@apify/actors-mcp-server 0.9.16-beta.3 → 0.9.16

package/dist/payments/helpers.js

@@ -0,0 +1,45 @@
+
+!function(){try{var e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:{},n=(new e.Error).stack;n&&(e._sentryDebugIds=e._sentryDebugIds||{},e._sentryDebugIds[n]="6ad1df9e-967a-5d8a-8965-d27fa4a73d32")}catch(e){}}();
+import { ApifyClient } from '../apify_client.js';
+import { buildPaymentRequiredResponse, registerPaymentRequiredInterceptor } from '../utils/payment_errors.js';
+/**
+ * Prepares payment context for a tool call.
+ *
+ * This helper centralizes all payment processing:
+ * 1. Validates payment credentials (for tools with `paymentRequired: true`)
+ * 2. Strips payment fields from args (for clean ajv validation and Actor input)
+ * 3. Redacts sensitive fields for logging
+ * 4. Creates an ApifyClient with payment headers or standard token
+ *
+ * Call this BEFORE ajv validation so `cleanArgs` can be validated without
+ * the `additionalProperties: true` hack.
+ */
+export function preparePayment(input) {
+    const { provider, tool, args, apifyToken, meta, requestHeaders } = input;
+    if (!provider) {
+        const client = new ApifyClient({ token: apifyToken });
+        registerPaymentRequiredInterceptor(client);
+        return {
+            cleanArgs: args,
+            logArgs: args,
+            client,
+        };
+    }
+    const error = tool.paymentRequired ? provider.validatePayment(args, meta, requestHeaders) : null;
+    const errorData = error && provider.getPaymentRequiredData ? provider.getPaymentRequiredData() : undefined;
+    const cleanArgs = provider.removePaymentFields(args);
+    const logArgs = provider.redactForLogging(args);
+    const paymentHeaders = provider.getPaymentHeaders(args, meta, requestHeaders);
+    const client = Object.keys(paymentHeaders).length > 0
+        ? new ApifyClient({ paymentHeaders })
+        : new ApifyClient({ token: apifyToken });
+    registerPaymentRequiredInterceptor(client);
+    return {
+        errorResult: error ? buildPaymentRequiredResponse(error, errorData) : undefined,
+        cleanArgs,
+        logArgs,
+        client,
+    };
+}
+//# sourceMappingURL=helpers.js.map
+//# debugId=6ad1df9e-967a-5d8a-8965-d27fa4a73d32

package/dist/payments/helpers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"helpers.js","sources":["../../src/payments/helpers.ts"],"sourceRoot":"","names":[],"mappings":";;AAAA,OAAO,EAAE,WAAW,EAAE,MAAM,oBAAoB,CAAC;AAEjD,OAAO,EAAE,4BAA4B,EAAE,kCAAkC,EAAE,MAAM,4BAA4B,CAAC;AAkB9G;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,cAAc,CAAC,KAO9B;IACG,MAAM,EAAE,QAAQ,EAAE,IAAI,EAAE,IAAI,EAAE,UAAU,EAAE,IAAI,EAAE,cAAc,EAAE,GAAG,KAAK,CAAC;IAEzE,IAAI,CAAC,QAAQ,EAAE,CAAC;QACZ,MAAM,MAAM,GAAG,IAAI,WAAW,CAAC,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC;QACtD,kCAAkC,CAAC,MAAM,CAAC,CAAC;QAC3C,OAAO;YACH,SAAS,EAAE,IAAI;YACf,OAAO,EAAE,IAAI;YACb,MAAM;SACT,CAAC;IACN,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC,QAAQ,CAAC,eAAe,CAAC,IAAI,EAAE,IAAI,EAAE,cAAc,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;IACjG,MAAM,SAAS,GAAG,KAAK,IAAI,QAAQ,CAAC,sBAAsB,CAAC,CAAC,CAAC,QAAQ,CAAC,sBAAsB,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IAC3G,MAAM,SAAS,GAAG,QAAQ,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC;IACrD,MAAM,OAAO,GAAG,QAAQ,CAAC,gBAAgB,CAAC,IAAI,CAAC,CAAC;IAEhD,MAAM,cAAc,GAAG,QAAQ,CAAC,iBAAiB,CAAC,IAAI,EAAE,IAAI,EAAE,cAAc,CAAC,CAAC;IAC9E,MAAM,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,MAAM,GAAG,CAAC;QACjD,CAAC,CAAC,IAAI,WAAW,CAAC,EAAE,cAAc,EAAE,CAAC;QACrC,CAAC,CAAC,IAAI,WAAW,CAAC,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,CAAC;IAC7C,kCAAkC,CAAC,MAAM,CAAC,CAAC;IAE3C,OAAO;QACH,WAAW,EAAE,KAAK,CAAC,CAAC,CAAC,4BAA4B,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS;QAC/E,SAAS;QACT,OAAO;QACP,MAAM;KACT,CAAC;AACN,CAAC","debugId":"6ad1df9e-967a-5d8a-8965-d27fa4a73d32"}

package/dist/payments/index.d.ts

@@ -0,0 +1,7 @@
+export type { PaymentHeaders, PaymentMeta, PaymentProvider, PaymentProviderId, RequestHeaders } from './types.js';
+export { SkyfirePaymentProvider } from './skyfire.js';
+export { X402PaymentProvider } from './x402.js';
+export { resolvePaymentProvider } from './resolve.js';
+export { preparePayment } from './helpers.js';
+export type { PreparePaymentResult } from './helpers.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/payments/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/payments/index.ts"],"names":[],"mappings":"AAAA,YAAY,EAAE,cAAc,EAAE,WAAW,EAAE,eAAe,EAAE,iBAAiB,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAClH,OAAO,EAAE,sBAAsB,EAAE,MAAM,cAAc,CAAC;AACtD,OAAO,EAAE,mBAAmB,EAAE,MAAM,WAAW,CAAC;AAChD,OAAO,EAAE,sBAAsB,EAAE,MAAM,cAAc,CAAC;AACtD,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC;AAC9C,YAAY,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAC"}

package/dist/payments/index.js

@@ -0,0 +1,8 @@
+
+!function(){try{var e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:{},n=(new e.Error).stack;n&&(e._sentryDebugIds=e._sentryDebugIds||{},e._sentryDebugIds[n]="eb04c18b-26b0-5d44-8465-c50b580f8d66")}catch(e){}}();
+export { SkyfirePaymentProvider } from './skyfire.js';
+export { X402PaymentProvider } from './x402.js';
+export { resolvePaymentProvider } from './resolve.js';
+export { preparePayment } from './helpers.js';
+//# sourceMappingURL=index.js.map
+//# debugId=eb04c18b-26b0-5d44-8465-c50b580f8d66

package/dist/payments/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sources":["../../src/payments/index.ts"],"sourceRoot":"","names":[],"mappings":";;AACA,OAAO,EAAE,sBAAsB,EAAE,MAAM,cAAc,CAAC;AACtD,OAAO,EAAE,mBAAmB,EAAE,MAAM,WAAW,CAAC;AAChD,OAAO,EAAE,sBAAsB,EAAE,MAAM,cAAc,CAAC;AACtD,OAAO,EAAE,cAAc,EAAE,MAAM,cAAc,CAAC","debugId":"eb04c18b-26b0-5d44-8465-c50b580f8d66"}

package/dist/payments/resolve.d.ts

@@ -0,0 +1,11 @@
+import type { PaymentProvider } from './types.js';
+/**
+ * Resolves a payment provider from a `?payment=` query parameter value.
+ *
+ * Some providers require async initialization (e.g., fetching payment requirements
+ * from the Apify API), so this function is async.
+ *
+ * @returns A PaymentProvider instance, or undefined if the value is not a known provider.
+ */
+export declare function resolvePaymentProvider(paymentParam: string | null | undefined): Promise<PaymentProvider | undefined>;
+//# sourceMappingURL=resolve.d.ts.map

package/dist/payments/resolve.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"resolve.d.ts","sourceRoot":"","sources":["../../src/payments/resolve.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,eAAe,EAAqB,MAAM,YAAY,CAAC;AAGrE;;;;;;;GAOG;AACH,wBAAsB,sBAAsB,CAAC,YAAY,EAAE,MAAM,GAAG,IAAI,GAAG,SAAS,GAAG,OAAO,CAAC,eAAe,GAAG,SAAS,CAAC,CAU1H"}

package/dist/payments/resolve.js

@@ -0,0 +1,24 @@
+
+!function(){try{var e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:{},n=(new e.Error).stack;n&&(e._sentryDebugIds=e._sentryDebugIds||{},e._sentryDebugIds[n]="e790249d-ede4-5b0d-9df7-943880f084da")}catch(e){}}();
+import { SkyfirePaymentProvider } from './skyfire.js';
+import { X402PaymentProvider } from './x402.js';
+/**
+ * Resolves a payment provider from a `?payment=` query parameter value.
+ *
+ * Some providers require async initialization (e.g., fetching payment requirements
+ * from the Apify API), so this function is async.
+ *
+ * @returns A PaymentProvider instance, or undefined if the value is not a known provider.
+ */
+export async function resolvePaymentProvider(paymentParam) {
+    if (!paymentParam)
+        return undefined;
+    const providers = {
+        skyfire: async () => SkyfirePaymentProvider.create(),
+        x402: async () => X402PaymentProvider.create(),
+    };
+    const factory = providers[paymentParam];
+    return factory === null || factory === void 0 ? void 0 : factory();
+}
+//# sourceMappingURL=resolve.js.map
+//# debugId=e790249d-ede4-5b0d-9df7-943880f084da

package/dist/payments/resolve.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"resolve.js","sources":["../../src/payments/resolve.ts"],"sourceRoot":"","names":[],"mappings":";;AAAA,OAAO,EAAE,sBAAsB,EAAE,MAAM,cAAc,CAAC;AAEtD,OAAO,EAAE,mBAAmB,EAAE,MAAM,WAAW,CAAC;AAEhD;;;;;;;GAOG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAAC,YAAuC;IAChF,IAAI,CAAC,YAAY;QAAE,OAAO,SAAS,CAAC;IAEpC,MAAM,SAAS,GAA8D;QACzE,OAAO,EAAE,KAAK,IAAI,EAAE,CAAC,sBAAsB,CAAC,MAAM,EAAE;QACpD,IAAI,EAAE,KAAK,IAAI,EAAE,CAAC,mBAAmB,CAAC,MAAM,EAAE;KACjD,CAAC;IAEF,MAAM,OAAO,GAAG,SAAS,CAAC,YAAiC,CAAC,CAAC;IAC7D,OAAO,OAAO,aAAP,OAAO,uBAAP,OAAO,EAAI,CAAC;AACvB,CAAC","debugId":"e790249d-ede4-5b0d-9df7-943880f084da"}

package/dist/payments/skyfire.d.ts

@@ -0,0 +1,20 @@
+import type { ToolEntry } from '../types.js';
+import type { PaymentHeaders, PaymentProvider } from './types.js';
+/**
+ * Skyfire payment provider.
+ *
+ * Injects `skyfire-pay-id` into eligible tool schemas and forwards the
+ * Skyfire PAY JWT token as a header on outbound Apify API requests.
+ */
+export declare class SkyfirePaymentProvider implements PaymentProvider {
+    readonly id: "skyfire";
+    readonly allowsUnauthenticated = true;
+    static create(): Promise<SkyfirePaymentProvider>;
+    decorateToolSchema(tool: ToolEntry): ToolEntry;
+    validatePayment(args: Record<string, unknown>): string | null;
+    getPaymentHeaders(args: Record<string, unknown>): PaymentHeaders;
+    removePaymentFields(args: Record<string, unknown>): Record<string, unknown>;
+    getUsageGuide(): string | null;
+    redactForLogging(args: unknown): unknown;
+}
+//# sourceMappingURL=skyfire.d.ts.map

package/dist/payments/skyfire.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"skyfire.d.ts","sourceRoot":"","sources":["../../src/payments/skyfire.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AAG7C,OAAO,KAAK,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAKlE;;;;;GAKG;AACH,qBAAa,sBAAuB,YAAW,eAAe;IAC1D,QAAQ,CAAC,EAAE,EAAG,SAAS,CAAU;IACjC,QAAQ,CAAC,qBAAqB,QAAQ;WAEzB,MAAM,IAAI,OAAO,CAAC,sBAAsB,CAAC;IAItD,kBAAkB,CAAC,IAAI,EAAE,SAAS,GAAG,SAAS;IAwB9C,eAAe,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,GAAG,IAAI;IAO7D,iBAAiB,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,cAAc;IAWhE,mBAAmB,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAK3E,aAAa,IAAI,MAAM,GAAG,IAAI;IAI9B,gBAAgB,CAAC,IAAI,EAAE,OAAO,GAAG,OAAO;CAO3C"}

package/dist/payments/skyfire.js

@@ -0,0 +1,84 @@
+
+!function(){try{var e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:{},n=(new e.Error).stack;n&&(e._sentryDebugIds=e._sentryDebugIds||{},e._sentryDebugIds[n]="7defb7b6-8e7c-5871-b4a2-a7772d722263")}catch(e){}}();
+import { SKYFIRE_PAY_ID_PROPERTY_DESCRIPTION, SKYFIRE_README_CONTENT, SKYFIRE_TOOL_INSTRUCTIONS, } from '../const.js';
+import { redactSkyfirePayId } from '../utils/logging.js';
+import { cloneToolEntry } from '../utils/tools.js';
+const SKYFIRE_PAY_ID_KEY = 'skyfire-pay-id';
+const PAYMENT_PROTOCOL_HEADER = 'x-apify-payment-protocol';
+/**
+ * Skyfire payment provider.
+ *
+ * Injects `skyfire-pay-id` into eligible tool schemas and forwards the
+ * Skyfire PAY JWT token as a header on outbound Apify API requests.
+ */
+export class SkyfirePaymentProvider {
+    constructor() {
+        Object.defineProperty(this, "id", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 'skyfire'
+        });
+        Object.defineProperty(this, "allowsUnauthenticated", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: true
+        });
+    }
+    static async create() {
+        return new SkyfirePaymentProvider();
+    }
+    decorateToolSchema(tool) {
+        if (!tool.paymentRequired)
+            return tool;
+        const cloned = cloneToolEntry(tool);
+        // Append Skyfire instructions to description (idempotent)
+        if (cloned.description && !cloned.description.includes(SKYFIRE_TOOL_INSTRUCTIONS)) {
+            cloned.description += `\n\n${SKYFIRE_TOOL_INSTRUCTIONS}`;
+        }
+        // Add skyfire-pay-id property to inputSchema (idempotent)
+        if (cloned.inputSchema && 'properties' in cloned.inputSchema) {
+            const props = cloned.inputSchema.properties;
+            if (!props[SKYFIRE_PAY_ID_KEY]) {
+                props[SKYFIRE_PAY_ID_KEY] = {
+                    type: 'string',
+                    description: SKYFIRE_PAY_ID_PROPERTY_DESCRIPTION,
+                };
+            }
+        }
+        return Object.freeze(cloned);
+    }
+    validatePayment(args) {
+        if (args[SKYFIRE_PAY_ID_KEY] === undefined) {
+            return `Missing required "${SKYFIRE_PAY_ID_KEY}" field. Obtain a Skyfire PAY JWT token via the create-pay-token tool and pass it as "${SKYFIRE_PAY_ID_KEY}".`;
+        }
+        return null;
+    }
+    getPaymentHeaders(args) {
+        const payId = args[SKYFIRE_PAY_ID_KEY];
+        if (typeof payId === 'string') {
+            return {
+                [SKYFIRE_PAY_ID_KEY]: payId,
+                [PAYMENT_PROTOCOL_HEADER]: 'skyfire',
+            };
+        }
+        return {};
+    }
+    removePaymentFields(args) {
+        const { [SKYFIRE_PAY_ID_KEY]: _removed, ...rest } = args;
+        return rest;
+    }
+    getUsageGuide() {
+        return SKYFIRE_README_CONTENT;
+    }
+    redactForLogging(args) {
+        // TODO: redactSkyfirePayId is still exported and used directly by the internal MCP server repo.
+        // Once the internal repo migrates to using `paymentProvider.redactForLogging()`, we should
+        // remove the standalone function and centralize the redaction logic entirely inside this provider
+        // to make it more maintainable.
+        return redactSkyfirePayId(args);
+    }
+}
+//# sourceMappingURL=skyfire.js.map
+//# debugId=7defb7b6-8e7c-5871-b4a2-a7772d722263

package/dist/payments/skyfire.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"skyfire.js","sources":["../../src/payments/skyfire.ts"],"sourceRoot":"","names":[],"mappings":";;AAAA,OAAO,EACH,mCAAmC,EACnC,sBAAsB,EACtB,yBAAyB,GAC5B,MAAM,aAAa,CAAC;AAErB,OAAO,EAAE,kBAAkB,EAAE,MAAM,qBAAqB,CAAC;AACzD,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAGnD,MAAM,kBAAkB,GAAG,gBAAgB,CAAC;AAC5C,MAAM,uBAAuB,GAAG,0BAA0B,CAAC;AAE3D;;;;;GAKG;AACH,MAAM,OAAO,sBAAsB;IAAnC;QACa;;;;mBAAK,SAAkB;WAAC;QACxB;;;;mBAAwB,IAAI;WAAC;IAgE1C,CAAC;IA9DG,MAAM,CAAC,KAAK,CAAC,MAAM;QACf,OAAO,IAAI,sBAAsB,EAAE,CAAC;IACxC,CAAC;IAED,kBAAkB,CAAC,IAAe;QAC9B,IAAI,CAAC,IAAI,CAAC,eAAe;YAAE,OAAO,IAAI,CAAC;QAEvC,MAAM,MAAM,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC;QAEpC,0DAA0D;QAC1D,IAAI,MAAM,CAAC,WAAW,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,yBAAyB,CAAC,EAAE,CAAC;YAChF,MAAM,CAAC,WAAW,IAAI,OAAO,yBAAyB,EAAE,CAAC;QAC7D,CAAC;QAED,0DAA0D;QAC1D,IAAI,MAAM,CAAC,WAAW,IAAI,YAAY,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;YAC3D,MAAM,KAAK,GAAG,MAAM,CAAC,WAAW,CAAC,UAAqC,CAAC;YACvE,IAAI,CAAC,KAAK,CAAC,kBAAkB,CAAC,EAAE,CAAC;gBAC7B,KAAK,CAAC,kBAAkB,CAAC,GAAG;oBACxB,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,mCAAmC;iBACnD,CAAC;YACN,CAAC;QACL,CAAC;QAED,OAAO,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjC,CAAC;IAED,eAAe,CAAC,IAA6B;QACzC,IAAI,IAAI,CAAC,kBAAkB,CAAC,KAAK,SAAS,EAAE,CAAC;YACzC,OAAO,qBAAqB,kBAAkB,yFAAyF,kBAAkB,IAAI,CAAC;QAClK,CAAC;QACD,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,iBAAiB,CAAC,IAA6B;QAC3C,MAAM,KAAK,GAAG,IAAI,CAAC,kBAAkB,CAAC,CAAC;QACvC,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;YAC5B,OAAO;gBACH,CAAC,kBAAkB,CAAC,EAAE,KAAK;gBAC3B,CAAC,uBAAuB,CAAC,EAAE,SAAS;aACvC,CAAC;QACN,CAAC;QACD,OAAO,EAAE,CAAC;IACd,CAAC;IAED,mBAAmB,CAAC,IAA6B;QAC7C,MAAM,EAAE,CAAC,kBAAkB,CAAC,EAAE,QAAQ,EAAE,GAAG,IAAI,EAAE,GAAG,IAAI,CAAC;QACzD,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,aAAa;QACT,OAAO,sBAAsB,CAAC;IAClC,CAAC;IAED,gBAAgB,CAAC,IAAa;QAC1B,gGAAgG;QAChG,2FAA2F;QAC3F,kGAAkG;QAClG,gCAAgC;QAChC,OAAO,kBAAkB,CAAC,IAAI,CAAC,CAAC;IACpC,CAAC;CACJ","debugId":"7defb7b6-8e7c-5871-b4a2-a7772d722263"}

package/dist/payments/types.d.ts

@@ -0,0 +1,98 @@
+import type { ToolEntry } from '../types.js';
+/**
+ * Supported payment provider identifiers.
+ * - 'skyfire': Skyfire agentic payments (PAY token in tool args)
+ * - 'x402': x402 protocol (HTTP 402 + PAYMENT-SIGNATURE header)
+ */
+export type PaymentProviderId = 'skyfire' | 'x402';
+/**
+ * Headers to attach to outbound Apify API requests for payment forwarding.
+ * Keys are header names, values are header values.
+ */
+export type PaymentHeaders = Record<string, string>;
+/**
+ * Request metadata from the MCP `_meta` field.
+ * Passed to provider methods so payment schemes that use `_meta` (e.g., x402)
+ * can access their payment data without polluting tool arguments.
+ */
+export type PaymentMeta = Record<string, unknown> | undefined;
+/**
+ * Incoming HTTP request headers from the MCP transport.
+ * Passed to provider methods so payment schemes that use HTTP headers (e.g., x402 PAYMENT-SIGNATURE)
+ * can extract payment data from the transport layer.
+ * Undefined for non-HTTP transports (e.g., stdio).
+ */
+export type RequestHeaders = Record<string, string | string[] | undefined> | undefined;
+/**
+ * Interface for payment providers.
+ *
+ * Each payment scheme implements this interface to handle:
+ * - Tool schema decoration (e.g., adding payment fields to tool definitions)
+ * - Payment credential extraction from tool call arguments or request metadata
+ * - Apify API client configuration for forwarding payment credentials
+ * - Payment validation before tool execution
+ */
+export type PaymentProvider = {
+    /** The identifier of this payment scheme */
+    readonly id: PaymentProviderId;
+    /**
+     * Decorate a tool definition schema for this payment scheme.
+     * Called when tools are registered/upserted in the MCP server.
+     *
+     * Only tools with `paymentRequired: true` should be decorated.
+     * Must be idempotent — calling twice on the same tool produces the same result.
+     *
+     * @returns The decorated tool (new object), or the original if no decoration needed.
+     */
+    decorateToolSchema(tool: ToolEntry): ToolEntry;
+    /**
+     * Validate that required payment credentials are present in tool call arguments, request metadata, or HTTP headers.
+     * Called before executing tools with `paymentRequired: true`.
+     *
+     * @param args - Tool call arguments
+     * @param meta - MCP request `_meta` field (used by x402 for `_meta["x402/payment"]`)
+     * @param requestHeaders - Incoming HTTP request headers (used by x402 for `PAYMENT-SIGNATURE` header)
+     * @returns A concise error message string if validation fails, or null if valid.
+     */
+    validatePayment(args: Record<string, unknown>, meta?: PaymentMeta, requestHeaders?: RequestHeaders): string | null;
+    /**
+     * Extract payment credentials from tool call arguments, request metadata, or HTTP headers
+     * and return headers for the Apify API client.
+     *
+     * @param args - Tool call arguments
+     * @param meta - MCP request `_meta` field
+     * @param requestHeaders - Incoming HTTP request headers
+     * @returns Headers to attach to outbound Apify API requests, or empty object if none.
+     */
+    getPaymentHeaders(args: Record<string, unknown>, meta?: PaymentMeta, requestHeaders?: RequestHeaders): PaymentHeaders;
+    /**
+     * Remove payment-specific fields from tool call arguments before passing
+     * them as Actor input. Returns cleaned args (new object).
+     */
+    removePaymentFields(args: Record<string, unknown>): Record<string, unknown>;
+    /**
+     * Whether this payment mode allows unauthenticated access (no Apify token required).
+     * Skyfire: true (uses PAY token instead)
+     * x402: true (uses blockchain payment instead)
+     */
+    readonly allowsUnauthenticated: boolean;
+    /**
+     * Optional: Return structured x402 PaymentRequired data for 402 tool results.
+     * Used by x402 to return PaymentRequired (x402Version + accepts) so that
+     * x402-compatible MCP clients can automatically handle the payment flow.
+     *
+     * @returns PaymentRequired object for structuredContent/content, or undefined if not supported.
+     */
+    getPaymentRequiredData?(): unknown;
+    /**
+     * Optional: Get a readme/usage guide resource for this payment mode.
+     * @returns Resource content string, or null if no guide is available.
+     */
+    getUsageGuide?(): string | null;
+    /**
+     * Redact sensitive payment fields from args for logging purposes.
+     * @returns A new object with sensitive fields replaced by '[REDACTED]'.
+     */
+    redactForLogging(args: unknown): unknown;
+};
+//# sourceMappingURL=types.d.ts.map

package/dist/payments/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/payments/types.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AAE7C;;;;GAIG;AACH,MAAM,MAAM,iBAAiB,GAAG,SAAS,GAAG,MAAM,CAAC;AAEnD;;;GAGG;AACH,MAAM,MAAM,cAAc,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;AAEpD;;;;GAIG;AACH,MAAM,MAAM,WAAW,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,SAAS,CAAC;AAE9D;;;;;GAKG;AACH,MAAM,MAAM,cAAc,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,GAAG,MAAM,EAAE,GAAG,SAAS,CAAC,GAAG,SAAS,CAAC;AAEvF;;;;;;;;GAQG;AACH,MAAM,MAAM,eAAe,GAAG;IAC1B,4CAA4C;IAC5C,QAAQ,CAAC,EAAE,EAAE,iBAAiB,CAAC;IAE/B;;;;;;;;OAQG;IACH,kBAAkB,CAAC,IAAI,EAAE,SAAS,GAAG,SAAS,CAAC;IAE/C;;;;;;;;OAQG;IACH,eAAe,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,IAAI,CAAC,EAAE,WAAW,EAAE,cAAc,CAAC,EAAE,cAAc,GAAG,MAAM,GAAG,IAAI,CAAC;IAEnH;;;;;;;;OAQG;IACH,iBAAiB,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,IAAI,CAAC,EAAE,WAAW,EAAE,cAAc,CAAC,EAAE,cAAc,GAAG,cAAc,CAAC;IAEtH;;;OAGG;IACH,mBAAmB,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAE5E;;;;OAIG;IACH,QAAQ,CAAC,qBAAqB,EAAE,OAAO,CAAC;IAExC;;;;;;OAMG;IACH,sBAAsB,CAAC,IAAI,OAAO,CAAC;IAEnC;;;OAGG;IACH,aAAa,CAAC,IAAI,MAAM,GAAG,IAAI,CAAC;IAEhC;;;OAGG;IACH,gBAAgB,CAAC,IAAI,EAAE,OAAO,GAAG,OAAO,CAAC;CAC5C,CAAA"}

package/dist/payments/types.js

@@ -0,0 +1,5 @@
+
+!function(){try{var e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:{},n=(new e.Error).stack;n&&(e._sentryDebugIds=e._sentryDebugIds||{},e._sentryDebugIds[n]="0fe2f2a7-5a00-558f-b0c9-19a7bf9dc569")}catch(e){}}();
+export {};
+//# sourceMappingURL=types.js.map
+//# debugId=0fe2f2a7-5a00-558f-b0c9-19a7bf9dc569

package/dist/payments/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sources":["../../src/payments/types.ts"],"sourceRoot":"","names":[],"mappings":"","debugId":"0fe2f2a7-5a00-558f-b0c9-19a7bf9dc569"}

package/dist/payments/x402.d.ts

@@ -0,0 +1,56 @@
+import type { ToolEntry } from '../types.js';
+import type { PaymentHeaders, PaymentMeta, PaymentProvider, RequestHeaders } from './types.js';
+/**
+ * x402 payment requirements returned by the Apify API.
+ * Decoded from the base64 `payment-required` response header.
+ */
+export type X402PaymentRequirements = Record<string, unknown>;
+/**
+ * Fetches x402 payment requirements from the Apify API.
+ * Uses a module-level cache with a 30-minute TTL to prevent blocking SSE setup on every connection.
+ *
+ * Sends a request with `x-apify-payment-protocol: x402` header which triggers
+ * a 402 response containing the payment requirements in the `payment-required` header.
+ *
+ * @returns The decoded payment requirements, or undefined if the fetch fails.
+ */
+export declare function fetchX402PaymentRequirements(): Promise<X402PaymentRequirements | undefined>;
+/**
+ * x402 payment provider.
+ *
+ * Reads x402 payment signatures from MCP `_meta["x402/payment"]` or the incoming
+ * HTTP `PAYMENT-SIGNATURE` header, and forwards them as `PAYMENT-SIGNATURE`
+ * headers to the Apify API.
+ *
+ * Protocol flow:
+ * 1. Client reads `_meta.x402` from tool definitions to know payment is required
+ * 2. Client signs an EIP-3009 TransferWithAuthorization and includes it in
+ *    `_meta["x402/payment"]` (JSON object) and/or the `PAYMENT-SIGNATURE` HTTP header (base64)
+ * 3. This provider extracts the payment (preferring `_meta`, falling back to HTTP header),
+ *    base64-encodes it if needed, and forwards as PAYMENT-SIGNATURE header
+ * 4. The Apify API verifies and settles the payment
+ */
+export declare class X402PaymentProvider implements PaymentProvider {
+    private readonly requirements?;
+    readonly id: "x402";
+    readonly allowsUnauthenticated = true;
+    constructor(requirements?: X402PaymentRequirements | undefined);
+    /**
+     * Creates an X402PaymentProvider, fetching payment requirements from the Apify API.
+     * Falls back to a provider without full requirements if the fetch fails.
+     */
+    static create(): Promise<X402PaymentProvider>;
+    /**
+     * Extracts the first accept entry from the full payment requirements.
+     * This is the flattened payment info that goes into _meta.x402 for tool schemas.
+     */
+    private getFirstAcceptEntry;
+    decorateToolSchema(tool: ToolEntry): ToolEntry;
+    validatePayment(_args: Record<string, unknown>, meta?: PaymentMeta, requestHeaders?: RequestHeaders): string | null;
+    getPaymentHeaders(_args: Record<string, unknown>, meta?: PaymentMeta, requestHeaders?: RequestHeaders): PaymentHeaders;
+    removePaymentFields(args: Record<string, unknown>): Record<string, unknown>;
+    getPaymentRequiredData(): X402PaymentRequirements | undefined;
+    getUsageGuide(): string | null;
+    redactForLogging(args: unknown): unknown;
+}
+//# sourceMappingURL=x402.d.ts.map

package/dist/payments/x402.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402.d.ts","sourceRoot":"","sources":["../../src/payments/x402.ts"],"names":[],"mappings":"AAGA,OAAO,KAAK,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AAE7C,OAAO,KAAK,EAAE,cAAc,EAAE,WAAW,EAAE,eAAe,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAuB/F;;;GAGG;AACH,MAAM,MAAM,uBAAuB,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;AAW9D;;;;;;;;GAQG;AACH,wBAAsB,4BAA4B,IAAI,OAAO,CAAC,uBAAuB,GAAG,SAAS,CAAC,CA+CjG;AA4BD;;;;;;;;;;;;;;GAcG;AACH,qBAAa,mBAAoB,YAAW,eAAe;IAI3C,OAAO,CAAC,QAAQ,CAAC,YAAY,CAAC;IAH1C,QAAQ,CAAC,EAAE,EAAG,MAAM,CAAU;IAC9B,QAAQ,CAAC,qBAAqB,QAAQ;gBAET,YAAY,CAAC,EAAE,uBAAuB,YAAA;IAEnE;;;OAGG;WACU,MAAM,IAAI,OAAO,CAAC,mBAAmB,CAAC;IAKnD;;;OAGG;IACH,OAAO,CAAC,mBAAmB;IAO3B,kBAAkB,CAAC,IAAI,EAAE,SAAS,GAAG,SAAS;IAyB9C,eAAe,CAAC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,IAAI,CAAC,EAAE,WAAW,EAAE,cAAc,CAAC,EAAE,cAAc,GAAG,MAAM,GAAG,IAAI;IAInH,iBAAiB,CAAC,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,EAAE,IAAI,CAAC,EAAE,WAAW,EAAE,cAAc,CAAC,EAAE,cAAc,GAAG,cAAc;IAOtH,mBAAmB,CAAC,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;IAK3E,sBAAsB,IAAI,uBAAuB,GAAG,SAAS;IAI7D,aAAa,IAAI,MAAM,GAAG,IAAI;IAI9B,gBAAgB,CAAC,IAAI,EAAE,OAAO,GAAG,OAAO;CAI3C"}

package/dist/payments/x402.js

@@ -0,0 +1,211 @@
+
+!function(){try{var e="undefined"!=typeof window?window:"undefined"!=typeof global?global:"undefined"!=typeof globalThis?globalThis:"undefined"!=typeof self?self:{},n=(new e.Error).stack;n&&(e._sentryDebugIds=e._sentryDebugIds||{},e._sentryDebugIds[n]="c9aa96c4-1341-5e5b-aead-0f392c93631f")}catch(e){}}();
+import log from '@apify/log';
+import { getApifyAPIBaseUrl } from '../apify_client.js';
+import { cloneToolEntry } from '../utils/tools.js';
+/**
+ * Key used by MCP clients to pass x402 payment data in the JSON-RPC `_meta` field.
+ * The mcp-cli injects the decoded payment payload here (JSON object, not base64).
+ */
+const X402_META_KEY = 'x402/payment';
+/** HTTP header name for forwarding x402 payment signatures to the Apify API. */
+const PAYMENT_SIGNATURE_HEADER = 'PAYMENT-SIGNATURE';
+const PAYMENT_PROTOCOL_HEADER = 'x-apify-payment-protocol';
+const PAYMENT_REQUIRED_HEADER = 'payment-required';
+/** Timeout for fetching x402 payment requirements from the Apify API (ms). */
+const FETCH_TIMEOUT_MS = 8000;
+const X402_TOOL_INSTRUCTIONS = [
+    'This tool requires an x402 payment.',
+    'Include a valid x402 payment signature in the request metadata (_meta["x402/payment"]).',
+    'Your MCP client must support the x402 payment protocol.',
+].join(' ');
+// Module-level cache for X402 payment requirements.
+// We cache the Promise itself (rather than just the JSON result) to prevent the "thundering herd"
+// problem during server startup, where multiple concurrent incoming requests might otherwise
+// trigger duplicate identical fetches to the Apify API before the first one finishes.
+let cachedRequirementsPromise = null;
+let lastFetchTime = 0;
+// Cache TTL: 30 minutes
+const CACHE_TTL_MS = 30 * 60 * 1000;
+/**
+ * Fetches x402 payment requirements from the Apify API.
+ * Uses a module-level cache with a 30-minute TTL to prevent blocking SSE setup on every connection.
+ *
+ * Sends a request with `x-apify-payment-protocol: x402` header which triggers
+ * a 402 response containing the payment requirements in the `payment-required` header.
+ *
+ * @returns The decoded payment requirements, or undefined if the fetch fails.
+ */
+export async function fetchX402PaymentRequirements() {
+    const now = Date.now();
+    // If we have a cached promise, and the TTL hasn't expired since it successfully resolved, return it.
+    // Note: During the very first fetch, lastFetchTime is 0, so this will be false and we will
+    // fall through to create the promise, which is expected. However, if multiple requests hit this
+    // block *while the first fetch is still in-flight*, they will also see lastFetchTime = 0 and
+    // create duplicate promises. This is a known minor flaw in this specific caching pattern, but
+    // acceptable since the overhead of a few duplicate calls during cold-start is negligible.
+    if (cachedRequirementsPromise && (now - lastFetchTime < CACHE_TTL_MS)) {
+        return cachedRequirementsPromise;
+    }
+    cachedRequirementsPromise = (async () => {
+        const apiBaseUrl = getApifyAPIBaseUrl();
+        const url = `${apiBaseUrl}/v2/acts/`;
+        const controller = new AbortController();
+        const timeoutId = setTimeout(() => controller.abort(), FETCH_TIMEOUT_MS);
+        try {
+            const response = await fetch(url, {
+                method: 'GET',
+                headers: { [PAYMENT_PROTOCOL_HEADER]: 'x402' },
+                signal: controller.signal,
+            });
+            const paymentRequiredBase64 = response.headers.get(PAYMENT_REQUIRED_HEADER);
+            if (!paymentRequiredBase64) {
+                log.warning('[x402] No payment-required header in API response', { status: response.status, url });
+                cachedRequirementsPromise = null;
+                return undefined;
+            }
+            const decoded = JSON.parse(Buffer.from(paymentRequiredBase64, 'base64').toString('utf-8'));
+            log.info('[x402] Fetched payment requirements from Apify API', { url });
+            lastFetchTime = Date.now();
+            return decoded;
+        }
+        catch (error) {
+            log.warning('[x402] Failed to fetch payment requirements — tools will advertise paymentRequired only', { url, error });
+            cachedRequirementsPromise = null;
+            return undefined;
+        }
+        finally {
+            clearTimeout(timeoutId);
+        }
+    })();
+    return cachedRequirementsPromise;
+}
+/**
+ * Extracts the PAYMENT-SIGNATURE value from incoming HTTP request headers.
+ * Header lookup is case-insensitive. Returns the first string value, or undefined.
+ */
+function getPaymentSignatureFromHeader(requestHeaders) {
+    var _a;
+    if (!requestHeaders)
+        return undefined;
+    // HTTP headers are case-insensitive; the SDK may normalize to lowercase
+    const value = (_a = requestHeaders[PAYMENT_SIGNATURE_HEADER]) !== null && _a !== void 0 ? _a : requestHeaders[PAYMENT_SIGNATURE_HEADER.toLowerCase()];
+    if (typeof value === 'string' && value.length > 0)
+        return value;
+    if (Array.isArray(value) && typeof value[0] === 'string' && value[0].length > 0)
+        return value[0];
+    return undefined;
+}
+/**
+ * Gets the base64-encoded payment signature from either _meta (JSON object) or HTTP headers.
+ */
+function getEncodedPaymentSignature(meta, requestHeaders) {
+    const metaPayment = meta === null || meta === void 0 ? void 0 : meta[X402_META_KEY];
+    if (metaPayment) {
+        return Buffer.from(JSON.stringify(metaPayment)).toString('base64');
+    }
+    return getPaymentSignatureFromHeader(requestHeaders);
+}
+/**
+ * x402 payment provider.
+ *
+ * Reads x402 payment signatures from MCP `_meta["x402/payment"]` or the incoming
+ * HTTP `PAYMENT-SIGNATURE` header, and forwards them as `PAYMENT-SIGNATURE`
+ * headers to the Apify API.
+ *
+ * Protocol flow:
+ * 1. Client reads `_meta.x402` from tool definitions to know payment is required
+ * 2. Client signs an EIP-3009 TransferWithAuthorization and includes it in
+ *    `_meta["x402/payment"]` (JSON object) and/or the `PAYMENT-SIGNATURE` HTTP header (base64)
+ * 3. This provider extracts the payment (preferring `_meta`, falling back to HTTP header),
+ *    base64-encodes it if needed, and forwards as PAYMENT-SIGNATURE header
+ * 4. The Apify API verifies and settles the payment
+ */
+export class X402PaymentProvider {
+    constructor(requirements) {
+        Object.defineProperty(this, "requirements", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: requirements
+        });
+        Object.defineProperty(this, "id", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: 'x402'
+        });
+        Object.defineProperty(this, "allowsUnauthenticated", {
+            enumerable: true,
+            configurable: true,
+            writable: true,
+            value: true
+        });
+    }
+    /**
+     * Creates an X402PaymentProvider, fetching payment requirements from the Apify API.
+     * Falls back to a provider without full requirements if the fetch fails.
+     */
+    static async create() {
+        const requirements = await fetchX402PaymentRequirements();
+        return new X402PaymentProvider(requirements);
+    }
+    /**
+     * Extracts the first accept entry from the full payment requirements.
+     * This is the flattened payment info that goes into _meta.x402 for tool schemas.
+     */
+    getFirstAcceptEntry() {
+        if (!this.requirements)
+            return undefined;
+        const accepts = this.requirements.accepts;
+        if (!Array.isArray(accepts) || accepts.length === 0)
+            return undefined;
+        return accepts[0];
+    }
+    decorateToolSchema(tool) {
+        if (!tool.paymentRequired)
+            return tool;
+        const cloned = cloneToolEntry(tool);
+        // Add _meta.x402 to signal payment requirement to clients (idempotent)
+        // Only include the first accept entry (scheme, network, amount, asset, payTo, etc.)
+        // matching the demo server format — NOT the full API response
+        if (!cloned._meta) {
+            cloned._meta = {};
+        }
+        const metaRecord = cloned._meta;
+        if (!metaRecord.x402) {
+            const acceptEntry = this.getFirstAcceptEntry();
+            metaRecord.x402 = { paymentRequired: true, ...acceptEntry };
+        }
+        // Append x402 instructions to description (idempotent)
+        if (cloned.description && !cloned.description.includes(X402_TOOL_INSTRUCTIONS)) {
+            cloned.description += `\n\n${X402_TOOL_INSTRUCTIONS}`;
+        }
+        return Object.freeze(cloned);
+    }
+    validatePayment(_args, meta, requestHeaders) {
+        return getEncodedPaymentSignature(meta, requestHeaders) ? null : X402_TOOL_INSTRUCTIONS;
+    }
+    getPaymentHeaders(_args, meta, requestHeaders) {
+        const paymentSignature = getEncodedPaymentSignature(meta, requestHeaders);
+        return paymentSignature
+            ? { [PAYMENT_SIGNATURE_HEADER]: paymentSignature, [PAYMENT_PROTOCOL_HEADER]: 'x402' }
+            : {};
+    }
+    removePaymentFields(args) {
+        // x402 doesn't inject anything into tool arguments — payment is in _meta
+        return args;
+    }
+    getPaymentRequiredData() {
+        return this.requirements;
+    }
+    getUsageGuide() {
+        return null;
+    }
+    redactForLogging(args) {
+        // x402 doesn't put sensitive data in tool arguments
+        return args;
+    }
+}
+//# sourceMappingURL=x402.js.map
+//# debugId=c9aa96c4-1341-5e5b-aead-0f392c93631f

package/dist/payments/x402.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"x402.js","sources":["../../src/payments/x402.ts"],"sourceRoot":"","names":[],"mappings":";;AAAA,OAAO,GAAG,MAAM,YAAY,CAAC;AAE7B,OAAO,EAAE,kBAAkB,EAAE,MAAM,oBAAoB,CAAC;AAExD,OAAO,EAAE,cAAc,EAAE,MAAM,mBAAmB,CAAC;AAGnD;;;GAGG;AACH,MAAM,aAAa,GAAG,cAAc,CAAC;AAErC,gFAAgF;AAChF,MAAM,wBAAwB,GAAG,mBAAmB,CAAC;AACrD,MAAM,uBAAuB,GAAG,0BAA0B,CAAC;AAE3D,MAAM,uBAAuB,GAAG,kBAAkB,CAAC;AAEnD,8EAA8E;AAC9E,MAAM,gBAAgB,GAAG,IAAK,CAAC;AAE/B,MAAM,sBAAsB,GAAG;IAC3B,qCAAqC;IACrC,yFAAyF;IACzF,yDAAyD;CAC5D,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;AAQZ,oDAAoD;AACpD,kGAAkG;AAClG,6FAA6F;AAC7F,sFAAsF;AACtF,IAAI,yBAAyB,GAAwD,IAAI,CAAC;AAC1F,IAAI,aAAa,GAAG,CAAC,CAAC;AACtB,wBAAwB;AACxB,MAAM,YAAY,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC;AAEpC;;;;;;;;GAQG;AACH,MAAM,CAAC,KAAK,UAAU,4BAA4B;IAC9C,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;IACvB,qGAAqG;IACrG,2FAA2F;IAC3F,gGAAgG;IAChG,6FAA6F;IAC7F,8FAA8F;IAC9F,0FAA0F;IAC1F,IAAI,yBAAyB,IAAI,CAAC,GAAG,GAAG,aAAa,GAAG,YAAY,CAAC,EAAE,CAAC;QACpE,OAAO,yBAAyB,CAAC;IACrC,CAAC;IAED,yBAAyB,GAAG,CAAC,KAAK,IAAI,EAAE;QACpC,MAAM,UAAU,GAAG,kBAAkB,EAAE,CAAC;QACxC,MAAM,GAAG,GAAG,GAAG,UAAU,WAAW,CAAC;QAErC,MAAM,UAAU,GAAG,IAAI,eAAe,EAAE,CAAC;QACzC,MAAM,SAAS,GAAG,UAAU,CAAC,GAAG,EAAE,CAAC,UAAU,CAAC,KAAK,EAAE,EAAE,gBAAgB,CAAC,CAAC;QAEzE,IAAI,CAAC;YACD,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;gBAC9B,MAAM,EAAE,KAAK;gBACb,OAAO,EAAE,EAAE,CAAC,uBAAuB,CAAC,EAAE,MAAM,EAAE;gBAC9C,MAAM,EAAE,UAAU,CAAC,MAAM;aAC5B,CAAC,CAAC;YAEH,MAAM,qBAAqB,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;YAC5E,IAAI,CAAC,qBAAqB,EAAE,CAAC;gBACzB,GAAG,CAAC,OAAO,CAAC,mDAAmD,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC;gBACnG,yBAAyB,GAAG,IAAI,CAAC;gBACjC,OAAO,SAAS,CAAC;YACrB,CAAC;YAED,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,qBAAqB,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAA4B,CAAC;YACtH,GAAG,CAAC,IAAI,CAAC,oDAAoD,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;YACxE,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAC3B,OAAO,OAAO,CAAC;QACnB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACb,GAAG,CAAC,OAAO,CAAC,yFAAyF,EAAE,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC,CAAC;YACvH,yBAAyB,GAAG,IAAI,CAAC;YACjC,OAAO,SAAS,CAAC;QACrB,CAAC;gBAAS,CAAC;YACP,YAAY,CAAC,SAAS,CAAC,CAAC;QAC5B,CAAC;IACL,CAAC,CAAC,EAAE,CAAC;IAEL,OAAO,yBAAyB,CAAC;AACrC,CAAC;AAED;;;GAGG;AACH,SAAS,6BAA6B,CAAC,cAA+B;;IAClE,IAAI,CAAC,cAAc;QAAE,OAAO,SAAS,CAAC;IAEtC,wEAAwE;IACxE,MAAM,KAAK,GAAG,MAAA,cAAc,CAAC,wBAAwB,CAAC,mCAAI,cAAc,CAAC,wBAAwB,CAAC,WAAW,EAAE,CAAC,CAAC;IACjH,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;QAAE,OAAO,KAAK,CAAC;IAChE,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,OAAO,KAAK,CAAC,CAAC,CAAC,KAAK,QAAQ,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM,GAAG,CAAC;QAAE,OAAO,KAAK,CAAC,CAAC,CAAC,CAAC;IACjG,OAAO,SAAS,CAAC;AACrB,CAAC;AAED;;GAEG;AACH,SAAS,0BAA0B,CAAC,IAAkB,EAAE,cAA+B;IACnF,MAAM,WAAW,GAAG,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAG,aAAa,CAAC,CAAC;IAC1C,IAAI,WAAW,EAAE,CAAC;QACd,OAAO,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACvE,CAAC;IAED,OAAO,6BAA6B,CAAC,cAAc,CAAC,CAAC;AACzD,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,OAAO,mBAAmB;IAI5B,YAA6B,YAAsC;QAAvD;;;;mBAAiB,YAAY;WAA0B;QAH1D;;;;mBAAK,MAAe;WAAC;QACrB;;;;mBAAwB,IAAI;WAAC;IAEgC,CAAC;IAEvE;;;OAGG;IACH,MAAM,CAAC,KAAK,CAAC,MAAM;QACf,MAAM,YAAY,GAAG,MAAM,4BAA4B,EAAE,CAAC;QAC1D,OAAO,IAAI,mBAAmB,CAAC,YAAY,CAAC,CAAC;IACjD,CAAC;IAED;;;OAGG;IACK,mBAAmB;QACvB,IAAI,CAAC,IAAI,CAAC,YAAY;YAAE,OAAO,SAAS,CAAC;QACzC,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,CAAC,OAAgC,CAAC;QACnE,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,SAAS,CAAC;QACtE,OAAO,OAAO,CAAC,CAAC,CAA4B,CAAC;IACjD,CAAC;IAED,kBAAkB,CAAC,IAAe;QAC9B,IAAI,CAAC,IAAI,CAAC,eAAe;YAAE,OAAO,IAAI,CAAC;QAEvC,MAAM,MAAM,GAAG,cAAc,CAAC,IAAI,CAAC,CAAC;QAEpC,uEAAuE;QACvE,oFAAoF;QACpF,8DAA8D;QAC9D,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;YAChB,MAAM,CAAC,KAAK,GAAG,EAAE,CAAC;QACtB,CAAC;QACD,MAAM,UAAU,GAAG,MAAM,CAAC,KAAgC,CAAC;QAC3D,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC;YACnB,MAAM,WAAW,GAAG,IAAI,CAAC,mBAAmB,EAAE,CAAC;YAC/C,UAAU,CAAC,IAAI,GAAG,EAAE,eAAe,EAAE,IAAI,EAAE,GAAG,WAAW,EAAE,CAAC;QAChE,CAAC;QAED,uDAAuD;QACvD,IAAI,MAAM,CAAC,WAAW,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC,QAAQ,CAAC,sBAAsB,CAAC,EAAE,CAAC;YAC7E,MAAM,CAAC,WAAW,IAAI,OAAO,sBAAsB,EAAE,CAAC;QAC1D,CAAC;QAED,OAAO,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;IACjC,CAAC;IAED,eAAe,CAAC,KAA8B,EAAE,IAAkB,EAAE,cAA+B;QAC/F,OAAO,0BAA0B,CAAC,IAAI,EAAE,cAAc,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,sBAAsB,CAAC;IAC5F,CAAC;IAED,iBAAiB,CAAC,KAA8B,EAAE,IAAkB,EAAE,cAA+B;QACjG,MAAM,gBAAgB,GAAG,0BAA0B,CAAC,IAAI,EAAE,cAAc,CAAC,CAAC;QAC1E,OAAO,gBAAgB;YACnB,CAAC,CAAC,EAAE,CAAC,wBAAwB,CAAC,EAAE,gBAAgB,EAAE,CAAC,uBAAuB,CAAC,EAAE,MAAM,EAAE;YACrF,CAAC,CAAC,EAAE,CAAC;IACb,CAAC;IAED,mBAAmB,CAAC,IAA6B;QAC7C,yEAAyE;QACzE,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,sBAAsB;QAClB,OAAO,IAAI,CAAC,YAAY,CAAC;IAC7B,CAAC;IAED,aAAa;QACT,OAAO,IAAI,CAAC;IAChB,CAAC;IAED,gBAAgB,CAAC,IAAa;QAC1B,oDAAoD;QACpD,OAAO,IAAI,CAAC;IAChB,CAAC;CACJ","debugId":"c9aa96c4-1341-5e5b-aead-0f392c93631f"}