logType,
+                    "x-ms-date": date,
+                    "time-generated-field": this.config.options?.timeGeneratedField || "TimeGenerated",
+                },
+                body,
+                signal: AbortSignal.timeout(60000),
+            });
+            if (response.ok || response.status === 200) {
+                logger.info("siem.sentinel.batch_sent", {
+                    eventCount: events.length,
+                    logType: this.logType,
+                });
+                return {
+                    success: true,
+                    totalEvents: events.length,
+                    successCount: events.length,
+                    failureCount: 0,
+                };
+            }
+            const errorText = await response.text();
+            logger.warn("siem.sentinel.batch_failed", {
+                status: response.status,
+                error: errorText,
+                eventCount: events.length,
+            });
+            return {
+                success: false,
+                totalEvents: events.length,
+                successCount: 0,
+                failureCount: events.length,
+                errors: [{ index: 0, error: `HTTP ${response.status}: ${errorText}` }],
+            };
+        }
+        catch (error) {
+            const errorMessage = error instanceof Error ? error.message : String(error);
+            logger.error("siem.sentinel.batch_error", { error: errorMessage });
+            return {
+                success: false,
+                totalEvents: events.length,
+                successCount: 0,
+                failureCount: events.length,
+                errors: [{ index: 0, error: errorMessage }],
+            };
+        }
+    }
+    /**
+     * Close connection
+     */
+    async close() {
+        // No persistent connection to close for Log Analytics API
+    }
+}
+/**
+ * Create a Sentinel client from configuration
+ */
+export function createSentinelClient(config) {
+    return new SentinelClient({
+        provider: "sentinel",
+        enabled: true,
+        endpoint: `https://${config.workspaceId}.ods.opinsights.azure.com`,
+        token: config.sharedKey,
+        options: {
+            workspaceId: config.workspaceId,
+            logType: config.logType || "VasperaHardening",
+            timeGeneratedField: config.timeGeneratedField,
+        },
+    });
+}
+//# sourceMappingURL=sentinel.js.map

package/dist/integrations/siem/sentinel.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sentinel.js","sourceRoot":"","sources":["../../../src/integrations/siem/sentinel.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAC;AACpC,OAAO,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAC;AACzC,OAAO,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAUhD;;GAEG;AACH,MAAM,OAAO,cAAc;IAChB,QAAQ,GAAG,UAAmB,CAAC;IAChC,MAAM,CAAiB;IACvB,WAAW,CAAS;IACpB,SAAS,CAAS;IAClB,OAAO,CAAS;IAExB,YAAY,MAAsB;QAChC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;QACrB,IAAI,CAAC,WAAW,GAAG,MAAM,CAAC,OAAO,EAAE,WAAW,IAAI,EAAE,CAAC;QACrD,IAAI,CAAC,SAAS,GAAG,MAAM,CAAC,KAAK,CAAC;QAC9B,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,OAAO,EAAE,OAAO,IAAI,kBAAkB,CAAC;IAC/D,CAAC;IAED;;OAEG;IACK,cAAc,CACpB,IAAY,EACZ,aAAqB,EACrB,MAAc,EACd,WAAmB,EACnB,QAAgB;QAEhB,MAAM,QAAQ,GAAG,aAAa,IAAI,EAAE,CAAC;QACrC,MAAM,YAAY,GAAG,GAAG,MAAM,KAAK,aAAa,KAAK,WAAW,KAAK,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAE7F,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;QACzD,MAAM,IAAI,GAAG,UAAU,CAAC,QAAQ,EAAE,UAAU,CAAC,CAAC;QAC9C,IAAI,CAAC,MAAM,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;QAClC,MAAM,WAAW,GAAG,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAE1C,OAAO,aAAa,IAAI,CAAC,WAAW,IAAI,WAAW,EAAE,CAAC;IACxD,CAAC;IAED;;OAEG;IACK,cAAc;QACpB,OAAO,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;IAClC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,cAAc;QAClB,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,mEAAmE;QACnE,IAAI,CAAC;YACH,MAAM,SAAS,GAAc;gBAC3B,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;gBACnC,SAAS,EAAE,cAAc;gBACzB,QAAQ,EAAE,eAAe;gBACzB,OAAO,EAAE,MAAM;gBACf,OAAO,EAAE,yBAAyB;gBAClC,MAAM,EAAE,SAAS;gBACjB,IAAI,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE;aACrB,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;YAE/C,OAAO;gBACL,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,QAAQ,EAAE,UAAU;gBACpB,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ;gBAC9B,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;gBACjC,KAAK,EAAE,MAAM,CAAC,KAAK;gBACnB,OAAO,EAAE,EAAE,WAAW,EAAE,IAAI,CAAC,WAAW,EAAE,OAAO,EAAE,IAAI,CAAC,OAAO,EAAE;aAClE,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,QAAQ,EAAE,UAAU;gBACpB,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ;gBAC9B,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;gBACjC,KAAK,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;aAC9D,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,SAAS,CAAC,KAAgB;QAC9B,MAAM,SAAS,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAE3C,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,iBAAiB,CAAC,KAAK,CAAC,CAAC;YACzC,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC;YACvC,MAAM,aAAa,GAAG,MAAM,CAAC,UAAU,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;YACtD,MAAM,IAAI,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;YACnC,MAAM,QAAQ,GAAG,WAAW,CAAC;YAC7B,MAAM,WAAW,GAAG,kBAAkB,CAAC;YAEvC,MAAM,SAAS,GAAG,IAAI,CAAC,cAAc,CACnC,IAAI,EACJ,aAAa,EACb,MAAM,EACN,WAAW,EACX,QAAQ,CACT,CAAC;YAEF,MAAM,GAAG,GAAG,WAAW,IAAI,CAAC,WAAW,4BAA4B,QAAQ,yBAAyB,CAAC;YAErG,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAChC,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,WAAW;oBAC3B,aAAa,EAAE,SAAS;oBACxB,UAAU,EAAE,IAAI,CAAC,OAAO;oBACxB,WAAW,EAAE,IAAI;oBACjB,sBAAsB,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,kBAAkB,IAAI,eAAe;iBACnF;gBACD,IAAI;gBACJ,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,KAAK,CAAC;aACnC,CAAC,CAAC;YAEH,IAAI,QAAQ,CAAC,EAAE,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC3C,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE;oBACvC,SAAS,EAAE,KAAK,CAAC,SAAS;oBAC1B,OAAO,EAAE,IAAI,CAAC,OAAO;iBACtB,CAAC,CAAC;gBAEH,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,SAAS;iBACV,CAAC;YACJ,CAAC;YAED,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACxC,MAAM,CAAC,IAAI,CAAC,2BAA2B,EAAE;gBACvC,MAAM,EAAE,QAAQ,CAAC,MAAM;gBACvB,KAAK,EAAE,SAAS;aACjB,CAAC,CAAC;YAEH,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,SAAS;gBACT,KAAK,EAAE,QAAQ,QAAQ,CAAC,MAAM,KAAK,SAAS,EAAE;aAC/C,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC5E,MAAM,CAAC,KAAK,CAAC,0BAA0B,EAAE,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,CAAC;YAElE,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,SAAS;gBACT,KAAK,EAAE,YAAY;aACpB,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,UAAU,CAAC,MAAmB;QAClC,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxB,OAAO;gBACL,OAAO,EAAE,IAAI;gBACb,WAAW,EAAE,CAAC;gBACd,YAAY,EAAE,CAAC;gBACf,YAAY,EAAE,CAAC;aAChB,CAAC;QACJ,CAAC;QAED,IAAI,CAAC;YACH,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC;YACjE,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;YACtC,MAAM,aAAa,GAAG,MAAM,CAAC,UAAU,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;YACtD,MAAM,IAAI,GAAG,IAAI,CAAC,cAAc,EAAE,CAAC;YACnC,MAAM,QAAQ,GAAG,WAAW,CAAC;YAC7B,MAAM,WAAW,GAAG,kBAAkB,CAAC;YAEvC,MAAM,SAAS,GAAG,IAAI,CAAC,cAAc,CACnC,IAAI,EACJ,aAAa,EACb,MAAM,EACN,WAAW,EACX,QAAQ,CACT,CAAC;YAEF,MAAM,GAAG,GAAG,WAAW,IAAI,CAAC,WAAW,4BAA4B,QAAQ,yBAAyB,CAAC;YAErG,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAChC,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,cAAc,EAAE,WAAW;oBAC3B,aAAa,EAAE,SAAS;oBACxB,UAAU,EAAE,IAAI,CAAC,OAAO;oBACxB,WAAW,EAAE,IAAI;oBACjB,sBAAsB,EAAE,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,kBAAkB,IAAI,eAAe;iBACnF;gBACD,IAAI;gBACJ,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,KAAK,CAAC;aACnC,CAAC,CAAC;YAEH,IAAI,QAAQ,CAAC,EAAE,IAAI,QAAQ,CAAC,MAAM,KAAK,GAAG,EAAE,CAAC;gBAC3C,MAAM,CAAC,IAAI,CAAC,0BAA0B,EAAE;oBACtC,UAAU,EAAE,MAAM,CAAC,MAAM;oBACzB,OAAO,EAAE,IAAI,CAAC,OAAO;iBACtB,CAAC,CAAC;gBAEH,OAAO;oBACL,OAAO,EAAE,IAAI;oBACb,WAAW,EAAE,MAAM,CAAC,MAAM;oBAC1B,YAAY,EAAE,MAAM,CAAC,MAAM;oBAC3B,YAAY,EAAE,CAAC;iBAChB,CAAC;YACJ,CAAC;YAED,MAAM,SAAS,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACxC,MAAM,CAAC,IAAI,CAAC,4BAA4B,EAAE;gBACxC,MAAM,EAAE,QAAQ,CAAC,MAAM;gBACvB,KAAK,EAAE,SAAS;gBAChB,UAAU,EAAE,MAAM,CAAC,MAAM;aAC1B,CAAC,CAAC;YAEH,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,WAAW,EAAE,MAAM,CAAC,MAAM;gBAC1B,YAAY,EAAE,CAAC;gBACf,YAAY,EAAE,MAAM,CAAC,MAAM;gBAC3B,MAAM,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,KAAK,EAAE,QAAQ,QAAQ,CAAC,MAAM,KAAK,SAAS,EAAE,EAAE,CAAC;aACvE,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,YAAY,GAAG,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;YAC5E,MAAM,CAAC,KAAK,CAAC,2BAA2B,EAAE,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC,CAAC;YAEnE,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,WAAW,EAAE,MAAM,CAAC,MAAM;gBAC1B,YAAY,EAAE,CAAC;gBACf,YAAY,EAAE,MAAM,CAAC,MAAM;gBAC3B,MAAM,EAAE,CAAC,EAAE,KAAK,EAAE,CAAC,EAAE,KAAK,EAAE,YAAY,EAAE,CAAC;aAC5C,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,KAAK;QACT,0DAA0D;IAC5D,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,oBAAoB,CAAC,MAKpC;IACC,OAAO,IAAI,cAAc,CAAC;QACxB,QAAQ,EAAE,UAAU;QACpB,OAAO,EAAE,IAAI;QACb,QAAQ,EAAE,WAAW,MAAM,CAAC,WAAW,2BAA2B;QAClE,KAAK,EAAE,MAAM,CAAC,SAAS;QACvB,OAAO,EAAE;YACP,WAAW,EAAE,MAAM,CAAC,WAAW;YAC/B,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,kBAAkB;YAC7C,kBAAkB,EAAE,MAAM,CAAC,kBAAkB;SAC9C;KACF,CAAC,CAAC;AACL,CAAC"}

package/dist/integrations/siem/splunk.d.ts

@@ -0,0 +1,46 @@
+/**
+ * Splunk HEC Client
+ *
+ * HTTP Event Collector client for Splunk integration.
+ *
+ * @module integrations/siem/splunk
+ */
+import type { SIEMClient, SIEMEvent, SIEMTestResult, SIEMSendResult, SIEMBatchResult, SplunkConfig } from "./types.js";
+/**
+ * Splunk HTTP Event Collector client
+ */
+export declare class SplunkClient implements SIEMClient {
+    readonly provider: "splunk";
+    private config;
+    private abortController;
+    constructor(config: SplunkConfig);
+    /**
+     * Test connection to Splunk HEC
+     */
+    testConnection(): Promise<SIEMTestResult>;
+    /**
+     * Send a single event to Splunk
+     */
+    sendEvent(event: SIEMEvent): Promise<SIEMSendResult>;
+    /**
+     * Send multiple events in batch
+     */
+    sendEvents(events: SIEMEvent[]): Promise<SIEMBatchResult>;
+    /**
+     * Close connection
+     */
+    close(): Promise<void>;
+}
+/**
+ * Create a Splunk client from configuration
+ */
+export declare function createSplunkClient(config: {
+    endpoint: string;
+    token: string;
+    index?: string;
+    sourceType?: string;
+    source?: string;
+    host?: string;
+    verifySsl?: boolean;
+}): SplunkClient;
+//# sourceMappingURL=splunk.d.ts.map

package/dist/integrations/siem/splunk.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"splunk.d.ts","sourceRoot":"","sources":["../../../src/integrations/siem/splunk.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAIH,OAAO,KAAK,EACV,UAAU,EACV,SAAS,EACT,cAAc,EACd,cAAc,EACd,eAAe,EACf,YAAY,EACb,MAAM,YAAY,CAAC;AAEpB;;GAEG;AACH,qBAAa,YAAa,YAAW,UAAU;IAC7C,QAAQ,CAAC,QAAQ,EAAG,QAAQ,CAAU;IACtC,OAAO,CAAC,MAAM,CAAe;IAC7B,OAAO,CAAC,eAAe,CAAgC;gBAE3C,MAAM,EAAE,YAAY;IAIhC;;OAEG;IACG,cAAc,IAAI,OAAO,CAAC,cAAc,CAAC;IA2C/C;;OAEG;IACG,SAAS,CAAC,KAAK,EAAE,SAAS,GAAG,OAAO,CAAC,cAAc,CAAC;IAyD1D;;OAEG;IACG,UAAU,CAAC,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,eAAe,CAAC;IA0E/D;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;CAM7B;AAED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,MAAM,EAAE;IACzC,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,SAAS,CAAC,EAAE,OAAO,CAAC;CACrB,GAAG,YAAY,CAcf"}