@databricks/appkit 0.31.0 → 0.33.0

package/dist/core/agent/tools/define-tool.js

@@ -0,0 +1,50 @@
+import { toToolJSONSchema } from "./json-schema.js";
+import { formatZodError } from "./tool.js";
+
+//#region src/core/agent/tools/define-tool.ts
+/**
+* Defines a single tool entry for a plugin's internal registry.
+*
+* The generic `S` flows from `schema` through to the `handler` callback so
+* `args` is fully typed from the Zod schema. Names are assigned by the
+* registry key, so they are not repeated inside the entry.
+*/
+function defineTool(config) {
+	return config;
+}
+/**
+* Validates tool-call arguments against the entry's schema and invokes its
+* handler. On validation failure, returns an LLM-friendly error string
+* (matching the behavior of `tool()`) rather than throwing, so the model
+* can self-correct on its next turn.
+*/
+async function executeFromRegistry(registry, name, args, signal) {
+	const entry = registry[name];
+	if (!entry) throw new Error(`Unknown tool: ${name}`);
+	const parsed = entry.schema.safeParse(args);
+	if (!parsed.success) return formatZodError(parsed.error, name);
+	return entry.execute(parsed.data, signal);
+}
+/**
+* Produces the `AgentToolDefinition[]` a ToolProvider exposes to the LLM,
+* deriving `parameters` JSON Schema from each entry's Zod schema.
+*
+* Tool names come from registry keys (supports dotted names like
+* `uploads.list` for dynamic plugins).
+*/
+function toolsFromRegistry(registry) {
+	return Object.entries(registry).map(([name, entry]) => {
+		const parameters = toToolJSONSchema(entry.schema);
+		const def = {
+			name,
+			description: entry.description,
+			parameters
+		};
+		if (entry.annotations) def.annotations = entry.annotations;
+		return def;
+	});
+}
+
+//#endregion
+export { defineTool, executeFromRegistry, toolsFromRegistry };
+//# sourceMappingURL=define-tool.js.map

package/dist/core/agent/tools/define-tool.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"define-tool.js","names":[],"sources":["../../../../src/core/agent/tools/define-tool.ts"],"sourcesContent":["import type { AgentToolDefinition, ToolAnnotations } from \"shared\";\nimport type { z } from \"zod\";\nimport { toToolJSONSchema } from \"./json-schema\";\nimport { formatZodError } from \"./tool\";\n\n/**\n * Single-tool entry for a plugin's internal tool registry.\n *\n * Plugins collect these into a `Record<string, ToolEntry>` keyed by the tool's\n * public name and dispatch via `executeFromRegistry`.\n */\nexport interface ToolEntry<S extends z.ZodType = z.ZodType> {\n  description: string;\n  schema: S;\n  annotations?: ToolAnnotations;\n  /**\n   * Whether this tool is eligible for auto-inheritance into markdown or\n   * code-defined agents that enable `autoInheritTools`. Defaults to `false`\n   * (safe-by-default) — plugin authors must explicitly opt a tool in if they\n   * consider it safe enough to appear in every agent's tool record without an\n   * explicit `tools:` declaration. Destructive or privilege-sensitive tools\n   * should leave this unset so that they only reach agents that wire them\n   * explicitly (via `tools:` object/function form, markdown `plugin:NAME`\n   * entries in the unified `tools:` list, or\n   * `plugins.<name>.toolkit({ only: [...] })`).\n   */\n  autoInheritable?: boolean;\n  /**\n   * Callback the agents plugin invokes after Zod validation succeeds.\n   *\n   * Named `execute` to match the public `tool({ execute })` form — both the\n   * agent-author surface and the plugin-author surface now spell their\n   * callback the same way. `args` is the inferred Zod output (so `T extends\n   * z.ZodType` flows through and `args` is fully typed). `signal` is the\n   * per-run AbortSignal: forward it to any awaited I/O so cancellation\n   * actually unwinds the call (analytics and lakebase both do this).\n   */\n  execute: (\n    args: z.infer<S>,\n    signal?: AbortSignal,\n  ) => unknown | Promise<unknown>;\n}\n\nexport type ToolRegistry = Record<string, ToolEntry>;\n\n/**\n * Defines a single tool entry for a plugin's internal registry.\n *\n * The generic `S` flows from `schema` through to the `handler` callback so\n * `args` is fully typed from the Zod schema. Names are assigned by the\n * registry key, so they are not repeated inside the entry.\n */\nexport function defineTool<S extends z.ZodType>(\n  config: ToolEntry<S>,\n): ToolEntry<S> {\n  return config;\n}\n\n/**\n * Validates tool-call arguments against the entry's schema and invokes its\n * handler. On validation failure, returns an LLM-friendly error string\n * (matching the behavior of `tool()`) rather than throwing, so the model\n * can self-correct on its next turn.\n */\nexport async function executeFromRegistry(\n  registry: ToolRegistry,\n  name: string,\n  args: unknown,\n  signal?: AbortSignal,\n): Promise<unknown> {\n  const entry = registry[name];\n  if (!entry) {\n    throw new Error(`Unknown tool: ${name}`);\n  }\n  const parsed = entry.schema.safeParse(args);\n  if (!parsed.success) {\n    return formatZodError(parsed.error, name);\n  }\n  return entry.execute(parsed.data, signal);\n}\n\n/**\n * Produces the `AgentToolDefinition[]` a ToolProvider exposes to the LLM,\n * deriving `parameters` JSON Schema from each entry's Zod schema.\n *\n * Tool names come from registry keys (supports dotted names like\n * `uploads.list` for dynamic plugins).\n */\nexport function toolsFromRegistry(\n  registry: ToolRegistry,\n): AgentToolDefinition[] {\n  return Object.entries(registry).map(([name, entry]) => {\n    const parameters = toToolJSONSchema(\n      entry.schema,\n    ) as unknown as AgentToolDefinition[\"parameters\"];\n    const def: AgentToolDefinition = {\n      name,\n      description: entry.description,\n      parameters,\n    };\n    if (entry.annotations) {\n      def.annotations = entry.annotations;\n    }\n    return def;\n  });\n}\n"],"mappings":";;;;;;;;;;;AAoDA,SAAgB,WACd,QACc;AACd,QAAO;;;;;;;;AAST,eAAsB,oBACpB,UACA,MACA,MACA,QACkB;CAClB,MAAM,QAAQ,SAAS;AACvB,KAAI,CAAC,MACH,OAAM,IAAI,MAAM,iBAAiB,OAAO;CAE1C,MAAM,SAAS,MAAM,OAAO,UAAU,KAAK;AAC3C,KAAI,CAAC,OAAO,QACV,QAAO,eAAe,OAAO,OAAO,KAAK;AAE3C,QAAO,MAAM,QAAQ,OAAO,MAAM,OAAO;;;;;;;;;AAU3C,SAAgB,kBACd,UACuB;AACvB,QAAO,OAAO,QAAQ,SAAS,CAAC,KAAK,CAAC,MAAM,WAAW;EACrD,MAAM,aAAa,iBACjB,MAAM,OACP;EACD,MAAM,MAA2B;GAC/B;GACA,aAAa,MAAM;GACnB;GACD;AACD,MAAI,MAAM,YACR,KAAI,cAAc,MAAM;AAE1B,SAAO;GACP"}

package/dist/core/agent/tools/function-tool.d.ts

@@ -0,0 +1,38 @@
+import { AgentToolDefinition, ToolAnnotations } from "../../../shared/src/agent.js";
+import "../../../shared/src/index.js";
+
+//#region src/core/agent/tools/function-tool.d.ts
+interface FunctionTool {
+  type: "function";
+  /**
+   * Optional. When this tool is placed in a keyed record
+   * (`tools: { my_tool: ... }` or the function form), the agents plugin
+   * overrides this with the record key at index-build time. Only set it
+   * explicitly when constructing a `FunctionTool` outside any
+   * keyed-record context.
+   */
+  name?: string;
+  description?: string | null;
+  parameters?: Record<string, unknown> | null;
+  strict?: boolean | null;
+  /**
+   * Behavioural hints that drive the agents plugin's approval gate and the
+   * client's approval-card styling. Prefer setting `effect` (one of
+   * `"read" | "write" | "update" | "destructive"`) — any mutating value
+   * forces HITL approval before `execute()` runs. Legacy `destructive: true`
+   * is still honoured. Must be preserved through {@link
+   * functionToolToDefinition} so the plugin sees them when building agent
+   * tool indexes.
+   */
+  annotations?: ToolAnnotations;
+  /**
+   * Returns any shape; downstream `normalizeToolResult` serializes to a
+   * string before handing the value to the LLM.
+   */
+  execute: (args: Record<string, unknown>) => unknown | Promise<unknown>;
+}
+declare function isFunctionTool(value: unknown): value is FunctionTool;
+declare function functionToolToDefinition(tool: FunctionTool): AgentToolDefinition;
+//#endregion
+export { FunctionTool, functionToolToDefinition, isFunctionTool };
+//# sourceMappingURL=function-tool.d.ts.map

package/dist/core/agent/tools/function-tool.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"function-tool.d.ts","names":[],"sources":["../../../../src/core/agent/tools/function-tool.ts"],"mappings":";;;;UAEiB,YAAA;EACf,IAAA;;AADF;;;;;;EASE,IAAA;EACA,WAAA;EACA,UAAA,GAAa,MAAA;EACb,MAAA;EAHA;;;;;;;;;EAaA,WAAA,GAAc,eAAA;EAKwC;;;AAGxD;EAHE,OAAA,GAAU,IAAA,EAAM,MAAA,gCAAsC,OAAA;AAAA;AAAA,iBAGxC,cAAA,CAAe,KAAA,YAAiB,KAAA,IAAS,YAAA;AAAA,iBAUzC,wBAAA,CACd,IAAA,EAAM,YAAA,GACL,mBAAA"}

package/dist/core/agent/tools/function-tool.js

@@ -0,0 +1,22 @@
+//#region src/core/agent/tools/function-tool.ts
+function isFunctionTool(value) {
+	if (typeof value !== "object" || value === null) return false;
+	const obj = value;
+	return obj.type === "function" && typeof obj.execute === "function";
+}
+function functionToolToDefinition(tool) {
+	const name = tool.name ?? "";
+	return {
+		name,
+		description: tool.description ?? name,
+		parameters: tool.parameters ?? {
+			type: "object",
+			properties: {}
+		},
+		...tool.annotations ? { annotations: tool.annotations } : {}
+	};
+}
+
+//#endregion
+export { functionToolToDefinition, isFunctionTool };
+//# sourceMappingURL=function-tool.js.map

package/dist/core/agent/tools/function-tool.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"function-tool.js","names":[],"sources":["../../../../src/core/agent/tools/function-tool.ts"],"sourcesContent":["import type { AgentToolDefinition, ToolAnnotations } from \"shared\";\n\nexport interface FunctionTool {\n  type: \"function\";\n  /**\n   * Optional. When this tool is placed in a keyed record\n   * (`tools: { my_tool: ... }` or the function form), the agents plugin\n   * overrides this with the record key at index-build time. Only set it\n   * explicitly when constructing a `FunctionTool` outside any\n   * keyed-record context.\n   */\n  name?: string;\n  description?: string | null;\n  parameters?: Record<string, unknown> | null;\n  strict?: boolean | null;\n  /**\n   * Behavioural hints that drive the agents plugin's approval gate and the\n   * client's approval-card styling. Prefer setting `effect` (one of\n   * `\"read\" | \"write\" | \"update\" | \"destructive\"`) — any mutating value\n   * forces HITL approval before `execute()` runs. Legacy `destructive: true`\n   * is still honoured. Must be preserved through {@link\n   * functionToolToDefinition} so the plugin sees them when building agent\n   * tool indexes.\n   */\n  annotations?: ToolAnnotations;\n  /**\n   * Returns any shape; downstream `normalizeToolResult` serializes to a\n   * string before handing the value to the LLM.\n   */\n  execute: (args: Record<string, unknown>) => unknown | Promise<unknown>;\n}\n\nexport function isFunctionTool(value: unknown): value is FunctionTool {\n  if (typeof value !== \"object\" || value === null) return false;\n  const obj = value as Record<string, unknown>;\n  // `name` is intentionally not required: the agents plugin overrides it\n  // with the record key (`tools: { my_tool: tool({...}) }` -> \"my_tool\")\n  // so requiring it on the FunctionTool shape rejects perfectly-valid\n  // `tool({ description, schema, execute })` calls that omit the name.\n  return obj.type === \"function\" && typeof obj.execute === \"function\";\n}\n\nexport function functionToolToDefinition(\n  tool: FunctionTool,\n): AgentToolDefinition {\n  // `name` is guaranteed to be overridden downstream by the record key\n  // when the tool is registered through `AgentDefinition.tools`. Falling\n  // back to an empty string here keeps the type honest without\n  // surfacing a sentinel that could leak into a non-record context.\n  const name = tool.name ?? \"\";\n  return {\n    name,\n    description: tool.description ?? name,\n    parameters: (tool.parameters as AgentToolDefinition[\"parameters\"]) ?? {\n      type: \"object\",\n      properties: {},\n    },\n    ...(tool.annotations ? { annotations: tool.annotations } : {}),\n  };\n}\n"],"mappings":";AAgCA,SAAgB,eAAe,OAAuC;AACpE,KAAI,OAAO,UAAU,YAAY,UAAU,KAAM,QAAO;CACxD,MAAM,MAAM;AAKZ,QAAO,IAAI,SAAS,cAAc,OAAO,IAAI,YAAY;;AAG3D,SAAgB,yBACd,MACqB;CAKrB,MAAM,OAAO,KAAK,QAAQ;AAC1B,QAAO;EACL;EACA,aAAa,KAAK,eAAe;EACjC,YAAa,KAAK,cAAoD;GACpE,MAAM;GACN,YAAY,EAAE;GACf;EACD,GAAI,KAAK,cAAc,EAAE,aAAa,KAAK,aAAa,GAAG,EAAE;EAC9D"}

package/dist/core/agent/tools/hosted-tools.d.ts

@@ -0,0 +1,47 @@
+import { McpEndpointConfig } from "../../../connectors/mcp/types.js";
+import "../../../connectors/mcp/index.js";
+
+//#region src/core/agent/tools/hosted-tools.d.ts
+interface GenieTool {
+  type: "genie-space";
+  genie_space: {
+    id: string;
+  };
+}
+interface VectorSearchIndexTool {
+  type: "vector_search_index";
+  vector_search_index: {
+    name: string;
+  };
+}
+interface CustomMcpServerTool {
+  type: "custom_mcp_server";
+  custom_mcp_server: {
+    app_name: string;
+    app_url: string;
+  };
+}
+interface ExternalMcpServerTool {
+  type: "external_mcp_server";
+  external_mcp_server: {
+    connection_name: string;
+  };
+}
+type HostedTool = GenieTool | VectorSearchIndexTool | CustomMcpServerTool | ExternalMcpServerTool;
+declare function isHostedTool(value: unknown): value is HostedTool;
+declare function resolveHostedTools(tools: HostedTool[]): McpEndpointConfig[];
+/**
+ * Factory for declaring a custom MCP server tool.
+ *
+ * Replaces the verbose `{ type: "custom_mcp_server", custom_mcp_server: { app_name, app_url } }`
+ * wrapper with a concise positional call.
+ *
+ * Example:
+ * ```ts
+ * mcpServer("my-app", "https://my-app.databricksapps.com/mcp")
+ * ```
+ */
+declare function mcpServer(name: string, url: string): CustomMcpServerTool;
+//#endregion
+export { HostedTool, isHostedTool, mcpServer, resolveHostedTools };
+//# sourceMappingURL=hosted-tools.d.ts.map

package/dist/core/agent/tools/hosted-tools.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"hosted-tools.d.ts","names":[],"sources":["../../../../src/core/agent/tools/hosted-tools.ts"],"mappings":";;;;UAEiB,SAAA;EACf,IAAA;EACA,WAAA;IAAe,EAAA;EAAA;AAAA;AAAA,UAGA,qBAAA;EACf,IAAA;EACA,mBAAA;IAAuB,IAAA;EAAA;AAAA;AAAA,UAGR,mBAAA;EACf,IAAA;EACA,iBAAA;IAAqB,QAAA;IAAkB,OAAA;EAAA;AAAA;AAAA,UAGxB,qBAAA;EACf,IAAA;EACA,mBAAA;IAAuB,eAAA;EAAA;AAAA;AAAA,KAGb,UAAA,GACR,SAAA,GACA,qBAAA,GACA,mBAAA,GACA,qBAAA;AAAA,iBASY,YAAA,CAAa,KAAA,YAAiB,KAAA,IAAS,UAAA;AAAA,iBA0CvC,kBAAA,CAAmB,KAAA,EAAO,UAAA,KAAe,iBAAA;;;;AA5DzD;;;;;;;;iBA2EgB,SAAA,CAAU,IAAA,UAAc,GAAA,WAAc,mBAAA"}

package/dist/core/agent/tools/hosted-tools.js

@@ -0,0 +1,67 @@
+//#region src/core/agent/tools/hosted-tools.ts
+const HOSTED_TOOL_TYPES = new Set([
+	"genie-space",
+	"vector_search_index",
+	"custom_mcp_server",
+	"external_mcp_server"
+]);
+function isHostedTool(value) {
+	if (typeof value !== "object" || value === null) return false;
+	const obj = value;
+	return typeof obj.type === "string" && HOSTED_TOOL_TYPES.has(obj.type);
+}
+/**
+* Resolves HostedTool configs into MCP endpoint configurations
+* that the MCP client can connect to.
+*/
+function resolveHostedTool(tool) {
+	switch (tool.type) {
+		case "genie-space": return {
+			name: `genie-${tool.genie_space.id}`,
+			url: `/api/2.0/mcp/genie/${tool.genie_space.id}`
+		};
+		case "vector_search_index": {
+			const parts = tool.vector_search_index.name.split(".");
+			if (parts.length !== 3) throw new Error(`vector_search_index name must be 3-part dotted (catalog.schema.index), got: ${tool.vector_search_index.name}`);
+			return {
+				name: `vs-${parts.join("-")}`,
+				url: `/api/2.0/mcp/vector-search/${parts[0]}/${parts[1]}/${parts[2]}`
+			};
+		}
+		case "custom_mcp_server": return {
+			name: tool.custom_mcp_server.app_name,
+			url: tool.custom_mcp_server.app_url
+		};
+		case "external_mcp_server": return {
+			name: tool.external_mcp_server.connection_name,
+			url: `/api/2.0/mcp/external/${tool.external_mcp_server.connection_name}`
+		};
+	}
+}
+function resolveHostedTools(tools) {
+	return tools.map(resolveHostedTool);
+}
+/**
+* Factory for declaring a custom MCP server tool.
+*
+* Replaces the verbose `{ type: "custom_mcp_server", custom_mcp_server: { app_name, app_url } }`
+* wrapper with a concise positional call.
+*
+* Example:
+* ```ts
+* mcpServer("my-app", "https://my-app.databricksapps.com/mcp")
+* ```
+*/
+function mcpServer(name, url) {
+	return {
+		type: "custom_mcp_server",
+		custom_mcp_server: {
+			app_name: name,
+			app_url: url
+		}
+	};
+}
+
+//#endregion
+export { isHostedTool, mcpServer, resolveHostedTools };
+//# sourceMappingURL=hosted-tools.js.map

package/dist/core/agent/tools/hosted-tools.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"hosted-tools.js","names":[],"sources":["../../../../src/core/agent/tools/hosted-tools.ts"],"sourcesContent":["import type { McpEndpointConfig } from \"../../../connectors/mcp\";\n\nexport interface GenieTool {\n  type: \"genie-space\";\n  genie_space: { id: string };\n}\n\nexport interface VectorSearchIndexTool {\n  type: \"vector_search_index\";\n  vector_search_index: { name: string };\n}\n\nexport interface CustomMcpServerTool {\n  type: \"custom_mcp_server\";\n  custom_mcp_server: { app_name: string; app_url: string };\n}\n\nexport interface ExternalMcpServerTool {\n  type: \"external_mcp_server\";\n  external_mcp_server: { connection_name: string };\n}\n\nexport type HostedTool =\n  | GenieTool\n  | VectorSearchIndexTool\n  | CustomMcpServerTool\n  | ExternalMcpServerTool;\n\nconst HOSTED_TOOL_TYPES = new Set([\n  \"genie-space\",\n  \"vector_search_index\",\n  \"custom_mcp_server\",\n  \"external_mcp_server\",\n]);\n\nexport function isHostedTool(value: unknown): value is HostedTool {\n  if (typeof value !== \"object\" || value === null) return false;\n  const obj = value as Record<string, unknown>;\n  return typeof obj.type === \"string\" && HOSTED_TOOL_TYPES.has(obj.type);\n}\n\n/**\n * Resolves HostedTool configs into MCP endpoint configurations\n * that the MCP client can connect to.\n */\nfunction resolveHostedTool(tool: HostedTool): McpEndpointConfig {\n  switch (tool.type) {\n    case \"genie-space\":\n      return {\n        name: `genie-${tool.genie_space.id}`,\n        url: `/api/2.0/mcp/genie/${tool.genie_space.id}`,\n      };\n    case \"vector_search_index\": {\n      const parts = tool.vector_search_index.name.split(\".\");\n      if (parts.length !== 3) {\n        throw new Error(\n          `vector_search_index name must be 3-part dotted (catalog.schema.index), got: ${tool.vector_search_index.name}`,\n        );\n      }\n      return {\n        name: `vs-${parts.join(\"-\")}`,\n        url: `/api/2.0/mcp/vector-search/${parts[0]}/${parts[1]}/${parts[2]}`,\n      };\n    }\n    case \"custom_mcp_server\":\n      return {\n        name: tool.custom_mcp_server.app_name,\n        url: tool.custom_mcp_server.app_url,\n      };\n    case \"external_mcp_server\":\n      return {\n        name: tool.external_mcp_server.connection_name,\n        url: `/api/2.0/mcp/external/${tool.external_mcp_server.connection_name}`,\n      };\n  }\n}\n\nexport function resolveHostedTools(tools: HostedTool[]): McpEndpointConfig[] {\n  return tools.map(resolveHostedTool);\n}\n\n/**\n * Factory for declaring a custom MCP server tool.\n *\n * Replaces the verbose `{ type: \"custom_mcp_server\", custom_mcp_server: { app_name, app_url } }`\n * wrapper with a concise positional call.\n *\n * Example:\n * ```ts\n * mcpServer(\"my-app\", \"https://my-app.databricksapps.com/mcp\")\n * ```\n */\nexport function mcpServer(name: string, url: string): CustomMcpServerTool {\n  return {\n    type: \"custom_mcp_server\",\n    custom_mcp_server: { app_name: name, app_url: url },\n  };\n}\n"],"mappings":";AA4BA,MAAM,oBAAoB,IAAI,IAAI;CAChC;CACA;CACA;CACA;CACD,CAAC;AAEF,SAAgB,aAAa,OAAqC;AAChE,KAAI,OAAO,UAAU,YAAY,UAAU,KAAM,QAAO;CACxD,MAAM,MAAM;AACZ,QAAO,OAAO,IAAI,SAAS,YAAY,kBAAkB,IAAI,IAAI,KAAK;;;;;;AAOxE,SAAS,kBAAkB,MAAqC;AAC9D,SAAQ,KAAK,MAAb;EACE,KAAK,cACH,QAAO;GACL,MAAM,SAAS,KAAK,YAAY;GAChC,KAAK,sBAAsB,KAAK,YAAY;GAC7C;EACH,KAAK,uBAAuB;GAC1B,MAAM,QAAQ,KAAK,oBAAoB,KAAK,MAAM,IAAI;AACtD,OAAI,MAAM,WAAW,EACnB,OAAM,IAAI,MACR,+EAA+E,KAAK,oBAAoB,OACzG;AAEH,UAAO;IACL,MAAM,MAAM,MAAM,KAAK,IAAI;IAC3B,KAAK,8BAA8B,MAAM,GAAG,GAAG,MAAM,GAAG,GAAG,MAAM;IAClE;;EAEH,KAAK,oBACH,QAAO;GACL,MAAM,KAAK,kBAAkB;GAC7B,KAAK,KAAK,kBAAkB;GAC7B;EACH,KAAK,sBACH,QAAO;GACL,MAAM,KAAK,oBAAoB;GAC/B,KAAK,yBAAyB,KAAK,oBAAoB;GACxD;;;AAIP,SAAgB,mBAAmB,OAA0C;AAC3E,QAAO,MAAM,IAAI,kBAAkB;;;;;;;;;;;;;AAcrC,SAAgB,UAAU,MAAc,KAAkC;AACxE,QAAO;EACL,MAAM;EACN,mBAAmB;GAAE,UAAU;GAAM,SAAS;GAAK;EACpD"}

package/dist/core/agent/tools/index.d.ts

@@ -0,0 +1,5 @@
+import { AppKitMcpClient, McpConnectAllResult } from "../../../connectors/mcp/client.js";
+import { FunctionTool, functionToolToDefinition, isFunctionTool } from "./function-tool.js";
+import { HostedTool, isHostedTool, mcpServer, resolveHostedTools } from "./hosted-tools.js";
+import { ToolEntry, ToolRegistry, defineTool, executeFromRegistry, toolsFromRegistry } from "./define-tool.js";
+import { ToolConfig, tool } from "./tool.js";

package/dist/core/agent/tools/index.js

@@ -0,0 +1,7 @@
+import { AppKitMcpClient } from "../../../connectors/mcp/client.js";
+import { tool } from "./tool.js";
+import { defineTool, executeFromRegistry, toolsFromRegistry } from "./define-tool.js";
+import { functionToolToDefinition, isFunctionTool } from "./function-tool.js";
+import { isHostedTool, mcpServer, resolveHostedTools } from "./hosted-tools.js";
+
+export {  };

package/dist/core/agent/tools/json-schema.js

@@ -0,0 +1,24 @@
+import { toJSONSchema } from "zod";
+
+//#region src/core/agent/tools/json-schema.ts
+/**
+* Converts a Zod schema to JSON Schema suitable for an LLM tool-call
+* `parameters` field.
+*
+* Wraps `zod`'s `toJSONSchema()` and strips the top-level `$schema` annotation
+* that Zod v4 emits by default (e.g. `"https://json-schema.org/draft/..."`).
+* The Databricks Mosaic serving endpoint forwards tool schemas to Google's
+* Gemini `function_declarations` format, which rejects any top-level key it
+* doesn't explicitly recognize — including `$schema` — with a 400
+* `Invalid JSON payload received. Unknown name "$schema"` error. Other LLM
+* providers either ignore the field or also trip on it, so stripping here is
+* safe across backends.
+*/
+function toToolJSONSchema(schema) {
+	const { $schema: _ignored, ...rest } = toJSONSchema(schema);
+	return rest;
+}
+
+//#endregion
+export { toToolJSONSchema };
+//# sourceMappingURL=json-schema.js.map

package/dist/core/agent/tools/json-schema.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"json-schema.js","names":[],"sources":["../../../../src/core/agent/tools/json-schema.ts"],"sourcesContent":["import { toJSONSchema, type z } from \"zod\";\n\n/**\n * Converts a Zod schema to JSON Schema suitable for an LLM tool-call\n * `parameters` field.\n *\n * Wraps `zod`'s `toJSONSchema()` and strips the top-level `$schema` annotation\n * that Zod v4 emits by default (e.g. `\"https://json-schema.org/draft/...\"`).\n * The Databricks Mosaic serving endpoint forwards tool schemas to Google's\n * Gemini `function_declarations` format, which rejects any top-level key it\n * doesn't explicitly recognize — including `$schema` — with a 400\n * `Invalid JSON payload received. Unknown name \"$schema\"` error. Other LLM\n * providers either ignore the field or also trip on it, so stripping here is\n * safe across backends.\n */\nexport function toToolJSONSchema(schema: z.ZodType): Record<string, unknown> {\n  const raw = toJSONSchema(schema) as Record<string, unknown>;\n  const { $schema: _ignored, ...rest } = raw;\n  return rest;\n}\n"],"mappings":";;;;;;;;;;;;;;;;AAeA,SAAgB,iBAAiB,QAA4C;CAE3E,MAAM,EAAE,SAAS,UAAU,GAAG,SADlB,aAAa,OAAO;AAEhC,QAAO"}

package/dist/core/agent/tools/sql-policy.js

@@ -0,0 +1,256 @@
+//#region src/core/agent/tools/sql-policy.ts
+/**
+* Conservative SQL classifier used by agent-facing query tools to enforce
+* `readOnly: true` annotations at execution time.
+*
+* Why a hand-rolled tokenizer rather than `node-sql-parser` or `pgsql-parser`:
+*
+* - `node-sql-parser`'s Hive/Spark dialect coverage rejects common Databricks
+*   SQL patterns (three-part `catalog.schema.table` names, `SHOW TABLES IN`,
+*   `DESCRIBE EXTENDED`, `EXPLAIN`) that must be allowed by a read-only
+*   classifier. Its PostgreSQL grammar rejects `SHOW`/`DESCRIBE` too.
+* - `pgsql-parser` (libpg_query) is a native binding and fails to install
+*   cleanly on every Databricks App runtime we care about.
+*
+* We don't need to fully parse SQL — we only need to decide whether every
+* statement in the batch starts with a read-only keyword. A small tokenizer
+* that correctly strips strings, identifiers, and comments is enough and
+* costs no extra dependencies.
+*
+* What this classifier guarantees (when it returns `readOnly: true`):
+*
+* - Every semicolon-separated statement outside a string, identifier, or
+*   comment begins with `SELECT`, `WITH`, `SHOW`, `EXPLAIN`, `DESCRIBE`, or
+*   `DESC`.
+* - `SELECT 1; DROP TABLE x` is rejected (stacked write detected).
+* - `SELECT 'value; DROP TABLE x'` passes (literal inside a string).
+* - `-- DROP TABLE x\nSELECT 1` passes (comment stripped).
+* - `SELECT 1 <block-comment ; DROP block-comment>` passes (comment stripped).
+*
+* What this classifier does NOT guarantee:
+*
+* - A `SELECT` statement may still have side effects via function calls
+*   (`SELECT pg_advisory_lock(...)`, `SELECT lo_import('/etc/passwd')`, CTEs
+*   with DML in Postgres 9.1+). Callers that need stronger guarantees should
+*   combine this check with a runtime mechanism: for PostgreSQL, execute the
+*   statement inside a dedicated client's `BEGIN READ ONLY … ROLLBACK`
+*   transaction (see `LakebasePlugin.runReadOnlyStatement`). A batched
+*   `pool.query("BEGIN READ ONLY; <stmt>; ROLLBACK")` cannot be used because
+*   the Postgres Extended Query protocol rejects multi-statement prepared
+*   queries, which silently breaks parameterized SQL.
+*/
+const READ_ONLY_KEYWORDS = new Set([
+	"SELECT",
+	"WITH",
+	"SHOW",
+	"EXPLAIN",
+	"DESCRIBE",
+	"DESC"
+]);
+/**
+* Classify a SQL string as read-only or not. See module docstring for the
+* precise guarantee this offers.
+*/
+function classifyReadOnly(sql) {
+	const strip = stripCommentsAndQuoted(sql);
+	if (strip.unterminated) return {
+		readOnly: false,
+		reason: `SQL has an unterminated ${strip.unterminated} literal`
+	};
+	const statements = splitStatements(strip.cleaned);
+	if (statements.length === 0) return {
+		readOnly: false,
+		reason: "SQL is empty or contains only comments"
+	};
+	for (let i = 0; i < statements.length; i++) {
+		const stmt = statements[i];
+		const firstWord = firstKeyword(stmt);
+		if (!firstWord) return {
+			readOnly: false,
+			reason: `statement ${i + 1} of ${statements.length} is empty`
+		};
+		if (!READ_ONLY_KEYWORDS.has(firstWord.toUpperCase())) return {
+			readOnly: false,
+			reason: `statement starts with '${firstWord}'; only SELECT, WITH, SHOW, EXPLAIN, DESCRIBE, DESC are allowed in read-only mode`
+		};
+	}
+	return {
+		readOnly: true,
+		statements: statements.length
+	};
+}
+/**
+* Assert `sql` is read-only or throw {@link ReadOnlySqlViolation}. Suitable
+* for calling from agent-tool handlers where the thrown string surfaces back
+* to the LLM as the tool's error output.
+*/
+function assertReadOnlySql(sql) {
+	const result = classifyReadOnly(sql);
+	if (!result.readOnly) throw new ReadOnlySqlViolation(result.reason);
+}
+var ReadOnlySqlViolation = class extends Error {
+	constructor(reason) {
+		super(`SQL read-only policy violation: ${reason}`);
+		this.name = "ReadOnlySqlViolation";
+	}
+};
+function stripCommentsAndQuoted(sql) {
+	const out = [];
+	let i = 0;
+	const n = sql.length;
+	let unterminated = null;
+	while (i < n) {
+		const ch = sql[i];
+		const next = i + 1 < n ? sql[i + 1] : "";
+		if (ch === "-" && next === "-") {
+			out.push("  ");
+			i += 2;
+			while (i < n && sql[i] !== "\n") {
+				out.push(" ");
+				i++;
+			}
+			continue;
+		}
+		if (ch === "/" && next === "*") {
+			out.push("  ");
+			i += 2;
+			let depth = 1;
+			while (i < n && depth > 0) {
+				if (sql[i] === "/" && sql[i + 1] === "*") {
+					out.push("  ");
+					i += 2;
+					depth++;
+					continue;
+				}
+				if (sql[i] === "*" && sql[i + 1] === "/") {
+					out.push("  ");
+					i += 2;
+					depth--;
+					continue;
+				}
+				out.push(sql[i] === "\n" ? "\n" : " ");
+				i++;
+			}
+			if (depth > 0) unterminated = "block comment";
+			continue;
+		}
+		if (ch === "'" || ch === "E" && next === "'" || ch === "e" && next === "'") {
+			if (ch === "E" || ch === "e") {
+				out.push(" ");
+				i++;
+			}
+			out.push(" ");
+			i++;
+			let closed = false;
+			while (i < n) {
+				if (sql[i] === "'" && sql[i + 1] === "'") {
+					out.push("  ");
+					i += 2;
+					continue;
+				}
+				if (sql[i] === "\\" && sql[i + 1]) {
+					out.push("  ");
+					i += 2;
+					continue;
+				}
+				if (sql[i] === "'") {
+					out.push(" ");
+					i++;
+					closed = true;
+					break;
+				}
+				out.push(sql[i] === "\n" ? "\n" : " ");
+				i++;
+			}
+			if (!closed) unterminated = "string";
+			continue;
+		}
+		if (ch === "\"") {
+			out.push(" ");
+			i++;
+			let closed = false;
+			while (i < n) {
+				if (sql[i] === "\"" && sql[i + 1] === "\"") {
+					out.push("  ");
+					i += 2;
+					continue;
+				}
+				if (sql[i] === "\"") {
+					out.push(" ");
+					i++;
+					closed = true;
+					break;
+				}
+				out.push(sql[i] === "\n" ? "\n" : " ");
+				i++;
+			}
+			if (!closed) unterminated = "identifier";
+			continue;
+		}
+		if (ch === "`") {
+			out.push(" ");
+			i++;
+			let closed = false;
+			while (i < n) {
+				if (sql[i] === "`" && sql[i + 1] === "`") {
+					out.push("  ");
+					i += 2;
+					continue;
+				}
+				if (sql[i] === "`") {
+					out.push(" ");
+					i++;
+					closed = true;
+					break;
+				}
+				out.push(sql[i] === "\n" ? "\n" : " ");
+				i++;
+			}
+			if (!closed) unterminated = "identifier";
+			continue;
+		}
+		if (ch === "$") {
+			const tagMatch = sql.slice(i).match(/^\$([A-Za-z_][A-Za-z0-9_]*)?\$/);
+			if (tagMatch) {
+				const tag = tagMatch[0];
+				out.push(" ".repeat(tag.length));
+				i += tag.length;
+				const closeIdx = sql.indexOf(tag, i);
+				if (closeIdx === -1) {
+					while (i < n) {
+						out.push(sql[i] === "\n" ? "\n" : " ");
+						i++;
+					}
+					unterminated = "dollar-quoted string";
+				} else {
+					while (i < closeIdx) {
+						out.push(sql[i] === "\n" ? "\n" : " ");
+						i++;
+					}
+					out.push(" ".repeat(tag.length));
+					i += tag.length;
+				}
+				continue;
+			}
+		}
+		out.push(ch);
+		i++;
+	}
+	return {
+		cleaned: out.join(""),
+		unterminated
+	};
+}
+/** Split on unquoted `;`, trim, drop empty segments. */
+function splitStatements(cleanedSql) {
+	return cleanedSql.split(";").map((s) => s.trim()).filter((s) => s.length > 0);
+}
+/** Return the first bareword keyword of a statement, or null if empty. */
+function firstKeyword(stmt) {
+	const match = stmt.match(/^\s*([A-Za-z_][A-Za-z0-9_]*)/);
+	return match ? match[1] : null;
+}
+
+//#endregion
+export { assertReadOnlySql };
+//# sourceMappingURL=sql-policy.js.map

package/dist/core/agent/tools/sql-policy.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"sql-policy.js","names":[],"sources":["../../../../src/core/agent/tools/sql-policy.ts"],"sourcesContent":["/**\n * Conservative SQL classifier used by agent-facing query tools to enforce\n * `readOnly: true` annotations at execution time.\n *\n * Why a hand-rolled tokenizer rather than `node-sql-parser` or `pgsql-parser`:\n *\n * - `node-sql-parser`'s Hive/Spark dialect coverage rejects common Databricks\n *   SQL patterns (three-part `catalog.schema.table` names, `SHOW TABLES IN`,\n *   `DESCRIBE EXTENDED`, `EXPLAIN`) that must be allowed by a read-only\n *   classifier. Its PostgreSQL grammar rejects `SHOW`/`DESCRIBE` too.\n * - `pgsql-parser` (libpg_query) is a native binding and fails to install\n *   cleanly on every Databricks App runtime we care about.\n *\n * We don't need to fully parse SQL — we only need to decide whether every\n * statement in the batch starts with a read-only keyword. A small tokenizer\n * that correctly strips strings, identifiers, and comments is enough and\n * costs no extra dependencies.\n *\n * What this classifier guarantees (when it returns `readOnly: true`):\n *\n * - Every semicolon-separated statement outside a string, identifier, or\n *   comment begins with `SELECT`, `WITH`, `SHOW`, `EXPLAIN`, `DESCRIBE`, or\n *   `DESC`.\n * - `SELECT 1; DROP TABLE x` is rejected (stacked write detected).\n * - `SELECT 'value; DROP TABLE x'` passes (literal inside a string).\n * - `-- DROP TABLE x\\nSELECT 1` passes (comment stripped).\n * - `SELECT 1 <block-comment ; DROP block-comment>` passes (comment stripped).\n *\n * What this classifier does NOT guarantee:\n *\n * - A `SELECT` statement may still have side effects via function calls\n *   (`SELECT pg_advisory_lock(...)`, `SELECT lo_import('/etc/passwd')`, CTEs\n *   with DML in Postgres 9.1+). Callers that need stronger guarantees should\n *   combine this check with a runtime mechanism: for PostgreSQL, execute the\n *   statement inside a dedicated client's `BEGIN READ ONLY … ROLLBACK`\n *   transaction (see `LakebasePlugin.runReadOnlyStatement`). A batched\n *   `pool.query(\"BEGIN READ ONLY; <stmt>; ROLLBACK\")` cannot be used because\n *   the Postgres Extended Query protocol rejects multi-statement prepared\n *   queries, which silently breaks parameterized SQL.\n */\n\nconst READ_ONLY_KEYWORDS = new Set([\n  \"SELECT\",\n  \"WITH\",\n  \"SHOW\",\n  \"EXPLAIN\",\n  \"DESCRIBE\",\n  \"DESC\",\n]);\n\ntype SqlReadOnlyResult =\n  | { readOnly: true; statements: number }\n  | { readOnly: false; reason: string };\n\n/**\n * Classify a SQL string as read-only or not. See module docstring for the\n * precise guarantee this offers.\n */\nexport function classifyReadOnly(sql: string): SqlReadOnlyResult {\n  const strip = stripCommentsAndQuoted(sql);\n  if (strip.unterminated) {\n    return {\n      readOnly: false,\n      reason: `SQL has an unterminated ${strip.unterminated} literal`,\n    };\n  }\n  const statements = splitStatements(strip.cleaned);\n\n  if (statements.length === 0) {\n    return {\n      readOnly: false,\n      reason: \"SQL is empty or contains only comments\",\n    };\n  }\n\n  for (let i = 0; i < statements.length; i++) {\n    const stmt = statements[i];\n    const firstWord = firstKeyword(stmt);\n    if (!firstWord) {\n      return {\n        readOnly: false,\n        reason: `statement ${i + 1} of ${statements.length} is empty`,\n      };\n    }\n    if (!READ_ONLY_KEYWORDS.has(firstWord.toUpperCase())) {\n      return {\n        readOnly: false,\n        reason: `statement starts with '${firstWord}'; only SELECT, WITH, SHOW, EXPLAIN, DESCRIBE, DESC are allowed in read-only mode`,\n      };\n    }\n  }\n\n  return { readOnly: true, statements: statements.length };\n}\n\n/**\n * Assert `sql` is read-only or throw {@link ReadOnlySqlViolation}. Suitable\n * for calling from agent-tool handlers where the thrown string surfaces back\n * to the LLM as the tool's error output.\n */\nexport function assertReadOnlySql(sql: string): void {\n  const result = classifyReadOnly(sql);\n  if (!result.readOnly) {\n    throw new ReadOnlySqlViolation(result.reason);\n  }\n}\n\nexport class ReadOnlySqlViolation extends Error {\n  constructor(reason: string) {\n    super(`SQL read-only policy violation: ${reason}`);\n    this.name = \"ReadOnlySqlViolation\";\n  }\n}\n\n// ---------------------------------------------------------------------------\n// Tokenizer helpers\n// ---------------------------------------------------------------------------\n\n/**\n * Walk `sql` character-by-character and replace every string literal,\n * identifier quote, and comment body with a single space of equivalent\n * length. Leaves structural tokens (semicolons, whitespace, identifiers,\n * operators) in place.\n *\n * Handles:\n * - `-- line comments` through end-of-line\n * - SQL block comments (slash-star ... star-slash) with correct nesting (PostgreSQL)\n * - `'single-quoted strings'` with `''` escape\n * - `\"double-quoted identifiers\"` with `\"\"` escape (ANSI)\n * - `` `backtick identifiers` `` (Databricks)\n * - `$tag$dollar quoted$tag$` strings (PostgreSQL)\n * - `E'escape-style'` strings (PostgreSQL)\n */\ntype StripResult = {\n  cleaned: string;\n  /** Non-null if tokenization ended inside an unterminated literal or comment. */\n  unterminated:\n    | null\n    | \"string\"\n    | \"identifier\"\n    | \"block comment\"\n    | \"dollar-quoted string\";\n};\n\nfunction stripCommentsAndQuoted(sql: string): StripResult {\n  const out: string[] = [];\n  let i = 0;\n  const n = sql.length;\n  let unterminated: StripResult[\"unterminated\"] = null;\n\n  while (i < n) {\n    const ch = sql[i];\n    const next = i + 1 < n ? sql[i + 1] : \"\";\n\n    if (ch === \"-\" && next === \"-\") {\n      out.push(\"  \");\n      i += 2;\n      while (i < n && sql[i] !== \"\\n\") {\n        out.push(\" \");\n        i++;\n      }\n      continue;\n    }\n\n    if (ch === \"/\" && next === \"*\") {\n      out.push(\"  \");\n      i += 2;\n      let depth = 1;\n      while (i < n && depth > 0) {\n        if (sql[i] === \"/\" && sql[i + 1] === \"*\") {\n          out.push(\"  \");\n          i += 2;\n          depth++;\n          continue;\n        }\n        if (sql[i] === \"*\" && sql[i + 1] === \"/\") {\n          out.push(\"  \");\n          i += 2;\n          depth--;\n          continue;\n        }\n        out.push(sql[i] === \"\\n\" ? \"\\n\" : \" \");\n        i++;\n      }\n      if (depth > 0) {\n        unterminated = \"block comment\";\n      }\n      continue;\n    }\n\n    if (\n      ch === \"'\" ||\n      (ch === \"E\" && next === \"'\") ||\n      (ch === \"e\" && next === \"'\")\n    ) {\n      if (ch === \"E\" || ch === \"e\") {\n        out.push(\" \");\n        i++;\n      }\n      out.push(\" \");\n      i++;\n      let closed = false;\n      while (i < n) {\n        if (sql[i] === \"'\" && sql[i + 1] === \"'\") {\n          out.push(\"  \");\n          i += 2;\n          continue;\n        }\n        if (sql[i] === \"\\\\\" && sql[i + 1]) {\n          out.push(\"  \");\n          i += 2;\n          continue;\n        }\n        if (sql[i] === \"'\") {\n          out.push(\" \");\n          i++;\n          closed = true;\n          break;\n        }\n        out.push(sql[i] === \"\\n\" ? \"\\n\" : \" \");\n        i++;\n      }\n      if (!closed) unterminated = \"string\";\n      continue;\n    }\n\n    if (ch === '\"') {\n      out.push(\" \");\n      i++;\n      let closed = false;\n      while (i < n) {\n        if (sql[i] === '\"' && sql[i + 1] === '\"') {\n          out.push(\"  \");\n          i += 2;\n          continue;\n        }\n        if (sql[i] === '\"') {\n          out.push(\" \");\n          i++;\n          closed = true;\n          break;\n        }\n        out.push(sql[i] === \"\\n\" ? \"\\n\" : \" \");\n        i++;\n      }\n      if (!closed) unterminated = \"identifier\";\n      continue;\n    }\n\n    if (ch === \"`\") {\n      out.push(\" \");\n      i++;\n      let closed = false;\n      while (i < n) {\n        if (sql[i] === \"`\" && sql[i + 1] === \"`\") {\n          out.push(\"  \");\n          i += 2;\n          continue;\n        }\n        if (sql[i] === \"`\") {\n          out.push(\" \");\n          i++;\n          closed = true;\n          break;\n        }\n        out.push(sql[i] === \"\\n\" ? \"\\n\" : \" \");\n        i++;\n      }\n      if (!closed) unterminated = \"identifier\";\n      continue;\n    }\n\n    if (ch === \"$\") {\n      const tagMatch = sql.slice(i).match(/^\\$([A-Za-z_][A-Za-z0-9_]*)?\\$/);\n      if (tagMatch) {\n        const tag = tagMatch[0];\n        out.push(\" \".repeat(tag.length));\n        i += tag.length;\n        const closeIdx = sql.indexOf(tag, i);\n        if (closeIdx === -1) {\n          while (i < n) {\n            out.push(sql[i] === \"\\n\" ? \"\\n\" : \" \");\n            i++;\n          }\n          unterminated = \"dollar-quoted string\";\n        } else {\n          while (i < closeIdx) {\n            out.push(sql[i] === \"\\n\" ? \"\\n\" : \" \");\n            i++;\n          }\n          out.push(\" \".repeat(tag.length));\n          i += tag.length;\n        }\n        continue;\n      }\n    }\n\n    out.push(ch);\n    i++;\n  }\n\n  return { cleaned: out.join(\"\"), unterminated };\n}\n\n/** Split on unquoted `;`, trim, drop empty segments. */\nfunction splitStatements(cleanedSql: string): string[] {\n  return cleanedSql\n    .split(\";\")\n    .map((s) => s.trim())\n    .filter((s) => s.length > 0);\n}\n\n/** Return the first bareword keyword of a statement, or null if empty. */\nfunction firstKeyword(stmt: string): string | null {\n  const match = stmt.match(/^\\s*([A-Za-z_][A-Za-z0-9_]*)/);\n  return match ? match[1] : null;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAyCA,MAAM,qBAAqB,IAAI,IAAI;CACjC;CACA;CACA;CACA;CACA;CACA;CACD,CAAC;;;;;AAUF,SAAgB,iBAAiB,KAAgC;CAC/D,MAAM,QAAQ,uBAAuB,IAAI;AACzC,KAAI,MAAM,aACR,QAAO;EACL,UAAU;EACV,QAAQ,2BAA2B,MAAM,aAAa;EACvD;CAEH,MAAM,aAAa,gBAAgB,MAAM,QAAQ;AAEjD,KAAI,WAAW,WAAW,EACxB,QAAO;EACL,UAAU;EACV,QAAQ;EACT;AAGH,MAAK,IAAI,IAAI,GAAG,IAAI,WAAW,QAAQ,KAAK;EAC1C,MAAM,OAAO,WAAW;EACxB,MAAM,YAAY,aAAa,KAAK;AACpC,MAAI,CAAC,UACH,QAAO;GACL,UAAU;GACV,QAAQ,aAAa,IAAI,EAAE,MAAM,WAAW,OAAO;GACpD;AAEH,MAAI,CAAC,mBAAmB,IAAI,UAAU,aAAa,CAAC,CAClD,QAAO;GACL,UAAU;GACV,QAAQ,0BAA0B,UAAU;GAC7C;;AAIL,QAAO;EAAE,UAAU;EAAM,YAAY,WAAW;EAAQ;;;;;;;AAQ1D,SAAgB,kBAAkB,KAAmB;CACnD,MAAM,SAAS,iBAAiB,IAAI;AACpC,KAAI,CAAC,OAAO,SACV,OAAM,IAAI,qBAAqB,OAAO,OAAO;;AAIjD,IAAa,uBAAb,cAA0C,MAAM;CAC9C,YAAY,QAAgB;AAC1B,QAAM,mCAAmC,SAAS;AAClD,OAAK,OAAO;;;AAkChB,SAAS,uBAAuB,KAA0B;CACxD,MAAM,MAAgB,EAAE;CACxB,IAAI,IAAI;CACR,MAAM,IAAI,IAAI;CACd,IAAI,eAA4C;AAEhD,QAAO,IAAI,GAAG;EACZ,MAAM,KAAK,IAAI;EACf,MAAM,OAAO,IAAI,IAAI,IAAI,IAAI,IAAI,KAAK;AAEtC,MAAI,OAAO,OAAO,SAAS,KAAK;AAC9B,OAAI,KAAK,KAAK;AACd,QAAK;AACL,UAAO,IAAI,KAAK,IAAI,OAAO,MAAM;AAC/B,QAAI,KAAK,IAAI;AACb;;AAEF;;AAGF,MAAI,OAAO,OAAO,SAAS,KAAK;AAC9B,OAAI,KAAK,KAAK;AACd,QAAK;GACL,IAAI,QAAQ;AACZ,UAAO,IAAI,KAAK,QAAQ,GAAG;AACzB,QAAI,IAAI,OAAO,OAAO,IAAI,IAAI,OAAO,KAAK;AACxC,SAAI,KAAK,KAAK;AACd,UAAK;AACL;AACA;;AAEF,QAAI,IAAI,OAAO,OAAO,IAAI,IAAI,OAAO,KAAK;AACxC,SAAI,KAAK,KAAK;AACd,UAAK;AACL;AACA;;AAEF,QAAI,KAAK,IAAI,OAAO,OAAO,OAAO,IAAI;AACtC;;AAEF,OAAI,QAAQ,EACV,gBAAe;AAEjB;;AAGF,MACE,OAAO,OACN,OAAO,OAAO,SAAS,OACvB,OAAO,OAAO,SAAS,KACxB;AACA,OAAI,OAAO,OAAO,OAAO,KAAK;AAC5B,QAAI,KAAK,IAAI;AACb;;AAEF,OAAI,KAAK,IAAI;AACb;GACA,IAAI,SAAS;AACb,UAAO,IAAI,GAAG;AACZ,QAAI,IAAI,OAAO,OAAO,IAAI,IAAI,OAAO,KAAK;AACxC,SAAI,KAAK,KAAK;AACd,UAAK;AACL;;AAEF,QAAI,IAAI,OAAO,QAAQ,IAAI,IAAI,IAAI;AACjC,SAAI,KAAK,KAAK;AACd,UAAK;AACL;;AAEF,QAAI,IAAI,OAAO,KAAK;AAClB,SAAI,KAAK,IAAI;AACb;AACA,cAAS;AACT;;AAEF,QAAI,KAAK,IAAI,OAAO,OAAO,OAAO,IAAI;AACtC;;AAEF,OAAI,CAAC,OAAQ,gBAAe;AAC5B;;AAGF,MAAI,OAAO,MAAK;AACd,OAAI,KAAK,IAAI;AACb;GACA,IAAI,SAAS;AACb,UAAO,IAAI,GAAG;AACZ,QAAI,IAAI,OAAO,QAAO,IAAI,IAAI,OAAO,MAAK;AACxC,SAAI,KAAK,KAAK;AACd,UAAK;AACL;;AAEF,QAAI,IAAI,OAAO,MAAK;AAClB,SAAI,KAAK,IAAI;AACb;AACA,cAAS;AACT;;AAEF,QAAI,KAAK,IAAI,OAAO,OAAO,OAAO,IAAI;AACtC;;AAEF,OAAI,CAAC,OAAQ,gBAAe;AAC5B;;AAGF,MAAI,OAAO,KAAK;AACd,OAAI,KAAK,IAAI;AACb;GACA,IAAI,SAAS;AACb,UAAO,IAAI,GAAG;AACZ,QAAI,IAAI,OAAO,OAAO,IAAI,IAAI,OAAO,KAAK;AACxC,SAAI,KAAK,KAAK;AACd,UAAK;AACL;;AAEF,QAAI,IAAI,OAAO,KAAK;AAClB,SAAI,KAAK,IAAI;AACb;AACA,cAAS;AACT;;AAEF,QAAI,KAAK,IAAI,OAAO,OAAO,OAAO,IAAI;AACtC;;AAEF,OAAI,CAAC,OAAQ,gBAAe;AAC5B;;AAGF,MAAI,OAAO,KAAK;GACd,MAAM,WAAW,IAAI,MAAM,EAAE,CAAC,MAAM,iCAAiC;AACrE,OAAI,UAAU;IACZ,MAAM,MAAM,SAAS;AACrB,QAAI,KAAK,IAAI,OAAO,IAAI,OAAO,CAAC;AAChC,SAAK,IAAI;IACT,MAAM,WAAW,IAAI,QAAQ,KAAK,EAAE;AACpC,QAAI,aAAa,IAAI;AACnB,YAAO,IAAI,GAAG;AACZ,UAAI,KAAK,IAAI,OAAO,OAAO,OAAO,IAAI;AACtC;;AAEF,oBAAe;WACV;AACL,YAAO,IAAI,UAAU;AACnB,UAAI,KAAK,IAAI,OAAO,OAAO,OAAO,IAAI;AACtC;;AAEF,SAAI,KAAK,IAAI,OAAO,IAAI,OAAO,CAAC;AAChC,UAAK,IAAI;;AAEX;;;AAIJ,MAAI,KAAK,GAAG;AACZ;;AAGF,QAAO;EAAE,SAAS,IAAI,KAAK,GAAG;EAAE;EAAc;;;AAIhD,SAAS,gBAAgB,YAA8B;AACrD,QAAO,WACJ,MAAM,IAAI,CACV,KAAK,MAAM,EAAE,MAAM,CAAC,CACpB,QAAQ,MAAM,EAAE,SAAS,EAAE;;;AAIhC,SAAS,aAAa,MAA6B;CACjD,MAAM,QAAQ,KAAK,MAAM,+BAA+B;AACxD,QAAO,QAAQ,MAAM,KAAK"}