web-agent-bridge 3.2.0 → 3.3.0

package/server/services/modules/dark-pattern.js

@@ -1,66 +1,66 @@
-/**
- * WAB Dark Pattern Detector (03-dark-pattern) — FULLY CLOSED
- * DSA compliance engine detects all 17 OECD dark patterns.
- * All detection rules are proprietary.
- *
- * Powered by WAB — Web Agent Bridge
- * https://www.webagentbridge.com
- */
-
-'use strict';
-
-let darkPatternEngine;
-try { darkPatternEngine = require('./dark-pattern-engine'); } catch { darkPatternEngine = null; }
-
-function createRouter(express) {
-  const router = express.Router();
-
-  router.post('/audit', async (req, res) => {
-    const { url: targetUrl } = req.body;
-    if (!targetUrl) return res.status(400).json({ error: 'url required' });
-    if (!darkPatternEngine) return res.status(503).json({ error: 'Dark pattern engine not available', code: 'MODULE_UNAVAILABLE' });
-    try {
-      const report = await darkPatternEngine.generateReport(targetUrl);
-      res.json(report);
-    } catch (e) { res.status(500).json({ error: e.message }); }
-  });
-
-  router.post('/scan', (req, res) => {
-    const { html, page_url } = req.body;
-    if (!html) return res.status(400).json({ error: 'html content required' });
-    if (!darkPatternEngine) return res.status(503).json({ error: 'Dark pattern engine not available', code: 'MODULE_UNAVAILABLE' });
-    const result = darkPatternEngine.scanContent(html, page_url);
-    res.json(result);
-  });
-
-  router.get('/patterns', (req, res) => {
-    res.json({ total: 17, categories: [
-      { id: 'DP001', name: 'False Urgency', severity: 'HIGH', dsa_article: 'Article 25(1)(a)' },
-      { id: 'DP002', name: 'Scarcity Manipulation', severity: 'HIGH', dsa_article: 'Article 25(1)(a)' },
-      { id: 'DP003', name: 'Hidden Costs', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
-      { id: 'DP004', name: 'Trick Question', severity: 'HIGH', dsa_article: 'Article 25(1)(c)' },
-      { id: 'DP005', name: 'Roach Motel', severity: 'CRITICAL', dsa_article: 'Article 25(1)(d)' },
-      { id: 'DP006', name: 'Confirmshaming', severity: 'MEDIUM', dsa_article: 'Article 25(1)(a)' },
-      { id: 'DP007', name: 'Forced Continuity', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
-      { id: 'DP008', name: 'Misdirection', severity: 'MEDIUM', dsa_article: 'Article 25(1)(a)' },
-      { id: 'DP009', name: 'Disguised Ads', severity: 'HIGH', dsa_article: 'Article 26' },
-      { id: 'DP010', name: 'Nagging', severity: 'LOW', dsa_article: 'Article 25(1)(a)' },
-      { id: 'DP011', name: 'Basket Sneaking', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
-      { id: 'DP012', name: 'Bait and Switch', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
-      { id: 'DP013', name: 'Privacy Zuckering', severity: 'HIGH', dsa_article: 'Article 25(1)(c)' },
-      { id: 'DP014', name: 'Fake Social Proof', severity: 'HIGH', dsa_article: 'Article 25(1)(a)' },
-      { id: 'DP015', name: 'Interface Interference', severity: 'MEDIUM', dsa_article: 'Article 25(1)(a)' },
-      { id: 'DP016', name: 'Drip Pricing', severity: 'HIGH', dsa_article: 'Article 25(1)(b)' },
-      { id: 'DP017', name: 'Disguised Subscription', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
-    ]});
-  });
-
-  router.get('/stats', (req, res) => {
-    if (!darkPatternEngine) return res.json({ status: 'engine_not_loaded', patterns_tracked: 17 });
-    res.json(darkPatternEngine.getStats());
-  });
-
-  return router;
-}
-
-module.exports = { createRouter };
+/**
+ * WAB Dark Pattern Detector (03-dark-pattern) — FULLY CLOSED
+ * DSA compliance engine detects all 17 OECD dark patterns.
+ * All detection rules are proprietary.
+ *
+ * Powered by WAB — Web Agent Bridge
+ * https://www.webagentbridge.com
+ */
+
+'use strict';
+
+let darkPatternEngine;
+try { darkPatternEngine = require('./dark-pattern-engine'); } catch { darkPatternEngine = null; }
+
+function createRouter(express) {
+  const router = express.Router();
+
+  router.post('/audit', async (req, res) => {
+    const { url: targetUrl } = req.body;
+    if (!targetUrl) return res.status(400).json({ error: 'url required' });
+    if (!darkPatternEngine) return res.status(503).json({ error: 'Dark pattern engine not available', code: 'MODULE_UNAVAILABLE' });
+    try {
+      const report = await darkPatternEngine.generateReport(targetUrl);
+      res.json(report);
+    } catch (e) { res.status(500).json({ error: e.message }); }
+  });
+
+  router.post('/scan', (req, res) => {
+    const { html, page_url } = req.body;
+    if (!html) return res.status(400).json({ error: 'html content required' });
+    if (!darkPatternEngine) return res.status(503).json({ error: 'Dark pattern engine not available', code: 'MODULE_UNAVAILABLE' });
+    const result = darkPatternEngine.scanContent(html, page_url);
+    res.json(result);
+  });
+
+  router.get('/patterns', (req, res) => {
+    res.json({ total: 17, categories: [
+      { id: 'DP001', name: 'False Urgency', severity: 'HIGH', dsa_article: 'Article 25(1)(a)' },
+      { id: 'DP002', name: 'Scarcity Manipulation', severity: 'HIGH', dsa_article: 'Article 25(1)(a)' },
+      { id: 'DP003', name: 'Hidden Costs', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
+      { id: 'DP004', name: 'Trick Question', severity: 'HIGH', dsa_article: 'Article 25(1)(c)' },
+      { id: 'DP005', name: 'Roach Motel', severity: 'CRITICAL', dsa_article: 'Article 25(1)(d)' },
+      { id: 'DP006', name: 'Confirmshaming', severity: 'MEDIUM', dsa_article: 'Article 25(1)(a)' },
+      { id: 'DP007', name: 'Forced Continuity', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
+      { id: 'DP008', name: 'Misdirection', severity: 'MEDIUM', dsa_article: 'Article 25(1)(a)' },
+      { id: 'DP009', name: 'Disguised Ads', severity: 'HIGH', dsa_article: 'Article 26' },
+      { id: 'DP010', name: 'Nagging', severity: 'LOW', dsa_article: 'Article 25(1)(a)' },
+      { id: 'DP011', name: 'Basket Sneaking', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
+      { id: 'DP012', name: 'Bait and Switch', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
+      { id: 'DP013', name: 'Privacy Zuckering', severity: 'HIGH', dsa_article: 'Article 25(1)(c)' },
+      { id: 'DP014', name: 'Fake Social Proof', severity: 'HIGH', dsa_article: 'Article 25(1)(a)' },
+      { id: 'DP015', name: 'Interface Interference', severity: 'MEDIUM', dsa_article: 'Article 25(1)(a)' },
+      { id: 'DP016', name: 'Drip Pricing', severity: 'HIGH', dsa_article: 'Article 25(1)(b)' },
+      { id: 'DP017', name: 'Disguised Subscription', severity: 'CRITICAL', dsa_article: 'Article 25(1)(b)' },
+    ]});
+  });
+
+  router.get('/stats', (req, res) => {
+    if (!darkPatternEngine) return res.json({ status: 'engine_not_loaded', patterns_tracked: 17 });
+    res.json(darkPatternEngine.getStats());
+  });
+
+  return router;
+}
+
+module.exports = { createRouter };

package/server/services/modules/gov-intelligence.js

@@ -1,45 +1,45 @@
-/**
- * WAB Gov Intelligence (05-gov-intelligence) — FULLY CLOSED
- * Regulatory compliance and government intelligence database.
- * All data and logic is proprietary.
- *
- * Powered by WAB — Web Agent Bridge
- * https://www.webagentbridge.com
- */
-
-'use strict';
-
-let govEngine;
-try { govEngine = require('./gov-engine'); } catch { govEngine = null; }
-
-function createRouter(express) {
-  const router = express.Router();
-
-  router.get('/check/:domain', (req, res) => {
-    if (!govEngine) return res.status(503).json({ error: 'Gov intelligence engine not available', code: 'MODULE_UNAVAILABLE' });
-    const result = govEngine.checkDomain(req.params.domain);
-    res.json(result);
-  });
-
-  router.get('/regulations', (req, res) => {
-    const { country, sector } = req.query;
-    if (!govEngine) return res.status(503).json({ error: 'Gov intelligence engine not available', code: 'MODULE_UNAVAILABLE' });
-    res.json(govEngine.getRegulations(country, sector));
-  });
-
-  router.post('/compliance-report', (req, res) => {
-    const { domain, country } = req.body;
-    if (!domain) return res.status(400).json({ error: 'domain required' });
-    if (!govEngine) return res.status(503).json({ error: 'Gov intelligence engine not available', code: 'MODULE_UNAVAILABLE' });
-    res.json(govEngine.generateComplianceReport(domain, country));
-  });
-
-  router.get('/stats', (req, res) => {
-    if (!govEngine) return res.json({ status: 'offline' });
-    res.json(govEngine.getStats());
-  });
-
-  return router;
-}
-
-module.exports = { createRouter };
+/**
+ * WAB Gov Intelligence (05-gov-intelligence) — FULLY CLOSED
+ * Regulatory compliance and government intelligence database.
+ * All data and logic is proprietary.
+ *
+ * Powered by WAB — Web Agent Bridge
+ * https://www.webagentbridge.com
+ */
+
+'use strict';
+
+let govEngine;
+try { govEngine = require('./gov-engine'); } catch { govEngine = null; }
+
+function createRouter(express) {
+  const router = express.Router();
+
+  router.get('/check/:domain', (req, res) => {
+    if (!govEngine) return res.status(503).json({ error: 'Gov intelligence engine not available', code: 'MODULE_UNAVAILABLE' });
+    const result = govEngine.checkDomain(req.params.domain);
+    res.json(result);
+  });
+
+  router.get('/regulations', (req, res) => {
+    const { country, sector } = req.query;
+    if (!govEngine) return res.status(503).json({ error: 'Gov intelligence engine not available', code: 'MODULE_UNAVAILABLE' });
+    res.json(govEngine.getRegulations(country, sector));
+  });
+
+  router.post('/compliance-report', (req, res) => {
+    const { domain, country } = req.body;
+    if (!domain) return res.status(400).json({ error: 'domain required' });
+    if (!govEngine) return res.status(503).json({ error: 'Gov intelligence engine not available', code: 'MODULE_UNAVAILABLE' });
+    res.json(govEngine.generateComplianceReport(domain, country));
+  });
+
+  router.get('/stats', (req, res) => {
+    if (!govEngine) return res.json({ status: 'offline' });
+    res.json(govEngine.getStats());
+  });
+
+  return router;
+}
+
+module.exports = { createRouter };

package/server/services/modules/neural.js

@@ -1,55 +1,55 @@
-/**
- * WAB Neural Engine (07-neural) — FULLY CLOSED
- * Local AI inference engine. All logic is proprietary.
- * Only the API interface is exposed here.
- *
- * Powered by WAB — Web Agent Bridge
- * https://www.webagentbridge.com
- */
-
-'use strict';
-
-let neuralEngine;
-try { neuralEngine = require('./neural-engine'); } catch { neuralEngine = null; }
-
-function createRouter(express) {
-  const router = express.Router();
-
-  router.post('/analyze-url', (req, res) => {
-    const { url: targetUrl } = req.body;
-    if (!targetUrl) return res.status(400).json({ error: 'url required' });
-    if (!neuralEngine) return res.status(503).json({ error: 'Neural engine not available', code: 'MODULE_UNAVAILABLE' });
-    const result = neuralEngine.analyzeUrl(targetUrl);
-    res.json(result);
-  });
-
-  router.post('/classify', (req, res) => {
-    const { content, categories } = req.body;
-    if (!content) return res.status(400).json({ error: 'content required' });
-    if (!neuralEngine) return res.status(503).json({ error: 'Neural engine not available', code: 'MODULE_UNAVAILABLE' });
-    const result = neuralEngine.classify(content, categories);
-    res.json(result);
-  });
-
-  router.post('/embeddings', (req, res) => {
-    const { text } = req.body;
-    if (!text) return res.status(400).json({ error: 'text required' });
-    if (!neuralEngine) return res.status(503).json({ error: 'Neural engine not available', code: 'MODULE_UNAVAILABLE' });
-    const result = neuralEngine.embed(text);
-    res.json(result);
-  });
-
-  router.get('/models', (req, res) => {
-    if (!neuralEngine) return res.json({ models: [], message: 'Neural engine not loaded' });
-    res.json(neuralEngine.listModels());
-  });
-
-  router.get('/stats', (req, res) => {
-    if (!neuralEngine) return res.json({ status: 'offline' });
-    res.json(neuralEngine.getStats());
-  });
-
-  return router;
-}
-
-module.exports = { createRouter };
+/**
+ * WAB Neural Engine (07-neural) — FULLY CLOSED
+ * Local AI inference engine. All logic is proprietary.
+ * Only the API interface is exposed here.
+ *
+ * Powered by WAB — Web Agent Bridge
+ * https://www.webagentbridge.com
+ */
+
+'use strict';
+
+let neuralEngine;
+try { neuralEngine = require('./neural-engine'); } catch { neuralEngine = null; }
+
+function createRouter(express) {
+  const router = express.Router();
+
+  router.post('/analyze-url', (req, res) => {
+    const { url: targetUrl } = req.body;
+    if (!targetUrl) return res.status(400).json({ error: 'url required' });
+    if (!neuralEngine) return res.status(503).json({ error: 'Neural engine not available', code: 'MODULE_UNAVAILABLE' });
+    const result = neuralEngine.analyzeUrl(targetUrl);
+    res.json(result);
+  });
+
+  router.post('/classify', (req, res) => {
+    const { content, categories } = req.body;
+    if (!content) return res.status(400).json({ error: 'content required' });
+    if (!neuralEngine) return res.status(503).json({ error: 'Neural engine not available', code: 'MODULE_UNAVAILABLE' });
+    const result = neuralEngine.classify(content, categories);
+    res.json(result);
+  });
+
+  router.post('/embeddings', (req, res) => {
+    const { text } = req.body;
+    if (!text) return res.status(400).json({ error: 'text required' });
+    if (!neuralEngine) return res.status(503).json({ error: 'Neural engine not available', code: 'MODULE_UNAVAILABLE' });
+    const result = neuralEngine.embed(text);
+    res.json(result);
+  });
+
+  router.get('/models', (req, res) => {
+    if (!neuralEngine) return res.json({ models: [], message: 'Neural engine not loaded' });
+    res.json(neuralEngine.listModels());
+  });
+
+  router.get('/stats', (req, res) => {
+    if (!neuralEngine) return res.json({ status: 'offline' });
+    res.json(neuralEngine.getStats());
+  });
+
+  return router;
+}
+
+module.exports = { createRouter };

package/server/services/modules/notary.js

@@ -1,49 +1,49 @@
-/**
- * WAB Notary (02-notary) — FULLY CLOSED
- * Cryptographic certificate system for price discrimination evidence.
- * Signing algorithm is proprietary.
- *
- * Powered by WAB — Web Agent Bridge
- * https://www.webagentbridge.com
- */
-
-'use strict';
-
-let notaryEngine;
-try { notaryEngine = require('./notary-engine'); } catch { notaryEngine = null; }
-
-function createRouter(express) {
-  const router = express.Router();
-
-  router.post('/price', (req, res) => {
-    const { platform, productId, priceShown } = req.body;
-    if (!platform || !productId || priceShown === undefined) {
-      return res.status(400).json({ error: 'platform, productId, and priceShown required' });
-    }
-    if (!notaryEngine) return res.status(503).json({ error: 'Notary engine not available', code: 'MODULE_UNAVAILABLE' });
-    const cert = notaryEngine.issuePriceCertificate(req.body);
-    res.status(201).json(cert);
-  });
-
-  router.post('/transaction', (req, res) => {
-    if (!notaryEngine) return res.status(503).json({ error: 'Notary engine not available', code: 'MODULE_UNAVAILABLE' });
-    const cert = notaryEngine.issueTransactionCertificate(req.body);
-    res.status(201).json(cert);
-  });
-
-  router.get('/verify/:certId', (req, res) => {
-    if (!notaryEngine) return res.status(503).json({ error: 'Notary engine not available', code: 'MODULE_UNAVAILABLE' });
-    const result = notaryEngine.verifyCertificate(req.params.certId);
-    if (!result) return res.status(404).json({ error: 'Certificate not found' });
-    res.json(result);
-  });
-
-  router.get('/stats', (req, res) => {
-    if (!notaryEngine) return res.json({ status: 'offline' });
-    res.json(notaryEngine.getStats());
-  });
-
-  return router;
-}
-
-module.exports = { createRouter };
+/**
+ * WAB Notary (02-notary) — FULLY CLOSED
+ * Cryptographic certificate system for price discrimination evidence.
+ * Signing algorithm is proprietary.
+ *
+ * Powered by WAB — Web Agent Bridge
+ * https://www.webagentbridge.com
+ */
+
+'use strict';
+
+let notaryEngine;
+try { notaryEngine = require('./notary-engine'); } catch { notaryEngine = null; }
+
+function createRouter(express) {
+  const router = express.Router();
+
+  router.post('/price', (req, res) => {
+    const { platform, productId, priceShown } = req.body;
+    if (!platform || !productId || priceShown === undefined) {
+      return res.status(400).json({ error: 'platform, productId, and priceShown required' });
+    }
+    if (!notaryEngine) return res.status(503).json({ error: 'Notary engine not available', code: 'MODULE_UNAVAILABLE' });
+    const cert = notaryEngine.issuePriceCertificate(req.body);
+    res.status(201).json(cert);
+  });
+
+  router.post('/transaction', (req, res) => {
+    if (!notaryEngine) return res.status(503).json({ error: 'Notary engine not available', code: 'MODULE_UNAVAILABLE' });
+    const cert = notaryEngine.issueTransactionCertificate(req.body);
+    res.status(201).json(cert);
+  });
+
+  router.get('/verify/:certId', (req, res) => {
+    if (!notaryEngine) return res.status(503).json({ error: 'Notary engine not available', code: 'MODULE_UNAVAILABLE' });
+    const result = notaryEngine.verifyCertificate(req.params.certId);
+    if (!result) return res.status(404).json({ error: 'Certificate not found' });
+    res.json(result);
+  });
+
+  router.get('/stats', (req, res) => {
+    if (!notaryEngine) return res.json({ status: 'offline' });
+    res.json(notaryEngine.getStats());
+  });
+
+  return router;
+}
+
+module.exports = { createRouter };

package/server/services/modules/price-time-machine.js

@@ -1,86 +1,86 @@
-/**
- * WAB Price Time Machine (06-price-time-machine) — PUBLIC API, PRIVATE ENGINE
- * Historical price tracking and fake discount detection.
- * API is open, database and detection algorithm are closed.
- *
- * Powered by WAB — Web Agent Bridge
- * https://www.webagentbridge.com
- */
-
-'use strict';
-
-const crypto = require('crypto');
-
-const priceStore = new Map();
-const alertStore = new Map();
-
-let priceEngine;
-try { priceEngine = require('./price-engine'); } catch { priceEngine = null; }
-
-function createRouter(express) {
-  const router = express.Router();
-
-  router.post('/track', (req, res) => {
-    const { platform, product_id, product_name, price, currency, url: productUrl } = req.body;
-    if (!platform || !product_id || price === undefined) {
-      return res.status(400).json({ error: 'platform, product_id, and price are required' });
-    }
-
-    const key = `${platform}:${product_id}`;
-    if (!priceStore.has(key)) priceStore.set(key, { entries: [], metadata: { platform, product_id, product_name, currency: currency || 'USD', url: productUrl } });
-    const record = priceStore.get(key);
-    record.entries.push({ price: parseFloat(price), timestamp: Date.now(), date: new Date().toISOString() });
-    if (record.entries.length > 5000) record.entries.splice(0, record.entries.length - 5000);
-
-    const prices = record.entries.map(e => e.price);
-    const avg = prices.reduce((a, b) => a + b, 0) / prices.length;
-    const min = Math.min(...prices);
-    const max = Math.max(...prices);
-
-    let fakeDiscount = null;
-    if (priceEngine) {
-      fakeDiscount = priceEngine.detectFakeDiscount(record.entries);
-    }
-
-    res.json({
-      tracked: true, product_id, platform, current_price: price, data_points: record.entries.length,
-      statistics: { average: parseFloat(avg.toFixed(2)), min, max, range_pct: parseFloat(((max - min) / avg * 100).toFixed(1)) },
-      fake_discount: fakeDiscount,
-    });
-  });
-
-  router.get('/history/:platform/:productId', (req, res) => {
-    const key = `${req.params.platform}:${req.params.productId}`;
-    const record = priceStore.get(key);
-    if (!record) return res.status(404).json({ error: 'No price history for this product' });
-    const days = parseInt(req.query.days) || 30;
-    const cutoff = Date.now() - days * 86400000;
-    const filtered = record.entries.filter(e => e.timestamp >= cutoff);
-    res.json({ ...record.metadata, period_days: days, data_points: filtered.length, history: filtered });
-  });
-
-  router.get('/compare', (req, res) => {
-    const { product_name } = req.query;
-    if (!product_name) return res.status(400).json({ error: 'product_name query param required' });
-    const results = [];
-    const search = product_name.toLowerCase();
-    for (const [key, record] of priceStore) {
-      if (record.metadata.product_name && record.metadata.product_name.toLowerCase().includes(search)) {
-        const prices = record.entries.map(e => e.price);
-        results.push({ platform: record.metadata.platform, product_id: record.metadata.product_id, product_name: record.metadata.product_name,
-          current_price: prices[prices.length - 1], lowest_price: Math.min(...prices), highest_price: Math.max(...prices), data_points: prices.length });
-      }
-    }
-    res.json({ query: product_name, results: results.sort((a, b) => a.current_price - b.current_price) });
-  });
-
-  router.get('/stats', (req, res) => {
-    let totalPoints = 0;
-    for (const r of priceStore.values()) totalPoints += r.entries.length;
-    res.json({ products_tracked: priceStore.size, total_data_points: totalPoints, alerts_active: alertStore.size });
-  });
-
-  return router;
-}
-
-module.exports = { createRouter };
+/**
+ * WAB Price Time Machine (06-price-time-machine) — PUBLIC API, PRIVATE ENGINE
+ * Historical price tracking and fake discount detection.
+ * API is open, database and detection algorithm are closed.
+ *
+ * Powered by WAB — Web Agent Bridge
+ * https://www.webagentbridge.com
+ */
+
+'use strict';
+
+const crypto = require('crypto');
+
+const priceStore = new Map();
+const alertStore = new Map();
+
+let priceEngine;
+try { priceEngine = require('./price-engine'); } catch { priceEngine = null; }
+
+function createRouter(express) {
+  const router = express.Router();
+
+  router.post('/track', (req, res) => {
+    const { platform, product_id, product_name, price, currency, url: productUrl } = req.body;
+    if (!platform || !product_id || price === undefined) {
+      return res.status(400).json({ error: 'platform, product_id, and price are required' });
+    }
+
+    const key = `${platform}:${product_id}`;
+    if (!priceStore.has(key)) priceStore.set(key, { entries: [], metadata: { platform, product_id, product_name, currency: currency || 'USD', url: productUrl } });
+    const record = priceStore.get(key);
+    record.entries.push({ price: parseFloat(price), timestamp: Date.now(), date: new Date().toISOString() });
+    if (record.entries.length > 5000) record.entries.splice(0, record.entries.length - 5000);
+
+    const prices = record.entries.map(e => e.price);
+    const avg = prices.reduce((a, b) => a + b, 0) / prices.length;
+    const min = Math.min(...prices);
+    const max = Math.max(...prices);
+
+    let fakeDiscount = null;
+    if (priceEngine) {
+      fakeDiscount = priceEngine.detectFakeDiscount(record.entries);
+    }
+
+    res.json({
+      tracked: true, product_id, platform, current_price: price, data_points: record.entries.length,
+      statistics: { average: parseFloat(avg.toFixed(2)), min, max, range_pct: parseFloat(((max - min) / avg * 100).toFixed(1)) },
+      fake_discount: fakeDiscount,
+    });
+  });
+
+  router.get('/history/:platform/:productId', (req, res) => {
+    const key = `${req.params.platform}:${req.params.productId}`;
+    const record = priceStore.get(key);
+    if (!record) return res.status(404).json({ error: 'No price history for this product' });
+    const days = parseInt(req.query.days) || 30;
+    const cutoff = Date.now() - days * 86400000;
+    const filtered = record.entries.filter(e => e.timestamp >= cutoff);
+    res.json({ ...record.metadata, period_days: days, data_points: filtered.length, history: filtered });
+  });
+
+  router.get('/compare', (req, res) => {
+    const { product_name } = req.query;
+    if (!product_name) return res.status(400).json({ error: 'product_name query param required' });
+    const results = [];
+    const search = product_name.toLowerCase();
+    for (const [key, record] of priceStore) {
+      if (record.metadata.product_name && record.metadata.product_name.toLowerCase().includes(search)) {
+        const prices = record.entries.map(e => e.price);
+        results.push({ platform: record.metadata.platform, product_id: record.metadata.product_id, product_name: record.metadata.product_name,
+          current_price: prices[prices.length - 1], lowest_price: Math.min(...prices), highest_price: Math.max(...prices), data_points: prices.length });
+      }
+    }
+    res.json({ query: product_name, results: results.sort((a, b) => a.current_price - b.current_price) });
+  });
+
+  router.get('/stats', (req, res) => {
+    let totalPoints = 0;
+    for (const r of priceStore.values()) totalPoints += r.entries.length;
+    res.json({ products_tracked: priceStore.size, total_data_points: totalPoints, alerts_active: alertStore.size });
+  });
+
+  return router;
+}
+
+module.exports = { createRouter };