# SIC MCP Agents v6.0
#
# INSTALLATION COMMANDS:
# python3 -m venv sic_env
# source sic_env/bin/activate
# python3 -m pip install -r requirements.txt
# python3 server.py

# ============================================================================
# CORE FRAMEWORK DEPENDENCIES (ACTUALLY USED)
# ============================================================================
flask>=3.1.3,<4.0.0             # Web framework for API server (flask import)
flask-limiter>=3.5.0,<4.0.0    # Per-IP rate limiting for high-risk endpoints
requests>=2.31.0,<3.0.0         # HTTP library (requests import)
psutil>=5.9.0,<6.0.0            # System utilities (psutil import)
fastmcp>=3.2.0,<4.0.0           # MCP framework (from mcp.server.fastmcp import FastMCP)

# ============================================================================
# WEB SCRAPING & AUTOMATION (ACTUALLY USED)
# ============================================================================
beautifulsoup4>=4.12.0,<5.0.0   # HTML parsing (from bs4 import BeautifulSoup)
selenium>=4.15.0,<5.0.0         # Browser automation (selenium imports)
webdriver-manager>=4.0.0,<5.0.0 # ChromeDriver management (referenced in code)

# ============================================================================
# ASYNC & NETWORKING (ACTUALLY USED)
# ============================================================================
aiohttp>=3.8.0,<4.0.0           # Async HTTP (aiohttp import)

# ============================================================================
# PROXY & TESTING (ACTUALLY USED)
# ============================================================================
mitmproxy>=12.2.2,<13.0.0        # HTTP proxy (mitmproxy imports)

# ============================================================================
# BINARY ANALYSIS (CONDITIONALLY USED)
# ============================================================================
pwntools>=4.10.0,<5.0.0         # Binary exploitation (from pwn import *)
angr>=9.2.0,<10.0.0             # Binary analysis (import angr)
bcrypt>=4.0.1,<5.0.0           # Pin bcrypt for passlib compatibility; min 4.0.1 (pwntools compat)
stripe>=8.0.0,<9.0.0           # Stripe billing SDK (billing/ module)

# ============================================================================
# SSO (SAML 2.0 + OIDC — optional, lazy-imported by sso/ package)
# ============================================================================
python3-saml>=1.16.0            # SAML 2.0 SP (sso/saml_handler.py — lazy import)
authlib>=1.3.0                  # OIDC client (sso/oidc_handler.py — lazy import)


# ============================================================================
# TRANSITIVE DEP PINS (security — pip-audit CVEs, 2026-05-05)
# ============================================================================
cryptography>=46.0.6        # CVE-2024-12797, CVE-2026-26007, CVE-2026-34073
h11>=0.16.0                 # CVE-2025-43859
h2>=4.3.0                   # CVE-2025-57804
tornado>=6.5.5              # CVE-2025-47287, CVE-2024-52804, CVE-2026-31958, CVE-2026-35536
pyopenssl>=26.0.0           # CVE-2026-27448, CVE-2026-27459
protobuf>=5.29.6            # CVE-2025-4565, CVE-2026-0994
brotli>=1.2.0               # CVE-2025-6176

# ============================================================================
# EXTERNAL SECURITY TOOLS (150+ Tools - Install separately)
# ============================================================================
#
# SIC v6.0 integrates with 150+ external security tools that must be
# installed separately from their official sources:
#
# 🔍 Network & Reconnaissance (25+ tools):
# - nmap, masscan, rustscan, autorecon, amass, subfinder, fierce
# - dnsenum, theharvester, responder, netexec, enum4linux-ng
#
# 🌐 Web Application Security (40+ tools):
# - gobuster, feroxbuster, ffuf, dirb, dirsearch, nuclei, nikto
# - sqlmap, wpscan, arjun, paramspider, x8, katana, httpx
# - dalfox, jaeles, hakrawler, gau, waybackurls, wafw00f
#
# 🔐 Authentication & Password (12+ tools):
# - hydra, john, hashcat, medusa, patator, netexec
# - evil-winrm, hash-identifier, ophcrack
#
# 🔬 Binary Analysis & Reverse Engineering (25+ tools):
# - ghidra, radare2, gdb, binwalk, ropgadget, checksec, strings
# - volatility3, foremost, steghide, exiftool, angr, pwntools
#
# ☁️ Cloud & Container Security (20+ tools):
# - prowler, scout-suite, trivy, kube-hunter, kube-bench
# - docker-bench-security, checkov, terrascan, falco
#
# 🏆 CTF & Forensics (20+ tools):
# - volatility3, autopsy, sleuthkit, stegsolve, zsteg, outguess
# - photorec, testdisk, scalpel, bulk-extractor
#
# 🕵️ OSINT & Intelligence (20+ tools):
# - sherlock, social-analyzer, recon-ng, maltego, spiderfoot
# - shodan-cli, censys-cli, have-i-been-pwned
#
# Installation Notes:
# 1. Kali Linux 2024.1+ includes most tools by default
# 2. Ubuntu/Debian users should install tools from official repositories
# 3. Some tools require compilation from source or additional setup
# 4. Cloud tools require API keys and authentication configuration
# 5. Browser Agent requires Chrome/Chromium and ChromeDriver installation
#
# For complete installation instructions and setup guides, see README.md

sentry-sdk>=2.0.0
