vaspera 2.9.2 → 2.10.1

package/dist/scanners/deploy/vercel-integration.d.ts

@@ -0,0 +1,52 @@
+/**
+ * Vercel Integration
+ *
+ * Integration with Vercel for deployment verification.
+ * Uses the Vercel API for deployment status, promotion, and rollback.
+ *
+ * @module scanners/deploy/vercel-integration
+ */
+import type { DeploymentInfo, CanaryAnalysis } from "./types.js";
+/**
+ * Check if Vercel integration is available
+ */
+export declare function isVercelAvailable(): boolean;
+/**
+ * Get latest deployment for a project
+ */
+export declare function getLatestDeployment(projectId: string, options?: {
+    target?: string;
+}): Promise<DeploymentInfo | null>;
+/**
+ * Get deployment by ID
+ */
+export declare function getDeployment(deploymentId: string): Promise<DeploymentInfo | null>;
+/**
+ * List recent deployments
+ */
+export declare function listDeployments(projectId: string, options?: {
+    limit?: number;
+    target?: string;
+}): Promise<DeploymentInfo[]>;
+/**
+ * Promote a preview deployment to production
+ */
+export declare function promoteToProduction(deploymentId: string, projectId: string): Promise<{
+    success: boolean;
+    error?: string;
+}>;
+/**
+ * Rollback to a previous deployment
+ */
+export declare function rollback(projectId: string, deploymentId: string): Promise<{
+    success: boolean;
+    error?: string;
+}>;
+/**
+ * Analyze canary deployment (simulated - would use Vercel Edge Config in production)
+ */
+export declare function analyzeCanary(deploymentUrl: string, options?: {
+    duration?: number;
+    checkInterval?: number;
+}): Promise<CanaryAnalysis>;
+//# sourceMappingURL=vercel-integration.d.ts.map

package/dist/scanners/deploy/vercel-integration.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vercel-integration.d.ts","sourceRoot":"","sources":["../../../src/scanners/deploy/vercel-integration.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAGH,OAAO,KAAK,EACV,cAAc,EAGd,cAAc,EACf,MAAM,YAAY,CAAC;AAWpB;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,OAAO,CAE3C;AAkED;;GAEG;AACH,wBAAsB,mBAAmB,CACvC,SAAS,EAAE,MAAM,EACjB,OAAO,GAAE;IAAE,MAAM,CAAC,EAAE,MAAM,CAAA;CAAO,GAChC,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC,CA8ChC;AAED;;GAEG;AACH,wBAAsB,aAAa,CAAC,YAAY,EAAE,MAAM,GAAG,OAAO,CAAC,cAAc,GAAG,IAAI,CAAC,CA8BxF;AAED;;GAEG;AACH,wBAAsB,eAAe,CACnC,SAAS,EAAE,MAAM,EACjB,OAAO,GAAE;IAAE,KAAK,CAAC,EAAE,MAAM,CAAC;IAAC,MAAM,CAAC,EAAE,MAAM,CAAA;CAAO,GAChD,OAAO,CAAC,cAAc,EAAE,CAAC,CAkC3B;AAED;;GAEG;AACH,wBAAsB,mBAAmB,CACvC,YAAY,EAAE,MAAM,EACpB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAuB/C;AAED;;GAEG;AACH,wBAAsB,QAAQ,CAC5B,SAAS,EAAE,MAAM,EACjB,YAAY,EAAE,MAAM,GACnB,OAAO,CAAC;IAAE,OAAO,EAAE,OAAO,CAAC;IAAC,KAAK,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAG/C;AAED;;GAEG;AACH,wBAAsB,aAAa,CACjC,aAAa,EAAE,MAAM,EACrB,OAAO,GAAE;IACP,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,aAAa,CAAC,EAAE,MAAM,CAAC;CACnB,GACL,OAAO,CAAC,cAAc,CAAC,CA2DzB"}

package/dist/scanners/deploy/vercel-integration.js

@@ -0,0 +1,280 @@
+/**
+ * Vercel Integration
+ *
+ * Integration with Vercel for deployment verification.
+ * Uses the Vercel API for deployment status, promotion, and rollback.
+ *
+ * @module scanners/deploy/vercel-integration
+ */
+import { logger } from "../../logger.js";
+const VERCEL_API_BASE = "https://api.vercel.com";
+/**
+ * Get Vercel API token from environment
+ */
+function getVercelToken() {
+    return process.env.VERCEL_TOKEN || process.env.VERCEL_ACCESS_TOKEN;
+}
+/**
+ * Check if Vercel integration is available
+ */
+export function isVercelAvailable() {
+    return !!getVercelToken();
+}
+/**
+ * Make authenticated request to Vercel API
+ */
+async function vercelFetch(endpoint, options = {}) {
+    const token = getVercelToken();
+    if (!token) {
+        throw new Error("VERCEL_TOKEN not configured");
+    }
+    const url = `${VERCEL_API_BASE}${endpoint}`;
+    const response = await fetch(url, {
+        ...options,
+        headers: {
+            Authorization: `Bearer ${token}`,
+            "Content-Type": "application/json",
+            ...options.headers,
+        },
+    });
+    return response;
+}
+/**
+ * Map Vercel status to our status
+ */
+function mapVercelStatus(state) {
+    switch (state) {
+        case "QUEUED":
+        case "INITIALIZING":
+            return "pending";
+        case "BUILDING":
+            return "building";
+        case "DEPLOYING":
+            return "deploying";
+        case "READY":
+            return "ready";
+        case "ERROR":
+            return "failed";
+        case "CANCELED":
+            return "canceled";
+        default:
+            return "pending";
+    }
+}
+/**
+ * Map Vercel target to environment
+ */
+function mapVercelTarget(target) {
+    switch (target) {
+        case "production":
+            return "production";
+        case "preview":
+            return "preview";
+        case "development":
+            return "development";
+        default:
+            return "preview";
+    }
+}
+/**
+ * Get latest deployment for a project
+ */
+export async function getLatestDeployment(projectId, options = {}) {
+    try {
+        const params = new URLSearchParams({
+            projectId,
+            limit: "1",
+            ...(options.target && { target: options.target }),
+        });
+        const response = await vercelFetch(`/v6/deployments?${params}`);
+        if (!response.ok) {
+            const error = await response.json();
+            logger.error("deploy.vercel_api_error", {
+                status: response.status,
+                error: error.error?.message,
+            });
+            return null;
+        }
+        const data = await response.json();
+        const deployment = data.deployments?.[0];
+        if (!deployment)
+            return null;
+        return {
+            id: deployment.uid,
+            provider: "vercel",
+            environment: mapVercelTarget(deployment.target),
+            status: mapVercelStatus(deployment.state),
+            url: `https://${deployment.url}`,
+            createdAt: new Date(deployment.created).toISOString(),
+            readyAt: deployment.ready ? new Date(deployment.ready).toISOString() : undefined,
+            meta: {
+                commit: deployment.meta?.githubCommitSha,
+                branch: deployment.meta?.githubCommitRef,
+                buildTime: deployment.buildingAt && deployment.ready
+                    ? deployment.ready - deployment.buildingAt
+                    : undefined,
+            },
+        };
+    }
+    catch (error) {
+        logger.error("deploy.vercel_get_deployment_error", {
+            error: error.message,
+        });
+        return null;
+    }
+}
+/**
+ * Get deployment by ID
+ */
+export async function getDeployment(deploymentId) {
+    try {
+        const response = await vercelFetch(`/v13/deployments/${deploymentId}`);
+        if (!response.ok) {
+            return null;
+        }
+        const deployment = await response.json();
+        return {
+            id: deployment.id,
+            provider: "vercel",
+            environment: mapVercelTarget(deployment.target),
+            status: mapVercelStatus(deployment.readyState),
+            url: `https://${deployment.url}`,
+            createdAt: new Date(deployment.createdAt).toISOString(),
+            readyAt: deployment.ready ? new Date(deployment.ready).toISOString() : undefined,
+            meta: {
+                commit: deployment.meta?.githubCommitSha,
+                branch: deployment.meta?.githubCommitRef,
+            },
+        };
+    }
+    catch (error) {
+        logger.error("deploy.vercel_get_deployment_error", {
+            deploymentId,
+            error: error.message,
+        });
+        return null;
+    }
+}
+/**
+ * List recent deployments
+ */
+export async function listDeployments(projectId, options = {}) {
+    try {
+        const params = new URLSearchParams({
+            projectId,
+            limit: String(options.limit || 10),
+            ...(options.target && { target: options.target }),
+        });
+        const response = await vercelFetch(`/v6/deployments?${params}`);
+        if (!response.ok) {
+            return [];
+        }
+        const data = await response.json();
+        return (data.deployments || []).map((deployment) => ({
+            id: deployment.uid,
+            provider: "vercel",
+            environment: mapVercelTarget(deployment.target),
+            status: mapVercelStatus(deployment.state),
+            url: `https://${deployment.url}`,
+            createdAt: new Date(deployment.created).toISOString(),
+            meta: {
+                commit: deployment.meta?.githubCommitSha,
+                branch: deployment.meta?.githubCommitRef,
+            },
+        }));
+    }
+    catch (error) {
+        logger.error("deploy.vercel_list_deployments_error", {
+            error: error.message,
+        });
+        return [];
+    }
+}
+/**
+ * Promote a preview deployment to production
+ */
+export async function promoteToProduction(deploymentId, projectId) {
+    try {
+        const response = await vercelFetch(`/v10/projects/${projectId}/promote/${deploymentId}`, {
+            method: "POST",
+        });
+        if (!response.ok) {
+            const error = await response.json();
+            return {
+                success: false,
+                error: error.error?.message || "Promotion failed",
+            };
+        }
+        logger.info("deploy.vercel_promoted", { deploymentId, projectId });
+        return { success: true };
+    }
+    catch (error) {
+        return {
+            success: false,
+            error: error.message,
+        };
+    }
+}
+/**
+ * Rollback to a previous deployment
+ */
+export async function rollback(projectId, deploymentId) {
+    // Vercel rollback is essentially promoting an older deployment
+    return promoteToProduction(deploymentId, projectId);
+}
+/**
+ * Analyze canary deployment (simulated - would use Vercel Edge Config in production)
+ */
+export async function analyzeCanary(deploymentUrl, options = {}) {
+    const { duration = 60000, checkInterval = 5000 } = options;
+    const startTime = Date.now();
+    const checks = [];
+    logger.info("deploy.canary_analysis_started", { deploymentUrl, duration });
+    // Run health checks for the duration
+    while (Date.now() - startTime < duration) {
+        try {
+            const checkStart = Date.now();
+            const response = await fetch(deploymentUrl, {
+                signal: AbortSignal.timeout(5000),
+            });
+            const latency = Date.now() - checkStart;
+            checks.push({
+                success: response.ok,
+                latency,
+            });
+        }
+        catch {
+            checks.push({ success: false, latency: 5000 });
+        }
+        await new Promise((resolve) => setTimeout(resolve, checkInterval));
+    }
+    // Calculate metrics
+    const successfulChecks = checks.filter((c) => c.success);
+    const errorRate = 1 - (successfulChecks.length / checks.length);
+    const latencies = successfulChecks.map((c) => c.latency).sort((a, b) => a - b);
+    const p95Index = Math.floor(latencies.length * 0.95);
+    const p95Latency = latencies[p95Index] || 0;
+    const thresholdsPassed = errorRate < 0.01 && p95Latency < 500;
+    const analysis = {
+        phase: thresholdsPassed ? "passed" : "failed",
+        trafficPercent: 10, // Simulated
+        duration: Date.now() - startTime,
+        metrics: {
+            errorRate,
+            p95Latency,
+            requestCount: checks.length,
+            healthChecksPassed: successfulChecks.length,
+            healthChecksFailed: checks.length - successfulChecks.length,
+        },
+        thresholdsPassed,
+        recommendation: thresholdsPassed ? "promote" : "rollback",
+    };
+    logger.info("deploy.canary_analysis_completed", {
+        phase: analysis.phase,
+        errorRate,
+        p95Latency,
+        recommendation: analysis.recommendation,
+    });
+    return analysis;
+}
+//# sourceMappingURL=vercel-integration.js.map

package/dist/scanners/deploy/vercel-integration.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"vercel-integration.js","sourceRoot":"","sources":["../../../src/scanners/deploy/vercel-integration.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,MAAM,EAAE,MAAM,iBAAiB,CAAC;AAQzC,MAAM,eAAe,GAAG,wBAAwB,CAAC;AAEjD;;GAEG;AACH,SAAS,cAAc;IACrB,OAAO,OAAO,CAAC,GAAG,CAAC,YAAY,IAAI,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC;AACrE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB;IAC/B,OAAO,CAAC,CAAC,cAAc,EAAE,CAAC;AAC5B,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,WAAW,CACxB,QAAgB,EAChB,UAAuB,EAAE;IAEzB,MAAM,KAAK,GAAG,cAAc,EAAE,CAAC;IAC/B,IAAI,CAAC,KAAK,EAAE,CAAC;QACX,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;IACjD,CAAC;IAED,MAAM,GAAG,GAAG,GAAG,eAAe,GAAG,QAAQ,EAAE,CAAC;IAC5C,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,GAAG,OAAO;QACV,OAAO,EAAE;YACP,aAAa,EAAE,UAAU,KAAK,EAAE;YAChC,cAAc,EAAE,kBAAkB;YAClC,GAAG,OAAO,CAAC,OAAO;SACnB;KACF,CAAC,CAAC;IAEH,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,KAAa;IACpC,QAAQ,KAAK,EAAE,CAAC;QACd,KAAK,QAAQ,CAAC;QACd,KAAK,cAAc;YACjB,OAAO,SAAS,CAAC;QACnB,KAAK,UAAU;YACb,OAAO,UAAU,CAAC;QACpB,KAAK,WAAW;YACd,OAAO,WAAW,CAAC;QACrB,KAAK,OAAO;YACV,OAAO,OAAO,CAAC;QACjB,KAAK,OAAO;YACV,OAAO,QAAQ,CAAC;QAClB,KAAK,UAAU;YACb,OAAO,UAAU,CAAC;QACpB;YACE,OAAO,SAAS,CAAC;IACrB,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,eAAe,CAAC,MAAc;IACrC,QAAQ,MAAM,EAAE,CAAC;QACf,KAAK,YAAY;YACf,OAAO,YAAY,CAAC;QACtB,KAAK,SAAS;YACZ,OAAO,SAAS,CAAC;QACnB,KAAK,aAAa;YAChB,OAAO,aAAa,CAAC;QACvB;YACE,OAAO,SAAS,CAAC;IACrB,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,SAAiB,EACjB,UAA+B,EAAE;IAEjC,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;YACjC,SAAS;YACT,KAAK,EAAE,GAAG;YACV,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC;SAClD,CAAC,CAAC;QAEH,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC,mBAAmB,MAAM,EAAE,CAAC,CAAC;QAEhE,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACpC,MAAM,CAAC,KAAK,CAAC,yBAAyB,EAAE;gBACtC,MAAM,EAAE,QAAQ,CAAC,MAAM;gBACvB,KAAK,EAAE,KAAK,CAAC,KAAK,EAAE,OAAO;aAC5B,CAAC,CAAC;YACH,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QACnC,MAAM,UAAU,GAAG,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,CAAC;QAEzC,IAAI,CAAC,UAAU;YAAE,OAAO,IAAI,CAAC;QAE7B,OAAO;YACL,EAAE,EAAE,UAAU,CAAC,GAAG;YAClB,QAAQ,EAAE,QAAQ;YAClB,WAAW,EAAE,eAAe,CAAC,UAAU,CAAC,MAAM,CAAC;YAC/C,MAAM,EAAE,eAAe,CAAC,UAAU,CAAC,KAAK,CAAC;YACzC,GAAG,EAAE,WAAW,UAAU,CAAC,GAAG,EAAE;YAChC,SAAS,EAAE,IAAI,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC,WAAW,EAAE;YACrD,OAAO,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,SAAS;YAChF,IAAI,EAAE;gBACJ,MAAM,EAAE,UAAU,CAAC,IAAI,EAAE,eAAe;gBACxC,MAAM,EAAE,UAAU,CAAC,IAAI,EAAE,eAAe;gBACxC,SAAS,EAAE,UAAU,CAAC,UAAU,IAAI,UAAU,CAAC,KAAK;oBAClD,CAAC,CAAC,UAAU,CAAC,KAAK,GAAG,UAAU,CAAC,UAAU;oBAC1C,CAAC,CAAC,SAAS;aACd;SACF,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,oCAAoC,EAAE;YACjD,KAAK,EAAG,KAAe,CAAC,OAAO;SAChC,CAAC,CAAC;QACH,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,YAAoB;IACtD,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC,oBAAoB,YAAY,EAAE,CAAC,CAAC;QAEvE,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAEzC,OAAO;YACL,EAAE,EAAE,UAAU,CAAC,EAAE;YACjB,QAAQ,EAAE,QAAQ;YAClB,WAAW,EAAE,eAAe,CAAC,UAAU,CAAC,MAAM,CAAC;YAC/C,MAAM,EAAE,eAAe,CAAC,UAAU,CAAC,UAAU,CAAC;YAC9C,GAAG,EAAE,WAAW,UAAU,CAAC,GAAG,EAAE;YAChC,SAAS,EAAE,IAAI,IAAI,CAAC,UAAU,CAAC,SAAS,CAAC,CAAC,WAAW,EAAE;YACvD,OAAO,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,SAAS;YAChF,IAAI,EAAE;gBACJ,MAAM,EAAE,UAAU,CAAC,IAAI,EAAE,eAAe;gBACxC,MAAM,EAAE,UAAU,CAAC,IAAI,EAAE,eAAe;aACzC;SACF,CAAC;IACJ,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,oCAAoC,EAAE;YACjD,YAAY;YACZ,KAAK,EAAG,KAAe,CAAC,OAAO;SAChC,CAAC,CAAC;QACH,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,SAAiB,EACjB,UAA+C,EAAE;IAEjD,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,eAAe,CAAC;YACjC,SAAS;YACT,KAAK,EAAE,MAAM,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE,CAAC;YAClC,GAAG,CAAC,OAAO,CAAC,MAAM,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,MAAM,EAAE,CAAC;SAClD,CAAC,CAAC;QAEH,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC,mBAAmB,MAAM,EAAE,CAAC,CAAC;QAEhE,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAEnC,OAAO,CAAC,IAAI,CAAC,WAAW,IAAI,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,UAAmC,EAAE,EAAE,CAAC,CAAC;YAC5E,EAAE,EAAE,UAAU,CAAC,GAAG;YAClB,QAAQ,EAAE,QAAQ;YAClB,WAAW,EAAE,eAAe,CAAC,UAAU,CAAC,MAAgB,CAAC;YACzD,MAAM,EAAE,eAAe,CAAC,UAAU,CAAC,KAAe,CAAC;YACnD,GAAG,EAAE,WAAW,UAAU,CAAC,GAAG,EAAE;YAChC,SAAS,EAAE,IAAI,IAAI,CAAC,UAAU,CAAC,OAAiB,CAAC,CAAC,WAAW,EAAE;YAC/D,IAAI,EAAE;gBACJ,MAAM,EAAG,UAAU,CAAC,IAAgC,EAAE,eAAe;gBACrE,MAAM,EAAG,UAAU,CAAC,IAAgC,EAAE,eAAe;aACtE;SACF,CAAC,CAAC,CAAC;IACN,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,CAAC,KAAK,CAAC,sCAAsC,EAAE;YACnD,KAAK,EAAG,KAAe,CAAC,OAAO;SAChC,CAAC,CAAC;QACH,OAAO,EAAE,CAAC;IACZ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,YAAoB,EACpB,SAAiB;IAEjB,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC,iBAAiB,SAAS,YAAY,YAAY,EAAE,EAAE;YACvF,MAAM,EAAE,MAAM;SACf,CAAC,CAAC;QAEH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;YACjB,MAAM,KAAK,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;YACpC,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,KAAK,EAAE,KAAK,CAAC,KAAK,EAAE,OAAO,IAAI,kBAAkB;aAClD,CAAC;QACJ,CAAC;QAED,MAAM,CAAC,IAAI,CAAC,wBAAwB,EAAE,EAAE,YAAY,EAAE,SAAS,EAAE,CAAC,CAAC;QAEnE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC3B,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO;YACL,OAAO,EAAE,KAAK;YACd,KAAK,EAAG,KAAe,CAAC,OAAO;SAChC,CAAC;IACJ,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,QAAQ,CAC5B,SAAiB,EACjB,YAAoB;IAEpB,+DAA+D;IAC/D,OAAO,mBAAmB,CAAC,YAAY,EAAE,SAAS,CAAC,CAAC;AACtD,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CACjC,aAAqB,EACrB,UAGI,EAAE;IAEN,MAAM,EAAE,QAAQ,GAAG,KAAK,EAAE,aAAa,GAAG,IAAI,EAAE,GAAG,OAAO,CAAC;IAC3D,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IAC7B,MAAM,MAAM,GAAiD,EAAE,CAAC;IAEhE,MAAM,CAAC,IAAI,CAAC,gCAAgC,EAAE,EAAE,aAAa,EAAE,QAAQ,EAAE,CAAC,CAAC;IAE3E,qCAAqC;IACrC,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,QAAQ,EAAE,CAAC;QACzC,IAAI,CAAC;YACH,MAAM,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAC9B,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,aAAa,EAAE;gBAC1C,MAAM,EAAE,WAAW,CAAC,OAAO,CAAC,IAAI,CAAC;aAClC,CAAC,CAAC;YACH,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,UAAU,CAAC;YAExC,MAAM,CAAC,IAAI,CAAC;gBACV,OAAO,EAAE,QAAQ,CAAC,EAAE;gBACpB,OAAO;aACR,CAAC,CAAC;QACL,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC,CAAC;QACjD,CAAC;QAED,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,aAAa,CAAC,CAAC,CAAC;IACrE,CAAC;IAED,oBAAoB;IACpB,MAAM,gBAAgB,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;IACzD,MAAM,SAAS,GAAG,CAAC,GAAG,CAAC,gBAAgB,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC;IAChE,MAAM,SAAS,GAAG,gBAAgB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;IAC/E,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,MAAM,GAAG,IAAI,CAAC,CAAC;IACrD,MAAM,UAAU,GAAG,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;IAE5C,MAAM,gBAAgB,GAAG,SAAS,GAAG,IAAI,IAAI,UAAU,GAAG,GAAG,CAAC;IAE9D,MAAM,QAAQ,GAAmB;QAC/B,KAAK,EAAE,gBAAgB,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ;QAC7C,cAAc,EAAE,EAAE,EAAE,YAAY;QAChC,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;QAChC,OAAO,EAAE;YACP,SAAS;YACT,UAAU;YACV,YAAY,EAAE,MAAM,CAAC,MAAM;YAC3B,kBAAkB,EAAE,gBAAgB,CAAC,MAAM;YAC3C,kBAAkB,EAAE,MAAM,CAAC,MAAM,GAAG,gBAAgB,CAAC,MAAM;SAC5D;QACD,gBAAgB;QAChB,cAAc,EAAE,gBAAgB,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU;KAC1D,CAAC;IAEF,MAAM,CAAC,IAAI,CAAC,kCAAkC,EAAE;QAC9C,KAAK,EAAE,QAAQ,CAAC,KAAK;QACrB,SAAS;QACT,UAAU;QACV,cAAc,EAAE,QAAQ,CAAC,cAAc;KACxC,CAAC,CAAC;IAEH,OAAO,QAAQ,CAAC;AAClB,CAAC"}

package/dist/scanners/fp-feedback.d.ts

@@ -0,0 +1,140 @@
+/**
+ * False Positive Feedback
+ *
+ * Handles user feedback on findings and maintains a feedback database
+ * for improving FP detection over time.
+ *
+ * @module scanners/fp-feedback
+ */
+import type { ScannerType, DeterministicFinding } from "./types.js";
+import type { Severity } from "../certification/types.js";
+/**
+ * Reason for marking a finding as FP
+ */
+export type FPReason = "test-code" | "false-pattern-match" | "sanitized-elsewhere" | "intentional" | "vendor-code" | "generated-code" | "example-code" | "configuration" | "other";
+/**
+ * FP reason descriptions for UI
+ */
+export declare const FP_REASON_DESCRIPTIONS: Record<FPReason, string>;
+/**
+ * A single feedback entry
+ */
+export interface FeedbackEntry {
+    /** Unique feedback ID */
+    id: string;
+    /** Finding ID this feedback relates to */
+    findingId: string;
+    /** Scanner that generated the finding */
+    scanner: ScannerType;
+    /** Rule ID */
+    ruleId: string;
+    /** File path */
+    file: string;
+    /** Line number */
+    line?: number;
+    /** Original severity */
+    severity: Severity;
+    /** Verdict: true positive or false positive */
+    verdict: "tp" | "fp";
+    /** Reason for FP (if verdict is FP) */
+    reason?: FPReason;
+    /** Additional details/notes */
+    details?: string;
+    /** Who submitted the feedback */
+    submittedBy?: string;
+    /** When the feedback was submitted */
+    submittedAt: string;
+    /** Hash of the code at feedback time (for invalidation) */
+    codeHash?: string;
+}
+/**
+ * Feedback database
+ */
+export interface FeedbackDatabase {
+    version: string;
+    projectPath: string;
+    entries: FeedbackEntry[];
+    stats: {
+        totalFeedback: number;
+        tpCount: number;
+        fpCount: number;
+        byScanner: Record<string, {
+            tp: number;
+            fp: number;
+        }>;
+        byReason: Record<string, number>;
+    };
+}
+/**
+ * Load feedback database
+ */
+export declare function loadFeedbackDatabase(projectPath: string): Promise<FeedbackDatabase>;
+/**
+ * Save feedback database
+ */
+export declare function saveFeedbackDatabase(projectPath: string, db: FeedbackDatabase): Promise<void>;
+/**
+ * Submit feedback for a finding
+ */
+export declare function submitFeedback(projectPath: string, finding: DeterministicFinding, verdict: "tp" | "fp", options?: {
+    reason?: FPReason;
+    details?: string;
+    submittedBy?: string;
+    codeHash?: string;
+}): Promise<FeedbackEntry>;
+/**
+ * Get feedback for a specific finding
+ */
+export declare function getFeedbackForFinding(projectPath: string, scanner: ScannerType, ruleId: string, file: string, line?: number): Promise<FeedbackEntry[]>;
+/**
+ * Get all feedback for a rule
+ */
+export declare function getFeedbackForRule(projectPath: string, scanner: ScannerType, ruleId: string): Promise<FeedbackEntry[]>;
+/**
+ * Check if a finding has existing feedback
+ */
+export declare function hasFeedback(projectPath: string, scanner: ScannerType, ruleId: string, file: string, line?: number): Promise<boolean>;
+/**
+ * Get suppression suggestions based on feedback
+ */
+export declare function getSuppressionSuggestions(projectPath: string, options?: {
+    minFPRate?: number;
+    minSampleSize?: number;
+}): Promise<Array<{
+    scanner: ScannerType;
+    ruleId: string;
+    fpRate: number;
+    sampleSize: number;
+    suggestion: "disable" | "review" | "keep";
+    commonReasons: FPReason[];
+}>>;
+/**
+ * Generate feedback summary report
+ */
+export declare function generateFeedbackReport(projectPath: string): Promise<{
+    overview: {
+        totalFeedback: number;
+        tpCount: number;
+        fpCount: number;
+        overallFPRate: number;
+    };
+    byScanner: Array<{
+        scanner: ScannerType;
+        total: number;
+        tp: number;
+        fp: number;
+        fpRate: number;
+    }>;
+    topFPReasons: Array<{
+        reason: FPReason;
+        count: number;
+        percentage: number;
+    }>;
+    recentFeedback: FeedbackEntry[];
+    suppressionSuggestions: Awaited<ReturnType<typeof getSuppressionSuggestions>>;
+}>;
+/**
+ * Clear old feedback entries
+ */
+export declare function pruneOldFeedback(projectPath: string, maxAgeDays?: number): Promise<number>;
+//# sourceMappingURL=fp-feedback.d.ts.map

package/dist/scanners/fp-feedback.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"fp-feedback.d.ts","sourceRoot":"","sources":["../../src/scanners/fp-feedback.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,OAAO,KAAK,EAAE,WAAW,EAAE,oBAAoB,EAAE,MAAM,YAAY,CAAC;AACpE,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,2BAA2B,CAAC;AAI1D;;GAEG;AACH,MAAM,MAAM,QAAQ,GAChB,WAAW,GACX,qBAAqB,GACrB,qBAAqB,GACrB,aAAa,GACb,aAAa,GACb,gBAAgB,GAChB,cAAc,GACd,eAAe,GACf,OAAO,CAAC;AAEZ;;GAEG;AACH,eAAO,MAAM,sBAAsB,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAU3D,CAAC;AAEF;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,yBAAyB;IACzB,EAAE,EAAE,MAAM,CAAC;IAEX,0CAA0C;IAC1C,SAAS,EAAE,MAAM,CAAC;IAElB,yCAAyC;IACzC,OAAO,EAAE,WAAW,CAAC;IAErB,cAAc;IACd,MAAM,EAAE,MAAM,CAAC;IAEf,gBAAgB;IAChB,IAAI,EAAE,MAAM,CAAC;IAEb,kBAAkB;IAClB,IAAI,CAAC,EAAE,MAAM,CAAC;IAEd,wBAAwB;IACxB,QAAQ,EAAE,QAAQ,CAAC;IAEnB,+CAA+C;IAC/C,OAAO,EAAE,IAAI,GAAG,IAAI,CAAC;IAErB,uCAAuC;IACvC,MAAM,CAAC,EAAE,QAAQ,CAAC;IAElB,+BAA+B;IAC/B,OAAO,CAAC,EAAE,MAAM,CAAC;IAEjB,iCAAiC;IACjC,WAAW,CAAC,EAAE,MAAM,CAAC;IAErB,sCAAsC;IACtC,WAAW,EAAE,MAAM,CAAC;IAEpB,2DAA2D;IAC3D,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,EAAE,aAAa,EAAE,CAAC;IACzB,KAAK,EAAE;QACL,aAAa,EAAE,MAAM,CAAC;QACtB,OAAO,EAAE,MAAM,CAAC;QAChB,OAAO,EAAE,MAAM,CAAC;QAChB,SAAS,EAAE,MAAM,CAAC,MAAM,EAAE;YAAE,EAAE,EAAE,MAAM,CAAC;YAAC,EAAE,EAAE,MAAM,CAAA;SAAE,CAAC,CAAC;QACtD,QAAQ,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;KAClC,CAAC;CACH;AAgBD;;GAEG;AACH,wBAAsB,oBAAoB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAoBzF;AAED;;GAEG;AACH,wBAAsB,oBAAoB,CACxC,WAAW,EAAE,MAAM,EACnB,EAAE,EAAE,gBAAgB,GACnB,OAAO,CAAC,IAAI,CAAC,CAOf;AAED;;GAEG;AACH,wBAAsB,cAAc,CAClC,WAAW,EAAE,MAAM,EACnB,OAAO,EAAE,oBAAoB,EAC7B,OAAO,EAAE,IAAI,GAAG,IAAI,EACpB,OAAO,CAAC,EAAE;IACR,MAAM,CAAC,EAAE,QAAQ,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,MAAM,CAAC;CACnB,GACA,OAAO,CAAC,aAAa,CAAC,CA0DxB;AAED;;GAEG;AACH,wBAAsB,qBAAqB,CACzC,WAAW,EAAE,MAAM,EACnB,OAAO,EAAE,WAAW,EACpB,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,EACZ,IAAI,CAAC,EAAE,MAAM,GACZ,OAAO,CAAC,aAAa,EAAE,CAAC,CAW1B;AAED;;GAEG;AACH,wBAAsB,kBAAkB,CACtC,WAAW,EAAE,MAAM,EACnB,OAAO,EAAE,WAAW,EACpB,MAAM,EAAE,MAAM,GACb,OAAO,CAAC,aAAa,EAAE,CAAC,CAM1B;AAED;;GAEG;AACH,wBAAsB,WAAW,CAC/B,WAAW,EAAE,MAAM,EACnB,OAAO,EAAE,WAAW,EACpB,MAAM,EAAE,MAAM,EACd,IAAI,EAAE,MAAM,EACZ,IAAI,CAAC,EAAE,MAAM,GACZ,OAAO,CAAC,OAAO,CAAC,CAGlB;AAED;;GAEG;AACH,wBAAsB,yBAAyB,CAC7C,WAAW,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE;IACR,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB,GACA,OAAO,CAAC,KAAK,CAAC;IACf,OAAO,EAAE,WAAW,CAAC;IACrB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,UAAU,EAAE,SAAS,GAAG,QAAQ,GAAG,MAAM,CAAC;IAC1C,aAAa,EAAE,QAAQ,EAAE,CAAC;CAC3B,CAAC,CAAC,CAyEF;AAED;;GAEG;AACH,wBAAsB,sBAAsB,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO,CAAC;IACzE,QAAQ,EAAE;QACR,aAAa,EAAE,MAAM,CAAC;QACtB,OAAO,EAAE,MAAM,CAAC;QAChB,OAAO,EAAE,MAAM,CAAC;QAChB,aAAa,EAAE,MAAM,CAAC;KACvB,CAAC;IACF,SAAS,EAAE,KAAK,CAAC;QACf,OAAO,EAAE,WAAW,CAAC;QACrB,KAAK,EAAE,MAAM,CAAC;QACd,EAAE,EAAE,MAAM,CAAC;QACX,EAAE,EAAE,MAAM,CAAC;QACX,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC,CAAC;IACH,YAAY,EAAE,KAAK,CAAC;QAClB,MAAM,EAAE,QAAQ,CAAC;QACjB,KAAK,EAAE,MAAM,CAAC;QACd,UAAU,EAAE,MAAM,CAAC;KACpB,CAAC,CAAC;IACH,cAAc,EAAE,aAAa,EAAE,CAAC;IAChC,sBAAsB,EAAE,OAAO,CAAC,UAAU,CAAC,OAAO,yBAAyB,CAAC,CAAC,CAAC;CAC/E,CAAC,CA2CD;AAED;;GAEG;AACH,wBAAsB,gBAAgB,CACpC,WAAW,EAAE,MAAM,EACnB,UAAU,GAAE,MAAW,GACtB,OAAO,CAAC,MAAM,CAAC,CAwCjB"}