Bugb-Technologies · Animesh-Sri-bugb · Mar 12, 2026 · Mar 12, 2026
@@ -39,16 +39,16 @@ Every time you write or modify code that touches security-relevant behavior, you
 
 **Assets:** #parser (GuardLink,Parser), #cli (GuardLink,CLI), #tui (GuardLink,TUI), #mcp (GuardLink,MCP), #llm-client (GuardLink,LLM_Client), #dashboard (GuardLink,Dashboard), #init (GuardLink,Init), #agent-launcher (GuardLink,Agent_Launcher), #diff (GuardLink,Diff), #report (GuardLink,Report), #sarif (GuardLink,SARIF), #suggest (GuardLink,Suggest), #workspace-link (Workspace,Link), #merge-engine (Workspace,Merge), #report-metadata (Workspace,Metadata), #workspace-config (Workspace,Config)
 **Threats:** #path-traversal (Path_Traversal) [high], #cmd-injection (Command_Injection) [critical], #xss (Cross_Site_Scripting) [high], #api-key-exposure (API_Key_Exposure) [high], #ssrf (Server_Side_Request_Forgery) [medium], #redos (ReDoS) [medium], #arbitrary-write (Arbitrary_File_Write) [high], #prompt-injection (Prompt_Injection) [medium], #dos (Denial_of_Service) [medium], #data-exposure (Sensitive_Data_Exposure) [medium], #insecure-deser (Insecure_Deserialization) [medium], #child-proc-injection (Child_Process_Injection) [high], #info-disclosure (Information_Disclosure) [low], #tag-collision (Tag_Collision) [medium], #config-tamper (Config_Tampering) [medium]
-**Controls:** #path-validation (Path_Validation), #input-sanitize (Input_Sanitization), #output-encoding (Output_Encoding), #key-redaction (Key_Redaction), #process-sandbox (Process_Sandboxing), #config-validation (Config_Validation), #resource-limits (Resource_Limits), #param-commands (Parameterized_Commands), #glob-filtering (Glob_Pattern_Filtering), #regex-anchoring (Regex_Anchoring)
+**Controls:** #path-validation (Path_Validation), #input-sanitize (Input_Sanitization), #output-encoding (Output_Encoding), #key-redaction (Key_Redaction), #process-sandbox (Process_Sandboxing), #config-validation (Config_Validation), #resource-limits (Resource_Limits), #param-commands (Parameterized_Commands), #glob-filtering (Glob_Pattern_Filtering), #regex-anchoring (Regex_Anchoring), #prefix-ownership (Prefix_Ownership), #yaml-validation (YAML_Validation)
 
 ### Open Exposures (need @mitigates or @audit)
 
-- #sarif exposed to #data-exposure [low] (src/analyzer/sarif.ts:15)
-- #llm-client exposed to #data-exposure [low] (src/analyze/index.ts:12)
-- #llm-client exposed to #prompt-injection [medium] (src/analyze/llm.ts:17)
 - #agent-launcher exposed to #prompt-injection [medium] (src/agents/launcher.ts:13)
 - #agent-launcher exposed to #dos [low] (src/agents/launcher.ts:15)
 - #agent-launcher exposed to #prompt-injection [high] (src/agents/prompts.ts:6)
+- #llm-client exposed to #data-exposure [low] (src/analyze/index.ts:12)
+- #llm-client exposed to #prompt-injection [medium] (src/analyze/llm.ts:17)
+- #sarif exposed to #data-exposure [low] (src/analyzer/sarif.ts:15)
 - #cli exposed to #cmd-injection [critical] (src/cli/index.ts:31)
 - #init exposed to #data-exposure [low] (src/init/index.ts:12)
 - #mcp exposed to #cmd-injection [high] (src/mcp/index.ts:4)
@@ -61,17 +61,6 @@ Every time you write or modify code that touches security-relevant behavior, you
 
 ### Existing Data Flows (extend, don't duplicate)
 
-- ThreatModel -> #sarif via generateSarif
-- #sarif -> SarifLog via return
-- ThreatModel -> #llm-client via serializeModel
-- ProjectFiles -> #llm-client via readFileSync
-- #llm-client -> ReportFile via writeFileSync
-- LLMConfig -> #llm-client via chatCompletion
-- #llm-client -> LLMProvider via fetch
-- LLMProvider -> #llm-client via response
-- LLMToolCall -> #llm-client via createToolExecutor
-- #llm-client -> NVD via fetch
-- ProjectFiles -> #llm-client via readFileSync
 - EnvVars -> #agent-launcher via process.env
 - ConfigFile -> #agent-launcher via readFileSync
 - #agent-launcher -> ConfigFile via writeFileSync
@@ -81,11 +70,22 @@ Every time you write or modify code that touches security-relevant behavior, you
 - UserPrompt -> #agent-launcher via buildAnnotatePrompt
 - ThreatModel -> #agent-launcher via model
 - #agent-launcher -> AgentPrompt via return
+- ThreatModel -> #llm-client via serializeModel
+- ProjectFiles -> #llm-client via readFileSync
+- #llm-client -> ReportFile via writeFileSync
+- LLMConfig -> #llm-client via chatCompletion
+- #llm-client -> LLMProvider via fetch
+- LLMProvider -> #llm-client via response
+- LLMToolCall -> #llm-client via createToolExecutor
+- #llm-client -> NVD via fetch
+- ProjectFiles -> #llm-client via readFileSync
+- ThreatModel -> #sarif via generateSarif
+- #sarif -> SarifLog via return
 - ... and 48 more
 
 ### Model Stats
 
-287 annotations, 16 assets, 15 threats, 10 controls, 60 exposures, 44 mitigations, 68 flows
+290 annotations, 16 assets, 15 threats, 12 controls, 60 exposures, 44 mitigations, 68 flows
 
 <!-- guardlink:end -->
 
@@ -103,3 +103,7 @@ Every time you write or modify code that touches security-relevant behavior, you
 
 
 
+
+
+
+
@@ -44,16 +44,16 @@ Every time you write or modify code that touches security-relevant behavior, you
 
 **Assets:** #parser (GuardLink,Parser), #cli (GuardLink,CLI), #tui (GuardLink,TUI), #mcp (GuardLink,MCP), #llm-client (GuardLink,LLM_Client), #dashboard (GuardLink,Dashboard), #init (GuardLink,Init), #agent-launcher (GuardLink,Agent_Launcher), #diff (GuardLink,Diff), #report (GuardLink,Report), #sarif (GuardLink,SARIF), #suggest (GuardLink,Suggest), #workspace-link (Workspace,Link), #merge-engine (Workspace,Merge), #report-metadata (Workspace,Metadata), #workspace-config (Workspace,Config)
 **Threats:** #path-traversal (Path_Traversal) [high], #cmd-injection (Command_Injection) [critical], #xss (Cross_Site_Scripting) [high], #api-key-exposure (API_Key_Exposure) [high], #ssrf (Server_Side_Request_Forgery) [medium], #redos (ReDoS) [medium], #arbitrary-write (Arbitrary_File_Write) [high], #prompt-injection (Prompt_Injection) [medium], #dos (Denial_of_Service) [medium], #data-exposure (Sensitive_Data_Exposure) [medium], #insecure-deser (Insecure_Deserialization) [medium], #child-proc-injection (Child_Process_Injection) [high], #info-disclosure (Information_Disclosure) [low], #tag-collision (Tag_Collision) [medium], #config-tamper (Config_Tampering) [medium]
-**Controls:** #path-validation (Path_Validation), #input-sanitize (Input_Sanitization), #output-encoding (Output_Encoding), #key-redaction (Key_Redaction), #process-sandbox (Process_Sandboxing), #config-validation (Config_Validation), #resource-limits (Resource_Limits), #param-commands (Parameterized_Commands), #glob-filtering (Glob_Pattern_Filtering), #regex-anchoring (Regex_Anchoring)
+**Controls:** #path-validation (Path_Validation), #input-sanitize (Input_Sanitization), #output-encoding (Output_Encoding), #key-redaction (Key_Redaction), #process-sandbox (Process_Sandboxing), #config-validation (Config_Validation), #resource-limits (Resource_Limits), #param-commands (Parameterized_Commands), #glob-filtering (Glob_Pattern_Filtering), #regex-anchoring (Regex_Anchoring), #prefix-ownership (Prefix_Ownership), #yaml-validation (YAML_Validation)
 
 ### Open Exposures (need @mitigates or @audit)
 
-- #sarif exposed to #data-exposure [low] (src/analyzer/sarif.ts:15)
-- #llm-client exposed to #data-exposure [low] (src/analyze/index.ts:12)
-- #llm-client exposed to #prompt-injection [medium] (src/analyze/llm.ts:17)
 - #agent-launcher exposed to #prompt-injection [medium] (src/agents/launcher.ts:13)
 - #agent-launcher exposed to #dos [low] (src/agents/launcher.ts:15)
 - #agent-launcher exposed to #prompt-injection [high] (src/agents/prompts.ts:6)
+- #llm-client exposed to #data-exposure [low] (src/analyze/index.ts:12)
+- #llm-client exposed to #prompt-injection [medium] (src/analyze/llm.ts:17)
+- #sarif exposed to #data-exposure [low] (src/analyzer/sarif.ts:15)
 - #cli exposed to #cmd-injection [critical] (src/cli/index.ts:31)
 - #init exposed to #data-exposure [low] (src/init/index.ts:12)
 - #mcp exposed to #cmd-injection [high] (src/mcp/index.ts:4)
@@ -66,17 +66,6 @@ Every time you write or modify code that touches security-relevant behavior, you
 
 ### Existing Data Flows (extend, don't duplicate)
 
-- ThreatModel -> #sarif via generateSarif
-- #sarif -> SarifLog via return
-- ThreatModel -> #llm-client via serializeModel
-- ProjectFiles -> #llm-client via readFileSync
-- #llm-client -> ReportFile via writeFileSync
-- LLMConfig -> #llm-client via chatCompletion
-- #llm-client -> LLMProvider via fetch
-- LLMProvider -> #llm-client via response
-- LLMToolCall -> #llm-client via createToolExecutor
-- #llm-client -> NVD via fetch
-- ProjectFiles -> #llm-client via readFileSync
 - EnvVars -> #agent-launcher via process.env
 - ConfigFile -> #agent-launcher via readFileSync
 - #agent-launcher -> ConfigFile via writeFileSync
@@ -86,8 +75,19 @@ Every time you write or modify code that touches security-relevant behavior, you
 - UserPrompt -> #agent-launcher via buildAnnotatePrompt
 - ThreatModel -> #agent-launcher via model
 - #agent-launcher -> AgentPrompt via return
+- ThreatModel -> #llm-client via serializeModel
+- ProjectFiles -> #llm-client via readFileSync
+- #llm-client -> ReportFile via writeFileSync
+- LLMConfig -> #llm-client via chatCompletion
+- #llm-client -> LLMProvider via fetch
+- LLMProvider -> #llm-client via response
+- LLMToolCall -> #llm-client via createToolExecutor
+- #llm-client -> NVD via fetch
+- ProjectFiles -> #llm-client via readFileSync
+- ThreatModel -> #sarif via generateSarif
+- #sarif -> SarifLog via return
 - ... and 48 more
 
 ### Model Stats
 
-287 annotations, 16 assets, 15 threats, 10 controls, 60 exposures, 44 mitigations, 68 flows
+290 annotations, 16 assets, 15 threats, 12 controls, 60 exposures, 44 mitigations, 68 flows
@@ -53,16 +53,16 @@ This project uses [GuardLink](https://guardlink.bugb.io) annotations in source c
 
 **Assets:** #parser (GuardLink,Parser), #cli (GuardLink,CLI), #tui (GuardLink,TUI), #mcp (GuardLink,MCP), #llm-client (GuardLink,LLM_Client), #dashboard (GuardLink,Dashboard), #init (GuardLink,Init), #agent-launcher (GuardLink,Agent_Launcher), #diff (GuardLink,Diff), #report (GuardLink,Report), #sarif (GuardLink,SARIF), #suggest (GuardLink,Suggest), #workspace-link (Workspace,Link), #merge-engine (Workspace,Merge), #report-metadata (Workspace,Metadata), #workspace-config (Workspace,Config)
 **Threats:** #path-traversal (Path_Traversal) [high], #cmd-injection (Command_Injection) [critical], #xss (Cross_Site_Scripting) [high], #api-key-exposure (API_Key_Exposure) [high], #ssrf (Server_Side_Request_Forgery) [medium], #redos (ReDoS) [medium], #arbitrary-write (Arbitrary_File_Write) [high], #prompt-injection (Prompt_Injection) [medium], #dos (Denial_of_Service) [medium], #data-exposure (Sensitive_Data_Exposure) [medium], #insecure-deser (Insecure_Deserialization) [medium], #child-proc-injection (Child_Process_Injection) [high], #info-disclosure (Information_Disclosure) [low], #tag-collision (Tag_Collision) [medium], #config-tamper (Config_Tampering) [medium]
-**Controls:** #path-validation (Path_Validation), #input-sanitize (Input_Sanitization), #output-encoding (Output_Encoding), #key-redaction (Key_Redaction), #process-sandbox (Process_Sandboxing), #config-validation (Config_Validation), #resource-limits (Resource_Limits), #param-commands (Parameterized_Commands), #glob-filtering (Glob_Pattern_Filtering), #regex-anchoring (Regex_Anchoring)
+**Controls:** #path-validation (Path_Validation), #input-sanitize (Input_Sanitization), #output-encoding (Output_Encoding), #key-redaction (Key_Redaction), #process-sandbox (Process_Sandboxing), #config-validation (Config_Validation), #resource-limits (Resource_Limits), #param-commands (Parameterized_Commands), #glob-filtering (Glob_Pattern_Filtering), #regex-anchoring (Regex_Anchoring), #prefix-ownership (Prefix_Ownership), #yaml-validation (YAML_Validation)
 
 ### Open Exposures (need @mitigates or @audit)
 
-- #sarif exposed to #data-exposure [low] (src/analyzer/sarif.ts:15)
-- #llm-client exposed to #data-exposure [low] (src/analyze/index.ts:12)
-- #llm-client exposed to #prompt-injection [medium] (src/analyze/llm.ts:17)
 - #agent-launcher exposed to #prompt-injection [medium] (src/agents/launcher.ts:13)
 - #agent-launcher exposed to #dos [low] (src/agents/launcher.ts:15)
 - #agent-launcher exposed to #prompt-injection [high] (src/agents/prompts.ts:6)
+- #llm-client exposed to #data-exposure [low] (src/analyze/index.ts:12)
+- #llm-client exposed to #prompt-injection [medium] (src/analyze/llm.ts:17)
+- #sarif exposed to #data-exposure [low] (src/analyzer/sarif.ts:15)
 - #cli exposed to #cmd-injection [critical] (src/cli/index.ts:31)
 - #init exposed to #data-exposure [low] (src/init/index.ts:12)
 - #mcp exposed to #cmd-injection [high] (src/mcp/index.ts:4)
@@ -75,17 +75,6 @@ This project uses [GuardLink](https://guardlink.bugb.io) annotations in source c
 
 ### Existing Data Flows (extend, don't duplicate)
 
-- ThreatModel -> #sarif via generateSarif
-- #sarif -> SarifLog via return
-- ThreatModel -> #llm-client via serializeModel
-- ProjectFiles -> #llm-client via readFileSync
-- #llm-client -> ReportFile via writeFileSync
-- LLMConfig -> #llm-client via chatCompletion
-- #llm-client -> LLMProvider via fetch
-- LLMProvider -> #llm-client via response
-- LLMToolCall -> #llm-client via createToolExecutor
-- #llm-client -> NVD via fetch
-- ProjectFiles -> #llm-client via readFileSync
 - EnvVars -> #agent-launcher via process.env
 - ConfigFile -> #agent-launcher via readFileSync
 - #agent-launcher -> ConfigFile via writeFileSync
@@ -95,11 +84,22 @@ This project uses [GuardLink](https://guardlink.bugb.io) annotations in source c
 - UserPrompt -> #agent-launcher via buildAnnotatePrompt
 - ThreatModel -> #agent-launcher via model
 - #agent-launcher -> AgentPrompt via return
+- ThreatModel -> #llm-client via serializeModel
+- ProjectFiles -> #llm-client via readFileSync
+- #llm-client -> ReportFile via writeFileSync
+- LLMConfig -> #llm-client via chatCompletion
+- #llm-client -> LLMProvider via fetch
+- LLMProvider -> #llm-client via response
+- LLMToolCall -> #llm-client via createToolExecutor
+- #llm-client -> NVD via fetch
+- ProjectFiles -> #llm-client via readFileSync
+- ThreatModel -> #sarif via generateSarif
+- #sarif -> SarifLog via return
 - ... and 48 more
 
 ### Model Stats
 
-287 annotations, 16 assets, 15 threats, 10 controls, 60 exposures, 44 mitigations, 68 flows
+290 annotations, 16 assets, 15 threats, 12 controls, 60 exposures, 44 mitigations, 68 flows
 
 > **Note:** This section is auto-generated. Run `guardlink sync` to update after code changes.
 > Any coding agent (Cursor, Claude, Copilot, Windsurf, etc.) should reference these IDs
@@ -121,3 +121,7 @@ This project uses [GuardLink](https://guardlink.bugb.io) annotations in source c
 
 
 
+
+
+
+
@@ -53,16 +53,16 @@ This project uses [GuardLink](https://guardlink.bugb.io) annotations in source c
 
 **Assets:** #parser (GuardLink,Parser), #cli (GuardLink,CLI), #tui (GuardLink,TUI), #mcp (GuardLink,MCP), #llm-client (GuardLink,LLM_Client), #dashboard (GuardLink,Dashboard), #init (GuardLink,Init), #agent-launcher (GuardLink,Agent_Launcher), #diff (GuardLink,Diff), #report (GuardLink,Report), #sarif (GuardLink,SARIF), #suggest (GuardLink,Suggest), #workspace-link (Workspace,Link), #merge-engine (Workspace,Merge), #report-metadata (Workspace,Metadata), #workspace-config (Workspace,Config)
 **Threats:** #path-traversal (Path_Traversal) [high], #cmd-injection (Command_Injection) [critical], #xss (Cross_Site_Scripting) [high], #api-key-exposure (API_Key_Exposure) [high], #ssrf (Server_Side_Request_Forgery) [medium], #redos (ReDoS) [medium], #arbitrary-write (Arbitrary_File_Write) [high], #prompt-injection (Prompt_Injection) [medium], #dos (Denial_of_Service) [medium], #data-exposure (Sensitive_Data_Exposure) [medium], #insecure-deser (Insecure_Deserialization) [medium], #child-proc-injection (Child_Process_Injection) [high], #info-disclosure (Information_Disclosure) [low], #tag-collision (Tag_Collision) [medium], #config-tamper (Config_Tampering) [medium]
-**Controls:** #path-validation (Path_Validation), #input-sanitize (Input_Sanitization), #output-encoding (Output_Encoding), #key-redaction (Key_Redaction), #process-sandbox (Process_Sandboxing), #config-validation (Config_Validation), #resource-limits (Resource_Limits), #param-commands (Parameterized_Commands), #glob-filtering (Glob_Pattern_Filtering), #regex-anchoring (Regex_Anchoring)
+**Controls:** #path-validation (Path_Validation), #input-sanitize (Input_Sanitization), #output-encoding (Output_Encoding), #key-redaction (Key_Redaction), #process-sandbox (Process_Sandboxing), #config-validation (Config_Validation), #resource-limits (Resource_Limits), #param-commands (Parameterized_Commands), #glob-filtering (Glob_Pattern_Filtering), #regex-anchoring (Regex_Anchoring), #prefix-ownership (Prefix_Ownership), #yaml-validation (YAML_Validation)
 
 ### Open Exposures (need @mitigates or @audit)
 
-- #sarif exposed to #data-exposure [low] (src/analyzer/sarif.ts:15)
-- #llm-client exposed to #data-exposure [low] (src/analyze/index.ts:12)
-- #llm-client exposed to #prompt-injection [medium] (src/analyze/llm.ts:17)
 - #agent-launcher exposed to #prompt-injection [medium] (src/agents/launcher.ts:13)
 - #agent-launcher exposed to #dos [low] (src/agents/launcher.ts:15)
 - #agent-launcher exposed to #prompt-injection [high] (src/agents/prompts.ts:6)
+- #llm-client exposed to #data-exposure [low] (src/analyze/index.ts:12)
+- #llm-client exposed to #prompt-injection [medium] (src/analyze/llm.ts:17)
+- #sarif exposed to #data-exposure [low] (src/analyzer/sarif.ts:15)
 - #cli exposed to #cmd-injection [critical] (src/cli/index.ts:31)
 - #init exposed to #data-exposure [low] (src/init/index.ts:12)
 - #mcp exposed to #cmd-injection [high] (src/mcp/index.ts:4)
@@ -75,17 +75,6 @@ This project uses [GuardLink](https://guardlink.bugb.io) annotations in source c
 
 ### Existing Data Flows (extend, don't duplicate)
 
-- ThreatModel -> #sarif via generateSarif
-- #sarif -> SarifLog via return
-- ThreatModel -> #llm-client via serializeModel
-- ProjectFiles -> #llm-client via readFileSync
-- #llm-client -> ReportFile via writeFileSync
-- LLMConfig -> #llm-client via chatCompletion
-- #llm-client -> LLMProvider via fetch
-- LLMProvider -> #llm-client via response
-- LLMToolCall -> #llm-client via createToolExecutor
-- #llm-client -> NVD via fetch
-- ProjectFiles -> #llm-client via readFileSync
 - EnvVars -> #agent-launcher via process.env
 - ConfigFile -> #agent-launcher via readFileSync
 - #agent-launcher -> ConfigFile via writeFileSync
@@ -95,11 +84,22 @@ This project uses [GuardLink](https://guardlink.bugb.io) annotations in source c
 - UserPrompt -> #agent-launcher via buildAnnotatePrompt
 - ThreatModel -> #agent-launcher via model
 - #agent-launcher -> AgentPrompt via return
+- ThreatModel -> #llm-client via serializeModel
+- ProjectFiles -> #llm-client via readFileSync
+- #llm-client -> ReportFile via writeFileSync
+- LLMConfig -> #llm-client via chatCompletion
+- #llm-client -> LLMProvider via fetch
+- LLMProvider -> #llm-client via response
+- LLMToolCall -> #llm-client via createToolExecutor
+- #llm-client -> NVD via fetch
+- ProjectFiles -> #llm-client via readFileSync
+- ThreatModel -> #sarif via generateSarif
+- #sarif -> SarifLog via return
 - ... and 48 more
 
 ### Model Stats
 
-287 annotations, 16 assets, 15 threats, 10 controls, 60 exposures, 44 mitigations, 68 flows
+290 annotations, 16 assets, 15 threats, 12 controls, 60 exposures, 44 mitigations, 68 flows
 
 > **Note:** This section is auto-generated. Run `guardlink sync` to update after code changes.
 > Any coding agent (Cursor, Claude, Copilot, Windsurf, etc.) should reference these IDs
@@ -122,3 +122,7 @@ This project uses [GuardLink](https://guardlink.bugb.io) annotations in source c
 
 
 
+
+
+
+
@@ -6,19 +6,11 @@ dist/
 # OS
 .DS_Store
 
-# Generated outputs (not tracked — regenerate with guardlink commands)
-threat-model.json
-threat-model.md
-threat-dashboard.html
-*.sarif.json
-
 # IDE / Agent local state
 .claude/
 
-# GuardLink runtime (tracked: definitions.ts, config.json)
-.guardlink/threat-reports/
-.guardlink/*.json
-!.guardlink/config.json
+# GuardLink runtime config (API keys - do not commit)
+.guardlink/config.json
 
 # Debug / internal
 _debug.ts