@clawnch/clawtomaton 0.2.2 → 0.3.0

package/dist/bunker/self-deploy.js

@@ -0,0 +1,353 @@
+/**
+ * Self-deployment — packages the agent and deploys to MoltBunker.
+ *
+ * Flow:
+ *   1. Pre-flight checks (BUNKER balance, no duplicate deployments)
+ *   2. Register bot on MoltBunker (or reuse existing)
+ *   3. Reserve runtime with requested tier/region
+ *   4. Deploy container with agent config as env vars
+ *   5. Enable cloning if configured
+ *   6. Health verification (poll until running + heartbeat in logs)
+ *   7. Persist state (bot_id, runtime_id, deployment_id, container_id)
+ *
+ * Edge cases:
+ *   - Existing running container → return status instead of re-deploying
+ *   - Bot already registered → reuse it
+ *   - Partial failure (runtime reserved, deploy fails) → release runtime
+ *   - Env var size limits → config is small enough to fit, state stays in container volume
+ */
+import { BunkerNotFoundError } from './client.js';
+import { BUNKER_DOCKER_IMAGE, BUNKER_DEFAULT_DURATION_HOURS } from '../constants.js';
+// Resource tier mappings (must match MoltBunker catalog)
+const TIER_RESOURCES = {
+    minimal: { cpu_shares: 1024, memory_mb: 1024, storage_mb: 10240, network_mbps: 100 },
+    standard: { cpu_shares: 2048, memory_mb: 4096, storage_mb: 51200, network_mbps: 100 },
+    performance: { cpu_shares: 4096, memory_mb: 8192, storage_mb: 204800, network_mbps: 100 },
+    enterprise: { cpu_shares: 8192, memory_mb: 16384, storage_mb: 512000, network_mbps: 100 },
+};
+// ============================================================================
+// Self-Deploy
+// ============================================================================
+/**
+ * Deploy this agent to MoltBunker. Handles the full lifecycle:
+ * bot registration → runtime reservation → container deployment → health check.
+ *
+ * Idempotent: if already deployed and running, returns existing state.
+ */
+export async function selfDeploy(client, config, identity, state, opts) {
+    const bunkerConfig = config.bunker;
+    if (!bunkerConfig) {
+        throw new Error('MoltBunker not configured. Run: clawtomaton setup (with bunker enabled)');
+    }
+    // Check for existing deployment
+    const existing = state.getBunkerState();
+    if (existing?.containerId) {
+        const running = await isContainerRunning(client, existing.containerId);
+        if (running) {
+            return {
+                botId: existing.botId,
+                runtimeId: existing.runtimeId,
+                deploymentId: existing.deploymentId,
+                containerId: existing.containerId,
+                expiresAt: existing.expiresAt,
+                region: bunkerConfig.region,
+                onionAddress: null, // caller can fetch full status if needed
+            };
+        }
+        // Container exists but not running — proceed with new deployment
+    }
+    // Pre-flight: check BUNKER balance
+    const balance = await client.getBalance(identity.address);
+    if (balance.available <= 0) {
+        throw new Error(`Insufficient BUNKER balance for deployment. ` +
+            `Available: ${balance.available.toLocaleString()} BUNKER. ` +
+            `Deposit BUNKER tokens to your wallet (${identity.address}) first.`);
+    }
+    const image = opts?.image ?? BUNKER_DOCKER_IMAGE;
+    const region = opts?.region ?? bunkerConfig.region;
+    const durationHours = opts?.durationHours ?? bunkerConfig.defaultDurationHours ?? BUNKER_DEFAULT_DURATION_HOURS;
+    const tierResources = TIER_RESOURCES[bunkerConfig.tier] ?? TIER_RESOURCES.standard;
+    // Step 1: Register bot (or find existing)
+    const bot = await findOrCreateBot(client, identity, image, tierResources, region);
+    state.audit('bunker_bot', `Bot registered: ${bot.id} (${bot.name})`);
+    // Step 2: Reserve runtime
+    let runtime;
+    try {
+        runtime = await client.reserveRuntime({
+            bot_id: bot.id,
+            min_memory_mb: tierResources.memory_mb,
+            min_cpu_shares: tierResources.cpu_shares,
+            duration_hours: durationHours,
+            region,
+        });
+        state.audit('bunker_runtime', `Runtime reserved: ${runtime.id} (${durationHours}h, ${region || 'auto'})`);
+    }
+    catch (err) {
+        throw new Error(`Failed to reserve runtime: ${err instanceof Error ? err.message : String(err)}. ` +
+            `Check BUNKER balance and region availability.`);
+    }
+    // Step 3: Deploy container
+    let deployment;
+    try {
+        deployment = await client.createDeployment({
+            runtime_id: runtime.id,
+            env: buildEnvVars(config, identity),
+            cmd: ['node', 'dist/cli.js', 'daemon'],
+        });
+        state.audit('bunker_deploy', `Deployment created: ${deployment.id} → container ${deployment.container_id}`);
+    }
+    catch (err) {
+        // Cleanup: release the runtime we just reserved
+        try {
+            await client.releaseRuntime(runtime.id);
+            state.audit('bunker_cleanup', `Released runtime ${runtime.id} after failed deployment`);
+        }
+        catch {
+            // Cleanup failure is non-fatal
+        }
+        throw new Error(`Failed to deploy container: ${err instanceof Error ? err.message : String(err)}`);
+    }
+    // Step 4: Enable cloning if configured
+    if (bunkerConfig.autoCloneOnThreat) {
+        try {
+            const cloningConfig = {
+                enabled: true,
+                auto_clone_on_threat: true,
+                max_clones: bunkerConfig.maxClones,
+                clone_delay_seconds: 60,
+                sync_state: true,
+                sync_interval_seconds: 300,
+            };
+            await client.enableCloning(bot.id, cloningConfig);
+            state.audit('bunker_cloning', `Auto-cloning enabled (max ${bunkerConfig.maxClones} clones)`);
+        }
+        catch (err) {
+            // Non-fatal — log but continue
+            state.audit('bunker_cloning_warn', `Failed to enable cloning: ${err instanceof Error ? err.message : String(err)}`);
+        }
+    }
+    // Step 5: Health verification
+    const expiresAt = new Date(runtime.expires_at).getTime();
+    if (!opts?.skipHealthCheck) {
+        await waitForHealthy(client, deployment.container_id, state);
+    }
+    // Step 6: Persist state
+    const bunkerState = {
+        botId: bot.id,
+        runtimeId: runtime.id,
+        deploymentId: deployment.id,
+        containerId: deployment.container_id,
+        expiresAt,
+        lastThreatCheck: 0,
+        lastThreatLevel: 'unknown',
+        cloneIds: [],
+    };
+    state.saveBunkerState(bunkerState);
+    return {
+        botId: bot.id,
+        runtimeId: runtime.id,
+        deploymentId: deployment.id,
+        containerId: deployment.container_id,
+        expiresAt,
+        region: deployment.region,
+        onionAddress: deployment.onion_address,
+    };
+}
+// ============================================================================
+// Stop Deployment
+// ============================================================================
+/**
+ * Stop the bunker deployment and clean up state.
+ * Does NOT delete the bot — it can be reused for future deployments.
+ */
+export async function stopDeploy(client, state) {
+    const bunkerState = state.getBunkerState();
+    if (!bunkerState?.deploymentId) {
+        throw new Error('No active bunker deployment found.');
+    }
+    // Stop deployment
+    try {
+        await client.stopDeployment(bunkerState.deploymentId);
+        state.audit('bunker_stop', `Deployment stopped: ${bunkerState.deploymentId}`);
+    }
+    catch (err) {
+        if (!(err instanceof BunkerNotFoundError)) {
+            throw err;
+        }
+        // Already stopped/deleted — continue cleanup
+    }
+    // Release runtime
+    if (bunkerState.runtimeId) {
+        try {
+            await client.releaseRuntime(bunkerState.runtimeId);
+            state.audit('bunker_cleanup', `Runtime released: ${bunkerState.runtimeId}`);
+        }
+        catch {
+            // Non-fatal
+        }
+    }
+    // Clear persisted state (keep bot_id for reuse)
+    state.saveBunkerState({
+        botId: bunkerState.botId,
+        runtimeId: null,
+        deploymentId: null,
+        containerId: null,
+        expiresAt: null,
+        lastThreatCheck: 0,
+        lastThreatLevel: 'unknown',
+        cloneIds: [],
+    });
+}
+// ============================================================================
+// Helpers
+// ============================================================================
+/**
+ * Find an existing bot owned by this agent, or create a new one.
+ */
+async function findOrCreateBot(client, identity, image, resources, region) {
+    // Check for existing bot with this name
+    try {
+        const bots = await client.listBots();
+        const existing = bots.find((b) => b.name === `clawtomaton-${identity.name}` || b.name === identity.name);
+        if (existing)
+            return existing;
+    }
+    catch {
+        // List failed — will try to create
+    }
+    return client.createBot({
+        name: `clawtomaton-${identity.name}`,
+        image,
+        description: `Clawtomaton autonomous agent: ${identity.name}`,
+        resources,
+        region,
+        metadata: {
+            agent_name: identity.name,
+            agent_address: identity.address,
+            version: '0.3.0',
+        },
+    });
+}
+/**
+ * Build env vars for the container. Contains everything the agent needs
+ * to reconstruct its config and identity inside the container.
+ *
+ * Private key is included because the container runs encrypted on MoltBunker.
+ * The agent needs it to sign transactions.
+ */
+function buildEnvVars(config, identity) {
+    const env = {
+        NODE_ENV: 'production',
+        // Identity — agent reconstructs from these
+        CLAWTOMATON_NAME: identity.name,
+        CLAWTOMATON_ADDRESS: identity.address,
+        CLAWTOMATON_PRIVATE_KEY: identity.privateKey,
+        CLAWTOMATON_API_KEY: identity.apiKey,
+        CLAWTOMATON_CREATOR: identity.creatorAddress,
+        CLAWTOMATON_GENESIS: identity.genesisPrompt,
+        // Inference
+        CLAWTOMATON_INFERENCE_PROVIDER: config.inference.provider,
+        CLAWTOMATON_INFERENCE_API_KEY: config.inference.apiKey,
+        CLAWTOMATON_INFERENCE_MODEL: config.inference.model,
+        CLAWTOMATON_INFERENCE_FALLBACK: config.inference.fallbackModel,
+        // RPC
+        CLAWTOMATON_RPC_URL: config.rpcUrl,
+        // Heartbeat
+        CLAWTOMATON_HEARTBEAT_MS: String(config.heartbeatIntervalMs),
+    };
+    // Optional token info
+    if (identity.tokenAddress) {
+        env.CLAWTOMATON_TOKEN_ADDRESS = identity.tokenAddress;
+    }
+    if (identity.tokenSymbol) {
+        env.CLAWTOMATON_TOKEN_SYMBOL = identity.tokenSymbol;
+    }
+    // Optional Conway
+    if (config.conwayApiKey) {
+        env.CONWAY_API_KEY = config.conwayApiKey;
+    }
+    // Bunker config (so the containerized agent can also manage its own bunker)
+    if (config.bunker) {
+        env.CLAWTOMATON_BUNKER_API_URL = config.bunker.apiUrl;
+        env.CLAWTOMATON_BUNKER_REGION = config.bunker.region;
+        env.CLAWTOMATON_BUNKER_TIER = config.bunker.tier;
+        env.CLAWTOMATON_BUNKER_AUTO_CLONE = String(config.bunker.autoCloneOnThreat);
+        env.CLAWTOMATON_BUNKER_MAX_CLONES = String(config.bunker.maxClones);
+    }
+    return env;
+}
+/**
+ * Poll container status until it's running and producing heartbeat output.
+ * Throws if container fails to start within timeout.
+ */
+async function waitForHealthy(client, containerId, state, timeoutMs = 120_000, pollIntervalMs = 5_000) {
+    const deadline = Date.now() + timeoutMs;
+    const terminalStatuses = ['failed', 'terminated', 'stopped'];
+    while (Date.now() < deadline) {
+        try {
+            const container = await client.getContainer(containerId);
+            if (terminalStatuses.includes(container.status)) {
+                // Try to get logs for debugging
+                let logSnippet = '';
+                try {
+                    logSnippet = await client.getContainerLogs(containerId, 20);
+                }
+                catch {
+                    // Non-fatal
+                }
+                throw new Error(`Container ${containerId} entered terminal state: ${container.status}` +
+                    (logSnippet ? `\nLast logs:\n${logSnippet}` : ''));
+            }
+            if (container.status === 'running') {
+                // Verify heartbeat is actually producing output
+                try {
+                    const logs = await client.getContainerLogs(containerId, 5);
+                    if (logs && (logs.includes('[heartbeat]') || logs.includes('[clawtomaton]'))) {
+                        state.audit('bunker_healthy', `Container ${containerId} is healthy and producing output`);
+                        return;
+                    }
+                }
+                catch {
+                    // Logs not available yet — container just started
+                }
+                // Container is running but no logs yet — give it a moment
+                // After 30s of running with no logs, consider it healthy anyway
+                if (container.started_at) {
+                    const startedAt = new Date(container.started_at).getTime();
+                    if (Date.now() - startedAt > 30_000) {
+                        state.audit('bunker_healthy', `Container ${containerId} running (no log output yet, assumed healthy)`);
+                        return;
+                    }
+                }
+            }
+        }
+        catch (err) {
+            if (err instanceof Error && !err.message.includes('terminal state')) {
+                // Transient error — continue polling
+                state.audit('bunker_health_poll', `Health check transient error: ${err.message}`);
+            }
+            else {
+                throw err;
+            }
+        }
+        await sleep(pollIntervalMs);
+    }
+    // Timeout — deployment is still starting, not necessarily failed
+    state.audit('bunker_health_timeout', `Container ${containerId} health check timed out after ${timeoutMs / 1000}s`);
+}
+/**
+ * Check if a container is currently running.
+ */
+async function isContainerRunning(client, containerId) {
+    try {
+        const container = await client.getContainer(containerId);
+        return container.status === 'running';
+    }
+    catch {
+        return false;
+    }
+}
+function sleep(ms) {
+    return new Promise((resolve) => setTimeout(resolve, ms));
+}
+//# sourceMappingURL=self-deploy.js.map

package/dist/bunker/self-deploy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"self-deploy.js","sourceRoot":"","sources":["../../src/bunker/self-deploy.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAKH,OAAO,EAAe,mBAAmB,EAAE,MAAM,aAAa,CAAC;AAU/D,OAAO,EAAE,mBAAmB,EAAE,6BAA6B,EAAE,MAAM,iBAAiB,CAAC;AA2BrF,yDAAyD;AACzD,MAAM,cAAc,GAAwG;IAC1H,OAAO,EAAM,EAAE,UAAU,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAG,UAAU,EAAE,KAAK,EAAG,YAAY,EAAE,GAAG,EAAE;IAC1F,QAAQ,EAAK,EAAE,UAAU,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAG,UAAU,EAAE,KAAK,EAAG,YAAY,EAAE,GAAG,EAAE;IAC1F,WAAW,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE,SAAS,EAAE,IAAI,EAAG,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,GAAG,EAAE;IAC1F,UAAU,EAAG,EAAE,UAAU,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,UAAU,EAAE,MAAM,EAAE,YAAY,EAAE,GAAG,EAAE;CAC3F,CAAC;AAEF,+EAA+E;AAC/E,cAAc;AACd,+EAA+E;AAE/E;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAC9B,MAAoB,EACpB,MAAyB,EACzB,QAA6B,EAC7B,KAAiB,EACjB,IAAwB;IAExB,MAAM,YAAY,GAAG,MAAM,CAAC,MAAM,CAAC;IACnC,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,MAAM,IAAI,KAAK,CAAC,yEAAyE,CAAC,CAAC;IAC7F,CAAC;IAED,gCAAgC;IAChC,MAAM,QAAQ,GAAG,KAAK,CAAC,cAAc,EAAE,CAAC;IACxC,IAAI,QAAQ,EAAE,WAAW,EAAE,CAAC;QAC1B,MAAM,OAAO,GAAG,MAAM,kBAAkB,CAAC,MAAM,EAAE,QAAQ,CAAC,WAAW,CAAC,CAAC;QACvE,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO;gBACL,KAAK,EAAE,QAAQ,CAAC,KAAM;gBACtB,SAAS,EAAE,QAAQ,CAAC,SAAU;gBAC9B,YAAY,EAAE,QAAQ,CAAC,YAAa;gBACpC,WAAW,EAAE,QAAQ,CAAC,WAAW;gBACjC,SAAS,EAAE,QAAQ,CAAC,SAAU;gBAC9B,MAAM,EAAE,YAAY,CAAC,MAAM;gBAC3B,YAAY,EAAE,IAAI,EAAE,yCAAyC;aAC9D,CAAC;QACJ,CAAC;QACD,iEAAiE;IACnE,CAAC;IAED,mCAAmC;IACnC,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,UAAU,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IAC1D,IAAI,OAAO,CAAC,SAAS,IAAI,CAAC,EAAE,CAAC;QAC3B,MAAM,IAAI,KAAK,CACb,8CAA8C;YAC9C,cAAc,OAAO,CAAC,SAAS,CAAC,cAAc,EAAE,WAAW;YAC3D,yCAAyC,QAAQ,CAAC,OAAO,UAAU,CACpE,CAAC;IACJ,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,EAAE,KAAK,IAAI,mBAAmB,CAAC;IACjD,MAAM,MAAM,GAAG,IAAI,EAAE,MAAM,IAAI,YAAY,CAAC,MAAM,CAAC;IACnD,MAAM,aAAa,GAAG,IAAI,EAAE,aAAa,IAAI,YAAY,CAAC,oBAAoB,IAAI,6BAA6B,CAAC;IAChH,MAAM,aAAa,GAAG,cAAc,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,cAAc,CAAC,QAAQ,CAAC;IAEnF,0CAA0C;IAC1C,MAAM,GAAG,GAAG,MAAM,eAAe,CAAC,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,aAAa,EAAE,MAAM,CAAC,CAAC;IAClF,KAAK,CAAC,KAAK,CAAC,YAAY,EAAE,mBAAmB,GAAG,CAAC,EAAE,KAAK,GAAG,CAAC,IAAI,GAAG,CAAC,CAAC;IAErE,0BAA0B;IAC1B,IAAI,OAAgB,CAAC;IACrB,IAAI,CAAC;QACH,OAAO,GAAG,MAAM,MAAM,CAAC,cAAc,CAAC;YACpC,MAAM,EAAE,GAAG,CAAC,EAAE;YACd,aAAa,EAAE,aAAa,CAAC,SAAS;YACtC,cAAc,EAAE,aAAa,CAAC,UAAU;YACxC,cAAc,EAAE,aAAa;YAC7B,MAAM;SACP,CAAC,CAAC;QACH,KAAK,CAAC,KAAK,CAAC,gBAAgB,EAAE,qBAAqB,OAAO,CAAC,EAAE,KAAK,aAAa,MAAM,MAAM,IAAI,MAAM,GAAG,CAAC,CAAC;IAC5G,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,MAAM,IAAI,KAAK,CACb,8BAA8B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI;YAClF,+CAA+C,CAChD,CAAC;IACJ,CAAC;IAED,2BAA2B;IAC3B,IAAI,UAAsB,CAAC;IAC3B,IAAI,CAAC;QACH,UAAU,GAAG,MAAM,MAAM,CAAC,gBAAgB,CAAC;YACzC,UAAU,EAAE,OAAO,CAAC,EAAE;YACtB,GAAG,EAAE,YAAY,CAAC,MAAM,EAAE,QAAQ,CAAC;YACnC,GAAG,EAAE,CAAC,MAAM,EAAE,aAAa,EAAE,QAAQ,CAAC;SACvC,CAAC,CAAC;QACH,KAAK,CAAC,KAAK,CACT,eAAe,EACf,uBAAuB,UAAU,CAAC,EAAE,gBAAgB,UAAU,CAAC,YAAY,EAAE,CAC9E,CAAC;IACJ,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,gDAAgD;QAChD,IAAI,CAAC;YACH,MAAM,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,EAAE,CAAC,CAAC;YACxC,KAAK,CAAC,KAAK,CAAC,gBAAgB,EAAE,oBAAoB,OAAO,CAAC,EAAE,0BAA0B,CAAC,CAAC;QAC1F,CAAC;QAAC,MAAM,CAAC;YACP,+BAA+B;QACjC,CAAC;QACD,MAAM,IAAI,KAAK,CACb,+BAA+B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAClF,CAAC;IACJ,CAAC;IAED,uCAAuC;IACvC,IAAI,YAAY,CAAC,iBAAiB,EAAE,CAAC;QACnC,IAAI,CAAC;YACH,MAAM,aAAa,GAAkB;gBACnC,OAAO,EAAE,IAAI;gBACb,oBAAoB,EAAE,IAAI;gBAC1B,UAAU,EAAE,YAAY,CAAC,SAAS;gBAClC,mBAAmB,EAAE,EAAE;gBACvB,UAAU,EAAE,IAAI;gBAChB,qBAAqB,EAAE,GAAG;aAC3B,CAAC;YACF,MAAM,MAAM,CAAC,aAAa,CAAC,GAAG,CAAC,EAAE,EAAE,aAAa,CAAC,CAAC;YAClD,KAAK,CAAC,KAAK,CAAC,gBAAgB,EAAE,6BAA6B,YAAY,CAAC,SAAS,UAAU,CAAC,CAAC;QAC/F,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,+BAA+B;YAC/B,KAAK,CAAC,KAAK,CAAC,qBAAqB,EAAE,6BAA6B,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACtH,CAAC;IACH,CAAC;IAED,8BAA8B;IAC9B,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,CAAC;IAEzD,IAAI,CAAC,IAAI,EAAE,eAAe,EAAE,CAAC;QAC3B,MAAM,cAAc,CAAC,MAAM,EAAE,UAAU,CAAC,YAAY,EAAE,KAAK,CAAC,CAAC;IAC/D,CAAC;IAED,wBAAwB;IACxB,MAAM,WAAW,GAAgB;QAC/B,KAAK,EAAE,GAAG,CAAC,EAAE;QACb,SAAS,EAAE,OAAO,CAAC,EAAE;QACrB,YAAY,EAAE,UAAU,CAAC,EAAE;QAC3B,WAAW,EAAE,UAAU,CAAC,YAAY;QACpC,SAAS;QACT,eAAe,EAAE,CAAC;QAClB,eAAe,EAAE,SAAS;QAC1B,QAAQ,EAAE,EAAE;KACb,CAAC;IACF,KAAK,CAAC,eAAe,CAAC,WAAW,CAAC,CAAC;IAEnC,OAAO;QACL,KAAK,EAAE,GAAG,CAAC,EAAE;QACb,SAAS,EAAE,OAAO,CAAC,EAAE;QACrB,YAAY,EAAE,UAAU,CAAC,EAAE;QAC3B,WAAW,EAAE,UAAU,CAAC,YAAY;QACpC,SAAS;QACT,MAAM,EAAE,UAAU,CAAC,MAAM;QACzB,YAAY,EAAE,UAAU,CAAC,aAAa;KACvC,CAAC;AACJ,CAAC;AAED,+EAA+E;AAC/E,kBAAkB;AAClB,+EAA+E;AAE/E;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAC9B,MAAoB,EACpB,KAAiB;IAEjB,MAAM,WAAW,GAAG,KAAK,CAAC,cAAc,EAAE,CAAC;IAC3C,IAAI,CAAC,WAAW,EAAE,YAAY,EAAE,CAAC;QAC/B,MAAM,IAAI,KAAK,CAAC,oCAAoC,CAAC,CAAC;IACxD,CAAC;IAED,kBAAkB;IAClB,IAAI,CAAC;QACH,MAAM,MAAM,CAAC,cAAc,CAAC,WAAW,CAAC,YAAY,CAAC,CAAC;QACtD,KAAK,CAAC,KAAK,CAAC,aAAa,EAAE,uBAAuB,WAAW,CAAC,YAAY,EAAE,CAAC,CAAC;IAChF,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,CAAC,CAAC,GAAG,YAAY,mBAAmB,CAAC,EAAE,CAAC;YAC1C,MAAM,GAAG,CAAC;QACZ,CAAC;QACD,6CAA6C;IAC/C,CAAC;IAED,kBAAkB;IAClB,IAAI,WAAW,CAAC,SAAS,EAAE,CAAC;QAC1B,IAAI,CAAC;YACH,MAAM,MAAM,CAAC,cAAc,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;YACnD,KAAK,CAAC,KAAK,CAAC,gBAAgB,EAAE,qBAAqB,WAAW,CAAC,SAAS,EAAE,CAAC,CAAC;QAC9E,CAAC;QAAC,MAAM,CAAC;YACP,YAAY;QACd,CAAC;IACH,CAAC;IAED,gDAAgD;IAChD,KAAK,CAAC,eAAe,CAAC;QACpB,KAAK,EAAE,WAAW,CAAC,KAAK;QACxB,SAAS,EAAE,IAAI;QACf,YAAY,EAAE,IAAI;QAClB,WAAW,EAAE,IAAI;QACjB,SAAS,EAAE,IAAI;QACf,eAAe,EAAE,CAAC;QAClB,eAAe,EAAE,SAAS;QAC1B,QAAQ,EAAE,EAAE;KACb,CAAC,CAAC;AACL,CAAC;AAED,+EAA+E;AAC/E,UAAU;AACV,+EAA+E;AAE/E;;GAEG;AACH,KAAK,UAAU,eAAe,CAC5B,MAAoB,EACpB,QAA6B,EAC7B,KAAa,EACb,SAA8F,EAC9F,MAAoB;IAEpB,wCAAwC;IACxC,IAAI,CAAC;QACH,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,QAAQ,EAAE,CAAC;QACrC,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CACxB,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,eAAe,QAAQ,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,IAAI,CAC7E,CAAC;QACF,IAAI,QAAQ;YAAE,OAAO,QAAQ,CAAC;IAChC,CAAC;IAAC,MAAM,CAAC;QACP,mCAAmC;IACrC,CAAC;IAED,OAAO,MAAM,CAAC,SAAS,CAAC;QACtB,IAAI,EAAE,eAAe,QAAQ,CAAC,IAAI,EAAE;QACpC,KAAK;QACL,WAAW,EAAE,iCAAiC,QAAQ,CAAC,IAAI,EAAE;QAC7D,SAAS;QACT,MAAM;QACN,QAAQ,EAAE;YACR,UAAU,EAAE,QAAQ,CAAC,IAAI;YACzB,aAAa,EAAE,QAAQ,CAAC,OAAO;YAC/B,OAAO,EAAE,OAAO;SACjB;KACF,CAAC,CAAC;AACL,CAAC;AAED;;;;;;GAMG;AACH,SAAS,YAAY,CACnB,MAAyB,EACzB,QAA6B;IAE7B,MAAM,GAAG,GAA2B;QAClC,QAAQ,EAAE,YAAY;QACtB,2CAA2C;QAC3C,gBAAgB,EAAE,QAAQ,CAAC,IAAI;QAC/B,mBAAmB,EAAE,QAAQ,CAAC,OAAO;QACrC,uBAAuB,EAAE,QAAQ,CAAC,UAAU;QAC5C,mBAAmB,EAAE,QAAQ,CAAC,MAAM;QACpC,mBAAmB,EAAE,QAAQ,CAAC,cAAc;QAC5C,mBAAmB,EAAE,QAAQ,CAAC,aAAa;QAC3C,YAAY;QACZ,8BAA8B,EAAE,MAAM,CAAC,SAAS,CAAC,QAAQ;QACzD,6BAA6B,EAAE,MAAM,CAAC,SAAS,CAAC,MAAM;QACtD,2BAA2B,EAAE,MAAM,CAAC,SAAS,CAAC,KAAK;QACnD,8BAA8B,EAAE,MAAM,CAAC,SAAS,CAAC,aAAa;QAC9D,MAAM;QACN,mBAAmB,EAAE,MAAM,CAAC,MAAM;QAClC,YAAY;QACZ,wBAAwB,EAAE,MAAM,CAAC,MAAM,CAAC,mBAAmB,CAAC;KAC7D,CAAC;IAEF,sBAAsB;IACtB,IAAI,QAAQ,CAAC,YAAY,EAAE,CAAC;QAC1B,GAAG,CAAC,yBAAyB,GAAG,QAAQ,CAAC,YAAY,CAAC;IACxD,CAAC;IACD,IAAI,QAAQ,CAAC,WAAW,EAAE,CAAC;QACzB,GAAG,CAAC,wBAAwB,GAAG,QAAQ,CAAC,WAAW,CAAC;IACtD,CAAC;IAED,kBAAkB;IAClB,IAAI,MAAM,CAAC,YAAY,EAAE,CAAC;QACxB,GAAG,CAAC,cAAc,GAAG,MAAM,CAAC,YAAY,CAAC;IAC3C,CAAC;IAED,4EAA4E;IAC5E,IAAI,MAAM,CAAC,MAAM,EAAE,CAAC;QAClB,GAAG,CAAC,0BAA0B,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;QACtD,GAAG,CAAC,yBAAyB,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC;QACrD,GAAG,CAAC,uBAAuB,GAAG,MAAM,CAAC,MAAM,CAAC,IAAI,CAAC;QACjD,GAAG,CAAC,6BAA6B,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,iBAAiB,CAAC,CAAC;QAC5E,GAAG,CAAC,6BAA6B,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IACtE,CAAC;IAED,OAAO,GAAG,CAAC;AACb,CAAC;AAED;;;GAGG;AACH,KAAK,UAAU,cAAc,CAC3B,MAAoB,EACpB,WAAmB,EACnB,KAAiB,EACjB,SAAS,GAAG,OAAO,EACnB,cAAc,GAAG,KAAK;IAEtB,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,CAAC;IACxC,MAAM,gBAAgB,GAA2B,CAAC,QAAQ,EAAE,YAAY,EAAE,SAAS,CAAC,CAAC;IAErF,OAAO,IAAI,CAAC,GAAG,EAAE,GAAG,QAAQ,EAAE,CAAC;QAC7B,IAAI,CAAC;YACH,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,YAAY,CAAC,WAAW,CAAC,CAAC;YAEzD,IAAI,gBAAgB,CAAC,QAAQ,CAAC,SAAS,CAAC,MAAM,CAAC,EAAE,CAAC;gBAChD,gCAAgC;gBAChC,IAAI,UAAU,GAAG,EAAE,CAAC;gBACpB,IAAI,CAAC;oBACH,UAAU,GAAG,MAAM,MAAM,CAAC,gBAAgB,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;gBAC9D,CAAC;gBAAC,MAAM,CAAC;oBACP,YAAY;gBACd,CAAC;gBACD,MAAM,IAAI,KAAK,CACb,aAAa,WAAW,4BAA4B,SAAS,CAAC,MAAM,EAAE;oBACtE,CAAC,UAAU,CAAC,CAAC,CAAC,iBAAiB,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC,CAClD,CAAC;YACJ,CAAC;YAED,IAAI,SAAS,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;gBACnC,gDAAgD;gBAChD,IAAI,CAAC;oBACH,MAAM,IAAI,GAAG,MAAM,MAAM,CAAC,gBAAgB,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC;oBAC3D,IAAI,IAAI,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAC,EAAE,CAAC;wBAC7E,KAAK,CAAC,KAAK,CAAC,gBAAgB,EAAE,aAAa,WAAW,kCAAkC,CAAC,CAAC;wBAC1F,OAAO;oBACT,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC;oBACP,kDAAkD;gBACpD,CAAC;gBAED,0DAA0D;gBAC1D,gEAAgE;gBAChE,IAAI,SAAS,CAAC,UAAU,EAAE,CAAC;oBACzB,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,OAAO,EAAE,CAAC;oBAC3D,IAAI,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,GAAG,MAAM,EAAE,CAAC;wBACpC,KAAK,CAAC,KAAK,CAAC,gBAAgB,EAAE,aAAa,WAAW,+CAA+C,CAAC,CAAC;wBACvG,OAAO;oBACT,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,GAAG,YAAY,KAAK,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,gBAAgB,CAAC,EAAE,CAAC;gBACpE,qCAAqC;gBACrC,KAAK,CAAC,KAAK,CAAC,oBAAoB,EAAE,iCAAiC,GAAG,CAAC,OAAO,EAAE,CAAC,CAAC;YACpF,CAAC;iBAAM,CAAC;gBACN,MAAM,GAAG,CAAC;YACZ,CAAC;QACH,CAAC;QAED,MAAM,KAAK,CAAC,cAAc,CAAC,CAAC;IAC9B,CAAC;IAED,iEAAiE;IACjE,KAAK,CAAC,KAAK,CAAC,uBAAuB,EAAE,aAAa,WAAW,iCAAiC,SAAS,GAAG,IAAI,GAAG,CAAC,CAAC;AACrH,CAAC;AAED;;GAEG;AACH,KAAK,UAAU,kBAAkB,CAAC,MAAoB,EAAE,WAAmB;IACzE,IAAI,CAAC;QACH,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,YAAY,CAAC,WAAW,CAAC,CAAC;QACzD,OAAO,SAAS,CAAC,MAAM,KAAK,SAAS,CAAC;IACxC,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,SAAS,KAAK,CAAC,EAAU;IACvB,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,UAAU,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC,CAAC;AAC3D,CAAC"}

package/dist/bunker/threat-monitor.d.ts

@@ -0,0 +1,47 @@
+/**
+ * Threat monitor — polls MoltBunker threat endpoint and triggers auto-clone.
+ *
+ * Not a standalone timer. Called from the heartbeat loop when bunker is configured.
+ * The heartbeat already handles timing — this module provides:
+ *   - checkThreat(): fetch threat level, update state, return escalation info
+ *   - handleThreatEscalation(): auto-clone if threshold crossed
+ *
+ * Threat levels and actions:
+ *   low    (score < 0.3)  — log only, no action
+ *   medium (score 0.3-0.6) — audit log, surface in system prompt
+ *   high   (score 0.6-0.8) — auto-clone to different region
+ *   critical (score > 0.8) — auto-clone + auto-migrate
+ */
+import type { BunkerClient } from './client.js';
+import type { StateStore } from '../state/index.js';
+import type { ThreatAssessment, ThreatLevel } from './types.js';
+export interface ThreatCheckResult {
+    assessment: ThreatAssessment;
+    escalated: boolean;
+    previousLevel: ThreatLevel;
+    action: 'none' | 'logged' | 'cloned' | 'migrated';
+}
+/**
+ * Check the current threat level. Updates state and returns escalation info.
+ * Non-fatal on API errors — returns null if threat endpoint is unreachable.
+ */
+export declare function checkThreat(client: BunkerClient, state: StateStore): Promise<ThreatCheckResult | null>;
+/**
+ * Handle threat escalation by auto-cloning to a different region.
+ * Only acts on high/critical threats. Respects max_clones limit.
+ *
+ * Returns the clone ID if a clone was created, null otherwise.
+ */
+export declare function handleThreatEscalation(client: BunkerClient, state: StateStore, assessment: ThreatAssessment, autoCloneEnabled: boolean, maxClones: number): Promise<string | null>;
+/**
+ * For critical threats: migrate the primary container to the safest available region.
+ * This is more aggressive than cloning — it moves the container.
+ *
+ * Returns the migration ID if started, null otherwise.
+ */
+export declare function handleCriticalMigration(client: BunkerClient, state: StateStore, assessment: ThreatAssessment): Promise<string | null>;
+/**
+ * Format a threat assessment for display in the system prompt or logs.
+ */
+export declare function formatThreat(assessment: ThreatAssessment): string;
+//# sourceMappingURL=threat-monitor.d.ts.map

package/dist/bunker/threat-monitor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"threat-monitor.d.ts","sourceRoot":"","sources":["../../src/bunker/threat-monitor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,MAAM,aAAa,CAAC;AAEhD,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,mBAAmB,CAAC;AACpD,OAAO,KAAK,EAAE,gBAAgB,EAAE,WAAW,EAA6B,MAAM,YAAY,CAAC;AAM3F,MAAM,WAAW,iBAAiB;IAChC,UAAU,EAAE,gBAAgB,CAAC;IAC7B,SAAS,EAAE,OAAO,CAAC;IACnB,aAAa,EAAE,WAAW,CAAC;IAC3B,MAAM,EAAE,MAAM,GAAG,QAAQ,GAAG,QAAQ,GAAG,UAAU,CAAC;CACnD;AA0BD;;;GAGG;AACH,wBAAsB,WAAW,CAC/B,MAAM,EAAE,YAAY,EACpB,KAAK,EAAE,UAAU,GAChB,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC,CAqCnC;AAED;;;;;GAKG;AACH,wBAAsB,sBAAsB,CAC1C,MAAM,EAAE,YAAY,EACpB,KAAK,EAAE,UAAU,EACjB,UAAU,EAAE,gBAAgB,EAC5B,gBAAgB,EAAE,OAAO,EACzB,SAAS,EAAE,MAAM,GAChB,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CA+CxB;AAED;;;;;GAKG;AACH,wBAAsB,uBAAuB,CAC3C,MAAM,EAAE,YAAY,EACpB,KAAK,EAAE,UAAU,EACjB,UAAU,EAAE,gBAAgB,GAC3B,OAAO,CAAC,MAAM,GAAG,IAAI,CAAC,CA6BxB;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,UAAU,EAAE,gBAAgB,GAAG,MAAM,CAcjE"}

package/dist/bunker/threat-monitor.js

@@ -0,0 +1,173 @@
+/**
+ * Threat monitor — polls MoltBunker threat endpoint and triggers auto-clone.
+ *
+ * Not a standalone timer. Called from the heartbeat loop when bunker is configured.
+ * The heartbeat already handles timing — this module provides:
+ *   - checkThreat(): fetch threat level, update state, return escalation info
+ *   - handleThreatEscalation(): auto-clone if threshold crossed
+ *
+ * Threat levels and actions:
+ *   low    (score < 0.3)  — log only, no action
+ *   medium (score 0.3-0.6) — audit log, surface in system prompt
+ *   high   (score 0.6-0.8) — auto-clone to different region
+ *   critical (score > 0.8) — auto-clone + auto-migrate
+ */
+import { BunkerError } from './client.js';
+// ============================================================================
+// Threat Level Ordering
+// ============================================================================
+const THREAT_SEVERITY = {
+    unknown: 0,
+    low: 1,
+    medium: 2,
+    high: 3,
+    critical: 4,
+};
+function isEscalation(from, to) {
+    return THREAT_SEVERITY[to] > THREAT_SEVERITY[from];
+}
+function isActionable(level) {
+    return THREAT_SEVERITY[level] >= THREAT_SEVERITY.high;
+}
+// ============================================================================
+// Core Functions
+// ============================================================================
+/**
+ * Check the current threat level. Updates state and returns escalation info.
+ * Non-fatal on API errors — returns null if threat endpoint is unreachable.
+ */
+export async function checkThreat(client, state) {
+    const bunkerState = state.getBunkerState();
+    if (!bunkerState)
+        return null;
+    const previousLevel = bunkerState.lastThreatLevel;
+    try {
+        const assessment = await client.getThreat();
+        // Update state
+        state.updateBunkerThreat(assessment.level);
+        const escalated = isEscalation(previousLevel, assessment.level);
+        if (escalated) {
+            state.audit('bunker_threat_escalation', `Threat escalated: ${previousLevel} → ${assessment.level} (score: ${assessment.score.toFixed(2)}, ` +
+                `signals: ${assessment.active_signals.length})`);
+        }
+        return {
+            assessment,
+            escalated,
+            previousLevel,
+            action: 'none', // caller decides action
+        };
+    }
+    catch (err) {
+        // Non-fatal — threat API might be temporarily unavailable
+        if (err instanceof BunkerError) {
+            state.audit('bunker_threat_error', `Threat check failed: ${err.message} (HTTP ${err.status})`);
+        }
+        else {
+            state.audit('bunker_threat_error', `Threat check failed: ${err instanceof Error ? err.message : String(err)}`);
+        }
+        return null;
+    }
+}
+/**
+ * Handle threat escalation by auto-cloning to a different region.
+ * Only acts on high/critical threats. Respects max_clones limit.
+ *
+ * Returns the clone ID if a clone was created, null otherwise.
+ */
+export async function handleThreatEscalation(client, state, assessment, autoCloneEnabled, maxClones) {
+    if (!autoCloneEnabled)
+        return null;
+    if (!isActionable(assessment.level))
+        return null;
+    const bunkerState = state.getBunkerState();
+    if (!bunkerState?.containerId)
+        return null;
+    // Check clone limit
+    if (bunkerState.cloneIds.length >= maxClones) {
+        state.audit('bunker_clone_limit', `Threat level ${assessment.level} but at clone limit (${bunkerState.cloneIds.length}/${maxClones})`);
+        return null;
+    }
+    // Pick target region — choose one we don't have a clone in yet
+    const targetRegion = pickCloneRegion(bunkerState);
+    if (!targetRegion) {
+        state.audit('bunker_clone_skip', 'No available region for threat-response clone');
+        return null;
+    }
+    try {
+        const clone = await client.createClone({
+            source_id: bunkerState.containerId,
+            target_region: targetRegion,
+            priority: assessment.level === 'critical' ? 1 : 2,
+            reason: 'threat_response',
+            include_state: true,
+        });
+        state.addBunkerClone(clone.clone_id);
+        state.audit('bunker_auto_clone', `Threat-response clone created: ${clone.clone_id} → ${targetRegion} ` +
+            `(threat: ${assessment.level}, score: ${assessment.score.toFixed(2)})`);
+        return clone.clone_id;
+    }
+    catch (err) {
+        state.audit('bunker_clone_error', `Failed to create threat-response clone: ${err instanceof Error ? err.message : String(err)}`);
+        return null;
+    }
+}
+/**
+ * For critical threats: migrate the primary container to the safest available region.
+ * This is more aggressive than cloning — it moves the container.
+ *
+ * Returns the migration ID if started, null otherwise.
+ */
+export async function handleCriticalMigration(client, state, assessment) {
+    if (assessment.level !== 'critical')
+        return null;
+    const bunkerState = state.getBunkerState();
+    if (!bunkerState?.containerId)
+        return null;
+    const targetRegion = pickCloneRegion(bunkerState);
+    if (!targetRegion)
+        return null;
+    try {
+        const migration = await client.migrate({
+            container_id: bunkerState.containerId,
+            target_region: targetRegion,
+            keep_original: true, // keep original until migration completes
+        });
+        state.audit('bunker_critical_migrate', `Critical threat migration started: ${migration.migration_id} → ${targetRegion}`);
+        return migration.migration_id;
+    }
+    catch (err) {
+        state.audit('bunker_migrate_error', `Failed to start critical migration: ${err instanceof Error ? err.message : String(err)}`);
+        return null;
+    }
+}
+/**
+ * Format a threat assessment for display in the system prompt or logs.
+ */
+export function formatThreat(assessment) {
+    const lines = [
+        `Threat Level: ${assessment.level.toUpperCase()} (score: ${assessment.score.toFixed(2)})`,
+        `Recommendation: ${assessment.recommendation}`,
+    ];
+    if (assessment.active_signals.length > 0) {
+        lines.push(`Active Signals:`);
+        for (const signal of assessment.active_signals) {
+            lines.push(`  - ${signal.type}: ${signal.details} (confidence: ${(signal.confidence * 100).toFixed(0)}%)`);
+        }
+    }
+    return lines.join('\n');
+}
+// ============================================================================
+// Helpers
+// ============================================================================
+const ALL_REGIONS = ['americas', 'europe', 'asia_pacific'];
+/**
+ * Pick a region that doesn't already have a clone.
+ * Simple round-robin: tries each region not already used.
+ */
+function pickCloneRegion(bunkerState) {
+    // We don't have clone regions stored — just pick regions we likely don't have
+    // The clone IDs don't tell us regions, so cycle through all
+    const index = bunkerState.cloneIds.length % ALL_REGIONS.length;
+    return ALL_REGIONS[index];
+}
+//# sourceMappingURL=threat-monitor.js.map

package/dist/bunker/threat-monitor.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"threat-monitor.js","sourceRoot":"","sources":["../../src/bunker/threat-monitor.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;GAaG;AAGH,OAAO,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAe1C,+EAA+E;AAC/E,wBAAwB;AACxB,+EAA+E;AAE/E,MAAM,eAAe,GAAgC;IACnD,OAAO,EAAE,CAAC;IACV,GAAG,EAAE,CAAC;IACN,MAAM,EAAE,CAAC;IACT,IAAI,EAAE,CAAC;IACP,QAAQ,EAAE,CAAC;CACZ,CAAC;AAEF,SAAS,YAAY,CAAC,IAAiB,EAAE,EAAe;IACtD,OAAO,eAAe,CAAC,EAAE,CAAC,GAAG,eAAe,CAAC,IAAI,CAAC,CAAC;AACrD,CAAC;AAED,SAAS,YAAY,CAAC,KAAkB;IACtC,OAAO,eAAe,CAAC,KAAK,CAAC,IAAI,eAAe,CAAC,IAAI,CAAC;AACxD,CAAC;AAED,+EAA+E;AAC/E,iBAAiB;AACjB,+EAA+E;AAE/E;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,WAAW,CAC/B,MAAoB,EACpB,KAAiB;IAEjB,MAAM,WAAW,GAAG,KAAK,CAAC,cAAc,EAAE,CAAC;IAC3C,IAAI,CAAC,WAAW;QAAE,OAAO,IAAI,CAAC;IAE9B,MAAM,aAAa,GAAG,WAAW,CAAC,eAAe,CAAC;IAElD,IAAI,CAAC;QACH,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,SAAS,EAAE,CAAC;QAE5C,eAAe;QACf,KAAK,CAAC,kBAAkB,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;QAE3C,MAAM,SAAS,GAAG,YAAY,CAAC,aAAa,EAAE,UAAU,CAAC,KAAK,CAAC,CAAC;QAEhE,IAAI,SAAS,EAAE,CAAC;YACd,KAAK,CAAC,KAAK,CACT,0BAA0B,EAC1B,qBAAqB,aAAa,MAAM,UAAU,CAAC,KAAK,YAAY,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI;gBACnG,YAAY,UAAU,CAAC,cAAc,CAAC,MAAM,GAAG,CAChD,CAAC;QACJ,CAAC;QAED,OAAO;YACL,UAAU;YACV,SAAS;YACT,aAAa;YACb,MAAM,EAAE,MAAM,EAAE,wBAAwB;SACzC,CAAC;IACJ,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,0DAA0D;QAC1D,IAAI,GAAG,YAAY,WAAW,EAAE,CAAC;YAC/B,KAAK,CAAC,KAAK,CAAC,qBAAqB,EAAE,wBAAwB,GAAG,CAAC,OAAO,UAAU,GAAG,CAAC,MAAM,GAAG,CAAC,CAAC;QACjG,CAAC;aAAM,CAAC;YACN,KAAK,CAAC,KAAK,CAAC,qBAAqB,EAAE,wBAAwB,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACjH,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAC1C,MAAoB,EACpB,KAAiB,EACjB,UAA4B,EAC5B,gBAAyB,EACzB,SAAiB;IAEjB,IAAI,CAAC,gBAAgB;QAAE,OAAO,IAAI,CAAC;IACnC,IAAI,CAAC,YAAY,CAAC,UAAU,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAEjD,MAAM,WAAW,GAAG,KAAK,CAAC,cAAc,EAAE,CAAC;IAC3C,IAAI,CAAC,WAAW,EAAE,WAAW;QAAE,OAAO,IAAI,CAAC;IAE3C,oBAAoB;IACpB,IAAI,WAAW,CAAC,QAAQ,CAAC,MAAM,IAAI,SAAS,EAAE,CAAC;QAC7C,KAAK,CAAC,KAAK,CACT,oBAAoB,EACpB,gBAAgB,UAAU,CAAC,KAAK,wBAAwB,WAAW,CAAC,QAAQ,CAAC,MAAM,IAAI,SAAS,GAAG,CACpG,CAAC;QACF,OAAO,IAAI,CAAC;IACd,CAAC;IAED,+DAA+D;IAC/D,MAAM,YAAY,GAAG,eAAe,CAAC,WAAW,CAAC,CAAC;IAClD,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,KAAK,CAAC,KAAK,CAAC,mBAAmB,EAAE,+CAA+C,CAAC,CAAC;QAClF,OAAO,IAAI,CAAC;IACd,CAAC;IAED,IAAI,CAAC;QACH,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,WAAW,CAAC;YACrC,SAAS,EAAE,WAAW,CAAC,WAAW;YAClC,aAAa,EAAE,YAAY;YAC3B,QAAQ,EAAE,UAAU,CAAC,KAAK,KAAK,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YACjD,MAAM,EAAE,iBAAiB;YACzB,aAAa,EAAE,IAAI;SACpB,CAAC,CAAC;QAEH,KAAK,CAAC,cAAc,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QACrC,KAAK,CAAC,KAAK,CACT,mBAAmB,EACnB,kCAAkC,KAAK,CAAC,QAAQ,MAAM,YAAY,GAAG;YACrE,YAAY,UAAU,CAAC,KAAK,YAAY,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,CACvE,CAAC;QAEF,OAAO,KAAK,CAAC,QAAQ,CAAC;IACxB,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,KAAK,CAAC,KAAK,CACT,oBAAoB,EACpB,2CAA2C,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAC9F,CAAC;QACF,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;;;;GAKG;AACH,MAAM,CAAC,KAAK,UAAU,uBAAuB,CAC3C,MAAoB,EACpB,KAAiB,EACjB,UAA4B;IAE5B,IAAI,UAAU,CAAC,KAAK,KAAK,UAAU;QAAE,OAAO,IAAI,CAAC;IAEjD,MAAM,WAAW,GAAG,KAAK,CAAC,cAAc,EAAE,CAAC;IAC3C,IAAI,CAAC,WAAW,EAAE,WAAW;QAAE,OAAO,IAAI,CAAC;IAE3C,MAAM,YAAY,GAAG,eAAe,CAAC,WAAW,CAAC,CAAC;IAClD,IAAI,CAAC,YAAY;QAAE,OAAO,IAAI,CAAC;IAE/B,IAAI,CAAC;QACH,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC;YACrC,YAAY,EAAE,WAAW,CAAC,WAAW;YACrC,aAAa,EAAE,YAAY;YAC3B,aAAa,EAAE,IAAI,EAAE,0CAA0C;SAChE,CAAC,CAAC;QAEH,KAAK,CAAC,KAAK,CACT,yBAAyB,EACzB,sCAAsC,SAAS,CAAC,YAAY,MAAM,YAAY,EAAE,CACjF,CAAC;QAEF,OAAO,SAAS,CAAC,YAAY,CAAC;IAChC,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,KAAK,CAAC,KAAK,CACT,sBAAsB,EACtB,uCAAuC,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAC1F,CAAC;QACF,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,UAA4B;IACvD,MAAM,KAAK,GAAG;QACZ,iBAAiB,UAAU,CAAC,KAAK,CAAC,WAAW,EAAE,YAAY,UAAU,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG;QACzF,mBAAmB,UAAU,CAAC,cAAc,EAAE;KAC/C,CAAC;IAEF,IAAI,UAAU,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACzC,KAAK,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAC9B,KAAK,MAAM,MAAM,IAAI,UAAU,CAAC,cAAc,EAAE,CAAC;YAC/C,KAAK,CAAC,IAAI,CAAC,OAAO,MAAM,CAAC,IAAI,KAAK,MAAM,CAAC,OAAO,iBAAiB,CAAC,MAAM,CAAC,UAAU,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;QAC7G,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,+EAA+E;AAC/E,UAAU;AACV,+EAA+E;AAE/E,MAAM,WAAW,GAAmB,CAAC,UAAU,EAAE,QAAQ,EAAE,cAAc,CAAC,CAAC;AAE3E;;;GAGG;AACH,SAAS,eAAe,CAAC,WAAwB;IAC/C,8EAA8E;IAC9E,4DAA4D;IAC5D,MAAM,KAAK,GAAG,WAAW,CAAC,QAAQ,CAAC,MAAM,GAAG,WAAW,CAAC,MAAM,CAAC;IAC/D,OAAO,WAAW,CAAC,KAAK,CAAC,CAAC;AAC5B,CAAC"}