@elizaos/plugin-shell 2.0.0-alpha.2 → 2.0.0-alpha.3

package/dist/actions/index.d.ts

@@ -1,3 +1,4 @@
 export { clearHistory } from "./clearHistory";
 export { executeCommand } from "./executeCommand";
+export { processAction } from "./processAction";
 //# sourceMappingURL=index.d.ts.map

package/dist/actions/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../actions/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAC9C,OAAO,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../actions/index.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAC9C,OAAO,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAClD,OAAO,EAAE,aAAa,EAAE,MAAM,iBAAiB,CAAC"}

package/dist/actions/processAction.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Process Action - Manage running exec sessions
+ * Supports: list, poll, log, write, send-keys, submit, paste, kill, clear, remove
+ */
+import type { Action } from "@elizaos/core";
+export declare const processAction: Action;
+//# sourceMappingURL=processAction.d.ts.map

package/dist/actions/processAction.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"processAction.d.ts","sourceRoot":"","sources":["../../actions/processAction.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,MAAM,EAA8C,MAAM,eAAe,CAAC;AA0DxF,eAAO,MAAM,aAAa,EAAE,MAuJ3B,CAAC"}

package/dist/approvals/allowlist.d.ts

@@ -0,0 +1,76 @@
+/**
+ * Allowlist Management
+ *
+ * Functions for managing the exec approval allowlist.
+ * Handles loading, saving, and modifying allowlist entries.
+ */
+import type { CommandResolution, ExecAllowlistEntry, ExecApprovalsDefaults, ExecApprovalsFile, ExecApprovalsResolved, ExecApprovalsSnapshot, ExecAsk, ExecSecurity } from "./types";
+/**
+ * Get the default approval file path
+ */
+export declare function getApprovalFilePath(): string;
+/**
+ * Get the default socket path
+ */
+export declare function getApprovalSocketPath(): string;
+/**
+ * Normalize approval configuration file
+ */
+export declare function normalizeApprovals(file: ExecApprovalsFile): ExecApprovalsFile;
+/**
+ * Read approval configuration snapshot
+ */
+export declare function readApprovalsSnapshot(): ExecApprovalsSnapshot;
+/**
+ * Load approval configuration
+ */
+export declare function loadApprovals(): ExecApprovalsFile;
+/**
+ * Save approval configuration
+ * @throws Error if file cannot be written
+ */
+export declare function saveApprovals(file: ExecApprovalsFile): void;
+/**
+ * Ensure approval configuration exists with socket/token
+ * @throws Error if configuration cannot be loaded or saved
+ */
+export declare function ensureApprovals(): ExecApprovalsFile;
+/**
+ * Resolve approval configuration for an agent
+ * @throws Error if configuration cannot be loaded or saved
+ */
+export declare function resolveApprovals(agentId?: string, overrides?: Partial<ExecApprovalsDefaults>): ExecApprovalsResolved;
+/**
+ * Resolve approval configuration from a loaded file
+ */
+export declare function resolveApprovalsFromFile(params: {
+    file: ExecApprovalsFile;
+    agentId?: string;
+    overrides?: Partial<ExecApprovalsDefaults>;
+    path?: string;
+    socketPath?: string;
+    token?: string;
+}): ExecApprovalsResolved;
+/**
+ * Match command against allowlist
+ */
+export declare function matchAllowlist(entries: ExecAllowlistEntry[], resolution: CommandResolution | null): ExecAllowlistEntry | null;
+/**
+ * Record allowlist usage
+ * @returns true if successful, false if save failed
+ */
+export declare function recordAllowlistUse(approvals: ExecApprovalsFile, agentId: string | undefined, entry: ExecAllowlistEntry, command: string, resolvedPath?: string): boolean;
+/**
+ * Add a new allowlist entry
+ * @returns true if entry was added, false if already exists or save failed
+ */
+export declare function addAllowlistEntry(approvals: ExecApprovalsFile, agentId: string | undefined, pattern: string): boolean;
+/**
+ * Get minimum security level
+ */
+export declare function minSecurity(a: ExecSecurity, b: ExecSecurity): ExecSecurity;
+/**
+ * Get maximum ask level
+ */
+export declare function maxAsk(a: ExecAsk, b: ExecAsk): ExecAsk;
+//# sourceMappingURL=allowlist.d.ts.map

package/dist/approvals/allowlist.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"allowlist.d.ts","sourceRoot":"","sources":["../../approvals/allowlist.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAOH,OAAO,KAAK,EACV,iBAAiB,EACjB,kBAAkB,EAElB,qBAAqB,EACrB,iBAAiB,EACjB,qBAAqB,EACrB,qBAAqB,EACrB,OAAO,EACP,YAAY,EACb,MAAM,SAAS,CAAC;AAgCjB;;GAEG;AACH,wBAAgB,mBAAmB,IAAI,MAAM,CAE5C;AAED;;GAEG;AACH,wBAAgB,qBAAqB,IAAI,MAAM,CAE9C;AAmED;;GAEG;AACH,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,iBAAiB,GAAG,iBAAiB,CAqC7E;AASD;;GAEG;AACH,wBAAgB,qBAAqB,IAAI,qBAAqB,CA8C7D;AAED;;GAEG;AACH,wBAAgB,aAAa,IAAI,iBAAiB,CAyCjD;AAED;;;GAGG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,iBAAiB,GAAG,IAAI,CAoB3D;AAED;;;GAGG;AACH,wBAAgB,eAAe,IAAI,iBAAiB,CA+BnD;AAyBD;;;GAGG;AACH,wBAAgB,gBAAgB,CAC9B,OAAO,CAAC,EAAE,MAAM,EAChB,SAAS,CAAC,EAAE,OAAO,CAAC,qBAAqB,CAAC,GACzC,qBAAqB,CAuBvB;AAED;;GAEG;AACH,wBAAgB,wBAAwB,CAAC,MAAM,EAAE;IAC/C,IAAI,EAAE,iBAAiB,CAAC;IACxB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,SAAS,CAAC,EAAE,OAAO,CAAC,qBAAqB,CAAC,CAAC;IAC3C,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB,GAAG,qBAAqB,CA+DxB;AAED;;GAEG;AACH,wBAAgB,cAAc,CAC5B,OAAO,EAAE,kBAAkB,EAAE,EAC7B,UAAU,EAAE,iBAAiB,GAAG,IAAI,GACnC,kBAAkB,GAAG,IAAI,CAqB3B;AAqFD;;;GAGG;AACH,wBAAgB,kBAAkB,CAChC,SAAS,EAAE,iBAAiB,EAC5B,OAAO,EAAE,MAAM,GAAG,SAAS,EAC3B,KAAK,EAAE,kBAAkB,EACzB,OAAO,EAAE,MAAM,EACf,YAAY,CAAC,EAAE,MAAM,GACpB,OAAO,CA+BT;AAED;;;GAGG;AACH,wBAAgB,iBAAiB,CAC/B,SAAS,EAAE,iBAAiB,EAC5B,OAAO,EAAE,MAAM,GAAG,SAAS,EAC3B,OAAO,EAAE,MAAM,GACd,OAAO,CAqCT;AAED;;GAEG;AACH,wBAAgB,WAAW,CAAC,CAAC,EAAE,YAAY,EAAE,CAAC,EAAE,YAAY,GAAG,YAAY,CAG1E;AAED;;GAEG;AACH,wBAAgB,MAAM,CAAC,CAAC,EAAE,OAAO,EAAE,CAAC,EAAE,OAAO,GAAG,OAAO,CAGtD"}

package/dist/approvals/analysis.d.ts

@@ -0,0 +1,76 @@
+/**
+ * Command Analysis
+ *
+ * Functions for analyzing shell commands for security evaluation.
+ * Parses commands, resolves executables, and evaluates against allowlists.
+ */
+import type { CommandResolution, ExecAllowlistEntry, ExecAllowlistAnalysis, ExecAllowlistEvaluation, ExecCommandAnalysis } from "./types";
+/**
+ * Resolve command to executable info
+ */
+export declare function resolveCommandResolution(command: string, cwd?: string, env?: NodeJS.ProcessEnv): CommandResolution | null;
+/**
+ * Resolve command from argv
+ */
+export declare function resolveCommandFromArgv(argv: string[], cwd?: string, env?: NodeJS.ProcessEnv): CommandResolution | null;
+/**
+ * Analyze a shell command
+ */
+export declare function analyzeShellCommand(params: {
+    command: string;
+    cwd?: string;
+    env?: NodeJS.ProcessEnv;
+    platform?: string | null;
+}): ExecCommandAnalysis;
+/**
+ * Normalize safe bins set
+ */
+export declare function normalizeSafeBins(entries?: string[]): Set<string>;
+/**
+ * Resolve safe bins with defaults
+ */
+export declare function resolveSafeBins(entries?: string[] | null): Set<string>;
+/**
+ * Check if command is safe bin usage (no file args)
+ */
+export declare function isSafeBinUsage(params: {
+    argv: string[];
+    resolution: CommandResolution | null;
+    safeBins: Set<string>;
+    cwd?: string;
+    fileExists?: (filePath: string) => boolean;
+}): boolean;
+/**
+ * Evaluate command against allowlist
+ */
+export declare function evaluateExecAllowlist(params: {
+    analysis: ExecCommandAnalysis;
+    allowlist: ExecAllowlistEntry[];
+    safeBins: Set<string>;
+    cwd?: string;
+    skillBins?: Set<string>;
+    autoAllowSkills?: boolean;
+}): ExecAllowlistEvaluation;
+/**
+ * Evaluate shell command for allowlist (combined analysis + evaluation)
+ */
+export declare function evaluateShellAllowlist(params: {
+    command: string;
+    allowlist: ExecAllowlistEntry[];
+    safeBins: Set<string>;
+    cwd?: string;
+    env?: NodeJS.ProcessEnv;
+    skillBins?: Set<string>;
+    autoAllowSkills?: boolean;
+    platform?: string | null;
+}): ExecAllowlistAnalysis;
+/**
+ * Check if approval is required
+ */
+export declare function requiresExecApproval(params: {
+    ask: "off" | "on-miss" | "always";
+    security: "deny" | "allowlist" | "full";
+    analysisOk: boolean;
+    allowlistSatisfied: boolean;
+}): boolean;
+//# sourceMappingURL=analysis.d.ts.map

package/dist/approvals/analysis.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"analysis.d.ts","sourceRoot":"","sources":["../../approvals/analysis.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAIH,OAAO,KAAK,EACV,iBAAiB,EACjB,kBAAkB,EAClB,qBAAqB,EACrB,uBAAuB,EACvB,mBAAmB,EAEpB,MAAM,SAAS,CAAC;AAiJjB;;GAEG;AACH,wBAAgB,wBAAwB,CACtC,OAAO,EAAE,MAAM,EACf,GAAG,CAAC,EAAE,MAAM,EACZ,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,GACtB,iBAAiB,GAAG,IAAI,CAU1B;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,IAAI,EAAE,MAAM,EAAE,EACd,GAAG,CAAC,EAAE,MAAM,EACZ,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,GACtB,iBAAiB,GAAG,IAAI,CAU1B;AA6PD;;GAEG;AACH,wBAAgB,mBAAmB,CAAC,MAAM,EAAE;IAC1C,OAAO,EAAE,MAAM,CAAC;IAChB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,CAAC;IACxB,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1B,GAAG,mBAAmB,CA6CtB;AAwKD;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,MAAM,CAAC,CAMjE;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,OAAO,CAAC,EAAE,MAAM,EAAE,GAAG,IAAI,GAAG,GAAG,CAAC,MAAM,CAAC,CAKtE;AA6BD;;GAEG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE;IACrC,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,UAAU,EAAE,iBAAiB,GAAG,IAAI,CAAC;IACrC,QAAQ,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;IACtB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,UAAU,CAAC,EAAE,CAAC,QAAQ,EAAE,MAAM,KAAK,OAAO,CAAC;CAC5C,GAAG,OAAO,CAsCV;AAwED;;GAEG;AACH,wBAAgB,qBAAqB,CAAC,MAAM,EAAE;IAC5C,QAAQ,EAAE,mBAAmB,CAAC;IAC9B,SAAS,EAAE,kBAAkB,EAAE,CAAC;IAChC,QAAQ,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;IACtB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,SAAS,CAAC,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;IACxB,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B,GAAG,uBAAuB,CAoC1B;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CAAC,MAAM,EAAE;IAC7C,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,kBAAkB,EAAE,CAAC;IAChC,QAAQ,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;IACtB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,CAAC;IACxB,SAAS,CAAC,EAAE,GAAG,CAAC,MAAM,CAAC,CAAC;IACxB,eAAe,CAAC,EAAE,OAAO,CAAC;IAC1B,QAAQ,CAAC,EAAE,MAAM,GAAG,IAAI,CAAC;CAC1B,GAAG,qBAAqB,CAwFxB;AAED;;GAEG;AACH,wBAAgB,oBAAoB,CAAC,MAAM,EAAE;IAC3C,GAAG,EAAE,KAAK,GAAG,SAAS,GAAG,QAAQ,CAAC;IAClC,QAAQ,EAAE,MAAM,GAAG,WAAW,GAAG,MAAM,CAAC;IACxC,UAAU,EAAE,OAAO,CAAC;IACpB,kBAAkB,EAAE,OAAO,CAAC;CAC7B,GAAG,OAAO,CAOV"}

package/dist/approvals/index.d.ts

@@ -0,0 +1,12 @@
+/**
+ * Exec Approvals Module
+ *
+ * Command execution approval system for plugin-shell.
+ * Provides allowlist management, command analysis, and approval workflows.
+ */
+export type { CommandResolution, ExecAllowlistAnalysis, ExecAllowlistEntry, ExecAllowlistEvaluation, ExecApprovalDecision, ExecApprovalRequest, ExecApprovalResult, ExecApprovalsAgent, ExecApprovalsDefaults, ExecApprovalsFile, ExecApprovalsResolved, ExecApprovalsSnapshot, ExecAsk, ExecCommandAnalysis, ExecCommandSegment, ExecHost, ExecSecurity, } from "./types";
+export { DEFAULT_SAFE_BINS, EXEC_APPROVAL_DEFAULTS } from "./types";
+export { addAllowlistEntry, ensureApprovals, getApprovalFilePath, getApprovalSocketPath, loadApprovals, matchAllowlist, maxAsk, minSecurity, normalizeApprovals, readApprovalsSnapshot, recordAllowlistUse, resolveApprovals, resolveApprovalsFromFile, saveApprovals, } from "./allowlist";
+export { analyzeShellCommand, evaluateExecAllowlist, evaluateShellAllowlist, isSafeBinUsage, normalizeSafeBins, requiresExecApproval, resolveCommandFromArgv, resolveCommandResolution, resolveSafeBins, } from "./analysis";
+export { ExecApprovalService, type CommandCheckResult } from "./service";
+//# sourceMappingURL=index.d.ts.map

package/dist/approvals/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../approvals/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAGH,YAAY,EACV,iBAAiB,EACjB,qBAAqB,EACrB,kBAAkB,EAClB,uBAAuB,EACvB,oBAAoB,EACpB,mBAAmB,EACnB,kBAAkB,EAClB,kBAAkB,EAClB,qBAAqB,EACrB,iBAAiB,EACjB,qBAAqB,EACrB,qBAAqB,EACrB,OAAO,EACP,mBAAmB,EACnB,kBAAkB,EAClB,QAAQ,EACR,YAAY,GACb,MAAM,SAAS,CAAC;AAEjB,OAAO,EAAE,iBAAiB,EAAE,sBAAsB,EAAE,MAAM,SAAS,CAAC;AAGpE,OAAO,EACL,iBAAiB,EACjB,eAAe,EACf,mBAAmB,EACnB,qBAAqB,EACrB,aAAa,EACb,cAAc,EACd,MAAM,EACN,WAAW,EACX,kBAAkB,EAClB,qBAAqB,EACrB,kBAAkB,EAClB,gBAAgB,EAChB,wBAAwB,EACxB,aAAa,GACd,MAAM,aAAa,CAAC;AAGrB,OAAO,EACL,mBAAmB,EACnB,qBAAqB,EACrB,sBAAsB,EACtB,cAAc,EACd,iBAAiB,EACjB,oBAAoB,EACpB,sBAAsB,EACtB,wBAAwB,EACxB,eAAe,GAChB,MAAM,YAAY,CAAC;AAGpB,OAAO,EAAE,mBAAmB,EAAE,KAAK,kBAAkB,EAAE,MAAM,WAAW,CAAC"}

package/dist/approvals/service.d.ts

@@ -0,0 +1,121 @@
+/**
+ * ExecApprovalService
+ *
+ * Service for managing command execution approvals in plugin-shell.
+ * Integrates with Eliza's ApprovalService for approval UI,
+ * and provides allowlist management and command analysis.
+ *
+ * @example
+ * ```typescript
+ * const approvalService = runtime.getService('exec_approval') as ExecApprovalService;
+ *
+ * // Check if command needs approval
+ * const check = await approvalService.checkCommand({
+ *   command: 'rm -rf /tmp/cache',
+ *   cwd: '/home/user',
+ *   roomId: message.roomId,
+ * });
+ *
+ * if (check.requiresApproval) {
+ *   const result = await approvalService.requestApproval(check.request);
+ *   if (result.decision === 'deny') {
+ *     return { error: 'Command denied' };
+ *   }
+ *   if (result.decision === 'allow-always') {
+ *     await approvalService.addToAllowlist(command);
+ *   }
+ * }
+ * ```
+ */
+import type { IAgentRuntime, UUID } from "@elizaos/core";
+import { Service } from "@elizaos/core";
+import type { ExecAllowlistEntry, ExecApprovalDecision, ExecApprovalRequest, ExecApprovalResult, ExecApprovalsResolved, ExecCommandAnalysis } from "./types";
+/**
+ * Command check result
+ */
+export interface CommandCheckResult {
+    /** Whether the command can be executed */
+    allowed: boolean;
+    /** Whether approval is required */
+    requiresApproval: boolean;
+    /** Reason for denial (if not allowed and no approval needed) */
+    reason?: string;
+    /** Approval request (if approval required) */
+    request?: ExecApprovalRequest;
+    /** Command analysis result */
+    analysis: ExecCommandAnalysis;
+    /** Matching allowlist entries */
+    allowlistMatches: ExecAllowlistEntry[];
+}
+/**
+ * ExecApprovalService provides command execution approval management.
+ */
+export declare class ExecApprovalService extends Service {
+    static serviceType: string;
+    capabilityDescription: string;
+    private approvalConfig;
+    private safeBins;
+    private skillBins;
+    constructor(runtime?: IAgentRuntime);
+    /**
+     * Start the ExecApprovalService
+     */
+    static start(runtime: IAgentRuntime): Promise<Service>;
+    /**
+     * Stop the ExecApprovalService
+     */
+    stop(): Promise<void>;
+    /**
+     * Load/reload configuration
+     */
+    loadConfig(agentId?: string): ExecApprovalsResolved;
+    /**
+     * Get current configuration
+     */
+    getConfig(): ExecApprovalsResolved;
+    /**
+     * Set safe binaries that don't need approval
+     */
+    setSafeBins(bins: string[]): void;
+    /**
+     * Set skill binaries that are auto-allowed
+     */
+    setSkillBins(bins: string[]): void;
+    /**
+     * Check if a command is allowed to execute
+     */
+    checkCommand(params: {
+        command: string;
+        cwd?: string;
+        roomId: UUID;
+        env?: NodeJS.ProcessEnv;
+        agentId?: string;
+    }): Promise<CommandCheckResult>;
+    /**
+     * Request approval for a command
+     */
+    requestApproval(request: ExecApprovalRequest): Promise<ExecApprovalResult>;
+    /**
+     * Request approval asynchronously (fire and forget with callbacks)
+     */
+    requestApprovalAsync(request: ExecApprovalRequest, callbacks?: {
+        onApproved?: (decision: ExecApprovalDecision) => Promise<void>;
+        onDenied?: () => Promise<void>;
+        onTimeout?: () => Promise<void>;
+    }): Promise<UUID>;
+    /**
+     * Add a pattern to the allowlist
+     * @returns true if pattern was added successfully
+     */
+    addToAllowlist(pattern: string, agentId?: string): Promise<boolean>;
+    /**
+     * Cancel a pending approval
+     */
+    cancelApproval(taskId: UUID): Promise<void>;
+    /**
+     * Get all pending exec approvals for a room
+     */
+    getPendingApprovals(roomId: UUID): Promise<ExecApprovalRequest[]>;
+}
+export default ExecApprovalService;
+//# sourceMappingURL=service.d.ts.map

package/dist/approvals/service.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"service.d.ts","sourceRoot":"","sources":["../../approvals/service.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AAEH,OAAO,KAAK,EACV,aAAa,EAEb,IAAI,EACL,MAAM,eAAe,CAAC;AACvB,OAAO,EAGL,OAAO,EACR,MAAM,eAAe,CAAC;AAwBvB,OAAO,KAAK,EACV,kBAAkB,EAClB,oBAAoB,EACpB,mBAAmB,EACnB,kBAAkB,EAElB,qBAAqB,EAErB,mBAAmB,EAEpB,MAAM,SAAS,CAAC;AAGjB;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,0CAA0C;IAC1C,OAAO,EAAE,OAAO,CAAC;IACjB,mCAAmC;IACnC,gBAAgB,EAAE,OAAO,CAAC;IAC1B,gEAAgE;IAChE,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,8CAA8C;IAC9C,OAAO,CAAC,EAAE,mBAAmB,CAAC;IAC9B,8BAA8B;IAC9B,QAAQ,EAAE,mBAAmB,CAAC;IAC9B,iCAAiC;IACjC,gBAAgB,EAAE,kBAAkB,EAAE,CAAC;CACxC;AAED;;GAEG;AACH,qBAAa,mBAAoB,SAAQ,OAAO;IAC9C,MAAM,CAAC,WAAW,SAAmB;IACrC,qBAAqB,SACwD;IAE7E,OAAO,CAAC,cAAc,CAAsC;IAC5D,OAAO,CAAC,QAAQ,CAAc;IAC9B,OAAO,CAAC,SAAS,CAAc;gBAEnB,OAAO,CAAC,EAAE,aAAa;IAMnC;;OAEG;WACU,KAAK,CAAC,OAAO,EAAE,aAAa,GAAG,OAAO,CAAC,OAAO,CAAC;IAyC5D;;OAEG;IACG,IAAI,IAAI,OAAO,CAAC,IAAI,CAAC;IAI3B;;OAEG;IACH,UAAU,CAAC,OAAO,CAAC,EAAE,MAAM,GAAG,qBAAqB;IAKnD;;OAEG;IACH,SAAS,IAAI,qBAAqB;IAOlC;;OAEG;IACH,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI;IAIjC;;OAEG;IACH,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,IAAI;IAIlC;;OAEG;IACG,YAAY,CAAC,MAAM,EAAE;QACzB,OAAO,EAAE,MAAM,CAAC;QAChB,GAAG,CAAC,EAAE,MAAM,CAAC;QACb,MAAM,EAAE,IAAI,CAAC;QACb,GAAG,CAAC,EAAE,MAAM,CAAC,UAAU,CAAC;QACxB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IA6I/B;;OAEG;IACG,eAAe,CACnB,OAAO,EAAE,mBAAmB,GAC3B,OAAO,CAAC,kBAAkB,CAAC;IAoE9B;;OAEG;IACG,oBAAoB,CACxB,OAAO,EAAE,mBAAmB,EAC5B,SAAS,CAAC,EAAE;QACV,UAAU,CAAC,EAAE,CAAC,QAAQ,EAAE,oBAAoB,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;QAC/D,QAAQ,CAAC,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;QAC/B,SAAS,CAAC,EAAE,MAAM,OAAO,CAAC,IAAI,CAAC,CAAC;KACjC,GACA,OAAO,CAAC,IAAI,CAAC;IA2EhB;;;OAGG;IACG,cAAc,CAAC,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC;IAUzE;;OAEG;IACG,cAAc,CAAC,MAAM,EAAE,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC;IAUjD;;OAEG;IACG,mBAAmB,CAAC,MAAM,EAAE,IAAI,GAAG,OAAO,CAAC,mBAAmB,EAAE,CAAC;CAwCxE;AAmBD,eAAe,mBAAmB,CAAC"}

package/dist/approvals/types.d.ts

@@ -0,0 +1,219 @@
+/**
+ * Exec Approval Types
+ *
+ * Types for command execution approval system in plugin-shell.
+ * Provides type definitions for approval configuration, allowlist entries,
+ * command analysis, and approval decisions.
+ */
+import type { UUID } from "@elizaos/core";
+/**
+ * Security levels for command execution
+ */
+export type ExecSecurity = "deny" | "allowlist" | "full";
+/**
+ * Ask modes for approval prompts
+ */
+export type ExecAsk = "off" | "on-miss" | "always";
+/**
+ * Execution host types
+ */
+export type ExecHost = "sandbox" | "gateway" | "node";
+/**
+ * Default configuration for exec approvals
+ */
+export interface ExecApprovalsDefaults {
+    /** Security level (deny, allowlist, full) */
+    security?: ExecSecurity;
+    /** Ask mode (off, on-miss, always) */
+    ask?: ExecAsk;
+    /** Fallback security when ask is declined */
+    askFallback?: ExecSecurity;
+    /** Auto-allow commands from skill definitions */
+    autoAllowSkills?: boolean;
+}
+/**
+ * Allowlist entry for permitted commands
+ */
+export interface ExecAllowlistEntry {
+    /** Unique identifier */
+    id?: string;
+    /** Pattern to match (executable path or glob) */
+    pattern: string;
+    /** Last time this pattern was used */
+    lastUsedAt?: number;
+    /** Last command that matched this pattern */
+    lastUsedCommand?: string;
+    /** Last resolved executable path */
+    lastResolvedPath?: string;
+}
+/**
+ * Agent-specific approval configuration
+ */
+export interface ExecApprovalsAgent extends ExecApprovalsDefaults {
+    /** Allowlist entries for this agent */
+    allowlist?: ExecAllowlistEntry[];
+}
+/**
+ * Full approval configuration file structure
+ */
+export interface ExecApprovalsFile {
+    /** Version number (always 1) */
+    version: 1;
+    /** Socket configuration for external approval UI */
+    socket?: {
+        path?: string;
+        token?: string;
+    };
+    /** Default approval settings */
+    defaults?: ExecApprovalsDefaults;
+    /** Per-agent approval settings */
+    agents?: Record<string, ExecApprovalsAgent>;
+}
+/**
+ * Snapshot of approval configuration file
+ */
+export interface ExecApprovalsSnapshot {
+    /** File path */
+    path: string;
+    /** Whether the file exists */
+    exists: boolean;
+    /** Raw file content */
+    raw: string | null;
+    /** Parsed and normalized configuration */
+    file: ExecApprovalsFile;
+    /** Content hash */
+    hash: string;
+}
+/**
+ * Resolved approval configuration for an agent
+ */
+export interface ExecApprovalsResolved {
+    /** File path */
+    path: string;
+    /** Socket path for external approval UI */
+    socketPath: string;
+    /** Authentication token */
+    token: string;
+    /** Resolved default settings */
+    defaults: Required<ExecApprovalsDefaults>;
+    /** Resolved agent-specific settings */
+    agent: Required<ExecApprovalsDefaults>;
+    /** Combined allowlist entries */
+    allowlist: ExecAllowlistEntry[];
+    /** Full configuration file */
+    file: ExecApprovalsFile;
+}
+/**
+ * Command resolution result
+ */
+export interface CommandResolution {
+    /** The raw executable from the command */
+    rawExecutable: string;
+    /** Fully resolved executable path */
+    resolvedPath?: string;
+    /** Executable name (basename) */
+    executableName: string;
+}
+/**
+ * Command segment from shell parsing
+ */
+export interface ExecCommandSegment {
+    /** Raw command text */
+    raw: string;
+    /** Parsed argument vector */
+    argv: string[];
+    /** Resolution of the executable */
+    resolution: CommandResolution | null;
+}
+/**
+ * Result of command analysis
+ */
+export interface ExecCommandAnalysis {
+    /** Whether analysis succeeded */
+    ok: boolean;
+    /** Reason for failure (if any) */
+    reason?: string;
+    /** Parsed command segments */
+    segments: ExecCommandSegment[];
+    /** Segments grouped by chain operators (&&, ||, ;) */
+    chains?: ExecCommandSegment[][];
+}
+/**
+ * Result of allowlist evaluation
+ */
+export interface ExecAllowlistEvaluation {
+    /** Whether all commands are in the allowlist */
+    allowlistSatisfied: boolean;
+    /** Matching allowlist entries */
+    allowlistMatches: ExecAllowlistEntry[];
+}
+/**
+ * Combined analysis and allowlist evaluation
+ */
+export interface ExecAllowlistAnalysis {
+    /** Whether analysis succeeded */
+    analysisOk: boolean;
+    /** Whether allowlist is satisfied */
+    allowlistSatisfied: boolean;
+    /** Matching allowlist entries */
+    allowlistMatches: ExecAllowlistEntry[];
+    /** Parsed command segments */
+    segments: ExecCommandSegment[];
+}
+/**
+ * Possible approval decisions
+ */
+export type ExecApprovalDecision = "allow-once" | "allow-always" | "deny";
+/**
+ * Request for exec approval
+ */
+export interface ExecApprovalRequest {
+    /** Unique request ID */
+    id: string;
+    /** The command to execute */
+    command: string;
+    /** Working directory */
+    cwd?: string;
+    /** Execution host */
+    host?: ExecHost;
+    /** Security level */
+    security?: ExecSecurity;
+    /** Ask mode */
+    ask?: ExecAsk;
+    /** Agent ID */
+    agentId?: string;
+    /** Resolved executable path */
+    resolvedPath?: string;
+    /** Session key for routing */
+    sessionKey?: string;
+    /** Room ID where approval is requested */
+    roomId: UUID;
+    /** Timeout in milliseconds */
+    timeoutMs?: number;
+}
+/**
+ * Result of exec approval
+ */
+export interface ExecApprovalResult {
+    /** The decision made */
+    decision: ExecApprovalDecision;
+    /** Whether approval timed out */
+    timedOut: boolean;
+    /** Who resolved the approval */
+    resolvedBy?: UUID;
+}
+/**
+ * Configuration for safe binary commands that don't need approval
+ */
+export declare const DEFAULT_SAFE_BINS: readonly ["jq", "grep", "cut", "sort", "uniq", "head", "tail", "tr", "wc"];
+/**
+ * Default exec approval settings
+ */
+export declare const EXEC_APPROVAL_DEFAULTS: {
+    readonly security: ExecSecurity;
+    readonly ask: ExecAsk;
+    readonly askFallback: ExecSecurity;
+    readonly autoAllowSkills: false;
+    readonly timeoutMs: 120000;
+};
+//# sourceMappingURL=types.d.ts.map

package/dist/approvals/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../approvals/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,eAAe,CAAC;AAE1C;;GAEG;AACH,MAAM,MAAM,YAAY,GAAG,MAAM,GAAG,WAAW,GAAG,MAAM,CAAC;AAEzD;;GAEG;AACH,MAAM,MAAM,OAAO,GAAG,KAAK,GAAG,SAAS,GAAG,QAAQ,CAAC;AAEnD;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,SAAS,GAAG,SAAS,GAAG,MAAM,CAAC;AAEtD;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,6CAA6C;IAC7C,QAAQ,CAAC,EAAE,YAAY,CAAC;IACxB,sCAAsC;IACtC,GAAG,CAAC,EAAE,OAAO,CAAC;IACd,6CAA6C;IAC7C,WAAW,CAAC,EAAE,YAAY,CAAC;IAC3B,iDAAiD;IACjD,eAAe,CAAC,EAAE,OAAO,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,wBAAwB;IACxB,EAAE,CAAC,EAAE,MAAM,CAAC;IACZ,iDAAiD;IACjD,OAAO,EAAE,MAAM,CAAC;IAChB,sCAAsC;IACtC,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,6CAA6C;IAC7C,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,oCAAoC;IACpC,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,kBAAmB,SAAQ,qBAAqB;IAC/D,uCAAuC;IACvC,SAAS,CAAC,EAAE,kBAAkB,EAAE,CAAC;CAClC;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,gCAAgC;IAChC,OAAO,EAAE,CAAC,CAAC;IACX,oDAAoD;IACpD,MAAM,CAAC,EAAE;QACP,IAAI,CAAC,EAAE,MAAM,CAAC;QACd,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,CAAC;IACF,gCAAgC;IAChC,QAAQ,CAAC,EAAE,qBAAqB,CAAC;IACjC,kCAAkC;IAClC,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,kBAAkB,CAAC,CAAC;CAC7C;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,gBAAgB;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,8BAA8B;IAC9B,MAAM,EAAE,OAAO,CAAC;IAChB,uBAAuB;IACvB,GAAG,EAAE,MAAM,GAAG,IAAI,CAAC;IACnB,0CAA0C;IAC1C,IAAI,EAAE,iBAAiB,CAAC;IACxB,mBAAmB;IACnB,IAAI,EAAE,MAAM,CAAC;CACd;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,gBAAgB;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,2CAA2C;IAC3C,UAAU,EAAE,MAAM,CAAC;IACnB,2BAA2B;IAC3B,KAAK,EAAE,MAAM,CAAC;IACd,gCAAgC;IAChC,QAAQ,EAAE,QAAQ,CAAC,qBAAqB,CAAC,CAAC;IAC1C,uCAAuC;IACvC,KAAK,EAAE,QAAQ,CAAC,qBAAqB,CAAC,CAAC;IACvC,iCAAiC;IACjC,SAAS,EAAE,kBAAkB,EAAE,CAAC;IAChC,8BAA8B;IAC9B,IAAI,EAAE,iBAAiB,CAAC;CACzB;AAED;;GAEG;AACH,MAAM,WAAW,iBAAiB;IAChC,0CAA0C;IAC1C,aAAa,EAAE,MAAM,CAAC;IACtB,qCAAqC;IACrC,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,iCAAiC;IACjC,cAAc,EAAE,MAAM,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,uBAAuB;IACvB,GAAG,EAAE,MAAM,CAAC;IACZ,6BAA6B;IAC7B,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,mCAAmC;IACnC,UAAU,EAAE,iBAAiB,GAAG,IAAI,CAAC;CACtC;AAED;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,iCAAiC;IACjC,EAAE,EAAE,OAAO,CAAC;IACZ,kCAAkC;IAClC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,QAAQ,EAAE,kBAAkB,EAAE,CAAC;IAC/B,sDAAsD;IACtD,MAAM,CAAC,EAAE,kBAAkB,EAAE,EAAE,CAAC;CACjC;AAED;;GAEG;AACH,MAAM,WAAW,uBAAuB;IACtC,gDAAgD;IAChD,kBAAkB,EAAE,OAAO,CAAC;IAC5B,iCAAiC;IACjC,gBAAgB,EAAE,kBAAkB,EAAE,CAAC;CACxC;AAED;;GAEG;AACH,MAAM,WAAW,qBAAqB;IACpC,iCAAiC;IACjC,UAAU,EAAE,OAAO,CAAC;IACpB,qCAAqC;IACrC,kBAAkB,EAAE,OAAO,CAAC;IAC5B,iCAAiC;IACjC,gBAAgB,EAAE,kBAAkB,EAAE,CAAC;IACvC,8BAA8B;IAC9B,QAAQ,EAAE,kBAAkB,EAAE,CAAC;CAChC;AAED;;GAEG;AACH,MAAM,MAAM,oBAAoB,GAAG,YAAY,GAAG,cAAc,GAAG,MAAM,CAAC;AAE1E;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,wBAAwB;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,6BAA6B;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,wBAAwB;IACxB,GAAG,CAAC,EAAE,MAAM,CAAC;IACb,qBAAqB;IACrB,IAAI,CAAC,EAAE,QAAQ,CAAC;IAChB,qBAAqB;IACrB,QAAQ,CAAC,EAAE,YAAY,CAAC;IACxB,eAAe;IACf,GAAG,CAAC,EAAE,OAAO,CAAC;IACd,eAAe;IACf,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,+BAA+B;IAC/B,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,8BAA8B;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,0CAA0C;IAC1C,MAAM,EAAE,IAAI,CAAC;IACb,8BAA8B;IAC9B,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,wBAAwB;IACxB,QAAQ,EAAE,oBAAoB,CAAC;IAC/B,iCAAiC;IACjC,QAAQ,EAAE,OAAO,CAAC;IAClB,gCAAgC;IAChC,UAAU,CAAC,EAAE,IAAI,CAAC;CACnB;AAED;;GAEG;AACH,eAAO,MAAM,iBAAiB,4EAUpB,CAAC;AAEX;;GAEG;AACH,eAAO,MAAM,sBAAsB;uBACb,YAAY;kBACd,OAAO;0BACF,YAAY;;;CAG3B,CAAC"}

package/dist/index.d.ts

@@ -3,8 +3,13 @@ export declare const shellPlugin: Plugin;
 export default shellPlugin;
 export { clearHistory } from "./actions/clearHistory";
 export { executeCommand } from "./actions/executeCommand";
+export { processAction } from "./actions/processAction";
+export { addAllowlistEntry, analyzeShellCommand, DEFAULT_SAFE_BINS, ensureApprovals, evaluateExecAllowlist, evaluateShellAllowlist, EXEC_APPROVAL_DEFAULTS, ExecApprovalService, getApprovalFilePath, getApprovalSocketPath, isSafeBinUsage, loadApprovals, matchAllowlist, maxAsk, minSecurity, normalizeApprovals, normalizeSafeBins, readApprovalsSnapshot, recordAllowlistUse, requiresExecApproval, resolveApprovals, resolveApprovalsFromFile, resolveCommandFromArgv, resolveCommandResolution, resolveSafeBins, saveApprovals, type CommandCheckResult, type CommandResolution, type ExecAllowlistAnalysis, type ExecAllowlistEntry, type ExecAllowlistEvaluation, type ExecApprovalDecision, type ExecApprovalRequest, type ExecApprovalResult, type ExecApprovalsAgent, type ExecApprovalsDefaults, type ExecApprovalsFile, type ExecApprovalsResolved, type ExecApprovalsSnapshot, type ExecAsk, type ExecCommandAnalysis, type ExecCommandSegment, type ExecHost, type ExecSecurity, } from "./approvals";
 export { shellHistoryProvider } from "./providers/shellHistoryProvider";
+export { addSession, appendOutput, clearFinished, createSessionSlug, deleteSession, drainSession, getFinishedSession, getSession, listFinishedSessions, listRunningSessions, markBackgrounded, markExited, resetProcessRegistryForTests, setJobTtlMs, tail, trimWithCap, } from "./services/processRegistry";
 export { ShellService } from "./services/shellService";
-export type { CommandHistoryEntry, CommandResult, FileOperation, FileOperationType, ShellConfig, } from "./types";
+export type { CommandHistoryEntry, CommandResult, ExecResult, ExecuteOptions, FileOperation, FileOperationType, FinishedSession, ProcessAction, ProcessActionParams, ProcessSession, ProcessStatus, PtyExitEvent, PtyHandle, PtyListener, PtySpawn, SessionStdin, ShellConfig, } from "./types";
 export { DEFAULT_FORBIDDEN_COMMANDS, extractBaseCommand, isForbiddenCommand, isSafeCommand, loadShellConfig, validatePath, } from "./utils";
+export { BRACKETED_PASTE_END, BRACKETED_PASTE_START, buildCursorPositionResponse, encodeKeySequence, encodePaste, type KeyEncodingRequest, type KeyEncodingResult, stripDsrRequests, } from "./utils/ptyKeys";
+export { chunkString, clampNumber, coerceEnv, deriveSessionName, formatDuration, formatSpawnError, getShellConfig, killProcessTree, killSession, pad, readEnvInt, resolveWorkdir, type SpawnFallback, type SpawnWithFallbackResult, sanitizeBinaryOutput, sliceLogLines, sliceUtf16Safe, spawnWithFallback, truncateMiddle, } from "./utils/shellUtils";
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,eAAe,CAAC;AAK5C,eAAO,MAAM,WAAW,EAAE,MAMzB,CAAC;AAEF,eAAe,WAAW,CAAC;AAE3B,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AACtD,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAC;AAC1D,OAAO,EAAE,oBAAoB,EAAE,MAAM,kCAAkC,CAAC;AACxE,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AACvD,YAAY,EACV,mBAAmB,EACnB,aAAa,EACb,aAAa,EACb,iBAAiB,EACjB,WAAW,GACZ,MAAM,SAAS,CAAC;AACjB,OAAO,EACL,0BAA0B,EAC1B,kBAAkB,EAClB,kBAAkB,EAClB,aAAa,EACb,eAAe,EACf,YAAY,GACb,MAAM,SAAS,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../index.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,MAAM,EAAE,MAAM,eAAe,CAAC;AAM5C,eAAO,MAAM,WAAW,EAAE,MAOzB,CAAC;AAEF,eAAe,WAAW,CAAC;AAG3B,OAAO,EAAE,YAAY,EAAE,MAAM,wBAAwB,CAAC;AACtD,OAAO,EAAE,cAAc,EAAE,MAAM,0BAA0B,CAAC;AAC1D,OAAO,EAAE,aAAa,EAAE,MAAM,yBAAyB,CAAC;AAGxD,OAAO,EACL,iBAAiB,EACjB,mBAAmB,EACnB,iBAAiB,EACjB,eAAe,EACf,qBAAqB,EACrB,sBAAsB,EACtB,sBAAsB,EACtB,mBAAmB,EACnB,mBAAmB,EACnB,qBAAqB,EACrB,cAAc,EACd,aAAa,EACb,cAAc,EACd,MAAM,EACN,WAAW,EACX,kBAAkB,EAClB,iBAAiB,EACjB,qBAAqB,EACrB,kBAAkB,EAClB,oBAAoB,EACpB,gBAAgB,EAChB,wBAAwB,EACxB,sBAAsB,EACtB,wBAAwB,EACxB,eAAe,EACf,aAAa,EACb,KAAK,kBAAkB,EACvB,KAAK,iBAAiB,EACtB,KAAK,qBAAqB,EAC1B,KAAK,kBAAkB,EACvB,KAAK,uBAAuB,EAC5B,KAAK,oBAAoB,EACzB,KAAK,mBAAmB,EACxB,KAAK,kBAAkB,EACvB,KAAK,kBAAkB,EACvB,KAAK,qBAAqB,EAC1B,KAAK,iBAAiB,EACtB,KAAK,qBAAqB,EAC1B,KAAK,qBAAqB,EAC1B,KAAK,OAAO,EACZ,KAAK,mBAAmB,EACxB,KAAK,kBAAkB,EACvB,KAAK,QAAQ,EACb,KAAK,YAAY,GAClB,MAAM,aAAa,CAAC;AAGrB,OAAO,EAAE,oBAAoB,EAAE,MAAM,kCAAkC,CAAC;AACxE,OAAO,EACL,UAAU,EACV,YAAY,EACZ,aAAa,EACb,iBAAiB,EACjB,aAAa,EACb,YAAY,EACZ,kBAAkB,EAClB,UAAU,EACV,oBAAoB,EACpB,mBAAmB,EACnB,gBAAgB,EAChB,UAAU,EACV,4BAA4B,EAC5B,WAAW,EACX,IAAI,EACJ,WAAW,GACZ,MAAM,4BAA4B,CAAC;AAEpC,OAAO,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AAGvD,YAAY,EACV,mBAAmB,EACnB,aAAa,EACb,UAAU,EACV,cAAc,EACd,aAAa,EACb,iBAAiB,EACjB,eAAe,EACf,aAAa,EACb,mBAAmB,EACnB,cAAc,EACd,aAAa,EACb,YAAY,EACZ,SAAS,EACT,WAAW,EACX,QAAQ,EACR,YAAY,EACZ,WAAW,GACZ,MAAM,SAAS,CAAC;AAGjB,OAAO,EACL,0BAA0B,EAC1B,kBAAkB,EAClB,kBAAkB,EAClB,aAAa,EACb,eAAe,EACf,YAAY,GACb,MAAM,SAAS,CAAC;AACjB,OAAO,EACL,mBAAmB,EACnB,qBAAqB,EACrB,2BAA2B,EAC3B,iBAAiB,EACjB,WAAW,EACX,KAAK,kBAAkB,EACvB,KAAK,iBAAiB,EACtB,gBAAgB,GACjB,MAAM,iBAAiB,CAAC;AACzB,OAAO,EACL,WAAW,EACX,WAAW,EACX,SAAS,EACT,iBAAiB,EACjB,cAAc,EACd,gBAAgB,EAChB,cAAc,EACd,eAAe,EACf,WAAW,EACX,GAAG,EACH,UAAU,EACV,cAAc,EACd,KAAK,aAAa,EAClB,KAAK,uBAAuB,EAC5B,oBAAoB,EACpB,aAAa,EACb,cAAc,EACd,iBAAiB,EACjB,cAAc,GACf,MAAM,oBAAoB,CAAC"}