kairos-chain 2.8.0 → 2.9.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 00c55f8f91953d2e57924bdc4748c756c3dce18b64a77e8ff17ebed825f506ce
-  data.tar.gz: d4f1a418e9fbeecde4a5a8f9eecc37116b9620b625af0a2e91f09445fd60c673
+  metadata.gz: f00cda5bb11b581435b296790b3cac3b49a1919f7280897b545b23ed2ead72a9
+  data.tar.gz: cb213562d6fa26ee5cec11ee68f2242bff54ae72e23d51457a9beee11ece5fbd
 SHA512:
-  metadata.gz: 96fc0ef27dcab7f578021254b8e0356644d958fb2da8a61eff02ba9862f02e4542bde04750173edeef0029a34d3a042d308217c17aa98182ebeed134f49a7337
-  data.tar.gz: 0dcbbf48a3c2d1fc6226101b204b1aa7a9f5b0f24e5f1172f29caffd3237195b611aad3684f79034c6528596e5aafa90d0e6750b347b9d5d2e7c419596418747
+  metadata.gz: 7b53f2bde852c3a0476509819b31cea297904c9515cddf438b0922d1efcf8c7f4eaa2a9b1762d39ba2e8b2f9057287354e946bca8bc9654459b92ef0389a8323
+  data.tar.gz: 832dcf7703ce7cbfcf035684841e7922370430725e412044b4427e87353459e87984b122717966b3c1aca1e5b874b2cf1fffc2b391844b3e9636ff6a0267e7c8

data/CHANGELOG.md

@@ -4,6 +4,31 @@ All notable changes to the `kairos-chain` gem will be documented in this file.
 
 This project follows [Semantic Versioning](https://semver.org/).
 
+## [2.9.0] - 2026-03-14
+
+### Added
+
+- **AutoExec SkillSet** (`autoexec` v0.1.1): New opt-in SkillSet for semi-autonomous task planning and execution with constitutive chain recording.
+  - `autoexec_plan`: Generate structured task plans from natural language descriptions. Outputs `.kdsl` DSL files with SHA-256 hash-locked integrity. Supports DSL and JSON input formats.
+  - `autoexec_run`: Execute planned tasks with graduated approval (`dry_run` default, `execute`, `status` modes). Two-phase commit records intent before and outcome after execution. Checkpoint resume for halted tasks.
+  - **Regex DSL parser**: No `eval`, no `BasicObject` sandbox — 18 forbidden patterns checked before parsing. Roundtrip-safe (`parse` → `to_source` → `parse`).
+  - **Risk classifier**: Static rule-based risk classification (low/medium/high) with L0 deny-list (read from L0 governance skill, self-referential design), protected file detection, and L0 firewall.
+  - **Plan store**: File-based plan storage with atomic execution lock (`File::CREAT|EXCL|WRONLY`), PID liveness checks, stale lock timeout, and checkpoint management.
+  - **`requires_human_cognition`**: Step-level halt for human cognitive participation (constitutive, not cautionary — Proposition 9). Saves checkpoint and resumes on re-run.
+  - **TOCTOU prevention**: Single load + in-memory hash verification (no separate verify then load).
+  - **Chain recording**: Two-phase commit with intent block before execution and outcome block after (validity-conditional recording, Proposition 5). Chain failures surfaced in response, never silently swallowed.
+  - **Path traversal prevention**: `task_id` validated with `\A\w+\z` in both DSL and JSON input paths.
+  - Bundled L1 knowledge: `autoexec_guide` (usage guide with examples)
+  - 75 unit tests across TaskDsl, RiskClassifier, and PlanStore
+
+### Fixed
+
+- **TaskDsl colon false-positive**: Unknown key scanner no longer matches colons inside quoted action strings (e.g., `"run command: echo hello"`)
+- **TaskDsl missing requires**: Added `require 'digest'` and `require 'json'` for module independence
+- **AutoexecRun lock release**: Moved `acquire_lock` inside `begin/ensure` block with `lock_acquired` flag to guarantee lock release on any exception
+
+---
+
 ## [2.8.0] - 2026-03-08
 
 ### Added
@@ -371,6 +396,7 @@ This project follows [Semantic Versioning](https://semver.org/).
 - Skill promotion with Persona Assembly
 - Tool guide and metadata system
 
+[2.9.0]: https://github.com/masaomi/KairosChain_2026/compare/v2.8.0...v2.9.0
 [2.8.0]: https://github.com/masaomi/KairosChain_2026/compare/v2.7.0...v2.8.0
 [2.7.0]: https://github.com/masaomi/KairosChain_2026/compare/v2.6.0...v2.7.0
 [2.6.0]: https://github.com/masaomi/KairosChain_2026/compare/v2.5.0...v2.6.0

data/lib/kairos_mcp/version.rb

@@ -1,4 +1,4 @@
 module KairosMcp
-  VERSION = "2.8.0"
+  VERSION = "2.9.0"
   CHANGELOG_URL = "https://github.com/masaomi/KairosChain_2026/blob/main/CHANGELOG.md"
 end

data/templates/knowledge/multi_agent_design_workflow/multi_agent_design_workflow.md

@@ -0,0 +1,124 @@
+---
+name: multi_agent_design_workflow
+description: "Multi-agent deliberation workflow for design, implementation, and iterative review"
+version: "1.0"
+layer: L1
+tags: [workflow, multi-agent, design, review, persona-assembly, multi-llm]
+---
+
+# Multi-Agent Design Workflow
+
+Implementation decisions are made through structured multi-agent deliberation,
+not by a single agent acting alone. This workflow applies to both initial design
+and post-implementation review, forming an iterative loop.
+
+## Workflow Overview
+
+```
+┌─────────────────────────────────────────────────────┐
+│  1. Rough Idea (Human)                              │
+│     - Present rough thoughts, goals, constraints    │
+│                                                     │
+│  2. Agent Team Analysis                             │
+│     - Multiple agents analyze from different angles │
+│     - Surface trade-offs, risks, alternatives       │
+│                                                     │
+│  3. Persona Assembly                                │
+│     - Project-philosophy-aware discussion            │
+│     - e.g., KairosChain: consider 9 propositions   │
+│     - Filter proposals through project identity     │
+│                                                     │
+│  4. Final Proposal Selection                        │
+│     - Design: select design plan                    │
+│     - Review: identify critical blockers            │
+│     - Human makes the final call                    │
+│                                                     │
+│  5. (Optional) Multi-LLM Integration               │
+│     - Run Gemini, GPT, etc. in separate terminals   │
+│     - Integrate diverse LLM perspectives            │
+│     - Synthesize before proceeding                  │
+│                                                     │
+│  6. Implementation / Revision                       │
+│     - Execute the agreed plan                       │
+│     - On first pass: implement                      │
+│     - On subsequent passes: apply fixes             │
+│                                                     │
+│  ┌─── Review Loop (steps 2-6) ───────────────┐     │
+│  │  After implementation, loop back to step 2 │     │
+│  │  for review. Continue until exit condition. │     │
+│  └────────────────────────────────────────────┘     │
+└─────────────────────────────────────────────────────┘
+```
+
+## Review Loop and Termination
+
+After the initial implementation (step 6), the workflow loops back to step 2
+for review. Each review iteration may produce further fixes, which are then
+reviewed again.
+
+### Exit Conditions (whichever comes first)
+
+| Condition | Description |
+|-----------|-------------|
+| **No critical defects** | No blockers or fatal flaws remain after review |
+| **Max loop count reached** | Default: **3 iterations**. Adjustable per task. |
+
+### Loop Behavior
+
+- **Iteration 1**: Full review — architectural, logical, edge cases
+- **Iteration 2**: Focused review — only issues from iteration 1 fixes
+- **Iteration 3+**: Regression check — confirm no new issues introduced
+
+If the max loop count is reached but blockers remain, the workflow pauses
+and escalates to the human for a decision (continue, defer, or accept as-is).
+
+## Output Artifacts
+
+Each workflow execution produces two distinct artifacts, saved to both
+L2 context and the `log/` directory.
+
+### Pre-Implementation Plan
+
+Saved **before** step 6 (first implementation):
+
+- **L2 context**: `context_save()` with tag `plan`
+- **log/ file**: `log/{date}_{feature}_plan.md`
+- **Contents**: design decision, rationale, rejected alternatives, risks
+
+### Post-Implementation Review Log
+
+Saved **after** each review loop iteration:
+
+- **L2 context**: `context_save()` with tag `review`
+- **log/ file**: `log/{date}_{feature}_review_N.md` (N = iteration number)
+- **Contents**: findings, severity, fixes applied, remaining issues
+
+### Naming Convention
+
+```
+log/20260313_auth_refactor_plan.md
+log/20260313_auth_refactor_review_1.md
+log/20260313_auth_refactor_review_2.md
+```
+
+## When to Use This Workflow
+
+- New feature design with significant architectural impact
+- Refactoring that touches multiple components
+- Any change where "just implement it" risks cascading problems
+- Bug fixes that require root cause analysis before patching
+
+## When NOT to Use
+
+- Trivial fixes (typos, single-line changes)
+- Well-understood, isolated changes with no design ambiguity
+- Exploratory prototyping where speed matters more than correctness
+
+## Relation to Existing Tools
+
+| Step | KairosChain Tool |
+|------|-----------------|
+| Agent Team Analysis | Agent tool with multiple subagents |
+| Persona Assembly | `skills_audit(command: "check")` or manual persona invocation |
+| Multi-LLM Integration | External (separate terminal sessions) |
+| Plan/Review output | `context_save()` + file write to `log/` |

data/templates/knowledge/multi_agent_design_workflow_jp/multi_agent_design_workflow_jp.md

@@ -0,0 +1,123 @@
+---
+name: multi_agent_design_workflow_jp
+description: "マルチエージェント審議ワークフロー：設計・実装・反復レビュー"
+version: "1.0"
+layer: L1
+tags: [workflow, multi-agent, design, review, persona-assembly, multi-llm]
+---
+
+# マルチエージェント設計ワークフロー
+
+実装の意思決定は、単一エージェントではなく、構造化されたマルチエージェント審議を
+通じて行う。このワークフローは初期設計と実装後レビューの両方に適用され、
+反復ループを形成する。
+
+## ワークフロー概要
+
+```
+┌─────────────────────────────────────────────────────┐
+│  1. ラフなアイデア提示（人間）                         │
+│     - 大まかな考え、目標、制約を伝える               │
+│                                                     │
+│  2. エージェントチーム多角的分析                      │
+│     - 複数エージェントが異なる角度から分析            │
+│     - トレードオフ、リスク、代替案を洗い出す          │
+│                                                     │
+│  3. Persona Assembly                                │
+│     - プロジェクトの哲学を考慮した議論                │
+│     - 例：KairosChainなら9命題を考慮                 │
+│     - プロジェクトのアイデンティティで提案をフィルタ   │
+│                                                     │
+│  4. 最終案選定                                       │
+│     - 設計：設計案を選定                             │
+│     - レビュー：致命的ブロッカーを特定                │
+│     - 最終判断は人間が行う                           │
+│                                                     │
+│  5.（任意）マルチLLM統合                              │
+│     - Gemini、GPT等を別ターミナルで起動               │
+│     - 異なるLLMの視点を統合                          │
+│     - 統合結果をもとに次のステップへ                  │
+│                                                     │
+│  6. 実装 / 修正                                      │
+│     - 合意された計画を実行                           │
+│     - 初回：実装                                     │
+│     - 2回目以降：修正適用                            │
+│                                                     │
+│  ┌─── レビューループ（ステップ2-6）──────────┐      │
+│  │  実装後、ステップ2に戻りレビュー。            │      │
+│  │  終了条件を満たすまで繰り返す。               │      │
+│  └──────────────────────────────────────────┘      │
+└─────────────────────────────────────────────────────┘
+```
+
+## レビューループと終了条件
+
+初回実装（ステップ6）の後、ステップ2に戻りレビューを行う。
+各レビューで追加修正が発生した場合、再度レビューを繰り返す。
+
+### 終了条件（いずれか先に満たされた方）
+
+| 条件 | 説明 |
+|------|------|
+| **致命的欠陥なし** | ブロッカーや致命的欠陥がレビューで検出されない |
+| **最大ループ回数到達** | デフォルト：**3回**。タスクごとに調整可能。 |
+
+### ループごとの挙動
+
+- **1回目**：フルレビュー — アーキテクチャ、ロジック、エッジケース
+- **2回目**：焦点レビュー — 1回目の修正に起因する問題のみ
+- **3回目以降**：リグレッションチェック — 新たな問題の混入がないか確認
+
+最大ループ回数に到達してもブロッカーが残っている場合、ワークフローを一時停止し
+人間に判断をエスカレーションする（継続、延期、現状受け入れ）。
+
+## 出力成果物
+
+ワークフロー実行ごとに2種類の成果物を生成し、L2コンテキストと
+`log/` ディレクトリの両方に保存する。
+
+### 実装前プラン
+
+ステップ6（初回実装）の**前**に保存：
+
+- **L2コンテキスト**: `context_save()` タグ `plan`
+- **log/ ファイル**: `log/{日付}_{機能名}_plan.md`
+- **内容**: 設計判断、理由、却下された代替案、リスク
+
+### 実装後レビューログ
+
+各レビューループ反復の**後**に保存：
+
+- **L2コンテキスト**: `context_save()` タグ `review`
+- **log/ ファイル**: `log/{日付}_{機能名}_review_N.md`（N = 反復回数）
+- **内容**: 発見事項、重大度、適用した修正、残存課題
+
+### 命名規則
+
+```
+log/20260313_auth_refactor_plan.md
+log/20260313_auth_refactor_review_1.md
+log/20260313_auth_refactor_review_2.md
+```
+
+## 使用すべき場面
+
+- アーキテクチャに大きな影響を与える新機能の設計
+- 複数コンポーネントにまたがるリファクタリング
+- 「とりあえず実装」では連鎖的な問題を引き起こすリスクがある変更
+- パッチ適用前に根本原因分析が必要なバグ修正
+
+## 使用しない場面
+
+- 些細な修正（タイポ、1行の変更）
+- 設計に曖昧さのない、よく理解された独立した変更
+- 正確さよりもスピードが重要な探索的プロトタイピング
+
+## 既存ツールとの対応
+
+| ステップ | KairosChainツール |
+|----------|------------------|
+| エージェントチーム分析 | Agent tool（複数サブエージェント） |
+| Persona Assembly | `skills_audit(command: "check")` またはペルソナ手動起動 |
+| マルチLLM統合 | 外部（別ターミナルセッション） |
+| プラン/レビュー出力 | `context_save()` + `log/` へのファイル書き出し |

data/templates/skillsets/autoexec/config/autoexec.yml

@@ -0,0 +1,75 @@
+# AutoExec SkillSet Configuration
+# Semi-autonomous task planning and execution
+
+# Default execution mode: dry_run or execute
+default_mode: dry_run
+
+# Maximum steps per task plan
+max_steps: 20
+
+# Maximum concurrent tasks (enforced by execution mutex)
+max_concurrent: 1
+
+# Stale lock timeout in seconds (3600 = 1 hour)
+stale_lock_timeout: 3600
+
+# Loop detection thresholds
+loop_detection:
+  generic_repeat:
+    warn: 5
+    halt: 10
+  poll_no_progress:
+    warn: 3
+    halt: 5
+  ping_pong:
+    warn: 4
+    halt: 8
+  replan_cycle:
+    warn: 2
+    halt: 3
+
+# Risk classification defaults
+risk_defaults:
+  read: low
+  search: low
+  analyze: low
+  edit: medium
+  create: medium
+  test: medium
+  delete: high
+  push: high
+  deploy: high
+
+# L0 deny-list (hardcoded, cannot be overridden)
+# These operations are NEVER allowed regardless of risk classification
+# l0_deny_list:
+#   - l0_evolution
+#   - chain_modification
+#   - skill_deletion
+
+# Content firewall
+content_firewall:
+  enabled: true
+  block_on_detection: true  # false = warn only (NOT recommended)
+
+# Runtime boundary
+runtime_boundary:
+  enabled: true
+  network_allowlist_mode: true  # only declared URLs allowed
+  forbidden_read_paths:
+    - "~/.ssh"
+    - "~/.aws"
+    - "~/.gnupg"
+    - "~/.config/gcloud"
+    - "/etc/shadow"
+  forbidden_write_paths:
+    - "/dev/"
+    - "/proc/"
+    - "/sys/"
+    - "/boot/"
+
+# Storage paths (relative to .kairos/)
+storage:
+  plans_dir: "autoexec/plans"
+  state_dir: "autoexec/state"
+  violations_dir: "autoexec/violations"

data/templates/skillsets/autoexec/knowledge/autoexec_guide/autoexec_guide.md

@@ -0,0 +1,63 @@
+---
+title: AutoExec SkillSet Guide
+tags: [autoexec, task-planning, semi-autonomous, execution]
+version: 0.1.0
+---
+
+# AutoExec SkillSet Guide
+
+## Overview
+
+AutoExec enables semi-autonomous task planning and execution with constitutive
+chain recording. It decomposes tasks into structured DSL plans, classifies risk,
+and executes with graduated approval.
+
+## Quick Start
+
+### 1. Create a Plan
+
+Provide a JSON task decomposition to `autoexec_plan`:
+
+```json
+{
+  "task_id": "add_mcp_tool",
+  "meta": { "description": "Add token_balance MCP tool", "risk_default": "medium" },
+  "steps": [
+    { "step_id": "analyze", "action": "read existing tool patterns", "risk": "low" },
+    { "step_id": "implement", "action": "create tool file", "risk": "medium", "depends_on": ["analyze"] },
+    { "step_id": "test", "action": "write and run tests", "risk": "medium", "depends_on": ["implement"] }
+  ]
+}
+```
+
+### 2. Review and Dry Run
+
+Use the returned `plan_hash` to dry-run:
+
+```
+autoexec_run(task_id: "add_mcp_tool", mode: "dry_run", approved_hash: "<hash>")
+```
+
+### 3. Execute
+
+After reviewing the dry run, switch to execute mode:
+
+```
+autoexec_run(task_id: "add_mcp_tool", mode: "execute", approved_hash: "<hash>")
+```
+
+## Safety Model
+
+- **Dry-run default**: All plans start in dry_run mode
+- **Hash-locked plans**: Plans are SHA-256 hashed at creation; execution verifies the hash
+- **L0 deny-list**: Operations like L0 evolution and chain modification are always blocked
+- **Protected files**: Writes to config files force :high risk classification
+- **Human cognition markers**: Steps with `requires_human_cognition: true` halt execution
+
+## Risk Classification
+
+| Level | Auto-execute | Examples |
+|-------|-------------|---------|
+| Low | Yes | read, search, analyze, list |
+| Medium | With approval | edit, create, test, build |
+| High | Individual approval | delete, push, deploy |

data/templates/skillsets/autoexec/lib/autoexec/plan_store.rb

@@ -0,0 +1,173 @@
+# frozen_string_literal: true
+
+module Autoexec
+  # Stores task plans, manages hash verification, execution locks, and checkpoints.
+  # Plans stored as .kdsl (non-executable DSL text) with .json metadata sidecar.
+  class PlanStore
+    LOCK_FILE = 'autoexec.lock'
+
+    # --- Plan Storage ---
+
+    def self.save(task_id, plan, source)
+      raise ArgumentError, "Invalid task_id: must contain only word characters" unless task_id.to_s.match?(/\A\w+\z/)
+
+      plans_dir = Autoexec.storage_path('plans')
+      plan_path = File.join(plans_dir, "#{task_id}.kdsl")
+      meta_path = File.join(plans_dir, "#{task_id}.json")
+      plan_hash = TaskDsl.compute_hash(source)
+
+      File.write(plan_path, source)
+      File.write(meta_path, JSON.pretty_generate({
+        task_id: task_id.to_s,
+        plan_hash: plan_hash,
+        step_count: plan.steps.size,
+        risk_summary: RiskClassifier.risk_summary(plan.steps),
+        created_at: Time.now.iso8601,
+        status: 'planned'
+      }))
+
+      plan_hash
+    end
+
+    def self.load(task_id)
+      plans_dir = Autoexec.storage_path('plans')
+      plan_path = File.join(plans_dir, "#{task_id}.kdsl")
+      meta_path = File.join(plans_dir, "#{task_id}.json")
+
+      return nil unless File.exist?(plan_path) && File.exist?(meta_path)
+
+      source = File.read(plan_path)
+      metadata = JSON.parse(File.read(meta_path), symbolize_names: true)
+      plan = TaskDsl.parse(source)
+      computed_hash = TaskDsl.compute_hash(source)
+
+      {
+        plan: plan,
+        source: source,
+        hash: computed_hash,
+        metadata: metadata
+      }
+    end
+
+    def self.verify_hash(task_id, expected_hash)
+      stored = load(task_id)
+      return false unless stored
+
+      stored[:hash] == expected_hash
+    end
+
+    def self.list
+      plans_dir = Autoexec.storage_path('plans')
+      Dir.glob(File.join(plans_dir, '*.json')).map do |meta_path|
+        JSON.parse(File.read(meta_path), symbolize_names: true)
+      rescue JSON::ParserError => e
+        warn "[autoexec] Corrupted metadata file: #{meta_path} (#{e.message})"
+        nil
+      end.compact
+    end
+
+    def self.update_status(task_id, status)
+      plans_dir = Autoexec.storage_path('plans')
+      meta_path = File.join(plans_dir, "#{task_id}.json")
+      return unless File.exist?(meta_path)
+
+      metadata = JSON.parse(File.read(meta_path))
+      metadata['status'] = status
+      metadata['updated_at'] = Time.now.iso8601
+      File.write(meta_path, JSON.pretty_generate(metadata))
+    end
+
+    # --- Execution Lock (OpenClaw session-write-lock pattern, simplified) ---
+
+    def self.acquire_lock(task_id)
+      state_dir = Autoexec.storage_path('state')
+      lock_path = File.join(state_dir, LOCK_FILE)
+
+      # Check for existing lock and handle stale/dead locks
+      if File.exist?(lock_path)
+        lock_data = JSON.parse(File.read(lock_path)) rescue {}
+        pid = lock_data['pid']
+
+        pid_alive = begin
+          Process.kill(0, pid)
+          true
+        rescue Errno::ESRCH, Errno::EPERM
+          false
+        end
+
+        if pid_alive
+          stale_timeout = Autoexec.config.dig('stale_lock_timeout') || 3600
+          lock_age = Time.now - Time.parse(lock_data['started_at'])
+          if lock_age < stale_timeout
+            raise "Execution locked by task '#{lock_data['task_id']}' (PID #{pid}, " \
+                  "started #{lock_data['started_at']}). Use autoexec_run to check status."
+          end
+        end
+        # PID dead or stale — remove before atomic create
+        File.delete(lock_path) rescue nil
+      end
+
+      # Atomic lock creation using CREAT|EXCL (prevents race condition)
+      lock_data = JSON.pretty_generate({
+        task_id: task_id.to_s,
+        pid: Process.pid,
+        started_at: Time.now.iso8601
+      })
+      begin
+        fd = File.open(lock_path, File::CREAT | File::EXCL | File::WRONLY)
+        fd.write(lock_data)
+        fd.close
+      rescue Errno::EEXIST
+        # Another process acquired the lock between our check and create
+        raise "Execution locked by another process (race condition). Retry shortly."
+      end
+      true
+    end
+
+    def self.release_lock
+      state_dir = Autoexec.storage_path('state')
+      lock_path = File.join(state_dir, LOCK_FILE)
+      File.delete(lock_path) if File.exist?(lock_path)
+    end
+
+    def self.locked?
+      state_dir = Autoexec.storage_path('state')
+      lock_path = File.join(state_dir, LOCK_FILE)
+      return false unless File.exist?(lock_path)
+
+      lock_data = JSON.parse(File.read(lock_path))
+      pid_alive = begin
+        Process.kill(0, lock_data['pid'])
+        true
+      rescue Errno::ESRCH, Errno::EPERM
+        false
+      end
+
+      pid_alive
+    rescue StandardError
+      false
+    end
+
+    # --- Checkpoints ---
+
+    def self.save_checkpoint(task_id, state)
+      state_dir = Autoexec.storage_path('state')
+      path = File.join(state_dir, "#{task_id}.checkpoint.json")
+      File.write(path, JSON.pretty_generate(state))
+    end
+
+    def self.load_checkpoint(task_id)
+      state_dir = Autoexec.storage_path('state')
+      path = File.join(state_dir, "#{task_id}.checkpoint.json")
+      return nil unless File.exist?(path)
+
+      JSON.parse(File.read(path), symbolize_names: true)
+    end
+
+    def self.clear_checkpoint(task_id)
+      state_dir = Autoexec.storage_path('state')
+      path = File.join(state_dir, "#{task_id}.checkpoint.json")
+      File.delete(path) if File.exist?(path)
+    end
+  end
+end