#!/bin/bash
# npm audit 자동화 - 프론트엔드 프로젝트 대상
# exit code: 0=클린, 1=취약점 발견

PROJECTS=(
  "/home/jay/projects/insuwiki/nextapp"
  "/home/jay/projects/InfoKeyword"
)

FAIL=0
for proj in "${PROJECTS[@]}"; do
  if [ -f "$proj/package-lock.json" ]; then
    echo "=== Auditing: $proj ==="
    cd "$proj"
    npm audit --audit-level=high 2>&1
    if [ $? -ne 0 ]; then
      echo "HIGH+ vulnerabilities found: $proj"
      FAIL=1
    else
      echo "Clean: $proj"
    fi
  else
    echo "package-lock.json not found: $proj"
  fi
done

exit $FAIL