        import traceback
if __name__ == "__main__":
if __name__ == "__main__":
if __name__ == "__main__":
if __name__ == "__main__":
import json
from typing import Dict, Any, List, Set
from colorama import init, Fore, Style

class GraphQLSecurityAnalyzer:
    def __init__(self, file_path: str):
            with open(file_path, 'r', encoding='utf-8') as f:
                self.raw_data = json.load(f)
        except Exception as e:
            print(f"{Fore.RED}파일 읽기 오류: {str(e)}{Style.RESET_ALL}")

        # 보안 관련 키워드 정의
        self.security_patterns = {
            '관리자 권한': {
                'keywords': ['admin', 'superuser', 'supervisor', 'root', 'manager', 
                           'administrator', 'moderator', 'system', 'master'],
                'color': Fore.RED,
                'risk': '높음',
                'description': '관리자 권한 관련 쿼리'
            '계정 정보': {
                'keywords': ['user', 'account', 'profile', 'member', 'employee', 
                           'staff', 'personnel', 'worker'],
                'color': Fore.YELLOW,
                'risk': '중간',
                'description': '사용자 계정 정보 조회'
            '권한 관리': {
                'keywords': ['permission', 'role', 'access', 'privilege', 'grant',
                           'authority', 'right', 'security', 'policy'],
                'color': Fore.MAGENTA,
                'risk': '높음',
                'description': '권한 관리 관련 쿼리'
            '민감한 데이터': {
                'keywords': ['password', 'token', 'secret', 'key', 'credential',
                           'authentication', 'session', 'cookie', 'jwt', 'apikey'],
                'color': Fore.RED,
                'risk': '매우 높음',
                'description': '민감한 인증 정보 관련'
            '개인정보': {
                'keywords': ['email', 'phone', 'address', 'contact', 'ssn', 'birth',
                           'private', 'personal', 'identity', 'social'],
                'color': Fore.YELLOW,
                'risk': '중간',
                'description': '개인정보 관련 쿼리'

        self.schema = self._get_schema()
        self.types = self._get_types()

    def _get_schema(self) -> Dict:
        """스키마 데이터 추출"""
            return self.raw_data.get('data', {}).get('__schema', {})
        except Exception:
            return {}

    def _get_types(self) -> List[Dict]:
        """타입 목록 추출"""
            types = self.schema.get('types', [])
            return [t for t in types if isinstance(t, dict) and not t.get('name', '').startswith('__')]
        except Exception:
            return []

    def analyze_security_queries(self):
        """보안 관련 쿼리 분석 실행"""
        print(f"\n{Fore.RED}🔒 GraphQL 보안 취약점 분석 보고서{Style.RESET_ALL}")

        # 위험한 쿼리 분석
        # 위험한 뮤테이션 분석

    def _analyze_dangerous_queries(self):
        """위험한 쿼리 분석"""
        print(f"{Fore.RED}[1] 잠재적으로 위험한 쿼리 탐지{Style.RESET_ALL}")
        query_type_name = self.schema.get('queryType', {}).get('name')
        if not query_type_name:

        dangerous_queries = []
        fields = self._get_type_fields(query_type_name)
        for field in fields:
            field_info = self._analyze_field_security(field, is_query=True)
            if field_info:

        if dangerous_queries:
            self._print_security_findings(dangerous_queries, "Query")
            print("위험한 쿼리를 발견하지 못했습니다.\n")

    def _analyze_dangerous_mutations(self):
        """위험한 뮤테이션 분석"""
        print(f"\n{Fore.RED}[2] 잠재적으로 위험한 뮤테이션 탐지{Style.RESET_ALL}")
        mutation_type_name = self.schema.get('mutationType', {}).get('name')
        if not mutation_type_name:

        dangerous_mutations = []
        fields = self._get_type_fields(mutation_type_name)
        for field in fields:
            field_info = self._analyze_field_security(field, is_query=False)
            if field_info:

        if dangerous_mutations:
            self._print_security_findings(dangerous_mutations, "Mutation")
            print("위험한 뮤테이션을 발견하지 못했습니다.\n")

    def _get_type_fields(self, type_name: str) -> List[Dict]:
        """타입의 필드 목록 추출"""
            for t in self.types:
                if t.get('name') == type_name:
                    return t.get('fields', [])
            return []
        except Exception:
            return []

    def _analyze_field_security(self, field: Dict, is_query: bool = True) -> Optional[Dict]:
        """필드의 보안 위험도 분석"""
            name = field.get('name', '').lower()
            if not name:
                return None

            # 보안 카테고리 확인
            for category, info in self.security_patterns.items():
                if any(keyword in name for keyword in info['keywords']):
                    return {
                        'name': field.get('name'),
                        'category': category,
                        'risk_level': info['risk'],
                        'description': info['description'],
                        'color': info['color'],
                        'type': self._get_type_string(field.get('type', {})),
                        'args': field.get('args', []),
                        'operation_type': 'Query' if is_query else 'Mutation'
            return None
        except Exception:
            return None

    def _print_security_findings(self, findings: List[Dict], operation_type: str):
        """보안 분석 결과 출력"""
        risk_order = {'매우 높음': 0, '높음': 1, '중간': 2}
        findings.sort(key=lambda x: risk_order.get(x['risk_level'], 999))

        for finding in findings:
            color = finding['color']
            print(f"\n{color}▶ {finding['name']}{Style.RESET_ALL}")
            print(f"  • 작업 유형: {operation_type}")
            print(f"  • 위험 수준: {finding['risk_level']}")
            print(f"  • 카테고리: {finding['category']}")
            print(f"  • 설명: {finding['description']}")
            print(f"  • 반환 타입: {finding['type']}")

            # 인자 정보 출력
            args = finding.get('args', [])
            if args:
                print("  • 인자:")
                for arg in args:
                    arg_name = arg.get('name', '')
                    arg_type = self._get_type_string(arg.get('type', {}))
                    print(f"    - {arg_name}: {arg_type}")

            # 실제 사용 예시 출력
            example = self._generate_example(finding)
            print(f"\n  • 실행 예시:\n{example}")

    def _get_type_string(self, type_info: Dict) -> str:
        """타입 정보를 문자열로 변환"""
            if not isinstance(type_info, dict):
                return 'Unknown'

            kind = type_info.get('kind', '')
            name = type_info.get('name')
            of_type = type_info.get('ofType')

            if kind == 'NON_NULL':
                return f"{self._get_type_string(of_type)}!" if of_type else 'Unknown!'
            elif kind == 'LIST':
                return f"[{self._get_type_string(of_type)}]" if of_type else '[Unknown]'
            elif name:
                return name
            return 'Unknown'
        except Exception:
            return 'Unknown'

    def _generate_example(self, finding: Dict) -> str:
        """GraphQL 쿼리 예시 생성"""
            name = finding['name']
            args = finding.get('args', [])
            operation_type = finding['operation_type'].lower()

            # 변수 정의 생성
            variables = []
            arg_values = []
            for arg in args:
                arg_name = arg.get('name', '')
                arg_type = self._get_type_string(arg.get('type', {}))
                if arg_name and arg_type:
                    variables.append(f"${arg_name}: {arg_type}")
                    arg_values.append(f"{arg_name}: ${arg_name}")

            operation_name = name.replace('_', ' ').title().replace(' ', '')
            variables_str = f"({', '.join(variables)})" if variables else ""
            args_str = f"({', '.join(arg_values)})" if arg_values else ""

            return f"""{operation_type} {operation_name}{variables_str} {{
  {name}{args_str} {{
    # 추가 필드는 실제 응답 구조에 따라 조정하세요
        except Exception:
            return f"# {name} 예시 생성 실패"

    def save_report(self, output_file: str):
        """분석 보고서를 파일로 저장"""
            import sys
            from io import StringIO
            old_stdout = sys.stdout
            output = StringIO()
            sys.stdout = output
            sys.stdout = old_stdout
            from re import sub
            report = sub(r'\x1B(?:[@-Z\\-_]|\[[0-?]*[ -/]*[@-~])', '', output.getvalue())
            with open(output_file, 'w', encoding='utf-8') as f:
            print(f"\n{Fore.GREEN}보안 분석 보고서가 {output_file}에 저장되었습니다.{Style.RESET_ALL}")
        except Exception as e:
            print(f"{Fore.RED}파일 저장 오류: {str(e)}{Style.RESET_ALL}")
            if 'output' in locals():

def main():
    import sys
    if len(sys.argv) < 2:
        print(f"{Fore.RED}사용법: python {sys.argv[0]} <스키마파일> [출력파일]{Style.RESET_ALL}")
    input_file = sys.argv[1]
    output_file = sys.argv[2] if len(sys.argv) > 2 else "graphql_security_report.txt"
        analyzer = GraphQLSecurityAnalyzer(input_file)
        analyzer.analyze_security_queries()  # 콘솔에 출력
        analyzer.save_report(output_file)  # 파일로 저장
    except Exception as e:
        print(f"{Fore.RED}오류 발생: {str(e)}{Style.RESET_ALL}")

if __name__ == "__main__":
import json
from typing import Dict, List, Optional
from colorama import init, Fore, Style

class SafeGraphQLScanner:
    def __init__(self, schema_file: str):
        self.schema_data = self._load_schema_safely(schema_file)
        self.sensitive_keywords = {
            'ADMIN': ['admin', 'root', 'superuser', 'supervisor'],
            'AUTH': ['login', 'auth', 'token', 'password', 'credential'],
            'USER': ['user', 'account', 'profile', 'member'],
            'PERMISSION': ['permission', 'role', 'access', 'grant'],
            'SENSITIVE': ['email', 'phone', 'address', 'ssn', 'secret']

    def _load_schema_safely(self, file_path: str) -> dict:
        """안전하게 스키마 파일 로드"""
            with open(file_path, 'r', encoding='utf-8') as f:
                data = json.load(f)
            return data if isinstance(data, dict) else {}
        except Exception as e:
            print(f"{Fore.RED}스키마 파일 로드 실패: {str(e)}{Style.RESET_ALL}")
            return {}

    def _safe_get_schema(self) -> dict:
        """안전하게 스키마 데이터 추출"""
            if 'data' not in self.schema_data:
                return {}
            data = self.schema_data['data']
            if not isinstance(data, dict):
                return {}
            if '__schema' not in data:
                return {}
            schema = data['__schema']
            if not isinstance(schema, dict):
                return {}
            return schema
        except Exception:
            return {}

    def _safe_get_types(self, schema: dict) -> List[dict]:
        """안전하게 타입 목록 추출"""
            if 'types' not in schema:
                return []
            types = schema['types']
            if not isinstance(types, list):
                return []
            return [t for t in types if isinstance(t, dict)]
        except Exception:
            return []

    def _is_sensitive_field(self, name: str) -> tuple:
        """필드가 민감한지 확인"""
        name_lower = name.lower()
        for category, keywords in self.sensitive_keywords.items():
            if any(keyword in name_lower for keyword in keywords):
                return True, category
        return False, None

    def scan_security_issues(self):
        """보안 이슈 스캔"""
        schema = self._safe_get_schema()
        if not schema:
            print(f"{Fore.RED}유효한 스키마를 찾을 수 없습니다.{Style.RESET_ALL}")

        print(f"\n{Fore.RED}🔍 GraphQL 보안 스캔 결과{Style.RESET_ALL}")

        # Query 분석
        # Mutation 분석

    def _get_operation_fields(self, schema: dict, operation_type: str) -> List[dict]:
        """Query/Mutation 필드 안전하게 가져오기"""
            # operation_type은 'queryType' 또는 'mutationType'
            if operation_type not in schema:
                return []
            type_info = schema[operation_type]
            if not isinstance(type_info, dict):
                return []
            type_name = type_info.get('name')
            if not type_name:
                return []

            # 해당 타입의 필드 찾기
            types = self._safe_get_types(schema)
            for type_obj in types:
                if type_obj.get('name') == type_name:
                    fields = type_obj.get('fields', [])
                    return fields if isinstance(fields, list) else []
            return []
        except Exception:
            return []

    def _scan_queries(self, schema: dict):
        """Query 분석"""
        print(f"{Fore.YELLOW}[1] 민감한 Query 검사{Style.RESET_ALL}")
        fields = self._get_operation_fields(schema, 'queryType')
        if not fields:
            print("Query 필드를 찾을 수 없습니다.\n")

        sensitive_queries = []
        for field in fields:
            if not isinstance(field, dict):
            field_name = field.get('name', '')
            if not field_name:

            is_sensitive, category = self._is_sensitive_field(field_name)
            if is_sensitive:
                    'name': field_name,
                    'category': category,
                    'type': self._get_safe_type_string(field.get('type', {})),
                    'args': field.get('args', [])

        if sensitive_queries:
            self._print_sensitive_operations(sensitive_queries, "Query")
            print("민감한 Query를 발견하지 못했습니다.\n")

    def _scan_mutations(self, schema: dict):
        """Mutation 분석"""
        print(f"\n{Fore.YELLOW}[2] 민감한 Mutation 검사{Style.RESET_ALL}")
        fields = self._get_operation_fields(schema, 'mutationType')
        if not fields:
            print("Mutation 필드를 찾을 수 없습니다.\n")

        sensitive_mutations = []
        for field in fields:
            if not isinstance(field, dict):
            field_name = field.get('name', '')
            if not field_name:

            is_sensitive, category = self._is_sensitive_field(field_name)
            if is_sensitive:
                    'name': field_name,
                    'category': category,
                    'type': self._get_safe_type_string(field.get('type', {})),
                    'args': field.get('args', [])

        if sensitive_mutations:
            self._print_sensitive_operations(sensitive_mutations, "Mutation")
            print("민감한 Mutation을 발견하지 못했습니다.\n")

    def _get_safe_type_string(self, type_info: dict) -> str:
        """타입 정보 안전하게 문자열로 변환"""
            if not isinstance(type_info, dict):
                return 'Unknown'

            kind = type_info.get('kind', '')
            name = type_info.get('name')
            of_type = type_info.get('ofType')

            if kind == 'NON_NULL':
                return f"{self._get_safe_type_string(of_type)}!" if of_type else 'Unknown!'
            elif kind == 'LIST':
                return f"[{self._get_safe_type_string(of_type)}]" if of_type else '[Unknown]'
            elif name:
                return name
            return 'Unknown'
        except Exception:
            return 'Unknown'

    def _print_sensitive_operations(self, operations: List[dict], op_type: str):
        """민감한 작업 정보 출력"""
        for op in operations:
                name = op['name']
                category = op['category']
                return_type = op['type']
                args = op.get('args', [])

                print(f"\n{Fore.RED}▶ {name}{Style.RESET_ALL}")
                print(f"  • 유형: {op_type}")
                print(f"  • 보안 분류: {category}")
                print(f"  • 반환 타입: {return_type}")

                if args:
                    print("  • 인자:")
                    for arg in args:
                        if not isinstance(arg, dict):
                        arg_name = arg.get('name', '')
                        arg_type = self._get_safe_type_string(arg.get('type', {}))
                        if arg_name and arg_type:
                            print(f"    - {arg_name}: {arg_type}")

                # 예시 쿼리 생성
                example = self._generate_safe_example(op_type, name, args)
                print(f"\n  • 사용 예시:\n{example}")
            except Exception:

    def _generate_safe_example(self, op_type: str, name: str, args: List[dict]) -> str:
        """안전한 예시 쿼리 생성"""
            # 변수 정의 생성
            variables = []
            arg_values = []
            for arg in args:
                if not isinstance(arg, dict):
                arg_name = arg.get('name', '')
                arg_type = self._get_safe_type_string(arg.get('type', {}))
                if arg_name and arg_type:
                    variables.append(f"${arg_name}: {arg_type}")
                    arg_values.append(f"{arg_name}: ${arg_name}")

            operation_name = name.replace('_', ' ').title().replace(' ', '')
            variables_str = f"({', '.join(variables)})" if variables else ""
            args_str = f"({', '.join(arg_values)})" if arg_values else ""

            return f"""{op_type.lower()} {operation_name}{variables_str} {{
  {name}{args_str} {{
    # 필요한 필드들을 추가하세요
        except Exception:
            return f"# {name} 예시 생성 실패"

    def save_report(self, output_file: str):
        """결과를 파일로 저장"""
            import sys
            from io import StringIO
            old_stdout = sys.stdout
            output = StringIO()
            sys.stdout = output
            sys.stdout = old_stdout
            from re import sub
            report = sub(r'\x1B(?:[@-Z\\-_]|\[[0-?]*[ -/]*[@-~])', '', output.getvalue())
            with open(output_file, 'w', encoding='utf-8') as f:
            print(f"\n{Fore.GREEN}스캔 결과가 {output_file}에 저장되었습니다.{Style.RESET_ALL}")
        except Exception as e:
            print(f"{Fore.RED}파일 저장 오류: {str(e)}{Style.RESET_ALL}")
            if 'output' in locals():

def main():
    import sys
    if len(sys.argv) < 2:
        print(f"{Fore.RED}사용법: python {sys.argv[0]} <스키마파일> [출력파일]{Style.RESET_ALL}")
    input_file = sys.argv[1]
    output_file = sys.argv[2] if len(sys.argv) > 2 else "security_scan_report.txt"
        scanner = SafeGraphQLScanner(input_file)
        scanner.scan_security_issues()  # 콘솔에 출력
        scanner.save_report(output_file)  # 파일로 저장
    except Exception as e:
        print(f"{Fore.RED}오류 발생: {str(e)}{Style.RESET_ALL}")

if __name__ == "__main__":
import json
from typing import Dict, List, Optional, Set
from colorama import init, Fore, Style

class GraphQLScanner:
    def __init__(self, schema_file: str):
        self.schema_data = self._load_schema_safely(schema_file)
        self.schema = self._safe_get_schema()
        self.types = self._safe_get_types(self.schema)
        # 중요 키워드 정의
        self.sensitive_keywords = {
            'ADMIN': {
                'keywords': ['admin', 'root', 'superuser', 'supervisor'],
                'color': Fore.RED,
                'risk': '높음'
            'AUTH': {
                'keywords': ['login', 'auth', 'token', 'password', 'credential'],
                'color': Fore.RED,
                'risk': '높음'
            'USER': {
                'keywords': ['user', 'account', 'profile', 'member'],
                'color': Fore.YELLOW,
                'risk': '중간'
            'PERMISSION': {
                'keywords': ['permission', 'role', 'access', 'grant'],
                'color': Fore.RED,
                'risk': '높음'
            'SENSITIVE': {
                'keywords': ['email', 'phone', 'address', 'ssn', 'secret'],
                'color': Fore.YELLOW,
                'risk': '중간'

    def _load_schema_safely(self, file_path: str) -> dict:
            with open(file_path, 'r', encoding='utf-8') as f:
                data = json.load(f)
            return data if isinstance(data, dict) else {}
        except Exception as e:
            print(f"{Fore.RED}스키마 파일 로드 실패: {str(e)}{Style.RESET_ALL}")
            return {}

    def _safe_get_schema(self) -> dict:
            return self.schema_data.get('data', {}).get('__schema', {})
        except Exception:
            return {}

    def _safe_get_types(self, schema: dict) -> List[dict]:
            types = schema.get('types', [])
            return [t for t in types if isinstance(t, dict)]
        except Exception:
            return []

    def _find_type_by_name(self, type_name: str) -> Optional[dict]:
        """타입 이름으로 타입 정보 찾기"""
            for t in self.types:
                if t.get('name') == type_name:
                    return t
            return None
        except Exception:
            return None

    def _get_all_fields_for_type(self, type_name: str, visited: Set[str] = None) -> List[str]:
        """타입의 모든 가능한 필드를 재귀적으로 수집"""
        if visited is None:
            visited = set()
        if type_name in visited:
            return []
        fields = []
        type_info = self._find_type_by_name(type_name)
        if not type_info:
            return []

        for field in type_info.get('fields', []):
            field_name = field.get('name')
            if not field_name:
            field_type = self._get_field_type_name(field.get('type', {}))
            if not field_type:

            # 객체 타입인 경우 재귀적으로 필드 수집
            if self._is_object_type(field_type) and field_type not in visited:
                sub_fields = self._get_all_fields_for_type(field_type, visited)
                if sub_fields:
                    fields.extend([f"{field_name}.{sub}" for sub in sub_fields])

        return fields

    def _is_object_type(self, type_name: str) -> bool:
        """해당 타입이 객체 타입인지 확인"""
        type_info = self._find_type_by_name(type_name)
        if not type_info:
            return False
        return type_info.get('kind') == 'OBJECT'

    def _get_field_type_name(self, type_info: dict) -> Optional[str]:
        """필드의 실제 타입 이름 추출"""
            if not type_info:
                return None
            if type_info.get('kind') == 'NON_NULL':
                return self._get_field_type_name(type_info.get('ofType', {}))
            elif type_info.get('kind') == 'LIST':
                return self._get_field_type_name(type_info.get('ofType', {}))
                return type_info.get('name')
        except Exception:
            return None

    def scan(self):
        """보안 스캔 실행"""
        print(f"\n{Fore.RED}🔍 GraphQL 보안 스캔 결과{Style.RESET_ALL}")

        self._scan_operations('queryType', 'Query')
        print("\n" + "="*60 + "\n")
        self._scan_operations('mutationType', 'Mutation')

    def _scan_operations(self, operation_type: str, operation_name: str):
        """작업(Query/Mutation) 스캔"""
        print(f"{Fore.YELLOW}[*] 민감한 {operation_name} 분석{Style.RESET_ALL}")
        root_type = self.schema.get(operation_type, {})
        if not root_type:
            print(f"- {operation_name} 타입을 찾을 수 없습니다.\n")

        type_name = root_type.get('name')
        if not type_name:
            print(f"- {operation_name} 타입 이름을 찾을 수 없습니다.\n")

        type_info = self._find_type_by_name(type_name)
        if not type_info:
            print(f"- {operation_name} 타입 정보를 찾을 수 없습니다.\n")

        fields = type_info.get('fields', [])
        if not fields:
            print(f"- 사용 가능한 {operation_name}가 없습니다.\n")

        for field in fields:
            self._analyze_sensitive_field(field, operation_name)

    def _analyze_sensitive_field(self, field: dict, operation_type: str):
        """민감한 필드 분석"""
            name = field.get('name', '')
            if not name:

            # 보안 분류 확인
            field_category = None
            risk_level = None
            color = None

            for category, info in self.sensitive_keywords.items():
                if any(keyword in name.lower() for keyword in info['keywords']):
                    field_category = category
                    risk_level = info['risk']
                    color = info['color']

            if field_category:
                # 반환 타입 분석
                return_type = self._get_field_type_name(field.get('type', {}))
                if not return_type:

                # 사용 가능한 모든 필드 수집
                available_fields = self._get_all_fields_for_type(return_type)
                if not available_fields:

                # 출력
                print(f"\n{color}▶ {name}{Style.RESET_ALL}")
                print(f"  • 보안 분류: {field_category}")
                print(f"  • 위험 수준: {risk_level}")
                print(f"  • 반환 타입: {return_type}")

                # 인자 정보 출력
                args = field.get('args', [])
                arg_strings = []
                if args:
                    print("  • 인자:")
                    for arg in args:
                        arg_name = arg.get('name', '')
                        arg_type = self._get_safe_type_string(arg.get('type', {}))
                        if arg_name and arg_type:
                            print(f"    - {arg_name}: {arg_type}")
                            arg_strings.append(f"{arg_name}: ${arg_name}")

                # 완성된 쿼리 예시 생성
        except Exception:

    def _get_safe_type_string(self, type_info: dict) -> str:
        """안전한 타입 문자열 변환"""
            if not isinstance(type_info, dict):
                return 'Unknown'

            kind = type_info.get('kind', '')
            name = type_info.get('name')
            of_type = type_info.get('ofType')

            if kind == 'NON_NULL':
                return f"{self._get_safe_type_string(of_type)}!" if of_type else 'Unknown!'
            elif kind == 'LIST':
                return f"[{self._get_safe_type_string(of_type)}]" if of_type else '[Unknown]'
            elif name:
                return name
            return 'Unknown'
        except Exception:
            return 'Unknown'

    def _print_complete_query(self, operation_type: str, name: str, args: List[dict], fields: List[str]):
        """완성된 쿼리 출력"""
            # 변수 정의 생성
            var_defs = []
            arg_values = []
            for arg in args:
                arg_name = arg.get('name', '')
                arg_type = self._get_safe_type_string(arg.get('type', {}))
                if arg_name and arg_type:
                    var_defs.append(f"${arg_name}: {arg_type}")
                    arg_values.append(f"{arg_name}: ${arg_name}")

            # 필드 구조화
            structured_fields = self._structure_fields(fields)
            operation_name = name.replace('_', ' ').title().replace(' ', '')
            var_def_str = f"({', '.join(var_defs)})" if var_defs else ""
            args_str = f"({', '.join(arg_values)})" if arg_values else ""

            print(f"\n  • 실행 가능한 쿼리:")
            print(f"{operation_type} {operation_name}{var_def_str} {{")
            print(f"  {name}{args_str} {{")
            self._print_structured_fields(structured_fields, "    ")
            print("  }")
        except Exception:
            print(f"# {name} 쿼리 생성 실패")

    def _structure_fields(self, fields: List[str]) -> Dict:
        """필드 목록을 구조화"""
        result = {}
        for field in fields:
            parts = field.split('.')
            current = result
            for i, part in enumerate(parts):
                if i == len(parts) - 1:
                    current[part] = None
                    if part not in current:
                        current[part] = {}
                    current = current[part]
        return result

    def _print_structured_fields(self, fields: Dict, indent: str):
        """구조화된 필드 출력"""
        for field, subfields in fields.items():
            if subfields is None:
                print(f"{indent}{field} {{")
                self._print_structured_fields(subfields, indent + "  ")

    def save_report(self, output_file: str):
        """결과를 파일로 저장"""
            import sys
            from io import StringIO
            old_stdout = sys.stdout
            output = StringIO()
            sys.stdout = output
            sys.stdout = old_stdout
            from re import sub
            report = sub(r'\x1B(?:[@-Z\\-_]|\[[0-?]*[ -/]*[@-~])', '', output.getvalue())
            with open(output_file, 'w', encoding='utf-8') as f:
            print(f"\n{Fore.GREEN}스캔 결과가 {output_file}에 저장되었습니다.{Style.RESET_ALL}")
        except Exception as e:
            print(f"{Fore.RED}파일 저장 오류: {str(e)}{Style.RESET_ALL}")
            if 'output' in locals():

def main():
    import sys
    if len(sys.argv) < 2:
        print(f"{Fore.RED}사용법: python {sys.argv[0]} <스키마파일> [출력파일]{Style.RESET_ALL}")
    input_file = sys.argv[1]
    output_file = sys.argv[2] if len(sys.argv) > 2 else "security_scan_report.txt"
        scanner = GraphQLScanner(input_file)
        scanner.scan()  # 콘솔에 출력
        scanner.save_report(output_file)  # 파일로 저장
    except Exception as e:
        print(f"{Fore.RED}오류 발생: {str(e)}{Style.RESET_ALL}")

if __name__ == "__main__":
