@achieveai/azuredevops-mcp 1.3.17 → 1.3.18

package/dist/src/Services/DevSecOpsService.js

@@ -1,307 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.DevSecOpsService = void 0;
-const AzureDevOpsService_1 = require("./AzureDevOpsService");
-class DevSecOpsService extends AzureDevOpsService_1.AzureDevOpsService {
-    constructor(config) {
-        super(config);
-    }
-    async runSecurityScan(params) {
-        // This would contain actual implementation
-        // For now, we're returning a mock response
-        return {
-            scanId: "scan-" + Math.random().toString(36).substring(2, 9),
-            repository: params.repository,
-            branch: params.branch || "main",
-            scanType: params.scanType || "all",
-            status: "initiated",
-            startTime: new Date().toISOString(),
-            estimatedCompletionTime: new Date(Date.now() + 1000 * 60 * 10).toISOString() // 10 minutes from now
-        };
-    }
-    async getSecurityScanResults(params) {
-        const severity = params.severity || "all";
-        return {
-            scanId: params.scanId,
-            status: "completed",
-            completionTime: new Date().toISOString(),
-            summary: {
-                critical: severity === "all" || severity === "critical" ? 3 : 0,
-                high: severity === "all" || severity === "high" ? 8 : 0,
-                medium: severity === "all" || severity === "medium" ? 15 : 0,
-                low: severity === "all" || severity === "low" ? 24 : 0
-            },
-            findings: [
-                {
-                    id: "vul-1",
-                    title: "SQL Injection vulnerability",
-                    severity: "critical",
-                    location: "src/data/queries.ts:42",
-                    description: "Potential SQL injection detected in unvalidated user input"
-                },
-                {
-                    id: "vul-2",
-                    title: "Cross-site scripting (XSS)",
-                    severity: "high",
-                    location: "src/ui/userProfile.tsx:67",
-                    description: "User input rendered directly to DOM without sanitization"
-                },
-                {
-                    id: "vul-3",
-                    title: "Outdated npm package",
-                    severity: "medium",
-                    location: "package.json",
-                    description: "Package 'axios' has known vulnerabilities in version 0.19.0"
-                }
-            ]
-        };
-    }
-    async trackSecurityVulnerabilities(params) {
-        return {
-            vulnerabilities: [
-                {
-                    id: "vul-1",
-                    title: "SQL Injection vulnerability",
-                    status: "in-progress",
-                    assignedTo: "jane.developer@example.com",
-                    discoveredDate: new Date(Date.now() - 7 * 24 * 60 * 60 * 1000).toISOString(), // 7 days ago
-                    lastUpdatedDate: new Date().toISOString()
-                },
-                {
-                    id: "vul-2",
-                    title: "Cross-site scripting (XSS)",
-                    status: "mitigated",
-                    assignedTo: "john.securityexpert@example.com",
-                    discoveredDate: new Date(Date.now() - 14 * 24 * 60 * 60 * 1000).toISOString(), // 14 days ago
-                    lastUpdatedDate: new Date(Date.now() - 2 * 24 * 60 * 60 * 1000).toISOString() // 2 days ago
-                },
-                {
-                    id: "vul-3",
-                    title: "Outdated npm package",
-                    status: "resolved",
-                    assignedTo: "deployment.team@example.com",
-                    discoveredDate: new Date(Date.now() - 30 * 24 * 60 * 60 * 1000).toISOString(), // 30 days ago
-                    lastUpdatedDate: new Date(Date.now() - 25 * 24 * 60 * 60 * 1000).toISOString() // 25 days ago
-                }
-            ],
-            statistics: {
-                open: 5,
-                inProgress: 8,
-                mitigated: 12,
-                resolved: 27,
-                falsePositive: 4
-            },
-            timeRange: params.timeRange || "90d"
-        };
-    }
-    async generateSecurityCompliance(params) {
-        const standardType = params.standardType || "owasp";
-        return {
-            standardType,
-            generatedDate: new Date().toISOString(),
-            overallCompliance: 78.5,
-            categories: [
-                {
-                    name: "Authentication Controls",
-                    compliance: 92.3,
-                    requirements: 12,
-                    passedRequirements: 11
-                },
-                {
-                    name: "Access Controls",
-                    compliance: 85.7,
-                    requirements: 14,
-                    passedRequirements: 12
-                },
-                {
-                    name: "Data Protection",
-                    compliance: 66.7,
-                    requirements: 9,
-                    passedRequirements: 6
-                }
-            ],
-            evidence: params.includeEvidence ? {
-                documentationLinks: ["https://docs.example.com/security/auth", "https://docs.example.com/security/data"],
-                testResults: ["pipeline/security/results/123.json"],
-                screenshots: ["evidence/login-screen.png", "evidence/data-encryption.png"]
-            } : undefined
-        };
-    }
-    async integrateSarifResults(params) {
-        return {
-            filePath: params.sarifFilePath,
-            processed: true,
-            importedResults: 42,
-            workItemsCreated: params.createWorkItems ? 18 : 0,
-            summary: {
-                critical: 3,
-                high: 7,
-                medium: 12,
-                low: 20
-            },
-            tools: ["SonarQube", "ESLint Security Plugin"]
-        };
-    }
-    async runComplianceChecks(params) {
-        return {
-            complianceStandard: params.complianceStandard,
-            scopeId: params.scopeId || "organization",
-            status: "completed",
-            completionTime: new Date().toISOString(),
-            overallCompliance: 82.5,
-            passedChecks: 33,
-            failedChecks: 7,
-            waivedChecks: 2,
-            criticalFailures: 1,
-            recommendations: [
-                "Enable MFA for all developer accounts",
-                "Implement branch protection policies",
-                "Set up container vulnerability scanning"
-            ]
-        };
-    }
-    async getComplianceStatus(params) {
-        return {
-            standardId: params.standardId || "iso27001",
-            lastChecked: new Date().toISOString(),
-            overallCompliance: 87.3,
-            statusByCategory: {
-                "Access Control": { compliance: 92.0, status: "compliant" },
-                "System Acquisition": { compliance: 76.5, status: "partially-compliant" },
-                "Cryptography": { compliance: 100.0, status: "compliant" },
-                "Physical Security": { compliance: 80.0, status: "partially-compliant" }
-            },
-            history: params.includeHistory ? [
-                { date: new Date(Date.now() - 30 * 24 * 60 * 60 * 1000).toISOString(), compliance: 78.9 },
-                { date: new Date(Date.now() - 60 * 24 * 60 * 60 * 1000).toISOString(), compliance: 75.2 },
-                { date: new Date(Date.now() - 90 * 24 * 60 * 60 * 1000).toISOString(), compliance: 72.1 }
-            ] : undefined
-        };
-    }
-    async createComplianceReport(params) {
-        return {
-            standardId: params.standardId,
-            format: params.format || "pdf",
-            reportUrl: `https://reports.example.com/compliance/${params.standardId}/report-${Date.now()}.${params.format || "pdf"}`,
-            generatedDate: new Date().toISOString(),
-            expiryDate: new Date(Date.now() + 90 * 24 * 60 * 60 * 1000).toISOString(), // 90 days from now
-            reportSize: "2.4 MB"
-        };
-    }
-    async manageSecurityPolicies(params) {
-        return {
-            policyName: params.policyName,
-            action: params.action,
-            status: "success",
-            appliedTo: ["ProjectX", "ProjectY"],
-            effectiveDate: new Date().toISOString(),
-            createdBy: "security.admin@example.com",
-            version: 3,
-            definition: params.policyDefinition || {
-                "requiredReviewers": 2,
-                "branchProtection": true,
-                "requireSecurityScan": true
-            }
-        };
-    }
-    async trackSecurityAwareness(params) {
-        return {
-            teamId: params.teamId || "all-teams",
-            completionRate: 78.3,
-            trainingModules: [
-                {
-                    id: "sec-101",
-                    name: "Security Basics",
-                    completionRate: 95.2,
-                    averageScore: 87.5
-                },
-                {
-                    id: "secure-coding",
-                    name: "Secure Coding Practices",
-                    completionRate: 82.1,
-                    averageScore: 79.3
-                },
-                {
-                    id: "threat-modeling",
-                    name: "Threat Modeling Workshop",
-                    completionRate: 64.5,
-                    averageScore: 81.9
-                }
-            ],
-            topPerformers: [
-                "alex.developer@example.com",
-                "jamie.architect@example.com",
-                "robin.qa@example.com"
-            ],
-            needsAttention: [
-                "new.hire@example.com",
-                "busy.manager@example.com"
-            ],
-            timeRange: params.timeRange || "90d"
-        };
-    }
-    async rotateSecrets(params) {
-        return {
-            secretName: params.secretName || "all-applicable-secrets",
-            secretType: params.secretType || "all",
-            status: "rotated",
-            rotatedCount: params.secretName ? 1 : 12,
-            previousExpiryDate: new Date().toISOString(),
-            newExpiryDate: new Date(Date.now() + 180 * 24 * 60 * 60 * 1000).toISOString(), // 180 days from now
-            affectedServices: [
-                "api-gateway",
-                "authentication-service",
-                "payment-processor"
-            ],
-            force: params.force || false
-        };
-    }
-    async auditSecretUsage(params) {
-        return {
-            secretName: params.secretName || "all-secrets",
-            timeRange: params.timeRange || "30d",
-            totalUsage: 1842,
-            usageByService: {
-                "api-gateway": 723,
-                "user-service": 512,
-                "payment-service": 318,
-                "notification-service": 289
-            },
-            unusedSecrets: [
-                "legacy-api-key",
-                "test-database-password"
-            ],
-            highUsageSecrets: [
-                "main-database-connection",
-                "authentication-token"
-            ],
-            recommendations: [
-                "Remove unused secrets 'legacy-api-key' and 'test-database-password'",
-                "Consider creating service-specific credentials for 'authentication-token'"
-            ]
-        };
-    }
-    async vaultIntegration(params) {
-        return {
-            vaultUrl: params.vaultUrl,
-            secretPath: params.secretPath || "/",
-            action: params.action,
-            status: "success",
-            timestamp: new Date().toISOString(),
-            secrets: params.action === "list" ? [
-                "api-key",
-                "database-password",
-                "jwt-signing-key"
-            ] : undefined,
-            secretValue: params.action === "get" ? {
-                // This would be the actual secret value if this were a real implementation
-                // Here we just return a placeholder
-                value: "[SECRET_RETRIEVED]",
-                version: 3,
-                created: new Date(Date.now() - 30 * 24 * 60 * 60 * 1000).toISOString()
-            } : undefined
-        };
-    }
-}
-exports.DevSecOpsService = DevSecOpsService;
-//# sourceMappingURL=DevSecOpsService.js.map

package/dist/src/Services/DevSecOpsService.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"DevSecOpsService.js","sourceRoot":"","sources":["../../../src/Services/DevSecOpsService.ts"],"names":[],"mappings":";;;AACA,6DAA0D;AAiB1D,MAAa,gBAAiB,SAAQ,uCAAkB;IACtD,YAAY,MAAyB;QACnC,KAAK,CAAC,MAAM,CAAC,CAAC;IAChB,CAAC;IAED,KAAK,CAAC,eAAe,CAAC,MAA6B;QACjD,2CAA2C;QAC3C,2CAA2C;QAC3C,OAAO;YACL,MAAM,EAAE,OAAO,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC;YAC5D,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,MAAM;YAC/B,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,KAAK;YAClC,MAAM,EAAE,WAAW;YACnB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,uBAAuB,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,WAAW,EAAE,CAAC,sBAAsB;SACpG,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,sBAAsB,CAAC,MAAoC;QAC/D,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,IAAI,KAAK,CAAC;QAC1C,OAAO;YACL,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,MAAM,EAAE,WAAW;YACnB,cAAc,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACxC,OAAO,EAAE;gBACP,QAAQ,EAAE,QAAQ,KAAK,KAAK,IAAI,QAAQ,KAAK,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;gBAC/D,IAAI,EAAE,QAAQ,KAAK,KAAK,IAAI,QAAQ,KAAK,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;gBACvD,MAAM,EAAE,QAAQ,KAAK,KAAK,IAAI,QAAQ,KAAK,QAAQ,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;gBAC5D,GAAG,EAAE,QAAQ,KAAK,KAAK,IAAI,QAAQ,KAAK,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;aACvD;YACD,QAAQ,EAAE;gBACR;oBACE,EAAE,EAAE,OAAO;oBACX,KAAK,EAAE,6BAA6B;oBACpC,QAAQ,EAAE,UAAU;oBACpB,QAAQ,EAAE,wBAAwB;oBAClC,WAAW,EAAE,4DAA4D;iBAC1E;gBACD;oBACE,EAAE,EAAE,OAAO;oBACX,KAAK,EAAE,4BAA4B;oBACnC,QAAQ,EAAE,MAAM;oBAChB,QAAQ,EAAE,2BAA2B;oBACrC,WAAW,EAAE,0DAA0D;iBACxE;gBACD;oBACE,EAAE,EAAE,OAAO;oBACX,KAAK,EAAE,sBAAsB;oBAC7B,QAAQ,EAAE,QAAQ;oBAClB,QAAQ,EAAE,cAAc;oBACxB,WAAW,EAAE,6DAA6D;iBAC3E;aACF;SACF,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,4BAA4B,CAAC,MAA0C;QAC3E,OAAO;YACL,eAAe,EAAE;gBACf;oBACE,EAAE,EAAE,OAAO;oBACX,KAAK,EAAE,6BAA6B;oBACpC,MAAM,EAAE,aAAa;oBACrB,UAAU,EAAE,4BAA4B;oBACxC,cAAc,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,aAAa;oBAC3F,eAAe,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;iBAC1C;gBACD;oBACE,EAAE,EAAE,OAAO;oBACX,KAAK,EAAE,4BAA4B;oBACnC,MAAM,EAAE,WAAW;oBACnB,UAAU,EAAE,iCAAiC;oBAC7C,cAAc,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,cAAc;oBAC7F,eAAe,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC,aAAa;iBAC5F;gBACD;oBACE,EAAE,EAAE,OAAO;oBACX,KAAK,EAAE,sBAAsB;oBAC7B,MAAM,EAAE,UAAU;oBAClB,UAAU,EAAE,6BAA6B;oBACzC,cAAc,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,cAAc;oBAC7F,eAAe,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC,cAAc;iBAC9F;aACF;YACD,UAAU,EAAE;gBACV,IAAI,EAAE,CAAC;gBACP,UAAU,EAAE,CAAC;gBACb,SAAS,EAAE,EAAE;gBACb,QAAQ,EAAE,EAAE;gBACZ,aAAa,EAAE,CAAC;aACjB;YACD,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,KAAK;SACrC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,0BAA0B,CAAC,MAAwC;QACvE,MAAM,YAAY,GAAG,MAAM,CAAC,YAAY,IAAI,OAAO,CAAC;QACpD,OAAO;YACL,YAAY;YACZ,aAAa,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACvC,iBAAiB,EAAE,IAAI;YACvB,UAAU,EAAE;gBACV;oBACE,IAAI,EAAE,yBAAyB;oBAC/B,UAAU,EAAE,IAAI;oBAChB,YAAY,EAAE,EAAE;oBAChB,kBAAkB,EAAE,EAAE;iBACvB;gBACD;oBACE,IAAI,EAAE,iBAAiB;oBACvB,UAAU,EAAE,IAAI;oBAChB,YAAY,EAAE,EAAE;oBAChB,kBAAkB,EAAE,EAAE;iBACvB;gBACD;oBACE,IAAI,EAAE,iBAAiB;oBACvB,UAAU,EAAE,IAAI;oBAChB,YAAY,EAAE,CAAC;oBACf,kBAAkB,EAAE,CAAC;iBACtB;aACF;YACD,QAAQ,EAAE,MAAM,CAAC,eAAe,CAAC,CAAC,CAAC;gBACjC,kBAAkB,EAAE,CAAC,wCAAwC,EAAE,wCAAwC,CAAC;gBACxG,WAAW,EAAE,CAAC,oCAAoC,CAAC;gBACnD,WAAW,EAAE,CAAC,2BAA2B,EAAE,8BAA8B,CAAC;aAC3E,CAAC,CAAC,CAAC,SAAS;SACd,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,qBAAqB,CAAC,MAAmC;QAC7D,OAAO;YACL,QAAQ,EAAE,MAAM,CAAC,aAAa;YAC9B,SAAS,EAAE,IAAI;YACf,eAAe,EAAE,EAAE;YACnB,gBAAgB,EAAE,MAAM,CAAC,eAAe,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;YACjD,OAAO,EAAE;gBACP,QAAQ,EAAE,CAAC;gBACX,IAAI,EAAE,CAAC;gBACP,MAAM,EAAE,EAAE;gBACV,GAAG,EAAE,EAAE;aACR;YACD,KAAK,EAAE,CAAC,WAAW,EAAE,wBAAwB,CAAC;SAC/C,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,MAAiC;QACzD,OAAO;YACL,kBAAkB,EAAE,MAAM,CAAC,kBAAkB;YAC7C,OAAO,EAAE,MAAM,CAAC,OAAO,IAAI,cAAc;YACzC,MAAM,EAAE,WAAW;YACnB,cAAc,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACxC,iBAAiB,EAAE,IAAI;YACvB,YAAY,EAAE,EAAE;YAChB,YAAY,EAAE,CAAC;YACf,YAAY,EAAE,CAAC;YACf,gBAAgB,EAAE,CAAC;YACnB,eAAe,EAAE;gBACf,uCAAuC;gBACvC,sCAAsC;gBACtC,yCAAyC;aAC1C;SACF,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,mBAAmB,CAAC,MAAiC;QACzD,OAAO;YACL,UAAU,EAAE,MAAM,CAAC,UAAU,IAAI,UAAU;YAC3C,WAAW,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACrC,iBAAiB,EAAE,IAAI;YACvB,gBAAgB,EAAE;gBAChB,gBAAgB,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,WAAW,EAAE;gBAC3D,oBAAoB,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,qBAAqB,EAAE;gBACzE,cAAc,EAAE,EAAE,UAAU,EAAE,KAAK,EAAE,MAAM,EAAE,WAAW,EAAE;gBAC1D,mBAAmB,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE,MAAM,EAAE,qBAAqB,EAAE;aACzE;YACD,OAAO,EAAE,MAAM,CAAC,cAAc,CAAC,CAAC,CAAC;gBAC/B,EAAE,IAAI,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE;gBACzF,EAAE,IAAI,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE;gBACzF,EAAE,IAAI,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE;aAC1F,CAAC,CAAC,CAAC,SAAS;SACd,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,sBAAsB,CAAC,MAAoC;QAC/D,OAAO;YACL,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,KAAK;YAC9B,SAAS,EAAE,0CAA0C,MAAM,CAAC,UAAU,WAAW,IAAI,CAAC,GAAG,EAAE,IAAI,MAAM,CAAC,MAAM,IAAI,KAAK,EAAE;YACvH,aAAa,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACvC,UAAU,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,mBAAmB;YAC9F,UAAU,EAAE,QAAQ;SACrB,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,sBAAsB,CAAC,MAAoC;QAC/D,OAAO;YACL,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,MAAM,EAAE,SAAS;YACjB,SAAS,EAAE,CAAC,UAAU,EAAE,UAAU,CAAC;YACnC,aAAa,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACvC,SAAS,EAAE,4BAA4B;YACvC,OAAO,EAAE,CAAC;YACV,UAAU,EAAE,MAAM,CAAC,gBAAgB,IAAI;gBACrC,mBAAmB,EAAE,CAAC;gBACtB,kBAAkB,EAAE,IAAI;gBACxB,qBAAqB,EAAE,IAAI;aAC5B;SACF,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,sBAAsB,CAAC,MAAoC;QAC/D,OAAO;YACL,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,WAAW;YACpC,cAAc,EAAE,IAAI;YACpB,eAAe,EAAE;gBACf;oBACE,EAAE,EAAE,SAAS;oBACb,IAAI,EAAE,iBAAiB;oBACvB,cAAc,EAAE,IAAI;oBACpB,YAAY,EAAE,IAAI;iBACnB;gBACD;oBACE,EAAE,EAAE,eAAe;oBACnB,IAAI,EAAE,yBAAyB;oBAC/B,cAAc,EAAE,IAAI;oBACpB,YAAY,EAAE,IAAI;iBACnB;gBACD;oBACE,EAAE,EAAE,iBAAiB;oBACrB,IAAI,EAAE,0BAA0B;oBAChC,cAAc,EAAE,IAAI;oBACpB,YAAY,EAAE,IAAI;iBACnB;aACF;YACD,aAAa,EAAE;gBACb,4BAA4B;gBAC5B,6BAA6B;gBAC7B,sBAAsB;aACvB;YACD,cAAc,EAAE;gBACd,sBAAsB;gBACtB,0BAA0B;aAC3B;YACD,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,KAAK;SACrC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,MAA2B;QAC7C,OAAO;YACL,UAAU,EAAE,MAAM,CAAC,UAAU,IAAI,wBAAwB;YACzD,UAAU,EAAE,MAAM,CAAC,UAAU,IAAI,KAAK;YACtC,MAAM,EAAE,SAAS;YACjB,YAAY,EAAE,MAAM,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE;YACxC,kBAAkB,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YAC5C,aAAa,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,GAAG,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE,EAAE,oBAAoB;YACnG,gBAAgB,EAAE;gBAChB,aAAa;gBACb,wBAAwB;gBACxB,mBAAmB;aACpB;YACD,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,KAAK;SAC7B,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,MAA8B;QACnD,OAAO;YACL,UAAU,EAAE,MAAM,CAAC,UAAU,IAAI,aAAa;YAC9C,SAAS,EAAE,MAAM,CAAC,SAAS,IAAI,KAAK;YACpC,UAAU,EAAE,IAAI;YAChB,cAAc,EAAE;gBACd,aAAa,EAAE,GAAG;gBAClB,cAAc,EAAE,GAAG;gBACnB,iBAAiB,EAAE,GAAG;gBACtB,sBAAsB,EAAE,GAAG;aAC5B;YACD,aAAa,EAAE;gBACb,gBAAgB;gBAChB,wBAAwB;aACzB;YACD,gBAAgB,EAAE;gBAChB,0BAA0B;gBAC1B,sBAAsB;aACvB;YACD,eAAe,EAAE;gBACf,qEAAqE;gBACrE,2EAA2E;aAC5E;SACF,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,gBAAgB,CAAC,MAA8B;QACnD,OAAO;YACL,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,UAAU,EAAE,MAAM,CAAC,UAAU,IAAI,GAAG;YACpC,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,MAAM,EAAE,SAAS;YACjB,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;YACnC,OAAO,EAAE,MAAM,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC,CAAC;gBAClC,SAAS;gBACT,mBAAmB;gBACnB,iBAAiB;aAClB,CAAC,CAAC,CAAC,SAAS;YACb,WAAW,EAAE,MAAM,CAAC,MAAM,KAAK,KAAK,CAAC,CAAC,CAAC;gBACrC,2EAA2E;gBAC3E,oCAAoC;gBACpC,KAAK,EAAE,oBAAoB;gBAC3B,OAAO,EAAE,CAAC;gBACV,OAAO,EAAE,IAAI,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,WAAW,EAAE;aACvE,CAAC,CAAC,CAAC,SAAS;SACd,CAAC;IACJ,CAAC;CACF;AAzTD,4CAyTC"}

package/dist/src/Services/EntraAuthHandler.js

@@ -1,337 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.EntraAuthHandler = exports.TokenCredentialAuthHandler = void 0;
-const identity_1 = require("@azure/identity");
-const identity_2 = require("@azure/identity");
-const identity_cache_persistence_1 = require("@azure/identity-cache-persistence");
-const azdev = __importStar(require("azure-devops-node-api"));
-const fs = __importStar(require("fs"));
-const path = __importStar(require("path"));
-const os = __importStar(require("os"));
-// Enable persistent token cache (encrypted via DPAPI on Windows, Keychain on macOS, libsecret on Linux)
-try {
-    (0, identity_2.useIdentityPlugin)(identity_cache_persistence_1.cachePersistencePlugin);
-}
-catch {
-    // Plugin may already be registered or unavailable - continue without persistence
-}
-/**
- * Azure DevOps scope for token requests.
- */
-const AZURE_DEVOPS_SCOPE = "499b84ac-1321-427f-aa17-267ca6975798/.default";
-/** Shared token cache options - enables silent re-auth on subsequent starts. */
-const TOKEN_CACHE_OPTIONS = { enabled: true };
-// --- AuthenticationRecord persistence helpers ---
-/** Derive a filesystem-safe label from the org URL (e.g. "dev.azure.com/myorg" → "dev.azure.com-myorg"). */
-function orgUrlToLabel() {
-    const orgUrl = process.env.AZURE_DEVOPS_ORG_URL || "default";
-    return orgUrl.replace(/^https?:\/\//, "").replace(/[/\\:*?"<>|]+/g, "-").replace(/-+$/, "");
-}
-function getAuthRecordDir() {
-    return path.join(os.homedir(), ".azuredevops-mcp");
-}
-function getAuthRecordPath(label) {
-    return path.join(getAuthRecordDir(), `auth-record-${label}.json`);
-}
-function loadAuthRecord(label) {
-    try {
-        const filePath = getAuthRecordPath(label);
-        if (!fs.existsSync(filePath))
-            return undefined;
-        const raw = fs.readFileSync(filePath, "utf-8");
-        return (0, identity_1.deserializeAuthenticationRecord)(raw);
-    }
-    catch {
-        return undefined;
-    }
-}
-function saveAuthRecord(label, record) {
-    try {
-        const dir = getAuthRecordDir();
-        if (!fs.existsSync(dir)) {
-            fs.mkdirSync(dir, { recursive: true });
-        }
-        fs.writeFileSync(getAuthRecordPath(label), (0, identity_1.serializeAuthenticationRecord)(record), "utf-8");
-    }
-    catch (err) {
-        console.error(`[Auth] Failed to save auth record for "${label}":`, err);
-    }
-}
-/** Persist the bearer token to a shared file so external scripts/skills can use it. */
-function saveAccessToken(label, token) {
-    try {
-        const dir = getAuthRecordDir();
-        if (!fs.existsSync(dir)) {
-            fs.mkdirSync(dir, { recursive: true });
-        }
-        const tokenPath = path.join(dir, `access-token-${label}.json`);
-        fs.writeFileSync(tokenPath, JSON.stringify({
-            accessToken: token.token,
-            expiresOnTimestamp: token.expiresOnTimestamp,
-            orgUrl: process.env.AZURE_DEVOPS_ORG_URL || "",
-            project: process.env.AZURE_DEVOPS_PROJECT || "",
-        }), "utf-8");
-    }
-    catch (err) {
-        console.error(`[Auth] Failed to save access token for "${label}":`, err);
-    }
-}
-function deleteAuthRecord(label) {
-    try {
-        const filePath = getAuthRecordPath(label);
-        if (fs.existsSync(filePath)) {
-            fs.unlinkSync(filePath);
-        }
-    }
-    catch {
-        // ignore
-    }
-}
-/**
- * Generic auth handler that wraps any @azure/identity TokenCredential.
- * Supports automatic token refresh and re-authentication on 401.
- */
-class TokenCredentialAuthHandler {
-    constructor(credential) {
-        this.credential = credential;
-    }
-    /**
-     * Create handler using InteractiveBrowserCredential with persistent token cache.
-     * First run opens a browser for login; subsequent runs use the cached token silently.
-     */
-    static async createEntra() {
-        return TokenCredentialAuthHandler.createWithAuthRecord(orgUrlToLabel(), {
-            redirectUri: "http://localhost",
-            tokenCachePersistenceOptions: TOKEN_CACHE_OPTIONS,
-        });
-    }
-    /**
-     * Create handler from AzureCliCredential.
-     */
-    static async createAzureCli(tenantId) {
-        const credential = new identity_1.AzureCliCredential(tenantId ? { tenantId } : undefined);
-        const handler = new TokenCredentialAuthHandler(credential);
-        handler.authRecordLabel = orgUrlToLabel();
-        await handler.ensureToken();
-        handler.startProactiveRefresh();
-        return handler;
-    }
-    /**
-     * Create handler from InteractiveBrowserCredential (MSAL).
-     * Opens a browser window for user login with token caching and silent re-auth.
-     */
-    static async createInteractive(options) {
-        return TokenCredentialAuthHandler.createWithAuthRecord(orgUrlToLabel(), {
-            ...(options?.tenantId && { tenantId: options.tenantId }),
-            ...(options?.clientId && { clientId: options.clientId }),
-            redirectUri: "http://localhost",
-            tokenCachePersistenceOptions: TOKEN_CACHE_OPTIONS,
-        });
-    }
-    /**
-     * Shared helper: attempts silent auth with a saved AuthenticationRecord,
-     * falls back to interactive browser login and persists the new record.
-     */
-    static async createWithAuthRecord(label, credentialOptions) {
-        // 1. Try loading a previously saved AuthenticationRecord
-        const existingRecord = loadAuthRecord(label);
-        if (existingRecord) {
-            try {
-                // Probe with disableAutomaticAuthentication to prevent browser popup.
-                // If the refresh token is expired, this throws AuthenticationRequiredError
-                // instead of silently opening a browser.
-                const probe = new identity_1.InteractiveBrowserCredential({
-                    ...credentialOptions,
-                    authenticationRecord: existingRecord,
-                    disableAutomaticAuthentication: true,
-                });
-                const token = await probe.getToken(AZURE_DEVOPS_SCOPE);
-                if (token) {
-                    console.error(`[Auth] Silent authentication succeeded for "${label}".`);
-                    // Create the REAL credential WITHOUT disableAutomaticAuthentication
-                    // so that ensureToken() can silently refresh during the server's lifetime.
-                    const credential = new identity_1.InteractiveBrowserCredential({
-                        ...credentialOptions,
-                        authenticationRecord: existingRecord,
-                    });
-                    const handler = new TokenCredentialAuthHandler(credential);
-                    handler.authRecordLabel = label;
-                    handler.credentialOptions = credentialOptions;
-                    handler.token = token;
-                    handler.authHandler = azdev.getHandlerFromToken(token.token);
-                    saveAccessToken(label, token);
-                    handler.startProactiveRefresh();
-                    return handler;
-                }
-            }
-            catch {
-                // Silent auth failed — stale record, token revoked, etc.
-                console.error(`[Auth] Silent auth failed for "${label}", falling back to interactive login.`);
-                deleteAuthRecord(label);
-            }
-        }
-        // 2. No valid cached record — do interactive browser login
-        const credential = new identity_1.InteractiveBrowserCredential(credentialOptions);
-        const authRecord = await credential.authenticate(AZURE_DEVOPS_SCOPE);
-        if (authRecord) {
-            saveAuthRecord(label, authRecord);
-            console.error(`[Auth] Authentication record saved for "${label}".`);
-        }
-        const handler = new TokenCredentialAuthHandler(credential);
-        handler.authRecordLabel = label;
-        handler.credentialOptions = credentialOptions;
-        await handler.ensureToken();
-        handler.startProactiveRefresh();
-        return handler;
-    }
-    isTokenExpired() {
-        const currentTime = new Date().getTime();
-        return this.token.expiresOnTimestamp <= currentTime + 60000;
-    }
-    async ensureToken() {
-        if (!this.token || this.isTokenExpired()) {
-            try {
-                const token = await this.credential.getToken(AZURE_DEVOPS_SCOPE);
-                if (!token)
-                    throw new Error("getToken returned null");
-                this.token = token;
-                this.authHandler = azdev.getHandlerFromToken(this.token.token);
-                if (this.authRecordLabel)
-                    saveAccessToken(this.authRecordLabel, token);
-            }
-            catch (err) {
-                // Self-heal: rebuild credential from saved auth record (same as a restart).
-                if (this.authRecordLabel && this.credentialOptions) {
-                    console.error(`[Auth] Token refresh failed, attempting self-heal for "${this.authRecordLabel}"...`);
-                    const record = loadAuthRecord(this.authRecordLabel);
-                    if (record) {
-                        const freshCredential = new identity_1.InteractiveBrowserCredential({
-                            ...this.credentialOptions,
-                            authenticationRecord: record,
-                        });
-                        const token = await freshCredential.getToken(AZURE_DEVOPS_SCOPE);
-                        if (token) {
-                            console.error(`[Auth] Self-heal succeeded for "${this.authRecordLabel}".`);
-                            this.credential = freshCredential;
-                            this.token = token;
-                            this.authHandler = azdev.getHandlerFromToken(token.token);
-                            saveAccessToken(this.authRecordLabel, token);
-                            return;
-                        }
-                    }
-                }
-                throw new Error(`Failed to acquire Azure DevOps access token: ${err}`);
-            }
-        }
-    }
-    /**
-     * Start a background timer that refreshes the token before it expires.
-     * Default interval: 45 minutes (Azure AD tokens typically last 60-90 min).
-     */
-    startProactiveRefresh(intervalMs = 45 * 60 * 1000) {
-        this.stopProactiveRefresh();
-        this.refreshTimer = setInterval(async () => {
-            try {
-                this.token = undefined;
-                await this.ensureToken();
-                console.error(`[Auth] Proactive token refresh succeeded.`);
-            }
-            catch (err) {
-                console.error(`[Auth] Proactive token refresh failed:`, err);
-            }
-        }, intervalMs);
-        // Don't keep the Node process alive just for this timer
-        if (this.refreshTimer && typeof this.refreshTimer === 'object' && 'unref' in this.refreshTimer) {
-            this.refreshTimer.unref();
-        }
-    }
-    /**
-     * Force-clear the cached token and acquire a fresh one.
-     * Used by the service-layer withAuthRetry() wrapper.
-     */
-    async forceRefresh() {
-        this.token = undefined;
-        await this.ensureToken();
-    }
-    stopProactiveRefresh() {
-        if (this.refreshTimer) {
-            clearInterval(this.refreshTimer);
-            this.refreshTimer = undefined;
-        }
-    }
-    prepareRequest(options) {
-        if (this.authHandler) {
-            this.authHandler.prepareRequest(options);
-        }
-    }
-    canHandleAuthentication(response) {
-        // Don't delegate to inner BearerCredentialHandler — it always returns false.
-        // Handle 401/403 directly so the HttpClient invokes handleAuthentication() for retry.
-        const statusCode = response.message?.statusCode;
-        return statusCode === 401 || statusCode === 403;
-    }
-    async handleAuthentication(httpClient, requestInfo, objs) {
-        // Force a fresh token (old one triggered 401/403)
-        this.token = undefined;
-        await this.ensureToken();
-        // Apply fresh auth headers to the retried request
-        if (this.authHandler) {
-            this.authHandler.prepareRequest(requestInfo.options);
-        }
-        // Retry the original request with refreshed credentials
-        return httpClient.requestRaw(requestInfo, objs);
-    }
-}
-exports.TokenCredentialAuthHandler = TokenCredentialAuthHandler;
-/**
- * @deprecated Use TokenCredentialAuthHandler.createEntra() instead.
- * Kept for backward compatibility.
- */
-class EntraAuthHandler extends TokenCredentialAuthHandler {
-    constructor() {
-        super(new identity_1.DefaultAzureCredential());
-    }
-    static async getInstance() {
-        if (!EntraAuthHandler.instance) {
-            EntraAuthHandler.instance = new EntraAuthHandler();
-        }
-        // Ensure initial token is acquired
-        await EntraAuthHandler.instance.ensureToken();
-        return EntraAuthHandler.instance;
-    }
-}
-exports.EntraAuthHandler = EntraAuthHandler;
-//# sourceMappingURL=EntraAuthHandler.js.map

package/dist/src/Services/EntraAuthHandler.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"EntraAuthHandler.js","sourceRoot":"","sources":["../../../src/Services/EntraAuthHandler.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAAA,8CASyB;AACzB,8CAAoD;AACpD,kFAA2E;AAG3E,6DAA+C;AAC/C,uCAAyB;AACzB,2CAA6B;AAC7B,uCAAyB;AAEzB,wGAAwG;AACxG,IAAI,CAAC;IACH,IAAA,4BAAiB,EAAC,mDAAsB,CAAC,CAAC;AAC5C,CAAC;AAAC,MAAM,CAAC;IACP,iFAAiF;AACnF,CAAC;AAED;;GAEG;AACH,MAAM,kBAAkB,GAAG,+CAA+C,CAAC;AAE3E,gFAAgF;AAChF,MAAM,mBAAmB,GAAG,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;AAE9C,mDAAmD;AAEnD,4GAA4G;AAC5G,SAAS,aAAa;IACpB,MAAM,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC,oBAAoB,IAAI,SAAS,CAAC;IAC7D,OAAO,MAAM,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC,OAAO,CAAC,gBAAgB,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;AAC9F,CAAC;AAED,SAAS,gBAAgB;IACvB,OAAO,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,kBAAkB,CAAC,CAAC;AACrD,CAAC;AAED,SAAS,iBAAiB,CAAC,KAAa;IACtC,OAAO,IAAI,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,eAAe,KAAK,OAAO,CAAC,CAAC;AACpE,CAAC;AAED,SAAS,cAAc,CAAC,KAAa;IACnC,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,iBAAiB,CAAC,KAAK,CAAC,CAAC;QAC1C,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC;YAAE,OAAO,SAAS,CAAC;QAC/C,MAAM,GAAG,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;QAC/C,OAAO,IAAA,0CAA+B,EAAC,GAAG,CAAC,CAAC;IAC9C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED,SAAS,cAAc,CAAC,KAAa,EAAE,MAA4B;IACjE,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,gBAAgB,EAAE,CAAC;QAC/B,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACxB,EAAE,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QACzC,CAAC;QACD,EAAE,CAAC,aAAa,CAAC,iBAAiB,CAAC,KAAK,CAAC,EAAE,IAAA,wCAA6B,EAAC,MAAM,CAAC,EAAE,OAAO,CAAC,CAAC;IAC7F,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,KAAK,CAAC,0CAA0C,KAAK,IAAI,EAAE,GAAG,CAAC,CAAC;IAC1E,CAAC;AACH,CAAC;AAED,uFAAuF;AACvF,SAAS,eAAe,CAAC,KAAa,EAAE,KAAkB;IACxD,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,gBAAgB,EAAE,CAAC;QAC/B,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YACxB,EAAE,CAAC,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;QACzC,CAAC;QACD,MAAM,SAAS,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,gBAAgB,KAAK,OAAO,CAAC,CAAC;QAC/D,EAAE,CAAC,aAAa,CAAC,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC;YACzC,WAAW,EAAE,KAAK,CAAC,KAAK;YACxB,kBAAkB,EAAE,KAAK,CAAC,kBAAkB;YAC5C,MAAM,EAAE,OAAO,CAAC,GAAG,CAAC,oBAAoB,IAAI,EAAE;YAC9C,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,oBAAoB,IAAI,EAAE;SAChD,CAAC,EAAE,OAAO,CAAC,CAAC;IACf,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,KAAK,CAAC,2CAA2C,KAAK,IAAI,EAAE,GAAG,CAAC,CAAC;IAC3E,CAAC;AACH,CAAC;AAED,SAAS,gBAAgB,CAAC,KAAa;IACrC,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,iBAAiB,CAAC,KAAK,CAAC,CAAC;QAC1C,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC5B,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;QAC1B,CAAC;IACH,CAAC;IAAC,MAAM,CAAC;QACP,SAAS;IACX,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAa,0BAA0B;IAUrC,YAAY,UAA2B;QACrC,IAAI,CAAC,UAAU,GAAG,UAAU,CAAC;IAC/B,CAAC;IAED;;;OAGG;IACI,MAAM,CAAC,KAAK,CAAC,WAAW;QAC7B,OAAO,0BAA0B,CAAC,oBAAoB,CAAC,aAAa,EAAE,EAAE;YACtE,WAAW,EAAE,kBAAkB;YAC/B,4BAA4B,EAAE,mBAAmB;SAClD,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACI,MAAM,CAAC,KAAK,CAAC,cAAc,CAAC,QAAiB;QAClD,MAAM,UAAU,GAAG,IAAI,6BAAkB,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC;QAC/E,MAAM,OAAO,GAAG,IAAI,0BAA0B,CAAC,UAAU,CAAC,CAAC;QAC3D,OAAO,CAAC,eAAe,GAAG,aAAa,EAAE,CAAC;QAC1C,MAAM,OAAO,CAAC,WAAW,EAAE,CAAC;QAC5B,OAAO,CAAC,qBAAqB,EAAE,CAAC;QAChC,OAAO,OAAO,CAAC;IACjB,CAAC;IAED;;;OAGG;IACI,MAAM,CAAC,KAAK,CAAC,iBAAiB,CAAC,OAAkD;QACtF,OAAO,0BAA0B,CAAC,oBAAoB,CAAC,aAAa,EAAE,EAAE;YACtE,GAAG,CAAC,OAAO,EAAE,QAAQ,IAAI,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC;YACxD,GAAG,CAAC,OAAO,EAAE,QAAQ,IAAI,EAAE,QAAQ,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC;YACxD,WAAW,EAAE,kBAAkB;YAC/B,4BAA4B,EAAE,mBAAmB;SAClD,CAAC,CAAC;IACL,CAAC;IAED;;;OAGG;IACK,MAAM,CAAC,KAAK,CAAC,oBAAoB,CACvC,KAAa,EACb,iBAAgF;QAEhF,yDAAyD;QACzD,MAAM,cAAc,GAAG,cAAc,CAAC,KAAK,CAAC,CAAC;QAC7C,IAAI,cAAc,EAAE,CAAC;YACnB,IAAI,CAAC;gBACH,sEAAsE;gBACtE,2EAA2E;gBAC3E,yCAAyC;gBACzC,MAAM,KAAK,GAAG,IAAI,uCAA4B,CAAC;oBAC7C,GAAG,iBAAiB;oBACpB,oBAAoB,EAAE,cAAc;oBACpC,8BAA8B,EAAE,IAAI;iBACrC,CAAC,CAAC;gBACH,MAAM,KAAK,GAAG,MAAM,KAAK,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAC;gBACvD,IAAI,KAAK,EAAE,CAAC;oBACV,OAAO,CAAC,KAAK,CAAC,+CAA+C,KAAK,IAAI,CAAC,CAAC;oBACxE,oEAAoE;oBACpE,2EAA2E;oBAC3E,MAAM,UAAU,GAAG,IAAI,uCAA4B,CAAC;wBAClD,GAAG,iBAAiB;wBACpB,oBAAoB,EAAE,cAAc;qBACrC,CAAC,CAAC;oBACH,MAAM,OAAO,GAAG,IAAI,0BAA0B,CAAC,UAAU,CAAC,CAAC;oBAC3D,OAAO,CAAC,eAAe,GAAG,KAAK,CAAC;oBAChC,OAAO,CAAC,iBAAiB,GAAG,iBAAiB,CAAC;oBAC9C,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC;oBACtB,OAAO,CAAC,WAAW,GAAG,KAAK,CAAC,mBAAmB,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;oBAC7D,eAAe,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;oBAC9B,OAAO,CAAC,qBAAqB,EAAE,CAAC;oBAChC,OAAO,OAAO,CAAC;gBACjB,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,yDAAyD;gBACzD,OAAO,CAAC,KAAK,CAAC,kCAAkC,KAAK,uCAAuC,CAAC,CAAC;gBAC9F,gBAAgB,CAAC,KAAK,CAAC,CAAC;YAC1B,CAAC;QACH,CAAC;QAED,2DAA2D;QAC3D,MAAM,UAAU,GAAG,IAAI,uCAA4B,CAAC,iBAAiB,CAAC,CAAC;QACvE,MAAM,UAAU,GAAG,MAAM,UAAU,CAAC,YAAY,CAAC,kBAAkB,CAAC,CAAC;QACrE,IAAI,UAAU,EAAE,CAAC;YACf,cAAc,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;YAClC,OAAO,CAAC,KAAK,CAAC,2CAA2C,KAAK,IAAI,CAAC,CAAC;QACtE,CAAC;QAED,MAAM,OAAO,GAAG,IAAI,0BAA0B,CAAC,UAAU,CAAC,CAAC;QAC3D,OAAO,CAAC,eAAe,GAAG,KAAK,CAAC;QAChC,OAAO,CAAC,iBAAiB,GAAG,iBAAiB,CAAC;QAC9C,MAAM,OAAO,CAAC,WAAW,EAAE,CAAC;QAC5B,OAAO,CAAC,qBAAqB,EAAE,CAAC;QAChC,OAAO,OAAO,CAAC;IACjB,CAAC;IAEO,cAAc;QACpB,MAAM,WAAW,GAAG,IAAI,IAAI,EAAE,CAAC,OAAO,EAAE,CAAC;QACzC,OAAO,IAAI,CAAC,KAAM,CAAC,kBAAkB,IAAI,WAAW,GAAG,KAAK,CAAC;IAC/D,CAAC;IAEO,KAAK,CAAC,WAAW;QACvB,IAAI,CAAC,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,cAAc,EAAE,EAAE,CAAC;YACzC,IAAI,CAAC;gBACH,MAAM,KAAK,GAAG,MAAM,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAC;gBACjE,IAAI,CAAC,KAAK;oBAAE,MAAM,IAAI,KAAK,CAAC,wBAAwB,CAAC,CAAC;gBACtD,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;gBACnB,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC,mBAAmB,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;gBAC/D,IAAI,IAAI,CAAC,eAAe;oBAAE,eAAe,CAAC,IAAI,CAAC,eAAe,EAAE,KAAK,CAAC,CAAC;YACzE,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,4EAA4E;gBAC5E,IAAI,IAAI,CAAC,eAAe,IAAI,IAAI,CAAC,iBAAiB,EAAE,CAAC;oBACnD,OAAO,CAAC,KAAK,CAAC,0DAA0D,IAAI,CAAC,eAAe,MAAM,CAAC,CAAC;oBACpG,MAAM,MAAM,GAAG,cAAc,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;oBACpD,IAAI,MAAM,EAAE,CAAC;wBACX,MAAM,eAAe,GAAG,IAAI,uCAA4B,CAAC;4BACvD,GAAG,IAAI,CAAC,iBAAiB;4BACzB,oBAAoB,EAAE,MAAM;yBAC7B,CAAC,CAAC;wBACH,MAAM,KAAK,GAAG,MAAM,eAAe,CAAC,QAAQ,CAAC,kBAAkB,CAAC,CAAC;wBACjE,IAAI,KAAK,EAAE,CAAC;4BACV,OAAO,CAAC,KAAK,CAAC,mCAAmC,IAAI,CAAC,eAAe,IAAI,CAAC,CAAC;4BAC3E,IAAI,CAAC,UAAU,GAAG,eAAe,CAAC;4BAClC,IAAI,CAAC,KAAK,GAAG,KAAK,CAAC;4BACnB,IAAI,CAAC,WAAW,GAAG,KAAK,CAAC,mBAAmB,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC;4BAC1D,eAAe,CAAC,IAAI,CAAC,eAAe,EAAE,KAAK,CAAC,CAAC;4BAC7C,OAAO;wBACT,CAAC;oBACH,CAAC;gBACH,CAAC;gBACD,MAAM,IAAI,KAAK,CAAC,gDAAgD,GAAG,EAAE,CAAC,CAAC;YACzE,CAAC;QACH,CAAC;IACH,CAAC;IAED;;;OAGG;IACI,qBAAqB,CAAC,aAAqB,EAAE,GAAG,EAAE,GAAG,IAAI;QAC9D,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAC5B,IAAI,CAAC,YAAY,GAAG,WAAW,CAAC,KAAK,IAAI,EAAE;YACzC,IAAI,CAAC;gBACH,IAAI,CAAC,KAAK,GAAG,SAAS,CAAC;gBACvB,MAAM,IAAI,CAAC,WAAW,EAAE,CAAC;gBACzB,OAAO,CAAC,KAAK,CAAC,2CAA2C,CAAC,CAAC;YAC7D,CAAC;YAAC,OAAO,GAAG,EAAE,CAAC;gBACb,OAAO,CAAC,KAAK,CAAC,wCAAwC,EAAE,GAAG,CAAC,CAAC;YAC/D,CAAC;QACH,CAAC,EAAE,UAAU,CAAC,CAAC;QACf,wDAAwD;QACxD,IAAI,IAAI,CAAC,YAAY,IAAI,OAAO,IAAI,CAAC,YAAY,KAAK,QAAQ,IAAI,OAAO,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YAC/F,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,CAAC;QAC5B,CAAC;IACH,CAAC;IAED;;;OAGG;IACI,KAAK,CAAC,YAAY;QACvB,IAAI,CAAC,KAAK,GAAG,SAAS,CAAC;QACvB,MAAM,IAAI,CAAC,WAAW,EAAE,CAAC;IAC3B,CAAC;IAEM,oBAAoB;QACzB,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,aAAa,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YACjC,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC;QAChC,CAAC;IACH,CAAC;IAEM,cAAc,CAAC,OAA0C;QAC9D,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrB,IAAI,CAAC,WAAW,CAAC,cAAc,CAAC,OAAO,CAAC,CAAC;QAC3C,CAAC;IACH,CAAC;IAEM,uBAAuB,CAC5B,QAA+C;QAE/C,6EAA6E;QAC7E,sFAAsF;QACtF,MAAM,UAAU,GAAG,QAAQ,CAAC,OAAO,EAAE,UAAU,CAAC;QAChD,OAAO,UAAU,KAAK,GAAG,IAAI,UAAU,KAAK,GAAG,CAAC;IAClD,CAAC;IAEM,KAAK,CAAC,oBAAoB,CAC/B,UAAyC,EACzC,WAA2C,EAC3C,IAAS;QAET,kDAAkD;QAClD,IAAI,CAAC,KAAK,GAAG,SAAS,CAAC;QACvB,MAAM,IAAI,CAAC,WAAW,EAAE,CAAC;QAEzB,kDAAkD;QAClD,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YACrB,IAAI,CAAC,WAAW,CAAC,cAAc,CAAC,WAAW,CAAC,OAAO,CAAC,CAAC;QACvD,CAAC;QAED,wDAAwD;QACxD,OAAO,UAAU,CAAC,UAAU,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;IAClD,CAAC;CACF;AA3ND,gEA2NC;AAED;;;GAGG;AACH,MAAa,gBAAiB,SAAQ,0BAA0B;IAG9D;QACE,KAAK,CAAC,IAAI,iCAAsB,EAAE,CAAC,CAAC;IACtC,CAAC;IAEM,MAAM,CAAC,KAAK,CAAC,WAAW;QAC7B,IAAI,CAAC,gBAAgB,CAAC,QAAQ,EAAE,CAAC;YAC/B,gBAAgB,CAAC,QAAQ,GAAG,IAAI,gBAAgB,EAAE,CAAC;QACrD,CAAC;QACD,mCAAmC;QACnC,MAAO,gBAAgB,CAAC,QAAgB,CAAC,WAAW,EAAE,CAAC;QACvD,OAAO,gBAAgB,CAAC,QAAQ,CAAC;IACnC,CAAC;CACF;AAfD,4CAeC"}