@ordojs/security/dist/audit/security-auditor.d.ts

Security package for OrdoJS with XSS, CSRF, and injection protection

export interface SecurityVulnerability {
    id: string;
    severity: 'low' | 'medium' | 'high' | 'critical';
    type: 'xss' | 'injection' | 'csrf' | 'dependency' | 'configuration' | 'other';
    description: string;
    file?: string;
    line?: number;
    column?: number;
    recommendation: string;
    owaspCategory?: string;
}
export interface SecurityAuditResult {
    vulnerabilities: SecurityVulnerability[];
    summary: {
        total: number;
        critical: number;
        high: number;
        medium: number;
        low: number;
    };
    owaspCompliance: {
        score: number;
        categories: Record<string, boolean>;
    };
    timestamp: Date;
}
export interface SecurityAuditOptions {
    projectPath: string;
    includePatterns?: string[];
    excludePatterns?: string[];
    enableDependencyCheck?: boolean;
    enableCodeAnalysis?: boolean;
    enableConfigurationCheck?: boolean;
    owaspLevel?: 'basic' | 'standard' | 'advanced';
}
export declare class SecurityAuditor {
    private vulnerabilities;
    private options;
    constructor(options: SecurityAuditOptions);
    audit(): Promise<SecurityAuditResult>;
    private auditDependencies;
    private checkKnownVulnerablePackages;
    private auditSourceCode;
    private auditFile;
    private checkForXSSVulnerabilities;
    private checkForSQLInjection;
    private checkForCSRFVulnerabilities;
    private checkForInsecureCrypto;
    private checkForHardcodedSecrets;
    private auditConfiguration;
    private generateReport;
    private mapNpmSeverity;
}
//# sourceMappingURL=security-auditor.d.ts.map