npm - @bubblelab/bubble-core - Versions diffs - 0.1.0 - Mend

@bubblelab/bubble-core 0.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (275) hide show

package/dist/bubbles/service-bubble/postgresql.d.ts ADDED Viewed

@@ -0,0 +1,180 @@
+import { z } from 'zod';
+import { ServiceBubble } from '../../types/service-bubble-class.js';
+import type { BubbleContext } from '../../types/bubble.js';
+import { CredentialType, type DatabaseMetadata } from '@bubblelab/shared-schemas';
+export declare const SqlOperations: z.ZodEnum<["SELECT", "INSERT", "UPDATE", "DELETE", "WITH", "EXPLAIN", "ANALYZE", "SHOW", "DESCRIBE", "DESC", "CREATE"]>;
+declare const PostgreSQLParamsSchema: z.ZodObject<{
+    ignoreSSL: z.ZodDefault<z.ZodBoolean>;
+    query: z.ZodEffects<z.ZodString, string, string>;
+    allowedOperations: z.ZodDefault<z.ZodArray<z.ZodEnum<["SELECT", "INSERT", "UPDATE", "DELETE", "WITH", "EXPLAIN", "ANALYZE", "SHOW", "DESCRIBE", "DESC", "CREATE"]>, "many">>;
+    parameters: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodUnknown, "many">>>;
+    timeout: z.ZodDefault<z.ZodNumber>;
+    maxRows: z.ZodDefault<z.ZodNumber>;
+    credentials: z.ZodOptional<z.ZodRecord<z.ZodNativeEnum<typeof CredentialType>, z.ZodString>>;
+}, "strip", z.ZodTypeAny, {
+    parameters: unknown[];
+    timeout: number;
+    ignoreSSL: boolean;
+    query: string;
+    allowedOperations: ("SELECT" | "INSERT" | "UPDATE" | "DELETE" | "WITH" | "EXPLAIN" | "ANALYZE" | "SHOW" | "DESCRIBE" | "DESC" | "CREATE")[];
+    maxRows: number;
+    credentials?: Partial<Record<CredentialType, string>> | undefined;
+}, {
+    query: string;
+    parameters?: unknown[] | undefined;
+    credentials?: Partial<Record<CredentialType, string>> | undefined;
+    timeout?: number | undefined;
+    ignoreSSL?: boolean | undefined;
+    allowedOperations?: ("SELECT" | "INSERT" | "UPDATE" | "DELETE" | "WITH" | "EXPLAIN" | "ANALYZE" | "SHOW" | "DESCRIBE" | "DESC" | "CREATE")[] | undefined;
+    maxRows?: number | undefined;
+}>;
+type PostgreSQLParamsInput = z.input<typeof PostgreSQLParamsSchema>;
+type PostgreSQLParams = z.output<typeof PostgreSQLParamsSchema>;
+declare const PostgreSQLResultSchema: z.ZodObject<{
+    rows: z.ZodArray<z.ZodRecord<z.ZodString, z.ZodUnknown>, "many">;
+    rowCount: z.ZodNullable<z.ZodNumber>;
+    command: z.ZodString;
+    fields: z.ZodOptional<z.ZodArray<z.ZodObject<{
+        name: z.ZodString;
+        dataTypeID: z.ZodNumber;
+    }, "strip", z.ZodTypeAny, {
+        name: string;
+        dataTypeID: number;
+    }, {
+        name: string;
+        dataTypeID: number;
+    }>, "many">>;
+    executionTime: z.ZodNumber;
+    success: z.ZodBoolean;
+    error: z.ZodString;
+    cleanedJSONString: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    success: boolean;
+    error: string;
+    rows: Record<string, unknown>[];
+    rowCount: number | null;
+    command: string;
+    executionTime: number;
+    cleanedJSONString: string;
+    fields?: {
+        name: string;
+        dataTypeID: number;
+    }[] | undefined;
+}, {
+    success: boolean;
+    error: string;
+    rows: Record<string, unknown>[];
+    rowCount: number | null;
+    command: string;
+    executionTime: number;
+    cleanedJSONString: string;
+    fields?: {
+        name: string;
+        dataTypeID: number;
+    }[] | undefined;
+}>;
+type PostgreSQLResult = z.output<typeof PostgreSQLResultSchema>;
+export declare class PostgreSQLBubble extends ServiceBubble<PostgreSQLParams, PostgreSQLResult> {
+    testCredential(): Promise<boolean>;
+    static readonly type: "service";
+    static readonly service = "postgresql";
+    static readonly authType: "connection-string";
+    static readonly bubbleName = "postgresql";
+    static readonly schema: z.ZodObject<{
+        ignoreSSL: z.ZodDefault<z.ZodBoolean>;
+        query: z.ZodEffects<z.ZodString, string, string>;
+        allowedOperations: z.ZodDefault<z.ZodArray<z.ZodEnum<["SELECT", "INSERT", "UPDATE", "DELETE", "WITH", "EXPLAIN", "ANALYZE", "SHOW", "DESCRIBE", "DESC", "CREATE"]>, "many">>;
+        parameters: z.ZodDefault<z.ZodOptional<z.ZodArray<z.ZodUnknown, "many">>>;
+        timeout: z.ZodDefault<z.ZodNumber>;
+        maxRows: z.ZodDefault<z.ZodNumber>;
+        credentials: z.ZodOptional<z.ZodRecord<z.ZodNativeEnum<typeof CredentialType>, z.ZodString>>;
+    }, "strip", z.ZodTypeAny, {
+        parameters: unknown[];
+        timeout: number;
+        ignoreSSL: boolean;
+        query: string;
+        allowedOperations: ("SELECT" | "INSERT" | "UPDATE" | "DELETE" | "WITH" | "EXPLAIN" | "ANALYZE" | "SHOW" | "DESCRIBE" | "DESC" | "CREATE")[];
+        maxRows: number;
+        credentials?: Partial<Record<CredentialType, string>> | undefined;
+    }, {
+        query: string;
+        parameters?: unknown[] | undefined;
+        credentials?: Partial<Record<CredentialType, string>> | undefined;
+        timeout?: number | undefined;
+        ignoreSSL?: boolean | undefined;
+        allowedOperations?: ("SELECT" | "INSERT" | "UPDATE" | "DELETE" | "WITH" | "EXPLAIN" | "ANALYZE" | "SHOW" | "DESCRIBE" | "DESC" | "CREATE")[] | undefined;
+        maxRows?: number | undefined;
+    }>;
+    static readonly resultSchema: z.ZodObject<{
+        rows: z.ZodArray<z.ZodRecord<z.ZodString, z.ZodUnknown>, "many">;
+        rowCount: z.ZodNullable<z.ZodNumber>;
+        command: z.ZodString;
+        fields: z.ZodOptional<z.ZodArray<z.ZodObject<{
+            name: z.ZodString;
+            dataTypeID: z.ZodNumber;
+        }, "strip", z.ZodTypeAny, {
+            name: string;
+            dataTypeID: number;
+        }, {
+            name: string;
+            dataTypeID: number;
+        }>, "many">>;
+        executionTime: z.ZodNumber;
+        success: z.ZodBoolean;
+        error: z.ZodString;
+        cleanedJSONString: z.ZodString;
+    }, "strip", z.ZodTypeAny, {
+        success: boolean;
+        error: string;
+        rows: Record<string, unknown>[];
+        rowCount: number | null;
+        command: string;
+        executionTime: number;
+        cleanedJSONString: string;
+        fields?: {
+            name: string;
+            dataTypeID: number;
+        }[] | undefined;
+    }, {
+        success: boolean;
+        error: string;
+        rows: Record<string, unknown>[];
+        rowCount: number | null;
+        command: string;
+        executionTime: number;
+        cleanedJSONString: string;
+        fields?: {
+            name: string;
+            dataTypeID: number;
+        }[] | undefined;
+    }>;
+    static readonly shortDescription = "Execute PostgreSQL queries with operation validation";
+    static readonly longDescription = "\n    Execute SQL queries against PostgreSQL databases with proper validation and security controls.\n    Use cases:\n    - Data retrieval with SELECT queries\n    - Data manipulation with INSERT, UPDATE, DELETE (when explicitly allowed)\n    - Database reporting and analytics\n    - Data migration and synchronization tasks\n    - JSON string output for integration with other systems\n    \n    Security Features:\n    - Operation whitelist (defaults to SELECT only)\n    - Parameterized queries to prevent SQL injection\n    - Connection timeout controls\n    - Result sanitization for JSON output\n  ";
+    static readonly alias = "pg";
+    constructor(params?: PostgreSQLParamsInput, context?: BubbleContext);
+    protected performAction(context?: BubbleContext): Promise<PostgreSQLResult>;
+    getCredentialMetadata(): Promise<DatabaseMetadata | undefined>;
+    /**
+     * Validate that the SQL query operation is allowed
+     */
+    private validateSqlOperation;
+    /**
+     * Validate parameter usage to encourage parameterized queries
+     */
+    private validateParameterUsage;
+    /**
+     * Validate parentheses and quotes are balanced
+     */
+    private validateParenthesesBalance;
+    /**
+     * Clean and format query results as a JSON string
+     */
+    private cleanJSONString;
+    /**
+     * Clean an object by handling special values and preventing circular references
+     */
+    private cleanObject;
+    protected chooseCredential(): string | undefined;
+}
+export {};
+//# sourceMappingURL=postgresql.d.ts.map

package/dist/bubbles/service-bubble/postgresql.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"postgresql.d.ts","sourceRoot":"","sources":["../../../src/bubbles/service-bubble/postgresql.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,aAAa,EAAE,MAAM,qCAAqC,CAAC;AACpE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AAC3D,OAAO,EACL,cAAc,EACd,KAAK,gBAAgB,EACtB,MAAM,2BAA2B,CAAC;AAInC,eAAO,MAAM,aAAa,yHAYxB,CAAC;AAGH,QAAA,MAAM,sBAAsB;;;;;;;;;;;;;;;;;;;;;;;;EA2F1B,CAAC;AAEH,KAAK,qBAAqB,GAAG,CAAC,CAAC,KAAK,CAAC,OAAO,sBAAsB,CAAC,CAAC;AACpE,KAAK,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAGhE,QAAA,MAAM,sBAAsB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAmC1B,CAAC;AAEH,KAAK,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,sBAAsB,CAAC,CAAC;AAahE,qBAAa,gBAAiB,SAAQ,aAAa,CACjD,gBAAgB,EAChB,gBAAgB,CACjB;IACc,cAAc,IAAI,OAAO,CAAC,OAAO,CAAC;IAe/C,MAAM,CAAC,QAAQ,CAAC,IAAI,EAAG,SAAS,CAAU;IAC1C,MAAM,CAAC,QAAQ,CAAC,OAAO,gBAAgB;IACvC,MAAM,CAAC,QAAQ,CAAC,QAAQ,EAAG,mBAAmB,CAAU;IAExD,MAAM,CAAC,QAAQ,CAAC,UAAU,gBAAgB;IAC1C,MAAM,CAAC,QAAQ,CAAC,MAAM;;;;;;;;;;;;;;;;;;;;;;;;OAA0B;IAChD,MAAM,CAAC,QAAQ,CAAC,YAAY;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;OAA0B;IACtD,MAAM,CAAC,QAAQ,CAAC,gBAAgB,0DACyB;IACzD,MAAM,CAAC,QAAQ,CAAC,eAAe,mmBAc7B;IACF,MAAM,CAAC,QAAQ,CAAC,KAAK,QAAQ;gBAG3B,MAAM,GAAE,qBAMP,EACD,OAAO,CAAC,EAAE,aAAa;cAST,aAAa,CAC3B,OAAO,CAAC,EAAE,aAAa,GACtB,OAAO,CAAC,gBAAgB,CAAC;IAkEtB,qBAAqB,IAAI,OAAO,CAAC,gBAAgB,GAAG,SAAS,CAAC;IAiEpE;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAuD5B;;OAEG;IACH,OAAO,CAAC,sBAAsB;IAmB9B;;OAEG;IACH,OAAO,CAAC,0BAA0B;IAmClC;;OAEG;IACH,OAAO,CAAC,eAAe;IAcvB;;OAEG;IACH,OAAO,CAAC,WAAW;IA2CnB,SAAS,CAAC,gBAAgB,IAAI,MAAM,GAAG,SAAS;CAWjD"}

package/dist/bubbles/service-bubble/postgresql.js ADDED Viewed

@@ -0,0 +1,448 @@
+import { z } from 'zod';
+import { ServiceBubble } from '../../types/service-bubble-class.js';
+import { CredentialType, } from '@bubblelab/shared-schemas';
+import { Pool } from 'pg';
+// Define available SQL operations
+export const SqlOperations = z.enum([
+    'SELECT',
+    'INSERT',
+    'UPDATE',
+    'DELETE',
+    'WITH', // Common Table Expressions for complex analysis
+    'EXPLAIN', // Query execution plans for optimization
+    'ANALYZE', // Table statistics for analysis
+    'SHOW', // Show database/table information
+    'DESCRIBE', // Describe table structure
+    'DESC', // Alias for DESCRIBE
+    'CREATE', // Allow CREATE TEMPORARY for analysis
+]);
+// Define the parameters schema for the PostgreSQL bubble
+const PostgreSQLParamsSchema = z.object({
+    ignoreSSL: z
+        .boolean()
+        .default(true)
+        .describe('Ignore SSL certificate errors when connecting to the database'),
+    query: z
+        .string()
+        .min(1, 'Query is required')
+        .refine((query) => {
+        // Basic SQL injection patterns to reject
+        const suspiciousPatterns = [
+            /;\s*--/, // Comment injection
+            /;\s*\/\*/, // Block comment injection
+            /'\s*;\s*drop/i, // Drop table injection
+            /;\s*delete\s+from/i, // Delete injection via semicolon
+            /;\s*insert\s+into/i, // Insert injection via semicolon
+            /;\s*update\s+\w+\s+set/i, // Update injection via semicolon
+            /'\s*;\s*alter/i, // Alter injection
+            /'\s*;\s*create/i, // Create injection
+            /union\s+select/i, // Union select injection
+            /'\s*or\s+1\s*=\s*1/i, // Classic OR injection
+            /'\s*or\s+true/i, // OR true injection
+            /'\s*and\s+1\s*=\s*1/i, // AND injection
+            /exec\s*\(/i, // Stored procedure execution
+            /sp_/i, // System stored procedures
+            /xp_/i, // Extended stored procedures
+            /declare\s+@/i, // Variable declaration
+            /cast\s*\(/i, // Type casting (can be used maliciously)
+            /convert\s*\(/i, // Type conversion
+            /waitfor\s+delay/i, // Time-based attacks
+            /benchmark\s*\(/i, // MySQL benchmark attacks
+            /sleep\s*\(/i, // Sleep attacks
+            /load_file\s*\(/i, // File reading attacks
+            /into\s+outfile/i, // File writing attacks
+            /information_schema.*password/i, // Block password-related schema probing
+            /pg_stat_/i, // PostgreSQL statistics
+            /pg_user/i, // PostgreSQL user info
+            /current_user\s*\(\)/i, // Function call for user enumeration (but allow current_user as column)
+            /session_user/i, // Session enumeration
+            /version\s*\(/i, // Version enumeration
+            /\bxp_cmdshell\b/i, // Command execution
+            /\bdbms_/i, // Oracle DBMS packages
+            /\butl_/i, // Oracle UTL packages
+        ];
+        return !suspiciousPatterns.some((pattern) => pattern.test(query));
+    }, 'Query contains potentially dangerous SQL patterns')
+        .describe('SQL query to execute against the PostgreSQL database (use parameterized queries with $1, $2, etc.)'),
+    allowedOperations: z
+        .array(SqlOperations)
+        .default([
+        'SELECT',
+        'WITH',
+        'EXPLAIN',
+        'ANALYZE',
+        'SHOW',
+        'DESCRIBE',
+        'DESC',
+    ])
+        .describe('List of allowed SQL operations for security (defaults to read-only operations)'),
+    parameters: z
+        .array(z.unknown())
+        .optional()
+        .default([])
+        .describe('Parameters for parameterized queries (e.g., [value1, value2] for $1, $2)'),
+    timeout: z
+        .number()
+        .positive()
+        .default(30000)
+        .describe('Query timeout in milliseconds (default: 30 seconds, max recommended: 300000)'),
+    maxRows: z
+        .number()
+        .positive()
+        .default(1000)
+        .describe('Maximum number of rows to return to prevent large result sets (default: 1000)'),
+    credentials: z
+        .record(z.nativeEnum(CredentialType), z.string())
+        .optional()
+        .describe('Object mapping credential types to values (injected at runtime)'),
+});
+// Define the result schema for validation
+const PostgreSQLResultSchema = z.object({
+    rows: z
+        .array(z.record(z.unknown()))
+        .describe('Array of result rows, each row is an object with column names as keys'),
+    rowCount: z
+        .number()
+        .nullable()
+        .describe('Number of rows affected by the query (null for SELECT queries)'),
+    command: z
+        .string()
+        .describe('SQL command that was executed (SELECT, INSERT, UPDATE, DELETE)'),
+    fields: z
+        .array(z.object({
+        name: z.string().describe('Column name'),
+        dataTypeID: z.number().describe('PostgreSQL data type identifier'),
+    }))
+        .optional()
+        .describe('Metadata about the columns returned by the query'),
+    executionTime: z.number().describe('Query execution time in milliseconds'),
+    success: z.boolean().describe('Whether the query executed successfully'),
+    // Make error optional or undefined
+    error: z
+        .string()
+        .describe('Error message if query execution failed (empty string if successful)'),
+    cleanedJSONString: z
+        .string()
+        .describe('Clean JSON string representation of the row data, suitable for AI prompts and integrations'),
+});
+// Example usage:
+//   const pgBubble = new PostgreSQLBubble({
+//   connectionString: 'postgresql://user:pass@localhost:5432/db',
+//   ignoreSSL: false, // Set to true to ignore SSL certificate errors
+//   query: 'SELECT * FROM users WHERE active = $1 AND role = $2',
+//   parameters: [true, 'admin'],
+//   allowedOperations: ['SELECT'],
+//   maxRows: 100,
+//   timeout: 30000,
+//   returnCleanedJSONString: true, // Optional: return results as cleaned JSON string
+// });
+export class PostgreSQLBubble extends ServiceBubble {
+    async testCredential() {
+        // Make a query to the database to test the credential
+        const connectionString = this.chooseCredential();
+        const pool = new Pool({
+            connectionString,
+            ssl: this.params.ignoreSSL ? { rejectUnauthorized: false } : undefined,
+        });
+        try {
+            await pool.query('SELECT 1');
+            return true;
+        }
+        finally {
+            await pool.end();
+        }
+    }
+    static type = 'service';
+    static service = 'postgresql';
+    static authType = 'connection-string';
+    // Required static metadata - TypeScript will enforce these exist
+    static bubbleName = 'postgresql';
+    static schema = PostgreSQLParamsSchema;
+    static resultSchema = PostgreSQLResultSchema;
+    static shortDescription = 'Execute PostgreSQL queries with operation validation';
+    static longDescription = `
+    Execute SQL queries against PostgreSQL databases with proper validation and security controls.
+    Use cases:
+    - Data retrieval with SELECT queries
+    - Data manipulation with INSERT, UPDATE, DELETE (when explicitly allowed)
+    - Database reporting and analytics
+    - Data migration and synchronization tasks
+    - JSON string output for integration with other systems
+    Security Features:
+    - Operation whitelist (defaults to SELECT only)
+    - Parameterized queries to prevent SQL injection
+    - Connection timeout controls
+    - Result sanitization for JSON output
+  `;
+    static alias = 'pg';
+    constructor(params = {
+        query: 'SELECT 1',
+        allowedOperations: ['SELECT'],
+        parameters: [],
+        timeout: 30000,
+        maxRows: 1000,
+    }, context) {
+        super(params, context);
+        // Perform additional validation after Zod schema validation
+        this.validateSqlOperation(this.params.query, this.params.allowedOperations);
+        this.validateParameterUsage(this.params.query, this.params.parameters);
+    }
+    async performAction(context) {
+        // Context is available but not currently used in this implementation
+        void context;
+        const { ignoreSSL, query, allowedOperations, parameters, timeout, maxRows, } = this.params;
+        const startTime = Date.now();
+        // Validate the SQL operation against allowed operations
+        this.validateSqlOperation(query, allowedOperations);
+        // Additional validation: ensure parameters are used for any dynamic values
+        this.validateParameterUsage(query, parameters);
+        // Create connection pool with strict settings
+        // Use chooseCredential to get the appropriate credential
+        const connectionString = this.chooseCredential();
+        const pool = new Pool({
+            connectionString,
+            connectionTimeoutMillis: timeout,
+            idleTimeoutMillis: timeout,
+            max: 1, // Single connection for bubble execution
+            allowExitOnIdle: true, // Exit when idle
+            statement_timeout: timeout, // Query timeout
+            ssl: ignoreSSL ? { rejectUnauthorized: false } : undefined, // SSL configuration
+        });
+        try {
+            // Execute the query with parameters (prevents SQL injection)
+            const result = await pool.query(query, parameters);
+            const executionTime = Date.now() - startTime;
+            // Additional safety: truncate rows if they exceed maxRows
+            const truncatedRows = result.rows.slice(0, maxRows);
+            const wasTruncated = result.rows.length > maxRows;
+            if (wasTruncated) {
+                console.warn(`Result set truncated to ${maxRows} rows`);
+            }
+            return {
+                rows: truncatedRows,
+                rowCount: result.rowCount,
+                command: result.command,
+                fields: result.fields?.map((field) => ({
+                    name: field.name,
+                    dataTypeID: field.dataTypeID,
+                })),
+                executionTime,
+                success: true,
+                error: '',
+                cleanedJSONString: this.cleanJSONString(truncatedRows),
+            };
+        }
+        finally {
+            // Always close the pool
+            await pool.end();
+        }
+    }
+    async getCredentialMetadata() {
+        const connectionString = this.chooseCredential();
+        if (!connectionString) {
+            return undefined;
+        }
+        const pool = new Pool({
+            connectionString,
+            ssl: this.params.ignoreSSL ? { rejectUnauthorized: false } : undefined,
+        });
+        try {
+            // Query all schemas, not just 'public'
+            const schemaQuery = `
+        SELECT
+          t.table_schema,
+          t.table_name,
+          c.column_name,
+          c.data_type,
+          c.is_nullable,
+          c.column_default,
+          c.ordinal_position
+        FROM information_schema.tables t
+        JOIN information_schema.columns c ON t.table_name = c.table_name
+          AND t.table_schema = c.table_schema
+        WHERE t.table_type = 'BASE TABLE'
+          AND t.table_schema NOT IN ('information_schema', 'pg_catalog', 'pg_toast')
+        ORDER BY t.table_schema, t.table_name, c.ordinal_position
+      `;
+            const result = await pool.query(schemaQuery);
+            const rawData = result.rows;
+            // Process the schema data into the same compact format as database-analyzer
+            // Tables from 'public' schema will not have schema prefix, others will
+            const compactSchema = {};
+            rawData.forEach((row) => {
+                const tableSchema = row.table_schema;
+                const tableName = row.table_name;
+                const columnName = row.column_name;
+                const dataType = row.data_type;
+                // Format table name: public schema tables have no prefix, others have schema prefix
+                const formattedTableName = `${tableSchema}.${tableName}`;
+                if (!compactSchema[formattedTableName]) {
+                    compactSchema[formattedTableName] = {};
+                }
+                compactSchema[formattedTableName][columnName] = dataType;
+            });
+            return {
+                tables: compactSchema,
+                databaseName: 'postgresql_database',
+                databaseType: 'postgresql',
+            };
+        }
+        catch (error) {
+            console.error('Error getting credential metadata:', error);
+            return undefined;
+        }
+        finally {
+            await pool.end();
+        }
+    }
+    /**
+     * Validate that the SQL query operation is allowed
+     */
+    validateSqlOperation(query, allowedOperations) {
+        // Extract the first SQL keyword (operation) from the query
+        const trimmedQuery = query.trim().toUpperCase();
+        const firstKeyword = trimmedQuery.split(/\s+/)[0];
+        // Check if the operation is in the allowed list
+        const isAllowed = allowedOperations.some((op) => firstKeyword.startsWith(op));
+        if (!isAllowed) {
+            throw new Error(`SQL operation '${firstKeyword}' is not allowed. Allowed operations: ${allowedOperations.join(', ')}`);
+        }
+        // Additional validation for dangerous operations
+        if (firstKeyword === 'DELETE' && !trimmedQuery.includes('WHERE')) {
+            throw new Error('DELETE queries must include a WHERE clause for safety');
+        }
+        if (firstKeyword === 'UPDATE' && !trimmedQuery.includes('WHERE')) {
+            throw new Error('UPDATE queries must include a WHERE clause for safety');
+        }
+        // Block potentially dangerous keywords using word boundaries
+        // Allow CREATE TEMPORARY for analysis but block permanent CREATE operations
+        const dangerousKeywords = [
+            '\\bDROP\\b',
+            '\\bALTER\\b',
+            '\\bTRUNCATE\\b',
+            '\\bGRANT\\b',
+            '\\bREVOKE\\b',
+            '\\bCOPY\\b',
+            '\\bBULK\\b',
+            '\\bLOAD\\b',
+        ];
+        const containsDangerous = dangerousKeywords.some((keyword) => new RegExp(keyword, 'i').test(trimmedQuery));
+        if (containsDangerous) {
+            throw new Error(`Query contains potentially dangerous operations. This bubble only supports: ${allowedOperations.join(', ')}`);
+        }
+        // Validate parentheses balance to prevent injection through unclosed strings
+        this.validateParenthesesBalance(query);
+    }
+    /**
+     * Validate parameter usage to encourage parameterized queries
+     */
+    validateParameterUsage(query, parameters) {
+        // Count parameter placeholders ($1, $2, etc.)
+        const paramPlaceholders = (query.match(/\$\d+/g) || []).length;
+        if (paramPlaceholders !== parameters.length) {
+            throw new Error(`Parameter count mismatch: query has ${paramPlaceholders} placeholders but ${parameters.length} parameters provided`);
+        }
+        // Warn if query contains string literals with potential variables
+        const hasStringLiterals = /['"][^'"]*\$[^'"]*['"]/.test(query);
+        if (hasStringLiterals) {
+            console.warn('Query contains string literals with $ symbols. Consider using parameterized queries.');
+        }
+    }
+    /**
+     * Validate parentheses and quotes are balanced
+     */
+    validateParenthesesBalance(query) {
+        let parenCount = 0;
+        let singleQuoteCount = 0;
+        let doubleQuoteCount = 0;
+        for (const char of query) {
+            switch (char) {
+                case '(':
+                    parenCount++;
+                    break;
+                case ')':
+                    parenCount--;
+                    break;
+                case "'":
+                    singleQuoteCount++;
+                    break;
+                case '"':
+                    doubleQuoteCount++;
+                    break;
+            }
+        }
+        if (parenCount !== 0) {
+            throw new Error('Unbalanced parentheses in query');
+        }
+        if (singleQuoteCount % 2 !== 0) {
+            throw new Error('Unbalanced single quotes in query');
+        }
+        if (doubleQuoteCount % 2 !== 0) {
+            throw new Error('Unbalanced double quotes in query');
+        }
+    }
+    /**
+     * Clean and format query results as a JSON string
+     */
+    cleanJSONString(rows) {
+        try {
+            // Clean the data by removing any potential circular references and handling special values
+            const cleanedRows = rows.map((row) => this.cleanObject(row));
+            // Return just the essential data as a clean JSON string
+            return JSON.stringify(cleanedRows, null, 2);
+        }
+        catch (error) {
+            // Fallback to basic JSON stringify if cleaning fails
+            console.warn('Failed to clean JSON data, using basic stringify:', error);
+            return JSON.stringify(rows, null, 2);
+        }
+    }
+    /**
+     * Clean an object by handling special values and preventing circular references
+     */
+    cleanObject(obj) {
+        if (obj === null || obj === undefined) {
+            return obj;
+        }
+        if (typeof obj === 'bigint') {
+            return obj.toString();
+        }
+        if (obj instanceof Date) {
+            return obj.toISOString();
+        }
+        if (obj instanceof Buffer) {
+            return `<Buffer ${obj.length} bytes>`;
+        }
+        if (typeof obj === 'function') {
+            return '<function>';
+        }
+        if (typeof obj === 'symbol') {
+            return obj.toString();
+        }
+        if (Array.isArray(obj)) {
+            return obj.map((item) => this.cleanObject(item));
+        }
+        if (typeof obj === 'object' && obj !== null) {
+            const cleaned = {};
+            for (const [key, value] of Object.entries(obj)) {
+                // Skip functions and symbols as keys
+                if (typeof key === 'string') {
+                    cleaned[key] = this.cleanObject(value);
+                }
+            }
+            return cleaned;
+        }
+        return obj;
+    }
+    chooseCredential() {
+        const { credentials } = this.params;
+        // If no credentials were injected, return undefined
+        if (!credentials || typeof credentials !== 'object') {
+            throw new Error('No postgres credentials provided');
+        }
+        // PostgreSQL bubble always uses database credentials
+        return credentials[CredentialType.DATABASE_CRED];
+    }
+}
+//# sourceMappingURL=postgresql.js.map

package/dist/bubbles/service-bubble/postgresql.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"postgresql.js","sourceRoot":"","sources":["../../../src/bubbles/service-bubble/postgresql.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AACxB,OAAO,EAAE,aAAa,EAAE,MAAM,qCAAqC,CAAC;AAEpE,OAAO,EACL,cAAc,GAEf,MAAM,2BAA2B,CAAC;AACnC,OAAO,EAAE,IAAI,EAAoB,MAAM,IAAI,CAAC;AAE5C,kCAAkC;AAClC,MAAM,CAAC,MAAM,aAAa,GAAG,CAAC,CAAC,IAAI,CAAC;IAClC,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,MAAM,EAAE,gDAAgD;IACxD,SAAS,EAAE,yCAAyC;IACpD,SAAS,EAAE,gCAAgC;IAC3C,MAAM,EAAE,kCAAkC;IAC1C,UAAU,EAAE,2BAA2B;IACvC,MAAM,EAAE,qBAAqB;IAC7B,QAAQ,EAAE,sCAAsC;CACjD,CAAC,CAAC;AAEH,yDAAyD;AACzD,MAAM,sBAAsB,GAAG,CAAC,CAAC,MAAM,CAAC;IACtC,SAAS,EAAE,CAAC;SACT,OAAO,EAAE;SACT,OAAO,CAAC,IAAI,CAAC;SACb,QAAQ,CAAC,+DAA+D,CAAC;IAC5E,KAAK,EAAE,CAAC;SACL,MAAM,EAAE;SACR,GAAG,CAAC,CAAC,EAAE,mBAAmB,CAAC;SAC3B,MAAM,CAAC,CAAC,KAAK,EAAE,EAAE;QAChB,yCAAyC;QACzC,MAAM,kBAAkB,GAAG;YACzB,QAAQ,EAAE,oBAAoB;YAC9B,UAAU,EAAE,0BAA0B;YACtC,eAAe,EAAE,uBAAuB;YACxC,oBAAoB,EAAE,iCAAiC;YACvD,oBAAoB,EAAE,iCAAiC;YACvD,yBAAyB,EAAE,iCAAiC;YAC5D,gBAAgB,EAAE,kBAAkB;YACpC,iBAAiB,EAAE,mBAAmB;YACtC,iBAAiB,EAAE,yBAAyB;YAC5C,qBAAqB,EAAE,uBAAuB;YAC9C,gBAAgB,EAAE,oBAAoB;YACtC,sBAAsB,EAAE,gBAAgB;YACxC,YAAY,EAAE,6BAA6B;YAC3C,MAAM,EAAE,2BAA2B;YACnC,MAAM,EAAE,6BAA6B;YACrC,cAAc,EAAE,uBAAuB;YACvC,YAAY,EAAE,yCAAyC;YACvD,eAAe,EAAE,kBAAkB;YACnC,kBAAkB,EAAE,qBAAqB;YACzC,iBAAiB,EAAE,0BAA0B;YAC7C,aAAa,EAAE,gBAAgB;YAC/B,iBAAiB,EAAE,uBAAuB;YAC1C,iBAAiB,EAAE,uBAAuB;YAC1C,+BAA+B,EAAE,wCAAwC;YACzE,WAAW,EAAE,wBAAwB;YACrC,UAAU,EAAE,uBAAuB;YACnC,sBAAsB,EAAE,wEAAwE;YAChG,eAAe,EAAE,sBAAsB;YACvC,eAAe,EAAE,sBAAsB;YACvC,kBAAkB,EAAE,oBAAoB;YACxC,UAAU,EAAE,uBAAuB;YACnC,SAAS,EAAE,sBAAsB;SAClC,CAAC;QAEF,OAAO,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;IACpE,CAAC,EAAE,mDAAmD,CAAC;SACtD,QAAQ,CACP,oGAAoG,CACrG;IACH,iBAAiB,EAAE,CAAC;SACjB,KAAK,CAAC,aAAa,CAAC;SACpB,OAAO,CAAC;QACP,QAAQ;QACR,MAAM;QACN,SAAS;QACT,SAAS;QACT,MAAM;QACN,UAAU;QACV,MAAM;KACP,CAAC;SACD,QAAQ,CACP,gFAAgF,CACjF;IACH,UAAU,EAAE,CAAC;SACV,KAAK,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;SAClB,QAAQ,EAAE;SACV,OAAO,CAAC,EAAE,CAAC;SACX,QAAQ,CACP,0EAA0E,CAC3E;IACH,OAAO,EAAE,CAAC;SACP,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,OAAO,CAAC,KAAK,CAAC;SACd,QAAQ,CACP,8EAA8E,CAC/E;IACH,OAAO,EAAE,CAAC;SACP,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,OAAO,CAAC,IAAI,CAAC;SACb,QAAQ,CACP,+EAA+E,CAChF;IACH,WAAW,EAAE,CAAC;SACX,MAAM,CAAC,CAAC,CAAC,UAAU,CAAC,cAAc,CAAC,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC;SAChD,QAAQ,EAAE;SACV,QAAQ,CACP,iEAAiE,CAClE;CACJ,CAAC,CAAC;AAKH,0CAA0C;AAC1C,MAAM,sBAAsB,GAAG,CAAC,CAAC,MAAM,CAAC;IACtC,IAAI,EAAE,CAAC;SACJ,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;SAC5B,QAAQ,CACP,uEAAuE,CACxE;IACH,QAAQ,EAAE,CAAC;SACR,MAAM,EAAE;SACR,QAAQ,EAAE;SACV,QAAQ,CAAC,gEAAgE,CAAC;IAC7E,OAAO,EAAE,CAAC;SACP,MAAM,EAAE;SACR,QAAQ,CAAC,gEAAgE,CAAC;IAC7E,MAAM,EAAE,CAAC;SACN,KAAK,CACJ,CAAC,CAAC,MAAM,CAAC;QACP,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,aAAa,CAAC;QACxC,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,iCAAiC,CAAC;KACnE,CAAC,CACH;SACA,QAAQ,EAAE;SACV,QAAQ,CAAC,kDAAkD,CAAC;IAC/D,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,sCAAsC,CAAC;IAC1E,OAAO,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,CAAC,yCAAyC,CAAC;IACxE,mCAAmC;IACnC,KAAK,EAAE,CAAC;SACL,MAAM,EAAE;SACR,QAAQ,CACP,sEAAsE,CACvE;IACH,iBAAiB,EAAE,CAAC;SACjB,MAAM,EAAE;SACR,QAAQ,CACP,4FAA4F,CAC7F;CACJ,CAAC,CAAC;AAIH,iBAAiB;AACjB,4CAA4C;AAC5C,kEAAkE;AAClE,sEAAsE;AACtE,kEAAkE;AAClE,iCAAiC;AACjC,mCAAmC;AACnC,kBAAkB;AAClB,oBAAoB;AACpB,sFAAsF;AACtF,MAAM;AACN,MAAM,OAAO,gBAAiB,SAAQ,aAGrC;IACQ,KAAK,CAAC,cAAc;QACzB,sDAAsD;QACtD,MAAM,gBAAgB,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACjD,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC;YACpB,gBAAgB;YAChB,GAAG,EAAE,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,kBAAkB,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS;SACvE,CAAC,CAAC;QAEH,IAAI,CAAC;YACH,MAAM,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;YAC7B,OAAO,IAAI,CAAC;QACd,CAAC;gBAAS,CAAC;YACT,MAAM,IAAI,CAAC,GAAG,EAAE,CAAC;QACnB,CAAC;IACH,CAAC;IACD,MAAM,CAAU,IAAI,GAAG,SAAkB,CAAC;IAC1C,MAAM,CAAU,OAAO,GAAG,YAAY,CAAC;IACvC,MAAM,CAAU,QAAQ,GAAG,mBAA4B,CAAC;IACxD,iEAAiE;IACjE,MAAM,CAAU,UAAU,GAAG,YAAY,CAAC;IAC1C,MAAM,CAAU,MAAM,GAAG,sBAAsB,CAAC;IAChD,MAAM,CAAU,YAAY,GAAG,sBAAsB,CAAC;IACtD,MAAM,CAAU,gBAAgB,GAC9B,sDAAsD,CAAC;IACzD,MAAM,CAAU,eAAe,GAAG;;;;;;;;;;;;;;GAcjC,CAAC;IACF,MAAM,CAAU,KAAK,GAAG,IAAI,CAAC;IAE7B,YACE,SAAgC;QAC9B,KAAK,EAAE,UAAU;QACjB,iBAAiB,EAAE,CAAC,QAAQ,CAAC;QAC7B,UAAU,EAAE,EAAE;QACd,OAAO,EAAE,KAAK;QACd,OAAO,EAAE,IAAI;KACd,EACD,OAAuB;QAEvB,KAAK,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;QAEvB,4DAA4D;QAC5D,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;QAC5E,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;IACzE,CAAC;IAES,KAAK,CAAC,aAAa,CAC3B,OAAuB;QAEvB,qEAAqE;QACrE,KAAK,OAAO,CAAC;QAEb,MAAM,EACJ,SAAS,EACT,KAAK,EACL,iBAAiB,EACjB,UAAU,EACV,OAAO,EACP,OAAO,GACR,GAAG,IAAI,CAAC,MAAM,CAAC;QAChB,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAE7B,wDAAwD;QACxD,IAAI,CAAC,oBAAoB,CAAC,KAAK,EAAE,iBAAiB,CAAC,CAAC;QAEpD,2EAA2E;QAC3E,IAAI,CAAC,sBAAsB,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;QAE/C,8CAA8C;QAC9C,yDAAyD;QACzD,MAAM,gBAAgB,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC;QAEjD,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC;YACpB,gBAAgB;YAChB,uBAAuB,EAAE,OAAO;YAChC,iBAAiB,EAAE,OAAO;YAC1B,GAAG,EAAE,CAAC,EAAE,yCAAyC;YACjD,eAAe,EAAE,IAAI,EAAE,iBAAiB;YACxC,iBAAiB,EAAE,OAAO,EAAE,gBAAgB;YAC5C,GAAG,EAAE,SAAS,CAAC,CAAC,CAAC,EAAE,kBAAkB,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS,EAAE,oBAAoB;SACjF,CAAC,CAAC;QAEH,IAAI,CAAC;YACH,6DAA6D;YAC7D,MAAM,MAAM,GAAgB,MAAM,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;YAChE,MAAM,aAAa,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;YAE7C,0DAA0D;YAC1D,MAAM,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;YACpD,MAAM,YAAY,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,GAAG,OAAO,CAAC;YAElD,IAAI,YAAY,EAAE,CAAC;gBACjB,OAAO,CAAC,IAAI,CAAC,2BAA2B,OAAO,OAAO,CAAC,CAAC;YAC1D,CAAC;YAED,OAAO;gBACL,IAAI,EAAE,aAAa;gBACnB,QAAQ,EAAE,MAAM,CAAC,QAAQ;gBACzB,OAAO,EAAE,MAAM,CAAC,OAAO;gBACvB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;oBACrC,IAAI,EAAE,KAAK,CAAC,IAAI;oBAChB,UAAU,EAAE,KAAK,CAAC,UAAU;iBAC7B,CAAC,CAAC;gBACH,aAAa;gBACb,OAAO,EAAE,IAAI;gBACb,KAAK,EAAE,EAAE;gBACT,iBAAiB,EAAE,IAAI,CAAC,eAAe,CAAC,aAAa,CAAC;aACvD,CAAC;QACJ,CAAC;gBAAS,CAAC;YACT,wBAAwB;YACxB,MAAM,IAAI,CAAC,GAAG,EAAE,CAAC;QACnB,CAAC;IACH,CAAC;IAED,KAAK,CAAC,qBAAqB;QACzB,MAAM,gBAAgB,GAAG,IAAI,CAAC,gBAAgB,EAAE,CAAC;QACjD,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACtB,OAAO,SAAS,CAAC;QACnB,CAAC;QAED,MAAM,IAAI,GAAG,IAAI,IAAI,CAAC;YACpB,gBAAgB;YAChB,GAAG,EAAE,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,kBAAkB,EAAE,KAAK,EAAE,CAAC,CAAC,CAAC,SAAS;SACvE,CAAC,CAAC;QAEH,IAAI,CAAC;YACH,uCAAuC;YACvC,MAAM,WAAW,GAAG;;;;;;;;;;;;;;;OAenB,CAAC;YAEF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;YAC7C,MAAM,OAAO,GAAG,MAAM,CAAC,IAAI,CAAC;YAE5B,4EAA4E;YAC5E,uEAAuE;YACvE,MAAM,aAAa,GAA2C,EAAE,CAAC;YAEjE,OAAO,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;gBACtB,MAAM,WAAW,GAAG,GAAG,CAAC,YAAsB,CAAC;gBAC/C,MAAM,SAAS,GAAG,GAAG,CAAC,UAAoB,CAAC;gBAC3C,MAAM,UAAU,GAAG,GAAG,CAAC,WAAqB,CAAC;gBAC7C,MAAM,QAAQ,GAAG,GAAG,CAAC,SAAmB,CAAC;gBAEzC,oFAAoF;gBACpF,MAAM,kBAAkB,GAAG,GAAG,WAAW,IAAI,SAAS,EAAE,CAAC;gBAEzD,IAAI,CAAC,aAAa,CAAC,kBAAkB,CAAC,EAAE,CAAC;oBACvC,aAAa,CAAC,kBAAkB,CAAC,GAAG,EAAE,CAAC;gBACzC,CAAC;gBACD,aAAa,CAAC,kBAAkB,CAAC,CAAC,UAAU,CAAC,GAAG,QAAQ,CAAC;YAC3D,CAAC,CAAC,CAAC;YAEH,OAAO;gBACL,MAAM,EAAE,aAAa;gBACrB,YAAY,EAAE,qBAAqB;gBACnC,YAAY,EAAE,YAAqB;aACpC,CAAC;QACJ,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,KAAK,CAAC,oCAAoC,EAAE,KAAK,CAAC,CAAC;YAC3D,OAAO,SAAS,CAAC;QACnB,CAAC;gBAAS,CAAC;YACT,MAAM,IAAI,CAAC,GAAG,EAAE,CAAC;QACnB,CAAC;IACH,CAAC;IAED;;OAEG;IACK,oBAAoB,CAC1B,KAAa,EACb,iBAAiC;QAEjC,2DAA2D;QAC3D,MAAM,YAAY,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC;QAChD,MAAM,YAAY,GAAG,YAAY,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;QAElD,gDAAgD;QAChD,MAAM,SAAS,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,EAAE,EAAE,EAAE,CAC9C,YAAY,CAAC,UAAU,CAAC,EAAE,CAAC,CAC5B,CAAC;QAEF,IAAI,CAAC,SAAS,EAAE,CAAC;YACf,MAAM,IAAI,KAAK,CACb,kBAAkB,YAAY,yCAAyC,iBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CACtG,CAAC;QACJ,CAAC;QAED,iDAAiD;QACjD,IAAI,YAAY,KAAK,QAAQ,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YACjE,MAAM,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;QAC3E,CAAC;QAED,IAAI,YAAY,KAAK,QAAQ,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;YACjE,MAAM,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;QAC3E,CAAC;QAED,6DAA6D;QAC7D,4EAA4E;QAC5E,MAAM,iBAAiB,GAAG;YACxB,YAAY;YACZ,aAAa;YACb,gBAAgB;YAChB,aAAa;YACb,cAAc;YACd,YAAY;YACZ,YAAY;YACZ,YAAY;SACb,CAAC;QAEF,MAAM,iBAAiB,GAAG,iBAAiB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAC3D,IAAI,MAAM,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC,IAAI,CAAC,YAAY,CAAC,CAC5C,CAAC;QAEF,IAAI,iBAAiB,EAAE,CAAC;YACtB,MAAM,IAAI,KAAK,CACb,+EAA+E,iBAAiB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAC9G,CAAC;QACJ,CAAC;QAED,6EAA6E;QAC7E,IAAI,CAAC,0BAA0B,CAAC,KAAK,CAAC,CAAC;IACzC,CAAC;IAED;;OAEG;IACK,sBAAsB,CAAC,KAAa,EAAE,UAAqB;QACjE,8CAA8C;QAC9C,MAAM,iBAAiB,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;QAE/D,IAAI,iBAAiB,KAAK,UAAU,CAAC,MAAM,EAAE,CAAC;YAC5C,MAAM,IAAI,KAAK,CACb,uCAAuC,iBAAiB,qBAAqB,UAAU,CAAC,MAAM,sBAAsB,CACrH,CAAC;QACJ,CAAC;QAED,kEAAkE;QAClE,MAAM,iBAAiB,GAAG,wBAAwB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;QAC/D,IAAI,iBAAiB,EAAE,CAAC;YACtB,OAAO,CAAC,IAAI,CACV,sFAAsF,CACvF,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACK,0BAA0B,CAAC,KAAa;QAC9C,IAAI,UAAU,GAAG,CAAC,CAAC;QACnB,IAAI,gBAAgB,GAAG,CAAC,CAAC;QACzB,IAAI,gBAAgB,GAAG,CAAC,CAAC;QAEzB,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,QAAQ,IAAI,EAAE,CAAC;gBACb,KAAK,GAAG;oBACN,UAAU,EAAE,CAAC;oBACb,MAAM;gBACR,KAAK,GAAG;oBACN,UAAU,EAAE,CAAC;oBACb,MAAM;gBACR,KAAK,GAAG;oBACN,gBAAgB,EAAE,CAAC;oBACnB,MAAM;gBACR,KAAK,GAAG;oBACN,gBAAgB,EAAE,CAAC;oBACnB,MAAM;YACV,CAAC;QACH,CAAC;QAED,IAAI,UAAU,KAAK,CAAC,EAAE,CAAC;YACrB,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;QACrD,CAAC;QAED,IAAI,gBAAgB,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YAC/B,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;QACvD,CAAC;QAED,IAAI,gBAAgB,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YAC/B,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;QACvD,CAAC;IACH,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,IAA+B;QACrD,IAAI,CAAC;YACH,2FAA2F;YAC3F,MAAM,WAAW,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC;YAE7D,wDAAwD;YACxD,OAAO,IAAI,CAAC,SAAS,CAAC,WAAW,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QAC9C,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,qDAAqD;YACrD,OAAO,CAAC,IAAI,CAAC,mDAAmD,EAAE,KAAK,CAAC,CAAC;YACzE,OAAO,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC;QACvC,CAAC;IACH,CAAC;IAED;;OAEG;IACK,WAAW,CAAC,GAAY;QAC9B,IAAI,GAAG,KAAK,IAAI,IAAI,GAAG,KAAK,SAAS,EAAE,CAAC;YACtC,OAAO,GAAG,CAAC;QACb,CAAC;QAED,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;YAC5B,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;QACxB,CAAC;QAED,IAAI,GAAG,YAAY,IAAI,EAAE,CAAC;YACxB,OAAO,GAAG,CAAC,WAAW,EAAE,CAAC;QAC3B,CAAC;QAED,IAAI,GAAG,YAAY,MAAM,EAAE,CAAC;YAC1B,OAAO,WAAW,GAAG,CAAC,MAAM,SAAS,CAAC;QACxC,CAAC;QAED,IAAI,OAAO,GAAG,KAAK,UAAU,EAAE,CAAC;YAC9B,OAAO,YAAY,CAAC;QACtB,CAAC;QAED,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;YAC5B,OAAO,GAAG,CAAC,QAAQ,EAAE,CAAC;QACxB,CAAC;QAED,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;YACvB,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,CAAC,CAAC;QACnD,CAAC;QAED,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;YAC5C,MAAM,OAAO,GAA4B,EAAE,CAAC;YAC5C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;gBAC/C,qCAAqC;gBACrC,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;oBAC5B,OAAO,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;gBACzC,CAAC;YACH,CAAC;YACD,OAAO,OAAO,CAAC;QACjB,CAAC;QAED,OAAO,GAAG,CAAC;IACb,CAAC;IAES,gBAAgB;QACxB,MAAM,EAAE,WAAW,EAAE,GAAG,IAAI,CAAC,MAAM,CAAC;QAEpC,oDAAoD;QACpD,IAAI,CAAC,WAAW,IAAI,OAAO,WAAW,KAAK,QAAQ,EAAE,CAAC;YACpD,MAAM,IAAI,KAAK,CAAC,kCAAkC,CAAC,CAAC;QACtD,CAAC;QAED,qDAAqD;QACrD,OAAO,WAAW,CAAC,cAAc,CAAC,aAAa,CAAC,CAAC;IACnD,CAAC"}