@clipboard-health/groundcrew 2.1.1 → 2.3.0

package/dist/lib/dockerSandbox.js

@@ -0,0 +1,58 @@
+import { runCommandAsync } from "./commandRunner.js";
+/**
+ * Derive a deterministic sbx sandbox name from the repository + model
+ * tuple so `crew sandbox auth <repo>` and the subsequent `crew local`
+ * launch agree on which sandbox to target. Lowercased and reduced to the
+ * sbx-safe charset (`a-z0-9.+-`) so unusual repo names still round-trip
+ * cleanly. Keep the prefix stable — doctor and teardown use it to
+ * identify groundcrew-owned sandboxes.
+ */
+export function sandboxNameFor(arguments_) {
+    const raw = `groundcrew-${arguments_.repository}-${arguments_.model}`.toLowerCase();
+    return raw
+        .replaceAll(/[^a-z0-9.+-]+/g, "-")
+        .replaceAll(/-+/g, "-")
+        .replaceAll(/^-|-$/g, "");
+}
+/**
+ * Probe `sbx ls` to see whether a sandbox with `sandboxName` already
+ * exists. Used by `crew sandbox auth` to switch between create vs reuse
+ * branches without surfacing the raw sbx error on first run.
+ */
+export async function sandboxExists(sandboxName, signal) {
+    const out = signal === undefined
+        ? await runCommandAsync("sbx", ["ls"])
+        : await runCommandAsync("sbx", ["ls"], { signal });
+    return out.split("\n").some((line) => line.trim().split(/\s+/)[0] === sandboxName);
+}
+/**
+ * Idempotent guard: ensure a Docker Sandboxes container exists for the
+ * given repository + model. Probes `sbx ls`; if `sandboxName` is missing,
+ * calls `sbx create --name <name> [--template <t>] [--kit <k>]... <agent>
+ * <mountPath>` to provision it. First-time agent auth still happens inside
+ * the sandbox the first time `sbx exec` runs the agent — `create` only
+ * provisions the container, it does not attach.
+ */
+export async function ensureSandbox(arguments_, signal) {
+    if (await sandboxExists(arguments_.sandboxName, signal)) {
+        return;
+    }
+    const createArguments = ["create", "--name", arguments_.sandboxName];
+    if (arguments_.sandbox.template !== undefined) {
+        createArguments.push("--template", arguments_.sandbox.template);
+    }
+    for (const kit of arguments_.sandbox.kits ?? []) {
+        createArguments.push("--kit", kit);
+    }
+    createArguments.push(arguments_.sandbox.agent, arguments_.mountPath);
+    const options = signal === undefined ? {} : { signal };
+    try {
+        await runCommandAsync("sbx", createArguments, options);
+    }
+    catch (error) {
+        if (await sandboxExists(arguments_.sandboxName, signal)) {
+            return;
+        }
+        throw error;
+    }
+}

package/dist/lib/host.d.ts

@@ -6,18 +6,28 @@
 export interface HostCapabilities {
     /** True when the `safehouse` binary is on PATH. */
     hasSafehouse: boolean;
+    /** True when the `sbx` (Docker Sandboxes) binary is on PATH. */
+    hasSbx: boolean;
     /** True when the `cmux` binary is on PATH. */
     hasCmux: boolean;
     /** True when the `tmux` binary is on PATH. */
     hasTmux: boolean;
     /** True when the host platform is macOS. Safehouse is macOS-only. */
     isMacOS: boolean;
+    /** True when the host platform is Linux. */
+    isLinux: boolean;
     /**
      * True when the host platform is one Safehouse supports. Safehouse is
      * macOS-only at time of writing; local setup uses this to reject Linux
      * or WSL before creating a worktree.
      */
     isSafehouseSupported: boolean;
+    /**
+     * True when sdx (Docker Sandboxes) is supportable on this platform —
+     * sbx is published for both macOS and Linux, so this stays in sync with
+     * "macOS || Linux". WSL inherits Linux capabilities transparently.
+     */
+    isSdxSupported: boolean;
 }
 /**
  * Resolves a binary on PATH the same way `which` does. Returns the first

package/dist/lib/host.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"host.d.ts","sourceRoot":"","sources":["../../src/lib/host.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAMH,MAAM,WAAW,gBAAgB;IAC/B,mDAAmD;IACnD,YAAY,EAAE,OAAO,CAAC;IACtB,8CAA8C;IAC9C,OAAO,EAAE,OAAO,CAAC;IACjB,8CAA8C;IAC9C,OAAO,EAAE,OAAO,CAAC;IACjB,qEAAqE;IACrE,OAAO,EAAE,OAAO,CAAC;IACjB;;;;OAIG;IACH,oBAAoB,EAAE,OAAO,CAAC;CAC/B;AAED;;;;GAIG;AACH,wBAAsB,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC,CAc1F;AAED,wBAAsB,sBAAsB,CAAC,MAAM,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAc5F"}
+{"version":3,"file":"host.d.ts","sourceRoot":"","sources":["../../src/lib/host.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAMH,MAAM,WAAW,gBAAgB;IAC/B,mDAAmD;IACnD,YAAY,EAAE,OAAO,CAAC;IACtB,gEAAgE;IAChE,MAAM,EAAE,OAAO,CAAC;IAChB,8CAA8C;IAC9C,OAAO,EAAE,OAAO,CAAC;IACjB,8CAA8C;IAC9C,OAAO,EAAE,OAAO,CAAC;IACjB,qEAAqE;IACrE,OAAO,EAAE,OAAO,CAAC;IACjB,4CAA4C;IAC5C,OAAO,EAAE,OAAO,CAAC;IACjB;;;;OAIG;IACH,oBAAoB,EAAE,OAAO,CAAC;IAC9B;;;;OAIG;IACH,cAAc,EAAE,OAAO,CAAC;CACzB;AAED;;;;GAIG;AACH,wBAAsB,KAAK,CAAC,GAAG,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,MAAM,GAAG,SAAS,CAAC,CAc1F;AAED,wBAAsB,sBAAsB,CAAC,MAAM,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,gBAAgB,CAAC,CAmB5F"}

package/dist/lib/host.js

@@ -3,7 +3,7 @@
  * current machine. Doctor and setup inject a capabilities object directly
  * so tests don't have to mock `which`.
  */
-import { platform } from "node:process";
+import process from "node:process";
 import { runCommandAsync } from "./commandRunner.js";
 /**
  * Resolves a binary on PATH the same way `which` does. Returns the first
@@ -26,17 +26,22 @@ export async function which(cmd, signal) {
     }
 }
 export async function detectHostCapabilities(signal) {
-    const isMacOS = platform === "darwin";
-    const [safehouse, cmux, tmux] = await Promise.all([
+    const isMacOS = process.platform === "darwin";
+    const isLinux = process.platform === "linux";
+    const [safehouse, sbx, cmux, tmux] = await Promise.all([
         which("safehouse", signal),
+        which("sbx", signal),
         which("cmux", signal),
         which("tmux", signal),
     ]);
     return {
         hasSafehouse: safehouse !== undefined,
+        hasSbx: sbx !== undefined,
         hasCmux: cmux !== undefined,
         hasTmux: tmux !== undefined,
         isMacOS,
+        isLinux,
         isSafehouseSupported: isMacOS,
+        isSdxSupported: isMacOS || isLinux,
     };
 }

package/dist/lib/launchCommand.d.ts

@@ -1,4 +1,4 @@
-import { type ModelDefinition } from "./config.ts";
+import { type LocalRunner, type ModelDefinition } from "./config.ts";
 export { shellSingleQuote } from "./shell.ts";
 /**
  * Resolve the shipped Safehouse proxy wrapper inside `@clipboard-health/clearance`
@@ -18,10 +18,24 @@ interface LaunchCommandArguments {
     /**
      * Optional path to a `KEY='value'` env file containing build-time
      * secrets (see `BUILD_SECRET_NAMES`). Sourced on the host shell before
-     * setup and always unset before exec'ing the agent so the agent process
-     * never inherits them.
+     * setup; for the sdx runner the names are propagated into the sandbox
+     * via `sbx exec -e KEY`. Always unset before exec'ing the agent so the
+     * agent process never inherits them.
      */
     secretsFile?: string | undefined;
+    /**
+     * Concrete local isolation backend chosen for this launch. Resolved
+     * from `config.local.runner` via `resolveLocalRunner` before this
+     * function is called — `auto` is never seen here.
+     */
+    runner: LocalRunner;
+    /**
+     * sbx sandbox name when `runner === "sdx"`. Derived by the caller from
+     * `sandboxNameFor({ repository, model })`. Required for sdx; ignored
+     * otherwise. Kept off the model definition so a model can launch under
+     * safehouse on one host and sdx on another without config edits.
+     */
+    sandboxName?: string | undefined;
 }
 /**
  * Build the shell command that runs inside the workspace. The prompt is

package/dist/lib/launchCommand.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"launchCommand.d.ts","sourceRoot":"","sources":["../../src/lib/launchCommand.ts"],"names":[],"mappings":"AAGA,OAAO,EAAkD,KAAK,eAAe,EAAE,MAAM,aAAa,CAAC;AAGnG,OAAO,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AAE9C;;;;;;;;;GASG;AACH,wBAAgB,6BAA6B,CAAC,OAAO,GAAE,MAAwB,GAAG,MAAM,CAcvF;AA+BD,UAAU,sBAAsB;IAC9B,UAAU,EAAE,eAAe,CAAC;IAC5B,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB;;;;;OAKG;IACH,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;CAClC;AAED;;;;;;;GAOG;AACH,wBAAgB,kBAAkB,CAAC,UAAU,EAAE,sBAAsB,GAAG,MAAM,CA2B7E"}
+{"version":3,"file":"launchCommand.d.ts","sourceRoot":"","sources":["../../src/lib/launchCommand.ts"],"names":[],"mappings":"AAGA,OAAO,EAIL,KAAK,WAAW,EAChB,KAAK,eAAe,EACrB,MAAM,aAAa,CAAC;AAGrB,OAAO,EAAE,gBAAgB,EAAE,MAAM,YAAY,CAAC;AAE9C;;;;;;;;;GASG;AACH,wBAAgB,6BAA6B,CAAC,OAAO,GAAE,MAAwB,GAAG,MAAM,CAcvF;AAmCD,UAAU,sBAAsB;IAC9B,UAAU,EAAE,eAAe,CAAC;IAC5B,UAAU,EAAE,MAAM,CAAC;IACnB,WAAW,EAAE,MAAM,CAAC;IACpB;;;;;;OAMG;IACH,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;IACjC;;;;OAIG;IACH,MAAM,EAAE,WAAW,CAAC;IACpB;;;;;OAKG;IACH,WAAW,CAAC,EAAE,MAAM,GAAG,SAAS,CAAC;CAClC;AAED;;;;;;;GAOG;AACH,wBAAgB,kBAAkB,CAAC,UAAU,EAAE,sBAAsB,GAAG,MAAM,CAK7E"}

package/dist/lib/launchCommand.js

@@ -1,6 +1,6 @@
 import { createRequire } from "node:module";
 import { dirname, resolve } from "node:path";
-import { BUILD_SECRET_NAMES, DEFAULT_HOST_SETUP_COMMAND } from "./config.js";
+import { BUILD_SECRET_NAMES, DEFAULT_HOST_SETUP_COMMAND, DEFAULT_SANDBOX_SETUP_COMMAND, } from "./config.js";
 import { shellSingleQuote } from "./shell.js";
 export { shellSingleQuote } from "./shell.js";
 /**
@@ -28,7 +28,7 @@ const SAFEHOUSE_CLEARANCE_WRAPPER_PATH = resolveSafehouseClearancePath();
 function renderAgentCommand(arguments_) {
     return arguments_.agentCmd
         .replaceAll("{{worktree}}", shellSingleQuote(arguments_.worktreeDir))
-        .replaceAll("{{sandbox}}", shellSingleQuote(""));
+        .replaceAll("{{sandbox}}", shellSingleQuote(arguments_.sandboxName));
 }
 function setupWithStatusReporting(setupCommand) {
     return [
@@ -57,17 +57,23 @@ function unsetSecretsLine() {
  * prompt in hand.
  */
 export function buildLaunchCommand(arguments_) {
+    if (arguments_.runner === "sdx") {
+        return buildSdxLaunchCommand(arguments_);
+    }
+    return buildHostLaunchCommand(arguments_);
+}
+function buildHostLaunchCommand(arguments_) {
     const promptDir = dirname(arguments_.promptFile);
     const agentCmd = renderAgentCommand({
         agentCmd: arguments_.definition.cmd,
         worktreeDir: arguments_.worktreeDir,
+        sandboxName: "",
+    });
+    const wrapped = wrapAgentForHostRunner({
+        runner: arguments_.runner,
+        rawCmd: arguments_.definition.cmd,
+        agentCmd,
     });
-    // Skip the wrap if `cmd` already starts with `safehouse` so legacy
-    // configs don't double-wrap.
-    const cmdStartsWithSafehouse = /^safehouse(\s|$)/.test(arguments_.definition.cmd);
-    const wrapped = cmdStartsWithSafehouse
-        ? agentCmd
-        : [shellSingleQuote(SAFEHOUSE_CLEARANCE_WRAPPER_PATH), agentCmd].join(" ");
     const lines = [`cd ${shellSingleQuote(arguments_.worktreeDir)}`];
     if (arguments_.secretsFile !== undefined) {
         lines.push(sourceSecretsLine(arguments_.secretsFile));
@@ -79,3 +85,55 @@ export function buildLaunchCommand(arguments_) {
     lines.push(`_p=$(cat ${shellSingleQuote(arguments_.promptFile)})`, `rm -rf ${shellSingleQuote(promptDir)}`, `exec ${wrapped} "$_p"`);
     return lines.join(" && ");
 }
+function wrapAgentForHostRunner(arguments_) {
+    if (arguments_.runner === "none") {
+        return arguments_.agentCmd;
+    }
+    // buildLaunchCommand routes `sdx` through buildSdxLaunchCommand, so the
+    // only remaining shape here is `safehouse`. Treat the explicit branch as
+    // the safehouse wrap to keep this function readable; the `sdx` arm exists
+    // only to satisfy TS's exhaustiveness checker.
+    /* v8 ignore next 3 @preserve -- buildLaunchCommand short-circuits sdx before calling this helper */
+    if (arguments_.runner === "sdx") {
+        return arguments_.agentCmd;
+    }
+    // safehouse: skip the wrap if `cmd` already starts with `safehouse` so
+    // legacy configs don't double-wrap.
+    const cmdStartsWithSafehouse = /^safehouse(\s|$)/.test(arguments_.rawCmd);
+    if (cmdStartsWithSafehouse) {
+        return arguments_.agentCmd;
+    }
+    return [shellSingleQuote(SAFEHOUSE_CLEARANCE_WRAPPER_PATH), arguments_.agentCmd].join(" ");
+}
+function buildSdxLaunchCommand(arguments_) {
+    /* v8 ignore next 5 @preserve -- setupWorkspace passes sandboxName + sandbox config when picking sdx; missing fields are programmer errors */
+    if (arguments_.sandboxName === undefined || arguments_.definition.sandbox === undefined) {
+        throw new Error("buildLaunchCommand: runner='sdx' requires sandboxName and a model `sandbox` config block (set sandbox.agent on the model in config.ts).");
+    }
+    const promptDir = dirname(arguments_.promptFile);
+    const agentCmd = renderAgentCommand({
+        agentCmd: arguments_.definition.cmd,
+        worktreeDir: arguments_.worktreeDir,
+        sandboxName: arguments_.sandboxName,
+    });
+    const setupCommand = arguments_.definition.sandbox.setupCommand ?? DEFAULT_SANDBOX_SETUP_COMMAND;
+    const innerParts = [setupWithStatusReporting(setupCommand)];
+    if (arguments_.secretsFile !== undefined) {
+        innerParts.push(unsetSecretsLine());
+    }
+    innerParts.push(`exec ${agentCmd} "$@"`);
+    const innerCommand = innerParts.join("; ");
+    // Passthrough form (`-e KEY` without `=VALUE`): sbx reads each value
+    // from its own env at invocation time — populated by sourceSecretsLine
+    // a few lines up. Avoids `-e KEY="$KEY"`, which would embed the value
+    // in argv and break on `"`, `$`, or backticks in the token.
+    const sbxEnvironmentFlags = arguments_.secretsFile === undefined
+        ? ""
+        : `${BUILD_SECRET_NAMES.map((name) => `-e ${name}`).join(" ")} `;
+    const lines = [];
+    if (arguments_.secretsFile !== undefined) {
+        lines.push(sourceSecretsLine(arguments_.secretsFile));
+    }
+    lines.push(`_p=$(cat ${shellSingleQuote(arguments_.promptFile)})`, `rm -rf ${shellSingleQuote(promptDir)}`, `exec sbx exec -it ${sbxEnvironmentFlags}-w ${shellSingleQuote(arguments_.worktreeDir)} ${shellSingleQuote(arguments_.sandboxName)} sh -lc ${shellSingleQuote(innerCommand)} sh "$_p"`);
+    return lines.join(" && ");
+}

package/dist/lib/localRunner.d.ts

@@ -1,3 +1,24 @@
+import type { LocalRunner, LocalRunnerSetting } from "./config.ts";
 import type { HostCapabilities } from "./host.ts";
-export declare function assertLocalRunnerRequirements(host: HostCapabilities): void;
+/**
+ * Resolve `local.runner` from config + host capabilities into a concrete
+ * backend. `auto` defaults to safehouse on macOS and sdx on Linux — both
+ * are the deny-first paths for their platform. `none` and the explicit
+ * names pass through unchanged so users always get exactly what they
+ * asked for. Pure: takes everything it needs as arguments so the
+ * dispatcher can test platform pivots without touching real hosts.
+ */
+export declare function resolveLocalRunner(setting: LocalRunnerSetting, host: HostCapabilities): LocalRunner;
+/**
+ * Verify the host can run the chosen local isolation backend before we
+ * create a worktree. The runner has already been resolved from
+ * `config.local.runner` (via `resolveLocalRunner`), so `auto` never gets
+ * here — the caller passes `safehouse`, `sdx`, or `none`.
+ *
+ * `none` is a deliberately unsafe escape hatch. It is never selected
+ * implicitly (`auto` picks `safehouse`/`sdx`); when the user has set it
+ * explicitly, this helper logs a single warning so the unsandboxed launch
+ * is visible in groundcrew's log, but does not throw.
+ */
+export declare function assertLocalRunnerRequirements(host: HostCapabilities, runner: LocalRunner): void;
 //# sourceMappingURL=localRunner.d.ts.map

package/dist/lib/localRunner.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"localRunner.d.ts","sourceRoot":"","sources":["../../src/lib/localRunner.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAElD,wBAAgB,6BAA6B,CAAC,IAAI,EAAE,gBAAgB,GAAG,IAAI,CAS1E"}
+{"version":3,"file":"localRunner.d.ts","sourceRoot":"","sources":["../../src/lib/localRunner.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,WAAW,EAAE,kBAAkB,EAAE,MAAM,aAAa,CAAC;AACnE,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAGlD;;;;;;;GAOG;AACH,wBAAgB,kBAAkB,CAChC,OAAO,EAAE,kBAAkB,EAC3B,IAAI,EAAE,gBAAgB,GACrB,WAAW,CAQb;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,6BAA6B,CAAC,IAAI,EAAE,gBAAgB,EAAE,MAAM,EAAE,WAAW,GAAG,IAAI,CA6B/F"}

package/dist/lib/localRunner.js

@@ -1,8 +1,51 @@
-export function assertLocalRunnerRequirements(host) {
-    if (!host.isSafehouseSupported) {
-        throw new Error("groundcrew runs require macOS with Safehouse. Linux/WSL is not supported.");
+import { log } from "./util.js";
+/**
+ * Resolve `local.runner` from config + host capabilities into a concrete
+ * backend. `auto` defaults to safehouse on macOS and sdx on Linux — both
+ * are the deny-first paths for their platform. `none` and the explicit
+ * names pass through unchanged so users always get exactly what they
+ * asked for. Pure: takes everything it needs as arguments so the
+ * dispatcher can test platform pivots without touching real hosts.
+ */
+export function resolveLocalRunner(setting, host) {
+    if (setting !== "auto") {
+        return setting;
     }
-    if (!host.hasSafehouse) {
-        throw new Error("groundcrew runs require `safehouse` on PATH. Install Safehouse from https://agent-safehouse.dev/ and retry.");
+    // macOS → safehouse; everything else (Linux/WSL, exotic platforms) → sdx.
+    // `assertLocalRunnerRequirements` then enforces sdx's platform/binary
+    // preconditions and surfaces a precise error on truly unsupported hosts.
+    return host.isMacOS ? "safehouse" : "sdx";
+}
+/**
+ * Verify the host can run the chosen local isolation backend before we
+ * create a worktree. The runner has already been resolved from
+ * `config.local.runner` (via `resolveLocalRunner`), so `auto` never gets
+ * here — the caller passes `safehouse`, `sdx`, or `none`.
+ *
+ * `none` is a deliberately unsafe escape hatch. It is never selected
+ * implicitly (`auto` picks `safehouse`/`sdx`); when the user has set it
+ * explicitly, this helper logs a single warning so the unsandboxed launch
+ * is visible in groundcrew's log, but does not throw.
+ */
+export function assertLocalRunnerRequirements(host, runner) {
+    if (runner === "safehouse") {
+        if (!host.isSafehouseSupported) {
+            throw new Error("Local groundcrew runs with the safehouse runner require macOS. On Linux/WSL, set local.runner to 'sdx' (default) or 'auto'.");
+        }
+        if (!host.hasSafehouse) {
+            throw new Error("Local groundcrew runs require `safehouse` on PATH. Install Safehouse from https://agent-safehouse.dev/ and retry.");
+        }
+        return;
+    }
+    if (runner === "sdx") {
+        if (!host.isSdxSupported) {
+            throw new Error("Local groundcrew runs with the sdx runner require macOS or Linux.");
+        }
+        if (!host.hasSbx) {
+            throw new Error("Local groundcrew runs with the sdx runner require `sbx` (Docker Sandboxes) on PATH. Install from https://docs.docker.com/sandboxes/ and retry.");
+        }
+        return;
     }
+    // runner === "none"
+    log("WARNING: local.runner='none' — agent process will run on the host without sandboxing. Only use this when you understand the implications.");
 }

package/dist/lib/workspaces.d.ts

@@ -16,6 +16,10 @@ export interface WorkspaceStatus {
     color?: string;
     icon?: string;
 }
+export interface WorkspaceAccessHint {
+    kind: "attachCommand";
+    command: string;
+}
 export interface OpenSpec {
     /** Ticket id; becomes the workspace's name. */
     name: string;
@@ -53,6 +57,7 @@ export declare const workspaces: {
     open(config: ResolvedConfig, spec: OpenSpec, signal?: AbortSignal): Promise<void>;
     probe: typeof probeWorkspaces;
     close(config: ResolvedConfig, name: string, signal?: AbortSignal): Promise<void>;
+    accessHint(config: ResolvedConfig, name: string, signal?: AbortSignal): Promise<WorkspaceAccessHint | undefined>;
 };
 export {};
 //# sourceMappingURL=workspaces.d.ts.map

package/dist/lib/workspaces.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"workspaces.d.ts","sourceRoot":"","sources":["../../src/lib/workspaces.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAA0B,KAAK,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAG1E,MAAM,MAAM,aAAa,GAAG,MAAM,GAAG,MAAM,CAAC;AAE5C,MAAM,WAAW,SAAS;IACxB,2CAA2C;IAC3C,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,QAAQ;IACvB,+CAA+C;IAC/C,IAAI,EAAE,MAAM,CAAC;IACb,+CAA+C;IAC/C,GAAG,EAAE,MAAM,CAAC;IACZ,qEAAqE;IACrE,OAAO,EAAE,MAAM,CAAC;IAChB,4EAA4E;IAC5E,MAAM,CAAC,EAAE,eAAe,CAAC;CAC1B;AAED;;;GAGG;AACH,MAAM,MAAM,cAAc,GACtB;IAAE,IAAI,EAAE,IAAI,CAAC;IAAC,KAAK,EAAE,GAAG,CAAC,MAAM,CAAC,CAAA;CAAE,GAClC;IAAE,IAAI,EAAE,aAAa,CAAC;IAAC,KAAK,CAAC,EAAE,OAAO,CAAA;CAAE,CAAC;AAoL7C,MAAM,WAAW,mBAAmB;IAClC,SAAS,EAAE,oBAAoB,CAAC;IAChC,QAAQ,EAAE,aAAa,CAAC;IACxB,yDAAyD;IACzD,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,UAAU,gBAAgB;IACxB,MAAM,EAAE,cAAc,CAAC;IACvB,IAAI,EAAE,gBAAgB,CAAC;CACxB;AAED,wBAAgB,oBAAoB,CAAC,UAAU,EAAE,gBAAgB,GAAG,mBAAmB,CAUtF;AAwND,iBAAe,eAAe,CAC5B,MAAM,EAAE,cAAc,EACtB,MAAM,CAAC,EAAE,WAAW,GACnB,OAAO,CAAC,cAAc,CAAC,CAezB;AAED,eAAO,MAAM,UAAU;IACf,IAAI,SAAS,cAAc,QAAQ,QAAQ,WAAW,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;IAIvF,KAAK;IACC,KAAK,SAAS,cAAc,QAAQ,MAAM,WAAW,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;CAIvF,CAAC"}
+{"version":3,"file":"workspaces.d.ts","sourceRoot":"","sources":["../../src/lib/workspaces.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,OAAO,KAAK,EAAE,cAAc,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAC;AACxE,OAAO,EAA0B,KAAK,gBAAgB,EAAE,MAAM,WAAW,CAAC;AAI1E,MAAM,MAAM,aAAa,GAAG,MAAM,GAAG,MAAM,CAAC;AAE5C,MAAM,WAAW,SAAS;IACxB,2CAA2C;IAC3C,IAAI,EAAE,MAAM,CAAC;CACd;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,eAAe,CAAC;IACtB,OAAO,EAAE,MAAM,CAAC;CACjB;AAED,MAAM,WAAW,QAAQ;IACvB,+CAA+C;IAC/C,IAAI,EAAE,MAAM,CAAC;IACb,+CAA+C;IAC/C,GAAG,EAAE,MAAM,CAAC;IACZ,qEAAqE;IACrE,OAAO,EAAE,MAAM,CAAC;IAChB,4EAA4E;IAC5E,MAAM,CAAC,EAAE,eAAe,CAAC;CAC1B;AAED;;;GAGG;AACH,MAAM,MAAM,cAAc,GACtB;IAAE,IAAI,EAAE,IAAI,CAAC;IAAC,KAAK,EAAE,GAAG,CAAC,MAAM,CAAC,CAAA;CAAE,GAClC;IAAE,IAAI,EAAE,aAAa,CAAC;IAAC,KAAK,CAAC,EAAE,OAAO,CAAA;CAAE,CAAC;AAgU7C,MAAM,WAAW,mBAAmB;IAClC,SAAS,EAAE,oBAAoB,CAAC;IAChC,QAAQ,EAAE,aAAa,CAAC;IACxB,yDAAyD;IACzD,MAAM,EAAE,MAAM,CAAC;CAChB;AAED,UAAU,gBAAgB;IACxB,MAAM,EAAE,cAAc,CAAC;IACvB,IAAI,EAAE,gBAAgB,CAAC;CACxB;AAED,wBAAgB,oBAAoB,CAAC,UAAU,EAAE,gBAAgB,GAAG,mBAAmB,CAUtF;AA+ND,iBAAe,eAAe,CAC5B,MAAM,EAAE,cAAc,EACtB,MAAM,CAAC,EAAE,WAAW,GACnB,OAAO,CAAC,cAAc,CAAC,CAezB;AAED,eAAO,MAAM,UAAU;IACf,IAAI,SAAS,cAAc,QAAQ,QAAQ,WAAW,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;IAIvF,KAAK;IACC,KAAK,SAAS,cAAc,QAAQ,MAAM,WAAW,WAAW,GAAG,OAAO,CAAC,IAAI,CAAC;IAIhF,UAAU,SACN,cAAc,QAChB,MAAM,WACH,WAAW,GACnB,OAAO,CAAC,mBAAmB,GAAG,SAAS,CAAC;CAI5C,CAAC"}