agentsqripts/lib/security-vulns/summary.md

Comprehensive static code analysis toolkit for identifying technical debt, security vulnerabilities, performance issues, and code quality problems

# lib/security-vulns Directory

This directory contains the security vulnerability analyzer that achieves near-perfect security assessment with context-aware analysis.

## Core Analysis:
- **analyzeSecurityVulns.js**: Main security analysis entry point
- **projectSecurityAnalyzer.js**: Project-level security assessment
- **vulnerabilityScanner.js**: Core vulnerability scanning engine
- **astAnalyzer.js**: AST-based security pattern detection
- **patternMatcher.js**: Security pattern matching algorithms

## Detection Systems:
- **modernPatternDetector.js**: Modern vulnerability patterns (ReDoS, SSRF, prototype pollution)
- **frameworkDetector.js**: Framework-specific security checks
- **languageDetector.js**: Language-specific vulnerability detection
- **scanner.js**: File scanning and analysis coordination

## Risk Assessment:
- **riskLevelCalculator.js**: Security risk level calculation
- **securityScoreCalculator.js**: Overall security scoring
- **matchConfidenceCalculator.js**: Pattern match confidence analysis
- **vulnerabilityCategorizer.js**: Vulnerability classification

## Recommendations:
- **securityRecommendationGenerator.js**: Security fix recommendations
- **projectRecommendationGenerator.js**: Project-level security guidance
- **securityFixPrioritizer.js**: Fix priority assessment
- **effortEstimator.js**: Effort estimation for security fixes

## Purpose:
- Detect SQL injection, XSS, and modern security vulnerabilities
- Provide context-aware analysis with intelligent filtering
- Generate comprehensive security reports with actionable recommendations
- Support framework-specific security pattern detection