)TidZddlZddlZddlmZgdddggddgd Zd gd d gd gdgdZdZdede ee efde e fdZ dede efdZ ddedee ede fdZ y)u two_pass_audit.py - 2-pass 구조적 감사 verifier (gstack /review 패턴) Pass 1 (CRITICAL): 자동 블록 — 하나라도 발견 시 FAIL Pass 2 (INFORMATIONAL): 경고만 — 발견 시 WARN 출처: gstack /review 스킬 (MIT 라이선스, https://github.com/garrytan/gstack) N)Optional)z execute\s*\(z \.raw\s*\(z DROP\s+TABLEzDELETE\s+FROM\s+\w+\s*$zTRUNCATE\s+TABLEz UPDATE\s+\w+\s+SET\s+.*(?!WHERE)z global\s+\w+z>threading\.(?!Lock|RLock|Event|Semaphore|Condition|Barrier)\w+)z eval\s*\(z exec\s*\(zsubprocess\..*shell\s*=\s*Truezos\.system\s*\(z.#\s*TODO.*switch|#\s*TODO.*case|#\s*TODO.*enum)zSQL & Data SafetyzRace ConditionszLLM Output Trust BoundaryzEnum/Value Completenessz4(? tj|| r|j||| || dd d p |S#1swYxYw#tj$rYwxYw#t$rY|SwxYw) u3파일을 스캔하여 패턴 매칭 결과 반환.rutf-8ignore)encodingerrorsN)start#TODO)zr"zr'zr"""zr'''"'d)categoryfilelinepatterncontent) openread splitlinesitems enumeratestrip startswithresearchappenderrorOSError) rrfindingsfrlinesrregexesregexirstrippeds A/home/jay/workspace/teams/dev1/qc/verifiers.bak/two_pass_audit.py _scan_filer.;s1H (C'( C qffhG ""$!)!1  Hg  (a8GAt#zz|H**3/F(4J **+QR  99UD1$OO08,4,-/4/7~ !"  2 O9  088   O sLDCA>D#0C(DC%!D(C> ;D=C> >D D Dtask_idctjjt|d}tjj |sgSg} t |dd5}|j }dddtjd}|D]3}tjj|s#|j|5 |S#1swYZxYw#t$rY|SwxYw)uAtask_id 기반으로 보고서에서 변경 파일 목록 추출.z.mdr r )r Nz+(/home/jay/workspace/\S+\.(?:py|js|ts|tsx))) ospathjoinDEFAULT_REPORTS_DIRexistsrrr!findallisfiler#r%)r/ report_pathfilesr'rpathsps r-_get_check_filesr<^s'',,2wisODK 77>>+ & E  +sW 5 ffhG  I7S Aww~~a  Q L     L s1 CC+AC.CC  C CC check_filesc |sddgdS|xs t|}|sddgdSg}g}g}|D]V}|jdst|t}|j |t|t } |j | X|r|j dt|d|dd D]+} |j d | d d | d d| dd | d-t|d kDr!|j dt|d z d|r|j dt|d|dd D]+} |j d| d d | d d| dd | d-t|d kDr!|j dt|d z d|s |s|j dt|d|j dt||rd|dS|rd|dSd|dS)ub 2-pass 구조적 감사 실행. Pass 1 CRITICAL 발견 → FAIL Pass 2 INFORMATIONAL 발견 → WARN 아무것도 없으면 → PASS Args: task_id: 검증할 task ID check_files: 검사할 파일 목록 (없으면 보고서에서 추출) Returns: {"status": "PASS"|"FAIL"|"WARN", "details": [...]} SKIPzNo task_id provided)statusdetailsz?No files to audit (no check_files and no files found in report))z.pyz.jsz.tsz.tsxzPass 1 CRITICAL: z finding(s)N z [CRITICAL] ru — r:rrz ... and z morezPass 2 INFORMATIONAL: z [INFO] z2-pass audit clean: z file(s) scanned, 0 findingszFiles scanned: FAILWARNPASS)r<endswithr.CRITICAL_PATTERNSextendINFORMATIONAL_PATTERNSr#len) r/r=kwargsr9rApass1_findingspass2_findingsrp1p2r's r-verifyrQrsB  .C-DEE  4+G4E YZ  GNN"  !>?  "3 4b! "8 9b!"*3~+>*?{KL$ kA NN]1Z=/qyk1V9+UZ[\]f[gZhi j k ~  # NNZN(;b(@'AG H/N0C/DKPQ$ gA NNYq}oU1V9+QqykQVWXYbWcVde f g ~  # NNZN(;b(@'AG H .-c%j\9UVW NN_SZL12 W55  W55 W55)N)__doc__r1r!typingrrHrJr4strdictlistr.r<rQrRr-rYs  I" : '6 @ 1 " 6 ;  S$s)^(< d Fcd3i(A6CA6htCy&9A6tA6rR