PyPI - dc-securex - Versions diffs - 2.29.7__py3-none-any.whl - Mend

dc-securex 2.29.7__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (28) hide show

dc_securex-2.29.7.dist-info/METADATA +1028 -0
dc_securex-2.29.7.dist-info/RECORD +28 -0
dc_securex-2.29.7.dist-info/WHEEL +5 -0
dc_securex-2.29.7.dist-info/licenses/LICENSE +21 -0
dc_securex-2.29.7.dist-info/top_level.txt +2 -0
securex/__init__.py +18 -0
securex/backup/__init__.py +5 -0
securex/backup/manager.py +792 -0
securex/client.py +329 -0
securex/handlers/__init__.py +8 -0
securex/handlers/channel.py +97 -0
securex/handlers/member.py +110 -0
securex/handlers/role.py +74 -0
securex/models.py +156 -0
securex/utils/__init__.py +5 -0
securex/utils/punishment.py +124 -0
securex/utils/whitelist.py +129 -0
securex/workers/__init__.py +8 -0
securex/workers/action_worker.py +115 -0
securex/workers/cleanup_worker.py +94 -0
securex/workers/guild_worker.py +186 -0
securex/workers/log_worker.py +88 -0
tests/__init__.py +9 -0
tests/test_coverage_client.py +210 -0
tests/test_coverage_handlers.py +341 -0
tests/test_coverage_manager.py +504 -0
tests/test_coverage_utils.py +177 -0
tests/test_coverage_workers.py +297 -0

securex/client.py ADDED Viewed

@@ -0,0 +1,329 @@
+"""
+SecureX SDK - Main Client
+Backend-only anti-nuke protection system
+"""
+import discord
+import asyncio
+from pathlib import Path
+from typing import Dict, List, Callable, Optional
+from .backup.manager import BackupManager
+from .handlers.channel import ChannelHandler
+from .handlers.role import RoleHandler
+from .handlers.member import MemberHandler
+from .utils.whitelist import WhitelistManager
+from .utils.punishment import PunishmentExecutor
+from .models import ThreatEvent, BackupInfo
+from .workers import ActionWorker, CleanupWorker, LogWorker, GuildWorker
+class SecureX:
+    """
+    Main SecureX SDK class for anti-nuke protection.
+    Backend-only - no UI, no commands, just pure protection logic.
+    """
+    def __init__(
+        self,
+        bot: discord.Client,
+        backup_dir: str = "./data/backups",
+        punishments: Optional[Dict[str, str]] = None,
+        timeout_duration: int = 600,
+        notify_user: bool = True
+    ):
+        """
+        Initialize SecureX SDK.
+        Args:
+            bot: Your discord.Client or commands.Bot instance
+            backup_dir: Directory to store backups (default: ./data/backups)
+            punishments: Dict mapping violation types to punishment actions
+            timeout_duration: Duration in seconds for timeout punishment (default: 600)
+            notify_user: Whether to DM violators about punishment (default: True)
+        """
+        self.bot = bot
+        self.backup_dir = Path(backup_dir)
+        self.backup_dir.mkdir(parents=True, exist_ok=True)
+        self.backup_manager = BackupManager(self)
+        self.whitelist = WhitelistManager(self)
+        self._callbacks: Dict[str, List[Callable]] = {
+            'threat_detected': [],
+            'backup_completed': [],
+            'restore_completed': [],
+            'whitelist_changed': [],
+        }
+        self.punishments = {
+            "bot_add": "none",
+            "channel_create": "none",
+            "channel_delete": "none",
+            "channel_update": "none",
+            "role_create": "none",
+            "role_delete": "none",
+            "role_update": "none",
+            "member_ban": "none",
+            "member_kick": "none",
+            "member_unban": "none",
+            "member_update": "none",
+            "webhook_create": "none",
+            "webhook_delete": "none",
+            "webhook_update": "none",
+            "guild_update": "none"
+        }
+        self.punisher = PunishmentExecutor(bot)
+        self.timeout_duration = timeout_duration
+        self.notify_punished_user = notify_user
+        self.action_queue = asyncio.Queue(maxsize=1000)
+        self.log_queue = asyncio.Queue(maxsize=1000)
+        self.cleanup_queue = asyncio.Queue(maxsize=1000)
+        self.guild_queue = asyncio.Queue(maxsize=1000)
+        self.whitelist_cache = {}
+        self.punishment_cache = {}
+        self._worker_tasks = []
+        self.channel_handler = ChannelHandler(self)
+        self.role_handler = RoleHandler(self)
+        self.member_handler = MemberHandler(self)
+        # Initialize workers
+        self.action_worker = ActionWorker(self)
+        self.cleanup_worker = CleanupWorker(self)
+        self.log_worker = LogWorker(self)
+        self.guild_worker = GuildWorker(self)
+        self._register_audit_log_listener()
+        self._register_events()
+    def _register_audit_log_listener(self):
+        """Register INSTANT audit log event listener (v2.0 - 5-10ms response)"""
+        @self.bot.event
+        async def on_audit_log_entry_create(entry: discord.AuditLogEntry):
+            try:
+                await self.action_queue.put(entry)
+                await self.log_queue.put(entry)
+                await self.cleanup_queue.put(entry)
+                await self.guild_queue.put(entry)
+            except asyncio.QueueFull as e:
+                print(f"⚠️ Queue full: {e}")
+    def _register_events(self):
+        """Register Discord event listeners for restorations"""
+        @self.bot.event
+        async def on_guild_channel_delete(channel):
+            await self.channel_handler.on_channel_delete(channel)
+        @self.bot.event
+        async def on_guild_channel_update(before, after):
+            await self.channel_handler.on_channel_update(before, after)
+        @self.bot.event
+        async def on_guild_role_delete(role):
+            await self.role_handler.on_role_delete(role)
+        @self.bot.event
+        async def on_guild_role_update(before, after):
+            await self.role_handler.on_role_update(before, after)
+        @self.bot.event
+        async def on_member_ban(guild, user):
+            await self.member_handler.on_member_ban(guild, user)
+        @self.bot.event
+        async def on_member_update(before, after):
+            await self.member_handler.on_member_update(before, after)
+    def on(self, event_name: str):
+        """
+        Decorator to register callbacks for SDK events.
+        Usage:
+            @sx.on('threat_detected')
+            async def handle_threat(event: ThreatEvent):
+                print(f"Threat: {event.type}")
+        """
+        def decorator(func: Callable):
+            if event_name in self._callbacks:
+                self._callbacks[event_name].append(func)
+            return func
+        return decorator
+    @property
+    def on_threat_detected(self):
+        """Convenience decorator for threat_detected events"""
+        return self.on('threat_detected')
+    @property
+    def on_backup_completed(self):
+        """Convenience decorator for backup_completed events"""
+        return self.on('backup_completed')
+    @property
+    def on_restore_completed(self):
+        """Convenience decorator for restore_completed events"""
+        return self.on('restore_completed')
+    @property
+    def on_whitelist_changed(self):
+        """Convenience decorator for whitelist_changed events"""
+        return self.on('whitelist_changed')
+    async def _trigger_callbacks(self, event_name: str, *args, **kwargs):
+        """Trigger all registered callbacks for an event"""
+        if event_name in self._callbacks:
+            for callback in self._callbacks[event_name]:
+                try:
+                    if asyncio.iscoroutinefunction(callback):
+                        await callback(*args, **kwargs)
+                    else:
+                        callback(*args, **kwargs)
+                except Exception as e:
+                    print(f"Error in callback for {event_name}: {e}")
+    async def enable(
+        self,
+        guild_id: Optional[int] = None,
+        whitelist: Optional[List[int]] = None,
+        auto_backup: bool = True,
+        punishments: Optional[Dict[str, str]] = None,
+        timeout_duration: int = 600,
+        notify_user: bool = True
+    ):
+        """
+        Enable SecureX protection.
+        Args:
+            guild_id: Guild ID to enable protection for (required if using whitelist)
+            whitelist: List of user IDs to whitelist (default: [])
+            auto_backup: Enable automatic backups every 30 minutes (default: True)
+            role_position_monitoring: Enable role position monitoring (default: True)
+            punishments: Dict mapping violation types to punishment actions
+                Example: {"channel_delete": "ban", "role_create": "kick"}
+                Available actions: "none", "warn", "timeout", "kick", "ban"
+            timeout_duration: Duration in seconds for timeout punishment (default: 600)
+            notify_user: Whether to DM violators about punishment (default: True)
+        """
+        await self.whitelist.preload_all()
+        await self.backup_manager.preload_all()
+        if guild_id:
+            whitelist_data = await self.whitelist.get_all(guild_id)
+            self.whitelist_cache[guild_id] = set(whitelist_data)
+            print(f"📋 Loaded {len(whitelist_data)} whitelisted users into cache")
+        if whitelist and guild_id:
+            for user_id in whitelist:
+                await self.whitelist.add(guild_id, user_id)
+            self.whitelist_cache[guild_id] = self.whitelist_cache.get(guild_id, set()) | set(whitelist)
+        if punishments:
+            self.punishments.update(punishments)
+        if guild_id:
+            self.punishment_cache[guild_id] = self.punishments.copy()
+            print(f"⚡ Punishment cache populated for guild {guild_id}")
+        await self.action_worker.start()
+        await self.cleanup_worker.start()
+        await self.log_worker.start()
+        await self.guild_worker.start()
+        print("🚀 Started 4 independent workers (Action, Cleanup, Log, Guild)")
+        print("⚡ Broadcast architecture - zero dependencies between workers")
+        if auto_backup:
+            self.backup_manager.start_auto_backup()
+            self.backup_manager.start_auto_refresh()
+        self.timeout_duration = timeout_duration
+        self.notify_punished_user = notify_user
+        if punishments:
+            enabled_punishments = {k: v for k, v in self.punishments.items() if v != "none"}
+            if enabled_punishments:
+                print(f"⚠️  Punishments configured for {len(enabled_punishments)} violation types")
+        print("✅ SecureX SDK v2.0 - Ultra-fast audit log system ACTIVE")
+        print("⚡ Response time: 5-10ms (100x faster than v1.x)")
+        if guild_id:
+            backup = await self.backup_manager.create_backup(guild_id)
+            if backup.success:
+                print(f"✅ Backup completed for guild {guild_id}: "
+                      f"{backup.channel_count} channels, {backup.role_count} roles")
+    async def create_backup(self, guild_id: int) -> BackupInfo:
+        """
+        Create a backup for the specified guild.
+        Args:
+            guild_id: The guild ID to backup
+        Returns:
+            BackupInfo object with backup results
+        """
+        return await self.backup_manager.create_backup(guild_id)
+    async def restore_channel(self, guild: discord.Guild, channel: discord.abc.GuildChannel):
+        """
+        Restore a deleted channel from backup.
+        Args:
+            guild: The guild object
+            channel: The deleted channel object
+        Returns:
+            The newly created channel or None if restoration failed
+        """
+        return await self.backup_manager.restore_channel(guild, channel)
+    async def restore_role(self, guild: discord.Guild, role_id: int) -> bool:
+        """
+        Restore a deleted role from backup.
+        Args:
+            guild: The guild object
+            role_id: The ID of the deleted role
+        Returns:
+            True if successful, False otherwise
+        """
+        return await self.backup_manager.restore_role(guild, role_id)

securex/handlers/__init__.py ADDED Viewed

@@ -0,0 +1,8 @@
+"""Handlers package - contains protection logic"""
+from .channel import ChannelHandler
+from .role import RoleHandler
+from .member import MemberHandler
+__all__ = ['ChannelHandler', 'RoleHandler', 'MemberHandler']

securex/handlers/channel.py ADDED Viewed

@@ -0,0 +1,97 @@
+"""
+Channel protection handler for SecureX SDK.
+"""
+import discord
+import asyncio
+from datetime import datetime, timedelta
+class ChannelHandler:
+    """Handles channel protection logic"""
+    def __init__(self, sdk):
+        self.sdk = sdk
+        self.bot = sdk.bot
+        self.backup_manager = sdk.backup_manager
+        self.whitelist = sdk.whitelist
+    async def _is_authorized(self, guild: discord.Guild, user_id: int) -> bool:
+        """Check if user is authorized (owner or whitelisted)"""
+        if guild.owner_id == user_id:
+            return True
+        if user_id == self.bot.user.id:
+            return True
+        return await self.whitelist.is_whitelisted(guild.id, user_id)
+    async def on_channel_delete(self, channel: discord.abc.GuildChannel):
+        """Restore unauthorized channel deletions"""
+        try:
+            guild = channel.guild
+            print(f"🔍 [Debug] Channel deleted: {channel.name} ({channel.id})")
+            await asyncio.sleep(1)
+            from datetime import timezone
+            cutoff_time = datetime.now(timezone.utc) - timedelta(seconds=30)
+            found_entry = False
+            async for entry in guild.audit_logs(limit=50, action=discord.AuditLogAction.channel_delete):
+                if entry.created_at < cutoff_time:
+                    break
+                if entry.target.id == channel.id:
+                    found_entry = True
+                    authorized = await self._is_authorized(guild, entry.user.id)
+                    print(f"👤 [Debug] Executor: {entry.user.name} ({entry.user.id}) | Authorized: {authorized}")
+                    if not authorized:
+                        print(f"🛠️ [Debug] Unauthorized deletion detected. Triggering restoration...")
+                        new_channel = await self.backup_manager.restore_channel(guild, channel)
+                        if new_channel:
+                            print(f"🔄 Restored unauthorized channel deletion: {channel.name}")
+                        if new_channel and isinstance(channel, discord.CategoryChannel):
+                            await self.backup_manager.restore_category_children(
+                                guild,
+                                channel.id,
+                                new_channel
+                            )
+                    else:
+                        print(f"✅ [Debug] Deletion by authorized user. Skipping restoration.")
+                    break
+            if not found_entry:
+                print(f"⚠️ [Debug] Could not find audit log entry for channel deletion of {channel.name}")
+        except Exception as e:
+            print(f"❌ [Debug] Error in on_channel_delete: {e}")
+    async def on_channel_update(self, before: discord.abc.GuildChannel, after: discord.abc.GuildChannel):
+        """Restore unauthorized channel permission changes"""
+        try:
+            if (before.overwrites == after.overwrites and
+                before.position == after.position):
+                return
+            guild = after.guild
+            await asyncio.sleep(0.5)
+            from datetime import timezone
+            cutoff_time = datetime.now(timezone.utc) - timedelta(seconds=30)
+            async for entry in guild.audit_logs(limit=50, oldest_first=False):
+                if entry.created_at < cutoff_time:
+                    break
+                if entry.action == discord.AuditLogAction.channel_update:
+                    if entry.target and entry.target.id == after.id:
+                        if not await self._is_authorized(guild, entry.user.id):
+                            await self.backup_manager.restore_channel_permissions(guild, after.id)
+                        break
+        except Exception:
+            pass

securex/handlers/member.py ADDED Viewed

@@ -0,0 +1,110 @@
+"""
+Member protection handler (bot/ban/kick protection).
+"""
+import discord
+import asyncio
+class MemberHandler:
+    """Handles member-related protection"""
+    DANGEROUS_PERMISSIONS = frozenset([
+        'administrator',
+        'kick_members',
+        'ban_members',
+        'manage_guild',
+        'manage_roles',
+        'manage_channels',
+        'manage_webhooks',
+        'manage_emojis',
+        'mention_everyone',
+        'manage_expressions'
+    ])
+    def __init__(self, sdk):
+        self.sdk = sdk
+        self.bot = sdk.bot
+        self.whitelist = sdk.whitelist
+    async def _is_authorized(self, guild: discord.Guild, user_id: int) -> bool:
+        """Check if user is authorized"""
+        if guild.owner_id == user_id:
+            return True
+        if user_id == self.bot.user.id:
+            return True
+        return await self.whitelist.is_whitelisted(guild.id, user_id)
+    async def on_member_ban(self, guild: discord.Guild, user: discord.User):
+        """Restore banned victims (punishment handled by action worker)"""
+        try:
+            await asyncio.sleep(0.5)
+            from datetime import datetime, timezone, timedelta
+            cutoff_time = datetime.now(timezone.utc) - timedelta(seconds=30)
+            async for entry in guild.audit_logs(limit=50, action=discord.AuditLogAction.ban):
+                if entry.created_at < cutoff_time:
+                    break
+                if entry.target.id == user.id:
+                    if not await self._is_authorized(guild, entry.user.id):
+                        try:
+                            await guild.unban(user, reason="SecureX: Restoring banned member")
+                            print(f"🔄 Unbanned unauthorized member ban: {user.name}")
+                        except (discord.errors.Forbidden, discord.errors.HTTPException):
+                            pass
+                    break
+        except Exception as e:
+            print(f"Error in on_member_ban: {e}")
+    async def on_member_update(self, before: discord.Member, after: discord.Member):
+        """Check for dangerous permissions and remove unauthorized roles"""
+        try:
+            if before.roles == after.roles:
+                return
+            guild = after.guild
+            await asyncio.sleep(0.5)
+            from datetime import datetime, timezone, timedelta
+            cutoff_time = datetime.now(timezone.utc) - timedelta(seconds=30)
+            async for entry in guild.audit_logs(limit=50, action=discord.AuditLogAction.member_role_update):
+                if entry.created_at < cutoff_time:
+                    break
+                if entry.target.id == after.id:
+                    is_authorized = await self._is_authorized(guild, entry.user.id)
+                    if not is_authorized:
+                        dangerous_roles = []
+                        for role in after.roles:
+                            if role.is_default():
+                                continue
+                            permissions = role.permissions
+                            for perm_name in self.DANGEROUS_PERMISSIONS:
+                                if getattr(permissions, perm_name, False):
+                                    dangerous_roles.append(role)
+                                    break
+                        if dangerous_roles:
+                            try:
+                                await after.remove_roles(*dangerous_roles, reason="SecureX: Removed dangerous roles (unauthorized update)")
+                                role_names = ", ".join([r.name for r in dangerous_roles])
+                                print(f"🛡️ Bulk removed {len(dangerous_roles)} dangerous role(s) from {after.name}: {role_names}")
+                            except (discord.errors.Forbidden, discord.errors.HTTPException) as e:
+                                print(f"⚠️ Failed to remove roles: {e}")
+                    break
+        except Exception as e:
+            print(f"Error in on_member_update: {e}")

securex/handlers/role.py ADDED Viewed

@@ -0,0 +1,74 @@
+"""
+Role protection handler for SecureX SDK.
+"""
+import discord
+import asyncio
+from datetime import datetime, timedelta
+class RoleHandler:
+    """Handles role protection logic"""
+    def __init__(self, sdk):
+        self.sdk = sdk
+        self.bot = sdk.bot
+        self.backup_manager = sdk.backup_manager
+        self.whitelist = sdk.whitelist
+    async def _is_authorized(self, guild: discord.Guild, user_id: int) -> bool:
+        """Check if user is authorized"""
+        if guild.owner_id == user_id:
+            return True
+        if user_id == self.bot.user.id:
+            return True
+        return await self.whitelist.is_whitelisted(guild.id, user_id)
+    async def on_role_delete(self, role: discord.Role):
+        """Restore unauthorized role deletions"""
+        try:
+            guild = role.guild
+            await asyncio.sleep(1)
+            from datetime import timezone
+            cutoff_time = datetime.now(timezone.utc) - timedelta(seconds=30)
+            async for entry in guild.audit_logs(limit=50, action=discord.AuditLogAction.role_delete):
+                if entry.created_at < cutoff_time:
+                    break
+                if entry.target.id == role.id:
+                    if not await self._is_authorized(guild, entry.user.id):
+                        if await self.backup_manager.restore_role(guild, role.id):
+                            print(f"🔄 Restored unauthorized role deletion: {role.name}")
+                    break
+        except Exception:
+            pass
+    async def on_role_update(self, before: discord.Role, after: discord.Role):
+        """Restore unauthorized role permission changes"""
+        try:
+            if before.position == after.position and before.permissions == after.permissions:
+                return
+            guild = after.guild
+            await asyncio.sleep(0.3)
+            from datetime import timezone
+            cutoff_time = datetime.now(timezone.utc) - timedelta(seconds=30)
+            async for entry in guild.audit_logs(limit=50, oldest_first=False):
+                if entry.created_at < cutoff_time:
+                    break
+                if entry.action == discord.AuditLogAction.role_update:
+                    if entry.target.id == after.id:
+                        if not await self._is_authorized(guild, entry.user.id):
+                            if await self.backup_manager.restore_role_permissions(guild, after.id):
+                                print(f"🔄 Restored unauthorized role update: {after.name}")
+                        break
+        except Exception:
+            pass