@amaster.ai/pi-security 0.1.0

package/LICENSE

@@ -0,0 +1,201 @@
+                                 Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

package/README.md

@@ -0,0 +1,122 @@
+# Pi Security
+
+![pi-security preview](https://raw.githubusercontent.com/TGYD-helige/pi/master/packages/pi-security/preview.png)
+
+`@amaster.ai/pi-security` provides a sandbox-aware security policy engine and a Pi extension entry point.
+
+The core engine classifies tool calls into resources (files, shell commands, network access), assesses risk, and applies profile rules to decide whether a call is allowed, denied, or requires human approval. Profiles are built from two orthogonal axes — **sandbox** (what tools are exposed) and **approval** (when to ask the user) — inspired by Codex.
+
+## Pi extension
+
+Install the extension entry point `@amaster.ai/pi-security/extension` and load the `pi-security` settings key through Pi `SettingsManager`:
+
+```json
+{
+  "pi-security": {
+    "enabled": true,
+    "profile": "default",
+    "approvals": {
+      "allowSessionGrants": true
+    }
+  }
+}
+```
+
+The extension listens to Pi `tool_call` and `user_bash` events. It does not register an LLM-callable tool that can bypass policy. Human approvals are requested through Pi UI primitives when UI is available; non-interactive contexts fail closed when a rule requires approval.
+
+## Built-in profiles
+
+Profiles are derived from a `sandbox` × `approval` matrix. Pick one as a starting point and override either axis in your own profiles.
+
+| Profile        | Sandbox            | Approval     | Use case                                                |
+|----------------|--------------------|--------------|---------------------------------------------------------|
+| `read-only`    | `read-only`        | `never`      | Read-only inspection, no modifications                  |
+| `default`      | `workspace-write`  | `on-request` | Workspace edits with approval for writes (recommended)  |
+| `auto`         | `workspace-write`  | `on-failure` | Autonomous edits, only ask when risk is high            |
+| `full-access`  | `full-access`      | `never`      | Trusted automation, no gating (use with care)           |
+
+### Sandbox modes
+
+| Mode               | Allowed tools                                  | Denied tools          |
+|--------------------|------------------------------------------------|-----------------------|
+| `read-only`        | `read`, `ls`, `find`, `grep`                   | `write`, `edit`, `bash` |
+| `workspace-write`  | `read`, `ls`, `find`, `grep`, `write`, `edit`, `bash` | —                     |
+| `full-access`      | `*` (all tools)                                | —                     |
+
+Tool names align with the pi-coding-agent built-in tools: `bash`, `read`, `write`, `edit`, `ls`, `find`, `grep`.
+
+### Approval modes
+
+| Mode          | Behavior                                                                  |
+|---------------|---------------------------------------------------------------------------|
+| `never`       | No approval prompts (deny rules still apply, e.g. for secrets).           |
+| `on-failure`  | Ask only on high/critical risk operations.                                |
+| `on-request`  | Ask on workspace writes/deletes (in addition to high-risk ops).           |
+| `untrusted`   | Ask on workspace writes plus high-risk ops; default decision is also ask. |
+
+Baseline secret protection (denying `.ssh/`, `.env`, `*.pem`, `*.key`, etc.) is always enabled, regardless of profile.
+
+## Custom profiles
+
+Profiles can be defined in three places. Higher-priority sources override lower-priority ones with the same name:
+
+1. **Project**: `<cwd>/.pi/policy/<name>.json` (highest priority)
+2. **Agent**: `<agentDir>/policy/<name>.json`
+3. **User**: `~/.pi/agent/policy/<name>.json`
+4. **Settings**: under `pi-security.security.profiles` in `pi.json`
+
+Each JSON file defines a single profile; the filename (without `.json`) is the profile name.
+
+### JSON config examples
+
+Ready-to-copy samples live under [`examples/`](./examples) and are exercised by the test suite:
+
+- [`examples/reviewer.json`](./examples/reviewer.json) — a project-level file policy. Drop into `<project>/.pi/policy/reviewer.json`. Starts from `read-only`, opens to `workspace-write`, asks on `bash`, denies external network.
+- [`examples/auto-review.settings.json`](./examples/auto-review.settings.json) — a `pi.json` snippet that defines a custom `auto-review` profile inline. Extends `default` and asks before package-manager installs (`npm/pnpm/yarn/pip install|add`) via `argsRegex`.
+
+### Profile schema
+
+```ts
+type SecurityProfileConfig = {
+  extends?: string;                   // built-in profile name or another custom profile
+  sandbox?: 'read-only' | 'workspace-write' | 'full-access';
+  approval?: 'never' | 'on-failure' | 'on-request' | 'untrusted';
+  rules?: SecurityRule[];             // appended after parent rules
+  defaultDecision?: SecurityDecision; // overrides parent default for unmatched tools
+};
+```
+
+### Rule schema
+
+Rules are evaluated in priority order (descending); the first match wins.
+
+```ts
+type SecurityRule = {
+  id: string;
+  priority?: number;                  // default 300 for user rules
+  tools?: string[];                   // tool name patterns ('*', 'mcp_*', 'bash')
+  sources?: ToolSource[];             // 'builtin' | 'mcp' | 'runtime'
+  triggers?: Array<'user' | 'agent' | 'scheduler'>;
+  senderTrusts?: Array<'owner' | 'trusted' | 'untrusted'>;
+  args?: Record<string, string>;      // exact/glob match against args
+  argsRegex?: Record<string, string>; // regex match against args
+  resources?: ('file' | 'shell' | 'network')[];
+  operations?: ('read' | 'write' | 'execute' | 'delete' | 'connect' | 'search')[];
+  scopes?: ('workspace' | 'home' | 'system' | 'external' | 'unknown')[];
+  sensitivity?: ('normal' | 'source' | 'config' | 'secret' | 'credential')[];
+  risk?: ('low' | 'medium' | 'high' | 'critical')[];
+  decision: { kind: 'allow' } | { kind: 'deny'; reason: string } | { kind: 'ask'; reason: string; prompt?: string };
+};
+```
+
+## Commands
+
+- `/pi-security-status` shows the active profile, audit count, and in-session grants.
+- `/pi-security-audit [limit]` shows recent authorization decisions without raw sensitive output.
+- `/pi-security-reset` clears in-session approval grants.
+
+## Trust model
+
+This module is an execution gate, not a filesystem sandbox by itself. Deny and approval decisions are enforceable because they run before Pi tool execution; sandbox enforcement still depends on the runtime that executes the tool.
+
+Sensitive paths such as SSH keys, `.env`, credentials, tokens, private keys, and `secrets/` directories are denied by baseline policy across all profiles. Audit entries include tool names, resource summaries, risk level, and decision metadata, but they should not include plaintext secrets.

package/dist/extension.d.ts

@@ -0,0 +1,32 @@
+import type { ExtensionAPI, ExtensionContext, ToolCallEvent, ToolCallEventResult, UserBashEvent, UserBashEventResult } from '@earendil-works/pi-coding-agent';
+import { type SecurityAuditEvent, type SecurityConfig } from './index.js';
+export type PiSecurityExtensionConfig = {
+    enabled?: boolean;
+    profile?: string;
+    security?: SecurityConfig;
+    auditLimit?: number;
+    approvals?: {
+        allowSessionGrants?: boolean;
+    };
+};
+export type PiSecuritySessionGrant = {
+    toolName: string;
+    reason: string;
+};
+export type PiSecurityExtensionState = {
+    config: ResolvedPiSecurityExtensionConfig;
+    auditLog: SecurityAuditEvent[];
+    grants: PiSecuritySessionGrant[];
+};
+export type ResolvedPiSecurityExtensionConfig = {
+    enabled: boolean;
+    profile: string;
+    security?: SecurityConfig;
+    auditLimit: number;
+    allowSessionGrants: boolean;
+};
+export default function piSecurityExtension(pi: ExtensionAPI): void;
+export declare function authorizePiToolCall(event: ToolCallEvent, ctx: ExtensionContext, state: PiSecurityExtensionState): Promise<ToolCallEventResult | undefined>;
+export declare function authorizeUserBash(event: UserBashEvent, ctx: ExtensionContext, state: PiSecurityExtensionState): Promise<UserBashEventResult | undefined>;
+export declare function resolvePiSecurityConfig(config?: PiSecurityExtensionConfig): ResolvedPiSecurityExtensionConfig;
+//# sourceMappingURL=extension.d.ts.map

package/dist/extension.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"extension.d.ts","sourceRoot":"","sources":["../src/extension.ts"],"names":[],"mappings":"AAQA,OAAO,KAAK,EACV,YAAY,EACZ,gBAAgB,EAChB,aAAa,EACb,mBAAmB,EACnB,aAAa,EACb,mBAAmB,EACpB,MAAM,iCAAiC,CAAC;AAEzC,OAAO,EACL,KAAK,kBAAkB,EACvB,KAAK,cAAc,EAIpB,MAAM,YAAY,CAAC;AAQpB,MAAM,MAAM,yBAAyB,GAAG;IACtC,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,SAAS,CAAC,EAAE;QACV,kBAAkB,CAAC,EAAE,OAAO,CAAC;KAC9B,CAAC;CACH,CAAC;AAEF,MAAM,MAAM,sBAAsB,GAAG;IACnC,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;CAChB,CAAC;AAEF,MAAM,MAAM,wBAAwB,GAAG;IACrC,MAAM,EAAE,iCAAiC,CAAC;IAC1C,QAAQ,EAAE,kBAAkB,EAAE,CAAC;IAC/B,MAAM,EAAE,sBAAsB,EAAE,CAAC;CAClC,CAAC;AAEF,MAAM,MAAM,iCAAiC,GAAG;IAC9C,OAAO,EAAE,OAAO,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,QAAQ,CAAC,EAAE,cAAc,CAAC;IAC1B,UAAU,EAAE,MAAM,CAAC;IACnB,kBAAkB,EAAE,OAAO,CAAC;CAC7B,CAAC;AAEF,MAAM,CAAC,OAAO,UAAU,mBAAmB,CAAC,EAAE,EAAE,YAAY,GAAG,IAAI,CA+ClE;AAED,wBAAsB,mBAAmB,CACvC,KAAK,EAAE,aAAa,EACpB,GAAG,EAAE,gBAAgB,EACrB,KAAK,EAAE,wBAAwB,GAC9B,OAAO,CAAC,mBAAmB,GAAG,SAAS,CAAC,CAc1C;AAED,wBAAsB,iBAAiB,CACrC,KAAK,EAAE,aAAa,EACpB,GAAG,EAAE,gBAAgB,EACrB,KAAK,EAAE,wBAAwB,GAC9B,OAAO,CAAC,mBAAmB,GAAG,SAAS,CAAC,CA8B1C;AAED,wBAAgB,uBAAuB,CACrC,MAAM,CAAC,EAAE,yBAAyB,GACjC,iCAAiC,CAenC"}

package/dist/extension.js

@@ -0,0 +1,281 @@
+import { loadPiSettings } from '@amaster.ai/pi-shared/settings';
+import { getAgentDir } from '@earendil-works/pi-coding-agent';
+import { SecurityGate, securityEvaluationDetails, } from './index.js';
+import { loadFilePolicies } from './policy-loader.js';
+const SETTINGS_KEY = 'pi-security';
+const EXTENSION_STATUS_KEY = 'pi-security';
+const DEFAULT_PROFILE = 'auto-review';
+const DEFAULT_AUDIT_LIMIT = 200;
+export default function piSecurityExtension(pi) {
+    const state = {
+        config: resolvePiSecurityConfig(),
+        auditLog: [],
+        grants: [],
+    };
+    pi.on('session_start', async (_event, ctx) => {
+        state.config = resolvePiSecurityConfig(loadSettings(ctx.cwd));
+        state.auditLog = [];
+        state.grants = [];
+        ctx.ui.setStatus(EXTENSION_STATUS_KEY, state.config.enabled ? `security: ${state.config.profile}` : 'security: disabled');
+    });
+    pi.on('session_shutdown', async (_event, ctx) => {
+        ctx.ui.setStatus(EXTENSION_STATUS_KEY, undefined);
+        state.auditLog = [];
+        state.grants = [];
+    });
+    pi.on('tool_call', async (event, ctx) => authorizePiToolCall(event, ctx, state));
+    pi.on('user_bash', async (event, ctx) => authorizeUserBash(event, ctx, state));
+    pi.registerCommand('pi-security-status', {
+        description: 'Show Pi security policy status.',
+        handler: async (_args, ctx) => {
+            ctx.ui.notify(formatSecurityStatus(state), 'info');
+        },
+    });
+    pi.registerCommand('pi-security-audit', {
+        description: 'Show recent Pi security authorization decisions.',
+        handler: async (args, ctx) => {
+            ctx.ui.notify(formatAuditLog(state, parseAuditLimit(args)), 'info');
+        },
+    });
+    pi.registerCommand('pi-security-reset', {
+        description: 'Clear in-session Pi security approval grants.',
+        handler: async (_args, ctx) => {
+            state.grants = [];
+            ctx.ui.notify('Pi security session grants cleared.', 'info');
+        },
+    });
+}
+export async function authorizePiToolCall(event, ctx, state) {
+    if (!state.config.enabled) {
+        return undefined;
+    }
+    const toolCall = toolCallFromPiEvent(event);
+    const evaluation = await createGate(ctx, state).authorize({
+        request: requestFromContext(ctx),
+        toolCall,
+        workspaceDir: ctx.cwd,
+    });
+    if (evaluation.decision.kind === 'deny' || evaluation.decision.kind === 'ask') {
+        return { block: true, reason: evaluation.decision.reason };
+    }
+    return undefined;
+}
+export async function authorizeUserBash(event, ctx, state) {
+    if (!state.config.enabled) {
+        return undefined;
+    }
+    const toolCall = {
+        id: 'user-bash',
+        name: 'bash',
+        source: 'builtin',
+        args: {
+            command: event.command,
+            cwd: event.cwd,
+            excludeFromContext: event.excludeFromContext,
+        },
+    };
+    const evaluation = await createGate(ctx, state).authorize({
+        request: requestFromContext(ctx),
+        toolCall,
+        workspaceDir: ctx.cwd,
+    });
+    if (evaluation.decision.kind === 'deny' || evaluation.decision.kind === 'ask') {
+        return {
+            result: {
+                output: evaluation.decision.reason,
+                exitCode: 1,
+                cancelled: false,
+                truncated: false,
+            },
+        };
+    }
+    return undefined;
+}
+export function resolvePiSecurityConfig(config) {
+    const configuredAuditLimit = config?.auditLimit;
+    const auditLimit = Number.isInteger(configuredAuditLimit) &&
+        configuredAuditLimit !== undefined &&
+        configuredAuditLimit > 0
+        ? Math.min(configuredAuditLimit, 1_000)
+        : DEFAULT_AUDIT_LIMIT;
+    return {
+        enabled: config?.enabled !== false,
+        profile: config?.profile?.trim() || DEFAULT_PROFILE,
+        ...(config?.security ? { security: config.security } : {}),
+        auditLimit,
+        allowSessionGrants: config?.approvals?.allowSessionGrants !== false,
+    };
+}
+function createGate(ctx, state) {
+    return new SecurityGate({
+        profile: state.config.profile,
+        ...(state.config.security ? { config: state.config.security } : {}),
+        filePolicies: loadFilePolicies(ctx.cwd, getAgentDir()),
+        approvalHandler: async ({ toolCall, decision }) => resolveApproval(ctx, state, toolCall, decision),
+        auditSink: (event) => {
+            state.auditLog.push(event);
+            if (state.auditLog.length > state.config.auditLimit) {
+                state.auditLog.splice(0, state.auditLog.length - state.config.auditLimit);
+            }
+        },
+    });
+}
+async function resolveApproval(ctx, state, toolCall, decision) {
+    if (hasSessionGrant(state, toolCall, decision)) {
+        return { kind: 'allow', reason: `Allowed by in-session grant: ${decision.reason}` };
+    }
+    if (!ctx.hasUI) {
+        return decision;
+    }
+    if (!state.config.allowSessionGrants) {
+        const approved = await ctx.ui.confirm(decision.prompt ?? 'Approve tool call?', approvalMessage(toolCall, decision));
+        return approved
+            ? { kind: 'allow', reason: `Approved by user: ${decision.reason}` }
+            : denyByUser(decision);
+    }
+    const choice = await ctx.ui.select(`${decision.prompt ?? 'Approve tool call?'}\n${approvalMessage(toolCall, decision)}`, ['Allow once', 'Allow similar for this session', 'Deny']);
+    if (choice === 'Allow once') {
+        return { kind: 'allow', reason: `Approved by user: ${decision.reason}` };
+    }
+    if (choice === 'Allow similar for this session') {
+        state.grants.push({ toolName: toolCall.name, reason: decision.reason });
+        return { kind: 'allow', reason: `Approved by user with session grant: ${decision.reason}` };
+    }
+    return denyByUser(decision);
+}
+function loadSettings(cwd) {
+    try {
+        const config = loadPiSettings(SETTINGS_KEY, {
+            cwd,
+            agentDir: getAgentDir(),
+        });
+        return Object.keys(config).length > 0 ? config : undefined;
+    }
+    catch {
+        return undefined;
+    }
+}
+function isPlainObject(value) {
+    return Boolean(value && typeof value === 'object' && !Array.isArray(value));
+}
+function requestFromContext(ctx) {
+    const sessionId = ctx.sessionManager.getSessionId();
+    const model = ctx.model;
+    return {
+        sessionId,
+        conversationId: sessionId,
+        trigger: 'user',
+        senderTrust: 'owner',
+        interactive: ctx.hasUI,
+        model: {
+            provider: stringFromRecord(model, 'provider') ?? 'pi',
+            model: stringFromRecord(model, 'id') ?? stringFromRecord(model, 'name') ?? 'unknown',
+        },
+    };
+}
+function toolCallFromPiEvent(event) {
+    return {
+        id: event.toolCallId,
+        name: event.toolName,
+        source: toolSourceForPiTool(event.toolName),
+        args: normalizeToolArgs(event.toolName, event.input),
+    };
+}
+function toolSourceForPiTool(toolName) {
+    if (toolName.startsWith('mcp_') || toolName.startsWith('mcp__')) {
+        return 'mcp';
+    }
+    if (['bash', 'write', 'edit', 'read', 'ls', 'grep', 'find'].includes(toolName)) {
+        return 'builtin';
+    }
+    return 'runtime';
+}
+function normalizeToolArgs(toolName, input) {
+    const args = toJsonObject(input);
+    if (toolName === 'bash' && typeof input.command === 'string') {
+        return { ...args, command: input.command };
+    }
+    return args;
+}
+function toJsonObject(input) {
+    const result = {};
+    for (const [key, value] of Object.entries(input)) {
+        const jsonValue = toJsonValue(value);
+        if (jsonValue !== undefined) {
+            result[key] = jsonValue;
+        }
+    }
+    return result;
+}
+function toJsonValue(value) {
+    if (value === null ||
+        typeof value === 'string' ||
+        typeof value === 'number' ||
+        typeof value === 'boolean') {
+        return value;
+    }
+    if (Array.isArray(value)) {
+        return value.map(toJsonValue).filter((item) => item !== undefined);
+    }
+    if (isPlainObject(value)) {
+        return toJsonObject(value);
+    }
+    return undefined;
+}
+function hasSessionGrant(state, toolCall, decision) {
+    return state.grants.some((grant) => grant.toolName === toolCall.name && grant.reason === decision.reason);
+}
+function denyByUser(decision) {
+    return { kind: 'deny', reason: `User denied approval: ${decision.reason}` };
+}
+function approvalMessage(toolCall, decision) {
+    const target = summarizeToolCall(toolCall);
+    return target ? `${decision.reason}\n\n${target}` : decision.reason;
+}
+function summarizeToolCall(toolCall) {
+    const command = stringArg(toolCall.args, 'command');
+    if (command) {
+        return command;
+    }
+    const filePath = stringArg(toolCall.args, 'path') ?? stringArg(toolCall.args, 'file_path');
+    if (filePath) {
+        return filePath;
+    }
+    return toolCall.name;
+}
+function formatSecurityStatus(state) {
+    return [
+        `Pi security: ${state.config.enabled ? 'enabled' : 'disabled'}`,
+        `Profile: ${state.config.profile}`,
+        `Audit entries: ${state.auditLog.length}`,
+        `Session grants: ${state.grants.length}`,
+    ].join('\n');
+}
+function formatAuditLog(state, limit) {
+    if (state.auditLog.length === 0) {
+        return 'Pi security audit log is empty.';
+    }
+    return state.auditLog
+        .slice(-limit)
+        .map((event) => {
+        const details = securityEvaluationDetails(event);
+        return `${event.createdAt} ${event.toolName} -> ${event.decision.kind} (${details.risk})`;
+    })
+        .join('\n');
+}
+function parseAuditLimit(args) {
+    const parsed = Number.parseInt((args ?? '').trim(), 10);
+    return Number.isFinite(parsed) && parsed > 0 ? Math.min(parsed, 50) : 10;
+}
+function stringArg(args, key) {
+    const value = args[key];
+    return typeof value === 'string' ? value : undefined;
+}
+function stringFromRecord(value, key) {
+    if (!value || typeof value !== 'object') {
+        return undefined;
+    }
+    const actual = value[key];
+    return typeof actual === 'string' ? actual : undefined;
+}
+//# sourceMappingURL=extension.js.map

package/dist/extension.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"extension.js","sourceRoot":"","sources":["../src/extension.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,cAAc,EAAE,MAAM,gCAAgC,CAAC;AAShE,OAAO,EAAE,WAAW,EAAE,MAAM,iCAAiC,CAAC;AAC9D,OAAO,EAIL,YAAY,EACZ,yBAAyB,GAC1B,MAAM,YAAY,CAAC;AACpB,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAEtD,MAAM,YAAY,GAAG,aAAa,CAAC;AACnC,MAAM,oBAAoB,GAAG,aAAa,CAAC;AAC3C,MAAM,eAAe,GAAG,aAAa,CAAC;AACtC,MAAM,mBAAmB,GAAG,GAAG,CAAC;AA+BhC,MAAM,CAAC,OAAO,UAAU,mBAAmB,CAAC,EAAgB;IAC1D,MAAM,KAAK,GAA6B;QACtC,MAAM,EAAE,uBAAuB,EAAE;QACjC,QAAQ,EAAE,EAAE;QACZ,MAAM,EAAE,EAAE;KACX,CAAC;IAEF,EAAE,CAAC,EAAE,CAAC,eAAe,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE;QAC3C,KAAK,CAAC,MAAM,GAAG,uBAAuB,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;QAC9D,KAAK,CAAC,QAAQ,GAAG,EAAE,CAAC;QACpB,KAAK,CAAC,MAAM,GAAG,EAAE,CAAC;QAClB,GAAG,CAAC,EAAE,CAAC,SAAS,CACd,oBAAoB,EACpB,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,aAAa,KAAK,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC,CAAC,oBAAoB,CAClF,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,EAAE,CAAC,kBAAkB,EAAE,KAAK,EAAE,MAAM,EAAE,GAAG,EAAE,EAAE;QAC9C,GAAG,CAAC,EAAE,CAAC,SAAS,CAAC,oBAAoB,EAAE,SAAS,CAAC,CAAC;QAClD,KAAK,CAAC,QAAQ,GAAG,EAAE,CAAC;QACpB,KAAK,CAAC,MAAM,GAAG,EAAE,CAAC;IACpB,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,EAAE,CAAC,WAAW,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE,CAAC,mBAAmB,CAAC,KAAK,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC;IACjF,EAAE,CAAC,EAAE,CAAC,WAAW,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE,CAAC,iBAAiB,CAAC,KAAK,EAAE,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC;IAE/E,EAAE,CAAC,eAAe,CAAC,oBAAoB,EAAE;QACvC,WAAW,EAAE,iCAAiC;QAC9C,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE;YAC5B,GAAG,CAAC,EAAE,CAAC,MAAM,CAAC,oBAAoB,CAAC,KAAK,CAAC,EAAE,MAAM,CAAC,CAAC;QACrD,CAAC;KACF,CAAC,CAAC;IAEH,EAAE,CAAC,eAAe,CAAC,mBAAmB,EAAE;QACtC,WAAW,EAAE,kDAAkD;QAC/D,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,EAAE,EAAE;YAC3B,GAAG,CAAC,EAAE,CAAC,MAAM,CAAC,cAAc,CAAC,KAAK,EAAE,eAAe,CAAC,IAAI,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QACtE,CAAC;KACF,CAAC,CAAC;IAEH,EAAE,CAAC,eAAe,CAAC,mBAAmB,EAAE;QACtC,WAAW,EAAE,+CAA+C;QAC5D,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE;YAC5B,KAAK,CAAC,MAAM,GAAG,EAAE,CAAC;YAClB,GAAG,CAAC,EAAE,CAAC,MAAM,CAAC,qCAAqC,EAAE,MAAM,CAAC,CAAC;QAC/D,CAAC;KACF,CAAC,CAAC;AACL,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,KAAoB,EACpB,GAAqB,EACrB,KAA+B;IAE/B,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QAC1B,OAAO,SAAS,CAAC;IACnB,CAAC;IACD,MAAM,QAAQ,GAAG,mBAAmB,CAAC,KAAK,CAAC,CAAC;IAC5C,MAAM,UAAU,GAAG,MAAM,UAAU,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,SAAS,CAAC;QACxD,OAAO,EAAE,kBAAkB,CAAC,GAAG,CAAC;QAChC,QAAQ;QACR,YAAY,EAAE,GAAG,CAAC,GAAG;KACtB,CAAC,CAAC;IACH,IAAI,UAAU,CAAC,QAAQ,CAAC,IAAI,KAAK,MAAM,IAAI,UAAU,CAAC,QAAQ,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;QAC9E,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,MAAM,EAAE,UAAU,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC;IAC7D,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,KAAoB,EACpB,GAAqB,EACrB,KAA+B;IAE/B,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QAC1B,OAAO,SAAS,CAAC;IACnB,CAAC;IACD,MAAM,QAAQ,GAAoB;QAChC,EAAE,EAAE,WAAW;QACf,IAAI,EAAE,MAAM;QACZ,MAAM,EAAE,SAAS;QACjB,IAAI,EAAE;YACJ,OAAO,EAAE,KAAK,CAAC,OAAO;YACtB,GAAG,EAAE,KAAK,CAAC,GAAG;YACd,kBAAkB,EAAE,KAAK,CAAC,kBAAkB;SAC7C;KACF,CAAC;IACF,MAAM,UAAU,GAAG,MAAM,UAAU,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,SAAS,CAAC;QACxD,OAAO,EAAE,kBAAkB,CAAC,GAAG,CAAC;QAChC,QAAQ;QACR,YAAY,EAAE,GAAG,CAAC,GAAG;KACtB,CAAC,CAAC;IACH,IAAI,UAAU,CAAC,QAAQ,CAAC,IAAI,KAAK,MAAM,IAAI,UAAU,CAAC,QAAQ,CAAC,IAAI,KAAK,KAAK,EAAE,CAAC;QAC9E,OAAO;YACL,MAAM,EAAE;gBACN,MAAM,EAAE,UAAU,CAAC,QAAQ,CAAC,MAAM;gBAClC,QAAQ,EAAE,CAAC;gBACX,SAAS,EAAE,KAAK;gBAChB,SAAS,EAAE,KAAK;aACjB;SACF,CAAC;IACJ,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,MAAM,UAAU,uBAAuB,CACrC,MAAkC;IAElC,MAAM,oBAAoB,GAAG,MAAM,EAAE,UAAU,CAAC;IAChD,MAAM,UAAU,GACd,MAAM,CAAC,SAAS,CAAC,oBAAoB,CAAC;QACtC,oBAAoB,KAAK,SAAS;QAClC,oBAAoB,GAAG,CAAC;QACtB,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,oBAAoB,EAAE,KAAK,CAAC;QACvC,CAAC,CAAC,mBAAmB,CAAC;IAC1B,OAAO;QACL,OAAO,EAAE,MAAM,EAAE,OAAO,KAAK,KAAK;QAClC,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,eAAe;QACnD,GAAG,CAAC,MAAM,EAAE,QAAQ,CAAC,CAAC,CAAC,EAAE,QAAQ,EAAE,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC1D,UAAU;QACV,kBAAkB,EAAE,MAAM,EAAE,SAAS,EAAE,kBAAkB,KAAK,KAAK;KACpE,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CAAC,GAAqB,EAAE,KAA+B;IACxE,OAAO,IAAI,YAAY,CAAC;QACtB,OAAO,EAAE,KAAK,CAAC,MAAM,CAAC,OAAO;QAC7B,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,EAAE,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QACnE,YAAY,EAAE,gBAAgB,CAAC,GAAG,CAAC,GAAG,EAAE,WAAW,EAAE,CAAC;QACtD,eAAe,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,QAAQ,EAAE,EAAE,EAAE,CAChD,eAAe,CAAC,GAAG,EAAE,KAAK,EAAE,QAAQ,EAAE,QAAQ,CAAC;QACjD,SAAS,EAAE,CAAC,KAAK,EAAE,EAAE;YACnB,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YAC3B,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,UAAU,EAAE,CAAC;gBACpD,KAAK,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,EAAE,KAAK,CAAC,QAAQ,CAAC,MAAM,GAAG,KAAK,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;YAC5E,CAAC;QACH,CAAC;KACF,CAAC,CAAC;AACL,CAAC;AAED,KAAK,UAAU,eAAe,CAC5B,GAAqB,EACrB,KAA+B,EAC/B,QAAyB,EACzB,QAAoD;IAEpD,IAAI,eAAe,CAAC,KAAK,EAAE,QAAQ,EAAE,QAAQ,CAAC,EAAE,CAAC;QAC/C,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,gCAAgC,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC;IACtF,CAAC;IACD,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC;QACf,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,kBAAkB,EAAE,CAAC;QACrC,MAAM,QAAQ,GAAG,MAAM,GAAG,CAAC,EAAE,CAAC,OAAO,CACnC,QAAQ,CAAC,MAAM,IAAI,oBAAoB,EACvC,eAAe,CAAC,QAAQ,EAAE,QAAQ,CAAC,CACpC,CAAC;QACF,OAAO,QAAQ;YACb,CAAC,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,qBAAqB,QAAQ,CAAC,MAAM,EAAE,EAAE;YACnE,CAAC,CAAC,UAAU,CAAC,QAAQ,CAAC,CAAC;IAC3B,CAAC;IAED,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,EAAE,CAAC,MAAM,CAChC,GAAG,QAAQ,CAAC,MAAM,IAAI,oBAAoB,KAAK,eAAe,CAAC,QAAQ,EAAE,QAAQ,CAAC,EAAE,EACpF,CAAC,YAAY,EAAE,gCAAgC,EAAE,MAAM,CAAC,CACzD,CAAC;IACF,IAAI,MAAM,KAAK,YAAY,EAAE,CAAC;QAC5B,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,qBAAqB,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC;IAC3E,CAAC;IACD,IAAI,MAAM,KAAK,gCAAgC,EAAE,CAAC;QAChD,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,QAAQ,EAAE,QAAQ,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;QACxE,OAAO,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,wCAAwC,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC;IAC9F,CAAC;IACD,OAAO,UAAU,CAAC,QAAQ,CAAC,CAAC;AAC9B,CAAC;AAED,SAAS,YAAY,CAAC,GAAW;IAC/B,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,cAAc,CAAqC,YAAY,EAAE;YAC9E,GAAG;YACH,QAAQ,EAAE,WAAW,EAAE;SACxB,CAAC,CAAC;QACH,OAAO,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAE,MAAoC,CAAC,CAAC,CAAC,SAAS,CAAC;IAC5F,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,SAAS,CAAC;IACnB,CAAC;AACH,CAAC;AAED,SAAS,aAAa,CAAC,KAAc;IACnC,OAAO,OAAO,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC;AAC9E,CAAC;AAED,SAAS,kBAAkB,CAAC,GAAqB;IAC/C,MAAM,SAAS,GAAG,GAAG,CAAC,cAAc,CAAC,YAAY,EAAE,CAAC;IACpD,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC;IACxB,OAAO;QACL,SAAS;QACT,cAAc,EAAE,SAAS;QACzB,OAAO,EAAE,MAAM;QACf,WAAW,EAAE,OAAO;QACpB,WAAW,EAAE,GAAG,CAAC,KAAK;QACtB,KAAK,EAAE;YACL,QAAQ,EAAE,gBAAgB,CAAC,KAAK,EAAE,UAAU,CAAC,IAAI,IAAI;YACrD,KAAK,EAAE,gBAAgB,CAAC,KAAK,EAAE,IAAI,CAAC,IAAI,gBAAgB,CAAC,KAAK,EAAE,MAAM,CAAC,IAAI,SAAS;SACrF;KACF,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,KAAoB;IAC/C,OAAO;QACL,EAAE,EAAE,KAAK,CAAC,UAAU;QACpB,IAAI,EAAE,KAAK,CAAC,QAAQ;QACpB,MAAM,EAAE,mBAAmB,CAAC,KAAK,CAAC,QAAQ,CAAC;QAC3C,IAAI,EAAE,iBAAiB,CAAC,KAAK,CAAC,QAAQ,EAAE,KAAK,CAAC,KAAK,CAAC;KACrD,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,QAAgB;IAC3C,IAAI,QAAQ,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,QAAQ,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,CAAC;QAChE,OAAO,KAAK,CAAC;IACf,CAAC;IACD,IAAI,CAAC,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC/E,OAAO,SAAS,CAAC;IACnB,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,SAAS,iBAAiB,CAAC,QAAgB,EAAE,KAA8B;IACzE,MAAM,IAAI,GAAG,YAAY,CAAC,KAAK,CAAC,CAAC;IACjC,IAAI,QAAQ,KAAK,MAAM,IAAI,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,EAAE,CAAC;QAC7D,OAAO,EAAE,GAAG,IAAI,EAAE,OAAO,EAAE,KAAK,CAAC,OAAO,EAAE,CAAC;IAC7C,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,YAAY,CAAC,KAA8B;IAClD,MAAM,MAAM,GAAe,EAAE,CAAC;IAC9B,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACjD,MAAM,SAAS,GAAG,WAAW,CAAC,KAAK,CAAC,CAAC;QACrC,IAAI,SAAS,KAAK,SAAS,EAAE,CAAC;YAC5B,MAAM,CAAC,GAAG,CAAC,GAAG,SAAS,CAAC;QAC1B,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAS,WAAW,CAAC,KAAc;IACjC,IACE,KAAK,KAAK,IAAI;QACd,OAAO,KAAK,KAAK,QAAQ;QACzB,OAAO,KAAK,KAAK,QAAQ;QACzB,OAAO,KAAK,KAAK,SAAS,EAC1B,CAAC;QACD,OAAO,KAAK,CAAC;IACf,CAAC;IACD,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,KAAK,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,MAAM,CAAC,CAAC,IAAI,EAAqB,EAAE,CAAC,IAAI,KAAK,SAAS,CAAC,CAAC;IACxF,CAAC;IACD,IAAI,aAAa,CAAC,KAAK,CAAC,EAAE,CAAC;QACzB,OAAO,YAAY,CAAC,KAAK,CAAC,CAAC;IAC7B,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,SAAS,eAAe,CACtB,KAA+B,EAC/B,QAAyB,EACzB,QAAoD;IAEpD,OAAO,KAAK,CAAC,MAAM,CAAC,IAAI,CACtB,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,QAAQ,KAAK,QAAQ,CAAC,IAAI,IAAI,KAAK,CAAC,MAAM,KAAK,QAAQ,CAAC,MAAM,CAChF,CAAC;AACJ,CAAC;AAED,SAAS,UAAU,CAAC,QAAoD;IACtE,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,yBAAyB,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC;AAC9E,CAAC;AAED,SAAS,eAAe,CACtB,QAAyB,EACzB,QAAoD;IAEpD,MAAM,MAAM,GAAG,iBAAiB,CAAC,QAAQ,CAAC,CAAC;IAC3C,OAAO,MAAM,CAAC,CAAC,CAAC,GAAG,QAAQ,CAAC,MAAM,OAAO,MAAM,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC;AACtE,CAAC;AAED,SAAS,iBAAiB,CAAC,QAAyB;IAClD,MAAM,OAAO,GAAG,SAAS,CAAC,QAAQ,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;IACpD,IAAI,OAAO,EAAE,CAAC;QACZ,OAAO,OAAO,CAAC;IACjB,CAAC;IACD,MAAM,QAAQ,GAAG,SAAS,CAAC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC,IAAI,SAAS,CAAC,QAAQ,CAAC,IAAI,EAAE,WAAW,CAAC,CAAC;IAC3F,IAAI,QAAQ,EAAE,CAAC;QACb,OAAO,QAAQ,CAAC;IAClB,CAAC;IACD,OAAO,QAAQ,CAAC,IAAI,CAAC;AACvB,CAAC;AAED,SAAS,oBAAoB,CAAC,KAA+B;IAC3D,OAAO;QACL,gBAAgB,KAAK,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,UAAU,EAAE;QAC/D,YAAY,KAAK,CAAC,MAAM,CAAC,OAAO,EAAE;QAClC,kBAAkB,KAAK,CAAC,QAAQ,CAAC,MAAM,EAAE;QACzC,mBAAmB,KAAK,CAAC,MAAM,CAAC,MAAM,EAAE;KACzC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACf,CAAC;AAED,SAAS,cAAc,CAAC,KAA+B,EAAE,KAAa;IACpE,IAAI,KAAK,CAAC,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAChC,OAAO,iCAAiC,CAAC;IAC3C,CAAC;IACD,OAAO,KAAK,CAAC,QAAQ;SAClB,KAAK,CAAC,CAAC,KAAK,CAAC;SACb,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE;QACb,MAAM,OAAO,GAAG,yBAAyB,CAAC,KAAK,CAAC,CAAC;QACjD,OAAO,GAAG,KAAK,CAAC,SAAS,IAAI,KAAK,CAAC,QAAQ,OAAO,KAAK,CAAC,QAAQ,CAAC,IAAI,KAAK,OAAO,CAAC,IAAI,GAAG,CAAC;IAC5F,CAAC,CAAC;SACD,IAAI,CAAC,IAAI,CAAC,CAAC;AAChB,CAAC;AAED,SAAS,eAAe,CAAC,IAAwB;IAC/C,MAAM,MAAM,GAAG,MAAM,CAAC,QAAQ,CAAC,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,EAAE,EAAE,CAAC,CAAC;IACxD,OAAO,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;AAC3E,CAAC;AAED,SAAS,SAAS,CAAC,IAAgB,EAAE,GAAW;IAC9C,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC;IACxB,OAAO,OAAO,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,SAAS,CAAC;AACvD,CAAC;AAED,SAAS,gBAAgB,CAAC,KAAc,EAAE,GAAW;IACnD,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QACxC,OAAO,SAAS,CAAC;IACnB,CAAC;IACD,MAAM,MAAM,GAAI,KAAiC,CAAC,GAAG,CAAC,CAAC;IACvD,OAAO,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC;AACzD,CAAC"}