npm - vaspera - Versions diffs - 2.5.0 - Mend

vaspera 2.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (712) hide show

package/CHANGELOG.md +184 -0
package/LICENSE +21 -0
package/README.md +809 -0
package/dist/__tests__/integration/certification-flow.test.d.ts +5 -0
package/dist/__tests__/integration/certification-flow.test.d.ts.map +1 -0
package/dist/__tests__/integration/certification-flow.test.js +245 -0
package/dist/__tests__/integration/certification-flow.test.js.map +1 -0
package/dist/__tests__/integration/commands.test.d.ts +5 -0
package/dist/__tests__/integration/commands.test.d.ts.map +1 -0
package/dist/__tests__/integration/commands.test.js +93 -0
package/dist/__tests__/integration/commands.test.js.map +1 -0
package/dist/action/diff-mode.d.ts +34 -0
package/dist/action/diff-mode.d.ts.map +1 -0
package/dist/action/diff-mode.js +201 -0
package/dist/action/diff-mode.js.map +1 -0
package/dist/action/diff-mode.test.d.ts +5 -0
package/dist/action/diff-mode.test.d.ts.map +1 -0
package/dist/action/diff-mode.test.js +162 -0
package/dist/action/diff-mode.test.js.map +1 -0
package/dist/action/index.d.ts +10 -0
package/dist/action/index.d.ts.map +1 -0
package/dist/action/index.js +231 -0
package/dist/action/index.js.map +1 -0
package/dist/action/pr-comment.d.ts +30 -0
package/dist/action/pr-comment.d.ts.map +1 -0
package/dist/action/pr-comment.js +301 -0
package/dist/action/pr-comment.js.map +1 -0
package/dist/action/pr-comment.test.d.ts +5 -0
package/dist/action/pr-comment.test.d.ts.map +1 -0
package/dist/action/pr-comment.test.js +189 -0
package/dist/action/pr-comment.test.js.map +1 -0
package/dist/action/sarif-upload.d.ts +104 -0
package/dist/action/sarif-upload.d.ts.map +1 -0
package/dist/action/sarif-upload.js +188 -0
package/dist/action/sarif-upload.js.map +1 -0
package/dist/action/sarif-upload.test.d.ts +5 -0
package/dist/action/sarif-upload.test.d.ts.map +1 -0
package/dist/action/sarif-upload.test.js +206 -0
package/dist/action/sarif-upload.test.js.map +1 -0
package/dist/action/types.d.ts +104 -0
package/dist/action/types.d.ts.map +1 -0
package/dist/action/types.js +33 -0
package/dist/action/types.js.map +1 -0
package/dist/action/types.test.d.ts +5 -0
package/dist/action/types.test.d.ts.map +1 -0
package/dist/action/types.test.js +79 -0
package/dist/action/types.test.js.map +1 -0
package/dist/agents/agent-integrity.d.ts +111 -0
package/dist/agents/agent-integrity.d.ts.map +1 -0
package/dist/agents/agent-integrity.js +308 -0
package/dist/agents/agent-integrity.js.map +1 -0
package/dist/agents/agent-privacy.d.ts +68 -0
package/dist/agents/agent-privacy.d.ts.map +1 -0
package/dist/agents/agent-privacy.js +345 -0
package/dist/agents/agent-privacy.js.map +1 -0
package/dist/agents/exploit-chain.d.ts +64 -0
package/dist/agents/exploit-chain.d.ts.map +1 -0
package/dist/agents/exploit-chain.js +477 -0
package/dist/agents/exploit-chain.js.map +1 -0
package/dist/agents/exploit-chain.test.d.ts +5 -0
package/dist/agents/exploit-chain.test.d.ts.map +1 -0
package/dist/agents/exploit-chain.test.js +455 -0
package/dist/agents/exploit-chain.test.js.map +1 -0
package/dist/agents/index.d.ts +14 -0
package/dist/agents/index.d.ts.map +1 -0
package/dist/agents/index.js +19 -0
package/dist/agents/index.js.map +1 -0
package/dist/agents/logic-flaw-detector.d.ts +55 -0
package/dist/agents/logic-flaw-detector.d.ts.map +1 -0
package/dist/agents/logic-flaw-detector.js +454 -0
package/dist/agents/logic-flaw-detector.js.map +1 -0
package/dist/agents/zero-day-hunter.d.ts +69 -0
package/dist/agents/zero-day-hunter.d.ts.map +1 -0
package/dist/agents/zero-day-hunter.js +591 -0
package/dist/agents/zero-day-hunter.js.map +1 -0
package/dist/certification/artifacts.d.ts +21 -0
package/dist/certification/artifacts.d.ts.map +1 -0
package/dist/certification/artifacts.js +275 -0
package/dist/certification/artifacts.js.map +1 -0
package/dist/certification/autofix.d.ts +122 -0
package/dist/certification/autofix.d.ts.map +1 -0
package/dist/certification/autofix.js +476 -0
package/dist/certification/autofix.js.map +1 -0
package/dist/certification/badge.d.ts +56 -0
package/dist/certification/badge.d.ts.map +1 -0
package/dist/certification/badge.js +155 -0
package/dist/certification/badge.js.map +1 -0
package/dist/certification/cache.d.ts +121 -0
package/dist/certification/cache.d.ts.map +1 -0
package/dist/certification/cache.js +275 -0
package/dist/certification/cache.js.map +1 -0
package/dist/certification/cache.test.d.ts +5 -0
package/dist/certification/cache.test.d.ts.map +1 -0
package/dist/certification/cache.test.js +270 -0
package/dist/certification/cache.test.js.map +1 -0
package/dist/certification/consensus.d.ts +105 -0
package/dist/certification/consensus.d.ts.map +1 -0
package/dist/certification/consensus.js +353 -0
package/dist/certification/consensus.js.map +1 -0
package/dist/certification/consensus.test.d.ts +5 -0
package/dist/certification/consensus.test.d.ts.map +1 -0
package/dist/certification/consensus.test.js +342 -0
package/dist/certification/consensus.test.js.map +1 -0
package/dist/certification/index.d.ts +14 -0
package/dist/certification/index.d.ts.map +1 -0
package/dist/certification/index.js +14 -0
package/dist/certification/index.js.map +1 -0
package/dist/certification/rules.d.ts +89 -0
package/dist/certification/rules.d.ts.map +1 -0
package/dist/certification/rules.js +317 -0
package/dist/certification/rules.js.map +1 -0
package/dist/certification/sarif.d.ts +107 -0
package/dist/certification/sarif.d.ts.map +1 -0
package/dist/certification/sarif.js +191 -0
package/dist/certification/sarif.js.map +1 -0
package/dist/certification/store.d.ts +255 -0
package/dist/certification/store.d.ts.map +1 -0
package/dist/certification/store.js +835 -0
package/dist/certification/store.js.map +1 -0
package/dist/certification/store.test.d.ts +5 -0
package/dist/certification/store.test.d.ts.map +1 -0
package/dist/certification/store.test.js +468 -0
package/dist/certification/store.test.js.map +1 -0
package/dist/certification/summary.d.ts +72 -0
package/dist/certification/summary.d.ts.map +1 -0
package/dist/certification/summary.js +296 -0
package/dist/certification/summary.js.map +1 -0
package/dist/certification/types.d.ts +138 -0
package/dist/certification/types.d.ts.map +1 -0
package/dist/certification/types.js +34 -0
package/dist/certification/types.js.map +1 -0
package/dist/commands/audits/api-check.d.ts +3 -0
package/dist/commands/audits/api-check.d.ts.map +1 -0
package/dist/commands/audits/api-check.js +71 -0
package/dist/commands/audits/api-check.js.map +1 -0
package/dist/commands/audits/deadcode.d.ts +3 -0
package/dist/commands/audits/deadcode.d.ts.map +1 -0
package/dist/commands/audits/deadcode.js +63 -0
package/dist/commands/audits/deadcode.js.map +1 -0
package/dist/commands/audits/deps.d.ts +3 -0
package/dist/commands/audits/deps.d.ts.map +1 -0
package/dist/commands/audits/deps.js +56 -0
package/dist/commands/audits/deps.js.map +1 -0
package/dist/commands/audits/errors.d.ts +3 -0
package/dist/commands/audits/errors.d.ts.map +1 -0
package/dist/commands/audits/errors.js +65 -0
package/dist/commands/audits/errors.js.map +1 -0
package/dist/commands/audits/index.d.ts +3 -0
package/dist/commands/audits/index.d.ts.map +1 -0
package/dist/commands/audits/index.js +15 -0
package/dist/commands/audits/index.js.map +1 -0
package/dist/commands/audits/perf.d.ts +3 -0
package/dist/commands/audits/perf.d.ts.map +1 -0
package/dist/commands/audits/perf.js +85 -0
package/dist/commands/audits/perf.js.map +1 -0
package/dist/commands/audits/secrets.d.ts +3 -0
package/dist/commands/audits/secrets.d.ts.map +1 -0
package/dist/commands/audits/secrets.js +71 -0
package/dist/commands/audits/secrets.js.map +1 -0
package/dist/commands/certification/certify.d.ts +3 -0
package/dist/commands/certification/certify.d.ts.map +1 -0
package/dist/commands/certification/certify.js +108 -0
package/dist/commands/certification/certify.js.map +1 -0
package/dist/commands/certification/index.d.ts +3 -0
package/dist/commands/certification/index.d.ts.map +1 -0
package/dist/commands/certification/index.js +17 -0
package/dist/commands/certification/index.js.map +1 -0
package/dist/commands/certification/performance.d.ts +3 -0
package/dist/commands/certification/performance.d.ts.map +1 -0
package/dist/commands/certification/performance.js +89 -0
package/dist/commands/certification/performance.js.map +1 -0
package/dist/commands/certification/quality.d.ts +3 -0
package/dist/commands/certification/quality.d.ts.map +1 -0
package/dist/commands/certification/quality.js +92 -0
package/dist/commands/certification/quality.js.map +1 -0
package/dist/commands/certification/redteam.d.ts +3 -0
package/dist/commands/certification/redteam.d.ts.map +1 -0
package/dist/commands/certification/redteam.js +114 -0
package/dist/commands/certification/redteam.js.map +1 -0
package/dist/commands/certification/reliability.d.ts +3 -0
package/dist/commands/certification/reliability.d.ts.map +1 -0
package/dist/commands/certification/reliability.js +93 -0
package/dist/commands/certification/reliability.js.map +1 -0
package/dist/commands/certification/security.d.ts +3 -0
package/dist/commands/certification/security.d.ts.map +1 -0
package/dist/commands/certification/security.js +90 -0
package/dist/commands/certification/security.js.map +1 -0
package/dist/commands/certification/typesafety.d.ts +3 -0
package/dist/commands/certification/typesafety.d.ts.map +1 -0
package/dist/commands/certification/typesafety.js +87 -0
package/dist/commands/certification/typesafety.js.map +1 -0
package/dist/commands/core/add-tests.d.ts +3 -0
package/dist/commands/core/add-tests.d.ts.map +1 -0
package/dist/commands/core/add-tests.js +29 -0
package/dist/commands/core/add-tests.js.map +1 -0
package/dist/commands/core/audit.d.ts +3 -0
package/dist/commands/core/audit.d.ts.map +1 -0
package/dist/commands/core/audit.js +64 -0
package/dist/commands/core/audit.js.map +1 -0
package/dist/commands/core/fix-critical.d.ts +3 -0
package/dist/commands/core/fix-critical.d.ts.map +1 -0
package/dist/commands/core/fix-critical.js +22 -0
package/dist/commands/core/fix-critical.js.map +1 -0
package/dist/commands/core/fix-high.d.ts +3 -0
package/dist/commands/core/fix-high.d.ts.map +1 -0
package/dist/commands/core/fix-high.js +32 -0
package/dist/commands/core/fix-high.js.map +1 -0
package/dist/commands/core/fix-medium.d.ts +3 -0
package/dist/commands/core/fix-medium.d.ts.map +1 -0
package/dist/commands/core/fix-medium.js +29 -0
package/dist/commands/core/fix-medium.js.map +1 -0
package/dist/commands/core/fix-rls.d.ts +3 -0
package/dist/commands/core/fix-rls.d.ts.map +1 -0
package/dist/commands/core/fix-rls.js +17 -0
package/dist/commands/core/fix-rls.js.map +1 -0
package/dist/commands/core/harden.d.ts +3 -0
package/dist/commands/core/harden.d.ts.map +1 -0
package/dist/commands/core/harden.js +19 -0
package/dist/commands/core/harden.js.map +1 -0
package/dist/commands/core/index.d.ts +3 -0
package/dist/commands/core/index.d.ts.map +1 -0
package/dist/commands/core/index.js +21 -0
package/dist/commands/core/index.js.map +1 -0
package/dist/commands/core/preflight.d.ts +3 -0
package/dist/commands/core/preflight.d.ts.map +1 -0
package/dist/commands/core/preflight.js +50 -0
package/dist/commands/core/preflight.js.map +1 -0
package/dist/commands/core/verify.d.ts +3 -0
package/dist/commands/core/verify.d.ts.map +1 -0
package/dist/commands/core/verify.js +32 -0
package/dist/commands/core/verify.js.map +1 -0
package/dist/commands/index.d.ts +28 -0
package/dist/commands/index.d.ts.map +1 -0
package/dist/commands/index.js +37 -0
package/dist/commands/index.js.map +1 -0
package/dist/commands/types.d.ts +9 -0
package/dist/commands/types.d.ts.map +1 -0
package/dist/commands/types.js +5 -0
package/dist/commands/types.js.map +1 -0
package/dist/compliance/cis.d.ts +29 -0
package/dist/compliance/cis.d.ts.map +1 -0
package/dist/compliance/cis.js +316 -0
package/dist/compliance/cis.js.map +1 -0
package/dist/compliance/frameworks/eu-ai-act.d.ts +55 -0
package/dist/compliance/frameworks/eu-ai-act.d.ts.map +1 -0
package/dist/compliance/frameworks/eu-ai-act.js +621 -0
package/dist/compliance/frameworks/eu-ai-act.js.map +1 -0
package/dist/compliance/frameworks/index.d.ts +67 -0
package/dist/compliance/frameworks/index.d.ts.map +1 -0
package/dist/compliance/frameworks/index.js +97 -0
package/dist/compliance/frameworks/index.js.map +1 -0
package/dist/compliance/frameworks/iso-42001.d.ts +59 -0
package/dist/compliance/frameworks/iso-42001.d.ts.map +1 -0
package/dist/compliance/frameworks/iso-42001.js +719 -0
package/dist/compliance/frameworks/iso-42001.js.map +1 -0
package/dist/compliance/frameworks/mitre-atlas.d.ts +58 -0
package/dist/compliance/frameworks/mitre-atlas.d.ts.map +1 -0
package/dist/compliance/frameworks/mitre-atlas.js +686 -0
package/dist/compliance/frameworks/mitre-atlas.js.map +1 -0
package/dist/compliance/frameworks/nist-ai-rmf.d.ts +51 -0
package/dist/compliance/frameworks/nist-ai-rmf.d.ts.map +1 -0
package/dist/compliance/frameworks/nist-ai-rmf.js +677 -0
package/dist/compliance/frameworks/nist-ai-rmf.js.map +1 -0
package/dist/compliance/frameworks/owasp-llm.d.ts +58 -0
package/dist/compliance/frameworks/owasp-llm.d.ts.map +1 -0
package/dist/compliance/frameworks/owasp-llm.js +399 -0
package/dist/compliance/frameworks/owasp-llm.js.map +1 -0
package/dist/compliance/gdpr.d.ts +34 -0
package/dist/compliance/gdpr.d.ts.map +1 -0
package/dist/compliance/gdpr.js +319 -0
package/dist/compliance/gdpr.js.map +1 -0
package/dist/compliance/hipaa.d.ts +29 -0
package/dist/compliance/hipaa.d.ts.map +1 -0
package/dist/compliance/hipaa.js +205 -0
package/dist/compliance/hipaa.js.map +1 -0
package/dist/compliance/index.d.ts +18 -0
package/dist/compliance/index.d.ts.map +1 -0
package/dist/compliance/index.js +26 -0
package/dist/compliance/index.js.map +1 -0
package/dist/compliance/iso27001.d.ts +30 -0
package/dist/compliance/iso27001.d.ts.map +1 -0
package/dist/compliance/iso27001.js +332 -0
package/dist/compliance/iso27001.js.map +1 -0
package/dist/compliance/mapper.d.ts +42 -0
package/dist/compliance/mapper.d.ts.map +1 -0
package/dist/compliance/mapper.js +269 -0
package/dist/compliance/mapper.js.map +1 -0
package/dist/compliance/mapper.test.d.ts +5 -0
package/dist/compliance/mapper.test.d.ts.map +1 -0
package/dist/compliance/mapper.test.js +360 -0
package/dist/compliance/mapper.test.js.map +1 -0
package/dist/compliance/pci-dss.d.ts +29 -0
package/dist/compliance/pci-dss.d.ts.map +1 -0
package/dist/compliance/pci-dss.js +247 -0
package/dist/compliance/pci-dss.js.map +1 -0
package/dist/compliance/report.d.ts +25 -0
package/dist/compliance/report.d.ts.map +1 -0
package/dist/compliance/report.js +254 -0
package/dist/compliance/report.js.map +1 -0
package/dist/compliance/report.test.d.ts +5 -0
package/dist/compliance/report.test.d.ts.map +1 -0
package/dist/compliance/report.test.js +128 -0
package/dist/compliance/report.test.js.map +1 -0
package/dist/compliance/soc2.d.ts +30 -0
package/dist/compliance/soc2.d.ts.map +1 -0
package/dist/compliance/soc2.js +262 -0
package/dist/compliance/soc2.js.map +1 -0
package/dist/compliance/soc2.test.d.ts +5 -0
package/dist/compliance/soc2.test.d.ts.map +1 -0
package/dist/compliance/soc2.test.js +86 -0
package/dist/compliance/soc2.test.js.map +1 -0
package/dist/compliance/types.d.ts +125 -0
package/dist/compliance/types.d.ts.map +1 -0
package/dist/compliance/types.js +10 -0
package/dist/compliance/types.js.map +1 -0
package/dist/config/flags.d.ts +456 -0
package/dist/config/flags.d.ts.map +1 -0
package/dist/config/flags.js +464 -0
package/dist/config/flags.js.map +1 -0
package/dist/config/index.d.ts +10 -0
package/dist/config/index.d.ts.map +1 -0
package/dist/config/index.js +10 -0
package/dist/config/index.js.map +1 -0
package/dist/config/severity-overrides.d.ts +209 -0
package/dist/config/severity-overrides.d.ts.map +1 -0
package/dist/config/severity-overrides.js +380 -0
package/dist/config/severity-overrides.js.map +1 -0
package/dist/cost/index.d.ts +11 -0
package/dist/cost/index.d.ts.map +1 -0
package/dist/cost/index.js +12 -0
package/dist/cost/index.js.map +1 -0
package/dist/cost/pricing.d.ts +57 -0
package/dist/cost/pricing.d.ts.map +1 -0
package/dist/cost/pricing.js +196 -0
package/dist/cost/pricing.js.map +1 -0
package/dist/cost/pricing.test.d.ts +5 -0
package/dist/cost/pricing.test.d.ts.map +1 -0
package/dist/cost/pricing.test.js +195 -0
package/dist/cost/pricing.test.js.map +1 -0
package/dist/cost/tracker.d.ts +100 -0
package/dist/cost/tracker.d.ts.map +1 -0
package/dist/cost/tracker.js +366 -0
package/dist/cost/tracker.js.map +1 -0
package/dist/cost/tracker.test.d.ts +5 -0
package/dist/cost/tracker.test.d.ts.map +1 -0
package/dist/cost/tracker.test.js +360 -0
package/dist/cost/tracker.test.js.map +1 -0
package/dist/cost/types.d.ts +135 -0
package/dist/cost/types.d.ts.map +1 -0
package/dist/cost/types.js +9 -0
package/dist/cost/types.js.map +1 -0
package/dist/enterprise/auth/oidc.d.ts +231 -0
package/dist/enterprise/auth/oidc.d.ts.map +1 -0
package/dist/enterprise/auth/oidc.js +372 -0
package/dist/enterprise/auth/oidc.js.map +1 -0
package/dist/enterprise/auth/oidc.test.d.ts +5 -0
package/dist/enterprise/auth/oidc.test.d.ts.map +1 -0
package/dist/enterprise/auth/oidc.test.js +435 -0
package/dist/enterprise/auth/oidc.test.js.map +1 -0
package/dist/enterprise/index.d.ts +14 -0
package/dist/enterprise/index.d.ts.map +1 -0
package/dist/enterprise/index.js +19 -0
package/dist/enterprise/index.js.map +1 -0
package/dist/enterprise/integrations/chat.d.ts +205 -0
package/dist/enterprise/integrations/chat.d.ts.map +1 -0
package/dist/enterprise/integrations/chat.js +624 -0
package/dist/enterprise/integrations/chat.js.map +1 -0
package/dist/enterprise/integrations/chat.test.d.ts +5 -0
package/dist/enterprise/integrations/chat.test.d.ts.map +1 -0
package/dist/enterprise/integrations/chat.test.js +557 -0
package/dist/enterprise/integrations/chat.test.js.map +1 -0
package/dist/enterprise/integrations/ticketing.d.ts +257 -0
package/dist/enterprise/integrations/ticketing.d.ts.map +1 -0
package/dist/enterprise/integrations/ticketing.js +548 -0
package/dist/enterprise/integrations/ticketing.js.map +1 -0
package/dist/enterprise/integrations/ticketing.test.d.ts +5 -0
package/dist/enterprise/integrations/ticketing.test.d.ts.map +1 -0
package/dist/enterprise/integrations/ticketing.test.js +693 -0
package/dist/enterprise/integrations/ticketing.test.js.map +1 -0
package/dist/enterprise/policy/opa.d.ts +194 -0
package/dist/enterprise/policy/opa.d.ts.map +1 -0
package/dist/enterprise/policy/opa.js +385 -0
package/dist/enterprise/policy/opa.js.map +1 -0
package/dist/enterprise/policy/opa.test.d.ts +5 -0
package/dist/enterprise/policy/opa.test.d.ts.map +1 -0
package/dist/enterprise/policy/opa.test.js +702 -0
package/dist/enterprise/policy/opa.test.js.map +1 -0
package/dist/enterprise/signing/kms.d.ts +211 -0
package/dist/enterprise/signing/kms.d.ts.map +1 -0
package/dist/enterprise/signing/kms.js +480 -0
package/dist/enterprise/signing/kms.js.map +1 -0
package/dist/enterprise/signing/kms.test.d.ts +5 -0
package/dist/enterprise/signing/kms.test.d.ts.map +1 -0
package/dist/enterprise/signing/kms.test.js +511 -0
package/dist/enterprise/signing/kms.test.js.map +1 -0
package/dist/eval/fixtures.d.ts +58 -0
package/dist/eval/fixtures.d.ts.map +1 -0
package/dist/eval/fixtures.js +571 -0
package/dist/eval/fixtures.js.map +1 -0
package/dist/eval/fixtures.test.d.ts +5 -0
package/dist/eval/fixtures.test.d.ts.map +1 -0
package/dist/eval/fixtures.test.js +193 -0
package/dist/eval/fixtures.test.js.map +1 -0
package/dist/eval/harness.d.ts +30 -0
package/dist/eval/harness.d.ts.map +1 -0
package/dist/eval/harness.js +221 -0
package/dist/eval/harness.js.map +1 -0
package/dist/eval/harness.test.d.ts +5 -0
package/dist/eval/harness.test.d.ts.map +1 -0
package/dist/eval/harness.test.js +314 -0
package/dist/eval/harness.test.js.map +1 -0
package/dist/eval/index.d.ts +15 -0
package/dist/eval/index.d.ts.map +1 -0
package/dist/eval/index.js +18 -0
package/dist/eval/index.js.map +1 -0
package/dist/eval/metrics.d.ts +56 -0
package/dist/eval/metrics.d.ts.map +1 -0
package/dist/eval/metrics.js +298 -0
package/dist/eval/metrics.js.map +1 -0
package/dist/eval/metrics.test.d.ts +5 -0
package/dist/eval/metrics.test.d.ts.map +1 -0
package/dist/eval/metrics.test.js +426 -0
package/dist/eval/metrics.test.js.map +1 -0
package/dist/eval/report.d.ts +30 -0
package/dist/eval/report.d.ts.map +1 -0
package/dist/eval/report.js +333 -0
package/dist/eval/report.js.map +1 -0
package/dist/eval/report.test.d.ts +5 -0
package/dist/eval/report.test.d.ts.map +1 -0
package/dist/eval/report.test.js +275 -0
package/dist/eval/report.test.js.map +1 -0
package/dist/eval/types.d.ts +234 -0
package/dist/eval/types.d.ts.map +1 -0
package/dist/eval/types.js +27 -0
package/dist/eval/types.js.map +1 -0
package/dist/http-server.d.ts +3 -0
package/dist/http-server.d.ts.map +1 -0
package/dist/http-server.js +127 -0
package/dist/http-server.js.map +1 -0
package/dist/index.d.ts +33 -0
package/dist/index.d.ts.map +1 -0
package/dist/index.js +4120 -0
package/dist/index.js.map +1 -0
package/dist/logger.d.ts +46 -0
package/dist/logger.d.ts.map +1 -0
package/dist/logger.js +131 -0
package/dist/logger.js.map +1 -0
package/dist/multimodel/consensus.d.ts +49 -0
package/dist/multimodel/consensus.d.ts.map +1 -0
package/dist/multimodel/consensus.js +454 -0
package/dist/multimodel/consensus.js.map +1 -0
package/dist/multimodel/consensus.test.d.ts +5 -0
package/dist/multimodel/consensus.test.d.ts.map +1 -0
package/dist/multimodel/consensus.test.js +415 -0
package/dist/multimodel/consensus.test.js.map +1 -0
package/dist/multimodel/index.d.ts +13 -0
package/dist/multimodel/index.d.ts.map +1 -0
package/dist/multimodel/index.js +14 -0
package/dist/multimodel/index.js.map +1 -0
package/dist/multimodel/runner.d.ts +95 -0
package/dist/multimodel/runner.d.ts.map +1 -0
package/dist/multimodel/runner.js +312 -0
package/dist/multimodel/runner.js.map +1 -0
package/dist/multimodel/runner.test.d.ts +5 -0
package/dist/multimodel/runner.test.d.ts.map +1 -0
package/dist/multimodel/runner.test.js +224 -0
package/dist/multimodel/runner.test.js.map +1 -0
package/dist/multimodel/types.d.ts +202 -0
package/dist/multimodel/types.d.ts.map +1 -0
package/dist/multimodel/types.js +10 -0
package/dist/multimodel/types.js.map +1 -0
package/dist/observability/index.d.ts +9 -0
package/dist/observability/index.d.ts.map +1 -0
package/dist/observability/index.js +9 -0
package/dist/observability/index.js.map +1 -0
package/dist/observability/otel.d.ts +102 -0
package/dist/observability/otel.d.ts.map +1 -0
package/dist/observability/otel.js +284 -0
package/dist/observability/otel.js.map +1 -0
package/dist/plugins/index.d.ts +10 -0
package/dist/plugins/index.d.ts.map +1 -0
package/dist/plugins/index.js +10 -0
package/dist/plugins/index.js.map +1 -0
package/dist/plugins/loader.d.ts +78 -0
package/dist/plugins/loader.d.ts.map +1 -0
package/dist/plugins/loader.js +470 -0
package/dist/plugins/loader.js.map +1 -0
package/dist/plugins/types.d.ts +304 -0
package/dist/plugins/types.d.ts.map +1 -0
package/dist/plugins/types.js +100 -0
package/dist/plugins/types.js.map +1 -0
package/dist/sbom/cyclonedx.d.ts +30 -0
package/dist/sbom/cyclonedx.d.ts.map +1 -0
package/dist/sbom/cyclonedx.js +392 -0
package/dist/sbom/cyclonedx.js.map +1 -0
package/dist/sbom/cyclonedx.test.d.ts +5 -0
package/dist/sbom/cyclonedx.test.d.ts.map +1 -0
package/dist/sbom/cyclonedx.test.js +244 -0
package/dist/sbom/cyclonedx.test.js.map +1 -0
package/dist/sbom/index.d.ts +13 -0
package/dist/sbom/index.d.ts.map +1 -0
package/dist/sbom/index.js +15 -0
package/dist/sbom/index.js.map +1 -0
package/dist/sbom/provenance.d.ts +37 -0
package/dist/sbom/provenance.d.ts.map +1 -0
package/dist/sbom/provenance.js +268 -0
package/dist/sbom/provenance.js.map +1 -0
package/dist/sbom/provenance.test.d.ts +5 -0
package/dist/sbom/provenance.test.d.ts.map +1 -0
package/dist/sbom/provenance.test.js +189 -0
package/dist/sbom/provenance.test.js.map +1 -0
package/dist/sbom/signing.d.ts +87 -0
package/dist/sbom/signing.d.ts.map +1 -0
package/dist/sbom/signing.js +354 -0
package/dist/sbom/signing.js.map +1 -0
package/dist/sbom/signing.test.d.ts +5 -0
package/dist/sbom/signing.test.d.ts.map +1 -0
package/dist/sbom/signing.test.js +170 -0
package/dist/sbom/signing.test.js.map +1 -0
package/dist/sbom/types.d.ts +384 -0
package/dist/sbom/types.d.ts.map +1 -0
package/dist/sbom/types.js +17 -0
package/dist/sbom/types.js.map +1 -0
package/dist/scanners/agent/credential-scope-audit.d.ts +40 -0
package/dist/scanners/agent/credential-scope-audit.d.ts.map +1 -0
package/dist/scanners/agent/credential-scope-audit.js +404 -0
package/dist/scanners/agent/credential-scope-audit.js.map +1 -0
package/dist/scanners/agent/exfil-path-graph.d.ts +50 -0
package/dist/scanners/agent/exfil-path-graph.d.ts.map +1 -0
package/dist/scanners/agent/exfil-path-graph.js +764 -0
package/dist/scanners/agent/exfil-path-graph.js.map +1 -0
package/dist/scanners/agent/index.d.ts +43 -0
package/dist/scanners/agent/index.d.ts.map +1 -0
package/dist/scanners/agent/index.js +616 -0
package/dist/scanners/agent/index.js.map +1 -0
package/dist/scanners/agent/manifest-audit.d.ts +43 -0
package/dist/scanners/agent/manifest-audit.d.ts.map +1 -0
package/dist/scanners/agent/manifest-audit.js +403 -0
package/dist/scanners/agent/manifest-audit.js.map +1 -0
package/dist/scanners/agent/payloads/index.d.ts +44 -0
package/dist/scanners/agent/payloads/index.d.ts.map +1 -0
package/dist/scanners/agent/payloads/index.js +184 -0
package/dist/scanners/agent/payloads/index.js.map +1 -0
package/dist/scanners/agent/permission-minimiser.d.ts +48 -0
package/dist/scanners/agent/permission-minimiser.d.ts.map +1 -0
package/dist/scanners/agent/permission-minimiser.js +551 -0
package/dist/scanners/agent/permission-minimiser.js.map +1 -0
package/dist/scanners/agent/prompt-injection-fuzzer.d.ts +39 -0
package/dist/scanners/agent/prompt-injection-fuzzer.d.ts.map +1 -0
package/dist/scanners/agent/prompt-injection-fuzzer.js +720 -0
package/dist/scanners/agent/prompt-injection-fuzzer.js.map +1 -0
package/dist/scanners/agent/sandbox-audit.d.ts +44 -0
package/dist/scanners/agent/sandbox-audit.d.ts.map +1 -0
package/dist/scanners/agent/sandbox-audit.js +425 -0
package/dist/scanners/agent/sandbox-audit.js.map +1 -0
package/dist/scanners/agent/supply-chain-mcp.d.ts +53 -0
package/dist/scanners/agent/supply-chain-mcp.d.ts.map +1 -0
package/dist/scanners/agent/supply-chain-mcp.js +479 -0
package/dist/scanners/agent/supply-chain-mcp.js.map +1 -0
package/dist/scanners/agent/tool-description-drift.d.ts +62 -0
package/dist/scanners/agent/tool-description-drift.d.ts.map +1 -0
package/dist/scanners/agent/tool-description-drift.js +365 -0
package/dist/scanners/agent/tool-description-drift.js.map +1 -0
package/dist/scanners/agent/types.d.ts +840 -0
package/dist/scanners/agent/types.d.ts.map +1 -0
package/dist/scanners/agent/types.js +149 -0
package/dist/scanners/agent/types.js.map +1 -0
package/dist/scanners/bandit.d.ts +25 -0
package/dist/scanners/bandit.d.ts.map +1 -0
package/dist/scanners/bandit.js +129 -0
package/dist/scanners/bandit.js.map +1 -0
package/dist/scanners/binary-analysis.d.ts +41 -0
package/dist/scanners/binary-analysis.d.ts.map +1 -0
package/dist/scanners/binary-analysis.js +587 -0
package/dist/scanners/binary-analysis.js.map +1 -0
package/dist/scanners/binary-analysis.test.d.ts +5 -0
package/dist/scanners/binary-analysis.test.d.ts.map +1 -0
package/dist/scanners/binary-analysis.test.js +291 -0
package/dist/scanners/binary-analysis.test.js.map +1 -0
package/dist/scanners/brakeman.d.ts +30 -0
package/dist/scanners/brakeman.d.ts.map +1 -0
package/dist/scanners/brakeman.js +271 -0
package/dist/scanners/brakeman.js.map +1 -0
package/dist/scanners/dependencies.d.ts +22 -0
package/dist/scanners/dependencies.d.ts.map +1 -0
package/dist/scanners/dependencies.js +202 -0
package/dist/scanners/dependencies.js.map +1 -0
package/dist/scanners/dependencies.test.d.ts +5 -0
package/dist/scanners/dependencies.test.d.ts.map +1 -0
package/dist/scanners/dependencies.test.js +185 -0
package/dist/scanners/dependencies.test.js.map +1 -0
package/dist/scanners/eslint.d.ts +25 -0
package/dist/scanners/eslint.d.ts.map +1 -0
package/dist/scanners/eslint.js +220 -0
package/dist/scanners/eslint.js.map +1 -0
package/dist/scanners/gosec.d.ts +25 -0
package/dist/scanners/gosec.d.ts.map +1 -0
package/dist/scanners/gosec.js +128 -0
package/dist/scanners/gosec.js.map +1 -0
package/dist/scanners/index.d.ts +128 -0
package/dist/scanners/index.d.ts.map +1 -0
package/dist/scanners/index.js +811 -0
package/dist/scanners/index.js.map +1 -0
package/dist/scanners/index.test.d.ts +5 -0
package/dist/scanners/index.test.d.ts.map +1 -0
package/dist/scanners/index.test.js +424 -0
package/dist/scanners/index.test.js.map +1 -0
package/dist/scanners/memory-safety.d.ts +44 -0
package/dist/scanners/memory-safety.d.ts.map +1 -0
package/dist/scanners/memory-safety.js +571 -0
package/dist/scanners/memory-safety.js.map +1 -0
package/dist/scanners/memory-safety.test.d.ts +5 -0
package/dist/scanners/memory-safety.test.d.ts.map +1 -0
package/dist/scanners/memory-safety.test.js +321 -0
package/dist/scanners/memory-safety.test.js.map +1 -0
package/dist/scanners/race-condition.d.ts +25 -0
package/dist/scanners/race-condition.d.ts.map +1 -0
package/dist/scanners/race-condition.js +443 -0
package/dist/scanners/race-condition.js.map +1 -0
package/dist/scanners/race-condition.test.d.ts +5 -0
package/dist/scanners/race-condition.test.d.ts.map +1 -0
package/dist/scanners/race-condition.test.js +428 -0
package/dist/scanners/race-condition.test.js.map +1 -0
package/dist/scanners/secrets.d.ts +25 -0
package/dist/scanners/secrets.d.ts.map +1 -0
package/dist/scanners/secrets.js +367 -0
package/dist/scanners/secrets.js.map +1 -0
package/dist/scanners/secrets.test.d.ts +5 -0
package/dist/scanners/secrets.test.d.ts.map +1 -0
package/dist/scanners/secrets.test.js +160 -0
package/dist/scanners/secrets.test.js.map +1 -0
package/dist/scanners/semgrep.d.ts +33 -0
package/dist/scanners/semgrep.d.ts.map +1 -0
package/dist/scanners/semgrep.js +350 -0
package/dist/scanners/semgrep.js.map +1 -0
package/dist/scanners/semgrep.test.d.ts +8 -0
package/dist/scanners/semgrep.test.d.ts.map +1 -0
package/dist/scanners/semgrep.test.js +254 -0
package/dist/scanners/semgrep.test.js.map +1 -0
package/dist/scanners/trivy.d.ts +26 -0
package/dist/scanners/trivy.d.ts.map +1 -0
package/dist/scanners/trivy.js +187 -0
package/dist/scanners/trivy.js.map +1 -0
package/dist/scanners/types.d.ts +210 -0
package/dist/scanners/types.d.ts.map +1 -0
package/dist/scanners/types.js +106 -0
package/dist/scanners/types.js.map +1 -0
package/dist/scanners/types.test.d.ts +5 -0
package/dist/scanners/types.test.d.ts.map +1 -0
package/dist/scanners/types.test.js +103 -0
package/dist/scanners/types.test.js.map +1 -0
package/dist/scanners/typescript.d.ts +32 -0
package/dist/scanners/typescript.d.ts.map +1 -0
package/dist/scanners/typescript.js +300 -0
package/dist/scanners/typescript.js.map +1 -0
package/dist/scanners/typescript.test.d.ts +5 -0
package/dist/scanners/typescript.test.d.ts.map +1 -0
package/dist/scanners/typescript.test.js +296 -0
package/dist/scanners/typescript.test.js.map +1 -0
package/dist/transcripts/index.d.ts +13 -0
package/dist/transcripts/index.d.ts.map +1 -0
package/dist/transcripts/index.js +17 -0
package/dist/transcripts/index.js.map +1 -0
package/dist/transcripts/logger.d.ts +190 -0
package/dist/transcripts/logger.d.ts.map +1 -0
package/dist/transcripts/logger.js +385 -0
package/dist/transcripts/logger.js.map +1 -0
package/dist/transcripts/logger.test.d.ts +5 -0
package/dist/transcripts/logger.test.d.ts.map +1 -0
package/dist/transcripts/logger.test.js +227 -0
package/dist/transcripts/logger.test.js.map +1 -0
package/dist/transcripts/redaction.d.ts +125 -0
package/dist/transcripts/redaction.d.ts.map +1 -0
package/dist/transcripts/redaction.js +416 -0
package/dist/transcripts/redaction.js.map +1 -0
package/dist/transcripts/redaction.test.d.ts +5 -0
package/dist/transcripts/redaction.test.d.ts.map +1 -0
package/dist/transcripts/redaction.test.js +267 -0
package/dist/transcripts/redaction.test.js.map +1 -0
package/dist/transcripts/signing.d.ts +108 -0
package/dist/transcripts/signing.d.ts.map +1 -0
package/dist/transcripts/signing.js +173 -0
package/dist/transcripts/signing.js.map +1 -0
package/dist/transcripts/verifier.d.ts +133 -0
package/dist/transcripts/verifier.d.ts.map +1 -0
package/dist/transcripts/verifier.js +489 -0
package/dist/transcripts/verifier.js.map +1 -0
package/dist/transcripts/verifier.test.d.ts +5 -0
package/dist/transcripts/verifier.test.d.ts.map +1 -0
package/dist/transcripts/verifier.test.js +330 -0
package/dist/transcripts/verifier.test.js.map +1 -0
package/dist/util/concurrency.d.ts +221 -0
package/dist/util/concurrency.d.ts.map +1 -0
package/dist/util/concurrency.js +339 -0
package/dist/util/concurrency.js.map +1 -0
package/dist/util/index.d.ts +12 -0
package/dist/util/index.d.ts.map +1 -0
package/dist/util/index.js +12 -0
package/dist/util/index.js.map +1 -0
package/dist/util/json.d.ts +63 -0
package/dist/util/json.d.ts.map +1 -0
package/dist/util/json.js +134 -0
package/dist/util/json.js.map +1 -0
package/dist/util/paths.d.ts +56 -0
package/dist/util/paths.d.ts.map +1 -0
package/dist/util/paths.js +128 -0
package/dist/util/paths.js.map +1 -0
package/dist/util/retry.d.ts +185 -0
package/dist/util/retry.d.ts.map +1 -0
package/dist/util/retry.js +338 -0
package/dist/util/retry.js.map +1 -0
package/package.json +79 -0

package/dist/commands/core/fix-critical.js ADDED Viewed

@@ -0,0 +1,22 @@
+export const fixCritical = {
+    name: "fix-critical",
+    description: "Fix all CRITICAL severity issues from AUDIT.md — security holes, crash risks, missing auth",
+    content: `Read AUDIT.md in the repo root. Fix every issue listed under the CRITICAL section.
+Execution Rules:
+1. Work through issues one file at a time.
+2. For each fix:
+   - Add try/catch with structured error responses on every unhandled async call
+   - Error responses must follow: { error: string, code: string, status: number }
+   - Never return raw error messages or stack traces to the client
+   - Auth checks: verify session exists before any data operation
+   - Supabase RLS: generate migration SQL for any table missing policies, save to supabase/migrations/
+   - Secrets: replace hardcoded values with process.env.VARIABLE_NAME, note what must be added to Doppler
+3. After all fixes, create a git commit: "fix: resolve critical production issues"
+4. Update AUDIT.md — mark each CRITICAL issue as [FIXED]
+5. Print summary: how many existed, how many fixed, any that could NOT be auto-fixed (explain why)
+Do NOT change business logic, refactor file structure, add features, or modify UI appearance.
+If you cannot auto-fix an issue, add a // TODO(CRITICAL): comment and flag it in the summary.`
+};
+//# sourceMappingURL=fix-critical.js.map

package/dist/commands/core/fix-critical.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"fix-critical.js","sourceRoot":"","sources":["../../../src/commands/core/fix-critical.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,WAAW,GAAqB;IAC3C,IAAI,EAAE,cAAc;IACpB,WAAW,EAAE,4FAA4F;IACzG,OAAO,EAAE;;;;;;;;;;;;;;;;8FAgBmF;CAC7F,CAAC"}

package/dist/commands/core/fix-high.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { HardeningCommand } from "../types.js";
+export declare const fixHigh: HardeningCommand;
+//# sourceMappingURL=fix-high.d.ts.map

package/dist/commands/core/fix-high.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"fix-high.d.ts","sourceRoot":"","sources":["../../../src/commands/core/fix-high.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAEpD,eAAO,MAAM,OAAO,EAAE,gBA8BrB,CAAC"}

package/dist/commands/core/fix-high.js ADDED Viewed

@@ -0,0 +1,32 @@
+export const fixHigh = {
+    name: "fix-high",
+    description: "Fix all HIGH severity issues — validation, types, UI loading/error/empty states",
+    content: `Read AUDIT.md in the repo root. Fix every issue under the HIGH section.
+Execute in this order:
+Round A: Input Validation
+- Add Zod schemas for every API route and server action accepting user input
+- Place schemas in lib/validations/ or colocated with the route
+- Parse with schema.safeParse() — never trust raw req.body or form data
+- Return 400 with structured error on validation failure
+Round B: TypeScript Strictness
+- Replace every any type with a proper type or interface
+- Add explicit return types to all exported functions
+- Add parameter types to all function arguments
+- Shared types go in types/ directory
+Round C: UI Resilience
+- Every data-fetching component must have loading, error, and empty states
+- Add React Error Boundaries at the layout level if none exist
+- Clean up Supabase realtime subscriptions in useEffect cleanup
+Round D: API Hardening
+- Sanitize all error responses
+- Add revalidatePath() after every mutation
+- Ensure consistent response shapes across all API routes
+After all fixes: git commit "fix: resolve high priority production issues", update AUDIT.md.`
+};
+//# sourceMappingURL=fix-high.js.map

package/dist/commands/core/fix-high.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"fix-high.js","sourceRoot":"","sources":["../../../src/commands/core/fix-high.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,OAAO,GAAqB;IACvC,IAAI,EAAE,UAAU;IAChB,WAAW,EAAE,iFAAiF;IAC9F,OAAO,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;6FA0BkF;CAC5F,CAAC"}

package/dist/commands/core/fix-medium.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { HardeningCommand } from "../types.js";
+export declare const fixMedium: HardeningCommand;
+//# sourceMappingURL=fix-medium.d.ts.map

package/dist/commands/core/fix-medium.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"fix-medium.d.ts","sourceRoot":"","sources":["../../../src/commands/core/fix-medium.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAEpD,eAAO,MAAM,SAAS,EAAE,gBA2BvB,CAAC"}

package/dist/commands/core/fix-medium.js ADDED Viewed

@@ -0,0 +1,29 @@
+export const fixMedium = {
+    name: "fix-medium",
+    description: "Fix MEDIUM severity issues — data access layer, logging, code organization",
+    content: `Read AUDIT.md in the repo root. Fix every issue under the MEDIUM section.
+Round A: Data Access Layer
+- If Supabase calls are scattered, create lib/db/ with typed functions per table
+- Each function handles its own error handling and returns typed results
+- Replace all direct supabase.from() calls with these functions
+Round B: Structured Logging
+- Replace console.log with a lightweight structured logger in lib/logger.ts
+- Levels: info, warn, error. Dev: console with context. Prod: structured JSON.
+- Every API route logs: request received, success/failure, duration
+- Every error catch logs with context (route, user id, input)
+Round C: Code Organization
+- Break components over 300 lines into smaller composable components
+- Extract duplicated logic into shared utilities
+- Remove dead code: unused imports, commented-out blocks, unreachable branches
+Round D: Error Boundaries
+- Add root-level React Error Boundary if none exists
+- Add boundaries around major data-fetching sections
+- Each shows user-friendly fallback with retry
+After all fixes: git commit "fix: resolve medium priority tech debt", update AUDIT.md.`
+};
+//# sourceMappingURL=fix-medium.js.map

package/dist/commands/core/fix-medium.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"fix-medium.js","sourceRoot":"","sources":["../../../src/commands/core/fix-medium.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,SAAS,GAAqB;IACzC,IAAI,EAAE,YAAY;IAClB,WAAW,EAAE,4EAA4E;IACzF,OAAO,EAAE;;;;;;;;;;;;;;;;;;;;;;;uFAuB4E;CACtF,CAAC"}

package/dist/commands/core/fix-rls.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { HardeningCommand } from "../types.js";
+export declare const fixRls: HardeningCommand;
+//# sourceMappingURL=fix-rls.d.ts.map

package/dist/commands/core/fix-rls.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"fix-rls.d.ts","sourceRoot":"","sources":["../../../src/commands/core/fix-rls.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAEpD,eAAO,MAAM,MAAM,EAAE,gBAepB,CAAC"}

package/dist/commands/core/fix-rls.js ADDED Viewed

@@ -0,0 +1,17 @@
+export const fixRls = {
+    name: "fix-rls",
+    description: "Supabase RLS policy audit and generation — ensures every table has proper row-level security",
+    content: `Audit and fix Row Level Security policies for every Supabase table.
+1. Discover all tables: check supabase/migrations/, seed files, and codebase for supabase.from('table_name') calls.
+2. Check existing policies in migrations for CREATE POLICY or ENABLE ROW LEVEL SECURITY.
+3. For each table, determine access pattern from codebase usage: who reads, who writes, ownership column.
+4. Generate migration files in supabase/migrations/ for:
+   - ALTER TABLE ENABLE ROW LEVEL SECURITY on any table missing it
+   - SELECT, INSERT, UPDATE, DELETE policies matching the access pattern
+5. Flag any service-role key usage from client side (critical security issue).
+6. Save migration as supabase/migrations/[timestamp]_rls_hardening.sql
+7. Generate RLS-REPORT.md listing every table, its policies, and gaps.
+8. Git commit: "security: add RLS policies to all tables"`
+};
+//# sourceMappingURL=fix-rls.js.map

package/dist/commands/core/fix-rls.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"fix-rls.js","sourceRoot":"","sources":["../../../src/commands/core/fix-rls.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,MAAM,GAAqB;IACtC,IAAI,EAAE,SAAS;IACf,WAAW,EAAE,8FAA8F;IAC3G,OAAO,EAAE;;;;;;;;;;;0DAW+C;CACzD,CAAC"}

package/dist/commands/core/harden.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { HardeningCommand } from "../types.js";
+export declare const harden: HardeningCommand;
+//# sourceMappingURL=harden.d.ts.map

package/dist/commands/core/harden.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"harden.d.ts","sourceRoot":"","sources":["../../../src/commands/core/harden.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAEpD,eAAO,MAAM,MAAM,EAAE,gBAiBpB,CAAC"}

package/dist/commands/core/harden.js ADDED Viewed

@@ -0,0 +1,19 @@
+export const harden = {
+    name: "harden",
+    description: "Full production hardening pipeline — runs audit, all fix phases, tests, and verification in sequence",
+    content: `Run the complete Vaspera production hardening pipeline. Execute each phase in order. Do NOT skip phases. Commit after each phase.
+Phase 1: Audit — full production readiness audit, save to AUDIT.md
+Phase 2: Fix Critical — fix all CRITICAL issues. Commit: "fix: resolve critical production issues"
+Phase 3: Fix High — fix all HIGH issues. Commit: "fix: resolve high priority production issues"
+Phase 4: Fix Medium — fix all MEDIUM issues. Commit: "fix: resolve medium priority tech debt"
+Phase 5: Add Tests — add test coverage, run suite. Commit: "test: add production test coverage"
+Phase 6: Verify — re-audit, generate HARDENING-REPORT.md with before/after comparison
+Rules:
+- If any phase hits an issue it cannot resolve, add // TODO(HARDENING): comment and continue
+- Do not change business logic, only infrastructure/resilience/safety code
+- If codebase is large, focus on API routes and data-fetching components first
+- Print a one-paragraph executive summary at the end`
+};
+//# sourceMappingURL=harden.js.map

package/dist/commands/core/harden.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"harden.js","sourceRoot":"","sources":["../../../src/commands/core/harden.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,MAAM,GAAqB;IACtC,IAAI,EAAE,QAAQ;IACd,WAAW,EAAE,sGAAsG;IACnH,OAAO,EAAE;;;;;;;;;;;;;qDAa0C;CACpD,CAAC"}

package/dist/commands/core/index.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { HardeningCommand } from "../types.js";
+export declare const COMMANDS: Record<string, HardeningCommand>;
+//# sourceMappingURL=index.d.ts.map

package/dist/commands/core/index.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/commands/core/index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAWpD,eAAO,MAAM,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAUrD,CAAC"}

package/dist/commands/core/index.js ADDED Viewed

@@ -0,0 +1,21 @@
+import { audit } from "./audit.js";
+import { fixCritical } from "./fix-critical.js";
+import { fixHigh } from "./fix-high.js";
+import { fixMedium } from "./fix-medium.js";
+import { fixRls } from "./fix-rls.js";
+import { addTests } from "./add-tests.js";
+import { verify } from "./verify.js";
+import { harden } from "./harden.js";
+import { preflight } from "./preflight.js";
+export const COMMANDS = {
+    audit,
+    "fix-critical": fixCritical,
+    "fix-high": fixHigh,
+    "fix-medium": fixMedium,
+    "fix-rls": fixRls,
+    "add-tests": addTests,
+    verify,
+    harden,
+    preflight,
+};
+//# sourceMappingURL=index.js.map

package/dist/commands/core/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/commands/core/index.ts"],"names":[],"mappings":"AACA,OAAO,EAAE,KAAK,EAAE,MAAM,YAAY,CAAC;AACnC,OAAO,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAChD,OAAO,EAAE,OAAO,EAAE,MAAM,eAAe,CAAC;AACxC,OAAO,EAAE,SAAS,EAAE,MAAM,iBAAiB,CAAC;AAC5C,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AACtC,OAAO,EAAE,QAAQ,EAAE,MAAM,gBAAgB,CAAC;AAC1C,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AACrC,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AACrC,OAAO,EAAE,SAAS,EAAE,MAAM,gBAAgB,CAAC;AAE3C,MAAM,CAAC,MAAM,QAAQ,GAAqC;IACxD,KAAK;IACL,cAAc,EAAE,WAAW;IAC3B,UAAU,EAAE,OAAO;IACnB,YAAY,EAAE,SAAS;IACvB,SAAS,EAAE,MAAM;IACjB,WAAW,EAAE,QAAQ;IACrB,MAAM;IACN,MAAM;IACN,SAAS;CACV,CAAC"}

package/dist/commands/core/preflight.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { HardeningCommand } from "../types.js";
+export declare const preflight: HardeningCommand;
+//# sourceMappingURL=preflight.d.ts.map

package/dist/commands/core/preflight.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"preflight.d.ts","sourceRoot":"","sources":["../../../src/commands/core/preflight.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAEpD,eAAO,MAAM,SAAS,EAAE,gBAgDvB,CAAC"}

package/dist/commands/core/preflight.js ADDED Viewed

@@ -0,0 +1,50 @@
+export const preflight = {
+    name: "preflight",
+    description: "Pre-commit quality check — TypeScript, lint, tests, and code hygiene before committing",
+    content: `Run a fast pre-commit quality check. This should be run before every commit to catch issues early.
+## Checks to Run
+### 1. TypeScript Compilation
+- Run \`npx tsc --noEmit\` (or equivalent for the project)
+- List ALL type errors with file:line
+- Flag any \`any\` types in changed files
+### 2. Lint Violations
+- Run the project's linter (eslint, biome, etc.)
+- Focus on errors, not warnings
+- Auto-fix what's safe to auto-fix
+### 3. Test Suite
+- Run \`npm test\` or equivalent
+- If tests fail, list which tests and why
+- Do NOT skip failing tests
+### 4. Code Hygiene
+Scan staged/changed files for:
+- console.log statements (should be removed or use logger)
+- Commented-out code blocks (should be deleted)
+- TODO/FIXME without ticket reference
+- Unused imports
+- debugger statements
+- .only() on tests
+### 5. Import Analysis
+- Check for circular imports in changed files
+- Flag any new imports from node_modules that aren't in package.json
+## Output
+Print a PASS/FAIL checklist:
+\`\`\`
+[✓] TypeScript: No errors
+[✗] Lint: 3 errors in src/api/route.ts
+[✓] Tests: 42 passed
+[✗] Hygiene: 2 console.logs found
+[✓] Imports: Clean
+\`\`\`
+If ANY check fails, list the specific issues and DO NOT proceed with commit.
+If all pass, print "Ready to commit" and suggest a commit message based on the changes.`
+};
+//# sourceMappingURL=preflight.js.map

package/dist/commands/core/preflight.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"preflight.js","sourceRoot":"","sources":["../../../src/commands/core/preflight.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,SAAS,GAAqB;IACzC,IAAI,EAAE,WAAW;IACjB,WAAW,EAAE,wFAAwF;IACrG,OAAO,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;wFA4C6E;CACvF,CAAC"}

package/dist/commands/core/verify.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import type { HardeningCommand } from "../types.js";
+export declare const verify: HardeningCommand;
+//# sourceMappingURL=verify.d.ts.map

package/dist/commands/core/verify.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"verify.d.ts","sourceRoot":"","sources":["../../../src/commands/core/verify.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAEpD,eAAO,MAAM,MAAM,EAAE,gBA8BpB,CAAC"}

package/dist/commands/core/verify.js ADDED Viewed

@@ -0,0 +1,32 @@
+export const verify = {
+    name: "verify",
+    description: "Re-audit and generate before/after comparison report with deployment checklist",
+    content: `1. Rename current AUDIT.md to AUDIT-BEFORE.md if not already done.
+2. Run the full audit again. Save to AUDIT-AFTER.md.
+3. Generate HARDENING-REPORT.md:
+### Before / After Comparison
+| Severity | Before | After | Resolved | Remaining |
+|----------|--------|-------|----------|-----------|
+| CRITICAL | X | X | X | X |
+| HIGH     | X | X | X | X |
+| MEDIUM   | X | X | X | X |
+| LOW      | X | X | X | X |
+### Production Readiness Score: Before X/100 -> After X/100
+### Remaining Issues (with why they weren't auto-fixed and manual action needed)
+### New Issues Introduced (regressions from fixes)
+### Deployment Checklist:
+- [ ] All tests pass
+- [ ] Environment variables documented and in Doppler
+- [ ] RLS policies verified on all Supabase tables
+- [ ] Error monitoring set up
+- [ ] Rate limiting on public endpoints
+- [ ] CORS configured
+- [ ] No hardcoded secrets
+4. Run test suite, include results.
+5. Git commit: "docs: production hardening verification report"`
+};
+//# sourceMappingURL=verify.js.map

package/dist/commands/core/verify.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"verify.js","sourceRoot":"","sources":["../../../src/commands/core/verify.ts"],"names":[],"mappings":"AAEA,MAAM,CAAC,MAAM,MAAM,GAAqB;IACtC,IAAI,EAAE,QAAQ;IACd,WAAW,EAAE,gFAAgF;IAC7F,OAAO,EAAE;;;;;;;;;;;;;;;;;;;;;;;;;;gEA0BqD;CAC/D,CAAC"}

package/dist/commands/index.d.ts ADDED Viewed

@@ -0,0 +1,28 @@
+/**
+ * Embedded hardening command prompts.
+ * These are the same commands from the slash command kit,
+ * served as MCP resources and used by tools.
+ *
+ * Commands are organized into categories:
+ * - core: Main hardening pipeline (audit, fix-*, verify, harden)
+ * - audits: Specialized audit commands (deps, deadcode, errors, etc.)
+ * - certification: Enterprise certification agents
+ */
+import type { HardeningCommand } from "./types.js";
+export type { HardeningCommand } from "./types.js";
+/**
+ * All available hardening commands.
+ */
+export declare const COMMANDS: Record<string, HardeningCommand>;
+/**
+ * Get a command by name.
+ * @param name - The command name (e.g., "audit", "fix-critical")
+ * @returns The command or undefined if not found
+ */
+export declare function getCommand(name: string): HardeningCommand | undefined;
+/**
+ * List all available commands.
+ * @returns Array of all hardening commands
+ */
+export declare function listCommands(): HardeningCommand[];
+//# sourceMappingURL=index.d.ts.map

package/dist/commands/index.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/commands/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AAKnD,YAAY,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AAEnD;;GAEG;AACH,eAAO,MAAM,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAIrD,CAAC;AAEF;;;;GAIG;AACH,wBAAgB,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,gBAAgB,GAAG,SAAS,CAErE;AAED;;;GAGG;AACH,wBAAgB,YAAY,IAAI,gBAAgB,EAAE,CAEjD"}

package/dist/commands/index.js ADDED Viewed

@@ -0,0 +1,37 @@
+/**
+ * Embedded hardening command prompts.
+ * These are the same commands from the slash command kit,
+ * served as MCP resources and used by tools.
+ *
+ * Commands are organized into categories:
+ * - core: Main hardening pipeline (audit, fix-*, verify, harden)
+ * - audits: Specialized audit commands (deps, deadcode, errors, etc.)
+ * - certification: Enterprise certification agents
+ */
+import { COMMANDS as coreCommands } from "./core/index.js";
+import { COMMANDS as auditCommands } from "./audits/index.js";
+import { COMMANDS as certificationCommands } from "./certification/index.js";
+/**
+ * All available hardening commands.
+ */
+export const COMMANDS = {
+    ...coreCommands,
+    ...auditCommands,
+    ...certificationCommands,
+};
+/**
+ * Get a command by name.
+ * @param name - The command name (e.g., "audit", "fix-critical")
+ * @returns The command or undefined if not found
+ */
+export function getCommand(name) {
+    return COMMANDS[name];
+}
+/**
+ * List all available commands.
+ * @returns Array of all hardening commands
+ */
+export function listCommands() {
+    return Object.values(COMMANDS);
+}
+//# sourceMappingURL=index.js.map

package/dist/commands/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/commands/index.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAGH,OAAO,EAAE,QAAQ,IAAI,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC3D,OAAO,EAAE,QAAQ,IAAI,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAC9D,OAAO,EAAE,QAAQ,IAAI,qBAAqB,EAAE,MAAM,0BAA0B,CAAC;AAI7E;;GAEG;AACH,MAAM,CAAC,MAAM,QAAQ,GAAqC;IACxD,GAAG,YAAY;IACf,GAAG,aAAa;IAChB,GAAG,qBAAqB;CACzB,CAAC;AAEF;;;;GAIG;AACH,MAAM,UAAU,UAAU,CAAC,IAAY;IACrC,OAAO,QAAQ,CAAC,IAAI,CAAC,CAAC;AACxB,CAAC;AAED;;;GAGG;AACH,MAAM,UAAU,YAAY;IAC1B,OAAO,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;AACjC,CAAC"}

package/dist/commands/types.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Type definitions for hardening commands
+ */
+export interface HardeningCommand {
+    name: string;
+    description: string;
+    content: string;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/commands/types.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/commands/types.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,MAAM,CAAC;CACjB"}

package/dist/commands/types.js ADDED Viewed

@@ -0,0 +1,5 @@
+/**
+ * Type definitions for hardening commands
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/commands/types.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/commands/types.ts"],"names":[],"mappings":"AAAA;;GAEG"}

package/dist/compliance/cis.d.ts ADDED Viewed

@@ -0,0 +1,29 @@
+/**
+ * CIS Critical Security Controls v8
+ *
+ * Center for Internet Security Controls
+ *
+ * @module compliance/cis
+ */
+import type { ComplianceControl } from "./types.js";
+/**
+ * CIS control categories (Implementation Groups)
+ */
+export declare const CIS_CATEGORIES: readonly ["Inventory and Control of Enterprise Assets", "Inventory and Control of Software Assets", "Data Protection", "Secure Configuration", "Account Management", "Access Control Management", "Continuous Vulnerability Management", "Audit Log Management", "Email and Web Browser Protections", "Malware Defenses", "Data Recovery", "Network Infrastructure Management", "Network Monitoring and Defense", "Security Awareness Training", "Service Provider Management", "Application Software Security", "Incident Response Management", "Penetration Testing"];
+/**
+ * CIS Controls v8 relevant to code security
+ */
+export declare const CIS_CONTROLS: ComplianceControl[];
+/**
+ * Get all CIS controls
+ */
+export declare function getCISControls(): ComplianceControl[];
+/**
+ * Get CIS controls by category
+ */
+export declare function getCISControlsByCategory(category: string): ComplianceControl[];
+/**
+ * Get CIS categories
+ */
+export declare function getCISCategories(): readonly string[];
+//# sourceMappingURL=cis.d.ts.map

package/dist/compliance/cis.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"cis.d.ts","sourceRoot":"","sources":["../../src/compliance/cis.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,iBAAiB,EAAE,MAAM,YAAY,CAAC;AAEpD;;GAEG;AACH,eAAO,MAAM,cAAc,yiBAmBjB,CAAC;AAEX;;GAEG;AACH,eAAO,MAAM,YAAY,EAAE,iBAAiB,EAuS3C,CAAC;AAEF;;GAEG;AACH,wBAAgB,cAAc,IAAI,iBAAiB,EAAE,CAEpD;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,QAAQ,EAAE,MAAM,GAAG,iBAAiB,EAAE,CAE9E;AAED;;GAEG;AACH,wBAAgB,gBAAgB,IAAI,SAAS,MAAM,EAAE,CAEpD"}