@empowered-humanity/agent-security 1.0.0

package/dist/scanner/engine.d.ts

@@ -0,0 +1,38 @@
+/**
+ * Pattern Matching Engine
+ *
+ * Core engine for matching security patterns against content.
+ * Includes:
+ * - Context-aware filtering (file type → pattern context matching)
+ * - Test file detection and severity downgrade
+ * - Auto-classification of findings (why the finding exists)
+ * - Taint proximity analysis (is user input near dangerous sinks?)
+ * - Context flow tracing (does serialized context reach external tools?)
+ */
+import type { DetectionPattern, Finding, FindingClassification, MatchContext, RiskScore, ScanResult, TaintProximity } from '../patterns/types.js';
+export declare function inferFileContext(filePath: string): MatchContext;
+export declare function shouldApplyPattern(pattern: DetectionPattern, filePath: string): boolean;
+export declare function isTestFile(filePath: string): boolean;
+export declare function classifyFinding(finding: Finding): FindingClassification;
+export declare function analyzeTaintProximity(lines: string[], sinkLineIndex: number, windowSize?: number): TaintProximity;
+export declare function traceContextFlow(lines: string[], serializeLineIndex: number, windowSize?: number): string[] | undefined;
+/**
+ * Match a single pattern against content with full intelligence pipeline
+ */
+export declare function matchPattern(pattern: DetectionPattern, content: string, file: string): Finding[];
+/**
+ * Match multiple patterns against content
+ */
+export declare function matchPatterns(patterns: DetectionPattern[], content: string, file: string): Finding[];
+export declare function calculateRiskScore(findings: Finding[]): RiskScore;
+export declare function deduplicateFindings(findings: Finding[]): Finding[];
+export declare function sortFindingsBySeverity(findings: Finding[]): Finding[];
+export declare function groupFindingsByFile(findings: Finding[]): Map<string, Finding[]>;
+export declare function groupFindingsByCategory(findings: Finding[]): Map<string, Finding[]>;
+/**
+ * Group findings by classification
+ */
+export declare function groupFindingsByClassification(findings: Finding[]): Map<FindingClassification, Finding[]>;
+export declare function filterFindingsBySeverity(findings: Finding[], minSeverity: 'critical' | 'high' | 'medium' | 'low'): Finding[];
+export declare function createScanResult(filesScanned: number, patternsChecked: number, findings: Finding[], startTime: number): ScanResult;
+//# sourceMappingURL=engine.d.ts.map

package/dist/scanner/engine.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"engine.d.ts","sourceRoot":"","sources":["../../src/scanner/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,KAAK,EACV,gBAAgB,EAChB,OAAO,EACP,qBAAqB,EACrB,YAAY,EACZ,SAAS,EAET,UAAU,EACV,cAAc,EACf,MAAM,sBAAsB,CAAC;AA+B9B,wBAAgB,gBAAgB,CAAC,QAAQ,EAAE,MAAM,GAAG,YAAY,CAQ/D;AAED,wBAAgB,kBAAkB,CAAC,OAAO,EAAE,gBAAgB,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAevF;AAwBD,wBAAgB,UAAU,CAAC,QAAQ,EAAE,MAAM,GAAG,OAAO,CAGpD;AAwCD,wBAAgB,eAAe,CAAC,OAAO,EAAE,OAAO,GAAG,qBAAqB,CA+CvE;AAcD,wBAAgB,qBAAqB,CACnC,KAAK,EAAE,MAAM,EAAE,EACf,aAAa,EAAE,MAAM,EACrB,UAAU,SAAK,GACd,cAAc,CAkBhB;AASD,wBAAgB,gBAAgB,CAC9B,KAAK,EAAE,MAAM,EAAE,EACf,kBAAkB,EAAE,MAAM,EAC1B,UAAU,SAAK,GACd,MAAM,EAAE,GAAG,SAAS,CAyBtB;AAYD;;GAEG;AACH,wBAAgB,YAAY,CAC1B,OAAO,EAAE,gBAAgB,EACzB,OAAO,EAAE,MAAM,EACf,IAAI,EAAE,MAAM,GACX,OAAO,EAAE,CA2DX;AAED;;GAEG;AACH,wBAAgB,aAAa,CAC3B,QAAQ,EAAE,gBAAgB,EAAE,EAC5B,OAAO,EAAE,MAAM,EACf,IAAI,EAAE,MAAM,GACX,OAAO,EAAE,CAMX;AAMD,wBAAgB,kBAAkB,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,SAAS,CAuBjE;AAED,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,OAAO,EAAE,CAQlE;AAED,wBAAgB,sBAAsB,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,OAAO,EAAE,CAKrE;AAED,wBAAgB,mBAAmB,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE,CAAC,CAQ/E;AAED,wBAAgB,uBAAuB,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC,MAAM,EAAE,OAAO,EAAE,CAAC,CASnF;AAED;;GAEG;AACH,wBAAgB,6BAA6B,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG,GAAG,CAAC,qBAAqB,EAAE,OAAO,EAAE,CAAC,CAQxG;AAED,wBAAgB,wBAAwB,CACtC,QAAQ,EAAE,OAAO,EAAE,EACnB,WAAW,EAAE,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,KAAK,GAClD,OAAO,EAAE,CAIX;AAED,wBAAgB,gBAAgB,CAC9B,YAAY,EAAE,MAAM,EACpB,eAAe,EAAE,MAAM,EACvB,QAAQ,EAAE,OAAO,EAAE,EACnB,SAAS,EAAE,MAAM,GAChB,UAAU,CASZ"}

package/dist/scanner/engine.js

@@ -0,0 +1,373 @@
+/**
+ * Pattern Matching Engine
+ *
+ * Core engine for matching security patterns against content.
+ * Includes:
+ * - Context-aware filtering (file type → pattern context matching)
+ * - Test file detection and severity downgrade
+ * - Auto-classification of findings (why the finding exists)
+ * - Taint proximity analysis (is user input near dangerous sinks?)
+ * - Context flow tracing (does serialized context reach external tools?)
+ */
+// ═══════════════════════════════════════════════════════════
+// Context-Aware Filtering
+// ═══════════════════════════════════════════════════════════
+const RUNTIME_ONLY_CONTEXTS = [
+    'file_write_operation',
+    'file_create',
+    'outbound_request',
+    'email_operation',
+    'url_parameter',
+    'user_input',
+];
+const EXT_CONTEXT_MAP = {
+    '.json': 'config', '.yaml': 'config', '.yml': 'config', '.toml': 'config',
+    '.ini': 'config', '.cfg': 'config', '.conf': 'config', '.xml': 'config',
+    '.ts': 'code', '.tsx': 'code', '.js': 'code', '.jsx': 'code',
+    '.py': 'code', '.go': 'code', '.rs': 'code', '.java': 'code',
+    '.c': 'code', '.cpp': 'code', '.rb': 'code',
+    '.sh': 'code', '.bash': 'code', '.zsh': 'code', '.ps1': 'code',
+    '.md': 'prompt', '.txt': 'prompt', '.rst': 'prompt',
+};
+const DEPENDENCY_FILE_PATTERNS = [
+    /package\.json$/i, /requirements\.txt$/i, /Pipfile$/i,
+    /Cargo\.toml$/i, /go\.mod$/i, /go\.sum$/i, /Gemfile$/i,
+    /pom\.xml$/i, /build\.gradle$/i, /\.csproj$/i,
+];
+export function inferFileContext(filePath) {
+    const lower = filePath.toLowerCase().replace(/\\/g, '/');
+    if (/\.env(?:\.\w+)?$/.test(lower))
+        return 'config';
+    for (const depPattern of DEPENDENCY_FILE_PATTERNS) {
+        if (depPattern.test(lower))
+            return 'dependency_version';
+    }
+    const ext = lower.match(/\.[^./\\]+$/)?.[0] || '';
+    return EXT_CONTEXT_MAP[ext] || 'any';
+}
+export function shouldApplyPattern(pattern, filePath) {
+    const patternContext = pattern.context;
+    if (!patternContext || patternContext === 'any')
+        return true;
+    if (RUNTIME_ONLY_CONTEXTS.includes(patternContext))
+        return false;
+    const fileContext = inferFileContext(filePath);
+    if (fileContext === 'any')
+        return true;
+    if (patternContext === 'dependency_version')
+        return fileContext === 'dependency_version';
+    if (patternContext === 'generated_code' || patternContext === 'command_template')
+        return fileContext === 'code';
+    if (patternContext === 'config')
+        return fileContext === 'config' || fileContext === 'dependency_version';
+    if (patternContext === 'code')
+        return fileContext === 'code';
+    if (patternContext === 'prompt')
+        return fileContext === 'prompt';
+    return true;
+}
+// ═══════════════════════════════════════════════════════════
+// Test File Detection
+// ═══════════════════════════════════════════════════════════
+const TEST_PATH_PATTERNS = [
+    /[/\\]tests?[/\\]/i,
+    /[/\\]__tests__[/\\]/i,
+    /[/\\]test_/i,
+    /[/\\]spec[/\\]/i,
+    /[/\\]fixtures?[/\\]/i,
+    /[/\\]mocks?[/\\]/i,
+    /[/\\]stubs?[/\\]/i,
+    /[/\\]examples?[/\\]/i,
+    /[/\\]e2e[/\\]/i,
+    /\.test\.\w+$/i,
+    /\.spec\.\w+$/i,
+    /_test\.\w+$/i,
+    /test_\w+\.\w+$/i,
+    /\.fixture\.\w+$/i,
+    /\.mock\.\w+$/i,
+];
+export function isTestFile(filePath) {
+    const normalized = filePath.replace(/\\/g, '/');
+    return TEST_PATH_PATTERNS.some(p => p.test(normalized));
+}
+const SEVERITY_DOWNGRADE = {
+    critical: 'high',
+    high: 'medium',
+    medium: 'low',
+    low: 'low',
+};
+// ═══════════════════════════════════════════════════════════
+// Auto-Classification
+// ═══════════════════════════════════════════════════════════
+const INJECTION_CATEGORIES = new Set([
+    'instruction_override', 'role_manipulation', 'boundary_escape',
+    'hierarchy_violation', 'goal_hijacking', 'rag_poisoning',
+    'hidden_injection', 'stealth_instruction', 'session_smuggling',
+    'behavior_manipulation', 'adversarial_suffix', 'prompt_extraction',
+]);
+const CREDENTIAL_CATEGORIES = new Set([
+    'credential_exposure', 'credential_theft',
+]);
+const CONFIG_CATEGORIES = new Set([
+    'config_vulnerability', 'permission_escalation',
+]);
+const ARCHITECTURAL_CATEGORIES = new Set([
+    'cross_agent_escalation', 'mcp_attack', 'persistence',
+    'ASI01_goal_hijack', 'ASI02_tool_misuse', 'ASI03_privilege_abuse',
+    'ASI04_supply_chain', 'ASI06_memory_poisoning', 'ASI07_insecure_comms',
+    'ASI08_cascading_failures', 'ASI09_trust_exploitation', 'ASI10_rogue_agents',
+]);
+const SUPPLY_CHAIN_PATTERNS = new Set([
+    'mcp_version_unpinned', 'mcp_dependency_wildcard', 'mcp_unsigned_plugin',
+    'mcp_install_untrusted_registry', 'mcp_no_tool_integrity_check',
+]);
+export function classifyFinding(finding) {
+    const { pattern, isTestFile: inTestFile } = finding;
+    // Test payloads: injection patterns found in test files of security tools
+    if (inTestFile && INJECTION_CATEGORIES.has(pattern.category)) {
+        return 'test_payload';
+    }
+    // Supply chain risks
+    if (SUPPLY_CHAIN_PATTERNS.has(pattern.name) || pattern.category === 'ASI04_supply_chain') {
+        return 'supply_chain_risk';
+    }
+    // Credential exposure
+    if (CREDENTIAL_CATEGORIES.has(pattern.category)) {
+        return inTestFile ? 'credential_exposure' : 'credential_exposure';
+    }
+    // Configuration risks
+    if (CONFIG_CATEGORIES.has(pattern.category)) {
+        return 'configuration_risk';
+    }
+    // Architectural weaknesses
+    if (ARCHITECTURAL_CATEGORIES.has(pattern.category)) {
+        return 'architectural_weakness';
+    }
+    // Code execution patterns
+    if (pattern.category === 'code_injection' || pattern.category === 'argument_injection' ||
+        pattern.category === 'ssrf' || pattern.category === 'ASI05_rce' ||
+        pattern.category === 'dangerous_commands') {
+        return 'live_vulnerability';
+    }
+    // Data exfiltration / defense evasion
+    if (pattern.category === 'data_exfiltration' || pattern.category === 'defense_evasion' ||
+        pattern.category === 'rendering_exfil') {
+        return inTestFile ? 'test_payload' : 'live_vulnerability';
+    }
+    // Injection patterns in non-test files
+    if (INJECTION_CATEGORIES.has(pattern.category)) {
+        return 'live_vulnerability';
+    }
+    return 'unclassified';
+}
+// ═══════════════════════════════════════════════════════════
+// Taint Proximity Analysis
+// ═══════════════════════════════════════════════════════════
+const TAINT_SINK_PATTERNS = new Set([
+    'eval_exec_usage', 'dangerous_module_import', 'pickle_loads',
+    'shell_true', 'langchain_import_bypass', 'langchain_palchain',
+    'asi05_code_execution',
+]);
+const TAINT_SOURCE_REGEX = /(?:input\s*\(|request\.|req\.body|req\.query|req\.params|argv|sys\.stdin|process\.stdin|\.invoke\(|\.generate\(|\.complete\(|\.chat\(|user_input|user_message|prompt_text|raw_input|from_user)/i;
+export function analyzeTaintProximity(lines, sinkLineIndex, windowSize = 10) {
+    // Check the sink line itself
+    if (TAINT_SOURCE_REGEX.test(lines[sinkLineIndex])) {
+        return 'direct';
+    }
+    // Check surrounding lines within window
+    const start = Math.max(0, sinkLineIndex - windowSize);
+    const end = Math.min(lines.length, sinkLineIndex + windowSize + 1);
+    for (let i = start; i < end; i++) {
+        if (i === sinkLineIndex)
+            continue;
+        if (TAINT_SOURCE_REGEX.test(lines[i])) {
+            return 'nearby';
+        }
+    }
+    return 'distant';
+}
+// ═══════════════════════════════════════════════════════════
+// Context Flow Tracing
+// ═══════════════════════════════════════════════════════════
+const CONTEXT_SERIALIZE_REGEX = /(?:JSON\.stringify|\.dump|serialize|\.toString)\s*\(.*(?:context|conversation|history|messages|chat_log|memory)/i;
+const EXTERNAL_CALL_REGEX = /(?:fetch|axios|request|http\.|urllib|requests\.|tool_call|function_call|mcp|\.post\(|\.get\(|\.send\()/i;
+export function traceContextFlow(lines, serializeLineIndex, windowSize = 15) {
+    const chain = [];
+    // Record the serialization point
+    chain.push(`serialize@L${serializeLineIndex + 1}: ${lines[serializeLineIndex].trim().substring(0, 80)}`);
+    // Look forward for external calls
+    const end = Math.min(lines.length, serializeLineIndex + windowSize + 1);
+    for (let i = serializeLineIndex + 1; i < end; i++) {
+        if (EXTERNAL_CALL_REGEX.test(lines[i])) {
+            chain.push(`external_call@L${i + 1}: ${lines[i].trim().substring(0, 80)}`);
+            return chain;
+        }
+    }
+    // Look backward — maybe the serialized var was passed to a call above
+    const start = Math.max(0, serializeLineIndex - windowSize);
+    for (let i = serializeLineIndex - 1; i >= start; i--) {
+        if (EXTERNAL_CALL_REGEX.test(lines[i])) {
+            chain.push(`external_call@L${i + 1}: ${lines[i].trim().substring(0, 80)}`);
+            return chain;
+        }
+    }
+    return undefined;
+}
+// ═══════════════════════════════════════════════════════════
+// Core Matching Engine
+// ═══════════════════════════════════════════════════════════
+function getContext(lines, lineIndex, contextSize = 2) {
+    const start = Math.max(0, lineIndex - contextSize);
+    const end = Math.min(lines.length, lineIndex + contextSize + 1);
+    return lines.slice(start, end).join('\n');
+}
+/**
+ * Match a single pattern against content with full intelligence pipeline
+ */
+export function matchPattern(pattern, content, file) {
+    if (!shouldApplyPattern(pattern, file))
+        return [];
+    const findings = [];
+    const lines = content.split('\n');
+    const testFile = isTestFile(file);
+    for (let lineIndex = 0; lineIndex < lines.length; lineIndex++) {
+        const line = lines[lineIndex];
+        const matches = line.matchAll(new RegExp(pattern.pattern, 'gi'));
+        for (const match of matches) {
+            const originalSeverity = pattern.severity;
+            const shouldDowngrade = testFile && (CREDENTIAL_CATEGORIES.has(pattern.category) ||
+                INJECTION_CATEGORIES.has(pattern.category));
+            const finding = {
+                pattern: shouldDowngrade
+                    ? { ...pattern, severity: SEVERITY_DOWNGRADE[originalSeverity] }
+                    : pattern,
+                file,
+                line: lineIndex + 1,
+                column: (match.index || 0) + 1,
+                match: match[0],
+                context: getContext(lines, lineIndex),
+                timestamp: new Date(),
+                classification: 'unclassified',
+                originalSeverity,
+                severityDowngraded: shouldDowngrade,
+                isTestFile: testFile,
+            };
+            // Taint proximity for dangerous sink patterns
+            if (TAINT_SINK_PATTERNS.has(pattern.name)) {
+                finding.taintProximity = analyzeTaintProximity(lines, lineIndex);
+                // Escalate severity if tainted input is nearby
+                if (finding.taintProximity === 'direct') {
+                    finding.pattern = { ...finding.pattern, severity: 'critical' };
+                }
+                else if (finding.taintProximity === 'nearby') {
+                    finding.pattern = { ...finding.pattern, severity: 'critical' };
+                }
+            }
+            // Context flow tracing for context serialization patterns
+            if (pattern.name === 'mcp_context_dump_to_tool') {
+                finding.contextFlowChain = traceContextFlow(lines, lineIndex);
+            }
+            // Auto-classify
+            finding.classification = classifyFinding(finding);
+            findings.push(finding);
+        }
+    }
+    return findings;
+}
+/**
+ * Match multiple patterns against content
+ */
+export function matchPatterns(patterns, content, file) {
+    const findings = [];
+    for (const pattern of patterns) {
+        findings.push(...matchPattern(pattern, content, file));
+    }
+    return findings;
+}
+// ═══════════════════════════════════════════════════════════
+// Risk Scoring (uses downgraded severity, not original)
+// ═══════════════════════════════════════════════════════════
+export function calculateRiskScore(findings) {
+    const weights = { critical: 25, high: 10, medium: 3, low: 1 };
+    const counts = { critical: 0, high: 0, medium: 0, low: 0 };
+    let deductions = 0;
+    for (const finding of findings) {
+        const sev = finding.pattern.severity;
+        counts[sev]++;
+        deductions += weights[sev];
+    }
+    const total = Math.max(0, 100 - deductions);
+    let level;
+    if (total >= 80)
+        level = 'low';
+    else if (total >= 60)
+        level = 'moderate';
+    else if (total >= 40)
+        level = 'high';
+    else
+        level = 'critical';
+    const owaspFindings = findings.filter((f) => f.pattern.owaspAsi);
+    const owaspCompliance = owaspFindings.length === 0 ? 100 : Math.max(0, 100 - owaspFindings.length * 10);
+    return { total, level, counts, owaspCompliance };
+}
+export function deduplicateFindings(findings) {
+    const seen = new Set();
+    return findings.filter((f) => {
+        const key = `${f.pattern.name}:${f.file}:${f.line}:${f.column}`;
+        if (seen.has(key))
+            return false;
+        seen.add(key);
+        return true;
+    });
+}
+export function sortFindingsBySeverity(findings) {
+    const severityOrder = { critical: 0, high: 1, medium: 2, low: 3 };
+    return [...findings].sort((a, b) => severityOrder[a.pattern.severity] - severityOrder[b.pattern.severity]);
+}
+export function groupFindingsByFile(findings) {
+    const groups = new Map();
+    for (const finding of findings) {
+        const existing = groups.get(finding.file) || [];
+        existing.push(finding);
+        groups.set(finding.file, existing);
+    }
+    return groups;
+}
+export function groupFindingsByCategory(findings) {
+    const groups = new Map();
+    for (const finding of findings) {
+        const category = finding.pattern.category;
+        const existing = groups.get(category) || [];
+        existing.push(finding);
+        groups.set(category, existing);
+    }
+    return groups;
+}
+/**
+ * Group findings by classification
+ */
+export function groupFindingsByClassification(findings) {
+    const groups = new Map();
+    for (const finding of findings) {
+        const existing = groups.get(finding.classification) || [];
+        existing.push(finding);
+        groups.set(finding.classification, existing);
+    }
+    return groups;
+}
+export function filterFindingsBySeverity(findings, minSeverity) {
+    const severityOrder = { low: 0, medium: 1, high: 2, critical: 3 };
+    const minLevel = severityOrder[minSeverity];
+    return findings.filter((f) => severityOrder[f.pattern.severity] >= minLevel);
+}
+export function createScanResult(filesScanned, patternsChecked, findings, startTime) {
+    return {
+        filesScanned,
+        patternsChecked,
+        findings: sortFindingsBySeverity(deduplicateFindings(findings)),
+        riskScore: calculateRiskScore(findings),
+        duration: Date.now() - startTime,
+        timestamp: new Date(),
+    };
+}
+//# sourceMappingURL=engine.js.map

package/dist/scanner/engine.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"engine.js","sourceRoot":"","sources":["../../src/scanner/engine.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAaH,8DAA8D;AAC9D,0BAA0B;AAC1B,8DAA8D;AAE9D,MAAM,qBAAqB,GAAmB;IAC5C,sBAAsB;IACtB,aAAa;IACb,kBAAkB;IAClB,iBAAiB;IACjB,eAAe;IACf,YAAY;CACb,CAAC;AAEF,MAAM,eAAe,GAAiC;IACpD,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,QAAQ;IACzE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,OAAO,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ;IACvE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM;IAC5D,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM;IAC5D,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM;IAC3C,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM;IAC9D,KAAK,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,EAAE,QAAQ;CACpD,CAAC;AAEF,MAAM,wBAAwB,GAAG;IAC/B,iBAAiB,EAAE,qBAAqB,EAAE,WAAW;IACrD,eAAe,EAAE,WAAW,EAAE,WAAW,EAAE,WAAW;IACtD,YAAY,EAAE,iBAAiB,EAAE,YAAY;CAC9C,CAAC;AAEF,MAAM,UAAU,gBAAgB,CAAC,QAAgB;IAC/C,MAAM,KAAK,GAAG,QAAQ,CAAC,WAAW,EAAE,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IACzD,IAAI,kBAAkB,CAAC,IAAI,CAAC,KAAK,CAAC;QAAE,OAAO,QAAQ,CAAC;IACpD,KAAK,MAAM,UAAU,IAAI,wBAAwB,EAAE,CAAC;QAClD,IAAI,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC;YAAE,OAAO,oBAAoB,CAAC;IAC1D,CAAC;IACD,MAAM,GAAG,GAAG,KAAK,CAAC,KAAK,CAAC,aAAa,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IAClD,OAAO,eAAe,CAAC,GAAG,CAAC,IAAI,KAAK,CAAC;AACvC,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,OAAyB,EAAE,QAAgB;IAC5E,MAAM,cAAc,GAAG,OAAO,CAAC,OAAO,CAAC;IACvC,IAAI,CAAC,cAAc,IAAI,cAAc,KAAK,KAAK;QAAE,OAAO,IAAI,CAAC;IAC7D,IAAI,qBAAqB,CAAC,QAAQ,CAAC,cAAc,CAAC;QAAE,OAAO,KAAK,CAAC;IAEjE,MAAM,WAAW,GAAG,gBAAgB,CAAC,QAAQ,CAAC,CAAC;IAC/C,IAAI,WAAW,KAAK,KAAK;QAAE,OAAO,IAAI,CAAC;IAEvC,IAAI,cAAc,KAAK,oBAAoB;QAAE,OAAO,WAAW,KAAK,oBAAoB,CAAC;IACzF,IAAI,cAAc,KAAK,gBAAgB,IAAI,cAAc,KAAK,kBAAkB;QAAE,OAAO,WAAW,KAAK,MAAM,CAAC;IAChH,IAAI,cAAc,KAAK,QAAQ;QAAE,OAAO,WAAW,KAAK,QAAQ,IAAI,WAAW,KAAK,oBAAoB,CAAC;IACzG,IAAI,cAAc,KAAK,MAAM;QAAE,OAAO,WAAW,KAAK,MAAM,CAAC;IAC7D,IAAI,cAAc,KAAK,QAAQ;QAAE,OAAO,WAAW,KAAK,QAAQ,CAAC;IAEjE,OAAO,IAAI,CAAC;AACd,CAAC;AAED,8DAA8D;AAC9D,sBAAsB;AACtB,8DAA8D;AAE9D,MAAM,kBAAkB,GAAG;IACzB,mBAAmB;IACnB,sBAAsB;IACtB,aAAa;IACb,iBAAiB;IACjB,sBAAsB;IACtB,mBAAmB;IACnB,mBAAmB;IACnB,sBAAsB;IACtB,gBAAgB;IAChB,eAAe;IACf,eAAe;IACf,cAAc;IACd,iBAAiB;IACjB,kBAAkB;IAClB,eAAe;CAChB,CAAC;AAEF,MAAM,UAAU,UAAU,CAAC,QAAgB;IACzC,MAAM,UAAU,GAAG,QAAQ,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC;IAChD,OAAO,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC;AAC1D,CAAC;AAED,MAAM,kBAAkB,GAA+B;IACrD,QAAQ,EAAE,MAAM;IAChB,IAAI,EAAE,QAAQ;IACd,MAAM,EAAE,KAAK;IACb,GAAG,EAAE,KAAK;CACX,CAAC;AAEF,8DAA8D;AAC9D,sBAAsB;AACtB,8DAA8D;AAE9D,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC;IACnC,sBAAsB,EAAE,mBAAmB,EAAE,iBAAiB;IAC9D,qBAAqB,EAAE,gBAAgB,EAAE,eAAe;IACxD,kBAAkB,EAAE,qBAAqB,EAAE,mBAAmB;IAC9D,uBAAuB,EAAE,oBAAoB,EAAE,mBAAmB;CACnE,CAAC,CAAC;AAEH,MAAM,qBAAqB,GAAG,IAAI,GAAG,CAAC;IACpC,qBAAqB,EAAE,kBAAkB;CAC1C,CAAC,CAAC;AAEH,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC;IAChC,sBAAsB,EAAE,uBAAuB;CAChD,CAAC,CAAC;AAEH,MAAM,wBAAwB,GAAG,IAAI,GAAG,CAAC;IACvC,wBAAwB,EAAE,YAAY,EAAE,aAAa;IACrD,mBAAmB,EAAE,mBAAmB,EAAE,uBAAuB;IACjE,oBAAoB,EAAE,wBAAwB,EAAE,sBAAsB;IACtE,0BAA0B,EAAE,0BAA0B,EAAE,oBAAoB;CAC7E,CAAC,CAAC;AAEH,MAAM,qBAAqB,GAAG,IAAI,GAAG,CAAC;IACpC,sBAAsB,EAAE,yBAAyB,EAAE,qBAAqB;IACxE,gCAAgC,EAAE,6BAA6B;CAChE,CAAC,CAAC;AAEH,MAAM,UAAU,eAAe,CAAC,OAAgB;IAC9C,MAAM,EAAE,OAAO,EAAE,UAAU,EAAE,UAAU,EAAE,GAAG,OAAO,CAAC;IAEpD,0EAA0E;IAC1E,IAAI,UAAU,IAAI,oBAAoB,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC7D,OAAO,cAAc,CAAC;IACxB,CAAC;IAED,qBAAqB;IACrB,IAAI,qBAAqB,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,QAAQ,KAAK,oBAAoB,EAAE,CAAC;QACzF,OAAO,mBAAmB,CAAC;IAC7B,CAAC;IAED,sBAAsB;IACtB,IAAI,qBAAqB,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QAChD,OAAO,UAAU,CAAC,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,qBAAqB,CAAC;IACpE,CAAC;IAED,sBAAsB;IACtB,IAAI,iBAAiB,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5C,OAAO,oBAAoB,CAAC;IAC9B,CAAC;IAED,2BAA2B;IAC3B,IAAI,wBAAwB,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QACnD,OAAO,wBAAwB,CAAC;IAClC,CAAC;IAED,0BAA0B;IAC1B,IAAI,OAAO,CAAC,QAAQ,KAAK,gBAAgB,IAAI,OAAO,CAAC,QAAQ,KAAK,oBAAoB;QAClF,OAAO,CAAC,QAAQ,KAAK,MAAM,IAAI,OAAO,CAAC,QAAQ,KAAK,WAAW;QAC/D,OAAO,CAAC,QAAQ,KAAK,oBAAoB,EAAE,CAAC;QAC9C,OAAO,oBAAoB,CAAC;IAC9B,CAAC;IAED,sCAAsC;IACtC,IAAI,OAAO,CAAC,QAAQ,KAAK,mBAAmB,IAAI,OAAO,CAAC,QAAQ,KAAK,iBAAiB;QAClF,OAAO,CAAC,QAAQ,KAAK,iBAAiB,EAAE,CAAC;QAC3C,OAAO,UAAU,CAAC,CAAC,CAAC,cAAc,CAAC,CAAC,CAAC,oBAAoB,CAAC;IAC5D,CAAC;IAED,uCAAuC;IACvC,IAAI,oBAAoB,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC/C,OAAO,oBAAoB,CAAC;IAC9B,CAAC;IAED,OAAO,cAAc,CAAC;AACxB,CAAC;AAED,8DAA8D;AAC9D,2BAA2B;AAC3B,8DAA8D;AAE9D,MAAM,mBAAmB,GAAG,IAAI,GAAG,CAAC;IAClC,iBAAiB,EAAE,yBAAyB,EAAE,cAAc;IAC5D,YAAY,EAAE,yBAAyB,EAAE,oBAAoB;IAC7D,sBAAsB;CACvB,CAAC,CAAC;AAEH,MAAM,kBAAkB,GAAG,iMAAiM,CAAC;AAE7N,MAAM,UAAU,qBAAqB,CACnC,KAAe,EACf,aAAqB,EACrB,UAAU,GAAG,EAAE;IAEf,6BAA6B;IAC7B,IAAI,kBAAkB,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC,EAAE,CAAC;QAClD,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,wCAAwC;IACxC,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,aAAa,GAAG,UAAU,CAAC,CAAC;IACtD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,aAAa,GAAG,UAAU,GAAG,CAAC,CAAC,CAAC;IAEnE,KAAK,IAAI,CAAC,GAAG,KAAK,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QACjC,IAAI,CAAC,KAAK,aAAa;YAAE,SAAS;QAClC,IAAI,kBAAkB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YACtC,OAAO,QAAQ,CAAC;QAClB,CAAC;IACH,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,8DAA8D;AAC9D,uBAAuB;AACvB,8DAA8D;AAE9D,MAAM,uBAAuB,GAAG,kHAAkH,CAAC;AACnJ,MAAM,mBAAmB,GAAG,yGAAyG,CAAC;AAEtI,MAAM,UAAU,gBAAgB,CAC9B,KAAe,EACf,kBAA0B,EAC1B,UAAU,GAAG,EAAE;IAEf,MAAM,KAAK,GAAa,EAAE,CAAC;IAE3B,iCAAiC;IACjC,KAAK,CAAC,IAAI,CAAC,cAAc,kBAAkB,GAAG,CAAC,KAAK,KAAK,CAAC,kBAAkB,CAAC,CAAC,IAAI,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC;IAEzG,kCAAkC;IAClC,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,kBAAkB,GAAG,UAAU,GAAG,CAAC,CAAC,CAAC;IACxE,KAAK,IAAI,CAAC,GAAG,kBAAkB,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QAClD,IAAI,mBAAmB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YACvC,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC;YAC3E,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED,sEAAsE;IACtE,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,kBAAkB,GAAG,UAAU,CAAC,CAAC;IAC3D,KAAK,IAAI,CAAC,GAAG,kBAAkB,GAAG,CAAC,EAAE,CAAC,IAAI,KAAK,EAAE,CAAC,EAAE,EAAE,CAAC;QACrD,IAAI,mBAAmB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YACvC,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,GAAG,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC;YAC3E,OAAO,KAAK,CAAC;QACf,CAAC;IACH,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,8DAA8D;AAC9D,uBAAuB;AACvB,8DAA8D;AAE9D,SAAS,UAAU,CAAC,KAAe,EAAE,SAAiB,EAAE,WAAW,GAAG,CAAC;IACrE,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,SAAS,GAAG,WAAW,CAAC,CAAC;IACnD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,EAAE,SAAS,GAAG,WAAW,GAAG,CAAC,CAAC,CAAC;IAChE,OAAO,KAAK,CAAC,KAAK,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC5C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAC1B,OAAyB,EACzB,OAAe,EACf,IAAY;IAEZ,IAAI,CAAC,kBAAkB,CAAC,OAAO,EAAE,IAAI,CAAC;QAAE,OAAO,EAAE,CAAC;IAElD,MAAM,QAAQ,GAAc,EAAE,CAAC;IAC/B,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,MAAM,QAAQ,GAAG,UAAU,CAAC,IAAI,CAAC,CAAC;IAElC,KAAK,IAAI,SAAS,GAAG,CAAC,EAAE,SAAS,GAAG,KAAK,CAAC,MAAM,EAAE,SAAS,EAAE,EAAE,CAAC;QAC9D,MAAM,IAAI,GAAG,KAAK,CAAC,SAAS,CAAC,CAAC;QAC9B,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC;QAEjE,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,MAAM,gBAAgB,GAAG,OAAO,CAAC,QAAQ,CAAC;YAC1C,MAAM,eAAe,GAAG,QAAQ,IAAI,CAClC,qBAAqB,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC;gBAC3C,oBAAoB,CAAC,GAAG,CAAC,OAAO,CAAC,QAAQ,CAAC,CAC3C,CAAC;YAEF,MAAM,OAAO,GAAY;gBACvB,OAAO,EAAE,eAAe;oBACtB,CAAC,CAAC,EAAE,GAAG,OAAO,EAAE,QAAQ,EAAE,kBAAkB,CAAC,gBAAgB,CAAC,EAAE;oBAChE,CAAC,CAAC,OAAO;gBACX,IAAI;gBACJ,IAAI,EAAE,SAAS,GAAG,CAAC;gBACnB,MAAM,EAAE,CAAC,KAAK,CAAC,KAAK,IAAI,CAAC,CAAC,GAAG,CAAC;gBAC9B,KAAK,EAAE,KAAK,CAAC,CAAC,CAAC;gBACf,OAAO,EAAE,UAAU,CAAC,KAAK,EAAE,SAAS,CAAC;gBACrC,SAAS,EAAE,IAAI,IAAI,EAAE;gBACrB,cAAc,EAAE,cAAc;gBAC9B,gBAAgB;gBAChB,kBAAkB,EAAE,eAAe;gBACnC,UAAU,EAAE,QAAQ;aACrB,CAAC;YAEF,8CAA8C;YAC9C,IAAI,mBAAmB,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC1C,OAAO,CAAC,cAAc,GAAG,qBAAqB,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;gBAEjE,+CAA+C;gBAC/C,IAAI,OAAO,CAAC,cAAc,KAAK,QAAQ,EAAE,CAAC;oBACxC,OAAO,CAAC,OAAO,GAAG,EAAE,GAAG,OAAO,CAAC,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC;gBACjE,CAAC;qBAAM,IAAI,OAAO,CAAC,cAAc,KAAK,QAAQ,EAAE,CAAC;oBAC/C,OAAO,CAAC,OAAO,GAAG,EAAE,GAAG,OAAO,CAAC,OAAO,EAAE,QAAQ,EAAE,UAAU,EAAE,CAAC;gBACjE,CAAC;YACH,CAAC;YAED,0DAA0D;YAC1D,IAAI,OAAO,CAAC,IAAI,KAAK,0BAA0B,EAAE,CAAC;gBAChD,OAAO,CAAC,gBAAgB,GAAG,gBAAgB,CAAC,KAAK,EAAE,SAAS,CAAC,CAAC;YAChE,CAAC;YAED,gBAAgB;YAChB,OAAO,CAAC,cAAc,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;YAElD,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACzB,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,aAAa,CAC3B,QAA4B,EAC5B,OAAe,EACf,IAAY;IAEZ,MAAM,QAAQ,GAAc,EAAE,CAAC;IAC/B,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,QAAQ,CAAC,IAAI,CAAC,GAAG,YAAY,CAAC,OAAO,EAAE,OAAO,EAAE,IAAI,CAAC,CAAC,CAAC;IACzD,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED,8DAA8D;AAC9D,wDAAwD;AACxD,8DAA8D;AAE9D,MAAM,UAAU,kBAAkB,CAAC,QAAmB;IACpD,MAAM,OAAO,GAAG,EAAE,QAAQ,EAAE,EAAE,EAAE,IAAI,EAAE,EAAE,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;IAC9D,MAAM,MAAM,GAAG,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;IAC3D,IAAI,UAAU,GAAG,CAAC,CAAC;IAEnB,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,GAAG,GAAG,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC;QACrC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC;QACd,UAAU,IAAI,OAAO,CAAC,GAAG,CAAC,CAAC;IAC7B,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,GAAG,UAAU,CAAC,CAAC;IAE5C,IAAI,KAAyB,CAAC;IAC9B,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,KAAK,CAAC;SAC1B,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,UAAU,CAAC;SACpC,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,MAAM,CAAC;;QAChC,KAAK,GAAG,UAAU,CAAC;IAExB,MAAM,aAAa,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAC;IACjE,MAAM,eAAe,GAAG,aAAa,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,GAAG,GAAG,aAAa,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC;IAExG,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC;AACnD,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,QAAmB;IACrD,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;IAC/B,OAAO,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE;QAC3B,MAAM,GAAG,GAAG,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,MAAM,EAAE,CAAC;QAChE,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;YAAE,OAAO,KAAK,CAAC;QAChC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QACd,OAAO,IAAI,CAAC;IACd,CAAC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,UAAU,sBAAsB,CAAC,QAAmB;IACxD,MAAM,aAAa,GAAG,EAAE,QAAQ,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;IAClE,OAAO,CAAC,GAAG,QAAQ,CAAC,CAAC,IAAI,CACvB,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG,aAAa,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,CAChF,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,QAAmB;IACrD,MAAM,MAAM,GAAG,IAAI,GAAG,EAAqB,CAAC;IAC5C,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;QAChD,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACvB,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;IACrC,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,uBAAuB,CAAC,QAAmB;IACzD,MAAM,MAAM,GAAG,IAAI,GAAG,EAAqB,CAAC;IAC5C,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,QAAQ,GAAG,OAAO,CAAC,OAAO,CAAC,QAAQ,CAAC;QAC1C,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;QAC5C,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACvB,MAAM,CAAC,GAAG,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;IACjC,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,6BAA6B,CAAC,QAAmB;IAC/D,MAAM,MAAM,GAAG,IAAI,GAAG,EAAoC,CAAC;IAC3D,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;QAC/B,MAAM,QAAQ,GAAG,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC;QAC1D,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QACvB,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,cAAc,EAAE,QAAQ,CAAC,CAAC;IAC/C,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,wBAAwB,CACtC,QAAmB,EACnB,WAAmD;IAEnD,MAAM,aAAa,GAAG,EAAE,GAAG,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,IAAI,EAAE,CAAC,EAAE,QAAQ,EAAE,CAAC,EAAE,CAAC;IAClE,MAAM,QAAQ,GAAG,aAAa,CAAC,WAAW,CAAC,CAAC;IAC5C,OAAO,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,aAAa,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,QAAQ,CAAC,CAAC;AAC/E,CAAC;AAED,MAAM,UAAU,gBAAgB,CAC9B,YAAoB,EACpB,eAAuB,EACvB,QAAmB,EACnB,SAAiB;IAEjB,OAAO;QACL,YAAY;QACZ,eAAe;QACf,QAAQ,EAAE,sBAAsB,CAAC,mBAAmB,CAAC,QAAQ,CAAC,CAAC;QAC/D,SAAS,EAAE,kBAAkB,CAAC,QAAQ,CAAC;QACvC,QAAQ,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS;QAChC,SAAS,EAAE,IAAI,IAAI,EAAE;KACtB,CAAC;AACJ,CAAC"}

package/dist/scanner/index.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Scanner Module Exports
+ */
+export * from './engine.js';
+export * from './content-scanner.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/scanner/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../src/scanner/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,cAAc,aAAa,CAAC;AAC5B,cAAc,sBAAsB,CAAC"}

package/dist/scanner/index.js

@@ -0,0 +1,6 @@
+/**
+ * Scanner Module Exports
+ */
+export * from './engine.js';
+export * from './content-scanner.js';
+//# sourceMappingURL=index.js.map

package/dist/scanner/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../src/scanner/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,cAAc,aAAa,CAAC;AAC5B,cAAc,sBAAsB,CAAC"}

package/package.json

@@ -0,0 +1,88 @@
+{
+  "name": "@empowered-humanity/agent-security",
+  "version": "1.0.0",
+  "description": "Security scanner for AI agent architectures - 176 detection patterns for prompt injection, credential exposure, MCP security, and OWASP ASI vulnerabilities",
+  "type": "module",
+  "main": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "exports": {
+    ".": {
+      "types": "./dist/index.d.ts",
+      "default": "./dist/index.js"
+    },
+    "./patterns": {
+      "types": "./dist/patterns/index.d.ts",
+      "default": "./dist/patterns/index.js"
+    },
+    "./scanner": {
+      "types": "./dist/scanner/index.d.ts",
+      "default": "./dist/scanner/index.js"
+    },
+    "./reporters": {
+      "types": "./dist/reporters/index.d.ts",
+      "default": "./dist/reporters/index.js"
+    }
+  },
+  "bin": {
+    "te-agent-security": "dist/index.js",
+    "te-as": "dist/index.js"
+  },
+  "files": [
+    "dist",
+    "README.md",
+    "LICENSE",
+    "SECURITY.md",
+    "sbom.json"
+  ],
+  "scripts": {
+    "build": "tsc",
+    "dev": "tsc --watch",
+    "start": "node dist/index.js",
+    "test": "vitest run",
+    "test:watch": "vitest",
+    "typecheck": "tsc --noEmit",
+    "lint": "eslint src/",
+    "clean": "rimraf dist",
+    "prepublishOnly": "npm run clean && npm run build && npm test"
+  },
+  "keywords": [
+    "security",
+    "ai-agent",
+    "prompt-injection",
+    "scanner",
+    "llm",
+    "owasp",
+    "asi",
+    "agent-security",
+    "code-injection",
+    "credential-detection",
+    "sast",
+    "vulnerability-scanner"
+  ],
+  "author": "Empowered Humanity <security@empoweredhumanity.ai>",
+  "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/Traviseric/agent-security.git"
+  },
+  "bugs": {
+    "url": "https://github.com/Traviseric/agent-security/issues"
+  },
+  "homepage": "https://github.com/Traviseric/agent-security#readme",
+  "dependencies": {
+    "chalk": "^5.3.0",
+    "commander": "^12.0.0",
+    "glob": "^10.3.0",
+    "ora": "^8.0.0",
+    "yaml": "^2.3.0"
+  },
+  "devDependencies": {
+    "@types/node": "^20.10.0",
+    "rimraf": "^5.0.0",
+    "typescript": "^5.3.0",
+    "vitest": "^1.0.0"
+  },
+  "engines": {
+    "node": ">=18.0.0"
+  }
+}

package/sbom.json

@@ -0,0 +1,107 @@
+{
+  "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json",
+  "bomFormat": "CycloneDX",
+  "specVersion": "1.6",
+  "version": 1,
+  "serialNumber": "urn:uuid:3acedb58-5bfd-4dd9-8fd8-f8c1e634fc57",
+  "metadata": {
+    "timestamp": "2026-02-11T22:01:04.519Z",
+    "tools": {
+      "components": [
+        {
+          "type": "application",
+          "name": "npm",
+          "version": "11.6.2"
+        },
+        {
+          "type": "application",
+          "name": "cyclonedx-npm",
+          "group": "@cyclonedx",
+          "version": "4.1.2",
+          "author": "Jan Kowalleck",
+          "description": "Create CycloneDX Software Bill of Materials (SBOM) from NPM projects.",
+          "licenses": [
+            {
+              "license": {
+                "id": "Apache-2.0"
+              }
+            }
+          ],
+          "externalReferences": [
+            {
+              "url": "git+https://github.com/CycloneDX/cyclonedx-node-npm.git",
+              "type": "vcs",
+              "comment": "as detected from PackageJson property \"repository.url\""
+            },
+            {
+              "url": "https://github.com/CycloneDX/cyclonedx-node-npm#readme",
+              "type": "website",
+              "comment": "as detected from PackageJson property \"homepage\""
+            },
+            {
+              "url": "https://github.com/CycloneDX/cyclonedx-node-npm/issues",
+              "type": "issue-tracker",
+              "comment": "as detected from PackageJson property \"bugs.url\""
+            }
+          ]
+        },
+        {
+          "type": "library",
+          "name": "cyclonedx-library",
+          "group": "@cyclonedx",
+          "version": "9.4.1",
+          "author": "Jan Kowalleck",
+          "description": "Core functionality of CycloneDX for JavaScript (Node.js or WebBrowser).",
+          "licenses": [
+            {
+              "license": {
+                "id": "Apache-2.0"
+              }
+            }
+          ],
+          "externalReferences": [
+            {
+              "url": "git+https://github.com/CycloneDX/cyclonedx-javascript-library.git",
+              "type": "vcs",
+              "comment": "as detected from PackageJson property \"repository.url\""
+            },
+            {
+              "url": "https://github.com/CycloneDX/cyclonedx-javascript-library#readme",
+              "type": "website",
+              "comment": "as detected from PackageJson property \"homepage\""
+            },
+            {
+              "url": "https://github.com/CycloneDX/cyclonedx-javascript-library/issues",
+              "type": "issue-tracker",
+              "comment": "as detected from PackageJson property \"bugs.url\""
+            }
+          ]
+        }
+      ]
+    },
+    "component": {
+      "type": "application",
+      "name": "te-security",
+      "version": "0.1.0",
+      "bom-ref": "te-security@0.1.0",
+      "description": "Security tools monorepo for TE Code ecosystem",
+      "purl": "pkg:npm/te-security@0.1.0",
+      "properties": [
+        {
+          "name": "cdx:npm:package:private",
+          "value": "true"
+        },
+        {
+          "name": "cdx:npm:package:path",
+          "value": ""
+        }
+      ]
+    }
+  },
+  "components": [],
+  "dependencies": [
+    {
+      "ref": "te-security@0.1.0"
+    }
+  ]
+}