@agentick/sandbox-local 0.2.1

package/dist/provider.js

@@ -0,0 +1,137 @@
+/**
+ * Local Sandbox Provider
+ *
+ * Factory function that creates a SandboxProvider backed by OS-level sandboxing.
+ */
+import { randomBytes } from "node:crypto";
+import { detectCapabilities, selectStrategy } from "./platform/detect";
+import { selectExecutor } from "./executor/select";
+import { createWorkspace, destroyWorkspace, resolveMounts } from "./workspace";
+import { filterEnv } from "./paths";
+import { ResourceEnforcer } from "./resources";
+import { CgroupManager } from "./linux/cgroup";
+import { LocalSandbox } from "./local-sandbox";
+import { NetworkProxyServer } from "./network/proxy";
+/**
+ * Create a local sandbox provider.
+ *
+ * @example
+ * ```typescript
+ * import { localProvider } from "@agentick/sandbox-local";
+ *
+ * const provider = localProvider();
+ * const sandbox = await provider.create({ workspace: true });
+ * const result = await sandbox.exec("echo hello");
+ * await sandbox.destroy();
+ * ```
+ */
+export function localProvider(config) {
+    const cleanupDefault = config?.cleanupWorkspace ?? true;
+    return {
+        name: "local",
+        async create(options) {
+            const caps = await detectCapabilities();
+            const strategy = selectStrategy(caps, config?.strategy);
+            // Workspace
+            const workspace = await createWorkspace(options.workspace, config?.tmpBase);
+            const mounts = await resolveMounts(options.mounts);
+            // Permissions
+            const permissions = resolvePermissions(options.permissions ?? {}, workspace.path, mounts.map((m) => ({ path: m.hostPath, mode: m.mode })));
+            // CgroupManager (Linux only)
+            let cgroup;
+            if (caps.hasCgroupsV2 && options.limits) {
+                const id = randomBytes(4).toString("hex");
+                cgroup = new CgroupManager(id);
+                await cgroup.create(options.limits);
+            }
+            // Executor
+            const executor = selectExecutor(strategy, cgroup);
+            // Environment
+            const baseEnv = {
+                HOME: workspace.path,
+                PATH: process.env.PATH ?? "/usr/local/bin:/usr/bin:/bin",
+                TERM: "dumb",
+            };
+            if (options.permissions?.inheritEnv) {
+                Object.assign(baseEnv, filterEnv(process.env));
+            }
+            if (options.env) {
+                Object.assign(baseEnv, options.env);
+            }
+            // Network proxy
+            let proxy;
+            const netRules = Array.isArray(options.permissions?.net)
+                ? options.permissions.net
+                : undefined;
+            if (netRules && netRules.length > 0) {
+                proxy = new NetworkProxyServer(netRules, config?.network);
+                await proxy.start();
+                // Inject proxy env vars
+                baseEnv.HTTP_PROXY = proxy.proxyUrl;
+                baseEnv.http_proxy = proxy.proxyUrl;
+                baseEnv.HTTPS_PROXY = proxy.proxyUrl;
+                baseEnv.https_proxy = proxy.proxyUrl;
+            }
+            // Resource enforcement
+            const resources = new ResourceEnforcer(workspace.path, options.limits ?? {});
+            await resources.start();
+            const sandboxId = randomBytes(8).toString("hex");
+            return new LocalSandbox({
+                id: sandboxId,
+                workspacePath: workspace.path,
+                executor,
+                env: baseEnv,
+                mounts,
+                permissions,
+                resources,
+                proxy,
+                cleanupWorkspace: cleanupDefault,
+                destroyWorkspace: () => destroyWorkspace(workspace.path, workspace.autoCreated && cleanupDefault),
+            });
+        },
+        async restore(snapshot) {
+            const caps = await detectCapabilities();
+            const strategy = selectStrategy(caps, config?.strategy);
+            const executor = selectExecutor(strategy);
+            const resources = new ResourceEnforcer(snapshot.workspacePath, {});
+            await resources.start();
+            return new LocalSandbox({
+                id: snapshot.id,
+                workspacePath: snapshot.workspacePath,
+                executor,
+                env: {
+                    HOME: snapshot.workspacePath,
+                    PATH: process.env.PATH ?? "/usr/local/bin:/usr/bin:/bin",
+                    TERM: "dumb",
+                },
+                mounts: [],
+                permissions: {
+                    readPaths: [snapshot.workspacePath],
+                    writePaths: [snapshot.workspacePath],
+                    network: false,
+                    childProcess: true,
+                },
+                resources,
+                cleanupWorkspace: false,
+                destroyWorkspace: async () => { },
+            });
+        },
+    };
+}
+function resolvePermissions(perms, workspacePath, mounts) {
+    const readPaths = [workspacePath];
+    const writePaths = [workspacePath];
+    for (const mount of mounts) {
+        readPaths.push(mount.path);
+        if (mount.mode === "rw") {
+            writePaths.push(mount.path);
+        }
+    }
+    return {
+        readPaths,
+        writePaths,
+        network: perms.net ?? false,
+        childProcess: perms.childProcess ?? true,
+    };
+}
+//# sourceMappingURL=provider.js.map

package/dist/provider.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provider.js","sourceRoot":"","sources":["../src/provider.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAQ1C,OAAO,EAAE,kBAAkB,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAEvE,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAEnD,OAAO,EAAE,eAAe,EAAE,gBAAgB,EAAE,aAAa,EAAE,MAAM,aAAa,CAAC;AAC/E,OAAO,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AACpC,OAAO,EAAE,gBAAgB,EAAE,MAAM,aAAa,CAAC;AAC/C,OAAO,EAAE,aAAa,EAAE,MAAM,gBAAgB,CAAC;AAC/C,OAAO,EAAE,YAAY,EAAE,MAAM,iBAAiB,CAAC;AAC/C,OAAO,EAAE,kBAAkB,EAAE,MAAM,iBAAiB,CAAC;AAiBrD;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,aAAa,CAAC,MAA4B;IACxD,MAAM,cAAc,GAAG,MAAM,EAAE,gBAAgB,IAAI,IAAI,CAAC;IAExD,OAAO;QACL,IAAI,EAAE,OAAO;QAEb,KAAK,CAAC,MAAM,CAAC,OAA6B;YACxC,MAAM,IAAI,GAAG,MAAM,kBAAkB,EAAE,CAAC;YACxC,MAAM,QAAQ,GAAG,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;YAExD,YAAY;YACZ,MAAM,SAAS,GAAG,MAAM,eAAe,CAAC,OAAO,CAAC,SAAS,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;YAC5E,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YAEnD,cAAc;YACd,MAAM,WAAW,GAAG,kBAAkB,CACpC,OAAO,CAAC,WAAW,IAAI,EAAE,EACzB,SAAS,CAAC,IAAI,EACd,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,CAAC,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CACxD,CAAC;YAEF,6BAA6B;YAC7B,IAAI,MAAiC,CAAC;YACtC,IAAI,IAAI,CAAC,YAAY,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;gBACxC,MAAM,EAAE,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;gBAC1C,MAAM,GAAG,IAAI,aAAa,CAAC,EAAE,CAAC,CAAC;gBAC/B,MAAM,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;YACtC,CAAC;YAED,WAAW;YACX,MAAM,QAAQ,GAAG,cAAc,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;YAElD,cAAc;YACd,MAAM,OAAO,GAA2B;gBACtC,IAAI,EAAE,SAAS,CAAC,IAAI;gBACpB,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,8BAA8B;gBACxD,IAAI,EAAE,MAAM;aACb,CAAC;YAEF,IAAI,OAAO,CAAC,WAAW,EAAE,UAAU,EAAE,CAAC;gBACpC,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,SAAS,CAAC,OAAO,CAAC,GAA6B,CAAC,CAAC,CAAC;YAC3E,CAAC;YAED,IAAI,OAAO,CAAC,GAAG,EAAE,CAAC;gBAChB,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,OAAO,CAAC,GAAG,CAAC,CAAC;YACtC,CAAC;YAED,gBAAgB;YAChB,IAAI,KAAqC,CAAC;YAC1C,MAAM,QAAQ,GAAG,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,WAAW,EAAE,GAAG,CAAC;gBACtD,CAAC,CAAE,OAAO,CAAC,WAAY,CAAC,GAAqB;gBAC7C,CAAC,CAAC,SAAS,CAAC;YAEd,IAAI,QAAQ,IAAI,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACpC,KAAK,GAAG,IAAI,kBAAkB,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;gBAC1D,MAAM,KAAK,CAAC,KAAK,EAAE,CAAC;gBAEpB,wBAAwB;gBACxB,OAAO,CAAC,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC;gBACpC,OAAO,CAAC,UAAU,GAAG,KAAK,CAAC,QAAQ,CAAC;gBACpC,OAAO,CAAC,WAAW,GAAG,KAAK,CAAC,QAAQ,CAAC;gBACrC,OAAO,CAAC,WAAW,GAAG,KAAK,CAAC,QAAQ,CAAC;YACvC,CAAC;YAED,uBAAuB;YACvB,MAAM,SAAS,GAAG,IAAI,gBAAgB,CAAC,SAAS,CAAC,IAAI,EAAE,OAAO,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC;YAC7E,MAAM,SAAS,CAAC,KAAK,EAAE,CAAC;YAExB,MAAM,SAAS,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;YAEjD,OAAO,IAAI,YAAY,CAAC;gBACtB,EAAE,EAAE,SAAS;gBACb,aAAa,EAAE,SAAS,CAAC,IAAI;gBAC7B,QAAQ;gBACR,GAAG,EAAE,OAAO;gBACZ,MAAM;gBACN,WAAW;gBACX,SAAS;gBACT,KAAK;gBACL,gBAAgB,EAAE,cAAc;gBAChC,gBAAgB,EAAE,GAAG,EAAE,CACrB,gBAAgB,CAAC,SAAS,CAAC,IAAI,EAAE,SAAS,CAAC,WAAW,IAAI,cAAc,CAAC;aAC5E,CAAC,CAAC;QACL,CAAC;QAED,KAAK,CAAC,OAAO,CAAC,QAAyB;YACrC,MAAM,IAAI,GAAG,MAAM,kBAAkB,EAAE,CAAC;YACxC,MAAM,QAAQ,GAAG,cAAc,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;YACxD,MAAM,QAAQ,GAAG,cAAc,CAAC,QAAQ,CAAC,CAAC;YAE1C,MAAM,SAAS,GAAG,IAAI,gBAAgB,CAAC,QAAQ,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC;YACnE,MAAM,SAAS,CAAC,KAAK,EAAE,CAAC;YAExB,OAAO,IAAI,YAAY,CAAC;gBACtB,EAAE,EAAE,QAAQ,CAAC,EAAE;gBACf,aAAa,EAAE,QAAQ,CAAC,aAAa;gBACrC,QAAQ;gBACR,GAAG,EAAE;oBACH,IAAI,EAAE,QAAQ,CAAC,aAAa;oBAC5B,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,8BAA8B;oBACxD,IAAI,EAAE,MAAM;iBACb;gBACD,MAAM,EAAE,EAAE;gBACV,WAAW,EAAE;oBACX,SAAS,EAAE,CAAC,QAAQ,CAAC,aAAa,CAAC;oBACnC,UAAU,EAAE,CAAC,QAAQ,CAAC,aAAa,CAAC;oBACpC,OAAO,EAAE,KAAK;oBACd,YAAY,EAAE,IAAI;iBACnB;gBACD,SAAS;gBACT,gBAAgB,EAAE,KAAK;gBACvB,gBAAgB,EAAE,KAAK,IAAI,EAAE,GAAE,CAAC;aACjC,CAAC,CAAC;QACL,CAAC;KACF,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB,CACzB,KAAuD,EACvD,aAAqB,EACrB,MAA6C;IAE7C,MAAM,SAAS,GAAG,CAAC,aAAa,CAAC,CAAC;IAClC,MAAM,UAAU,GAAG,CAAC,aAAa,CAAC,CAAC;IAEnC,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC3B,IAAI,KAAK,CAAC,IAAI,KAAK,IAAI,EAAE,CAAC;YACxB,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC9B,CAAC;IACH,CAAC;IAED,OAAO;QACL,SAAS;QACT,UAAU;QACV,OAAO,EAAE,KAAK,CAAC,GAAG,IAAI,KAAK;QAC3B,YAAY,EAAE,KAAK,CAAC,YAAY,IAAI,IAAI;KACzC,CAAC;AACJ,CAAC"}

package/dist/resources.d.ts

@@ -0,0 +1,30 @@
+/**
+ * Resource Enforcement
+ *
+ * Timeout management, disk monitoring, and process tracking.
+ * cgroups-based limits are handled separately by CgroupManager (Linux only).
+ */
+import type { ChildProcess } from "node:child_process";
+import type { ResourceLimits } from "@agentick/sandbox";
+export declare class ResourceEnforcer {
+    private readonly workspacePath;
+    private readonly limits;
+    private diskTimer?;
+    private trackedProcesses;
+    private stopped;
+    constructor(workspacePath: string, limits: ResourceLimits);
+    /** Start resource monitoring. */
+    start(): Promise<void>;
+    /** Track a child process for cleanup on resource violations. */
+    trackProcess(child: ChildProcess): void;
+    /**
+     * Create an AbortSignal that fires after the given timeout.
+     * Falls back to the global timeout limit if no per-command timeout.
+     */
+    createTimeoutSignal(timeout?: number): AbortSignal | undefined;
+    /** Stop all monitoring and kill tracked processes. */
+    stop(): Promise<void>;
+    private checkDisk;
+    private killAllProcesses;
+}
+//# sourceMappingURL=resources.d.ts.map

package/dist/resources.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"resources.d.ts","sourceRoot":"","sources":["../src/resources.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,oBAAoB,CAAC;AACvD,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAMxD,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,QAAQ,CAAC,aAAa,CAAS;IACvC,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAiB;IACxC,OAAO,CAAC,SAAS,CAAC,CAAiC;IACnD,OAAO,CAAC,gBAAgB,CAA2B;IACnD,OAAO,CAAC,OAAO,CAAS;gBAEZ,aAAa,EAAE,MAAM,EAAE,MAAM,EAAE,cAAc;IAKzD,iCAAiC;IAC3B,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAO5B,gEAAgE;IAChE,YAAY,CAAC,KAAK,EAAE,YAAY,GAAG,IAAI;IAKvC;;;OAGG;IACH,mBAAmB,CAAC,OAAO,CAAC,EAAE,MAAM,GAAG,WAAW,GAAG,SAAS;IAM9D,sDAAsD;IAChD,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;YAYb,SAAS;IAevB,OAAO,CAAC,gBAAgB;CAuBzB"}

package/dist/resources.js

@@ -0,0 +1,94 @@
+/**
+ * Resource Enforcement
+ *
+ * Timeout management, disk monitoring, and process tracking.
+ * cgroups-based limits are handled separately by CgroupManager (Linux only).
+ */
+import { execFile } from "node:child_process";
+import { promisify } from "node:util";
+const execFileAsync = promisify(execFile);
+const DISK_POLL_INTERVAL = 5000; // 5 seconds
+export class ResourceEnforcer {
+    workspacePath;
+    limits;
+    diskTimer;
+    trackedProcesses = new Set();
+    stopped = false;
+    constructor(workspacePath, limits) {
+        this.workspacePath = workspacePath;
+        this.limits = limits;
+    }
+    /** Start resource monitoring. */
+    async start() {
+        if (this.limits.disk) {
+            this.diskTimer = setInterval(() => this.checkDisk(), DISK_POLL_INTERVAL);
+            this.diskTimer.unref();
+        }
+    }
+    /** Track a child process for cleanup on resource violations. */
+    trackProcess(child) {
+        this.trackedProcesses.add(child);
+        child.on("exit", () => this.trackedProcesses.delete(child));
+    }
+    /**
+     * Create an AbortSignal that fires after the given timeout.
+     * Falls back to the global timeout limit if no per-command timeout.
+     */
+    createTimeoutSignal(timeout) {
+        const ms = timeout ?? this.limits.timeout;
+        if (!ms)
+            return undefined;
+        return AbortSignal.timeout(ms);
+    }
+    /** Stop all monitoring and kill tracked processes. */
+    async stop() {
+        if (this.stopped)
+            return;
+        this.stopped = true;
+        if (this.diskTimer) {
+            clearInterval(this.diskTimer);
+            this.diskTimer = undefined;
+        }
+        this.killAllProcesses();
+    }
+    async checkDisk() {
+        if (!this.limits.disk || this.stopped)
+            return;
+        try {
+            // du -sk works on both macOS and Linux (-sb is Linux-only)
+            const { stdout } = await execFileAsync("du", ["-sk", this.workspacePath]);
+            const bytes = parseInt(stdout.split("\t")[0], 10) * 1024;
+            if (bytes > this.limits.disk) {
+                this.killAllProcesses();
+            }
+        }
+        catch {
+            // du may fail if workspace was destroyed — ignore
+        }
+    }
+    killAllProcesses() {
+        for (const child of this.trackedProcesses) {
+            try {
+                // Kill process group if possible
+                if (child.pid) {
+                    process.kill(-child.pid, "SIGTERM");
+                }
+            }
+            catch {
+                // Process may have already exited
+            }
+            // Forceful kill after 5 seconds
+            setTimeout(() => {
+                try {
+                    if (child.pid) {
+                        process.kill(-child.pid, "SIGKILL");
+                    }
+                }
+                catch {
+                    // Already gone
+                }
+            }, 5000).unref();
+        }
+    }
+}
+//# sourceMappingURL=resources.js.map

package/dist/resources.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"resources.js","sourceRoot":"","sources":["../src/resources.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,QAAQ,EAAE,MAAM,oBAAoB,CAAC;AAC9C,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AAItC,MAAM,aAAa,GAAG,SAAS,CAAC,QAAQ,CAAC,CAAC;AAE1C,MAAM,kBAAkB,GAAG,IAAI,CAAC,CAAC,YAAY;AAE7C,MAAM,OAAO,gBAAgB;IACV,aAAa,CAAS;IACtB,MAAM,CAAiB;IAChC,SAAS,CAAkC;IAC3C,gBAAgB,GAAG,IAAI,GAAG,EAAgB,CAAC;IAC3C,OAAO,GAAG,KAAK,CAAC;IAExB,YAAY,aAAqB,EAAE,MAAsB;QACvD,IAAI,CAAC,aAAa,GAAG,aAAa,CAAC;QACnC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;IAED,iCAAiC;IACjC,KAAK,CAAC,KAAK;QACT,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE,CAAC;YACrB,IAAI,CAAC,SAAS,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,SAAS,EAAE,EAAE,kBAAkB,CAAC,CAAC;YACzE,IAAI,CAAC,SAAS,CAAC,KAAK,EAAE,CAAC;QACzB,CAAC;IACH,CAAC;IAED,gEAAgE;IAChE,YAAY,CAAC,KAAmB;QAC9B,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC;QACjC,KAAK,CAAC,EAAE,CAAC,MAAM,EAAE,GAAG,EAAE,CAAC,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;IAC9D,CAAC;IAED;;;OAGG;IACH,mBAAmB,CAAC,OAAgB;QAClC,MAAM,EAAE,GAAG,OAAO,IAAI,IAAI,CAAC,MAAM,CAAC,OAAO,CAAC;QAC1C,IAAI,CAAC,EAAE;YAAE,OAAO,SAAS,CAAC;QAC1B,OAAO,WAAW,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;IACjC,CAAC;IAED,sDAAsD;IACtD,KAAK,CAAC,IAAI;QACR,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO;QACzB,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC;QAEpB,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAC9B,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;QAC7B,CAAC;QAED,IAAI,CAAC,gBAAgB,EAAE,CAAC;IAC1B,CAAC;IAEO,KAAK,CAAC,SAAS;QACrB,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,IAAI,IAAI,CAAC,OAAO;YAAE,OAAO;QAE9C,IAAI,CAAC;YACH,2DAA2D;YAC3D,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,aAAa,CAAC,IAAI,EAAE,CAAC,KAAK,EAAE,IAAI,CAAC,aAAa,CAAC,CAAC,CAAC;YAC1E,MAAM,KAAK,GAAG,QAAQ,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,IAAI,CAAC;YACzD,IAAI,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC,IAAK,EAAE,CAAC;gBAC9B,IAAI,CAAC,gBAAgB,EAAE,CAAC;YAC1B,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,kDAAkD;QACpD,CAAC;IACH,CAAC;IAEO,gBAAgB;QACtB,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;YAC1C,IAAI,CAAC;gBACH,iCAAiC;gBACjC,IAAI,KAAK,CAAC,GAAG,EAAE,CAAC;oBACd,OAAO,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;gBACtC,CAAC;YACH,CAAC;YAAC,MAAM,CAAC;gBACP,kCAAkC;YACpC,CAAC;YAED,gCAAgC;YAChC,UAAU,CAAC,GAAG,EAAE;gBACd,IAAI,CAAC;oBACH,IAAI,KAAK,CAAC,GAAG,EAAE,CAAC;wBACd,OAAO,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;oBACtC,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBACP,eAAe;gBACjB,CAAC;YACH,CAAC,EAAE,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;QACnB,CAAC;IACH,CAAC;CACF"}

package/dist/seatbelt/profile.d.ts

@@ -0,0 +1,30 @@
+/**
+ * macOS Seatbelt Profile Generation
+ *
+ * Compiles SpawnOptions into Apple Seatbelt Profile Language (SBPL).
+ *
+ * Security model: "safe by default"
+ *
+ * SBPL resolves conflicting rules by specificity — more specific wins.
+ * At equal specificity, deny beats allow. This lets us:
+ *
+ *   1. (allow file-read*)                         — system reads (needed for bash)
+ *   2. (deny file-read* (subpath "/Users"))        — deny user home dirs
+ *   3. (allow file-read* (subpath "{workspace}"))  — re-allow workspace
+ *
+ * The deny at step 2 is more specific than the allow at step 1, so it wins
+ * for paths under /Users. The allow at step 3 is more specific than the deny
+ * at step 2, so workspace access works even if it's under /Users.
+ *
+ * This prevents sandboxed processes from reading SSH keys, credentials,
+ * browser profiles, and other sensitive user data — while still allowing
+ * system libraries and executables to load normally.
+ *
+ * Write restrictions are always tight: only workspace, mounts, /tmp, /dev.
+ */
+import type { SpawnOptions } from "../executor/types";
+/**
+ * Compile a seatbelt profile string from spawn options.
+ */
+export declare function compileSeatbeltProfile(options: SpawnOptions): string;
+//# sourceMappingURL=profile.d.ts.map

package/dist/seatbelt/profile.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"profile.d.ts","sourceRoot":"","sources":["../../src/seatbelt/profile.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,mBAAmB,CAAC;AAqBtD;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,OAAO,EAAE,YAAY,GAAG,MAAM,CAqEpE"}

package/dist/seatbelt/profile.js

@@ -0,0 +1,106 @@
+/**
+ * macOS Seatbelt Profile Generation
+ *
+ * Compiles SpawnOptions into Apple Seatbelt Profile Language (SBPL).
+ *
+ * Security model: "safe by default"
+ *
+ * SBPL resolves conflicting rules by specificity — more specific wins.
+ * At equal specificity, deny beats allow. This lets us:
+ *
+ *   1. (allow file-read*)                         — system reads (needed for bash)
+ *   2. (deny file-read* (subpath "/Users"))        — deny user home dirs
+ *   3. (allow file-read* (subpath "{workspace}"))  — re-allow workspace
+ *
+ * The deny at step 2 is more specific than the allow at step 1, so it wins
+ * for paths under /Users. The allow at step 3 is more specific than the deny
+ * at step 2, so workspace access works even if it's under /Users.
+ *
+ * This prevents sandboxed processes from reading SSH keys, credentials,
+ * browser profiles, and other sensitive user data — while still allowing
+ * system libraries and executables to load normally.
+ *
+ * Write restrictions are always tight: only workspace, mounts, /tmp, /dev.
+ */
+/**
+ * Paths that sandboxed processes cannot read.
+ *
+ * /Users               — home directories (SSH keys, .env, browser profiles, credentials)
+ * /private/var/root    — root's home directory
+ * /Volumes             — mounted drives, encrypted volumes, network shares
+ * /Network             — network-mounted resources
+ * /Library/Keychains   — system-level keychains and certificates
+ * /private/var/db/dslocal — local directory service (user account data, password hashes)
+ */
+const DENIED_READ_PATHS = [
+    "/Users",
+    "/private/var/root",
+    "/Volumes",
+    "/Network",
+    "/Library/Keychains",
+    "/private/var/db/dslocal",
+];
+/**
+ * Compile a seatbelt profile string from spawn options.
+ */
+export function compileSeatbeltProfile(options) {
+    const lines = [];
+    const emit = (line) => lines.push(line);
+    const comment = (text) => emit(`\n;; ${text}`);
+    const allow = (...parts) => emit(`(allow ${parts.join(" ")})`);
+    const deny = (...parts) => emit(`(deny ${parts.join(" ")})`);
+    const subpath = (p) => `(subpath "${p}")`;
+    emit("(version 1)");
+    deny("default");
+    // Process execution
+    comment("Process execution");
+    allow("process*");
+    allow("signal");
+    allow("sysctl*");
+    // File reads — allow system, deny sensitive, re-allow workspace/mounts.
+    // SBPL specificity: subpath filter > unfiltered, so deny(subpath) > allow(*).
+    comment("File reads — safe by default");
+    allow("file-read*");
+    comment("Deny reads to sensitive paths (home dirs, volumes, keychains, etc.)");
+    for (const p of DENIED_READ_PATHS) {
+        deny("file-read*", subpath(p));
+    }
+    // Re-allow workspace reads (more specific than /Users deny)
+    comment("Re-allow workspace reads");
+    allow("file-read*", subpath(options.workspacePath));
+    // Re-allow mount reads
+    if (options.mounts.length > 0) {
+        comment("Re-allow mount reads");
+        for (const mount of options.mounts) {
+            allow("file-read*", subpath(mount.hostPath));
+        }
+    }
+    // File writes — restricted to workspace, mounts, and temp
+    comment("File writes (restricted)");
+    allow("file-write*", subpath(options.workspacePath));
+    allow("file-write*", subpath("/private/tmp"));
+    allow("file-write*", subpath("/tmp"));
+    allow("file-write*", subpath("/dev"));
+    // Mount writes
+    if (options.mounts.length > 0) {
+        comment("Mount writes");
+        for (const mount of options.mounts) {
+            if (mount.mode === "rw") {
+                allow("file-write*", subpath(mount.hostPath));
+            }
+        }
+    }
+    // Network
+    comment("Network");
+    const net = options.permissions.network;
+    if (net === false) {
+        deny("network*");
+    }
+    else {
+        // net === true or NetworkRule[] — allow all at seatbelt level.
+        // NetworkRule enforcement happens via the proxy layer, not seatbelt.
+        allow("network*");
+    }
+    return lines.join("\n") + "\n";
+}
+//# sourceMappingURL=profile.js.map

package/dist/seatbelt/profile.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"profile.js","sourceRoot":"","sources":["../../src/seatbelt/profile.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AAIH;;;;;;;;;GASG;AACH,MAAM,iBAAiB,GAAG;IACxB,QAAQ;IACR,mBAAmB;IACnB,UAAU;IACV,UAAU;IACV,oBAAoB;IACpB,yBAAyB;CAC1B,CAAC;AAEF;;GAEG;AACH,MAAM,UAAU,sBAAsB,CAAC,OAAqB;IAC1D,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,MAAM,IAAI,GAAG,CAAC,IAAY,EAAE,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAChD,MAAM,OAAO,GAAG,CAAC,IAAY,EAAE,EAAE,CAAC,IAAI,CAAC,QAAQ,IAAI,EAAE,CAAC,CAAC;IACvD,MAAM,KAAK,GAAG,CAAC,GAAG,KAAe,EAAE,EAAE,CAAC,IAAI,CAAC,UAAU,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACzE,MAAM,IAAI,GAAG,CAAC,GAAG,KAAe,EAAE,EAAE,CAAC,IAAI,CAAC,SAAS,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IACvE,MAAM,OAAO,GAAG,CAAC,CAAS,EAAE,EAAE,CAAC,aAAa,CAAC,IAAI,CAAC;IAElD,IAAI,CAAC,aAAa,CAAC,CAAC;IACpB,IAAI,CAAC,SAAS,CAAC,CAAC;IAEhB,oBAAoB;IACpB,OAAO,CAAC,mBAAmB,CAAC,CAAC;IAC7B,KAAK,CAAC,UAAU,CAAC,CAAC;IAClB,KAAK,CAAC,QAAQ,CAAC,CAAC;IAChB,KAAK,CAAC,SAAS,CAAC,CAAC;IAEjB,wEAAwE;IACxE,8EAA8E;IAC9E,OAAO,CAAC,8BAA8B,CAAC,CAAC;IACxC,KAAK,CAAC,YAAY,CAAC,CAAC;IAEpB,OAAO,CAAC,qEAAqE,CAAC,CAAC;IAC/E,KAAK,MAAM,CAAC,IAAI,iBAAiB,EAAE,CAAC;QAClC,IAAI,CAAC,YAAY,EAAE,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC;IACjC,CAAC;IAED,4DAA4D;IAC5D,OAAO,CAAC,0BAA0B,CAAC,CAAC;IACpC,KAAK,CAAC,YAAY,EAAE,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;IAEpD,uBAAuB;IACvB,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9B,OAAO,CAAC,sBAAsB,CAAC,CAAC;QAChC,KAAK,MAAM,KAAK,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;YACnC,KAAK,CAAC,YAAY,EAAE,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,0DAA0D;IAC1D,OAAO,CAAC,0BAA0B,CAAC,CAAC;IACpC,KAAK,CAAC,aAAa,EAAE,OAAO,CAAC,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC;IACrD,KAAK,CAAC,aAAa,EAAE,OAAO,CAAC,cAAc,CAAC,CAAC,CAAC;IAC9C,KAAK,CAAC,aAAa,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC;IACtC,KAAK,CAAC,aAAa,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC;IAEtC,eAAe;IACf,IAAI,OAAO,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC9B,OAAO,CAAC,cAAc,CAAC,CAAC;QACxB,KAAK,MAAM,KAAK,IAAI,OAAO,CAAC,MAAM,EAAE,CAAC;YACnC,IAAI,KAAK,CAAC,IAAI,KAAK,IAAI,EAAE,CAAC;gBACxB,KAAK,CAAC,aAAa,EAAE,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC;YAChD,CAAC;QACH,CAAC;IACH,CAAC;IAED,UAAU;IACV,OAAO,CAAC,SAAS,CAAC,CAAC;IACnB,MAAM,GAAG,GAAG,OAAO,CAAC,WAAW,CAAC,OAAO,CAAC;IACxC,IAAI,GAAG,KAAK,KAAK,EAAE,CAAC;QAClB,IAAI,CAAC,UAAU,CAAC,CAAC;IACnB,CAAC;SAAM,CAAC;QACN,+DAA+D;QAC/D,qEAAqE;QACrE,KAAK,CAAC,UAAU,CAAC,CAAC;IACpB,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC;AACjC,CAAC"}

package/dist/testing.d.ts

@@ -0,0 +1,22 @@
+/**
+ * Sandbox Local Testing Utilities
+ *
+ * Helpers for testing sandbox consumers and the local provider itself.
+ */
+import type { LocalProviderConfig } from "./provider";
+import type { SandboxProvider } from "@agentick/sandbox";
+import type { PlatformCapabilities } from "./platform/types";
+/**
+ * Create a test provider with unsandboxed executor by default.
+ * Useful for CI and cross-platform tests that don't need OS isolation.
+ */
+export declare function createTestProvider(config?: Partial<LocalProviderConfig>): SandboxProvider;
+/** Whether the current platform is macOS. */
+export declare const isDarwin: boolean;
+/** Whether the current platform is Linux. */
+export declare const isLinux: boolean;
+/**
+ * Create mock PlatformCapabilities for testing.
+ */
+export declare function createMockCapabilities(overrides?: Partial<PlatformCapabilities>): PlatformCapabilities;
+//# sourceMappingURL=testing.d.ts.map

package/dist/testing.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"testing.d.ts","sourceRoot":"","sources":["../src/testing.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAGH,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,YAAY,CAAC;AACtD,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACzD,OAAO,KAAK,EAAE,oBAAoB,EAAE,MAAM,kBAAkB,CAAC;AAE7D;;;GAGG;AACH,wBAAgB,kBAAkB,CAAC,MAAM,CAAC,EAAE,OAAO,CAAC,mBAAmB,CAAC,GAAG,eAAe,CAMzF;AAED,6CAA6C;AAC7C,eAAO,MAAM,QAAQ,SAAgC,CAAC;AAEtD,6CAA6C;AAC7C,eAAO,MAAM,OAAO,SAA+B,CAAC;AAEpD;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,SAAS,CAAC,EAAE,OAAO,CAAC,oBAAoB,CAAC,GACxC,oBAAoB,CAatB"}

package/dist/testing.js

@@ -0,0 +1,39 @@
+/**
+ * Sandbox Local Testing Utilities
+ *
+ * Helpers for testing sandbox consumers and the local provider itself.
+ */
+import { localProvider } from "./provider";
+/**
+ * Create a test provider with unsandboxed executor by default.
+ * Useful for CI and cross-platform tests that don't need OS isolation.
+ */
+export function createTestProvider(config) {
+    return localProvider({
+        strategy: "none",
+        cleanupWorkspace: true,
+        ...config,
+    });
+}
+/** Whether the current platform is macOS. */
+export const isDarwin = process.platform === "darwin";
+/** Whether the current platform is Linux. */
+export const isLinux = process.platform === "linux";
+/**
+ * Create mock PlatformCapabilities for testing.
+ */
+export function createMockCapabilities(overrides) {
+    return {
+        platform: "darwin",
+        arch: "arm64",
+        hasSandboxExec: true,
+        hasBwrap: false,
+        hasUnshare: false,
+        hasCgroupsV2: false,
+        userNamespaces: false,
+        uid: 501,
+        recommended: "seatbelt",
+        ...overrides,
+    };
+}
+//# sourceMappingURL=testing.js.map

package/dist/testing.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"testing.js","sourceRoot":"","sources":["../src/testing.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,YAAY,CAAC;AAK3C;;;GAGG;AACH,MAAM,UAAU,kBAAkB,CAAC,MAAqC;IACtE,OAAO,aAAa,CAAC;QACnB,QAAQ,EAAE,MAAM;QAChB,gBAAgB,EAAE,IAAI;QACtB,GAAG,MAAM;KACV,CAAC,CAAC;AACL,CAAC;AAED,6CAA6C;AAC7C,MAAM,CAAC,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,KAAK,QAAQ,CAAC;AAEtD,6CAA6C;AAC7C,MAAM,CAAC,MAAM,OAAO,GAAG,OAAO,CAAC,QAAQ,KAAK,OAAO,CAAC;AAEpD;;GAEG;AACH,MAAM,UAAU,sBAAsB,CACpC,SAAyC;IAEzC,OAAO;QACL,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,OAAO;QACb,cAAc,EAAE,IAAI;QACpB,QAAQ,EAAE,KAAK;QACf,UAAU,EAAE,KAAK;QACjB,YAAY,EAAE,KAAK;QACnB,cAAc,EAAE,KAAK;QACrB,GAAG,EAAE,GAAG;QACR,WAAW,EAAE,UAAU;QACvB,GAAG,SAAS;KACb,CAAC;AACJ,CAAC"}

package/dist/workspace.d.ts

@@ -0,0 +1,30 @@
+/**
+ * Workspace Management
+ *
+ * Create, validate, and destroy workspace directories. Resolve mounts
+ * from SandboxCreateOptions into host-path ResolvedMounts.
+ */
+import type { Mount } from "@agentick/sandbox";
+import type { ResolvedMount } from "./executor/types";
+/**
+ * Create a workspace directory.
+ *
+ * @param workspace - Explicit path, or `true` for auto-generated temp dir
+ * @param tmpBase - Base directory for temp workspaces (default: os.tmpdir())
+ * @returns Object with the workspace path and whether it was auto-created
+ */
+export declare function createWorkspace(workspace: string | true | undefined, tmpBase?: string): Promise<{
+    path: string;
+    autoCreated: boolean;
+}>;
+/**
+ * Destroy a workspace directory.
+ * Only removes auto-created workspaces (safety: never delete user-specified dirs).
+ */
+export declare function destroyWorkspace(path: string, autoCreated: boolean): Promise<void>;
+/**
+ * Resolve mounts from user-specified Mount[] to ResolvedMount[].
+ * Validates that host paths exist and are accessible.
+ */
+export declare function resolveMounts(mounts?: Mount[]): Promise<ResolvedMount[]>;
+//# sourceMappingURL=workspace.d.ts.map

package/dist/workspace.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"workspace.d.ts","sourceRoot":"","sources":["../src/workspace.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAOH,OAAO,KAAK,EAAE,KAAK,EAAE,MAAM,mBAAmB,CAAC;AAC/C,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,kBAAkB,CAAC;AAEtD;;;;;;GAMG;AACH,wBAAsB,eAAe,CACnC,SAAS,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,EACpC,OAAO,GAAE,MAAiB,GACzB,OAAO,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,WAAW,EAAE,OAAO,CAAA;CAAE,CAAC,CAYjD;AAED;;;GAGG;AACH,wBAAsB,gBAAgB,CAAC,IAAI,EAAE,MAAM,EAAE,WAAW,EAAE,OAAO,GAAG,OAAO,CAAC,IAAI,CAAC,CAQxF;AAED;;;GAGG;AACH,wBAAsB,aAAa,CAAC,MAAM,GAAE,KAAK,EAAO,GAAG,OAAO,CAAC,aAAa,EAAE,CAAC,CAqBlF"}

package/dist/workspace.js

@@ -0,0 +1,68 @@
+/**
+ * Workspace Management
+ *
+ * Create, validate, and destroy workspace directories. Resolve mounts
+ * from SandboxCreateOptions into host-path ResolvedMounts.
+ */
+import { mkdir, rm, access, realpath } from "node:fs/promises";
+import { constants } from "node:fs";
+import { tmpdir } from "node:os";
+import { join } from "node:path";
+import { randomBytes } from "node:crypto";
+/**
+ * Create a workspace directory.
+ *
+ * @param workspace - Explicit path, or `true` for auto-generated temp dir
+ * @param tmpBase - Base directory for temp workspaces (default: os.tmpdir())
+ * @returns Object with the workspace path and whether it was auto-created
+ */
+export async function createWorkspace(workspace, tmpBase = tmpdir()) {
+    if (workspace === true || workspace === undefined) {
+        const id = randomBytes(8).toString("hex");
+        const raw = join(tmpBase, `agentick-sandbox-${id}`);
+        await mkdir(raw, { recursive: true, mode: 0o700 });
+        // Always return realpath'd (e.g. macOS /var → /private/var)
+        return { path: await realpath(raw), autoCreated: true };
+    }
+    // Explicit path — ensure it exists
+    await mkdir(workspace, { recursive: true });
+    return { path: await realpath(workspace), autoCreated: false };
+}
+/**
+ * Destroy a workspace directory.
+ * Only removes auto-created workspaces (safety: never delete user-specified dirs).
+ */
+export async function destroyWorkspace(path, autoCreated) {
+    if (!autoCreated)
+        return;
+    try {
+        await rm(path, { recursive: true, force: true });
+    }
+    catch (err) {
+        console.warn(`[sandbox-local] Failed to destroy workspace ${path}:`, err);
+    }
+}
+/**
+ * Resolve mounts from user-specified Mount[] to ResolvedMount[].
+ * Validates that host paths exist and are accessible.
+ */
+export async function resolveMounts(mounts = []) {
+    const resolved = [];
+    for (const mount of mounts) {
+        // Validate host path exists
+        try {
+            await access(mount.host, constants.R_OK);
+        }
+        catch {
+            throw new Error(`Mount host path not accessible: ${mount.host}`);
+        }
+        const hostPath = await realpath(mount.host);
+        resolved.push({
+            hostPath,
+            sandboxPath: mount.sandbox,
+            mode: mount.mode ?? "rw",
+        });
+    }
+    return resolved;
+}
+//# sourceMappingURL=workspace.js.map

package/dist/workspace.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"workspace.js","sourceRoot":"","sources":["../src/workspace.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,KAAK,EAAE,EAAE,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,kBAAkB,CAAC;AAC/D,OAAO,EAAE,SAAS,EAAE,MAAM,SAAS,CAAC;AACpC,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AACjC,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AACjC,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAI1C;;;;;;GAMG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,SAAoC,EACpC,UAAkB,MAAM,EAAE;IAE1B,IAAI,SAAS,KAAK,IAAI,IAAI,SAAS,KAAK,SAAS,EAAE,CAAC;QAClD,MAAM,EAAE,GAAG,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC1C,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,EAAE,oBAAoB,EAAE,EAAE,CAAC,CAAC;QACpD,MAAM,KAAK,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;QACnD,4DAA4D;QAC5D,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC,GAAG,CAAC,EAAE,WAAW,EAAE,IAAI,EAAE,CAAC;IAC1D,CAAC;IAED,mCAAmC;IACnC,MAAM,KAAK,CAAC,SAAS,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC5C,OAAO,EAAE,IAAI,EAAE,MAAM,QAAQ,CAAC,SAAS,CAAC,EAAE,WAAW,EAAE,KAAK,EAAE,CAAC;AACjE,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CAAC,IAAY,EAAE,WAAoB;IACvE,IAAI,CAAC,WAAW;QAAE,OAAO;IAEzB,IAAI,CAAC;QACH,MAAM,EAAE,CAAC,IAAI,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;IACnD,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,OAAO,CAAC,IAAI,CAAC,+CAA+C,IAAI,GAAG,EAAE,GAAG,CAAC,CAAC;IAC5E,CAAC;AACH,CAAC;AAED;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,SAAkB,EAAE;IACtD,MAAM,QAAQ,GAAoB,EAAE,CAAC;IAErC,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;QAC3B,4BAA4B;QAC5B,IAAI,CAAC;YACH,MAAM,MAAM,CAAC,KAAK,CAAC,IAAI,EAAE,SAAS,CAAC,IAAI,CAAC,CAAC;QAC3C,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,IAAI,KAAK,CAAC,mCAAmC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;QACnE,CAAC;QAED,MAAM,QAAQ,GAAG,MAAM,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAE5C,QAAQ,CAAC,IAAI,CAAC;YACZ,QAAQ;YACR,WAAW,EAAE,KAAK,CAAC,OAAO;YAC1B,IAAI,EAAE,KAAK,CAAC,IAAI,IAAI,IAAI;SACzB,CAAC,CAAC;IACL,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC"}