feat: initial open marketplace with llm-security, config-audit, ultraplan-local

2026-04-06 18:47:49 +02:00 · 2026-04-06 18:47:49 +02:00 · f93d6abdae
commit f93d6abdae
380 changed files with 65935 additions and 0 deletions
--- a/plugins/llm-security/scanners/supply-chain-recheck-cli.mjs
+++ b/plugins/llm-security/scanners/supply-chain-recheck-cli.mjs
@ -0,0 +1,37 @@
+#!/usr/bin/env node
+// CLI wrapper for supply-chain-recheck scanner
+// Usage: node supply-chain-recheck-cli.mjs <target-path>
+// Outputs JSON to stdout. Exit codes: 0=ok, 1=warning, 2=block, 3=error
+
+import { resolve } from 'node:path';
+import { existsSync } from 'node:fs';
+import { resetCounter } from './lib/output.mjs';
+import { scan } from './supply-chain-recheck.mjs';
+import { riskScore, verdict } from './lib/severity.mjs';
+
+const target = process.argv[2];
+if (!target) {
+  console.error('Usage: node supply-chain-recheck-cli.mjs <target-path>');
+  process.exit(3);
+}
+
+const targetPath = resolve(target);
+if (!existsSync(targetPath)) {
+  console.error(`Target path does not exist: ${targetPath}`);
+  process.exit(3);
+}
+
+resetCounter();
+const result = await scan(targetPath, { files: [] });
+
+// Add aggregate info matching orchestrator format
+const counts = result.counts;
+const score = riskScore(counts);
+const verd = verdict(counts);
+result.aggregate = { risk_score: score, verdict: verd };
+
+process.stdout.write(JSON.stringify(result, null, 2) + '\n');
+
+if (verd === 'BLOCK') process.exit(2);
+if (verd === 'WARNING') process.exit(1);
+process.exit(0);