verbolab 0.1.0-alpha.1

package/dist/src/security/secrets-patterns.js

@@ -0,0 +1,430 @@
+/**
+ * Secrets pattern library — 54 RegExp patterns compiled at module load.
+ *
+ * Covers: AWS, GitHub, Stripe, private keys, .env, JWT, connection strings,
+ * Google/GCP, Azure, Slack, Twilio, email services, package registries,
+ * Supabase, hosting providers, and generic credential patterns.
+ *
+ * All patterns include the `g` flag. When reusing a pattern across multiple
+ * inputs, reset `pattern.lastIndex = 0` between calls, or use
+ * `String.prototype.match()` / `matchAll()` which reset it automatically.
+ */
+export const SECRET_PATTERNS = [
+    // ── AWS (6) ──────────────────────────────────────────────────────────────
+    {
+        id: 'aws-access-key-id',
+        name: 'AWS Access Key ID',
+        category: 'aws',
+        pattern: /AKIA[0-9A-Z]{16}/g,
+        severity: 'critical',
+    },
+    {
+        id: 'aws-secret-access-key',
+        name: 'AWS Secret Access Key',
+        category: 'aws',
+        pattern: /(?:aws[_-]?secret[_-]?access[_-]?key|SECRET_ACCESS_KEY)\s*[=:]\s*['"]?([0-9A-Za-z/+=]{40})['"]?/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'aws-session-token',
+        name: 'AWS Session Token',
+        category: 'aws',
+        pattern: /(?:AWSSessionToken|aws[_-]?session[_-]?token)\s*[=:]\s*['"]?([A-Za-z0-9/+=]{100,})['"]?/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'aws-mfa-arn',
+        name: 'AWS MFA ARN',
+        category: 'aws',
+        pattern: /arn:aws:iam::\d{12}:mfa\/[\w+=,.@-]+/g,
+        severity: 'medium',
+    },
+    {
+        id: 'aws-arn',
+        name: 'AWS ARN with Account ID',
+        category: 'aws',
+        pattern: /arn:aws[a-z-]*:[a-z0-9-]+:[a-z0-9-]*:\d{12}:[^\s"']+/g,
+        severity: 'low',
+    },
+    {
+        id: 'aws-account-id',
+        name: 'AWS Account ID',
+        category: 'aws',
+        pattern: /(?:account[_-]?id|aws[_-]?account)\s*[=:'"]{0,3}\s*(\d{12})/gi,
+        severity: 'low',
+    },
+    // ── GitHub (4) ───────────────────────────────────────────────────────────
+    {
+        id: 'github-pat-classic',
+        name: 'GitHub Personal Access Token (classic)',
+        category: 'github',
+        pattern: /ghp_[A-Za-z0-9]{36}/g,
+        severity: 'critical',
+    },
+    {
+        id: 'github-pat-fine-grained',
+        name: 'GitHub Fine-grained Personal Access Token',
+        category: 'github',
+        pattern: /github_pat_[A-Za-z0-9_]{82}/g,
+        severity: 'critical',
+    },
+    {
+        id: 'github-oauth-token',
+        name: 'GitHub OAuth Access Token',
+        category: 'github',
+        pattern: /gho_[A-Za-z0-9]{36}/g,
+        severity: 'critical',
+    },
+    {
+        id: 'github-app-installation-token',
+        name: 'GitHub App Installation Token',
+        category: 'github',
+        pattern: /ghs_[A-Za-z0-9]{36}/g,
+        severity: 'high',
+    },
+    // ── Stripe (3) ───────────────────────────────────────────────────────────
+    {
+        id: 'stripe-live-secret-key',
+        name: 'Stripe Live Secret Key',
+        category: 'stripe',
+        pattern: /sk_live_[A-Za-z0-9]{24,99}/g,
+        severity: 'critical',
+    },
+    {
+        id: 'stripe-test-secret-key',
+        name: 'Stripe Test Secret Key',
+        category: 'stripe',
+        pattern: /sk_test_[A-Za-z0-9]{24,99}/g,
+        severity: 'high',
+    },
+    {
+        id: 'stripe-restricted-key',
+        name: 'Stripe Restricted Key',
+        category: 'stripe',
+        pattern: /rk_live_[A-Za-z0-9]{24,99}/g,
+        severity: 'critical',
+    },
+    // ── Private Keys (4) ─────────────────────────────────────────────────────
+    {
+        id: 'private-key-rsa',
+        name: 'RSA Private Key',
+        category: 'private-key',
+        pattern: /-----BEGIN RSA PRIVATE KEY-----/g,
+        severity: 'critical',
+    },
+    {
+        id: 'private-key-ec',
+        name: 'EC Private Key',
+        category: 'private-key',
+        pattern: /-----BEGIN EC PRIVATE KEY-----/g,
+        severity: 'critical',
+    },
+    {
+        id: 'private-key-openssh',
+        name: 'OpenSSH Private Key',
+        category: 'private-key',
+        pattern: /-----BEGIN OPENSSH PRIVATE KEY-----/g,
+        severity: 'critical',
+    },
+    {
+        id: 'private-key-pkcs8',
+        name: 'PKCS#8 Private Key',
+        category: 'private-key',
+        pattern: /-----BEGIN PRIVATE KEY-----/g,
+        severity: 'critical',
+    },
+    // ── .env (2) ─────────────────────────────────────────────────────────────
+    {
+        id: 'dotenv-password',
+        name: '.env Password Assignment',
+        category: 'dotenv',
+        pattern: /^(?:password|passwd|pwd)\s*=\s*.+/gim,
+        severity: 'high',
+    },
+    {
+        id: 'dotenv-secret',
+        name: '.env Secret / API Key Assignment',
+        category: 'dotenv',
+        pattern: /^(?:secret|api_key|apikey|api_secret)\s*=\s*.+/gim,
+        severity: 'high',
+    },
+    // ── JWT (1) ──────────────────────────────────────────────────────────────
+    {
+        id: 'jwt-token',
+        name: 'JSON Web Token (JWT)',
+        category: 'jwt',
+        pattern: /eyJ[A-Za-z0-9\-_=]+\.eyJ[A-Za-z0-9\-_=]+\.[A-Za-z0-9\-_.+/=]*/g,
+        severity: 'high',
+    },
+    // ── Connection Strings (5) ───────────────────────────────────────────────
+    {
+        id: 'connection-string-postgres',
+        name: 'PostgreSQL Connection String',
+        category: 'connection-string',
+        pattern: /postgres(?:ql)?:\/\/[^\s@]+:[^\s@]+@[^\s"']+/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'connection-string-mysql',
+        name: 'MySQL Connection String',
+        category: 'connection-string',
+        pattern: /mysql:\/\/[^\s@]+:[^\s@]+@[^\s"']+/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'connection-string-mongodb',
+        name: 'MongoDB Connection String',
+        category: 'connection-string',
+        pattern: /mongodb(?:\+srv)?:\/\/[^\s@]+:[^\s@]+@[^\s"']+/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'connection-string-redis',
+        name: 'Redis Connection String with Credentials',
+        category: 'connection-string',
+        pattern: /redis:\/\/[^\s:@]+:[^\s@]+@[^\s"']+/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'connection-string-amqp',
+        name: 'AMQP / RabbitMQ Connection String',
+        category: 'connection-string',
+        pattern: /amqps?:\/\/[^\s@]+:[^\s@]+@[^\s"']+/gi,
+        severity: 'critical',
+    },
+    // ── Google / GCP (4) ─────────────────────────────────────────────────────
+    {
+        id: 'google-api-key',
+        name: 'Google API Key',
+        category: 'google',
+        pattern: /AIza[0-9A-Za-z_\-]{35}/g,
+        severity: 'high',
+    },
+    {
+        id: 'google-oauth-client-secret',
+        name: 'Google OAuth Client Secret',
+        category: 'google',
+        pattern: /(?:google|gcp|oauth).{0,20}client[_-]?secret.{0,20}['"][A-Za-z0-9_\-]{24}['"]/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'google-service-account',
+        name: 'Google Service Account JSON',
+        category: 'google',
+        pattern: /"type"\s*:\s*"service_account"/g,
+        severity: 'critical',
+    },
+    {
+        id: 'firebase-server-key',
+        name: 'Firebase Server Key',
+        category: 'google',
+        pattern: /AAAA[A-Za-z0-9_\-]{7}:[A-Za-z0-9_\-]{140}/g,
+        severity: 'critical',
+    },
+    // ── Azure (4) ────────────────────────────────────────────────────────────
+    {
+        id: 'azure-storage-connection-string',
+        name: 'Azure Storage Connection String',
+        category: 'azure',
+        pattern: /DefaultEndpointsProtocol=https;AccountName=[^;]+;AccountKey=[A-Za-z0-9+/=]{88};/g,
+        severity: 'critical',
+    },
+    {
+        id: 'azure-sas-token',
+        name: 'Azure SAS Token',
+        category: 'azure',
+        pattern: /sv=\d{4}-\d{2}-\d{2}&(?:ss|spr|sr)=[^&\s"']+(?:&[^&\s"']+)*&sig=[^&\s"']+/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'azure-client-secret',
+        name: 'Azure AD Client Secret',
+        category: 'azure',
+        pattern: /(?:azure|microsoft).{0,30}(?:secret|password).{0,10}['"][A-Za-z0-9~._\-]{34,}['"]/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'azure-subscription-key',
+        name: 'Azure APIM Subscription Key',
+        category: 'azure',
+        pattern: /(?:ocp-apim-subscription-key|azure[_-]?subscription[_-]?key)\s*[=:]\s*['"]?[a-f0-9]{32}['"]?/gi,
+        severity: 'high',
+    },
+    // ── Slack (3) ────────────────────────────────────────────────────────────
+    {
+        id: 'slack-bot-token',
+        name: 'Slack Bot Token',
+        category: 'slack',
+        pattern: /xoxb-\d{11,13}-\d{11,13}-[a-zA-Z0-9]{24}/g,
+        severity: 'critical',
+    },
+    {
+        id: 'slack-webhook-url',
+        name: 'Slack Incoming Webhook URL',
+        category: 'slack',
+        pattern: /hooks\.slack\.com\/services\/T[A-Z0-9]{8,}\/B[A-Z0-9]{8,}\/[A-Za-z0-9]{24}/g,
+        severity: 'high',
+    },
+    {
+        id: 'slack-signing-secret',
+        name: 'Slack Signing Secret',
+        category: 'slack',
+        pattern: /(?:slack.{0,10}signing[_-]?secret|SLACK_SIGNING_SECRET)\s*[=:]\s*['"]?[a-f0-9]{32}['"]?/gi,
+        severity: 'high',
+    },
+    // ── Twilio (2) ───────────────────────────────────────────────────────────
+    {
+        id: 'twilio-account-sid',
+        name: 'Twilio Account SID',
+        category: 'twilio',
+        pattern: /AC[a-f0-9]{32}/g,
+        severity: 'high',
+    },
+    {
+        id: 'twilio-auth-token',
+        name: 'Twilio Auth Token',
+        category: 'twilio',
+        pattern: /(?:twilio.{0,20}auth[_-]?token|TWILIO_AUTH_TOKEN)\s*[=:]\s*['"]?[a-f0-9]{32}['"]?/gi,
+        severity: 'critical',
+    },
+    // ── Email Services (2) ───────────────────────────────────────────────────
+    {
+        id: 'sendgrid-api-key',
+        name: 'SendGrid API Key',
+        category: 'email',
+        pattern: /SG\.[A-Za-z0-9_\-]{22}\.[A-Za-z0-9_\-]{43}/g,
+        severity: 'critical',
+    },
+    {
+        id: 'mailgun-api-key',
+        name: 'Mailgun API Key',
+        category: 'email',
+        pattern: /key-[0-9a-f]{32}/g,
+        severity: 'critical',
+    },
+    // ── Package Registries (3) ───────────────────────────────────────────────
+    {
+        id: 'npm-access-token',
+        name: 'npm Access Token',
+        category: 'registry',
+        pattern: /npm_[A-Za-z0-9]{36}/g,
+        severity: 'high',
+    },
+    {
+        id: 'pypi-api-token',
+        name: 'PyPI API Token',
+        category: 'registry',
+        pattern: /pypi-AgEIcHlwaS5vcmcA[A-Za-z0-9_\-]+/g,
+        severity: 'high',
+    },
+    {
+        id: 'docker-hub-token',
+        name: 'Docker Hub Access Token',
+        category: 'registry',
+        pattern: /(?:docker[_-]?hub|dockerhub).{0,20}(?:password|token)\s*[=:]\s*['"][A-Za-z0-9_\-]{20,}['"]/gi,
+        severity: 'high',
+    },
+    // ── Supabase (2) ─────────────────────────────────────────────────────────
+    {
+        id: 'supabase-url',
+        name: 'Supabase Project URL',
+        category: 'supabase',
+        pattern: /https:\/\/[a-z0-9]{20}\.supabase\.(?:co|in)\//g,
+        severity: 'low',
+    },
+    {
+        id: 'supabase-service-role-key',
+        name: 'Supabase Service Role Key',
+        category: 'supabase',
+        pattern: /(?:supabase.{0,10}service[_-]?role|SUPABASE_SERVICE_ROLE_KEY)\s*[=:]\s*['"]?(eyJ[A-Za-z0-9_\-]+\.[A-Za-z0-9_\-]+\.[A-Za-z0-9_\-]+)['"]?/gi,
+        severity: 'critical',
+    },
+    // ── Hosting Providers (3) ────────────────────────────────────────────────
+    {
+        id: 'heroku-api-key',
+        name: 'Heroku API Key',
+        category: 'hosting',
+        pattern: /(?:heroku).{0,20}['"]?[0-9a-f]{8}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{4}-[0-9a-f]{12}['"]?/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'netlify-personal-access-token',
+        name: 'Netlify Personal Access Token',
+        category: 'hosting',
+        pattern: /(?:netlify.{0,10}token|NETLIFY_TOKEN)\s*[=:]\s*['"][A-Za-z0-9_\-]{40,}['"]/gi,
+        severity: 'critical',
+    },
+    {
+        id: 'vercel-access-token',
+        name: 'Vercel Access Token',
+        category: 'hosting',
+        pattern: /(?:vercel.{0,10}token|VERCEL_TOKEN)\s*[=:]\s*['"][A-Za-z0-9_\-]{24,}['"]/gi,
+        severity: 'critical',
+    },
+    // ── Generic (6) ──────────────────────────────────────────────────────────
+    {
+        id: 'generic-api-key',
+        name: 'Generic API Key',
+        category: 'generic',
+        pattern: /(?:api[_-]?key|api[_-]?secret|app[_-]?secret)\s*[=:'"]{1,5}\s*['"]([A-Za-z0-9+/=_\-]{32,})['"]?/gi,
+        severity: 'medium',
+    },
+    {
+        id: 'generic-password',
+        name: 'Generic Password in Config',
+        category: 'generic',
+        pattern: /(?:password|passwd|pwd)\s*[:=]\s*['"]?([^\s'"]{8,})['"]?/gi,
+        severity: 'medium',
+    },
+    {
+        id: 'generic-auth-token',
+        name: 'Generic Auth / Access Token',
+        category: 'generic',
+        pattern: /(?:auth[_-]?token|access[_-]?token)\s*[=:]\s*['"]([A-Za-z0-9+/=_.`-]{20,})['"]?/gi,
+        severity: 'medium',
+    },
+    {
+        id: 'generic-secret-key',
+        name: 'Generic Secret Key',
+        category: 'generic',
+        pattern: /(?:secret[_-]?key|secret[_-]?token)\s*[=:]\s*['"]([A-Za-z0-9+/=_.`-]{16,})['"]?/gi,
+        severity: 'medium',
+    },
+    {
+        id: 'private-key-pgp',
+        name: 'PGP Private Key Block',
+        category: 'generic',
+        pattern: /-----BEGIN PGP PRIVATE KEY BLOCK-----/g,
+        severity: 'critical',
+    },
+    {
+        id: 'private-key-dsa',
+        name: 'DSA Private Key',
+        category: 'generic',
+        pattern: /-----BEGIN DSA PRIVATE KEY-----/g,
+        severity: 'critical',
+    },
+];
+/** Total number of patterns — must equal 54. */
+export const PATTERN_COUNT = SECRET_PATTERNS.length;
+/** Patterns grouped by category, built once at module load. */
+export const PATTERNS_BY_CATEGORY = (() => {
+    const map = new Map();
+    for (const p of SECRET_PATTERNS) {
+        const list = map.get(p.category) ?? [];
+        list.push(p);
+        map.set(p.category, list);
+    }
+    return map;
+})();
+/** Patterns grouped by severity, built once at module load. */
+export const PATTERNS_BY_SEVERITY = (() => {
+    const map = new Map();
+    for (const p of SECRET_PATTERNS) {
+        const list = map.get(p.severity) ?? [];
+        list.push(p);
+        map.set(p.severity, list);
+    }
+    return map;
+})();
+//# sourceMappingURL=secrets-patterns.js.map

package/dist/src/security/secrets-patterns.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"secrets-patterns.js","sourceRoot":"","sources":["../../../src/security/secrets-patterns.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AA+BH,MAAM,CAAC,MAAM,eAAe,GAA6B;IACvD,4EAA4E;IAE5E;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,KAAK;QACf,OAAO,EAAE,mBAAmB;QAC5B,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,uBAAuB;QAC3B,IAAI,EAAE,uBAAuB;QAC7B,QAAQ,EAAE,KAAK;QACf,OAAO,EACL,mGAAmG;QACrG,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,KAAK;QACf,OAAO,EACL,2FAA2F;QAC7F,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,aAAa;QACjB,IAAI,EAAE,aAAa;QACnB,QAAQ,EAAE,KAAK;QACf,OAAO,EAAE,uCAAuC;QAChD,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,EAAE,EAAE,SAAS;QACb,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,KAAK;QACf,OAAO,EAAE,uDAAuD;QAChE,QAAQ,EAAE,KAAK;KAChB;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,gBAAgB;QACtB,QAAQ,EAAE,KAAK;QACf,OAAO,EAAE,+DAA+D;QACxE,QAAQ,EAAE,KAAK;KAChB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,wCAAwC;QAC9C,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,sBAAsB;QAC/B,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,yBAAyB;QAC7B,IAAI,EAAE,2CAA2C;QACjD,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,8BAA8B;QACvC,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,sBAAsB;QAC/B,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,+BAA+B;QACnC,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,sBAAsB;QAC/B,QAAQ,EAAE,MAAM;KACjB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,wBAAwB;QAC9B,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,6BAA6B;QACtC,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,wBAAwB;QAC9B,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,6BAA6B;QACtC,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,uBAAuB;QAC3B,IAAI,EAAE,uBAAuB;QAC7B,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,6BAA6B;QACtC,QAAQ,EAAE,UAAU;KACrB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,aAAa;QACvB,OAAO,EAAE,kCAAkC;QAC3C,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,gBAAgB;QACtB,QAAQ,EAAE,aAAa;QACvB,OAAO,EAAE,iCAAiC;QAC1C,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,qBAAqB;QACzB,IAAI,EAAE,qBAAqB;QAC3B,QAAQ,EAAE,aAAa;QACvB,OAAO,EAAE,sCAAsC;QAC/C,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,oBAAoB;QAC1B,QAAQ,EAAE,aAAa;QACvB,OAAO,EAAE,8BAA8B;QACvC,QAAQ,EAAE,UAAU;KACrB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,sCAAsC;QAC/C,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,eAAe;QACnB,IAAI,EAAE,kCAAkC;QACxC,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,mDAAmD;QAC5D,QAAQ,EAAE,MAAM;KACjB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,WAAW;QACf,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,KAAK;QACf,OAAO,EAAE,gEAAgE;QACzE,QAAQ,EAAE,MAAM;KACjB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,4BAA4B;QAChC,IAAI,EAAE,8BAA8B;QACpC,QAAQ,EAAE,mBAAmB;QAC7B,OAAO,EAAE,gDAAgD;QACzD,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,yBAAyB;QAC7B,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,mBAAmB;QAC7B,OAAO,EAAE,sCAAsC;QAC/C,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,2BAA2B;QAC/B,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,mBAAmB;QAC7B,OAAO,EAAE,kDAAkD;QAC3D,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,yBAAyB;QAC7B,IAAI,EAAE,0CAA0C;QAChD,QAAQ,EAAE,mBAAmB;QAC7B,OAAO,EAAE,uCAAuC;QAChD,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,mCAAmC;QACzC,QAAQ,EAAE,mBAAmB;QAC7B,OAAO,EAAE,uCAAuC;QAChD,QAAQ,EAAE,UAAU;KACrB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,gBAAgB;QACtB,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,yBAAyB;QAClC,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,4BAA4B;QAChC,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,iFAAiF;QAC1F,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,iCAAiC;QAC1C,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,qBAAqB;QACzB,IAAI,EAAE,qBAAqB;QAC3B,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,4CAA4C;QACrD,QAAQ,EAAE,UAAU;KACrB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,iCAAiC;QACrC,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,OAAO;QACjB,OAAO,EAAE,kFAAkF;QAC3F,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,OAAO;QACjB,OAAO,EAAE,6EAA6E;QACtF,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,qBAAqB;QACzB,IAAI,EAAE,wBAAwB;QAC9B,QAAQ,EAAE,OAAO;QACjB,OAAO,EAAE,qFAAqF;QAC9F,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,wBAAwB;QAC5B,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,OAAO;QACjB,OAAO,EACL,gGAAgG;QAClG,QAAQ,EAAE,MAAM;KACjB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,OAAO;QACjB,OAAO,EAAE,2CAA2C;QACpD,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,OAAO;QACjB,OAAO,EAAE,6EAA6E;QACtF,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,sBAAsB;QAC1B,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,OAAO;QACjB,OAAO,EACL,2FAA2F;QAC7F,QAAQ,EAAE,MAAM;KACjB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,oBAAoB;QAC1B,QAAQ,EAAE,QAAQ;QAClB,OAAO,EAAE,iBAAiB;QAC1B,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,mBAAmB;QACvB,IAAI,EAAE,mBAAmB;QACzB,QAAQ,EAAE,QAAQ;QAClB,OAAO,EACL,qFAAqF;QACvF,QAAQ,EAAE,UAAU;KACrB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,kBAAkB;QACtB,IAAI,EAAE,kBAAkB;QACxB,QAAQ,EAAE,OAAO;QACjB,OAAO,EAAE,6CAA6C;QACtD,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,OAAO;QACjB,OAAO,EAAE,mBAAmB;QAC5B,QAAQ,EAAE,UAAU;KACrB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,kBAAkB;QACtB,IAAI,EAAE,kBAAkB;QACxB,QAAQ,EAAE,UAAU;QACpB,OAAO,EAAE,sBAAsB;QAC/B,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,gBAAgB;QACtB,QAAQ,EAAE,UAAU;QACpB,OAAO,EAAE,uCAAuC;QAChD,QAAQ,EAAE,MAAM;KACjB;IACD;QACE,EAAE,EAAE,kBAAkB;QACtB,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,UAAU;QACpB,OAAO,EACL,8FAA8F;QAChG,QAAQ,EAAE,MAAM;KACjB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,cAAc;QAClB,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,UAAU;QACpB,OAAO,EAAE,gDAAgD;QACzD,QAAQ,EAAE,KAAK;KAChB;IACD;QACE,EAAE,EAAE,2BAA2B;QAC/B,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,UAAU;QACpB,OAAO,EACL,2IAA2I;QAC7I,QAAQ,EAAE,UAAU;KACrB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,gBAAgB;QACpB,IAAI,EAAE,gBAAgB;QACtB,QAAQ,EAAE,SAAS;QACnB,OAAO,EACL,2FAA2F;QAC7F,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,+BAA+B;QACnC,IAAI,EAAE,+BAA+B;QACrC,QAAQ,EAAE,SAAS;QACnB,OAAO,EAAE,8EAA8E;QACvF,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,qBAAqB;QACzB,IAAI,EAAE,qBAAqB;QAC3B,QAAQ,EAAE,SAAS;QACnB,OAAO,EAAE,4EAA4E;QACrF,QAAQ,EAAE,UAAU;KACrB;IAED,4EAA4E;IAE5E;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,SAAS;QACnB,OAAO,EAAE,mGAAmG;QAC5G,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,EAAE,EAAE,kBAAkB;QACtB,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,SAAS;QACnB,OAAO,EAAE,4DAA4D;QACrE,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,6BAA6B;QACnC,QAAQ,EAAE,SAAS;QACnB,OAAO,EAAE,mFAAmF;QAC5F,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,EAAE,EAAE,oBAAoB;QACxB,IAAI,EAAE,oBAAoB;QAC1B,QAAQ,EAAE,SAAS;QACnB,OAAO,EAAE,mFAAmF;QAC5F,QAAQ,EAAE,QAAQ;KACnB;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,uBAAuB;QAC7B,QAAQ,EAAE,SAAS;QACnB,OAAO,EAAE,wCAAwC;QACjD,QAAQ,EAAE,UAAU;KACrB;IACD;QACE,EAAE,EAAE,iBAAiB;QACrB,IAAI,EAAE,iBAAiB;QACvB,QAAQ,EAAE,SAAS;QACnB,OAAO,EAAE,kCAAkC;QAC3C,QAAQ,EAAE,UAAU;KACrB;CACF,CAAC;AAEF,gDAAgD;AAChD,MAAM,CAAC,MAAM,aAAa,GAAG,eAAe,CAAC,MAAM,CAAC;AAEpD,+DAA+D;AAC/D,MAAM,CAAC,MAAM,oBAAoB,GAAoD,CAAC,GAAG,EAAE;IACzF,MAAM,GAAG,GAAG,IAAI,GAAG,EAA6B,CAAC;IACjD,KAAK,MAAM,CAAC,IAAI,eAAe,EAAE,CAAC;QAChC,MAAM,IAAI,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;QACvC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACb,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;IAC5B,CAAC;IACD,OAAO,GAAsD,CAAC;AAChE,CAAC,CAAC,EAAE,CAAC;AAEL,+DAA+D;AAC/D,MAAM,CAAC,MAAM,oBAAoB,GAAoD,CAAC,GAAG,EAAE;IACzF,MAAM,GAAG,GAAG,IAAI,GAAG,EAA6B,CAAC;IACjD,KAAK,MAAM,CAAC,IAAI,eAAe,EAAE,CAAC;QAChC,MAAM,IAAI,GAAG,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;QACvC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QACb,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;IAC5B,CAAC;IACD,OAAO,GAAsD,CAAC;AAChE,CAAC,CAAC,EAAE,CAAC"}

package/dist/src/security/secrets-scanner.d.ts

@@ -0,0 +1,26 @@
+export interface ScanFinding {
+    /** Pattern rule name, e.g. "AWS Access Key ID" */
+    rule: string;
+    /** 1-based line number within the scanned text */
+    line: number;
+    /** The line with the secret value replaced by block characters */
+    redacted: string;
+}
+/**
+ * Scan a unified diff string for secrets.
+ * Only inspects lines that start with `+` (added lines); context lines and
+ * removed lines (`-`) are ignored.
+ *
+ * @param diff  Output of `git diff` or `git diff --cached`
+ * @returns     Array of findings with redacted values
+ */
+export declare function scanDiff(diff: string): ScanFinding[];
+/**
+ * Scan the full content of a file for secrets.
+ * Every line is inspected (no diff-prefix filtering).
+ *
+ * @param content  Raw file text
+ * @returns        Array of findings with redacted values
+ */
+export declare function scanFile(content: string): ScanFinding[];
+//# sourceMappingURL=secrets-scanner.d.ts.map

package/dist/src/security/secrets-scanner.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"secrets-scanner.d.ts","sourceRoot":"","sources":["../../../src/security/secrets-scanner.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,WAAW;IAC1B,kDAAkD;IAClD,IAAI,EAAE,MAAM,CAAC;IACb,kDAAkD;IAClD,IAAI,EAAE,MAAM,CAAC;IACb,kEAAkE;IAClE,QAAQ,EAAE,MAAM,CAAC;CAClB;AAqCD;;;;;;;GAOG;AACH,wBAAgB,QAAQ,CAAC,IAAI,EAAE,MAAM,GAAG,WAAW,EAAE,CAapD;AAED;;;;;;GAMG;AACH,wBAAgB,QAAQ,CAAC,OAAO,EAAE,MAAM,GAAG,WAAW,EAAE,CAGvD"}

package/dist/src/security/secrets-scanner.js

@@ -0,0 +1,62 @@
+import { SECRET_PATTERNS } from './secrets-patterns.js';
+// ── Helpers ──────────────────────────────────────────────────────────────────
+const REDACT_CHAR = '█';
+/** Replace the matched secret value with block characters. */
+function redactLine(line, match) {
+    // Prefer capture group 1 (the actual secret) over the full match
+    const secret = match[1] ?? match[0];
+    if (!secret)
+        return line;
+    return line.replace(secret, REDACT_CHAR.repeat(secret.length));
+}
+/** Scan an array of {text, originalLineNumber} pairs against all patterns. */
+function scanEntries(entries) {
+    const findings = [];
+    for (const { text, lineNumber } of entries) {
+        for (const { name, pattern } of SECRET_PATTERNS) {
+            const match = text.match(pattern);
+            if (match) {
+                findings.push({
+                    rule: name,
+                    line: lineNumber,
+                    redacted: redactLine(text, match),
+                });
+                break; // One finding per line — first match wins
+            }
+        }
+    }
+    return findings;
+}
+// ── Public API ───────────────────────────────────────────────────────────────
+/**
+ * Scan a unified diff string for secrets.
+ * Only inspects lines that start with `+` (added lines); context lines and
+ * removed lines (`-`) are ignored.
+ *
+ * @param diff  Output of `git diff` or `git diff --cached`
+ * @returns     Array of findings with redacted values
+ */
+export function scanDiff(diff) {
+    const lines = diff.split('\n');
+    const addedEntries = [];
+    for (let i = 0; i < lines.length; i++) {
+        const line = lines[i];
+        // Skip diff meta-headers (+++/---/@@/diff/index) and removed lines
+        if (line.startsWith('+') && !line.startsWith('+++')) {
+            addedEntries.push({ text: line.slice(1), lineNumber: i + 1 });
+        }
+    }
+    return scanEntries(addedEntries);
+}
+/**
+ * Scan the full content of a file for secrets.
+ * Every line is inspected (no diff-prefix filtering).
+ *
+ * @param content  Raw file text
+ * @returns        Array of findings with redacted values
+ */
+export function scanFile(content) {
+    const entries = content.split('\n').map((text, i) => ({ text, lineNumber: i + 1 }));
+    return scanEntries(entries);
+}
+//# sourceMappingURL=secrets-scanner.js.map

package/dist/src/security/secrets-scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"secrets-scanner.js","sourceRoot":"","sources":["../../../src/security/secrets-scanner.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,eAAe,EAAE,MAAM,uBAAuB,CAAC;AAaxD,gFAAgF;AAEhF,MAAM,WAAW,GAAG,GAAG,CAAC;AAExB,8DAA8D;AAC9D,SAAS,UAAU,CAAC,IAAY,EAAE,KAAuB;IACvD,iEAAiE;IACjE,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC;IACpC,IAAI,CAAC,MAAM;QAAE,OAAO,IAAI,CAAC;IACzB,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC;AACjE,CAAC;AAED,8EAA8E;AAC9E,SAAS,WAAW,CAAC,OAAoD;IACvE,MAAM,QAAQ,GAAkB,EAAE,CAAC;IAEnC,KAAK,MAAM,EAAE,IAAI,EAAE,UAAU,EAAE,IAAI,OAAO,EAAE,CAAC;QAC3C,KAAK,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,eAAe,EAAE,CAAC;YAChD,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;YAClC,IAAI,KAAK,EAAE,CAAC;gBACV,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,IAAI;oBACV,IAAI,EAAE,UAAU;oBAChB,QAAQ,EAAE,UAAU,CAAC,IAAI,EAAE,KAAK,CAAC;iBAClC,CAAC,CAAC;gBACH,MAAM,CAAC,0CAA0C;YACnD,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,gFAAgF;AAEhF;;;;;;;GAOG;AACH,MAAM,UAAU,QAAQ,CAAC,IAAY;IACnC,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC/B,MAAM,YAAY,GAAgD,EAAE,CAAC;IAErE,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;QACtB,mEAAmE;QACnE,IAAI,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,UAAU,CAAC,KAAK,CAAC,EAAE,CAAC;YACpD,YAAY,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,UAAU,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QAChE,CAAC;IACH,CAAC;IAED,OAAO,WAAW,CAAC,YAAY,CAAC,CAAC;AACnC,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,QAAQ,CAAC,OAAe;IACtC,MAAM,OAAO,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,UAAU,EAAE,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC;IACpF,OAAO,WAAW,CAAC,OAAO,CAAC,CAAC;AAC9B,CAAC"}

package/dist/src/skills/classifier.d.ts

@@ -0,0 +1,9 @@
+import type { SkillMeta } from './registry.js';
+export interface ClassifierResult {
+    skillName: string;
+}
+export interface TaskClassifier {
+    classify(title: string, description: string, skills: SkillMeta[]): Promise<ClassifierResult>;
+}
+export declare function createClassifier(apiKey: string): TaskClassifier;
+//# sourceMappingURL=classifier.d.ts.map

package/dist/src/skills/classifier.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"classifier.d.ts","sourceRoot":"","sources":["../../../src/skills/classifier.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,eAAe,CAAC;AAE/C,MAAM,WAAW,gBAAgB;IAC/B,SAAS,EAAE,MAAM,CAAC;CACnB;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,CAAC,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAAC;CAC9F;AAED,wBAAgB,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,cAAc,CA+C/D"}

package/dist/src/skills/classifier.js

@@ -0,0 +1,41 @@
+import Anthropic from '@anthropic-ai/sdk';
+export function createClassifier(apiKey) {
+    const client = new Anthropic({ apiKey });
+    return {
+        async classify(title, description, skills) {
+            const fallback = skills[0]?.name ?? 'backend-typescript';
+            try {
+                const skillList = skills
+                    .map((s) => `- ${s.name}: ${s.description}`)
+                    .join('\n');
+                const response = await client.messages.create({
+                    model: 'claude-haiku-4-5-20251001',
+                    max_tokens: 50,
+                    messages: [
+                        {
+                            role: 'user',
+                            content: `You are a task classifier for a software engineering team.
+Given a task and a list of available skills, return the single most relevant skill name.
+Return ONLY the skill name, nothing else.
+
+Available skills:
+${skillList}
+
+Task title: ${title}
+Task description: ${description ?? ''}`,
+                        },
+                    ],
+                });
+                const text = response.content[0].type === 'text'
+                    ? response.content[0].text.trim()
+                    : fallback;
+                const valid = skills.find((s) => s.name === text);
+                return { skillName: valid?.name ?? fallback };
+            }
+            catch {
+                return { skillName: fallback };
+            }
+        },
+    };
+}
+//# sourceMappingURL=classifier.js.map

package/dist/src/skills/classifier.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"classifier.js","sourceRoot":"","sources":["../../../src/skills/classifier.ts"],"names":[],"mappings":"AAAA,OAAO,SAAS,MAAM,mBAAmB,CAAC;AAW1C,MAAM,UAAU,gBAAgB,CAAC,MAAc;IAC7C,MAAM,MAAM,GAAG,IAAI,SAAS,CAAC,EAAE,MAAM,EAAE,CAAC,CAAC;IAEzC,OAAO;QACL,KAAK,CAAC,QAAQ,CACZ,KAAa,EACb,WAAmB,EACnB,MAAmB;YAEnB,MAAM,QAAQ,GAAG,MAAM,CAAC,CAAC,CAAC,EAAE,IAAI,IAAI,oBAAoB,CAAC;YAEzD,IAAI,CAAC;gBACH,MAAM,SAAS,GAAG,MAAM;qBACrB,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,WAAW,EAAE,CAAC;qBAC3C,IAAI,CAAC,IAAI,CAAC,CAAC;gBAEd,MAAM,QAAQ,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC;oBAC5C,KAAK,EAAE,2BAA2B;oBAClC,UAAU,EAAE,EAAE;oBACd,QAAQ,EAAE;wBACR;4BACE,IAAI,EAAE,MAAM;4BACZ,OAAO,EAAE;;;;;EAKrB,SAAS;;cAEG,KAAK;oBACC,WAAW,IAAI,EAAE,EAAE;yBAC1B;qBACF;iBACF,CAAC,CAAC;gBAEH,MAAM,IAAI,GACR,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,IAAI,KAAK,MAAM;oBACjC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE;oBACjC,CAAC,CAAC,QAAQ,CAAC;gBAEf,MAAM,KAAK,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,IAAI,CAAC,CAAC;gBAClD,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,IAAI,IAAI,QAAQ,EAAE,CAAC;YAChD,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,EAAE,SAAS,EAAE,QAAQ,EAAE,CAAC;YACjC,CAAC;QACH,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/src/skills/registry.d.ts

@@ -0,0 +1,16 @@
+export interface SkillMeta {
+    name: string;
+    description: string;
+    domain: string;
+    subdomain: string;
+    source: 'bundled' | 'local';
+}
+export interface Skill extends SkillMeta {
+    content: string;
+}
+export interface SkillRegistry {
+    listSkills(): SkillMeta[];
+    getSkill(name: string): Skill | undefined;
+}
+export declare function createSkillRegistry(localSkillsDir: string, bundledSkillsDir?: string): SkillRegistry;
+//# sourceMappingURL=registry.d.ts.map

package/dist/src/skills/registry.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"registry.d.ts","sourceRoot":"","sources":["../../../src/skills/registry.ts"],"names":[],"mappings":"AAGA,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,MAAM,EAAE,SAAS,GAAG,OAAO,CAAC;CAC7B;AAED,MAAM,WAAW,KAAM,SAAQ,SAAS;IACtC,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,aAAa;IAC5B,UAAU,IAAI,SAAS,EAAE,CAAC;IAC1B,QAAQ,CAAC,IAAI,EAAE,MAAM,GAAG,KAAK,GAAG,SAAS,CAAC;CAC3C;AAmCD,wBAAgB,mBAAmB,CAAC,cAAc,EAAE,MAAM,EAAE,gBAAgB,CAAC,EAAE,MAAM,GAAG,aAAa,CAyBpG"}