@black-duty/sing-box-schema 1.12.2

package/dist/index.cjs

@@ -0,0 +1,4117 @@
+//#region rolldown:runtime
+var __create = Object.create;
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __getProtoOf = Object.getPrototypeOf;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __copyProps = (to, from, except, desc) => {
+	if (from && typeof from === "object" || typeof from === "function") for (var keys = __getOwnPropNames(from), i = 0, n = keys.length, key; i < n; i++) {
+		key = keys[i];
+		if (!__hasOwnProp.call(to, key) && key !== except) __defProp(to, key, {
+			get: ((k) => from[k]).bind(null, key),
+			enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable
+		});
+	}
+	return to;
+};
+var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__getProtoOf(mod)) : {}, __copyProps(isNodeMode || !mod || !mod.__esModule ? __defProp(target, "default", {
+	value: mod,
+	enumerable: true
+}) : target, mod));
+
+//#endregion
+const zod = __toESM(require("zod"));
+
+//#region src/utils.ts
+/**
+* Create a new Zod schema that allows either a single value of type `T` or an
+* array of values of type `T`. This is useful for defining configuration
+* options that can be either a single value or a list of values.
+*
+* @example
+* const port = z.number().int().refine((v) => v > 0 && v < 65536);
+* const ports = listable(port);
+* ports.parse(42); // => 42
+* ports.parse([42, 8080]); // => [42, 8080]
+*
+* @param {z.ZodTypeAny} schema
+* @returns {z.ZodTypeAny}
+*/
+const listable = (schema) => zod.default.union([schema, zod.default.array(schema)]);
+/**
+* Create a new Zod schema that allows either a single string or an array of
+* strings. This is useful for defining configuration options that can be either
+* a single string or a list of strings.
+*/
+const listableString = listable(zod.default.string());
+/**
+* Create a new Zod schema that allows either a single number or an array of
+* integers. This is useful for defining configuration options that can be either
+* a single number or a list of numbers.
+*
+*/
+const listableInts = listable(zod.default.number().int());
+
+//#endregion
+//#region src/schema/certificate.ts
+/**
+* Certificate settings for sing-box.
+*/
+const CertificateOptions = zod.z.object({
+	store: zod.z.enum([
+		"system",
+		"mozilla",
+		"none"
+	]).optional().meta({ description: "The default X509 trusted CA certificate list." }),
+	certificate: listableString.optional().meta({ description: "The certificate line array to trust, in PEM format." }),
+	certificate_path: listableString.optional().meta({ description: "The paths to certificates to trust, in PEM format." }),
+	certificate_directory_path: listableString.optional().meta({ description: "The directory path to search for certificates to trust,in PEM format." })
+}).meta({
+	id: "CertificateOptions",
+	title: "Certificate",
+	description: "Certificate settings for sing-box."
+});
+
+//#endregion
+//#region src/schema/shared.ts
+const DomainStrategy = zod.z.enum([
+	"",
+	"prefer_ipv4",
+	"prefer_ipv6",
+	"ipv4_only",
+	"ipv6_only"
+]).meta({
+	description: "Default domain strategy for resolving the domain names.",
+	description_zh: "默认解析域名策略。"
+});
+const FwMark = zod.z.union([zod.z.number().int(), zod.z.string()]).meta({
+	description: "Set netfilter routing mark.",
+	description_zh: "设置 netfilter 路由标记。"
+});
+const Network = listable(zod.z.enum([
+	"",
+	"tcp",
+	"udp"
+])).meta({
+	description: "Network protocol, `tcp` or `udp`.",
+	description_zh: "网络协议，`tcp` 或 `udp`。"
+});
+const Tag = zod.z.string().optional().meta({
+	description: "Tag of the inbound/outbound/service/endpoint.",
+	description_zh: "入站/出站/服务/端点的标签。"
+});
+const IpVersion = zod.z.union([zod.z.literal(4), zod.z.literal(6)]).meta({
+	description: "IP version, 4 or 6.",
+	description_zh: "IP 版本，4 或 6。"
+});
+const HttpHeader = zod.z.record(zod.z.string(), zod.z.string()).meta({
+	description: "HTTP headers.",
+	description_zh: "HTTP 标头。"
+});
+const InboundOptions = zod.z.object({
+	sniff: zod.z.boolean().optional().meta({
+		description: "Enable sniffing.",
+		description_zh: "启用协议探测。",
+		deprecated: true
+	}),
+	sniff_override_destination: zod.z.boolean().optional().meta({
+		description: "Override the connection destination address with the sniffed domain.",
+		description_zh: "用探测出的域名覆盖连接目标地址。",
+		deprecated: true
+	}),
+	sniff_timeout: zod.z.string().optional().meta({
+		description: "Timeout for sniffing.",
+		description_zh: "探测超时时间。",
+		deprecated: true
+	}),
+	domain_strategy: DomainStrategy.optional().meta({
+		description: "If set, the requested domain name will be resolved to IP before routing.",
+		description_zh: "如果设置，请求的域名将在路由之前解析为 IP。",
+		deprecated: true
+	}),
+	udp_disable_domain_unmapping: zod.z.boolean().optional().meta({
+		description: "If enabled, for UDP proxy requests addressed to a domain, the original packet address will be sent in the response instead of the mapped domain.",
+		description_zh: "如果启用，对于地址为域的 UDP 代理请求，将在响应中发送原始包地址而不是映射的域。",
+		deprecated: true
+	}),
+	detour: zod.z.string().optional().meta({
+		description: "If set, connections will be forwarded to the specified inbound.",
+		description_zh: "如果设置，连接将被转发到指定的入站。"
+	})
+});
+const ListenOptions = zod.z.object({
+	listen: zod.z.string().optional().meta({
+		description: "Listen address.",
+		description_zh: "监听地址。"
+	}),
+	listen_port: zod.z.number().int().optional().meta({
+		description: "Listen port.",
+		description_zh: "监听端口。"
+	}),
+	bind_interface: zod.z.string().optional().meta({
+		description: "The network interface to bind to.",
+		description_zh: "要绑定到的网络接口。"
+	}),
+	routing_mark: FwMark.optional().meta({
+		description: "Set netfilter routing mark.",
+		description_zh: "设置 netfilter 路由标记。"
+	}),
+	reuse_addr: zod.z.boolean().optional().meta({
+		description: "Reuse listener address.",
+		description_zh: "重用监听地址。"
+	}),
+	netns: zod.z.string().optional().meta({
+		description: "Set network namespace, name or path.",
+		description_zh: "设置网络命名空间，名称或路径。"
+	}),
+	tcp_keep_alive: zod.z.string().optional().meta({
+		description: "TCP keep alive interval.",
+		description_zh: "TCP keep alive 间隔。"
+	}),
+	tcp_keep_alive_interval: zod.z.string().optional().meta({
+		description: "TCP keep alive interval.",
+		description_zh: "TCP keep alive 间隔。"
+	}),
+	tcp_fast_open: zod.z.boolean().optional().meta({
+		description: "Enable TCP Fast Open.",
+		description_zh: "启用 TCP Fast Open。"
+	}),
+	tcp_multi_path: zod.z.boolean().optional().meta({
+		description: "Enable TCP Multi Path.",
+		description_zh: "启用 TCP Multi Path。"
+	}),
+	udp_fragment: zod.z.boolean().optional().meta({
+		description: "Enable UDP fragmentation.",
+		description_zh: "启用 UDP 分段。"
+	}),
+	udp_timeout: zod.z.union([zod.z.string(), zod.z.number()]).optional().meta({
+		description: "UDP NAT expiration time.",
+		description_zh: "UDP NAT 过期时间。"
+	}),
+	...InboundOptions.shape
+}).meta({
+	id: "ListenOptions",
+	title: "Listen Options",
+	title_zh: "监听选项"
+});
+const NetworkType = zod.z.enum([
+	"wifi",
+	"cellular",
+	"ethernet",
+	"other"
+]).meta({
+	description: "Network type.",
+	description_zh: "网络类型。"
+});
+const NetworkStrategy = zod.z.object({
+	network_type: listable(NetworkType).optional().meta({
+		description: "Network types to use.",
+		description_zh: "要使用的网络类型。"
+	}),
+	fallback_network_type: listable(NetworkType).optional().meta({
+		description: "Fallback network types.",
+		description_zh: "备用网络类型。"
+	}),
+	fallback_delay: zod.z.string().optional().meta({
+		description: "The length of time to wait before spawning a RFC 6555 Fast Fallback connection.",
+		description_zh: "在生成 RFC 6555 快速回退连接之前等待的时间长度。"
+	})
+}).meta({
+	id: "NetworkStrategy",
+	title: "Network Strategy",
+	title_zh: "网络策略"
+});
+const DomainResolverOptions = zod.z.object({
+	server: zod.z.string().meta({
+		description: "Tag of a another server to resolve the domain name in the address.",
+		description_zh: "用于解析本 DNS 服务器的域名的另一个 DNS 服务器的标签。"
+	}),
+	strategy: DomainStrategy.optional().meta({
+		description: "The domain strategy for resolving the domain name in the address.",
+		description_zh: "用于解析本 DNS 服务器的域名的策略。"
+	}),
+	disable_cache: zod.z.boolean().optional().meta({
+		description: "Disable cache and save cache in this query.",
+		description_zh: "在此查询中禁用缓存。"
+	}),
+	rewrite_ttl: zod.z.number().int().optional().meta({
+		description: "Rewrite TTL in DNS responses.",
+		description_zh: "重写 DNS 回应中的 TTL。"
+	}),
+	client_subnet: zod.z.string().optional().meta({
+		description: "Append a `edns0-subnet` OPT extra record with the specified IP prefix to every query by default.",
+		description_zh: "默认情况下，将带有指定 IP 前缀的 `edns0-subnet` OPT 附加记录附加到每个查询。"
+	})
+}).meta({
+	id: "DomainResolverOptions",
+	title: "Domain Resolver Options",
+	title_zh: "域名解析器选项"
+});
+const DialerOptions = zod.z.object({
+	detour: zod.z.string().optional().meta({
+		description: "The tag of the upstream outbound.",
+		description_zh: "上游出站的标签。"
+	}),
+	bind_interface: zod.z.string().optional().meta({
+		description: "The network interface to bind to.",
+		description_zh: "要绑定到的网络接口。"
+	}),
+	inet4_bind_address: zod.z.string().optional().meta({
+		description: "The IPv4 address to bind to.",
+		description_zh: "要绑定的 IPv4 地址。"
+	}),
+	inet6_bind_address: zod.z.string().optional().meta({
+		description: "The IPv6 address to bind to.",
+		description_zh: "要绑定的 IPv6 地址。"
+	}),
+	routing_mark: FwMark.optional().meta({
+		description: "Set netfilter routing mark.",
+		description_zh: "设置 netfilter 路由标记。"
+	}),
+	reuse_addr: zod.z.boolean().optional().meta({
+		description: "Reuse listener address.",
+		description_zh: "重用监听地址。"
+	}),
+	netns: zod.z.string().optional().meta({
+		description: "Set network namespace, name or path.",
+		description_zh: "设置网络命名空间，名称或路径。"
+	}),
+	connect_timeout: zod.z.string().optional().meta({
+		description: "Connect timeout, in golang's Duration format.",
+		description_zh: "连接超时，采用 golang 的 Duration 格式。"
+	}),
+	tcp_fast_open: zod.z.boolean().optional().meta({
+		description: "Enable TCP Fast Open.",
+		description_zh: "启用 TCP Fast Open。"
+	}),
+	tcp_multi_path: zod.z.boolean().optional().meta({
+		description: "Enable TCP Multi Path.",
+		description_zh: "启用 TCP Multi Path。"
+	}),
+	udp_fragment: zod.z.boolean().optional().meta({
+		description: "Enable UDP fragmentation.",
+		description_zh: "启用 UDP 分段。"
+	}),
+	domain_resolver: zod.z.union([zod.z.string(), DomainResolverOptions]).optional().meta({
+		description: "Set domain resolver to use for resolving domain names.",
+		description_zh: "用于设置解析域名的域名解析器。"
+	}),
+	network_strategy: zod.z.union([zod.z.string(), NetworkStrategy]).optional().meta({
+		description: "Strategy for selecting network interfaces.",
+		description_zh: "用于选择网络接口的策略。"
+	}),
+	network_type: listable(NetworkType).optional().meta({
+		description: "Network types to use.",
+		description_zh: "要使用的网络类型。"
+	}),
+	fallback_network_type: listable(NetworkType).optional().meta({
+		description: "Fallback network types.",
+		description_zh: "备用网络类型。"
+	}),
+	fallback_delay: zod.z.string().optional().meta({
+		description: "The length of time to wait before spawning a RFC 6555 Fast Fallback connection.",
+		description_zh: "在生成 RFC 6555 快速回退连接之前等待的时间长度。"
+	}),
+	domain_strategy: DomainStrategy.optional().meta({
+		description: "Default domain strategy for resolving the domain names.",
+		description_zh: "默认解析域名策略。",
+		deprecated: true
+	})
+}).meta({
+	id: "DialerOptions",
+	title: "Dialer Options",
+	title_zh: "拨号选项"
+});
+const ServerOptions = zod.z.object({
+	server: zod.z.string().meta({
+		description: "The server address.",
+		description_zh: "服务器地址。"
+	}),
+	server_port: zod.z.number().int().optional().meta({
+		description: "The server port.",
+		description_zh: "服务器端口。"
+	})
+}).meta({
+	id: "ServerOptions",
+	title: "Server Options",
+	title_zh: "服务器选项"
+});
+const TLSVersion = zod.z.enum([
+	"1.0",
+	"1.1",
+	"1.2",
+	"1.3"
+]).meta({
+	description: "TLS version.",
+	description_zh: "TLS 版本。"
+});
+const TLSCipherSuite = zod.z.enum([
+	"TLS_RSA_WITH_AES_128_CBC_SHA",
+	"TLS_RSA_WITH_AES_256_CBC_SHA",
+	"TLS_RSA_WITH_AES_128_GCM_SHA256",
+	"TLS_RSA_WITH_AES_256_GCM_SHA384",
+	"TLS_AES_128_GCM_SHA256",
+	"TLS_AES_256_GCM_SHA384",
+	"TLS_CHACHA20_POLY1305_SHA256",
+	"TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA",
+	"TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA",
+	"TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA",
+	"TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA",
+	"TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256",
+	"TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384",
+	"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
+	"TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384",
+	"TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256",
+	"TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256"
+]).meta({
+	description: "TLS cipher suite.",
+	description_zh: "TLS 密码套件。"
+});
+const DNS01Challenge = zod.z.object({
+	provider: zod.z.string().meta({
+		description: "ACME CA provider.",
+		description_zh: "ACME CA 供应商。"
+	}),
+	access_key_id: zod.z.string().optional().meta({
+		description: "The access key ID.",
+		description_zh: "访问密钥 ID。"
+	}),
+	access_key_secret: zod.z.string().optional().meta({
+		description: "The access key secret.",
+		description_zh: "访问密钥 secret。"
+	}),
+	region_id: zod.z.string().optional().meta({
+		description: "The region ID.",
+		description_zh: "区域 ID。"
+	}),
+	api_token: zod.z.string().optional().meta({
+		description: "The API token.",
+		description_zh: "API 令牌。"
+	})
+}).meta({
+	id: "DNS01Challenge",
+	title: "DNS01 Challenge",
+	title_zh: "DNS01 质询"
+});
+const InboundACMEOptions = zod.z.object({
+	domain: listableString.optional().meta({
+		description: "List of domain.",
+		description_zh: "域名列表。"
+	}),
+	data_directory: zod.z.string().optional().meta({
+		description: "The directory to store ACME data.",
+		description_zh: "存储 ACME 数据的目录。"
+	}),
+	default_server_name: zod.z.string().optional().meta({
+		description: "Server name to use when choosing a certificate if the ClientHello's ServerName field is empty.",
+		description_zh: "如果 ClientHello 的 ServerName 字段为空，则选择证书时要使用的服务器名称。"
+	}),
+	email: zod.z.string().optional().meta({
+		description: "The email address to use when creating or selecting an existing ACME server account.",
+		description_zh: "创建或选择现有 ACME 服务器帐户时使用的电子邮件地址。"
+	}),
+	provider: zod.z.string().optional().meta({
+		description: "The ACME CA provider to use.",
+		description_zh: "要使用的 ACME CA 供应商。"
+	}),
+	disable_http_challenge: zod.z.boolean().optional().meta({
+		description: "Disable all HTTP challenges.",
+		description_zh: "禁用所有 HTTP 质询。"
+	}),
+	disable_tls_alpn_challenge: zod.z.boolean().optional().meta({
+		description: "Disable all TLS-ALPN challenges.",
+		description_zh: "禁用所有 TLS-ALPN 质询。"
+	}),
+	alternative_http_port: zod.z.number().int().optional().meta({
+		description: "The alternate port to use for the ACME HTTP challenge.",
+		description_zh: "用于 ACME HTTP 质询的备用端口。"
+	}),
+	alternative_tls_port: zod.z.number().int().optional().meta({
+		description: "The alternate port to use for the ACME TLS-ALPN challenge.",
+		description_zh: "用于 ACME TLS-ALPN 质询的备用端口。"
+	}),
+	external_account: zod.z.object({
+		key_id: zod.z.string().meta({
+			description: "The key identifier.",
+			description_zh: "密钥标识符。"
+		}),
+		mac_key: zod.z.string().meta({
+			description: "The MAC key.",
+			description_zh: "MAC 密钥。"
+		})
+	}).optional().meta({
+		description: "EAB (External Account Binding) contains information necessary to bind or map an ACME account to some other account known by the CA.",
+		description_zh: "EAB（外部帐户绑定）包含将 ACME 帐户绑定或映射到其他已知帐户所需的信息。"
+	}),
+	dns01_challenge: DNS01Challenge.optional().meta({
+		description: "ACME DNS01 challenge field.",
+		description_zh: "ACME DNS01 验证字段。"
+	})
+}).meta({
+	id: "InboundACMEOptions",
+	title: "Inbound ACME Options",
+	title_zh: "入站 ACME 选项"
+});
+const InboundECHOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable ECH.",
+		description_zh: "启用 ECH。"
+	}),
+	key: listableString.optional().meta({
+		description: "ECH key line array, in PEM format.",
+		description_zh: "ECH PEM 密钥行数组。"
+	}),
+	key_path: zod.z.string().optional().meta({
+		description: "The path to ECH key, in PEM format.",
+		description_zh: "ECH PEM 密钥路径。"
+	})
+}).meta({
+	id: "InboundECHOptions",
+	title: "Inbound ECH Options",
+	title_zh: "入站 ECH 选项"
+});
+const InboundRealityOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable Reality.",
+		description_zh: "启用 Reality。"
+	}),
+	handshake: zod.z.object({
+		...ServerOptions.shape,
+		...DialerOptions.shape
+	}).optional().meta({
+		description: "Handshake server address and Dial Fields.",
+		description_zh: "握手服务器地址和拨号参数。"
+	}),
+	private_key: zod.z.string().optional().meta({
+		description: "Private key, generated by `sing-box generate reality-keypair`.",
+		description_zh: "私钥，由 `sing-box generate reality-keypair` 生成。"
+	}),
+	short_id: listableString.optional().meta({
+		description: "A hexadecimal string with zero to eight digits.",
+		description_zh: "一个零到八位的十六进制字符串。"
+	}),
+	max_time_difference: zod.z.string().optional().meta({
+		description: "The maximum time difference between the server and the client.",
+		description_zh: "服务器与和客户端之间允许的最大时间差。"
+	})
+}).meta({
+	id: "InboundRealityOptions",
+	title: "Inbound Reality Options",
+	title_zh: "入站 Reality 选项"
+});
+const InboundTLSOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable TLS.",
+		description_zh: "启用 TLS。"
+	}),
+	server_name: zod.z.string().optional().meta({
+		description: "Used to verify the hostname on the returned certificates unless insecure is given.",
+		description_zh: "用于验证返回证书上的主机名，除非设置不安全。"
+	}),
+	alpn: listableString.optional().meta({
+		description: "List of supported application level protocols, in order of preference.",
+		description_zh: "支持的应用层协议协商列表，按优先顺序排列。"
+	}),
+	min_version: TLSVersion.optional().meta({
+		description: "The minimum TLS version that is acceptable.",
+		description_zh: "可接受的最低 TLS 版本。"
+	}),
+	max_version: TLSVersion.optional().meta({
+		description: "The maximum TLS version that is acceptable.",
+		description_zh: "可接受的最大 TLS 版本。"
+	}),
+	cipher_suites: listable(TLSCipherSuite).optional().meta({
+		description: "A list of enabled TLS 1.0–1.2 cipher suites.",
+		description_zh: "启用的 TLS 1.0-1.2 密码套件的列表。"
+	}),
+	certificate: listableString.optional().meta({
+		description: "The server certificate line array, in PEM format.",
+		description_zh: "服务器 PEM 证书行数组。"
+	}),
+	certificate_path: zod.z.string().optional().meta({
+		description: "The path to the server certificate, in PEM format.",
+		description_zh: "服务器 PEM 证书路径。"
+	}),
+	key: listableString.optional().meta({
+		description: "The server private key line array, in PEM format.",
+		description_zh: "服务器 PEM 私钥行数组。"
+	}),
+	key_path: zod.z.string().optional().meta({
+		description: "The path to the server private key, in PEM format.",
+		description_zh: "服务器 PEM 私钥路径。"
+	}),
+	acme: InboundACMEOptions.optional().meta({
+		description: "ACME (Automatic Certificate Management Environment) options.",
+		description_zh: "ACME（自动证书管理环境）选项。"
+	}),
+	ech: InboundECHOptions.optional().meta({
+		description: "ECH (Encrypted Client Hello) options.",
+		description_zh: "ECH（加密客户端 Hello）选项。"
+	}),
+	reality: InboundRealityOptions.optional().meta({
+		description: "Reality options.",
+		description_zh: "Reality 选项。"
+	})
+}).meta({
+	id: "InboundTLSOptions",
+	title: "Inbound TLS Options",
+	title_zh: "入站 TLS 选项"
+});
+const OutboundECHOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable ECH.",
+		description_zh: "启用 ECH。"
+	}),
+	config: listableString.optional().meta({
+		description: "ECH configuration line array, in PEM format.",
+		description_zh: "ECH PEM 配置行数组。"
+	}),
+	config_path: zod.z.string().optional().meta({
+		description: "The path to ECH configuration, in PEM format.",
+		description_zh: "ECH PEM 配置路径。"
+	})
+}).meta({
+	id: "OutboundECHOptions",
+	title: "Outbound ECH Options",
+	title_zh: "出站 ECH 选项"
+});
+const OutboundUTLSOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable uTLS.",
+		description_zh: "启用 uTLS。"
+	}),
+	fingerprint: zod.z.string().optional().meta({
+		description: "uTLS fingerprint.",
+		description_zh: "uTLS 指纹。"
+	})
+}).meta({
+	id: "OutboundUTLSOptions",
+	title: "Outbound uTLS Options",
+	title_zh: "出站 uTLS 选项"
+});
+const OutboundRealityOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable Reality.",
+		description_zh: "启用 Reality。"
+	}),
+	public_key: zod.z.string().optional().meta({
+		description: "Public key, generated by `sing-box generate reality-keypair`.",
+		description_zh: "公钥，由 `sing-box generate reality-keypair` 生成。"
+	}),
+	short_id: zod.z.string().optional().meta({
+		description: "A hexadecimal string with zero to eight digits.",
+		description_zh: "一个零到八位的十六进制字符串。"
+	})
+}).meta({
+	id: "OutboundRealityOptions",
+	title: "Outbound Reality Options",
+	title_zh: "出站 Reality 选项"
+});
+const OutboundTLSOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable TLS.",
+		description_zh: "启用 TLS。"
+	}),
+	disable_sni: zod.z.boolean().optional().meta({
+		description: "Do not send server name in ClientHello.",
+		description_zh: "不在 ClientHello 中发送服务器名称。"
+	}),
+	server_name: zod.z.string().optional().meta({
+		description: "Used to verify the hostname on the returned certificates unless insecure is given.",
+		description_zh: "用于验证返回证书上的主机名，除非设置不安全。"
+	}),
+	insecure: zod.z.boolean().optional().meta({
+		description: "Accepts any server certificate.",
+		description_zh: "接受任何服务器证书。"
+	}),
+	alpn: listableString.optional().meta({
+		description: "List of supported application level protocols, in order of preference.",
+		description_zh: "支持的应用层协议协商列表，按优先顺序排列。"
+	}),
+	min_version: TLSVersion.optional().meta({
+		description: "The minimum TLS version that is acceptable.",
+		description_zh: "可接受的最低 TLS 版本。"
+	}),
+	max_version: TLSVersion.optional().meta({
+		description: "The maximum TLS version that is acceptable.",
+		description_zh: "可接受的最大 TLS 版本。"
+	}),
+	cipher_suites: listable(TLSCipherSuite).optional().meta({
+		description: "A list of enabled TLS 1.0–1.2 cipher suites.",
+		description_zh: "启用的 TLS 1.0-1.2 密码套件的列表。"
+	}),
+	certificate: listableString.optional().meta({
+		description: "The server certificate line array, in PEM format.",
+		description_zh: "服务器 PEM 证书行数组。"
+	}),
+	certificate_path: zod.z.string().optional().meta({
+		description: "The path to the server certificate, in PEM format.",
+		description_zh: "服务器 PEM 证书路径。"
+	}),
+	fragment: zod.z.boolean().optional().meta({
+		description: "Fragment TLS handshakes to bypass firewalls.",
+		description_zh: "通过分段 TLS 握手数据包来绕过防火墙检测。"
+	}),
+	fragment_fallback_delay: zod.z.string().optional().meta({
+		description: "The fallback value used when TLS segmentation cannot automatically determine the wait time.",
+		description_zh: "当 TLS 分片功能无法自动判定等待时间时使用的回退值。"
+	}),
+	record_fragment: zod.z.boolean().optional().meta({
+		description: "Fragment TLS handshake into multiple TLS records to bypass firewalls.",
+		description_zh: "通过分段 TLS 握手数据包到多个 TLS 记录来绕过防火墙检测。"
+	}),
+	ech: OutboundECHOptions.optional().meta({
+		description: "ECH (Encrypted Client Hello) options.",
+		description_zh: "ECH（加密客户端 Hello）选项。"
+	}),
+	utls: OutboundUTLSOptions.optional().meta({
+		description: "uTLS options.",
+		description_zh: "uTLS 选项。"
+	}),
+	reality: OutboundRealityOptions.optional().meta({
+		description: "Reality options.",
+		description_zh: "Reality 选项。"
+	})
+}).meta({
+	id: "OutboundTLSOptions",
+	title: "Outbound TLS Options",
+	title_zh: "出站 TLS 选项"
+});
+const BrutalOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable TCP Brutal congestion control algorithm.",
+		description_zh: "启用 TCP Brutal 拥塞控制算法。"
+	}),
+	up_mbps: zod.z.number().int().optional().meta({
+		description: "Upload bandwidth, in Mbps.",
+		description_zh: "上传带宽，以 Mbps 为单位。"
+	}),
+	down_mbps: zod.z.number().int().optional().meta({
+		description: "Download bandwidth, in Mbps.",
+		description_zh: "下载带宽，以 Mbps 为单位。"
+	})
+}).meta({
+	id: "BrutalOptions",
+	title: "Brutal Options",
+	title_zh: "Brutal 选项"
+});
+const InboundMultiplexOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable multiplex support.",
+		description_zh: "启用多路复用支持。"
+	}),
+	padding: zod.z.boolean().optional().meta({
+		description: "If enabled, non-padded connections will be rejected.",
+		description_zh: "如果启用，将拒绝非填充连接。"
+	}),
+	brutal: BrutalOptions.optional().meta({
+		description: "TCP Brutal options.",
+		description_zh: "TCP Brutal 选项。"
+	})
+}).meta({
+	id: "InboundMultiplexOptions",
+	title: "Inbound Multiplex Options",
+	title_zh: "入站多路复用选项"
+});
+const OutboundMultiplexOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable multiplex.",
+		description_zh: "启用多路复用。"
+	}),
+	protocol: zod.z.enum([
+		"smux",
+		"yamux",
+		"h2mux"
+	]).optional().meta({
+		description: "Multiplex protocol.",
+		description_zh: "多路复用协议。"
+	}),
+	max_connections: zod.z.number().int().optional().meta({
+		description: "Maximum connections.",
+		description_zh: "最大连接数量。"
+	}),
+	min_streams: zod.z.number().int().optional().meta({
+		description: "Minimum multiplexed streams in a connection before opening a new connection.",
+		description_zh: "在打开新连接之前，连接中的最小多路复用流数量。"
+	}),
+	max_streams: zod.z.number().int().optional().meta({
+		description: "Maximum multiplexed streams in a connection before opening a new connection.",
+		description_zh: "在打开新连接之前，连接中的最大多路复用流数量。"
+	}),
+	padding: zod.z.boolean().optional().meta({
+		description: "Enable padding.",
+		description_zh: "启用填充。"
+	}),
+	brutal: BrutalOptions.optional().meta({
+		description: "TCP Brutal options.",
+		description_zh: "TCP Brutal 选项。"
+	})
+}).meta({
+	id: "OutboundMultiplexOptions",
+	title: "Outbound Multiplex Options",
+	title_zh: "出站多路复用选项"
+});
+const V2RayHTTPOptions = zod.z.object({
+	type: zod.z.literal("http"),
+	host: listableString.optional().meta({
+		description: "List of host domain.",
+		description_zh: "主机域名列表。"
+	}),
+	path: zod.z.string().optional().meta({
+		description: "Path of HTTP request.",
+		description_zh: "HTTP 请求路径。"
+	}),
+	method: zod.z.string().optional().meta({
+		description: "Method of HTTP request.",
+		description_zh: "HTTP 请求方法。"
+	}),
+	headers: HttpHeader.optional().meta({
+		description: "Extra headers of HTTP request.",
+		description_zh: "HTTP 请求的额外标头。"
+	}),
+	idle_timeout: zod.z.string().optional().meta({
+		description: "Specifies the time until idle clients should be closed with a GOAWAY frame.",
+		description_zh: "指定闲置客户端应在多长时间内使用 GOAWAY 帧关闭。"
+	}),
+	ping_timeout: zod.z.string().optional().meta({
+		description: "Specifies the timeout duration after sending a PING frame, within which a response must be received.",
+		description_zh: "指定发送 PING 帧后，在指定的超时时间内必须接收到响应。"
+	})
+}).meta({
+	id: "V2RayHTTPOptions",
+	title: "V2Ray HTTP Options",
+	title_zh: "V2Ray HTTP 选项"
+});
+const V2RayWebsocketOptions = zod.z.object({
+	type: zod.z.literal("ws"),
+	path: zod.z.string().optional().meta({
+		description: "Path of HTTP request.",
+		description_zh: "HTTP 请求路径。"
+	}),
+	headers: HttpHeader.optional().meta({
+		description: "Extra headers of HTTP request.",
+		description_zh: "HTTP 请求的额外标头。"
+	}),
+	max_early_data: zod.z.number().int().optional().meta({
+		description: "Allowed payload size is in the request.",
+		description_zh: "请求中允许的最大有效负载大小。"
+	}),
+	early_data_header_name: zod.z.string().optional().meta({
+		description: "Early data is sent in path instead of header by default.",
+		description_zh: "默认情况下，早期数据在路径而不是标头中发送。"
+	})
+}).meta({
+	id: "V2RayWebsocketOptions",
+	title: "V2Ray WebSocket Options",
+	title_zh: "V2Ray WebSocket 选项"
+});
+const V2RayQUICOptions = zod.z.object({ type: zod.z.literal("quic") }).meta({
+	id: "V2RayQUICOptions",
+	title: "V2Ray QUIC Options",
+	title_zh: "V2Ray QUIC 选项"
+});
+const V2RayGRPCOptions = zod.z.object({
+	type: zod.z.literal("grpc"),
+	service_name: zod.z.string().optional().meta({
+		description: "Service name of gRPC.",
+		description_zh: "gRPC 服务名称。"
+	}),
+	idle_timeout: zod.z.string().optional().meta({
+		description: "If the transport doesn't see any activity after a duration of this time, it pings the client to check if the connection is still active.",
+		description_zh: "如果传输在此时间段后没有看到任何活动，它会向客户端发送 ping 请求以检查连接是否仍然活动。"
+	}),
+	ping_timeout: zod.z.string().optional().meta({
+		description: "The timeout that after performing a keepalive check, the client will wait for activity.",
+		description_zh: "经过一段时间之后，客户端将执行 keepalive 检查并等待活动。"
+	}),
+	permit_without_stream: zod.z.boolean().optional().meta({
+		description: "If enabled, the client transport sends keepalive pings even with no active connections.",
+		description_zh: "如果启用，客户端传输即使没有活动连接也会发送 keepalive ping。"
+	})
+}).meta({
+	id: "V2RayGRPCOptions",
+	title: "V2Ray gRPC Options",
+	title_zh: "V2Ray gRPC 选项"
+});
+const V2RayHTTPUpgradeOptions = zod.z.object({
+	type: zod.z.literal("httpupgrade"),
+	host: zod.z.string().optional().meta({
+		description: "Host domain.",
+		description_zh: "主机域名。"
+	}),
+	path: zod.z.string().optional().meta({
+		description: "Path of HTTP request.",
+		description_zh: "HTTP 请求路径。"
+	}),
+	headers: HttpHeader.optional().meta({
+		description: "Extra headers of HTTP request.",
+		description_zh: "HTTP 请求的额外标头。"
+	})
+}).meta({
+	id: "V2RayHTTPUpgradeOptions",
+	title: "V2Ray HTTPUpgrade Options",
+	title_zh: "V2Ray HTTPUpgrade 选项"
+});
+const V2RayTransportOptions = zod.z.discriminatedUnion("type", [
+	V2RayHTTPOptions,
+	V2RayWebsocketOptions,
+	V2RayQUICOptions,
+	V2RayGRPCOptions,
+	V2RayHTTPUpgradeOptions
+]).meta({
+	id: "V2RayTransportOptions",
+	title: "V2Ray Transport Options",
+	title_zh: "V2Ray 传输选项"
+});
+const UDPOverTCPOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable the UDP over TCP protocol.",
+		description_zh: "启用 UDP over TCP 协议。"
+	}),
+	version: zod.z.number().int().optional().meta({
+		description: "The protocol version, `1` or `2`.",
+		description_zh: "协议版本，`1` 或 `2`。"
+	})
+}).meta({
+	id: "UDPOverTCPOptions",
+	title: "UDP Over TCP Options",
+	title_zh: "UDP Over TCP 选项"
+});
+
+//#endregion
+//#region src/schema/rules/dns-rule.ts
+const DNSRouteAction = zod.z.object({
+	action: zod.z.literal("route").optional().meta({
+		description: "Action type.",
+		description_zh: "动作类型。"
+	}),
+	server: zod.z.string().meta({
+		description: "Tag of target server.",
+		description_zh: "目标服务器的标签。"
+	}),
+	strategy: DomainStrategy.optional().meta({
+		description: "Set domain strategy for this query.",
+		description_zh: "为此查询设置域名策略。"
+	}),
+	disable_cache: zod.z.boolean().optional().meta({
+		description: "Disable cache and save cache in this query.",
+		description_zh: "在此查询中禁用缓存。"
+	}),
+	rewrite_ttl: zod.z.number().int().optional().meta({
+		description: "Rewrite TTL in DNS responses.",
+		description_zh: "重写 DNS 回应中的 TTL。"
+	}),
+	client_subnet: zod.z.string().optional().meta({
+		description: "Append a `edns0-subnet` OPT extra record.",
+		description_zh: "附加 `edns0-subnet` OPT 附加记录。"
+	})
+}).meta({
+	id: "DNSRouteAction",
+	title: "DNS Route Action",
+	title_zh: "DNS 路由动作"
+});
+const DNSRejectAction = zod.z.object({
+	action: zod.z.literal("reject").meta({
+		description: "Action type.",
+		description_zh: "动作类型。"
+	}),
+	method: zod.z.enum(["default", "drop"]).optional().meta({
+		description: "Reply with REFUSED or drop the request.",
+		description_zh: "返回 REFUSED 或丢弃请求。"
+	}),
+	no_drop: zod.z.boolean().optional().meta({
+		description: "If not enabled, `method` will be temporarily overwritten to `drop` after 50 triggers in 30s.",
+		description_zh: "如果未启用，则 30 秒内触发 50 次后，`method` 将被暂时覆盖为 `drop`。"
+	})
+}).meta({
+	id: "DNSRejectAction",
+	title: "DNS Reject Action",
+	title_zh: "DNS 拒绝动作"
+});
+const DNSRouteOptionsAction = zod.z.object({
+	action: zod.z.literal("route-options").meta({
+		description: "Action type.",
+		description_zh: "动作类型。"
+	}),
+	disable_cache: zod.z.boolean().optional().meta({
+		description: "Disable cache and save cache in this query.",
+		description_zh: "在此查询中禁用缓存。"
+	}),
+	rewrite_ttl: zod.z.number().int().optional().meta({
+		description: "Rewrite TTL in DNS responses.",
+		description_zh: "重写 DNS 回应中的 TTL。"
+	}),
+	client_subnet: zod.z.string().optional().meta({
+		description: "Append a `edns0-subnet` OPT extra record.",
+		description_zh: "附加 `edns0-subnet` OPT 附加记录。"
+	})
+}).meta({
+	id: "DNSRouteOptionsAction",
+	title: "DNS Route Options Action",
+	title_zh: "DNS 路由选项动作"
+});
+const DNSRecord = zod.z.string().meta({
+	description: "Text DNS record.",
+	description_zh: "文本 DNS 记录。"
+});
+const DNSRouteActionPredefined = zod.z.object({
+	action: zod.z.literal("predefined").meta({
+		description: "Action type.",
+		description_zh: "动作类型。"
+	}),
+	rcode: zod.z.enum([
+		"NOERROR",
+		"FORMERR",
+		"SERVFAIL",
+		"NXDOMAIN",
+		"NOTIMP",
+		"REFUSED"
+	]).optional().meta({
+		description: "The response code.",
+		description_zh: "响应码。"
+	}),
+	answer: listable(DNSRecord).optional().meta({
+		description: "List of text DNS record to respond as answers.",
+		description_zh: "用于作为回答响应的文本 DNS 记录列表。"
+	}),
+	ns: listable(DNSRecord).optional().meta({
+		description: "List of text DNS record to respond as name servers.",
+		description_zh: "用于作为名称服务器响应的文本 DNS 记录列表。"
+	}),
+	extra: listable(DNSRecord).optional().meta({
+		description: "List of text DNS record to respond as extra records.",
+		description_zh: "用于作为额外记录响应的文本 DNS 记录列表。"
+	})
+}).meta({
+	id: "DNSRouteActionPredefined",
+	title: "DNS Route Action Predefined",
+	title_zh: "DNS 路由动作预定义"
+});
+const DNSQueryType$1 = zod.z.union([zod.z.string(), zod.z.number().int()]).meta({
+	description: "DNS query type. Values can be integers or type name strings.",
+	description_zh: "DNS 查询类型。值可以为整数或者类型名称字符串。"
+});
+const BaseDNSRule = zod.z.object({
+	inbound: listableString.optional().meta({
+		description: "Tags of Inbound.",
+		description_zh: "入站标签。"
+	}),
+	ip_version: IpVersion.optional().meta({
+		description: "4 (A DNS query) or 6 (AAAA DNS query).",
+		description_zh: "4 (A DNS 查询) 或 6 (AAAA DNS 查询)。"
+	}),
+	query_type: listable(DNSQueryType$1).optional().meta({
+		description: "DNS query type.",
+		description_zh: "DNS 查询类型。"
+	}),
+	network: Network.optional().meta({
+		description: "`tcp` or `udp`.",
+		description_zh: "`tcp` 或 `udp`。"
+	}),
+	auth_user: listableString.optional().meta({
+		description: "Username.",
+		description_zh: "用户名。"
+	}),
+	protocol: listableString.optional().meta({
+		description: "Sniffed protocol.",
+		description_zh: "探测到的协议。"
+	}),
+	domain: listableString.optional().meta({
+		description: "Match full domain.",
+		description_zh: "匹配完整域名。"
+	}),
+	domain_suffix: listableString.optional().meta({
+		description: "Match domain suffix.",
+		description_zh: "匹配域名后缀。"
+	}),
+	domain_keyword: listableString.optional().meta({
+		description: "Match domain using keyword.",
+		description_zh: "匹配域名关键字。"
+	}),
+	domain_regex: listableString.optional().meta({
+		description: "Match domain using regular expression.",
+		description_zh: "匹配域名正则表达式。"
+	}),
+	source_ip_cidr: listableString.optional().meta({
+		description: "Match source IP CIDR.",
+		description_zh: "匹配源 IP CIDR。"
+	}),
+	source_ip_is_private: zod.z.boolean().optional().meta({
+		description: "Match non-public source IP.",
+		description_zh: "匹配非公开源 IP。"
+	}),
+	ip_cidr: listableString.optional().meta({
+		description: "Match IP CIDR with query response.",
+		description_zh: "与查询响应匹配 IP CIDR。"
+	}),
+	ip_is_private: zod.z.boolean().optional().meta({
+		description: "Match private IP with query response.",
+		description_zh: "与查询响应匹配非公开 IP。"
+	}),
+	ip_accept_any: zod.z.boolean().optional().meta({
+		description: "Match any IP with query response.",
+		description_zh: "匹配任意 IP。"
+	}),
+	source_port: listableInts.optional().meta({
+		description: "Match source port.",
+		description_zh: "匹配源端口。"
+	}),
+	source_port_range: listableString.optional().meta({
+		description: "Match source port range.",
+		description_zh: "匹配源端口范围。"
+	}),
+	port: listableInts.optional().meta({
+		description: "Match port.",
+		description_zh: "匹配端口。"
+	}),
+	port_range: listableString.optional().meta({
+		description: "Match port range.",
+		description_zh: "匹配端口范围。"
+	}),
+	process_name: listableString.optional().meta({
+		description: "Match process name.",
+		description_zh: "匹配进程名称。"
+	}),
+	process_path: listableString.optional().meta({
+		description: "Match process path.",
+		description_zh: "匹配进程路径。"
+	}),
+	process_path_regex: listableString.optional().meta({
+		description: "Match process path using regular expression.",
+		description_zh: "使用正则表达式匹配进程路径。"
+	}),
+	package_name: listableString.optional().meta({
+		description: "Match android package name.",
+		description_zh: "匹配 Android 应用包名。"
+	}),
+	user: listableString.optional().meta({
+		description: "Match user name.",
+		description_zh: "匹配用户名。"
+	}),
+	user_id: listableInts.optional().meta({
+		description: "Match user id.",
+		description_zh: "匹配用户 ID。"
+	}),
+	clash_mode: zod.z.string().optional().meta({
+		description: "Match Clash mode.",
+		description_zh: "匹配 Clash 模式。"
+	}),
+	network_type: listable(NetworkType).optional().meta({
+		description: "Match network type.",
+		description_zh: "匹配网络类型。"
+	}),
+	network_is_expensive: zod.z.boolean().optional().meta({
+		description: "Match if network is considered Metered.",
+		description_zh: "匹配如果网络被视为计费。"
+	}),
+	network_is_constrained: zod.z.boolean().optional().meta({
+		description: "Match if network is in Low Data Mode.",
+		description_zh: "匹配如果网络在低数据模式下。"
+	}),
+	wifi_ssid: listableString.optional().meta({
+		description: "Match WiFi SSID.",
+		description_zh: "匹配 WiFi SSID。"
+	}),
+	wifi_bssid: listableString.optional().meta({
+		description: "Match WiFi BSSID.",
+		description_zh: "匹配 WiFi BSSID。"
+	}),
+	rule_set: listableString.optional().meta({
+		description: "Match rule-set.",
+		description_zh: "匹配规则集。"
+	}),
+	rule_set_ip_cidr_match_source: zod.z.boolean().optional().meta({
+		description: "Make `ip_cidr` rule items in rule-sets match the source IP.",
+		description_zh: "使规则集中的 `ip_cidr` 规则匹配源 IP。"
+	}),
+	rule_set_ip_cidr_accept_empty: zod.z.boolean().optional().meta({
+		description: "Make `ip_cidr` rules in rule-sets accept empty query response.",
+		description_zh: "使规则集中的 `ip_cidr` 规则接受空查询响应。"
+	}),
+	invert: zod.z.boolean().optional().meta({
+		description: "Invert match result.",
+		description_zh: "反选匹配结果。"
+	}),
+	outbound: listableString.optional().meta({
+		description: "Match outbound.",
+		description_zh: "匹配出站。",
+		deprecated: true
+	})
+});
+const DefaultDNSRule = zod.z.union([
+	BaseDNSRule.extend(DNSRouteAction.shape),
+	BaseDNSRule.extend(DNSRouteOptionsAction.shape),
+	BaseDNSRule.extend(DNSRejectAction.shape),
+	BaseDNSRule.extend(DNSRouteActionPredefined.shape)
+]);
+const LogicalDNSRule = zod.z.object({
+	type: zod.z.literal("logical").meta({
+		description: "Rule type.",
+		description_zh: "规则类型。"
+	}),
+	mode: zod.z.enum(["and", "or"]).meta({
+		description: "`and` or `or`.",
+		description_zh: "`and` 或 `or`。"
+	}),
+	get rules() {
+		return zod.z.array(DNSRule).optional().meta({
+			description: "Included rules.",
+			description_zh: "包括的规则。"
+		});
+	},
+	invert: zod.z.boolean().optional().meta({
+		description: "Invert match result.",
+		description_zh: "反选匹配结果。"
+	})
+}).meta({
+	id: "LogicalDNSRule",
+	title: "Logical DNS Rule",
+	title_zh: "逻辑 DNS 规则"
+});
+const DNSRule = zod.z.union([DefaultDNSRule, LogicalDNSRule]).meta({
+	id: "DNSRule",
+	title: "DNS Rule",
+	title_zh: "DNS 规则"
+});
+
+//#endregion
+//#region src/schema/dns.ts
+const LocalDNSServerOptions = zod.z.object({
+	type: zod.z.literal("local"),
+	tag: zod.z.string(),
+	...DialerOptions.shape
+}).meta({
+	id: "LocalDNSServerOptions",
+	title: "Local DNS Server"
+});
+const HostsDNSServerOptions = zod.z.object({
+	type: zod.z.literal("hosts"),
+	tag: zod.z.string(),
+	path: listableString.optional().meta({ description: "List of paths to hosts files." }),
+	predefined: zod.z.record(zod.z.string(), listableString).optional().meta({ description: "Predefined hosts." })
+}).meta({
+	id: "HostsDNSServerOptions",
+	title: "Hosts DNS Server"
+});
+const TCPDNSServerOptions = zod.z.object({
+	type: zod.z.literal("tcp"),
+	tag: zod.z.string(),
+	server: zod.z.string().meta({ description: "The address of the TCP DNS server." }),
+	server_port: zod.z.number().int().optional().meta({ description: "The port of the TCP DNS server." }),
+	...DialerOptions.shape
+}).meta({
+	id: "TCPDNSServerOptions",
+	title: "TCP DNS Server"
+});
+const UDPDNSServerOptions = zod.z.object({
+	type: zod.z.literal("udp"),
+	tag: zod.z.string(),
+	server: zod.z.string().meta({ description: "The address of the UDP DNS server." }),
+	server_port: zod.z.number().int().optional().meta({ description: "The port of the UDP DNS server." }),
+	...DialerOptions.shape
+}).meta({
+	id: "UDPDNSServerOptions",
+	title: "UDP DNS Server"
+});
+const TLSDNSServerOptions = zod.z.object({
+	type: zod.z.literal("tls"),
+	tag: zod.z.string(),
+	server: zod.z.string().meta({ description: "The address of the TLS DNS server." }),
+	server_port: zod.z.number().int().optional().meta({ description: "The port of the TLS DNS server." }),
+	tls: OutboundTLSOptions.optional().meta({ description: "TLS configuration." }),
+	...DialerOptions.shape
+}).meta({
+	id: "TLSDNSServerOptions",
+	title: "TLS DNS Server"
+});
+const QUICDNSServerOptions = zod.z.object({
+	type: zod.z.literal("quic"),
+	tag: zod.z.string(),
+	server: zod.z.string().meta({ description: "The address of the QUIC DNS server." }),
+	server_port: zod.z.number().int().optional().meta({ description: "The port of the QUIC DNS server." }),
+	tls: OutboundTLSOptions.optional().meta({ description: "TLS configuration." }),
+	...DialerOptions.shape
+}).meta({
+	id: "QUICDNSServerOptions",
+	title: "QUIC DNS Server"
+});
+const HTTPSDNSServerOptions = zod.z.object({
+	type: zod.z.literal("https"),
+	tag: zod.z.string(),
+	server: zod.z.string().meta({ description: "The address of the HTTPS DNS server." }),
+	server_port: zod.z.number().int().optional().meta({ description: "The port of the HTTPS DNS server." }),
+	path: zod.z.string().optional().meta({ description: "The path of the HTTPS DNS server. `/dns-query` will be used by default." }),
+	headers: HttpHeader.optional().meta({ description: "Additional headers to be sent to the DNS server." }),
+	tls: OutboundTLSOptions.optional().meta({ description: "TLS configuration." }),
+	...DialerOptions.shape
+}).meta({
+	id: "HTTPSDNSServerOptions",
+	title: "HTTPS DNS Server"
+});
+const HTTP3DNSServerOptions = zod.z.object({
+	type: zod.z.literal("h3"),
+	tag: zod.z.string(),
+	server: zod.z.string().meta({ description: "The address of the HTTP3 DNS server." }),
+	server_port: zod.z.number().int().optional().meta({ description: "The port of the HTTP3 DNS server." }),
+	path: zod.z.string().optional().meta({ description: "The path of the HTTP3 DNS server. `/dns-query` will be used by default." }),
+	headers: HttpHeader.optional().meta({ description: "Additional headers to be sent to the DNS server." }),
+	tls: OutboundTLSOptions.optional().meta({ description: "TLS configuration." }),
+	...DialerOptions.shape
+}).meta({
+	id: "HTTP3DNSServerOptions",
+	title: "HTTP3 DNS Server"
+});
+const DHCPDNSServerOptions = zod.z.object({
+	type: zod.z.literal("dhcp"),
+	tag: zod.z.string(),
+	interface: zod.z.string().optional().meta({ description: "Interface name to listen on." }),
+	...DialerOptions.shape
+}).meta({
+	id: "DHCPDNSServerOptions",
+	title: "DHCP DNS Server"
+});
+const FakeIPDNSServerOptions = zod.z.object({
+	type: zod.z.literal("fakeip"),
+	tag: zod.z.string(),
+	inet4_range: zod.z.string().optional().meta({
+		description: "IPv4 address range for FakeIP.",
+		description_zh: "用于 FakeIP 的 IPv4 地址范围。"
+	}),
+	inet6_range: zod.z.string().optional().meta({
+		description: "IPv6 address range for FakeIP.",
+		description_zh: "用于 FakeIP 的 IPv6 地址范围。"
+	})
+}).meta({
+	id: "FakeIPDNSServerOptions",
+	title: "FakeIP DNS Server"
+});
+const TailscaleDNSServerOptions = zod.z.object({
+	type: zod.z.literal("tailscale"),
+	tag: zod.z.string(),
+	endpoint: zod.z.string().meta({ description: "The tag of the Tailscale Endpoint." }),
+	accept_default_resolvers: zod.z.boolean().optional().meta({ description: "Indicates whether default DNS resolvers should be accepted for fallback queries in addition to MagicDNS，" })
+}).meta({
+	id: "TailscaleDNSServerOptions",
+	title: "Tailscale DNS Server"
+});
+const ResolvedDNSServerOptions = zod.z.object({
+	type: zod.z.literal("resolved"),
+	tag: zod.z.string(),
+	service: zod.z.string().meta({ description: "The tag of the Resolved Service." }),
+	accept_default_resolvers: zod.z.boolean().optional().meta({ description: "Indicates whether the default DNS resolvers should be accepted for fallback queries in addition to matching domains." })
+}).meta({
+	id: "ResolvedDNSServerOptions",
+	title: "Resolved DNS Server"
+});
+const DNSServer = zod.z.discriminatedUnion("type", [
+	LocalDNSServerOptions,
+	HostsDNSServerOptions,
+	TCPDNSServerOptions,
+	UDPDNSServerOptions,
+	TLSDNSServerOptions,
+	QUICDNSServerOptions,
+	HTTPSDNSServerOptions,
+	HTTP3DNSServerOptions,
+	DHCPDNSServerOptions,
+	FakeIPDNSServerOptions,
+	TailscaleDNSServerOptions,
+	ResolvedDNSServerOptions
+]).meta({
+	id: "DNSServer",
+	title: "DNS Server",
+	title_zh: "DNS 服务器"
+});
+const DNSClientOptions = zod.z.object({
+	strategy: DomainStrategy.optional().meta({
+		description: "Default domain strategy for resolving the domain names.",
+		description_zh: "默认解析域名策略。"
+	}),
+	disable_cache: zod.z.boolean().optional().meta({
+		description: "Disable dns cache.",
+		description_zh: "禁用 DNS 缓存。"
+	}),
+	disable_expire: zod.z.boolean().optional().meta({
+		description: "Disable dns cache expire.",
+		description_zh: "禁用 DNS 缓存过期。"
+	}),
+	independent_cache: zod.z.boolean().optional().meta({
+		description: "Make each DNS server's cache independent for special purposes. If enabled, will slightly degrade performance.",
+		description_zh: "使每个 DNS 服务器的缓存独立，以满足特殊目的。如果启用，将轻微降低性能。"
+	}),
+	cache_capacity: zod.z.number().int().optional().meta({
+		description: "LRU cache capacity.",
+		description_zh: "LRU 缓存容量。"
+	}),
+	client_subnet: zod.z.string().optional().meta({
+		description: "Append a `edns0-subnet` OPT extra record with the specified IP prefix to every query by default.",
+		description_zh: "默认情况下，将带有指定 IP 前缀的 `edns0-subnet` OPT 附加记录附加到每个查询。"
+	})
+});
+const LegacyDNSFakeIPOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable FakeIP service.",
+		description_zh: "启用 FakeIP 服务。"
+	}),
+	inet4_range: zod.z.string().optional().meta({
+		description: "IPv4 address range for FakeIP.",
+		description_zh: "用于 FakeIP 的 IPv4 地址范围。"
+	}),
+	inet6_range: zod.z.string().optional().meta({
+		description: "IPv6 address range for FakeIP.",
+		description_zh: "用于 FakeIP 的 IPv6 地址范围。"
+	})
+}).meta({
+	id: "LegacyDNSFakeIPOptions",
+	title: "Legacy DNS FakeIP",
+	title_zh: "旧版 DNS FakeIP",
+	description: "Legacy fake-ip configuration is deprecated",
+	description_zh: "旧的 fake-ip 配置已废弃",
+	deprecated: true
+});
+const DNSOptions = zod.z.object({
+	servers: zod.z.array(DNSServer).optional().meta({
+		description: "List of DNS Servers",
+		description_zh: "一组 DNS 服务器"
+	}),
+	rules: zod.z.array(DNSRule).optional().meta({
+		description: "List of DNS Rules",
+		description_zh: "一组 DNS 规则"
+	}),
+	final: zod.z.string().optional().meta({
+		description: "Default dns server tag.",
+		description_zh: "默认 DNS 服务器的标签。"
+	}),
+	reverse_mapping: zod.z.boolean().optional().meta({
+		description: "Stores a reverse mapping of IP addresses after responding to a DNS query in order to provide domain names when routing.",
+		description_zh: "在响应 DNS 查询后存储 IP 地址的反向映射以为路由目的提供域名。"
+	}),
+	fakeip: LegacyDNSFakeIPOptions.optional().meta({
+		description: "FakeIP settings.",
+		description_zh: "FakeIP 设置。"
+	}),
+	...DNSClientOptions.shape
+}).meta({
+	id: "DNSOptions",
+	title: "DNS",
+	title_zh: "DNS"
+});
+
+//#endregion
+//#region src/schema/protocols/tailscale.ts
+const TailscaleEndpointOptions = zod.z.object({
+	type: zod.z.literal("tailscale"),
+	tag: zod.z.string().optional(),
+	state_directory: zod.z.string().optional().meta({
+		description: "The directory where the Tailscale state is stored.",
+		description_zh: "存储 Tailscale 状态的目录。"
+	}),
+	auth_key: zod.z.string().optional().meta({
+		description: "The auth key to create the node.",
+		description_zh: "用于创建节点的验证密钥。"
+	}),
+	control_url: zod.z.string().optional().meta({
+		description: "The coordination server URL.",
+		description_zh: "协调服务器 URL。"
+	}),
+	ephemeral: zod.z.boolean().optional().meta({
+		description: "Indicates whether the instance should register as an Ephemeral node.",
+		description_zh: "指示实例是否应注册为临时节点。"
+	}),
+	hostname: zod.z.string().optional().meta({
+		description: "The hostname of the node.",
+		description_zh: "节点的主机名。"
+	}),
+	accept_routes: zod.z.boolean().optional().meta({
+		description: "Indicates whether the node should accept routes advertised by other nodes.",
+		description_zh: "指示节点是否应接受其他节点通告的路由。"
+	}),
+	exit_node: zod.z.string().optional().meta({
+		description: "The exit node name or IP address to use.",
+		description_zh: "要使用的出口节点的名称或 IP 地址。"
+	}),
+	exit_node_allow_lan_access: zod.z.boolean().optional().meta({
+		description: "Indicates whether locally accessible subnets should be routed directly or via the exit node.",
+		description_zh: "指示本地可访问的子网应直接路由还是通过出口节点路由。"
+	}),
+	advertise_routes: zod.z.array(zod.z.string()).optional().meta({
+		description: "CIDR prefixes to advertise into the Tailscale network as reachable through the current node.",
+		description_zh: "要通告到 Tailscale 网络中的 CIDR 前缀，作为可通过当前节点访问。"
+	}),
+	advertise_exit_node: zod.z.boolean().optional().meta({
+		description: "Indicates whether the node should advertise itself as an exit node.",
+		description_zh: "指示节点是否应将自己通告为出口节点。"
+	}),
+	udp_timeout: zod.z.union([zod.z.string(), zod.z.number()]).optional().meta({
+		description: "UDP NAT expiration time.",
+		description_zh: "UDP NAT 过期时间。"
+	}),
+	...DialerOptions.shape
+}).meta({
+	id: "TailscaleEndpointOptions",
+	title: "Tailscale Endpoint",
+	title_zh: "Tailscale 端点"
+});
+
+//#endregion
+//#region src/schema/protocols/wireguard.ts
+const Reserved = zod.default.union([zod.default.string().max(4), zod.default.array(zod.default.number().int().min(0).max(255)).length(3)]);
+const WireGuardPeer = zod.default.object({
+	address: zod.default.string().optional().meta({
+		description: "WireGuard peer address.",
+		description_zh: "对等方的 IP 地址。"
+	}),
+	port: zod.default.number().int().optional().meta({
+		description: "WireGuard peer port.",
+		description_zh: "对等方的 WireGuard 端口。"
+	}),
+	public_key: zod.default.string().optional().meta({
+		description: "WireGuard peer public key.",
+		description_zh: "对等方的 WireGuard 公钥。"
+	}),
+	pre_shared_key: zod.default.string().optional().meta({
+		description: "WireGuard peer pre-shared key.",
+		description_zh: "对等方的预共享密钥。"
+	}),
+	allowed_ips: zod.default.union([zod.default.string(), zod.default.array(zod.default.string())]).optional().meta({
+		description: "WireGuard allowed IPs.",
+		description_zh: "对等方的允许 IP 地址。"
+	}),
+	persistent_keepalive_interval: zod.default.number().int().optional().meta({
+		description: "WireGuard persistent keepalive interval, in seconds.",
+		description_zh: "对等方的持久性保持活动间隔，以秒为单位。"
+	}),
+	reserved: Reserved.optional().meta({
+		description: "WireGuard reserved field bytes.",
+		description_zh: "对等方的保留字段字节。"
+	})
+});
+const WireGuardEndpointOptions = zod.default.object({
+	type: zod.default.literal("wireguard"),
+	tag: zod.default.string().optional(),
+	system: zod.default.boolean().optional().meta({
+		description: "Use system interface.",
+		description_zh: "使用系统设备。"
+	}),
+	name: zod.default.string().optional().meta({
+		description: "Custom interface name for system interface.",
+		description_zh: "为系统接口自定义设备名称。"
+	}),
+	mtu: zod.default.number().int().optional().meta({
+		description: "WireGuard MTU.",
+		description_zh: "WireGuard MTU。"
+	}),
+	address: zod.default.union([zod.default.string(), zod.default.array(zod.default.string())]).meta({
+		description: "List of IP (v4 or v6) address prefixes to be assigned to the interface.",
+		description_zh: "接口的 IPv4/IPv6 地址或地址段的列表。"
+	}),
+	private_key: zod.default.string().meta({
+		description: "WireGuard requires base64-encoded public and private keys.",
+		description_zh: "WireGuard 需要 base64 编码的公钥和私钥。"
+	}),
+	listen_port: zod.default.number().int().optional().meta({
+		description: "Listen port.",
+		description_zh: "监听端口。"
+	}),
+	peers: zod.default.array(WireGuardPeer).optional().meta({
+		description: "List of WireGuard peers.",
+		description_zh: "WireGuard 对等方的列表。"
+	}),
+	udp_timeout: zod.default.string().optional().meta({
+		description: "UDP NAT expiration time.",
+		description_zh: "UDP NAT 过期时间。"
+	}),
+	workers: zod.default.number().int().optional().meta({
+		description: "WireGuard worker count.",
+		description_zh: "WireGuard worker 数量。"
+	}),
+	...DialerOptions.shape
+}).meta({
+	id: "WireGuardEndpointOptions",
+	title: "WireGuard Endpoint",
+	title_zh: "WireGuard 端点"
+});
+const LegacyWireGuardPeer = zod.default.object({
+	public_key: zod.default.string().optional().meta({
+		description: "WireGuard peer public key.",
+		description_zh: "WireGuard 对等公钥。"
+	}),
+	pre_shared_key: zod.default.string().optional().meta({
+		description: "WireGuard pre-shared key.",
+		description_zh: "WireGuard 预共享密钥。"
+	}),
+	allowed_ips: zod.default.union([zod.default.string(), zod.default.array(zod.default.string())]).optional().meta({
+		description: "WireGuard allowed IPs.",
+		description_zh: "WireGuard 允许 IP。"
+	}),
+	reserved: Reserved.optional().meta({
+		description: "WireGuard reserved field bytes.",
+		description_zh: "WireGuard 保留字段字节。"
+	}),
+	...ServerOptions.shape
+});
+const LegacyWireGuardOutboundOptions = zod.default.object({
+	type: zod.default.literal("wireguard"),
+	tag: zod.default.string().optional(),
+	system_interface: zod.default.boolean().optional().meta({
+		description: "Use system interface.",
+		description_zh: "使用系统设备。"
+	}),
+	gso: zod.default.boolean().optional().meta({
+		description: "Enable generic segmentation offload.",
+		description_zh: "启用通用分段卸载。",
+		deprecated: true
+	}),
+	interface_name: zod.default.string().optional().meta({
+		description: "Custom interface name for system interface.",
+		description_zh: "为系统接口自定义设备名称。"
+	}),
+	local_address: zod.default.union([zod.default.string(), zod.default.array(zod.default.string())]).meta({
+		description: "List of IP (v4 or v6) address prefixes to be assigned to the interface.",
+		description_zh: "接口的 IPv4/IPv6 地址或地址段的列表。"
+	}),
+	private_key: zod.default.string().meta({
+		description: "WireGuard requires base64-encoded public and private keys.",
+		description_zh: "WireGuard 需要 base64 编码的公钥和私钥。"
+	}),
+	peers: zod.default.array(LegacyWireGuardPeer).optional().meta({
+		description: "Multi-peer support.",
+		description_zh: "多对等支持。"
+	}),
+	peer_public_key: zod.default.string().meta({
+		description: "WireGuard peer public key.",
+		description_zh: "WireGuard 对等公钥。"
+	}),
+	pre_shared_key: zod.default.string().optional().meta({
+		description: "WireGuard pre-shared key.",
+		description_zh: "WireGuard 预共享密钥。"
+	}),
+	reserved: Reserved.optional().meta({
+		description: "WireGuard reserved field bytes.",
+		description_zh: "WireGuard 保留字段字节。"
+	}),
+	workers: zod.default.number().int().optional().meta({
+		description: "WireGuard worker count.",
+		description_zh: "WireGuard worker 数量。"
+	}),
+	mtu: zod.default.number().int().optional().meta({
+		description: "WireGuard MTU.",
+		description_zh: "WireGuard MTU。"
+	}),
+	network: Network.optional().meta({
+		description: "Enabled network.",
+		description_zh: "启用的网络协议。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "LegacyWireGuardOutboundOptions",
+	title: "Legacy WireGuard Outbound",
+	title_zh: "旧版 WireGuard 出站"
+});
+
+//#endregion
+//#region src/schema/endpoint.ts
+const Endpoint = zod.z.discriminatedUnion("type", [WireGuardEndpointOptions, TailscaleEndpointOptions]).meta({
+	id: "Endpoint",
+	title: "Endpoint",
+	title_zh: "端点"
+});
+
+//#endregion
+//#region src/schema/experimentals/cache-file.ts
+/**
+* Cache file settings.
+*/
+const CacheFileOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable cache file.",
+		description_zh: "启用缓存文件。"
+	}),
+	path: zod.z.string().optional().meta({
+		description: "Path to the cache file.",
+		description_zh: "缓存文件路径。"
+	}),
+	cache_id: zod.z.string().optional().meta({
+		description: "Identifier in the cache file.",
+		description_zh: "缓存文件中的标识符。"
+	}),
+	store_fakeip: zod.z.boolean().optional().meta({
+		description: "Store fakeip in the cache file.",
+		description_zh: "将 fakeip 存储在缓存文件中。"
+	}),
+	store_rdrc: zod.z.boolean().optional().meta({
+		description: "Store rejected DNS response cache in the cache file.",
+		description_zh: "将拒绝的 DNS 响应缓存存储在缓存文件中。"
+	}),
+	rdrc_timeout: zod.z.string().optional().meta({
+		description: "Timeout of rejected DNS response cache.",
+		description_zh: "拒绝的 DNS 响应缓存超时。"
+	})
+}).meta({
+	id: "CacheFileOptions",
+	title: "Cache File",
+	title_zh: "缓存文件"
+});
+
+//#endregion
+//#region src/schema/experimentals/clash-api.ts
+/**
+* Clash API settings.
+*/
+const ClashAPIOptions = zod.z.object({
+	external_controller: zod.z.string().optional().meta({
+		description: "RESTful web API listening address. Clash API will be disabled if empty.",
+		description_zh: "RESTful web API 监听地址。如果为空，则禁用 Clash API。"
+	}),
+	external_ui: zod.z.string().optional().meta({
+		description: "A relative path to the configuration directory or an absolute path to a directory in which you put some static web resource.",
+		description_zh: "到静态网页资源目录的相对路径或绝对路径。"
+	}),
+	external_ui_download_url: zod.z.string().optional().meta({
+		description: "ZIP download URL for the external UI, will be used if the specified `external_ui` directory is empty.",
+		description_zh: "静态网页资源的 ZIP 下载 URL，如果指定的 `external_ui` 目录为空，将使用。"
+	}),
+	external_ui_download_detour: zod.z.string().optional().meta({
+		description: "The tag of the outbound to download the external UI.",
+		description_zh: "用于下载静态网页资源的出站的标签。"
+	}),
+	secret: zod.z.string().optional().meta({
+		description: "Secret for the RESTful API (optional).",
+		description_zh: "RESTful API 的密钥（可选）。"
+	}),
+	default_mode: zod.z.string().optional().meta({
+		description: "Default mode in clash, `Rule` will be used if empty.",
+		description_zh: "Clash 中的默认模式，默认使用 `Rule`。"
+	}),
+	access_control_allow_origin: listableString.optional().meta({
+		description: "CORS allowed origins, `*` will be used if empty.",
+		description_zh: "允许的 CORS 来源，默认使用 `*`。"
+	}),
+	access_control_allow_private_network: zod.z.boolean().optional().meta({
+		description: "Allow access from private network.",
+		description_zh: "允许从私有网络访问。"
+	})
+}).meta({
+	id: "ClashAPIOptions",
+	title: "Clash API",
+	title_zh: "Clash API"
+});
+
+//#endregion
+//#region src/schema/experimentals/v2ray-api.ts
+const V2RayAPIStatsOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable statistics service.",
+		description_zh: "启用统计服务。"
+	}),
+	inbounds: listableString.optional().meta({
+		description: "Inbound list to count traffic.",
+		description_zh: "统计流量的入站列表。"
+	}),
+	outbounds: listableString.optional().meta({
+		description: "Outbound list to count traffic.",
+		description_zh: "统计流量的出站列表。"
+	}),
+	users: listableString.optional().meta({
+		description: "User list to count traffic.",
+		description_zh: "统计流量的用户列表。"
+	})
+});
+/**
+* V2Ray API settings.
+*/
+const V2RayAPIOptions = zod.z.object({
+	listen: zod.z.string().optional().meta({
+		description: "gRPC API listening address. V2Ray API will be disabled if empty.",
+		description_zh: "gRPC API 监听地址。如果为空，则禁用 V2Ray API。"
+	}),
+	stats: V2RayAPIStatsOptions.optional().meta({
+		description: "Traffic statistics service settings.",
+		description_zh: "流量统计服务设置。"
+	})
+}).meta({
+	id: "V2RayAPIOptions",
+	title: "V2Ray API",
+	title_zh: "V2Ray API"
+});
+
+//#endregion
+//#region src/schema/experimental.ts
+/**
+* Experimental features settings.
+*/
+const ExperimentalOptions = zod.z.object({
+	cache_file: CacheFileOptions.optional().meta({
+		description: "Cache file settings.",
+		description_zh: "缓存文件设置。"
+	}),
+	clash_api: ClashAPIOptions.optional().meta({
+		description: "Clash API settings.",
+		description_zh: "Clash API 设置。"
+	}),
+	v2ray_api: V2RayAPIOptions.optional().meta({
+		description: "V2Ray API settings.",
+		description_zh: "V2Ray API 设置。"
+	})
+}).meta({
+	id: "ExperimentalOptions",
+	title: "Experimental",
+	title_zh: "实验性选项"
+});
+
+//#endregion
+//#region src/schema/protocols/anytls.ts
+const AnyTLSUser = zod.z.object({
+	name: zod.z.string().optional(),
+	password: zod.z.string().optional()
+});
+const AnyTLSInboundOptions = zod.z.object({
+	type: zod.z.literal("anytls"),
+	tag: zod.z.string(),
+	users: zod.z.array(AnyTLSUser).optional().meta({
+		description: "AnyTLS users.",
+		description_zh: "AnyTLS 用户。"
+	}),
+	padding_scheme: listableString.optional().meta({
+		description: "AnyTLS padding scheme line array.",
+		description_zh: "AnyTLS 填充方案行数组。"
+	}),
+	tls: InboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "AnyTLSInboundOptions",
+	title: "AnyTLS Inbound",
+	title_zh: "AnyTLS 入站"
+});
+const AnyTLSOutboundOptions = zod.z.object({
+	type: zod.z.literal("anytls"),
+	tag: zod.z.string(),
+	password: zod.z.string().meta({
+		description: "The AnyTLS password.",
+		description_zh: "AnyTLS 密码。"
+	}),
+	idle_session_check_interval: zod.z.string().optional().meta({
+		description: "Interval checking for idle sessions.",
+		description_zh: "检查空闲会话的时间间隔。"
+	}),
+	idle_session_timeout: zod.z.string().optional().meta({
+		description: "In the check, close sessions that have been idle for longer than this.",
+		description_zh: "在检查中，关闭闲置时间超过此值的会话。"
+	}),
+	min_idle_session: zod.z.number().int().optional().meta({
+		description: "In the check, at least the first `n` idle sessions are kept open.",
+		description_zh: "在检查中，至少前 `n` 个空闲会话保持打开状态。"
+	}),
+	tls: OutboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "AnyTLSOutboundOptions",
+	title: "AnyTLS Outbound",
+	title_zh: "AnyTLS 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/direct.ts
+const DirectInboundOptions = zod.z.object({
+	type: zod.z.literal("direct"),
+	tag: zod.z.string().optional(),
+	network: Network.optional().meta({
+		description: "Listen network, one of `tcp` `udp`.",
+		description_zh: "监听的网络协议，`tcp` `udp` 之一。"
+	}),
+	override_address: zod.z.string().optional().meta({
+		description: "Override the connection destination address.",
+		description_zh: "覆盖连接目标地址。"
+	}),
+	override_port: zod.z.number().int().optional().meta({
+		description: "Override the connection destination port.",
+		description_zh: "覆盖连接目标端口。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "DirectInboundOptions",
+	title: "Direct Inbound",
+	title_zh: "Direct 入站",
+	description: "Direct inbound is a tunnel server.",
+	description_zh: "Direct 入站是一个隧道服务器。"
+});
+const DirectOutboundOptions = zod.z.object({
+	type: zod.z.literal("direct"),
+	tag: zod.z.string().optional(),
+	override_address: zod.z.string().optional().meta({
+		description: "Override the connection destination address.",
+		description_zh: "覆盖连接目标地址。",
+		deprecated: true
+	}),
+	override_port: zod.z.number().int().optional().meta({
+		description: "Override the connection destination port.",
+		description_zh: "覆盖连接目标端口。",
+		deprecated: true
+	}),
+	...DialerOptions.shape
+}).meta({
+	id: "DirectOutboundOptions",
+	title: "Direct Outbound",
+	title_zh: "Direct 出站",
+	description: "Direct outbound send requests directly.",
+	description_zh: "Direct 出站直接发送请求。"
+});
+
+//#endregion
+//#region src/schema/protocols/http.ts
+const HTTPUser = zod.z.object({
+	username: zod.z.string(),
+	password: zod.z.string()
+});
+const HTTPInboundOptions = zod.z.object({
+	type: zod.z.literal("http"),
+	tag: zod.z.string().optional(),
+	users: zod.z.array(HTTPUser).optional().meta({
+		description: "HTTP users.",
+		description_zh: "HTTP 用户。"
+	}),
+	tls: InboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	set_system_proxy: zod.z.boolean().optional().meta({
+		description: "Automatically set system proxy configuration.",
+		description_zh: "启动时自动设置系统代理，停止时自动清理。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "HTTPInboundOptions",
+	title: "HTTP Inbound",
+	title_zh: "HTTP 入站"
+});
+const HTTPOutboundOptions = zod.z.object({
+	type: zod.z.literal("http"),
+	tag: zod.z.string().optional(),
+	username: zod.z.string().optional().meta({
+		description: "Basic authorization username.",
+		description_zh: "Basic 认证用户名。"
+	}),
+	password: zod.z.string().optional().meta({
+		description: "Basic authorization password.",
+		description_zh: "Basic 认证密码。"
+	}),
+	path: zod.z.string().optional().meta({
+		description: "Path of HTTP request.",
+		description_zh: "HTTP 请求路径。"
+	}),
+	headers: HttpHeader.optional().meta({
+		description: "Extra headers of HTTP request.",
+		description_zh: "HTTP 请求的额外标头。"
+	}),
+	tls: OutboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "HTTPOutboundOptions",
+	title: "HTTP Outbound",
+	title_zh: "HTTP 出站",
+	description: "HTTP outbound is a HTTP CONNECT proxy client.",
+	description_zh: "HTTP 出站是一个 HTTP CONNECT 代理客户端。"
+});
+
+//#endregion
+//#region src/schema/protocols/hysteria.ts
+const HysteriaUser = zod.z.object({
+	name: zod.z.string().optional(),
+	auth: zod.z.array(zod.z.number()).optional().meta({
+		description: "Authentication password, in base64.",
+		description_zh: "base64 编码的认证密码。"
+	}),
+	auth_str: zod.z.string().optional().meta({
+		description: "Authentication password.",
+		description_zh: "认证密码。"
+	})
+});
+const HysteriaInboundOptions = zod.z.object({
+	type: zod.z.literal("hysteria"),
+	tag: zod.z.string().optional(),
+	up: zod.z.string().optional(),
+	up_mbps: zod.z.number().int().optional(),
+	down: zod.z.string().optional(),
+	down_mbps: zod.z.number().int().optional(),
+	obfs: zod.z.string().optional().meta({
+		description: "Obfuscated password.",
+		description_zh: "混淆密码。"
+	}),
+	users: zod.z.array(HysteriaUser).optional().meta({
+		description: "Hysteria users",
+		description_zh: "Hysteria 用户"
+	}),
+	recv_window_conn: zod.z.number().int().optional().meta({
+		description: "The QUIC stream-level flow control window for receiving data.",
+		description_zh: "用于接收数据的 QUIC 流级流控制窗口。"
+	}),
+	recv_window_client: zod.z.number().int().optional().meta({
+		description: "The QUIC connection-level flow control window for receiving data.",
+		description_zh: "用于接收数据的 QUIC 连接级流控制窗口。"
+	}),
+	max_conn_client: zod.z.number().int().optional().meta({
+		description: "The maximum number of QUIC concurrent bidirectional streams that a peer is allowed to open.",
+		description_zh: "允许对等点打开的 QUIC 并发双向流的最大数量。"
+	}),
+	disable_mtu_discovery: zod.z.boolean().optional().meta({
+		description: "Disables Path MTU Discovery (RFC 8899).",
+		description_zh: "禁用路径 MTU 发现 (RFC 8899)。"
+	}),
+	tls: InboundTLSOptions.optional(),
+	...ListenOptions.shape
+}).meta({
+	id: "HysteriaInboundOptions",
+	title: "Hysteria Inbound",
+	title_zh: "Hysteria 入站"
+});
+const HysteriaOutboundOptions = zod.z.object({
+	type: zod.z.literal("hysteria"),
+	tag: zod.z.string().optional(),
+	server_ports: zod.z.union([zod.z.string(), zod.z.array(zod.z.string())]).optional().meta({
+		description: "Server port range list.",
+		description_zh: "服务器端口范围列表。"
+	}),
+	hop_interval: zod.z.string().optional().meta({
+		description: "Port hopping interval.",
+		description_zh: "端口跳跃间隔。"
+	}),
+	up: zod.z.string().optional(),
+	up_mbps: zod.z.number().int().optional(),
+	down: zod.z.string().optional(),
+	down_mbps: zod.z.number().int().optional(),
+	obfs: zod.z.string().optional().meta({
+		description: "Obfuscated password.",
+		description_zh: "混淆密码。"
+	}),
+	auth: zod.z.array(zod.z.number()).optional().meta({
+		description: "Authentication password, in base64.",
+		description_zh: "base64 编码的认证密码。"
+	}),
+	auth_str: zod.z.string().optional().meta({
+		description: "Authentication password.",
+		description_zh: "认证密码。"
+	}),
+	recv_window_conn: zod.z.number().int().optional().meta({
+		description: "The QUIC stream-level flow control window for receiving data.",
+		description_zh: "用于接收数据的 QUIC 流级流控制窗口。"
+	}),
+	recv_window: zod.z.number().int().optional().meta({
+		description: "The QUIC connection-level flow control window for receiving data.",
+		description_zh: "用于接收数据的 QUIC 连接级流控制窗口。"
+	}),
+	disable_mtu_discovery: zod.z.boolean().optional().meta({
+		description: "Disables Path MTU Discovery (RFC 8899).",
+		description_zh: "禁用路径 MTU 发现 (RFC 8899)。"
+	}),
+	network: Network.optional().meta({
+		description: "Enabled network",
+		description_zh: "启用的网络协议。"
+	}),
+	tls: OutboundTLSOptions.optional(),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "HysteriaOutboundOptions",
+	title: "Hysteria Outbound",
+	title_zh: "Hysteria 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/hysteria2.ts
+const Hysteria2Obfs = zod.z.object({
+	type: zod.z.string().optional().meta({
+		description: "QUIC traffic obfuscator type, only available with `salamander`.",
+		description_zh: "QUIC 流量混淆器类型，仅可设为 `salamander`。"
+	}),
+	password: zod.z.string().optional().meta({
+		description: "QUIC traffic obfuscator password.",
+		description_zh: "QUIC 流量混淆器密码。"
+	})
+});
+const Hysteria2User = zod.z.object({
+	name: zod.z.string().optional(),
+	password: zod.z.string().optional().meta({
+		description: "Authentication password",
+		description_zh: "认证密码。"
+	})
+});
+const Hysteria2MasqueradeFile = zod.z.object({
+	type: zod.z.literal("file"),
+	directory: zod.z.string().meta({
+		description: "File server root directory.",
+		description_zh: "文件服务器根目录。"
+	})
+});
+const Hysteria2MasqueradeProxy = zod.z.object({
+	type: zod.z.literal("proxy"),
+	url: zod.z.string().meta({
+		description: "Reverse proxy target URL.",
+		description_zh: "反向代理目标 URL。"
+	}),
+	rewrite_host: zod.z.boolean().optional().meta({
+		description: "Rewrite the `Host` header to the target URL.",
+		description_zh: "重写请求头中的 Host 字段到目标 URL。"
+	})
+});
+const Hysteria2MasqueradeString = zod.z.object({
+	type: zod.z.literal("string"),
+	status_code: zod.z.number().int().optional().meta({
+		description: "Fixed response status code.",
+		description_zh: "固定响应状态码。"
+	}),
+	headers: HttpHeader.optional().meta({
+		description: "Fixed response headers.",
+		description_zh: "固定响应头。"
+	}),
+	content: zod.z.string().meta({
+		description: "Fixed response content.",
+		description_zh: "固定响应内容。"
+	})
+});
+const Hysteria2Masquerade = zod.z.discriminatedUnion("type", [
+	Hysteria2MasqueradeFile,
+	Hysteria2MasqueradeProxy,
+	Hysteria2MasqueradeString
+]).meta({
+	description: "HTTP3 server behavior (Object configuration) when authentication fails.",
+	description_zh: "HTTP3 服务器认证失败时的行为 （对象配置）。"
+});
+const Hysteria2InboundOptions = zod.z.object({
+	type: zod.z.literal("hysteria2"),
+	tag: zod.z.string().optional(),
+	up_mbps: zod.z.number().int().optional(),
+	down_mbps: zod.z.number().int().optional(),
+	obfs: Hysteria2Obfs.optional(),
+	users: zod.z.array(Hysteria2User).optional(),
+	ignore_client_bandwidth: zod.z.boolean().optional().meta({
+		description: "Commands clients to use the BBR CC instead of Hysteria CC.",
+		description_zh: "命令客户端使用 BBR 拥塞控制算法而不是 Hysteria CC。"
+	}),
+	tls: InboundTLSOptions.optional(),
+	masquerade: Hysteria2Masquerade.optional(),
+	brutal_debug: zod.z.boolean().optional().meta({
+		description: "Enable debug information logging for Hysteria Brutal CC.",
+		description_zh: "启用 Hysteria Brutal CC 的调试信息日志记录。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "Hysteria2InboundOptions",
+	title: "Hysteria2 Inbound",
+	title_zh: "Hysteria2 入站"
+});
+const Hysteria2OutboundOptions = zod.z.object({
+	type: zod.z.literal("hysteria2"),
+	tag: zod.z.string().optional(),
+	server_ports: zod.z.union([zod.z.string(), zod.z.array(zod.z.string())]).optional().meta({
+		description: "Server port range list.",
+		description_zh: "服务器端口范围列表。"
+	}),
+	hop_interval: zod.z.string().optional().meta({
+		description: "Port hopping interval.",
+		description_zh: "端口跳跃间隔。"
+	}),
+	up_mbps: zod.z.number().int().optional(),
+	down_mbps: zod.z.number().int().optional(),
+	obfs: Hysteria2Obfs.optional(),
+	password: zod.z.string().optional(),
+	network: Network.optional(),
+	tls: OutboundTLSOptions.optional(),
+	brutal_debug: zod.z.boolean().optional().meta({
+		description: "Enable debug information logging for Hysteria Brutal CC.",
+		description_zh: "启用 Hysteria Brutal CC 的调试信息日志记录。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "Hysteria2OutboundOptions",
+	title: "Hysteria2 Outbound",
+	title_zh: "Hysteria2 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/mixed.ts
+const MixedUser = zod.z.object({
+	username: zod.z.string(),
+	password: zod.z.string()
+});
+const MixedInboundOptions = zod.z.object({
+	type: zod.z.literal("mixed"),
+	tag: zod.z.string().optional(),
+	users: zod.z.array(MixedUser).optional().meta({
+		description: "SOCKS and HTTP users.",
+		description_zh: "SOCKS 和 HTTP 用户。"
+	}),
+	set_system_proxy: zod.z.boolean().optional().meta({
+		description: "Automatically set system proxy configuration.",
+		description_zh: "启动时自动设置系统代理，停止时自动清理。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "MixedInboundOptions",
+	title: "Mixed Inbound",
+	title_zh: "Mixed 入站",
+	description: "Mixed inbound is a socks4, socks4a, socks5 and http server.",
+	description_zh: "Mixed 入站是一个 socks4, socks4a, socks5 和 http 服务器。"
+});
+
+//#endregion
+//#region src/schema/protocols/naive.ts
+const NaiveUser = zod.z.object({
+	username: zod.z.string(),
+	password: zod.z.string()
+});
+const NaiveInboundOptions = zod.z.object({
+	type: zod.z.literal("naive"),
+	tag: zod.z.string().optional(),
+	network: Network.optional().meta({
+		description: "Listen network.",
+		description_zh: "监听的网络协议。"
+	}),
+	users: zod.z.array(NaiveUser).meta({
+		description: "Naive users.",
+		description_zh: "Naive 用户。"
+	}),
+	tls: InboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "NaiveInboundOptions",
+	title: "Naive Inbound",
+	title_zh: "Naive 入站"
+});
+
+//#endregion
+//#region src/schema/protocols/redirect.ts
+const RedirectInboundOptions = zod.z.object({
+	type: zod.z.literal("redirect"),
+	tag: zod.z.string().optional(),
+	...ListenOptions.shape
+}).meta({
+	id: "RedirectInboundOptions",
+	title: "Redirect Inbound",
+	title_zh: "Redirect 入站"
+});
+
+//#endregion
+//#region src/schema/protocols/shadowsocks.ts
+const ShadowsocksUser = zod.z.object({
+	name: zod.z.string(),
+	password: zod.z.string()
+});
+const ShadowsocksDestination = zod.z.object({
+	name: zod.z.string(),
+	password: zod.z.string(),
+	...ServerOptions.shape
+});
+const ShadowsocksInboundOptions = zod.z.object({
+	type: zod.z.literal("shadowsocks"),
+	tag: zod.z.string().optional(),
+	network: Network.optional().meta({
+		description: "Listen network, one of `tcp` `udp`.",
+		description_zh: "监听的网络协议，`tcp` `udp` 之一。"
+	}),
+	method: zod.z.string(),
+	password: zod.z.string().optional(),
+	users: zod.z.array(ShadowsocksUser).optional(),
+	destinations: zod.z.array(ShadowsocksDestination).optional(),
+	multiplex: InboundMultiplexOptions.optional(),
+	managed: zod.z.boolean().optional(),
+	...ListenOptions.shape
+}).meta({
+	id: "ShadowsocksInboundOptions",
+	title: "Shadowsocks Inbound",
+	title_zh: "Shadowsocks 入站"
+});
+const ShadowsocksOutboundOptions = zod.z.object({
+	type: zod.z.literal("shadowsocks"),
+	tag: zod.z.string().optional(),
+	method: zod.z.string(),
+	password: zod.z.string(),
+	plugin: zod.z.string().optional().meta({
+		description: "Shadowsocks SIP003 plugin, implemented in internal.",
+		description_zh: "Shadowsocks SIP003 插件，由内部实现。"
+	}),
+	plugin_opts: zod.z.string().optional().meta({
+		description: "Shadowsocks SIP003 plugin options.",
+		description_zh: "Shadowsocks SIP003 插件参数。"
+	}),
+	network: Network.optional().meta({
+		description: "Enabled network",
+		description_zh: "启用的网络协议。"
+	}),
+	udp_over_tcp: UDPOverTCPOptions.optional(),
+	multiplex: OutboundMultiplexOptions.optional(),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "ShadowsocksOutboundOptions",
+	title: "Shadowsocks Outbound",
+	title_zh: "Shadowsocks 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/shadowtls.ts
+const ShadowTLSUser = zod.z.object({
+	name: zod.z.string(),
+	password: zod.z.string()
+});
+const ShadowTLSHandshakeOptions = zod.z.object({
+	...ServerOptions.shape,
+	...DialerOptions.shape
+});
+const ShadowTLSInboundOptions = zod.z.object({
+	type: zod.z.literal("shadowtls"),
+	tag: zod.z.string().optional(),
+	version: zod.z.number().int().min(1).max(3).optional().meta({
+		description: "ShadowTLS protocol version.",
+		description_zh: "ShadowTLS 协议版本。"
+	}),
+	password: zod.z.string().optional().meta({
+		description: "ShadowTLS password.",
+		description_zh: "ShadowTLS 密码。"
+	}),
+	users: zod.z.array(ShadowTLSUser).optional().meta({
+		description: "ShadowTLS users.",
+		description_zh: "ShadowTLS 用户。"
+	}),
+	handshake: ShadowTLSHandshakeOptions,
+	handshake_for_server_name: zod.z.record(zod.z.string(), ShadowTLSHandshakeOptions).optional().meta({
+		description: "Handshake server address for specific server name.",
+		description_zh: "对于特定服务器名称的握手服务器地址。"
+	}),
+	strict_mode: zod.z.boolean().optional().meta({
+		description: "ShadowTLS strict mode.",
+		description_zh: "ShadowTLS 严格模式。"
+	}),
+	wildcard_sni: zod.z.enum([
+		"off",
+		"authed",
+		"all"
+	]).optional().meta({
+		description: "ShadowTLS wildcard SNI mode.",
+		description_zh: "ShadowTLS 通配符 SNI 模式。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "ShadowTLSInboundOptions",
+	title: "ShadowTLS Inbound",
+	title_zh: "ShadowTLS 入站"
+});
+const ShadowTLSOutboundOptions = zod.z.object({
+	type: zod.z.literal("shadowtls"),
+	tag: zod.z.string().optional(),
+	version: zod.z.number().int().min(1).max(3).optional().meta({
+		description: "ShadowTLS protocol version.",
+		description_zh: "ShadowTLS 协议版本。"
+	}),
+	password: zod.z.string().optional().meta({
+		description: "Set password.",
+		description_zh: "设置密码。"
+	}),
+	tls: OutboundTLSOptions.meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "ShadowTLSOutboundOptions",
+	title: "ShadowTLS Outbound",
+	title_zh: "ShadowTLS 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/socks.ts
+const SocksUser = zod.z.object({
+	username: zod.z.string(),
+	password: zod.z.string()
+});
+const SocksInboundOptions = zod.z.object({
+	type: zod.z.literal("socks"),
+	tag: zod.z.string().optional(),
+	users: zod.z.array(SocksUser).optional().meta({
+		description: "SOCKS users.",
+		description_zh: "SOCKS 用户。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "SocksInboundOptions",
+	title: "SOCKS Inbound",
+	title_zh: "SOCKS 入站",
+	description: "SOCKS inbound is a socks4, socks4a, socks5 server.",
+	description_zh: "SOCKS 入站是一个 socks4, socks4a 和 socks5 服务器。"
+});
+const SocksOutboundOptions = zod.z.object({
+	type: zod.z.literal("socks"),
+	tag: zod.z.string().optional(),
+	version: zod.z.enum([
+		"4",
+		"4a",
+		"5"
+	]).optional().meta({
+		description: "The SOCKS version.",
+		description_zh: "SOCKS 版本。"
+	}),
+	username: zod.z.string().optional().meta({
+		description: "SOCKS username.",
+		description_zh: "SOCKS 用户名。"
+	}),
+	password: zod.z.string().optional().meta({
+		description: "SOCKS5 password.",
+		description_zh: "SOCKS5 密码。"
+	}),
+	network: Network.optional().meta({
+		description: "Enabled network.",
+		description_zh: "启用的网络协议。"
+	}),
+	udp_over_tcp: zod.z.union([zod.z.boolean(), UDPOverTCPOptions]).optional().meta({
+		description: "UDP over TCP protocol settings.",
+		description_zh: "UDP over TCP 协议设置。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "SocksOutboundOptions",
+	title: "SOCKS Outbound",
+	title_zh: "SOCKS 出站",
+	description: "SOCKS outbound is a socks4/socks4a/socks5 client.",
+	description_zh: "SOCKS 出站是 socks4/socks4a/socks5 客户端。"
+});
+
+//#endregion
+//#region src/schema/protocols/tproxy.ts
+const TProxyInboundOptions = zod.z.object({
+	type: zod.z.literal("tproxy"),
+	tag: zod.z.string().optional(),
+	network: Network.optional().meta({
+		description: "Listen network, one of `tcp` `udp`. Both if empty.",
+		description_zh: "监听的网络协议，`tcp` `udp` 之一。默认所有。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "TProxyInboundOptions",
+	title: "TProxy Inbound",
+	title_zh: "TProxy 入站"
+});
+
+//#endregion
+//#region src/schema/protocols/trojan.ts
+const TrojanUser = zod.z.object({
+	name: zod.z.string(),
+	password: zod.z.string()
+});
+const TrojanInboundOptions = zod.z.object({
+	type: zod.z.literal("trojan"),
+	tag: zod.z.string().optional(),
+	users: zod.z.array(TrojanUser).optional().meta({
+		description: "Trojan users.",
+		description_zh: "Trojan 用户。"
+	}),
+	tls: InboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	fallback: ServerOptions.optional().meta({
+		description: "Fallback server configuration.",
+		description_zh: "回退服务器配置。"
+	}),
+	fallback_for_alpn: zod.z.record(zod.z.string(), ServerOptions).optional().meta({
+		description: "Fallback server configuration for specified ALPN.",
+		description_zh: "为 ALPN 指定回退服务器配置。"
+	}),
+	multiplex: InboundMultiplexOptions.optional().meta({
+		description: "Multiplex configuration.",
+		description_zh: "多路复用配置。"
+	}),
+	transport: V2RayTransportOptions.optional().meta({
+		description: "V2Ray Transport configuration.",
+		description_zh: "V2Ray 传输配置。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "TrojanInboundOptions",
+	title: "Trojan Inbound",
+	title_zh: "Trojan 入站"
+});
+const TrojanOutboundOptions = zod.z.object({
+	type: zod.z.literal("trojan"),
+	tag: zod.z.string().optional(),
+	password: zod.z.string().meta({
+		description: "The Trojan password.",
+		description_zh: "Trojan 密码。"
+	}),
+	network: Network.optional().meta({
+		description: "Enabled network.",
+		description_zh: "启用的网络协议。"
+	}),
+	tls: OutboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	multiplex: OutboundMultiplexOptions.optional().meta({
+		description: "Multiplex configuration.",
+		description_zh: "多路复用配置。"
+	}),
+	transport: V2RayTransportOptions.optional().meta({
+		description: "V2Ray Transport configuration.",
+		description_zh: "V2Ray 传输配置。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "TrojanOutboundOptions",
+	title: "Trojan Outbound",
+	title_zh: "Trojan 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/tuic.ts
+const TUICUser = zod.z.object({
+	name: zod.z.string().optional(),
+	uuid: zod.z.uuid().optional().meta({
+		description: "TUIC user uuid",
+		description_zh: "TUIC 用户 UUID"
+	}),
+	password: zod.z.string().optional().meta({
+		description: "TUIC user password",
+		description_zh: "TUIC 用户密码"
+	})
+});
+const TUICInboundOptions = zod.z.object({
+	type: zod.z.literal("tuic"),
+	tag: zod.z.string().optional(),
+	users: zod.z.array(TUICUser).optional(),
+	congestion_control: zod.z.string().optional().meta({
+		description: "QUIC congestion control algorithm",
+		description_zh: "QUIC 拥塞控制算法"
+	}),
+	auth_timeout: zod.z.string().optional().meta({
+		description: "How long the server should wait for the client to send the authentication command",
+		description_zh: "服务器等待客户端发送认证命令的时间"
+	}),
+	zero_rtt_handshake: zod.z.boolean().optional().meta({
+		description: "Enable 0-RTT QUIC connection handshake on the client side",
+		description_zh: "在客户端启用 0-RTT QUIC 连接握手"
+	}),
+	heartbeat: zod.z.string().optional().meta({
+		description: "Interval for sending heartbeat packets for keeping the connection alive",
+		description_zh: "发送心跳包以保持连接存活的时间间隔"
+	}),
+	tls: InboundTLSOptions.optional(),
+	...ListenOptions.shape
+}).meta({
+	id: "TUICInboundOptions",
+	title: "TUIC Inbound",
+	title_zh: "TUIC 入站"
+});
+const TUICOutboundOptions = zod.z.object({
+	type: zod.z.literal("tuic"),
+	tag: zod.z.string().optional(),
+	uuid: zod.z.uuid().optional().meta({
+		description: "TUIC user uuid",
+		description_zh: "TUIC 用户 UUID"
+	}),
+	password: zod.z.string().optional().meta({
+		description: "TUIC user password",
+		description_zh: "TUIC 用户密码"
+	}),
+	congestion_control: zod.z.string().optional().meta({
+		description: "QUIC congestion control algorithm",
+		description_zh: "QUIC 拥塞控制算法"
+	}),
+	udp_relay_mode: zod.z.string().optional().meta({
+		description: "UDP packet relay mode",
+		description_zh: "UDP 包中继模式"
+	}),
+	udp_over_stream: zod.z.boolean().optional().meta({
+		description: "This is the TUIC port of the UDP over TCP protocol, designed to provide a QUIC stream based UDP relay mode that TUIC does not provide.",
+		description_zh: "这是 TUIC 的 UDP over TCP 协议移植， 旨在提供 TUIC 不提供的 基于 QUIC 流的 UDP 中继模式。"
+	}),
+	zero_rtt_handshake: zod.z.boolean().optional().meta({
+		description: "Enable 0-RTT QUIC connection handshake on the client side",
+		description_zh: "在客户端启用 0-RTT QUIC 连接握手"
+	}),
+	heartbeat: zod.z.string().optional().meta({
+		description: "Interval for sending heartbeat packets for keeping the connection alive",
+		description_zh: "发送心跳包以保持连接存活的时间间隔"
+	}),
+	network: Network.optional(),
+	tls: OutboundTLSOptions.optional(),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "TUICOutboundOptions",
+	title: "TUIC Outbound",
+	title_zh: "TUIC 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/tun.ts
+const HTTPProxyOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable system HTTP proxy.",
+		description_zh: "启用系统 HTTP 代理。"
+	}),
+	server: zod.z.string().meta({
+		description: "HTTP proxy server address.",
+		description_zh: "系统 HTTP 代理服务器地址。"
+	}),
+	server_port: zod.z.number().int().meta({
+		description: "HTTP proxy server port.",
+		description_zh: "系统 HTTP 代理服务器端口。"
+	}),
+	bypass_domain: listableString.optional().meta({
+		description: "Hostnames that bypass the HTTP proxy.",
+		description_zh: "绕过代理的主机名列表。"
+	}),
+	match_domain: listableString.optional().meta({
+		description: "Hostnames that use the HTTP proxy.",
+		description_zh: "代理的主机名列表。"
+	})
+});
+const TunPlatformOptions = zod.z.object({ http_proxy: HTTPProxyOptions.optional().meta({
+	description: "System HTTP proxy settings.",
+	description_zh: "系统 HTTP 代理设置。"
+}) });
+const TunInboundOptions = zod.z.object({
+	type: zod.z.literal("tun"),
+	tag: zod.z.string().optional(),
+	interface_name: zod.z.string().optional().meta({
+		description: "Virtual device name, automatically selected if empty.",
+		description_zh: "虚拟设备名称，默认自动选择。"
+	}),
+	address: listableString.optional().meta({
+		description: "IPv4 and IPv6 prefix for the tun interface.",
+		description_zh: "tun 接口的 IPv4 和 IPv6 前缀。"
+	}),
+	mtu: zod.z.number().int().optional().meta({
+		description: "The maximum transmission unit.",
+		description_zh: "最大传输单元。"
+	}),
+	auto_route: zod.z.boolean().optional().meta({
+		description: "Set the default route to the Tun.",
+		description_zh: "设置到 Tun 的默认路由。"
+	}),
+	iproute2_table_index: zod.z.number().int().optional().meta({
+		description: "Linux iproute2 table index generated by `auto_route`.",
+		description_zh: "`auto_route` 生成的 iproute2 路由表索引。"
+	}),
+	iproute2_rule_index: zod.z.number().int().optional().meta({
+		description: "Linux iproute2 rule start index generated by `auto_route`.",
+		description_zh: "`auto_route` 生成的 iproute2 规则起始索引。"
+	}),
+	auto_redirect: zod.z.boolean().optional().meta({
+		description: "Improve TUN routing and performance using nftables.",
+		description_zh: "通过使用 nftables 改善 TUN 路由和性能。"
+	}),
+	auto_redirect_input_mark: FwMark.optional().meta({
+		description: "Connection input mark used by `auto_redirect`.",
+		description_zh: "`auto_redirect` 使用的连接输入标记。"
+	}),
+	auto_redirect_output_mark: FwMark.optional().meta({
+		description: "Connection output mark used by `auto_redirect`.",
+		description_zh: "`auto_redirect` 使用的连接输出标记。"
+	}),
+	loopback_address: listableString.optional().meta({
+		description: "Loopback addresses make TCP connections to the specified address connect to the source address.",
+		description_zh: "环回地址是用于使指向指定地址的 TCP 连接连接到来源地址的。"
+	}),
+	strict_route: zod.z.boolean().optional().meta({
+		description: "Enforce strict routing rules when `auto_route` is enabled.",
+		description_zh: "当启用 `auto_route` 时，强制执行严格的路由规则。"
+	}),
+	route_address: listableString.optional().meta({
+		description: "Use custom routes instead of default when `auto_route` is enabled.",
+		description_zh: "设置到 Tun 的自定义路由。"
+	}),
+	route_address_set: listableString.optional().meta({
+		description: "Add the destination IP CIDR rules in the specified rule-sets to the firewall.",
+		description_zh: "将指定规则集中的目标 IP CIDR 规则添加到防火墙。"
+	}),
+	route_exclude_address: listableString.optional().meta({
+		description: "Exclude custom routes when `auto_route` is enabled.",
+		description_zh: "设置到 Tun 的排除自定义路由。"
+	}),
+	route_exclude_address_set: listableString.optional().meta({
+		description: "Add the destination IP CIDR rules in the specified rule-sets to the firewall.",
+		description_zh: "将指定规则集中的目标 IP CIDR 规则添加到防火墙。"
+	}),
+	include_interface: listableString.optional().meta({
+		description: "Limit interfaces in route.",
+		description_zh: "限制被路由的接口。"
+	}),
+	exclude_interface: listableString.optional().meta({
+		description: "Exclude interfaces in route.",
+		description_zh: "排除路由的接口。"
+	}),
+	include_uid: listableInts.optional().meta({
+		description: "Limit users in route.",
+		description_zh: "限制被路由的用户。"
+	}),
+	include_uid_range: listableString.optional().meta({
+		description: "Limit users in route, but in range.",
+		description_zh: "限制被路由的用户范围。"
+	}),
+	exclude_uid: listableInts.optional().meta({
+		description: "Exclude users in route.",
+		description_zh: "排除路由的用户。"
+	}),
+	exclude_uid_range: listableString.optional().meta({
+		description: "Exclude users in route, but in range.",
+		description_zh: "排除路由的用户范围。"
+	}),
+	include_android_user: listableInts.optional().meta({
+		description: "Limit android users in route.",
+		description_zh: "限制被路由的 Android 用户。"
+	}),
+	include_package: listableString.optional().meta({
+		description: "Limit android packages in route.",
+		description_zh: "限制被路由的 Android 应用包名。"
+	}),
+	exclude_package: listableString.optional().meta({
+		description: "Exclude android packages in route.",
+		description_zh: "排除路由的 Android 应用包名。"
+	}),
+	stack: zod.z.enum([
+		"system",
+		"gvisor",
+		"mixed"
+	]).optional().meta({
+		description: "TCP/IP stack.",
+		description_zh: "TCP/IP 栈。"
+	}),
+	platform: TunPlatformOptions.optional().meta({
+		description: "Platform-specific settings, provided by client applications.",
+		description_zh: "平台特定的设置，由客户端应用提供。"
+	}),
+	gso: zod.z.boolean().optional().meta({
+		description: "Enable generic segmentation offload.",
+		description_zh: "启用通用分段卸载。",
+		deprecated: true
+	}),
+	inet4_address: listableString.optional().meta({
+		description: "IPv4 prefix for the tun interface.",
+		description_zh: "tun 接口的 IPv4 前缀。",
+		deprecated: true
+	}),
+	inet6_address: listableString.optional().meta({
+		description: "IPv6 prefix for the tun interface.",
+		description_zh: "tun 接口的 IPv6 前缀。",
+		deprecated: true
+	}),
+	inet4_route_address: listableString.optional().meta({
+		description: "Use custom routes instead of default when `auto_route` is enabled.",
+		description_zh: "启用 `auto_route` 时使用自定义路由而不是默认路由。",
+		deprecated: true
+	}),
+	inet6_route_address: listableString.optional().meta({
+		description: "Use custom routes instead of default when `auto_route` is enabled.",
+		description_zh: "启用 `auto_route` 时使用自定义路由而不是默认路由。",
+		deprecated: true
+	}),
+	inet4_route_exclude_address: listableString.optional().meta({
+		description: "Exclude custom routes when `auto_route` is enabled.",
+		description_zh: "启用 `auto_route` 时排除自定义路由。",
+		deprecated: true
+	}),
+	inet6_route_exclude_address: listableString.optional().meta({
+		description: "Exclude custom routes when `auto_route` is enabled.",
+		description_zh: "启用 `auto_route` 时排除自定义路由。",
+		deprecated: true
+	}),
+	endpoint_independent_nat: zod.z.boolean().optional().meta({
+		description: "Enable endpoint-independent NAT.",
+		description_zh: "启用独立于端点的 NAT。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "TunInboundOptions",
+	title: "Tun Inbound",
+	title_zh: "Tun 入站"
+});
+
+//#endregion
+//#region src/schema/protocols/vless.ts
+const VLESSUser = zod.z.object({
+	name: zod.z.string(),
+	uuid: zod.z.uuid(),
+	flow: zod.z.string().optional().meta({
+		description: "VLESS Sub-protocol.",
+		description_zh: "VLESS 子协议。"
+	})
+});
+const VLESSInboundOptions = zod.z.object({
+	type: zod.z.literal("vless"),
+	tag: zod.z.string().optional(),
+	users: zod.z.array(VLESSUser).optional().meta({
+		description: "VLESS users.",
+		description_zh: "VLESS 用户。"
+	}),
+	tls: InboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	multiplex: InboundMultiplexOptions.optional().meta({
+		description: "Multiplex configuration.",
+		description_zh: "多路复用配置。"
+	}),
+	transport: V2RayTransportOptions.optional().meta({
+		description: "V2Ray Transport configuration.",
+		description_zh: "V2Ray 传输配置。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "VLESSInboundOptions",
+	title: "VLESS Inbound",
+	title_zh: "VLESS 入站"
+});
+const VLESSOutboundOptions = zod.z.object({
+	type: zod.z.literal("vless"),
+	tag: zod.z.string().optional(),
+	uuid: zod.z.uuid().meta({
+		description: "VLESS user id.",
+		description_zh: "VLESS 用户 ID。"
+	}),
+	flow: zod.z.string().optional().meta({
+		description: "VLESS Sub-protocol.",
+		description_zh: "VLESS 子协议。"
+	}),
+	network: Network.optional().meta({
+		description: "Enabled network.",
+		description_zh: "启用的网络协议。"
+	}),
+	tls: OutboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	multiplex: OutboundMultiplexOptions.optional().meta({
+		description: "Multiplex configuration.",
+		description_zh: "多路复用配置。"
+	}),
+	transport: V2RayTransportOptions.optional().meta({
+		description: "V2Ray Transport configuration.",
+		description_zh: "V2Ray 传输配置。"
+	}),
+	packet_encoding: zod.z.string().optional().meta({
+		description: "UDP packet encoding, xudp is used by default.",
+		description_zh: "UDP 包编码，默认使用 xudp。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "VLESSOutboundOptions",
+	title: "VLESS Outbound",
+	title_zh: "VLESS 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/vmess.ts
+const VMessUser = zod.z.object({
+	name: zod.z.string(),
+	uuid: zod.z.uuid(),
+	alterId: zod.z.number().int().optional().meta({
+		description: "Alter ID.",
+		description_zh: "Alter ID。"
+	})
+});
+const VMessInboundOptions = zod.z.object({
+	type: zod.z.literal("vmess"),
+	tag: zod.z.string().optional(),
+	users: zod.z.array(VMessUser).optional().meta({
+		description: "VMess users.",
+		description_zh: "VMess 用户。"
+	}),
+	tls: InboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	multiplex: InboundMultiplexOptions.optional().meta({
+		description: "Multiplex configuration.",
+		description_zh: "多路复用配置。"
+	}),
+	transport: V2RayTransportOptions.optional().meta({
+		description: "V2Ray Transport configuration.",
+		description_zh: "V2Ray 传输配置。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "VMessInboundOptions",
+	title: "VMess Inbound",
+	title_zh: "VMess 入站"
+});
+const VMessOutboundOptions = zod.z.object({
+	type: zod.z.literal("vmess"),
+	tag: zod.z.string().optional(),
+	uuid: zod.z.uuid().meta({
+		description: "The VMess user id.",
+		description_zh: "VMess 用户 ID。"
+	}),
+	security: zod.z.string().meta({
+		description: "Encryption methods.",
+		description_zh: "加密方法。"
+	}),
+	alter_id: zod.z.number().int().optional().meta({
+		description: "Alter ID.",
+		description_zh: "Alter ID。"
+	}),
+	global_padding: zod.z.boolean().optional().meta({
+		description: "Protocol parameter. Will waste traffic randomly if enabled.",
+		description_zh: "协议参数。如果启用会随机浪费流量。"
+	}),
+	authenticated_length: zod.z.boolean().optional().meta({
+		description: "Protocol parameter. Enable length block encryption.",
+		description_zh: "协议参数。启用长度块加密。"
+	}),
+	network: Network.optional().meta({
+		description: "Enabled network.",
+		description_zh: "启用的网络协议。"
+	}),
+	tls: OutboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	packet_encoding: zod.z.string().optional().meta({
+		description: "UDP packet encoding.",
+		description_zh: "UDP 包编码。"
+	}),
+	multiplex: OutboundMultiplexOptions.optional().meta({
+		description: "Multiplex configuration.",
+		description_zh: "多路复用配置。"
+	}),
+	transport: V2RayTransportOptions.optional().meta({
+		description: "V2Ray Transport configuration.",
+		description_zh: "V2Ray 传输配置。"
+	}),
+	...DialerOptions.shape,
+	...ServerOptions.shape
+}).meta({
+	id: "VMessOutboundOptions",
+	title: "VMess Outbound",
+	title_zh: "VMess 出站"
+});
+
+//#endregion
+//#region src/schema/inbound.ts
+const Inbound = zod.z.discriminatedUnion("type", [
+	DirectInboundOptions,
+	MixedInboundOptions,
+	SocksInboundOptions,
+	HTTPInboundOptions,
+	ShadowsocksInboundOptions,
+	VMessInboundOptions,
+	TrojanInboundOptions,
+	NaiveInboundOptions,
+	HysteriaInboundOptions,
+	ShadowTLSInboundOptions,
+	Hysteria2InboundOptions,
+	AnyTLSInboundOptions,
+	VLESSInboundOptions,
+	TUICInboundOptions,
+	TunInboundOptions,
+	RedirectInboundOptions,
+	TProxyInboundOptions
+]).meta({
+	id: "Inbound",
+	title: "Inbound",
+	title_zh: "入站"
+});
+
+//#endregion
+//#region src/schema/log.ts
+/**
+* Log settings for sing-box.
+*/
+const LogOptions = zod.default.object({
+	disabled: zod.default.boolean().optional().meta({
+		description: "Disable logging, no output after start.",
+		description_zh: "禁用日志，启动后不输出日志。"
+	}),
+	level: zod.default.enum([
+		"trace",
+		"debug",
+		"info",
+		"warn",
+		"error",
+		"fatal",
+		"panic"
+	]).optional().meta({
+		description: "Log level. One of: `trace` `debug` `info` `warn` `error` `fatal` `panic`.",
+		description_zh: "日志等级，可选值：`trace` `debug` `info` `warn` `error` `fatal` `panic`。"
+	}),
+	output: zod.default.string().optional().meta({
+		description: "Output file path. Will not write log to console after enable.",
+		description_zh: "输出文件路径，启动后将不输出到控制台。"
+	}),
+	timestamp: zod.default.boolean().optional().meta({
+		description: "Add time to each line.",
+		description_zh: "添加时间到每行。"
+	})
+}).meta({
+	id: "LogOptions",
+	title: "Log",
+	title_zh: "日志",
+	description: "Log settings for sing-box.",
+	description_zh: "sing-box 日志设置。"
+});
+
+//#endregion
+//#region src/schema/ntp.ts
+const NTPOptions = zod.z.object({
+	enabled: zod.z.boolean().optional().meta({
+		description: "Enable NTP service.",
+		description_zh: "启用 NTP 服务。"
+	}),
+	interval: zod.z.string().optional().meta({
+		description: "Time synchronization interval.",
+		description_zh: "时间同步间隔。"
+	}),
+	write_to_system: zod.z.boolean().optional().meta({ description: "Write the updated time to the system." }),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "NTPOptions",
+	title: "NTP",
+	title_zh: "NTP",
+	description: "Built-in NTP client service.",
+	description_zh: "内建的 NTP 客户端服务。"
+});
+
+//#endregion
+//#region src/schema/groups/selector.ts
+const SelectorOutbound = zod.z.object({
+	type: zod.z.literal("selector"),
+	tag: zod.z.string(),
+	outbounds: zod.z.array(zod.z.string()).meta({
+		description: "List of outbound tags to select.",
+		description_zh: "用于选择的出站标签列表。"
+	}),
+	default: zod.z.string().optional().meta({
+		description: "The default outbound tag. The first outbound will be used if empty.",
+		description_zh: "默认的出站标签。默认使用第一个出站。"
+	}),
+	interrupt_exist_connections: zod.z.boolean().optional().meta({
+		description: "Interrupt existing connections when the selected outbound has changed.",
+		description_zh: "当选定的出站发生更改时，中断现有连接。"
+	})
+}).meta({
+	id: "SelectorOutbound",
+	title: "Selector Outbound",
+	title_zh: "选择器出站"
+});
+
+//#endregion
+//#region src/schema/groups/urltest.ts
+const URLTestOutbound = zod.z.object({
+	type: zod.z.literal("urltest"),
+	tag: zod.z.string(),
+	outbounds: zod.z.array(zod.z.string()).meta({
+		description: "List of outbound tags to test.",
+		description_zh: "用于测试的出站标签列表。"
+	}),
+	url: zod.z.string().url().optional().meta({
+		description: "The URL to test.",
+		description_zh: "用于测试的链接。"
+	}),
+	interval: zod.z.string().optional().meta({
+		description: "The test interval.",
+		description_zh: "测试间隔。"
+	}),
+	tolerance: zod.z.number().int().optional().meta({
+		description: "The test tolerance in milliseconds.",
+		description_zh: "以毫秒为单位的测试容差。"
+	}),
+	idle_timeout: zod.z.string().optional().meta({
+		description: "The idle timeout.",
+		description_zh: "空闲超时。"
+	}),
+	interrupt_exist_connections: zod.z.boolean().optional().meta({
+		description: "Interrupt existing connections when the selected outbound has changed.",
+		description_zh: "当选定的出站发生更改时，中断现有连接。"
+	})
+}).meta({
+	id: "URLTestOutbound",
+	title: "URLTest Outbound",
+	title_zh: "URLTest 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/shadowsocksr.ts
+const ShadowsocksROutboundOptions = zod.z.object({
+	type: zod.z.literal("shadowsocksr"),
+	tag: zod.z.string().optional(),
+	method: zod.z.string(),
+	password: zod.z.string(),
+	obfs: zod.z.string().optional(),
+	obfs_param: zod.z.string().optional(),
+	protocol: zod.z.string().optional(),
+	protocol_param: zod.z.string().optional(),
+	network: Network.optional(),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "ShadowsocksROutboundOptions",
+	title: "ShadowsocksR Outbound",
+	title_zh: "ShadowsocksR 出站",
+	deprecated: true
+});
+
+//#endregion
+//#region src/schema/protocols/ssh.ts
+const SSHOutboundOptions = zod.z.object({
+	type: zod.z.literal("ssh"),
+	tag: zod.z.string().optional(),
+	user: zod.z.string().optional().meta({
+		description: "SSH user, root will be used if empty.",
+		description_zh: "SSH 用户, 默认使用 root。"
+	}),
+	password: zod.z.string().optional().meta({
+		description: "Password.",
+		description_zh: "密码。"
+	}),
+	private_key: listableString.optional().meta({
+		description: "Private key.",
+		description_zh: "密钥。"
+	}),
+	private_key_path: zod.z.string().optional().meta({
+		description: "Private key path.",
+		description_zh: "密钥路径。"
+	}),
+	private_key_passphrase: zod.z.string().optional().meta({
+		description: "Private key passphrase.",
+		description_zh: "密钥密码。"
+	}),
+	host_key: listableString.optional().meta({
+		description: "Host key. Accept any if empty.",
+		description_zh: "主机密钥，留空接受所有。"
+	}),
+	host_key_algorithms: listableString.optional().meta({
+		description: "Host key algorithms.",
+		description_zh: "主机密钥算法。"
+	}),
+	client_version: zod.z.string().optional().meta({
+		description: "Client version. Random version will be used if empty.",
+		description_zh: "客户端版本，默认使用随机值。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "SSHOutboundOptions",
+	title: "SSH Outbound",
+	title_zh: "SSH 出站"
+});
+
+//#endregion
+//#region src/schema/protocols/tor.ts
+const TorOutboundOptions = zod.z.object({
+	type: zod.z.literal("tor"),
+	tag: zod.z.string().optional(),
+	executable_path: zod.z.string().optional().meta({
+		description: "The path to the Tor executable.",
+		description_zh: "Tor 可执行文件路径。"
+	}),
+	extra_args: zod.z.array(zod.z.string()).optional().meta({
+		description: "List of extra arguments passed to the Tor instance when started.",
+		description_zh: "启动 Tor 时传递的附加参数列表。"
+	}),
+	data_directory: zod.z.string().optional().meta({
+		description: "The data directory of Tor.",
+		description_zh: "Tor 的数据目录。"
+	}),
+	torrc: zod.z.record(zod.z.string(), zod.z.any()).optional().meta({
+		description: "Map of torrc options.",
+		description_zh: "torrc 参数表。"
+	}),
+	...DialerOptions.shape
+}).meta({
+	id: "TorOutboundOptions",
+	title: "Tor Outbound",
+	title_zh: "Tor 出站"
+});
+
+//#endregion
+//#region src/schema/outbound.ts
+const Outbound = zod.z.discriminatedUnion("type", [
+	DirectOutboundOptions,
+	SocksOutboundOptions,
+	HTTPOutboundOptions,
+	ShadowsocksOutboundOptions,
+	VMessOutboundOptions,
+	TrojanOutboundOptions,
+	LegacyWireGuardOutboundOptions,
+	HysteriaOutboundOptions,
+	ShadowTLSOutboundOptions,
+	AnyTLSOutboundOptions,
+	Hysteria2OutboundOptions,
+	TUICOutboundOptions,
+	VLESSOutboundOptions,
+	ShadowsocksROutboundOptions,
+	SSHOutboundOptions,
+	TorOutboundOptions,
+	SelectorOutbound,
+	URLTestOutbound
+]).meta({
+	id: "Outbound",
+	title: "Outbound",
+	title_zh: "出站"
+});
+
+//#endregion
+//#region src/schema/rules/route-rule.ts
+const RuleActionRouteOptions = zod.z.object({
+	override_address: zod.z.string().optional().meta({
+		description: "Override the connection destination address.",
+		description_zh: "覆盖连接目标地址。"
+	}),
+	override_port: zod.z.number().int().min(0).max(65535).optional().meta({
+		description: "Override the connection destination port.",
+		description_zh: "覆盖连接目标端口。"
+	}),
+	network_strategy: zod.z.enum([
+		"prefer_ipv4",
+		"prefer_ipv6",
+		"ipv4_only",
+		"ipv6_only"
+	]).optional().meta({
+		description: "See Dial Fields for details.",
+		description_zh: "详情参阅拨号字段。"
+	}),
+	fallback_delay: zod.z.string().optional().meta({
+		description: "See Dial Fields for details.",
+		description_zh: "详情参阅拨号字段。"
+	}),
+	udp_disable_domain_unmapping: zod.z.boolean().optional().meta({
+		description: "If enabled, for UDP proxy requests addressed to a domain, the original packet address will be sent in the response instead of the mapped domain.",
+		description_zh: "如果启用，对于地址为域的 UDP 代理请求，将在响应中发送原始包地址而不是映射的域。"
+	}),
+	udp_connect: zod.z.boolean().optional().meta({
+		description: "If enabled, attempts to connect UDP connection to the destination instead of listen.",
+		description_zh: "如果启用，将尝试将 UDP 连接 connect 到目标而不是 listen。"
+	}),
+	udp_timeout: zod.z.string().optional().meta({
+		description: "Timeout for UDP connections.",
+		description_zh: "UDP 连接超时时间。"
+	}),
+	tls_fragment: zod.z.boolean().optional().meta({
+		description: "Fragment TLS handshakes to bypass firewalls.",
+		description_zh: "通过分段 TLS 握手数据包来绕过防火墙检测。"
+	}),
+	tls_fragment_fallback_delay: zod.z.string().optional().meta({
+		description: "The fallback value used when TLS segmentation cannot automatically determine the wait time.",
+		description_zh: "当 TLS 分片功能无法自动判定等待时间时使用的回退值。"
+	}),
+	tls_record_fragment: zod.z.string().optional().meta({
+		description: "Fragment TLS handshake into multiple TLS records to bypass firewalls.",
+		description_zh: "通过分段 TLS 握手数据包到多个 TLS 记录来绕过防火墙检测。"
+	})
+}).meta({
+	id: "RuleActionRouteOptions",
+	title: "Rule Action Route Options",
+	title_zh: "规则动作路由选项"
+});
+const RuleActionSniff = zod.z.object({
+	action: zod.z.literal("sniff").meta({
+		description: "Performs protocol sniffing on connections.",
+		description_zh: "对连接执行协议嗅探。"
+	}),
+	sniffer: listableString.optional().meta({
+		description: "Enabled sniffers. All sniffers enabled by default.",
+		description_zh: "启用的探测器。默认启用所有探测器。"
+	}),
+	timeout: zod.z.string().optional().meta({
+		description: "Timeout for sniffing.",
+		description_zh: "探测超时时间。"
+	})
+}).meta({
+	id: "RuleActionSniff",
+	title: "Rule Action Sniff",
+	title_zh: "规则动作嗅探"
+});
+const RuleActionResolve = zod.z.object({
+	action: zod.z.literal("resolve").meta({
+		description: "Resolve request destination from domain to IP addresses.",
+		description_zh: "将请求的目标从域名解析为 IP 地址。"
+	}),
+	server: zod.z.string().optional().meta({
+		description: "Specifies DNS server tag to use instead of selecting through DNS routing.",
+		description_zh: "指定要使用的 DNS 服务器的标签，而不是通过 DNS 路由进行选择。"
+	}),
+	strategy: zod.z.enum([
+		"prefer_ipv4",
+		"prefer_ipv6",
+		"ipv4_only",
+		"ipv6_only"
+	]).optional().meta({
+		description: "DNS resolution strategy.",
+		description_zh: "DNS 解析策略。"
+	}),
+	disable_cache: zod.z.boolean().optional().meta({
+		description: "Disable cache and save cache in this query.",
+		description_zh: "在此查询中禁用缓存。"
+	}),
+	rewrite_ttl: zod.z.number().int().optional().nullable().meta({
+		description: "Rewrite TTL in DNS responses.",
+		description_zh: "重写 DNS 回应中的 TTL。"
+	}),
+	client_subnet: zod.z.string().optional().nullable().meta({
+		description: "Append a `edns0-subnet` OPT extra record with the specified IP prefix to every query by default.",
+		description_zh: "默认情况下，将带有指定 IP 前缀的 `edns0-subnet` OPT 附加记录附加到每个查询。"
+	})
+}).meta({
+	id: "RuleActionResolve",
+	title: "Rule Action Resolve",
+	title_zh: "规则动作解析"
+});
+const RuleActionRouteByDefault = zod.z.object({
+	outbound: zod.z.string().meta({
+		description: "Tag of target outbound.",
+		description_zh: "目标出站的标签。"
+	}),
+	...RuleActionRouteOptions.shape
+});
+const RuleActionRoute = zod.z.object({
+	action: zod.z.literal("route").meta({
+		description: "Action type.",
+		description_zh: "动作类型。"
+	}),
+	...RuleActionRouteByDefault.shape
+}).meta({
+	id: "RuleActionRoute",
+	title: "Rule Action Route",
+	title_zh: "规则动作路由"
+});
+const RuleActionReject = zod.z.object({
+	action: zod.z.literal("reject").meta({
+		description: "Action type.",
+		description_zh: "动作类型。"
+	}),
+	method: zod.z.enum(["default", "drop"]).optional().meta({
+		description: "`default`: Reply with TCP RST for TCP connections, and ICMP port unreachable for UDP packets. `drop`: Drop packets.",
+		description_zh: "`default`: 对于 TCP 连接回复 RST，对于 UDP 包回复 ICMP 端口不可达。`drop`: 丢弃数据包。"
+	}),
+	no_drop: zod.z.boolean().optional().meta({
+		description: "If not enabled, `method` will be temporarily overwritten to `drop` after 50 triggers in 30s.",
+		description_zh: "如果未启用，则 30 秒内触发 50 次后，`method` 将被暂时覆盖为 `drop`。"
+	})
+}).meta({
+	id: "RuleActionReject",
+	title: "Rule Action Reject",
+	title_zh: "规则动作拒绝"
+});
+const RuleActionHijackDNS = zod.z.object({ action: zod.z.literal("hijack-dns").meta({
+	description: "Action type.",
+	description_zh: "动作类型。"
+}) }).meta({
+	id: "RuleActionHijackDNS",
+	title: "Rule Action Hijack DNS",
+	title_zh: "规则动作劫持 DNS"
+});
+const RuleActionRouteOptionsWithAction = zod.z.object({
+	action: zod.z.literal("route-options").meta({
+		description: "Action type.",
+		description_zh: "动作类型。"
+	}),
+	...RuleActionRouteOptions.shape
+}).meta({
+	id: "RuleActionRouteOptionsWithAction",
+	title: "Rule Action Route Options With Action",
+	title_zh: "规则动作路由选项带动作"
+});
+const BaseRouteRule = zod.z.object({
+	inbound: listableString.optional().meta({
+		description: "Tags of Inbound.",
+		description_zh: "入站标签。"
+	}),
+	ip_version: zod.z.union([zod.z.literal(4), zod.z.literal(6)]).optional().meta({
+		description: "4 or 6. Not limited if empty.",
+		description_zh: "4 或 6。默认不限制。"
+	}),
+	network: listable(zod.z.enum(["tcp", "udp"])).optional().meta({
+		description: "`tcp` or `udp`.",
+		description_zh: "`tcp` 或 `udp`。"
+	}),
+	auth_user: listableString.optional().meta({
+		description: "Username, see each inbound for details.",
+		description_zh: "认证用户名，参阅入站设置。"
+	}),
+	protocol: listable(zod.z.enum([
+		"http",
+		"tls",
+		"quic",
+		"stun",
+		"dns",
+		"bittorrent",
+		"dtls",
+		"ssh",
+		"rdp",
+		"ntp"
+	])).optional().meta({
+		description: "Sniffed protocol.",
+		description_zh: "探测到的协议。"
+	}),
+	client: listable(zod.z.enum([
+		"chromium",
+		"safari",
+		"firefox",
+		"quic-go"
+	])).optional().meta({
+		description: "Sniffed client type.",
+		description_zh: "探测到的客户端类型。"
+	}),
+	domain: listableString.optional().meta({
+		description: "Match full domain.",
+		description_zh: "匹配完整域名。"
+	}),
+	domain_suffix: listableString.optional().meta({
+		description: "Match domain suffix.",
+		description_zh: "匹配域名后缀。"
+	}),
+	domain_keyword: listableString.optional().meta({
+		description: "Match domain using keyword.",
+		description_zh: "匹配域名关键字。"
+	}),
+	domain_regex: listableString.optional().meta({
+		description: "Match domain using regular expression.",
+		description_zh: "匹配域名正则表达式。"
+	}),
+	geosite: listableString.optional().meta({
+		description: "Match geosite.",
+		description_zh: "匹配 Geosite。",
+		deprecated: true
+	}),
+	source_geoip: listableString.optional().meta({
+		description: "Match source geoip.",
+		description_zh: "匹配源 GeoIP。",
+		deprecated: true
+	}),
+	geoip: listableString.optional().meta({
+		description: "Match geoip.",
+		description_zh: "匹配 GeoIP。",
+		deprecated: true
+	}),
+	source_ip_cidr: listableString.optional().meta({
+		description: "Match source IP CIDR.",
+		description_zh: "匹配源 IP CIDR。"
+	}),
+	source_ip_is_private: zod.z.boolean().optional().meta({
+		description: "Match non-public source IP.",
+		description_zh: "匹配非公开源 IP。"
+	}),
+	ip_cidr: listableString.optional().meta({
+		description: "Match IP CIDR.",
+		description_zh: "匹配 IP CIDR。"
+	}),
+	ip_is_private: zod.z.boolean().optional().meta({
+		description: "Match non-public IP.",
+		description_zh: "匹配非公开 IP。"
+	}),
+	source_port: listable(zod.z.number().int().min(0).max(65535)).optional().meta({
+		description: "Match source port.",
+		description_zh: "匹配源端口。"
+	}),
+	source_port_range: listableString.optional().meta({
+		description: "Match source port range.",
+		description_zh: "匹配源端口范围。"
+	}),
+	port: listable(zod.z.number().int().min(0).max(65535)).optional().meta({
+		description: "Match port.",
+		description_zh: "匹配端口。"
+	}),
+	port_range: listableString.optional().meta({
+		description: "Match port range.",
+		description_zh: "匹配端口范围。"
+	}),
+	process_name: listableString.optional().meta({
+		description: "Match process name.",
+		description_zh: "匹配进程名称。"
+	}),
+	process_path: listableString.optional().meta({
+		description: "Match process path.",
+		description_zh: "匹配进程路径。"
+	}),
+	process_path_regex: listableString.optional().meta({
+		description: "Match process path using regular expression.",
+		description_zh: "使用正则表达式匹配进程路径。"
+	}),
+	package_name: listableString.optional().meta({
+		description: "Match android package name.",
+		description_zh: "匹配 Android 应用包名。"
+	}),
+	user: listableString.optional().meta({
+		description: "Match user name.",
+		description_zh: "匹配用户名。"
+	}),
+	user_id: listableInts.optional().meta({
+		description: "Match user id.",
+		description_zh: "匹配用户 ID。"
+	}),
+	clash_mode: zod.z.string().optional().meta({
+		description: "Match Clash mode.",
+		description_zh: "匹配 Clash 模式。"
+	}),
+	network_type: listable(zod.z.enum([
+		"wifi",
+		"cellular",
+		"ethernet",
+		"other"
+	])).optional().meta({
+		description: "Match network type.",
+		description_zh: "匹配网络类型。"
+	}),
+	network_is_expensive: zod.z.boolean().optional().meta({
+		description: "Match if network is considered Metered.",
+		description_zh: "匹配如果网络被视为计费。"
+	}),
+	network_is_constrained: zod.z.boolean().optional().meta({
+		description: "Match if network is in Low Data Mode.",
+		description_zh: "匹配如果网络在低数据模式下。"
+	}),
+	wifi_ssid: listableString.optional().meta({
+		description: "Match WiFi SSID.",
+		description_zh: "匹配 WiFi SSID。"
+	}),
+	wifi_bssid: listableString.optional().meta({
+		description: "Match WiFi BSSID.",
+		description_zh: "匹配 WiFi BSSID。"
+	}),
+	rule_set: listableString.optional().meta({
+		description: "Match rule-set.",
+		description_zh: "匹配规则集。"
+	}),
+	rule_set_ip_cidr_match_source: zod.z.boolean().optional().meta({
+		description: "Make `ip_cidr` in rule-sets match the source IP.",
+		description_zh: "使规则集中的 `ip_cidr` 规则匹配源 IP。"
+	}),
+	rule_set_ipcidr_match_source: zod.z.boolean().optional().meta({
+		description: "Deprecated in sing-box 1.10.0. Renamed to `rule_set_ip_cidr_match_source`.",
+		description_zh: "已在 sing-box 1.10.0 废弃。已重命名为 `rule_set_ip_cidr_match_source`。",
+		deprecated: true
+	}),
+	invert: zod.z.boolean().optional().meta({
+		description: "Invert match result.",
+		description_zh: "反选匹配结果。"
+	})
+});
+const DefaultRouteRule = zod.z.union([
+	BaseRouteRule.extend(RuleActionRouteByDefault.shape),
+	BaseRouteRule.extend(RuleActionRoute.shape),
+	BaseRouteRule.extend(RuleActionReject.shape),
+	BaseRouteRule.extend(RuleActionHijackDNS.shape),
+	BaseRouteRule.extend(RuleActionRouteOptionsWithAction.shape),
+	BaseRouteRule.extend(RuleActionSniff.shape),
+	BaseRouteRule.extend(RuleActionResolve.shape)
+]);
+const LogicalRouteRule = zod.z.object({
+	type: zod.z.literal("logical").meta({
+		description: "Rule type.",
+		description_zh: "规则类型。"
+	}),
+	mode: zod.z.enum(["and", "or"]).meta({
+		description: "`and` or `or`.",
+		description_zh: "`and` 或 `or`。"
+	}),
+	get rules() {
+		return zod.z.array(RouteRule).optional().meta({
+			description: "Included rules.",
+			description_zh: "包括的规则。"
+		});
+	},
+	invert: zod.z.boolean().optional().meta({
+		description: "Invert match result.",
+		description_zh: "反选匹配结果。"
+	})
+}).meta({
+	id: "LogicalRouteRule",
+	title: "Logical Route Rule",
+	title_zh: "逻辑路由规则"
+});
+const RouteRule = zod.z.union([DefaultRouteRule, LogicalRouteRule]).meta({
+	id: "RouteRule",
+	title: "Route Rule",
+	title_zh: "路由规则"
+});
+
+//#endregion
+//#region src/schema/rules/rule-set.ts
+const DNSQueryType = zod.z.union([zod.z.string(), zod.z.number().int()]).meta({
+	description: "DNS query type. Values can be integers or type name strings.",
+	description_zh: "DNS 查询类型。值可以为整数或者类型名称字符串。"
+});
+const DefaultHeadlessRule = zod.z.object({
+	query_type: listable(DNSQueryType).optional().meta({
+		description: "DNS query type.",
+		description_zh: "DNS 查询类型。"
+	}),
+	network: listable(Network).optional().meta({
+		description: "`tcp` or `udp`.",
+		description_zh: "`tcp` 或 `udp`。"
+	}),
+	domain: listableString.optional().meta({
+		description: "Match full domain.",
+		description_zh: "匹配完整域名。"
+	}),
+	domain_suffix: listableString.optional().meta({
+		description: "Match domain suffix.",
+		description_zh: "匹配域名后缀。"
+	}),
+	domain_keyword: listableString.optional().meta({
+		description: "Match domain using keyword.",
+		description_zh: "匹配域名关键字。"
+	}),
+	domain_regex: listableString.optional().meta({
+		description: "Match domain using regular expression.",
+		description_zh: "匹配域名正则表达式。"
+	}),
+	source_ip_cidr: listableString.optional().meta({
+		description: "Match source IP CIDR.",
+		description_zh: "匹配源 IP CIDR。"
+	}),
+	ip_cidr: listableString.optional().meta({
+		description: "Match IP CIDR.",
+		description_zh: "匹配 IP CIDR。"
+	}),
+	source_port: listableInts.optional().meta({
+		description: "Match source port.",
+		description_zh: "匹配源端口。"
+	}),
+	source_port_range: listableString.optional().meta({
+		description: "Match source port range.",
+		description_zh: "匹配源端口范围。"
+	}),
+	port: listableInts.optional().meta({
+		description: "Match port.",
+		description_zh: "匹配端口。"
+	}),
+	port_range: listableString.optional().meta({
+		description: "Match port range.",
+		description_zh: "匹配端口范围。"
+	}),
+	process_name: listableString.optional().meta({
+		description: "Match process name.",
+		description_zh: "匹配进程名称。"
+	}),
+	process_path: listableString.optional().meta({
+		description: "Match process path.",
+		description_zh: "匹配进程路径。"
+	}),
+	process_path_regex: listableString.optional().meta({
+		description: "Match process path using regular expression.",
+		description_zh: "使用正则表达式匹配进程路径。"
+	}),
+	package_name: listableString.optional().meta({
+		description: "Match android package name.",
+		description_zh: "匹配 Android 应用包名。"
+	}),
+	network_type: listable(NetworkType).optional().meta({
+		description: "Match network type.",
+		description_zh: "匹配网络类型。"
+	}),
+	network_is_expensive: zod.z.boolean().optional().meta({
+		description: "Match if network is considered Metered.",
+		description_zh: "匹配如果网络被视为计费。"
+	}),
+	network_is_constrained: zod.z.boolean().optional().meta({
+		description: "Match if network is in Low Data Mode.",
+		description_zh: "匹配如果网络在低数据模式下。"
+	}),
+	wifi_ssid: listableString.optional().meta({
+		description: "Match WiFi SSID.",
+		description_zh: "匹配 WiFi SSID。"
+	}),
+	wifi_bssid: listableString.optional().meta({
+		description: "Match WiFi BSSID.",
+		description_zh: "匹配 WiFi BSSID。"
+	}),
+	invert: zod.z.boolean().optional().meta({
+		description: "Invert match result.",
+		description_zh: "反选匹配结果。"
+	})
+});
+const LogicalHeadlessRule = zod.z.object({
+	type: zod.z.literal("logical").meta({
+		description: "Rule type.",
+		description_zh: "规则类型。"
+	}),
+	mode: zod.z.enum(["and", "or"]).meta({
+		description: "`and` or `or`.",
+		description_zh: "`and` 或 `or`。"
+	}),
+	get rules() {
+		return zod.z.array(HeadlessRule).optional().meta({
+			description: "Included rules.",
+			description_zh: "包括的规则。"
+		});
+	},
+	invert: zod.z.boolean().optional().meta({
+		description: "Invert match result.",
+		description_zh: "反选匹配结果。"
+	})
+}).meta({
+	id: "LogicalHeadlessRule",
+	title: "Logical Headless Rule",
+	title_zh: "逻辑无头规则"
+});
+const HeadlessRule = zod.z.union([DefaultHeadlessRule, LogicalHeadlessRule]).meta({
+	id: "HeadlessRule",
+	title: "Headless Rule",
+	title_zh: "无头规则"
+});
+const InlineRuleSetOptions = zod.z.object({
+	type: zod.z.literal("inline").meta({
+		description: "Rule set type.",
+		description_zh: "规则集类型。"
+	}),
+	tag: zod.z.string().meta({
+		description: "Tag of rule-set.",
+		description_zh: "规则集的标签。"
+	}),
+	rules: zod.z.array(HeadlessRule).meta({
+		description: "List of Headless Rules.",
+		description_zh: "无头规则列表。"
+	})
+}).meta({
+	id: "InlineRuleSetOptions",
+	title: "Inline Rule Set Options",
+	title_zh: "内联规则集选项"
+});
+const LocalRuleSetOptions = zod.z.object({
+	type: zod.z.literal("local").meta({
+		description: "Rule set type.",
+		description_zh: "规则集类型。"
+	}),
+	tag: zod.z.string().meta({
+		description: "Tag of rule-set.",
+		description_zh: "规则集的标签。"
+	}),
+	format: zod.z.enum(["source", "binary"]).optional().meta({
+		description: "Format of rule-set file, `source` or `binary`.",
+		description_zh: "规则集文件格式，`source` 或 `binary`。"
+	}),
+	path: zod.z.string().meta({
+		description: "File path of rule-set.",
+		description_zh: "规则集的文件路径。"
+	})
+}).meta({
+	id: "LocalRuleSetOptions",
+	title: "Local Rule Set Options",
+	title_zh: "本地规则集选项"
+});
+const RemoteRuleSetOptions = zod.z.object({
+	type: zod.z.literal("remote").meta({
+		description: "Rule set type.",
+		description_zh: "规则集类型。"
+	}),
+	tag: zod.z.string().meta({
+		description: "Tag of rule-set.",
+		description_zh: "规则集的标签。"
+	}),
+	format: zod.z.enum(["source", "binary"]).optional().meta({
+		description: "Format of rule-set file, `source` or `binary`.",
+		description_zh: "规则集文件格式，`source` 或 `binary`。"
+	}),
+	url: zod.z.string().meta({
+		description: "Download URL of rule-set.",
+		description_zh: "规则集的下载 URL。"
+	}),
+	download_detour: zod.z.string().optional().meta({
+		description: "Tag of the outbound to download rule-set.",
+		description_zh: "用于下载规则集的出站的标签。"
+	}),
+	update_interval: zod.z.string().optional().meta({
+		description: "Update interval of rule-set.",
+		description_zh: "规则集的更新间隔。"
+	})
+}).meta({
+	id: "RemoteRuleSetOptions",
+	title: "Remote Rule Set Options",
+	title_zh: "远程规则集选项"
+});
+const RuleSet = zod.z.discriminatedUnion("type", [
+	InlineRuleSetOptions,
+	LocalRuleSetOptions,
+	RemoteRuleSetOptions
+]).meta({
+	id: "RuleSet",
+	title: "Rule Set",
+	title_zh: "规则集"
+});
+
+//#endregion
+//#region src/schema/route.ts
+const GeoIPOptions = zod.z.object({
+	path: zod.z.string().optional().meta({
+		description: "The path to the sing-geoip database.",
+		description_zh: "指定 GeoIP 资源的路径。"
+	}),
+	download_url: zod.z.string().optional().meta({
+		description: "The download URL of the sing-geoip database.",
+		description_zh: "指定 GeoIP 资源的下载链接。"
+	}),
+	download_detour: zod.z.string().optional().meta({
+		description: "The tag of the outbound to download the database.",
+		description_zh: "用于下载 GeoIP 资源的出站的标签。"
+	})
+}).meta({
+	id: "GeoIPOptions",
+	title: "GeoIP",
+	deprecated: true
+});
+const GeositeOptions = zod.z.object({
+	path: zod.z.string().optional().meta({
+		description: "The path to the sing-geosite database.",
+		description_zh: "指定 GeoSite 资源的路径。"
+	}),
+	download_url: zod.z.string().optional().meta({
+		description: "The download URL of the sing-geoip database.",
+		description_zh: "指定 GeoSite 资源的下载链接。"
+	}),
+	download_detour: zod.z.string().optional().meta({
+		description: "The tag of the outbound to download the database.",
+		description_zh: "用于下载 GeoSite 资源的出站的标签。"
+	})
+}).meta({
+	id: "GeositeOptions",
+	title: "Geosite",
+	deprecated: true
+});
+const RouteOptions = zod.z.object({
+	rules: listable(RouteRule).optional().meta({
+		description: "List of Route Rule",
+		description_zh: "一组路由规则"
+	}),
+	rule_set: listable(RuleSet).optional().meta({
+		description: "List of rule-set",
+		description_zh: "一组规则集"
+	}),
+	final: zod.z.string().optional().meta({
+		description: "Default outbound tag. the first outbound will be used if empty.",
+		description_zh: "默认出站标签。如果为空，将使用第一个可用于对应协议的出站。"
+	}),
+	find_process: zod.z.boolean().optional(),
+	auto_detect_interface: zod.z.boolean().optional().meta({
+		description: "Bind outbound connections to the default NIC by default to prevent routing loops under tun.",
+		description_zh: "默认将出站连接绑定到默认网卡，以防止在 tun 下出现路由环路。"
+	}),
+	override_android_vpn: zod.z.boolean().optional().meta({
+		description: "Accept Android VPN as upstream NIC when `auto_detect_interface` enabled.",
+		description_zh: "启用 `auto_detect_interface` 时接受 Android VPN 作为上游网卡。"
+	}),
+	default_interface: zod.z.string().optional().meta({
+		description: "Bind outbound connections to the specified NIC by default to prevent routing loops under tun.",
+		description_zh: "默认将出站连接绑定到指定网卡，以防止在 tun 下出现路由环路。"
+	}),
+	default_mark: FwMark.optional().meta({
+		description: "Set routing mark by default.",
+		description_zh: "默认为出站连接设置路由标记。"
+	}),
+	default_domain_resolver: zod.z.union([zod.z.string(), DomainResolverOptions]).optional().meta({
+		description: "Set domain resolver to use for resolving domain names.",
+		description_zh: "用于设置解析域名的域名解析器。"
+	}),
+	default_network_strategy: zod.z.union([zod.z.string(), NetworkStrategy]).optional().meta({
+		description: "Strategy for selecting network interfaces.",
+		description_zh: "用于选择网络接口的策略。"
+	}),
+	default_network_type: listable(NetworkType).optional().meta({
+		description: "Network types to use.",
+		description_zh: "要使用的网络类型。"
+	}),
+	default_fallback_network_type: listable(NetworkType).optional().meta({
+		description: "Fallback network types.",
+		description_zh: "备用网络类型。"
+	}),
+	default_fallback_delay: zod.z.string().optional().meta({
+		description: "The length of time to wait before spawning a RFC 6555 Fast Fallback connection.",
+		description_zh: "在生成 RFC 6555 快速回退连接之前等待的时间长度。"
+	}),
+	geoip: GeoIPOptions.optional(),
+	geosite: GeositeOptions.optional()
+}).meta({
+	id: "RouteOptions",
+	title: "Route",
+	title_zh: "路由"
+});
+
+//#endregion
+//#region src/schema/services/derp.ts
+const DERPVerifyClientURLOptions = zod.z.object({
+	url: zod.z.string().optional().meta({
+		description: "URL to verify clients.",
+		description_zh: "用于验证客户端的 URL。"
+	}),
+	...DialerOptions.shape
+}).meta({
+	id: "DERPVerifyClientURLOptions",
+	title: "DERP Verify Client URL Options",
+	title_zh: "DERP 验证客户端 URL 选项"
+});
+const DERPMeshOptions = zod.z.object({
+	host: zod.z.string().optional().meta({
+		description: "Custom DERP hostname.",
+		description_zh: "自定义 DERP 主机名。"
+	}),
+	tls: OutboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	...ServerOptions.shape,
+	...DialerOptions.shape
+}).meta({
+	id: "DERPMeshOptions",
+	title: "DERP Mesh Options",
+	title_zh: "DERP 网格选项"
+});
+const DERPSTUNListenOptions = zod.z.object({
+	enabled: zod.z.boolean().meta({
+		description: "Enable STUN server.",
+		description_zh: "启用 STUN 服务器。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "DERPSTUNListenOptions",
+	title: "DERP STUN Listen Options",
+	title_zh: "DERP STUN 监听选项"
+});
+/**
+* DERP service is a Tailscale DERP server.
+*/
+const DERPServiceOptions = zod.z.object({
+	type: zod.z.literal("derp"),
+	tag: zod.z.string().optional(),
+	tls: InboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	config_path: zod.z.string().meta({
+		description: "Derper configuration file path.",
+		description_zh: "Derper 配置文件路径。"
+	}),
+	verify_client_endpoint: listableString.optional().meta({
+		description: "Tailscale endpoints tags to verify clients.",
+		description_zh: "Tailscale 端点标签以验证客户端。"
+	}),
+	verify_client_url: listable(zod.z.union([zod.z.string(), DERPVerifyClientURLOptions])).optional().meta({
+		description: "URL to verify clients.",
+		description_zh: "用于验证客户端的 URL。"
+	}),
+	home: zod.z.string().optional().meta({
+		description: "What to serve at the root path. It may be left empty (the default, for a default homepage), `blank` for a blank page, or a URL to redirect to.",
+		description_zh: "根路径下提供什么。可以留空（默认，用于默认主页），`blank` 用于空白页，或重定向到的 URL。"
+	}),
+	mesh_with: listable(DERPMeshOptions).optional().meta({
+		description: "Mesh with other DERP servers.",
+		description_zh: "与其他 DERP 服务器网格。"
+	}),
+	mesh_psk: zod.z.string().optional().meta({
+		description: "Pre-shared key for DERP mesh.",
+		description_zh: "DERP 网格的预共享密钥。"
+	}),
+	mesh_psk_file: zod.z.string().optional().meta({
+		description: "Pre-shared key file for DERP mesh.",
+		description_zh: "DERP 网格的预共享密钥文件。"
+	}),
+	stun: zod.z.union([zod.z.number(), DERPSTUNListenOptions]).optional().meta({
+		description: "STUN server listen options.",
+		description_zh: "STUN 服务器监听选项。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "DERPServiceOptions",
+	title: "DERP",
+	title_zh: "DERP",
+	description: "DERP service is a Tailscale DERP server.",
+	description_zh: "DERP 服务是 Tailscale DERP 服务器。"
+});
+
+//#endregion
+//#region src/schema/services/resolved.ts
+/**
+* Resolved service is a fake systemd-resolved DBUS service.
+*/
+const ResolvedServiceOptions = zod.z.object({
+	type: zod.z.literal("resolved"),
+	tag: zod.z.string().optional(),
+	...ListenOptions.shape
+}).meta({
+	id: "ResolvedServiceOptions",
+	title: "Resolved",
+	title_zh: "Resolved",
+	description: "Resolved service is a fake systemd-resolved DBUS service to receive DNS settings from other programs (e.g. NetworkManager) and provide DNS resolution.",
+	description_zh: "Resolved 服务是一个伪造的 systemd-resolved DBUS 服务，用于从其他程序（例如 NetworkManager）接收 DNS 设置并提供 DNS 解析。"
+});
+
+//#endregion
+//#region src/schema/services/ssm-api.ts
+/**
+* SSM API service is a RESTful API server for managing Shadowsocks servers.
+*/
+const SSMAPIServiceOptions = zod.z.object({
+	type: zod.z.literal("ssm-api"),
+	servers: zod.z.record(zod.z.string(), zod.z.string()).meta({
+		description: "A mapping Object from HTTP endpoints to Shadowsocks Inbound tags.",
+		description_zh: "从 HTTP 端点到 Shadowsocks 入站标签的映射对象。"
+	}),
+	cache_path: zod.z.string().optional().meta({
+		description: "If set, when the server is about to stop, traffic and user state will be saved to the specified JSON file to be restored on the next startup.",
+		description_zh: "如果设置，当服务器即将停止时，流量和用户状态将保存到指定的 JSON 文件中，以便在下次启动时恢复。"
+	}),
+	tls: InboundTLSOptions.optional().meta({
+		description: "TLS configuration.",
+		description_zh: "TLS 配置。"
+	}),
+	...ListenOptions.shape
+}).meta({
+	id: "SSMAPIServiceOptions",
+	title: "SSM API",
+	title_zh: "SSM API",
+	description: "SSM API service is a RESTful API server for managing Shadowsocks servers.",
+	description_zh: "SSM API 服务是用于管理 Shadowsocks 服务器的 RESTful API 服务器。"
+});
+
+//#endregion
+//#region src/schema/service.ts
+const Service = zod.z.discriminatedUnion("type", [
+	DERPServiceOptions,
+	ResolvedServiceOptions,
+	SSMAPIServiceOptions
+]).meta({
+	id: "Service",
+	title: "Service",
+	title_zh: "服务"
+});
+
+//#endregion
+//#region src/schema/configuration.ts
+const Configuration = zod.z.object({
+	$schema: zod.z.string().optional(),
+	log: LogOptions.optional(),
+	dns: DNSOptions.optional(),
+	ntp: NTPOptions.optional(),
+	certificate: CertificateOptions.optional(),
+	endpoints: zod.z.array(Endpoint).optional(),
+	inbounds: zod.z.array(Inbound).optional(),
+	outbounds: zod.z.array(Outbound).optional(),
+	route: RouteOptions.optional(),
+	services: zod.z.array(Service).optional(),
+	experimental: ExperimentalOptions.optional()
+}).meta({
+	id: "Configuration",
+	title: "Sing-box v1.12.2 Configuration",
+	title_zh: "Sing-box v1.12.2 配置文件",
+	description: "Sing-box v1.12.2 Configuration file schema.",
+	description_zh: "Sing-box v1.12.2 配置文件定义。",
+	version: "1.12.2"
+});
+
+//#endregion
+exports.CertificateOptions = CertificateOptions;
+exports.Configuration = Configuration;
+exports.DHCPDNSServerOptions = DHCPDNSServerOptions;
+exports.DNSClientOptions = DNSClientOptions;
+exports.DNSOptions = DNSOptions;
+exports.DNSRule = DNSRule;
+exports.DNSServer = DNSServer;
+exports.DialerOptions = DialerOptions;
+exports.DirectInboundOptions = DirectInboundOptions;
+exports.DirectOutboundOptions = DirectOutboundOptions;
+exports.DomainResolverOptions = DomainResolverOptions;
+exports.DomainStrategy = DomainStrategy;
+exports.Endpoint = Endpoint;
+exports.ExperimentalOptions = ExperimentalOptions;
+exports.FakeIPDNSServerOptions = FakeIPDNSServerOptions;
+exports.FwMark = FwMark;
+exports.GeoIPOptions = GeoIPOptions;
+exports.GeositeOptions = GeositeOptions;
+exports.HTTP3DNSServerOptions = HTTP3DNSServerOptions;
+exports.HTTPInboundOptions = HTTPInboundOptions;
+exports.HTTPOutboundOptions = HTTPOutboundOptions;
+exports.HTTPProxyOptions = HTTPProxyOptions;
+exports.HTTPSDNSServerOptions = HTTPSDNSServerOptions;
+exports.HeadlessRule = HeadlessRule;
+exports.HostsDNSServerOptions = HostsDNSServerOptions;
+exports.HttpHeader = HttpHeader;
+exports.Hysteria2InboundOptions = Hysteria2InboundOptions;
+exports.Hysteria2Masquerade = Hysteria2Masquerade;
+exports.Hysteria2Obfs = Hysteria2Obfs;
+exports.Hysteria2OutboundOptions = Hysteria2OutboundOptions;
+exports.Hysteria2User = Hysteria2User;
+exports.HysteriaInboundOptions = HysteriaInboundOptions;
+exports.HysteriaOutboundOptions = HysteriaOutboundOptions;
+exports.HysteriaUser = HysteriaUser;
+exports.Inbound = Inbound;
+exports.InboundMultiplexOptions = InboundMultiplexOptions;
+exports.InboundOptions = InboundOptions;
+exports.InboundTLSOptions = InboundTLSOptions;
+exports.IpVersion = IpVersion;
+exports.LegacyDNSFakeIPOptions = LegacyDNSFakeIPOptions;
+exports.LegacyWireGuardOutboundOptions = LegacyWireGuardOutboundOptions;
+exports.LegacyWireGuardPeer = LegacyWireGuardPeer;
+exports.ListenOptions = ListenOptions;
+exports.LocalDNSServerOptions = LocalDNSServerOptions;
+exports.LogOptions = LogOptions;
+exports.MixedInboundOptions = MixedInboundOptions;
+exports.NTPOptions = NTPOptions;
+exports.NaiveInboundOptions = NaiveInboundOptions;
+exports.Network = Network;
+exports.NetworkStrategy = NetworkStrategy;
+exports.NetworkType = NetworkType;
+exports.Outbound = Outbound;
+exports.OutboundMultiplexOptions = OutboundMultiplexOptions;
+exports.OutboundTLSOptions = OutboundTLSOptions;
+exports.QUICDNSServerOptions = QUICDNSServerOptions;
+exports.RedirectInboundOptions = RedirectInboundOptions;
+exports.ResolvedDNSServerOptions = ResolvedDNSServerOptions;
+exports.RouteOptions = RouteOptions;
+exports.RouteRule = RouteRule;
+exports.RuleSet = RuleSet;
+exports.SSHOutboundOptions = SSHOutboundOptions;
+exports.SelectorOutbound = SelectorOutbound;
+exports.ServerOptions = ServerOptions;
+exports.Service = Service;
+exports.ShadowsocksDestination = ShadowsocksDestination;
+exports.ShadowsocksInboundOptions = ShadowsocksInboundOptions;
+exports.ShadowsocksOutboundOptions = ShadowsocksOutboundOptions;
+exports.ShadowsocksROutboundOptions = ShadowsocksROutboundOptions;
+exports.ShadowsocksUser = ShadowsocksUser;
+exports.SocksInboundOptions = SocksInboundOptions;
+exports.SocksOutboundOptions = SocksOutboundOptions;
+exports.TCPDNSServerOptions = TCPDNSServerOptions;
+exports.TLSDNSServerOptions = TLSDNSServerOptions;
+exports.TProxyInboundOptions = TProxyInboundOptions;
+exports.TUICInboundOptions = TUICInboundOptions;
+exports.TUICOutboundOptions = TUICOutboundOptions;
+exports.TUICUser = TUICUser;
+exports.Tag = Tag;
+exports.TailscaleDNSServerOptions = TailscaleDNSServerOptions;
+exports.TailscaleEndpointOptions = TailscaleEndpointOptions;
+exports.TorOutboundOptions = TorOutboundOptions;
+exports.TrojanInboundOptions = TrojanInboundOptions;
+exports.TrojanOutboundOptions = TrojanOutboundOptions;
+exports.TrojanUser = TrojanUser;
+exports.TunInboundOptions = TunInboundOptions;
+exports.TunPlatformOptions = TunPlatformOptions;
+exports.UDPDNSServerOptions = UDPDNSServerOptions;
+exports.UDPOverTCPOptions = UDPOverTCPOptions;
+exports.URLTestOutbound = URLTestOutbound;
+exports.V2RayTransportOptions = V2RayTransportOptions;
+exports.VLESSInboundOptions = VLESSInboundOptions;
+exports.VLESSOutboundOptions = VLESSOutboundOptions;
+exports.VLESSUser = VLESSUser;
+exports.VMessInboundOptions = VMessInboundOptions;
+exports.VMessOutboundOptions = VMessOutboundOptions;
+exports.VMessUser = VMessUser;
+exports.WireGuardEndpointOptions = WireGuardEndpointOptions;
+exports.WireGuardPeer = WireGuardPeer;