npm - vaspera - Versions diffs - 2.9.2 → 2.10.1 - Mend

vaspera 2.9.2 → 2.10.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (327) hide show

package/CHANGELOG.md +68 -0
package/README.md +58 -1
package/dist/__tests__/autofix/branch-manager.test.d.ts +2 -0
package/dist/__tests__/autofix/branch-manager.test.d.ts.map +1 -0
package/dist/__tests__/autofix/branch-manager.test.js +60 -0
package/dist/__tests__/autofix/branch-manager.test.js.map +1 -0
package/dist/__tests__/autofix/commit-generator.test.d.ts +2 -0
package/dist/__tests__/autofix/commit-generator.test.d.ts.map +1 -0
package/dist/__tests__/autofix/commit-generator.test.js +147 -0
package/dist/__tests__/autofix/commit-generator.test.js.map +1 -0
package/dist/__tests__/autofix/constitution.test.d.ts +9 -0
package/dist/__tests__/autofix/constitution.test.d.ts.map +1 -0
package/dist/__tests__/autofix/constitution.test.js +421 -0
package/dist/__tests__/autofix/constitution.test.js.map +1 -0
package/dist/__tests__/autofix/pr-generator.test.d.ts +2 -0
package/dist/__tests__/autofix/pr-generator.test.d.ts.map +1 -0
package/dist/__tests__/autofix/pr-generator.test.js +152 -0
package/dist/__tests__/autofix/pr-generator.test.js.map +1 -0
package/dist/__tests__/property-test-helpers.d.ts +87 -0
package/dist/__tests__/property-test-helpers.d.ts.map +1 -0
package/dist/__tests__/property-test-helpers.js +136 -0
package/dist/__tests__/property-test-helpers.js.map +1 -0
package/dist/__tests__/scanners/ai-code/ai-detector.test.d.ts +2 -0
package/dist/__tests__/scanners/ai-code/ai-detector.test.d.ts.map +1 -0
package/dist/__tests__/scanners/ai-code/ai-detector.test.js +188 -0
package/dist/__tests__/scanners/ai-code/ai-detector.test.js.map +1 -0
package/dist/__tests__/scanners/ai-code/confidence-scorer.test.d.ts +2 -0
package/dist/__tests__/scanners/ai-code/confidence-scorer.test.d.ts.map +1 -0
package/dist/__tests__/scanners/ai-code/confidence-scorer.test.js +363 -0
package/dist/__tests__/scanners/ai-code/confidence-scorer.test.js.map +1 -0
package/dist/__tests__/scanners/ai-code/hallucination-checker.test.d.ts +2 -0
package/dist/__tests__/scanners/ai-code/hallucination-checker.test.d.ts.map +1 -0
package/dist/__tests__/scanners/ai-code/hallucination-checker.test.js +226 -0
package/dist/__tests__/scanners/ai-code/hallucination-checker.test.js.map +1 -0
package/dist/__tests__/scanners/ai-code/index.test.d.ts +2 -0
package/dist/__tests__/scanners/ai-code/index.test.d.ts.map +1 -0
package/dist/__tests__/scanners/ai-code/index.test.js +214 -0
package/dist/__tests__/scanners/ai-code/index.test.js.map +1 -0
package/dist/__tests__/scanners/dast/index.test.d.ts +2 -0
package/dist/__tests__/scanners/dast/index.test.d.ts.map +1 -0
package/dist/__tests__/scanners/dast/index.test.js +183 -0
package/dist/__tests__/scanners/dast/index.test.js.map +1 -0
package/dist/__tests__/scanners/dast/nuclei.test.d.ts +2 -0
package/dist/__tests__/scanners/dast/nuclei.test.d.ts.map +1 -0
package/dist/__tests__/scanners/dast/nuclei.test.js +166 -0
package/dist/__tests__/scanners/dast/nuclei.test.js.map +1 -0
package/dist/__tests__/scanners/dast/zap.test.d.ts +2 -0
package/dist/__tests__/scanners/dast/zap.test.d.ts.map +1 -0
package/dist/__tests__/scanners/dast/zap.test.js +158 -0
package/dist/__tests__/scanners/dast/zap.test.js.map +1 -0
package/dist/__tests__/scanners/deploy/health-checker.test.d.ts +2 -0
package/dist/__tests__/scanners/deploy/health-checker.test.d.ts.map +1 -0
package/dist/__tests__/scanners/deploy/health-checker.test.js +67 -0
package/dist/__tests__/scanners/deploy/health-checker.test.js.map +1 -0
package/dist/__tests__/scanners/deploy/index.test.d.ts +2 -0
package/dist/__tests__/scanners/deploy/index.test.d.ts.map +1 -0
package/dist/__tests__/scanners/deploy/index.test.js +84 -0
package/dist/__tests__/scanners/deploy/index.test.js.map +1 -0
package/dist/__tests__/scanners/deploy/provider-detector.test.d.ts +2 -0
package/dist/__tests__/scanners/deploy/provider-detector.test.d.ts.map +1 -0
package/dist/__tests__/scanners/deploy/provider-detector.test.js +88 -0
package/dist/__tests__/scanners/deploy/provider-detector.test.js.map +1 -0
package/dist/__tests__/scanners/deploy/types.test.d.ts +2 -0
package/dist/__tests__/scanners/deploy/types.test.d.ts.map +1 -0
package/dist/__tests__/scanners/deploy/types.test.js +126 -0
package/dist/__tests__/scanners/deploy/types.test.js.map +1 -0
package/dist/__tests__/scanners/fp-feedback.test.d.ts +2 -0
package/dist/__tests__/scanners/fp-feedback.test.d.ts.map +1 -0
package/dist/__tests__/scanners/fp-feedback.test.js +202 -0
package/dist/__tests__/scanners/fp-feedback.test.js.map +1 -0
package/dist/__tests__/scanners/fp-filter.property.test.d.ts +9 -0
package/dist/__tests__/scanners/fp-filter.property.test.d.ts.map +1 -0
package/dist/__tests__/scanners/fp-filter.property.test.js +253 -0
package/dist/__tests__/scanners/fp-filter.property.test.js.map +1 -0
package/dist/__tests__/scanners/fp-filter.test.d.ts +2 -0
package/dist/__tests__/scanners/fp-filter.test.d.ts.map +1 -0
package/dist/__tests__/scanners/fp-filter.test.js +234 -0
package/dist/__tests__/scanners/fp-filter.test.js.map +1 -0
package/dist/__tests__/scanners/fp-tracker.test.d.ts +2 -0
package/dist/__tests__/scanners/fp-tracker.test.d.ts.map +1 -0
package/dist/__tests__/scanners/fp-tracker.test.js +262 -0
package/dist/__tests__/scanners/fp-tracker.test.js.map +1 -0
package/dist/__tests__/scanners/logic/endpoint-analyzer.property.test.d.ts +10 -0
package/dist/__tests__/scanners/logic/endpoint-analyzer.property.test.d.ts.map +1 -0
package/dist/__tests__/scanners/logic/endpoint-analyzer.property.test.js +238 -0
package/dist/__tests__/scanners/logic/endpoint-analyzer.property.test.js.map +1 -0
package/dist/__tests__/scanners/logic/endpoint-analyzer.test.d.ts +2 -0
package/dist/__tests__/scanners/logic/endpoint-analyzer.test.d.ts.map +1 -0
package/dist/__tests__/scanners/logic/endpoint-analyzer.test.js +55 -0
package/dist/__tests__/scanners/logic/endpoint-analyzer.test.js.map +1 -0
package/dist/__tests__/scanners/logic/index.test.d.ts +2 -0
package/dist/__tests__/scanners/logic/index.test.d.ts.map +1 -0
package/dist/__tests__/scanners/logic/index.test.js +165 -0
package/dist/__tests__/scanners/logic/index.test.js.map +1 -0
package/dist/__tests__/scanners/logic/types.test.d.ts +2 -0
package/dist/__tests__/scanners/logic/types.test.d.ts.map +1 -0
package/dist/__tests__/scanners/logic/types.test.js +85 -0
package/dist/__tests__/scanners/logic/types.test.js.map +1 -0
package/dist/__tests__/scanners/runtime/app-launcher.test.d.ts +2 -0
package/dist/__tests__/scanners/runtime/app-launcher.test.d.ts.map +1 -0
package/dist/__tests__/scanners/runtime/app-launcher.test.js +94 -0
package/dist/__tests__/scanners/runtime/app-launcher.test.js.map +1 -0
package/dist/__tests__/scanners/runtime/golden-path-runner.test.d.ts +2 -0
package/dist/__tests__/scanners/runtime/golden-path-runner.test.d.ts.map +1 -0
package/dist/__tests__/scanners/runtime/golden-path-runner.test.js +195 -0
package/dist/__tests__/scanners/runtime/golden-path-runner.test.js.map +1 -0
package/dist/__tests__/scanners/runtime/index.test.d.ts +2 -0
package/dist/__tests__/scanners/runtime/index.test.d.ts.map +1 -0
package/dist/__tests__/scanners/runtime/index.test.js +120 -0
package/dist/__tests__/scanners/runtime/index.test.js.map +1 -0
package/dist/__tests__/scanners/runtime/types.test.d.ts +2 -0
package/dist/__tests__/scanners/runtime/types.test.d.ts.map +1 -0
package/dist/__tests__/scanners/runtime/types.test.js +126 -0
package/dist/__tests__/scanners/runtime/types.test.js.map +1 -0
package/dist/__tests__/scanners/scale/bottleneck-detector.test.d.ts +2 -0
package/dist/__tests__/scanners/scale/bottleneck-detector.test.d.ts.map +1 -0
package/dist/__tests__/scanners/scale/bottleneck-detector.test.js +187 -0
package/dist/__tests__/scanners/scale/bottleneck-detector.test.js.map +1 -0
package/dist/__tests__/scanners/scale/index.test.d.ts +2 -0
package/dist/__tests__/scanners/scale/index.test.d.ts.map +1 -0
package/dist/__tests__/scanners/scale/index.test.js +87 -0
package/dist/__tests__/scanners/scale/index.test.js.map +1 -0
package/dist/__tests__/scanners/scale/load-profiler.test.d.ts +2 -0
package/dist/__tests__/scanners/scale/load-profiler.test.d.ts.map +1 -0
package/dist/__tests__/scanners/scale/load-profiler.test.js +122 -0
package/dist/__tests__/scanners/scale/load-profiler.test.js.map +1 -0
package/dist/__tests__/scanners/scale/types.test.d.ts +2 -0
package/dist/__tests__/scanners/scale/types.test.d.ts.map +1 -0
package/dist/__tests__/scanners/scale/types.test.js +129 -0
package/dist/__tests__/scanners/scale/types.test.js.map +1 -0
package/dist/action/pr-comment.test.js +4 -0
package/dist/action/pr-comment.test.js.map +1 -1
package/dist/action/sarif-upload.test.js +4 -0
package/dist/action/sarif-upload.test.js.map +1 -1
package/dist/autofix/branch-manager.d.ts +115 -0
package/dist/autofix/branch-manager.d.ts.map +1 -0
package/dist/autofix/branch-manager.js +308 -0
package/dist/autofix/branch-manager.js.map +1 -0
package/dist/autofix/commit-generator.d.ts +55 -0
package/dist/autofix/commit-generator.d.ts.map +1 -0
package/dist/autofix/commit-generator.js +277 -0
package/dist/autofix/commit-generator.js.map +1 -0
package/dist/autofix/constitution.d.ts +77 -0
package/dist/autofix/constitution.d.ts.map +1 -0
package/dist/autofix/constitution.js +261 -0
package/dist/autofix/constitution.js.map +1 -0
package/dist/autofix/constitution.schema.d.ts +441 -0
package/dist/autofix/constitution.schema.d.ts.map +1 -0
package/dist/autofix/constitution.schema.js +144 -0
package/dist/autofix/constitution.schema.js.map +1 -0
package/dist/autofix/index.d.ts +13 -0
package/dist/autofix/index.d.ts.map +1 -0
package/dist/autofix/index.js +15 -0
package/dist/autofix/index.js.map +1 -0
package/dist/autofix/pr-generator.d.ts +57 -0
package/dist/autofix/pr-generator.d.ts.map +1 -0
package/dist/autofix/pr-generator.js +597 -0
package/dist/autofix/pr-generator.js.map +1 -0
package/dist/autofix/types.d.ts +151 -0
package/dist/autofix/types.d.ts.map +1 -0
package/dist/autofix/types.js +22 -0
package/dist/autofix/types.js.map +1 -0
package/dist/eval/fixtures.d.ts +20 -0
package/dist/eval/fixtures.d.ts.map +1 -1
package/dist/eval/fixtures.js +430 -0
package/dist/eval/fixtures.js.map +1 -1
package/dist/index.d.ts.map +1 -1
package/dist/index.js +874 -0
package/dist/index.js.map +1 -1
package/dist/install-skills.d.ts +11 -0
package/dist/install-skills.d.ts.map +1 -0
package/dist/install-skills.js +81 -0
package/dist/install-skills.js.map +1 -0
package/dist/scanners/ai-code/ai-detector.d.ts +25 -0
package/dist/scanners/ai-code/ai-detector.d.ts.map +1 -0
package/dist/scanners/ai-code/ai-detector.js +192 -0
package/dist/scanners/ai-code/ai-detector.js.map +1 -0
package/dist/scanners/ai-code/confidence-scorer.d.ts +40 -0
package/dist/scanners/ai-code/confidence-scorer.d.ts.map +1 -0
package/dist/scanners/ai-code/confidence-scorer.js +148 -0
package/dist/scanners/ai-code/confidence-scorer.js.map +1 -0
package/dist/scanners/ai-code/hallucination-checker.d.ts +36 -0
package/dist/scanners/ai-code/hallucination-checker.d.ts.map +1 -0
package/dist/scanners/ai-code/hallucination-checker.js +298 -0
package/dist/scanners/ai-code/hallucination-checker.js.map +1 -0
package/dist/scanners/ai-code/index.d.ts +30 -0
package/dist/scanners/ai-code/index.d.ts.map +1 -0
package/dist/scanners/ai-code/index.js +224 -0
package/dist/scanners/ai-code/index.js.map +1 -0
package/dist/scanners/ai-code/types.d.ts +192 -0
package/dist/scanners/ai-code/types.d.ts.map +1 -0
package/dist/scanners/ai-code/types.js +37 -0
package/dist/scanners/ai-code/types.js.map +1 -0
package/dist/scanners/cache.d.ts.map +1 -1
package/dist/scanners/cache.js +4 -0
package/dist/scanners/cache.js.map +1 -1
package/dist/scanners/dast/index.d.ts +39 -0
package/dist/scanners/dast/index.d.ts.map +1 -0
package/dist/scanners/dast/index.js +259 -0
package/dist/scanners/dast/index.js.map +1 -0
package/dist/scanners/dast/nuclei.d.ts +26 -0
package/dist/scanners/dast/nuclei.d.ts.map +1 -0
package/dist/scanners/dast/nuclei.js +354 -0
package/dist/scanners/dast/nuclei.js.map +1 -0
package/dist/scanners/dast/types.d.ts +306 -0
package/dist/scanners/dast/types.d.ts.map +1 -0
package/dist/scanners/dast/types.js +52 -0
package/dist/scanners/dast/types.js.map +1 -0
package/dist/scanners/dast/zap.d.ts +26 -0
package/dist/scanners/dast/zap.d.ts.map +1 -0
package/dist/scanners/dast/zap.js +453 -0
package/dist/scanners/dast/zap.js.map +1 -0
package/dist/scanners/deploy/health-checker.d.ts +38 -0
package/dist/scanners/deploy/health-checker.d.ts.map +1 -0
package/dist/scanners/deploy/health-checker.js +272 -0
package/dist/scanners/deploy/health-checker.js.map +1 -0
package/dist/scanners/deploy/index.d.ts +44 -0
package/dist/scanners/deploy/index.d.ts.map +1 -0
package/dist/scanners/deploy/index.js +208 -0
package/dist/scanners/deploy/index.js.map +1 -0
package/dist/scanners/deploy/provider-detector.d.ts +25 -0
package/dist/scanners/deploy/provider-detector.d.ts.map +1 -0
package/dist/scanners/deploy/provider-detector.js +177 -0
package/dist/scanners/deploy/provider-detector.js.map +1 -0
package/dist/scanners/deploy/types.d.ts +406 -0
package/dist/scanners/deploy/types.d.ts.map +1 -0
package/dist/scanners/deploy/types.js +58 -0
package/dist/scanners/deploy/types.js.map +1 -0
package/dist/scanners/deploy/vercel-integration.d.ts +52 -0
package/dist/scanners/deploy/vercel-integration.d.ts.map +1 -0
package/dist/scanners/deploy/vercel-integration.js +280 -0
package/dist/scanners/deploy/vercel-integration.js.map +1 -0
package/dist/scanners/fp-feedback.d.ts +140 -0
package/dist/scanners/fp-feedback.d.ts.map +1 -0
package/dist/scanners/fp-feedback.js +292 -0
package/dist/scanners/fp-feedback.js.map +1 -0
package/dist/scanners/fp-filter.d.ts +94 -0
package/dist/scanners/fp-filter.d.ts.map +1 -0
package/dist/scanners/fp-filter.js +397 -0
package/dist/scanners/fp-filter.js.map +1 -0
package/dist/scanners/fp-tracker.d.ts +125 -0
package/dist/scanners/fp-tracker.d.ts.map +1 -0
package/dist/scanners/fp-tracker.js +330 -0
package/dist/scanners/fp-tracker.js.map +1 -0
package/dist/scanners/index.d.ts.map +1 -1
package/dist/scanners/index.js +56 -0
package/dist/scanners/index.js.map +1 -1
package/dist/scanners/index.test.js +6 -6
package/dist/scanners/index.test.js.map +1 -1
package/dist/scanners/logic/auth-flow-analyzer.d.ts +18 -0
package/dist/scanners/logic/auth-flow-analyzer.d.ts.map +1 -0
package/dist/scanners/logic/auth-flow-analyzer.js +384 -0
package/dist/scanners/logic/auth-flow-analyzer.js.map +1 -0
package/dist/scanners/logic/endpoint-analyzer.d.ts +29 -0
package/dist/scanners/logic/endpoint-analyzer.d.ts.map +1 -0
package/dist/scanners/logic/endpoint-analyzer.js +528 -0
package/dist/scanners/logic/endpoint-analyzer.js.map +1 -0
package/dist/scanners/logic/index.d.ts +41 -0
package/dist/scanners/logic/index.d.ts.map +1 -0
package/dist/scanners/logic/index.js +268 -0
package/dist/scanners/logic/index.js.map +1 -0
package/dist/scanners/logic/types.d.ts +254 -0
package/dist/scanners/logic/types.d.ts.map +1 -0
package/dist/scanners/logic/types.js +142 -0
package/dist/scanners/logic/types.js.map +1 -0
package/dist/scanners/runtime/app-launcher.d.ts +33 -0
package/dist/scanners/runtime/app-launcher.d.ts.map +1 -0
package/dist/scanners/runtime/app-launcher.js +419 -0
package/dist/scanners/runtime/app-launcher.js.map +1 -0
package/dist/scanners/runtime/golden-path-runner.d.ts +48 -0
package/dist/scanners/runtime/golden-path-runner.d.ts.map +1 -0
package/dist/scanners/runtime/golden-path-runner.js +373 -0
package/dist/scanners/runtime/golden-path-runner.js.map +1 -0
package/dist/scanners/runtime/index.d.ts +41 -0
package/dist/scanners/runtime/index.d.ts.map +1 -0
package/dist/scanners/runtime/index.js +164 -0
package/dist/scanners/runtime/index.js.map +1 -0
package/dist/scanners/runtime/playwright-executor.d.ts +50 -0
package/dist/scanners/runtime/playwright-executor.d.ts.map +1 -0
package/dist/scanners/runtime/playwright-executor.js +387 -0
package/dist/scanners/runtime/playwright-executor.js.map +1 -0
package/dist/scanners/runtime/types.d.ts +215 -0
package/dist/scanners/runtime/types.d.ts.map +1 -0
package/dist/scanners/runtime/types.js +40 -0
package/dist/scanners/runtime/types.js.map +1 -0
package/dist/scanners/scale/bottleneck-detector.d.ts +17 -0
package/dist/scanners/scale/bottleneck-detector.d.ts.map +1 -0
package/dist/scanners/scale/bottleneck-detector.js +250 -0
package/dist/scanners/scale/bottleneck-detector.js.map +1 -0
package/dist/scanners/scale/capacity-estimator.d.ts +17 -0
package/dist/scanners/scale/capacity-estimator.d.ts.map +1 -0
package/dist/scanners/scale/capacity-estimator.js +197 -0
package/dist/scanners/scale/capacity-estimator.js.map +1 -0
package/dist/scanners/scale/index.d.ts +37 -0
package/dist/scanners/scale/index.d.ts.map +1 -0
package/dist/scanners/scale/index.js +101 -0
package/dist/scanners/scale/index.js.map +1 -0
package/dist/scanners/scale/load-profiler.d.ts +48 -0
package/dist/scanners/scale/load-profiler.d.ts.map +1 -0
package/dist/scanners/scale/load-profiler.js +377 -0
package/dist/scanners/scale/load-profiler.js.map +1 -0
package/dist/scanners/scale/types.d.ts +529 -0
package/dist/scanners/scale/types.d.ts.map +1 -0
package/dist/scanners/scale/types.js +57 -0
package/dist/scanners/scale/types.js.map +1 -0
package/dist/scanners/secrets.d.ts.map +1 -1
package/dist/scanners/secrets.js +13 -2
package/dist/scanners/secrets.js.map +1 -1
package/dist/scanners/types.d.ts +1 -1
package/dist/scanners/types.d.ts.map +1 -1
package/dist/scanners/types.js +4 -0
package/dist/scanners/types.js.map +1 -1
package/package.json +8 -4
package/skills/vaspera-add-tests/SKILL.md +102 -0
package/skills/vaspera-ai-verify/SKILL.md +166 -0
package/skills/vaspera-audit/SKILL.md +67 -0
package/skills/vaspera-certify/SKILL.md +130 -0
package/skills/vaspera-deploy/SKILL.md +152 -0
package/skills/vaspera-fix-critical/SKILL.md +52 -0
package/skills/vaspera-fix-high/SKILL.md +81 -0
package/skills/vaspera-fix-medium/SKILL.md +56 -0
package/skills/vaspera-fix-rls/SKILL.md +85 -0
package/skills/vaspera-harden/SKILL.md +102 -0
package/skills/vaspera-help/SKILL.md +61 -0
package/skills/vaspera-load-test/SKILL.md +167 -0
package/skills/vaspera-verify/SKILL.md +70 -0
package/skills/vaspera-verify-e2e/SKILL.md +117 -0

package/CHANGELOG.md CHANGED Viewed

@@ -1,5 +1,73 @@
 # Changelog
+## 2.10.0
+### Minor Changes
+- [#37](https://github.com/RCOLKITT/hardening-mcp/pull/37) [`f9b8a59`](https://github.com/RCOLKITT/hardening-mcp/commit/f9b8a59f7af6470f90a16c96aa9c6e5e845e2476) Thanks [@RCOLKITT](https://github.com/RCOLKITT)! - ## Property-Based Testing
+  - Added `fast-check` dependency for scanner robustness testing
+  - 52 new property tests for `extractPathParams`, `inferResourceType`, `analyzeFilePath`
+  ## Expanded Eval Fixtures
+  - 9 new fixtures across 5 categories (22 total, up from 13)
+  - command-injection (CWE-78), ssrf (CWE-918), xxe (CWE-611), insecure-deserialization (CWE-502), rls-bypass (CWE-639)
+  ## Constitution for Autofix Governance
+  - Risk tolerance levels: conservative | moderate | aggressive
+  - Pattern-specific approvals with conditions
+  - Directory restrictions (neverAutofix, requireReview)
+  - Safety constraints (dryRunDefault, maxFilesPerRun, runTestsAfterFix)
+  - 33 new tests for constitution validation
+## [2.10.0] - 2026-05-26
+### Added
+#### Property-Based Testing
+- Added `fast-check` dependency for property-based tests
+- New `src/__tests__/property-test-helpers.ts` with shared generators
+- PBT for `extractPathParams()` - tests all 4 framework styles (Express, Next.js, Flask, Spring)
+- PBT for `inferResourceType()` - tests singularization invariants
+- PBT for `analyzeFilePath()` - tests file classification rules
+- 52 new property tests ensuring scanner robustness
+#### Expanded Eval Fixtures
+- 9 new test fixtures across 5 vulnerability categories (22 total, up from 13)
+- `command-injection` (2 fixtures): CWE-78 - exec/spawn with user input
+- `ssrf` (2 fixtures): CWE-918 - fetch/axios with user-controlled URLs
+- `xxe` (1 fixture): CWE-611 - XML parser without entity restrictions
+- `insecure-deserialization` (2 fixtures): CWE-502 - eval/yaml.load vulnerabilities
+- `rls-bypass` (2 fixtures): CWE-639 - missing ownership filters, service role bypass
+#### Constitution for Autofix Governance
+- Added `yaml` dependency for constitution file parsing
+- New `src/autofix/constitution.schema.ts` with Zod validation
+- New `src/autofix/constitution.ts` loader with evaluation logic
+- Constitution integration with PR generator
+- 33 new tests for constitution validation and enforcement
+- Example constitution file in `examples/constitution.yaml`
+**Constitution Features:**
+- Risk tolerance levels: `conservative` | `moderate` | `aggressive`
+- Pattern-specific approvals with conditions (path, lines changed, severity)
+- Directory restrictions: `neverAutofix`, `requireReview`
+- Safety constraints: `dryRunDefault`, `maxFilesPerRun`, `runTestsAfterFix`
+- PR rules: required labels, commit prefix, max PRs per run
+### Changed
+- Test count increased from 2772 to 2942 (170 new tests)
+- MCP tools increased from 68 to 78
+---
 ## 2.9.2
 ### Patch Changes

package/README.md CHANGED Viewed

@@ -4,9 +4,66 @@ Enterprise-grade security certification for codebases **and AI agent systems** w
 ![npm version](https://img.shields.io/npm/v/vaspera)
 ![License](https://img.shields.io/badge/License-MIT-green)
-![Tools](https://img.shields.io/badge/MCP_Tools-68-purple)
+![Tools](https://img.shields.io/badge/MCP_Tools-78-purple)
 ![AI Frameworks](https://img.shields.io/badge/AI_Frameworks-5-blue)
 ![Scanners](https://img.shields.io/badge/Scanners-12-orange)
+![Tests](https://img.shields.io/badge/Tests-2942-brightgreen)
+---
+## What's New in v2.10.0
+### Property-Based Testing
+Robust scanner testing with fast-check property-based tests:
+| Function | Properties Tested |
+|----------|-------------------|
+| `extractPathParams()` | All 4 framework styles (Express `:id`, Next.js `[id]`, Flask `<id>`, Spring `{id}`) |
+| `inferResourceType()` | Singularization invariants (`-ies` → `-y`, `-ses` → `-s`) |
+| `analyzeFilePath()` | Test/vendor/generated file classification |
+### Expanded Eval Fixtures
+22 test fixtures across 11 vulnerability categories (up from 13):
+| Category | CWE | Fixtures |
+|----------|-----|----------|
+| `command-injection` | CWE-78 | 2 |
+| `ssrf` | CWE-918 | 2 |
+| `xxe` | CWE-611 | 1 |
+| `insecure-deserialization` | CWE-502 | 2 |
+| `rls-bypass` | CWE-639 | 2 |
+### Constitution for Autofix Governance
+Policy-based governance for autonomous autofix operations:
+```yaml
+# .vaspera/constitution.yaml
+version: "1.0"
+riskTolerance: "conservative"  # conservative | moderate | aggressive
+patterns:
+  - patternId: "qual-console-log"
+    autoApprove: true
+  - patternId: "sec-sql-injection"
+    autoApprove: false
+    requiredReviewer: "security-team"
+directories:
+  neverAutofix: ["node_modules", "vendor"]
+  requireReview: ["src/auth/", "src/crypto/"]
+safety:
+  dryRunDefault: true
+  maxFilesPerRun: 20
+  runTestsAfterFix: true
+  revertOnTestFailure: true
+```
+**Constitution Features:**
+- **Risk Tolerance** — Control which patterns auto-apply based on risk level
+- **Pattern Approvals** — Whitelist/blacklist specific fix patterns with conditions
+- **Path Restrictions** — Block autofix in sensitive directories (auth, crypto)
+- **Safety Constraints** — Enforce dry-run, test requirements, backup branches
 ---

package/dist/__tests__/autofix/branch-manager.test.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export {};
2	+ //# sourceMappingURL=branch-manager.test.d.ts.map

package/dist/__tests__/autofix/branch-manager.test.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"branch-manager.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/autofix/branch-manager.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/autofix/branch-manager.test.js ADDED Viewed

@@ -0,0 +1,60 @@
+import { describe, it, expect } from "vitest";
+import { parseGitHubRemote, generateBranchName, } from "../../autofix/branch-manager.js";
+describe("branch-manager", () => {
+    describe("parseGitHubRemote", () => {
+        it("parses SSH format URLs", () => {
+            const result = parseGitHubRemote("git@github.com:owner/repo.git");
+            expect(result).toEqual({ owner: "owner", repo: "repo" });
+        });
+        it("parses SSH format URLs without .git suffix", () => {
+            const result = parseGitHubRemote("git@github.com:owner/repo");
+            expect(result).toEqual({ owner: "owner", repo: "repo" });
+        });
+        it("parses HTTPS format URLs", () => {
+            const result = parseGitHubRemote("https://github.com/owner/repo.git");
+            expect(result).toEqual({ owner: "owner", repo: "repo" });
+        });
+        it("parses HTTPS format URLs without .git suffix", () => {
+            const result = parseGitHubRemote("https://github.com/owner/repo");
+            expect(result).toEqual({ owner: "owner", repo: "repo" });
+        });
+        it("returns undefined for non-GitHub URLs", () => {
+            expect(parseGitHubRemote("https://gitlab.com/owner/repo.git")).toBeUndefined();
+            expect(parseGitHubRemote("git@gitlab.com:owner/repo.git")).toBeUndefined();
+        });
+        it("handles repos with dashes and underscores", () => {
+            const result = parseGitHubRemote("git@github.com:my-org/my_repo-name.git");
+            expect(result).toEqual({ owner: "my-org", repo: "my_repo-name" });
+        });
+    });
+    describe("generateBranchName", () => {
+        it("generates branch name with prefix and identifier", () => {
+            const result = generateBranchName("vaspera/autofix", "critical");
+            expect(result).toMatch(/^vaspera\/autofix\/critical-[a-z0-9]+$/);
+        });
+        it("sanitizes special characters", () => {
+            const result = generateBranchName("fix", "SQL Injection!!!");
+            // Special characters become dashes, includes timestamp suffix
+            expect(result).toMatch(/^fix\/sql-injection/);
+            expect(result).toContain("sql-injection");
+        });
+        it("truncates long identifiers", () => {
+            const longId = "a".repeat(50);
+            const result = generateBranchName("fix", longId);
+            // Identifier should be truncated to 30 chars + timestamp
+            const parts = result.split("/");
+            const afterPrefix = parts[1];
+            const identifierPart = afterPrefix.split("-").slice(0, -1).join("-");
+            expect(identifierPart.length).toBeLessThanOrEqual(30);
+        });
+        it("converts to lowercase", () => {
+            const result = generateBranchName("FIX", "XSS-Attack");
+            expect(result).toMatch(/^FIX\/xss-attack-[a-z0-9]+$/);
+        });
+        it("removes consecutive dashes", () => {
+            const result = generateBranchName("fix", "foo---bar");
+            expect(result).toMatch(/^fix\/foo-bar-[a-z0-9]+$/);
+        });
+    });
+});
+//# sourceMappingURL=branch-manager.test.js.map

package/dist/__tests__/autofix/branch-manager.test.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"branch-manager.test.js","sourceRoot":"","sources":["../../../src/__tests__/autofix/branch-manager.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAkB,MAAM,QAAQ,CAAC;AAC9D,OAAO,EACL,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,iCAAiC,CAAC;AAEzC,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;IAC9B,QAAQ,CAAC,mBAAmB,EAAE,GAAG,EAAE;QACjC,EAAE,CAAC,wBAAwB,EAAE,GAAG,EAAE;YAChC,MAAM,MAAM,GAAG,iBAAiB,CAAC,+BAA+B,CAAC,CAAC;YAClE,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;QAC3D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4CAA4C,EAAE,GAAG,EAAE;YACpD,MAAM,MAAM,GAAG,iBAAiB,CAAC,2BAA2B,CAAC,CAAC;YAC9D,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;QAC3D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,0BAA0B,EAAE,GAAG,EAAE;YAClC,MAAM,MAAM,GAAG,iBAAiB,CAAC,mCAAmC,CAAC,CAAC;YACtE,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;QAC3D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8CAA8C,EAAE,GAAG,EAAE;YACtD,MAAM,MAAM,GAAG,iBAAiB,CAAC,+BAA+B,CAAC,CAAC;YAClE,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC,CAAC;QAC3D,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uCAAuC,EAAE,GAAG,EAAE;YAC/C,MAAM,CAAC,iBAAiB,CAAC,mCAAmC,CAAC,CAAC,CAAC,aAAa,EAAE,CAAC;YAC/E,MAAM,CAAC,iBAAiB,CAAC,+BAA+B,CAAC,CAAC,CAAC,aAAa,EAAE,CAAC;QAC7E,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2CAA2C,EAAE,GAAG,EAAE;YACnD,MAAM,MAAM,GAAG,iBAAiB,CAAC,wCAAwC,CAAC,CAAC;YAC3E,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI,EAAE,cAAc,EAAE,CAAC,CAAC;QACpE,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,oBAAoB,EAAE,GAAG,EAAE;QAClC,EAAE,CAAC,kDAAkD,EAAE,GAAG,EAAE;YAC1D,MAAM,MAAM,GAAG,kBAAkB,CAAC,iBAAiB,EAAE,UAAU,CAAC,CAAC;YACjE,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,wCAAwC,CAAC,CAAC;QACnE,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8BAA8B,EAAE,GAAG,EAAE;YACtC,MAAM,MAAM,GAAG,kBAAkB,CAAC,KAAK,EAAE,kBAAkB,CAAC,CAAC;YAC7D,8DAA8D;YAC9D,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,qBAAqB,CAAC,CAAC;YAC9C,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,eAAe,CAAC,CAAC;QAC5C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4BAA4B,EAAE,GAAG,EAAE;YACpC,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YAC9B,MAAM,MAAM,GAAG,kBAAkB,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;YACjD,yDAAyD;YACzD,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAChC,MAAM,WAAW,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YAC7B,MAAM,cAAc,GAAG,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACrE,MAAM,CAAC,cAAc,CAAC,MAAM,CAAC,CAAC,mBAAmB,CAAC,EAAE,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,uBAAuB,EAAE,GAAG,EAAE;YAC/B,MAAM,MAAM,GAAG,kBAAkB,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;YACvD,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,6BAA6B,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4BAA4B,EAAE,GAAG,EAAE;YACpC,MAAM,MAAM,GAAG,kBAAkB,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC;YACtD,MAAM,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,0BAA0B,CAAC,CAAC;QACrD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/autofix/commit-generator.test.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export {};
2	+ //# sourceMappingURL=commit-generator.test.d.ts.map

package/dist/__tests__/autofix/commit-generator.test.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"commit-generator.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/autofix/commit-generator.test.ts"],"names":[],"mappings":""}

package/dist/__tests__/autofix/commit-generator.test.js ADDED Viewed

@@ -0,0 +1,147 @@
+import { describe, it, expect } from "vitest";
+import { generateCommitMessage, generateCommitBody, generatePRTitle, generatePRBody, groupFixesBySeverity, groupFixesByFile, groupFixesByPattern, } from "../../autofix/commit-generator.js";
+describe("commit-generator", () => {
+    const mockFixResults = [
+        {
+            findingId: "sec-001",
+            file: "src/auth.ts",
+            applied: true,
+            diff: { before: "old", after: "new", lineNumber: 10 },
+        },
+        {
+            findingId: "sec-002",
+            file: "src/api.ts",
+            applied: true,
+            diff: { before: "old2", after: "new2", lineNumber: 25 },
+        },
+        {
+            findingId: "perf-001",
+            file: "src/auth.ts",
+            applied: true,
+            diff: { before: "old3", after: "new3", lineNumber: 50 },
+        },
+    ];
+    describe("generateCommitMessage", () => {
+        it("generates message for single fix", () => {
+            const result = generateCommitMessage([mockFixResults[0]], "high");
+            expect(result).toContain("fix");
+            expect(result).toContain("sec-001");
+        });
+        it("generates message for multiple fixes", () => {
+            const result = generateCommitMessage(mockFixResults, "high");
+            expect(result).toContain("3 automated fixes");
+        });
+        it("includes severity when requested", () => {
+            const result = generateCommitMessage(mockFixResults, "critical", { includeSeverity: true });
+            expect(result).toContain("[critical]");
+        });
+        it("omits severity when requested", () => {
+            const result = generateCommitMessage(mockFixResults, "critical", { includeSeverity: false });
+            expect(result).not.toContain("[critical]");
+        });
+        it("returns fallback for empty fixes", () => {
+            const result = generateCommitMessage([], undefined);
+            expect(result).toContain("no changes applied");
+        });
+        it("truncates long messages", () => {
+            const result = generateCommitMessage(mockFixResults, "critical", { maxLength: 50 });
+            expect(result.length).toBeLessThanOrEqual(50);
+        });
+    });
+    describe("generateCommitBody", () => {
+        it("includes file grouping", () => {
+            const result = generateCommitBody(mockFixResults, "high");
+            expect(result).toContain("src/auth.ts");
+            expect(result).toContain("src/api.ts");
+        });
+        it("includes severity", () => {
+            const result = generateCommitBody(mockFixResults, "critical");
+            expect(result).toContain("CRITICAL");
+        });
+        it("returns empty for no fixes", () => {
+            const result = generateCommitBody([], undefined);
+            expect(result).toBe("");
+        });
+        it("includes Vaspera attribution", () => {
+            const result = generateCommitBody(mockFixResults, "high");
+            expect(result).toContain("Vaspera Hardening");
+        });
+    });
+    describe("generatePRTitle", () => {
+        it("generates title with severity", () => {
+            const result = generatePRTitle(mockFixResults, "high");
+            expect(result).toContain("high");
+            expect(result).toContain("3");
+        });
+        it("handles singular fix correctly", () => {
+            const result = generatePRTitle([mockFixResults[0]], "critical");
+            expect(result).toContain("1 critical-severity autofix");
+            expect(result).not.toContain("autofixes");
+        });
+        it("uses template when provided", () => {
+            const result = generatePRTitle(mockFixResults, "high", "Security: {{count}} fixes for {{severity}} issues");
+            expect(result).toBe("Security: 3 fixes for high issues");
+        });
+    });
+    describe("generatePRBody", () => {
+        it("includes summary section", () => {
+            const result = generatePRBody(mockFixResults, "high");
+            expect(result).toContain("## Summary");
+            expect(result).toContain("automated security fixes");
+        });
+        it("includes review checklist", () => {
+            const result = generatePRBody(mockFixResults, "high");
+            expect(result).toContain("## Review Checklist");
+            expect(result).toContain("semantically correct");
+        });
+        it("includes certification ID when provided", () => {
+            const result = generatePRBody(mockFixResults, "high", { certificationId: "cert-123" });
+            expect(result).toContain("cert-123");
+        });
+        it("includes before/after when requested", () => {
+            const result = generatePRBody(mockFixResults, "high", { includeBeforeAfter: true });
+            expect(result).toContain("Before:");
+            expect(result).toContain("After:");
+        });
+    });
+    describe("groupFixesBySeverity", () => {
+        it("groups fixes by their severity", () => {
+            const severities = new Map([
+                ["sec-001", "high"],
+                ["sec-002", "high"],
+                ["perf-001", "medium"],
+            ]);
+            const result = groupFixesBySeverity(mockFixResults, severities);
+            expect(result.get("high")).toHaveLength(2);
+            expect(result.get("medium")).toHaveLength(1);
+        });
+        it("defaults to medium for unknown findings", () => {
+            const severities = new Map();
+            const result = groupFixesBySeverity(mockFixResults, severities);
+            expect(result.get("medium")).toHaveLength(3);
+        });
+    });
+    describe("groupFixesByFile", () => {
+        it("groups fixes by file path", () => {
+            const result = groupFixesByFile(mockFixResults);
+            expect(result.get("src/auth.ts")).toHaveLength(2);
+            expect(result.get("src/api.ts")).toHaveLength(1);
+        });
+    });
+    describe("groupFixesByPattern", () => {
+        it("groups fixes by pattern ID", () => {
+            const result = groupFixesByPattern(mockFixResults);
+            expect(result.has("sec")).toBeTruthy();
+            expect(result.has("perf")).toBeTruthy();
+        });
+        it("extracts pattern from finding ID", () => {
+            const fixes = [
+                { findingId: "sec-hardcoded-secret-001", file: "a.ts", applied: true },
+                { findingId: "sec-hardcoded-secret-002", file: "b.ts", applied: true },
+            ];
+            const result = groupFixesByPattern(fixes);
+            expect(result.get("sec-hardcoded-secret")).toHaveLength(2);
+        });
+    });
+});
+//# sourceMappingURL=commit-generator.test.js.map

package/dist/__tests__/autofix/commit-generator.test.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"commit-generator.test.js","sourceRoot":"","sources":["../../../src/__tests__/autofix/commit-generator.test.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EACL,qBAAqB,EACrB,kBAAkB,EAClB,eAAe,EACf,cAAc,EACd,oBAAoB,EACpB,gBAAgB,EAChB,mBAAmB,GACpB,MAAM,mCAAmC,CAAC;AAI3C,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;IAChC,MAAM,cAAc,GAAgB;QAClC;YACE,SAAS,EAAE,SAAS;YACpB,IAAI,EAAE,aAAa;YACnB,OAAO,EAAE,IAAI;YACb,IAAI,EAAE,EAAE,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,UAAU,EAAE,EAAE,EAAE;SACtD;QACD;YACE,SAAS,EAAE,SAAS;YACpB,IAAI,EAAE,YAAY;YAClB,OAAO,EAAE,IAAI;YACb,IAAI,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,EAAE,EAAE;SACxD;QACD;YACE,SAAS,EAAE,UAAU;YACrB,IAAI,EAAE,aAAa;YACnB,OAAO,EAAE,IAAI;YACb,IAAI,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,UAAU,EAAE,EAAE,EAAE;SACxD;KACF,CAAC;IAEF,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE;QACrC,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,MAAM,GAAG,qBAAqB,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;YAClE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;YAChC,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;QACtC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,MAAM,MAAM,GAAG,qBAAqB,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;YAC7D,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,mBAAmB,CAAC,CAAC;QAChD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,MAAM,GAAG,qBAAqB,CAAC,cAAc,EAAE,UAAU,EAAE,EAAE,eAAe,EAAE,IAAI,EAAE,CAAC,CAAC;YAC5F,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;QACzC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,+BAA+B,EAAE,GAAG,EAAE;YACvC,MAAM,MAAM,GAAG,qBAAqB,CAAC,cAAc,EAAE,UAAU,EAAE,EAAE,eAAe,EAAE,KAAK,EAAE,CAAC,CAAC;YAC7F,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;QAC7C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,MAAM,GAAG,qBAAqB,CAAC,EAAE,EAAE,SAAS,CAAC,CAAC;YACpD,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,oBAAoB,CAAC,CAAC;QACjD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yBAAyB,EAAE,GAAG,EAAE;YACjC,MAAM,MAAM,GAAG,qBAAqB,CAAC,cAAc,EAAE,UAAU,EAAE,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC,CAAC;YACpF,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,mBAAmB,CAAC,EAAE,CAAC,CAAC;QAChD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,oBAAoB,EAAE,GAAG,EAAE;QAClC,EAAE,CAAC,wBAAwB,EAAE,GAAG,EAAE;YAChC,MAAM,MAAM,GAAG,kBAAkB,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;YAC1D,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;YACxC,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;QACzC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mBAAmB,EAAE,GAAG,EAAE;YAC3B,MAAM,MAAM,GAAG,kBAAkB,CAAC,cAAc,EAAE,UAAU,CAAC,CAAC;YAC9D,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,4BAA4B,EAAE,GAAG,EAAE;YACpC,MAAM,MAAM,GAAG,kBAAkB,CAAC,EAAE,EAAE,SAAS,CAAC,CAAC;YACjD,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC1B,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,8BAA8B,EAAE,GAAG,EAAE;YACtC,MAAM,MAAM,GAAG,kBAAkB,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;YAC1D,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,mBAAmB,CAAC,CAAC;QAChD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,iBAAiB,EAAE,GAAG,EAAE;QAC/B,EAAE,CAAC,+BAA+B,EAAE,GAAG,EAAE;YACvC,MAAM,MAAM,GAAG,eAAe,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;YACvD,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YACjC,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC;QAChC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;YACxC,MAAM,MAAM,GAAG,eAAe,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,EAAE,UAAU,CAAC,CAAC;YAChE,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,6BAA6B,CAAC,CAAC;YACxD,MAAM,CAAC,MAAM,CAAC,CAAC,GAAG,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;QAC5C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6BAA6B,EAAE,GAAG,EAAE;YACrC,MAAM,MAAM,GAAG,eAAe,CAAC,cAAc,EAAE,MAAM,EAAE,mDAAmD,CAAC,CAAC;YAC5G,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,mCAAmC,CAAC,CAAC;QAC3D,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,EAAE,CAAC,0BAA0B,EAAE,GAAG,EAAE;YAClC,MAAM,MAAM,GAAG,cAAc,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;YACtD,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;YACvC,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,0BAA0B,CAAC,CAAC;QACvD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,2BAA2B,EAAE,GAAG,EAAE;YACnC,MAAM,MAAM,GAAG,cAAc,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC;YACtD,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,qBAAqB,CAAC,CAAC;YAChD,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,sBAAsB,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yCAAyC,EAAE,GAAG,EAAE;YACjD,MAAM,MAAM,GAAG,cAAc,CAAC,cAAc,EAAE,MAAM,EAAE,EAAE,eAAe,EAAE,UAAU,EAAE,CAAC,CAAC;YACvF,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QACvC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sCAAsC,EAAE,GAAG,EAAE;YAC9C,MAAM,MAAM,GAAG,cAAc,CAAC,cAAc,EAAE,MAAM,EAAE,EAAE,kBAAkB,EAAE,IAAI,EAAE,CAAC,CAAC;YACpF,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;YACpC,MAAM,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;QACrC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,sBAAsB,EAAE,GAAG,EAAE;QACpC,EAAE,CAAC,gCAAgC,EAAE,GAAG,EAAE;YACxC,MAAM,UAAU,GAAG,IAAI,GAAG,CAAmB;gBAC3C,CAAC,SAAS,EAAE,MAAM,CAAC;gBACnB,CAAC,SAAS,EAAE,MAAM,CAAC;gBACnB,CAAC,UAAU,EAAE,QAAQ,CAAC;aACvB,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,oBAAoB,CAAC,cAAc,EAAE,UAAU,CAAC,CAAC;YAEhE,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;YAC3C,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yCAAyC,EAAE,GAAG,EAAE;YACjD,MAAM,UAAU,GAAG,IAAI,GAAG,EAAoB,CAAC;YAC/C,MAAM,MAAM,GAAG,oBAAoB,CAAC,cAAc,EAAE,UAAU,CAAC,CAAC;YAEhE,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QAC/C,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,EAAE,CAAC,2BAA2B,EAAE,GAAG,EAAE;YACnC,MAAM,MAAM,GAAG,gBAAgB,CAAC,cAAc,CAAC,CAAC;YAEhD,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;YAClD,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,qBAAqB,EAAE,GAAG,EAAE;QACnC,EAAE,CAAC,4BAA4B,EAAE,GAAG,EAAE;YACpC,MAAM,MAAM,GAAG,mBAAmB,CAAC,cAAc,CAAC,CAAC;YAEnD,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC;YACvC,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC;QAC1C,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,kCAAkC,EAAE,GAAG,EAAE;YAC1C,MAAM,KAAK,GAAgB;gBACzB,EAAE,SAAS,EAAE,0BAA0B,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE;gBACtE,EAAE,SAAS,EAAE,0BAA0B,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE;aACvE,CAAC;YAEF,MAAM,MAAM,GAAG,mBAAmB,CAAC,KAAK,CAAC,CAAC;YAE1C,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,sBAAsB,CAAC,CAAC,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC;QAC7D,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/dist/__tests__/autofix/constitution.test.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * Constitution Tests
+ *
+ * Tests for the constitution schema, loader, and evaluation logic.
+ *
+ * @module __tests__/autofix/constitution
+ */
+export {};
+//# sourceMappingURL=constitution.test.d.ts.map

package/dist/__tests__/autofix/constitution.test.d.ts.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"constitution.test.d.ts","sourceRoot":"","sources":["../../../src/__tests__/autofix/constitution.test.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG"}