@frengki0707/google-cloud-clone 1.33.0

package/lib/metrics.d.ts

@@ -0,0 +1,65 @@
+import { Meter, Counter, Histogram } from '@opentelemetry/api';
+import { ReadableSpan } from '@opentelemetry/sdk-trace-base';
+
+/**
+ * Copyright 2024 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+declare const METER_NAME = "genkit";
+declare const METRIC_NAME_PREFIX = "genkit";
+declare function internalMetricNamespaceWrap(...namespaces: any[]): string;
+type MetricCreateFn<T> = (meter: Meter) => T;
+/**
+ * Wrapper for OpenTelemetry metrics.
+ *
+ * The OpenTelemetry {MeterProvider} can only be accessed through the metrics
+ * API after the NodeSDK library has been initialized. To prevent race
+ * conditions we defer the instantiation of the metric to when it is first
+ * ticked.
+ */
+declare class Metric<T> {
+    readonly createFn: MetricCreateFn<T>;
+    readonly meterName: string;
+    metric?: T;
+    constructor(createFn: MetricCreateFn<T>, meterName?: string);
+    get(): T;
+}
+/**
+ * Wrapper for an OpenTelemetry Counter.
+ *
+ * By using this wrapper, we defer initialization of the counter until it is
+ * need, which ensures that the OpenTelemetry SDK has been initialized before
+ * the metric has been defined.
+ */
+declare class MetricCounter extends Metric<Counter> {
+    constructor(name: string, options: any);
+    add(val?: number, opts?: any): void;
+}
+/**
+ * Wrapper for an OpenTelemetry Histogram.
+ *
+ * By using this wrapper, we defer initialization of the counter until it is
+ * need, which ensures that the OpenTelemetry SDK has been initialized before
+ * the metric has been defined.
+ */
+declare class MetricHistogram extends Metric<Histogram> {
+    constructor(name: string, options: any);
+    record(val?: number, opts?: any): void;
+}
+interface Telemetry {
+    tick(span: ReadableSpan, logIO: boolean, projectId?: string): void;
+}
+
+export { METER_NAME, METRIC_NAME_PREFIX, MetricCounter, MetricHistogram, type Telemetry, internalMetricNamespaceWrap };

package/lib/metrics.js

@@ -0,0 +1,91 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var metrics_exports = {};
+__export(metrics_exports, {
+  METER_NAME: () => METER_NAME,
+  METRIC_NAME_PREFIX: () => METRIC_NAME_PREFIX,
+  MetricCounter: () => MetricCounter,
+  MetricHistogram: () => MetricHistogram,
+  internalMetricNamespaceWrap: () => internalMetricNamespaceWrap
+});
+module.exports = __toCommonJS(metrics_exports);
+var import_api = require("@opentelemetry/api");
+const METER_NAME = "genkit";
+const METRIC_NAME_PREFIX = "genkit";
+const METRIC_DIMENSION_MAX_CHARS = 256;
+function internalMetricNamespaceWrap(...namespaces) {
+  return [METRIC_NAME_PREFIX, ...namespaces].join("/");
+}
+class Metric {
+  createFn;
+  meterName;
+  metric;
+  constructor(createFn, meterName = METER_NAME) {
+    this.meterName = meterName;
+    this.createFn = createFn;
+  }
+  get() {
+    if (!this.metric) {
+      this.metric = this.createFn(
+        import_api.metrics.getMeterProvider().getMeter(this.meterName)
+      );
+    }
+    return this.metric;
+  }
+}
+class MetricCounter extends Metric {
+  constructor(name, options) {
+    super((meter) => meter.createCounter(name, options));
+  }
+  add(val, opts) {
+    if (val) {
+      truncateDimensions(opts);
+      this.get().add(val, opts);
+    }
+  }
+}
+class MetricHistogram extends Metric {
+  constructor(name, options) {
+    super((meter) => meter.createHistogram(name, options));
+  }
+  record(val, opts) {
+    if (val) {
+      truncateDimensions(opts);
+      this.get().record(val, opts);
+    }
+  }
+}
+function truncateDimensions(opts) {
+  if (opts) {
+    Object.keys(opts).forEach((k) => {
+      if (typeof opts[k] === "string") {
+        opts[k] = opts[k].substring(0, METRIC_DIMENSION_MAX_CHARS);
+      }
+    });
+  }
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  METER_NAME,
+  METRIC_NAME_PREFIX,
+  MetricCounter,
+  MetricHistogram,
+  internalMetricNamespaceWrap
+});
+//# sourceMappingURL=metrics.js.map

package/lib/metrics.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/metrics.ts"],"sourcesContent":["/**\n * Copyright 2024 Google LLC\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\n\nimport {\n  metrics,\n  type Counter,\n  type Histogram,\n  type Meter,\n} from '@opentelemetry/api';\nimport type { ReadableSpan } from '@opentelemetry/sdk-trace-base';\n\nexport const METER_NAME = 'genkit';\nexport const METRIC_NAME_PREFIX = 'genkit';\nconst METRIC_DIMENSION_MAX_CHARS = 256;\n\nexport function internalMetricNamespaceWrap(...namespaces) {\n  return [METRIC_NAME_PREFIX, ...namespaces].join('/');\n}\n\ntype MetricCreateFn<T> = (meter: Meter) => T;\n\n/**\n * Wrapper for OpenTelemetry metrics.\n *\n * The OpenTelemetry {MeterProvider} can only be accessed through the metrics\n * API after the NodeSDK library has been initialized. To prevent race\n * conditions we defer the instantiation of the metric to when it is first\n * ticked.\n */\nclass Metric<T> {\n  readonly createFn: MetricCreateFn<T>;\n  readonly meterName: string;\n  metric?: T;\n\n  constructor(createFn: MetricCreateFn<T>, meterName: string = METER_NAME) {\n    this.meterName = meterName;\n    this.createFn = createFn;\n  }\n\n  get(): T {\n    if (!this.metric) {\n      this.metric = this.createFn(\n        metrics.getMeterProvider().getMeter(this.meterName)\n      );\n    }\n\n    return this.metric;\n  }\n}\n\n/**\n * Wrapper for an OpenTelemetry Counter.\n *\n * By using this wrapper, we defer initialization of the counter until it is\n * need, which ensures that the OpenTelemetry SDK has been initialized before\n * the metric has been defined.\n */\nexport class MetricCounter extends Metric<Counter> {\n  constructor(name: string, options: any) {\n    super((meter) => meter.createCounter(name, options));\n  }\n\n  add(val?: number, opts?: any) {\n    if (val) {\n      truncateDimensions(opts);\n      this.get().add(val, opts);\n    }\n  }\n}\n\n/**\n * Wrapper for an OpenTelemetry Histogram.\n *\n * By using this wrapper, we defer initialization of the counter until it is\n * need, which ensures that the OpenTelemetry SDK has been initialized before\n * the metric has been defined.\n */\nexport class MetricHistogram extends Metric<Histogram> {\n  constructor(name: string, options: any) {\n    super((meter) => meter.createHistogram(name, options));\n  }\n\n  record(val?: number, opts?: any) {\n    if (val) {\n      truncateDimensions(opts);\n      this.get().record(val, opts);\n    }\n  }\n}\n\n/**\n * Truncates all of the metric dimensions to ensure they are below the trace\n * attribute max. Labels should be consistent between metrics and traces so that\n * data can be properly correlated. This will truncate all dimensions for\n * metrics such that they will be consistent with data included in traces.\n */\nfunction truncateDimensions(opts?: any) {\n  if (opts) {\n    Object.keys(opts).forEach((k) => {\n      if (typeof opts[k] === 'string') {\n        opts[k] = opts[k].substring(0, METRIC_DIMENSION_MAX_CHARS);\n      }\n    });\n  }\n}\n\nexport interface Telemetry {\n  tick(span: ReadableSpan, logIO: boolean, projectId?: string): void;\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAgBA,iBAKO;AAGA,MAAM,aAAa;AACnB,MAAM,qBAAqB;AAClC,MAAM,6BAA6B;AAE5B,SAAS,+BAA+B,YAAY;AACzD,SAAO,CAAC,oBAAoB,GAAG,UAAU,EAAE,KAAK,GAAG;AACrD;AAYA,MAAM,OAAU;AAAA,EACL;AAAA,EACA;AAAA,EACT;AAAA,EAEA,YAAY,UAA6B,YAAoB,YAAY;AACvE,SAAK,YAAY;AACjB,SAAK,WAAW;AAAA,EAClB;AAAA,EAEA,MAAS;AACP,QAAI,CAAC,KAAK,QAAQ;AAChB,WAAK,SAAS,KAAK;AAAA,QACjB,mBAAQ,iBAAiB,EAAE,SAAS,KAAK,SAAS;AAAA,MACpD;AAAA,IACF;AAEA,WAAO,KAAK;AAAA,EACd;AACF;AASO,MAAM,sBAAsB,OAAgB;AAAA,EACjD,YAAY,MAAc,SAAc;AACtC,UAAM,CAAC,UAAU,MAAM,cAAc,MAAM,OAAO,CAAC;AAAA,EACrD;AAAA,EAEA,IAAI,KAAc,MAAY;AAC5B,QAAI,KAAK;AACP,yBAAmB,IAAI;AACvB,WAAK,IAAI,EAAE,IAAI,KAAK,IAAI;AAAA,IAC1B;AAAA,EACF;AACF;AASO,MAAM,wBAAwB,OAAkB;AAAA,EACrD,YAAY,MAAc,SAAc;AACtC,UAAM,CAAC,UAAU,MAAM,gBAAgB,MAAM,OAAO,CAAC;AAAA,EACvD;AAAA,EAEA,OAAO,KAAc,MAAY;AAC/B,QAAI,KAAK;AACP,yBAAmB,IAAI;AACvB,WAAK,IAAI,EAAE,OAAO,KAAK,IAAI;AAAA,IAC7B;AAAA,EACF;AACF;AAQA,SAAS,mBAAmB,MAAY;AACtC,MAAI,MAAM;AACR,WAAO,KAAK,IAAI,EAAE,QAAQ,CAAC,MAAM;AAC/B,UAAI,OAAO,KAAK,CAAC,MAAM,UAAU;AAC/B,aAAK,CAAC,IAAI,KAAK,CAAC,EAAE,UAAU,GAAG,0BAA0B;AAAA,MAC3D;AAAA,IACF,CAAC;AAAA,EACH;AACF;","names":[]}

package/lib/metrics.mjs

@@ -0,0 +1,65 @@
+import {
+  metrics
+} from "@opentelemetry/api";
+const METER_NAME = "genkit";
+const METRIC_NAME_PREFIX = "genkit";
+const METRIC_DIMENSION_MAX_CHARS = 256;
+function internalMetricNamespaceWrap(...namespaces) {
+  return [METRIC_NAME_PREFIX, ...namespaces].join("/");
+}
+class Metric {
+  createFn;
+  meterName;
+  metric;
+  constructor(createFn, meterName = METER_NAME) {
+    this.meterName = meterName;
+    this.createFn = createFn;
+  }
+  get() {
+    if (!this.metric) {
+      this.metric = this.createFn(
+        metrics.getMeterProvider().getMeter(this.meterName)
+      );
+    }
+    return this.metric;
+  }
+}
+class MetricCounter extends Metric {
+  constructor(name, options) {
+    super((meter) => meter.createCounter(name, options));
+  }
+  add(val, opts) {
+    if (val) {
+      truncateDimensions(opts);
+      this.get().add(val, opts);
+    }
+  }
+}
+class MetricHistogram extends Metric {
+  constructor(name, options) {
+    super((meter) => meter.createHistogram(name, options));
+  }
+  record(val, opts) {
+    if (val) {
+      truncateDimensions(opts);
+      this.get().record(val, opts);
+    }
+  }
+}
+function truncateDimensions(opts) {
+  if (opts) {
+    Object.keys(opts).forEach((k) => {
+      if (typeof opts[k] === "string") {
+        opts[k] = opts[k].substring(0, METRIC_DIMENSION_MAX_CHARS);
+      }
+    });
+  }
+}
+export {
+  METER_NAME,
+  METRIC_NAME_PREFIX,
+  MetricCounter,
+  MetricHistogram,
+  internalMetricNamespaceWrap
+};
+//# sourceMappingURL=metrics.mjs.map

package/lib/metrics.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/metrics.ts"],"sourcesContent":["/**\n * Copyright 2024 Google LLC\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\n\nimport {\n  metrics,\n  type Counter,\n  type Histogram,\n  type Meter,\n} from '@opentelemetry/api';\nimport type { ReadableSpan } from '@opentelemetry/sdk-trace-base';\n\nexport const METER_NAME = 'genkit';\nexport const METRIC_NAME_PREFIX = 'genkit';\nconst METRIC_DIMENSION_MAX_CHARS = 256;\n\nexport function internalMetricNamespaceWrap(...namespaces) {\n  return [METRIC_NAME_PREFIX, ...namespaces].join('/');\n}\n\ntype MetricCreateFn<T> = (meter: Meter) => T;\n\n/**\n * Wrapper for OpenTelemetry metrics.\n *\n * The OpenTelemetry {MeterProvider} can only be accessed through the metrics\n * API after the NodeSDK library has been initialized. To prevent race\n * conditions we defer the instantiation of the metric to when it is first\n * ticked.\n */\nclass Metric<T> {\n  readonly createFn: MetricCreateFn<T>;\n  readonly meterName: string;\n  metric?: T;\n\n  constructor(createFn: MetricCreateFn<T>, meterName: string = METER_NAME) {\n    this.meterName = meterName;\n    this.createFn = createFn;\n  }\n\n  get(): T {\n    if (!this.metric) {\n      this.metric = this.createFn(\n        metrics.getMeterProvider().getMeter(this.meterName)\n      );\n    }\n\n    return this.metric;\n  }\n}\n\n/**\n * Wrapper for an OpenTelemetry Counter.\n *\n * By using this wrapper, we defer initialization of the counter until it is\n * need, which ensures that the OpenTelemetry SDK has been initialized before\n * the metric has been defined.\n */\nexport class MetricCounter extends Metric<Counter> {\n  constructor(name: string, options: any) {\n    super((meter) => meter.createCounter(name, options));\n  }\n\n  add(val?: number, opts?: any) {\n    if (val) {\n      truncateDimensions(opts);\n      this.get().add(val, opts);\n    }\n  }\n}\n\n/**\n * Wrapper for an OpenTelemetry Histogram.\n *\n * By using this wrapper, we defer initialization of the counter until it is\n * need, which ensures that the OpenTelemetry SDK has been initialized before\n * the metric has been defined.\n */\nexport class MetricHistogram extends Metric<Histogram> {\n  constructor(name: string, options: any) {\n    super((meter) => meter.createHistogram(name, options));\n  }\n\n  record(val?: number, opts?: any) {\n    if (val) {\n      truncateDimensions(opts);\n      this.get().record(val, opts);\n    }\n  }\n}\n\n/**\n * Truncates all of the metric dimensions to ensure they are below the trace\n * attribute max. Labels should be consistent between metrics and traces so that\n * data can be properly correlated. This will truncate all dimensions for\n * metrics such that they will be consistent with data included in traces.\n */\nfunction truncateDimensions(opts?: any) {\n  if (opts) {\n    Object.keys(opts).forEach((k) => {\n      if (typeof opts[k] === 'string') {\n        opts[k] = opts[k].substring(0, METRIC_DIMENSION_MAX_CHARS);\n      }\n    });\n  }\n}\n\nexport interface Telemetry {\n  tick(span: ReadableSpan, logIO: boolean, projectId?: string): void;\n}\n"],"mappings":"AAgBA;AAAA,EACE;AAAA,OAIK;AAGA,MAAM,aAAa;AACnB,MAAM,qBAAqB;AAClC,MAAM,6BAA6B;AAE5B,SAAS,+BAA+B,YAAY;AACzD,SAAO,CAAC,oBAAoB,GAAG,UAAU,EAAE,KAAK,GAAG;AACrD;AAYA,MAAM,OAAU;AAAA,EACL;AAAA,EACA;AAAA,EACT;AAAA,EAEA,YAAY,UAA6B,YAAoB,YAAY;AACvE,SAAK,YAAY;AACjB,SAAK,WAAW;AAAA,EAClB;AAAA,EAEA,MAAS;AACP,QAAI,CAAC,KAAK,QAAQ;AAChB,WAAK,SAAS,KAAK;AAAA,QACjB,QAAQ,iBAAiB,EAAE,SAAS,KAAK,SAAS;AAAA,MACpD;AAAA,IACF;AAEA,WAAO,KAAK;AAAA,EACd;AACF;AASO,MAAM,sBAAsB,OAAgB;AAAA,EACjD,YAAY,MAAc,SAAc;AACtC,UAAM,CAAC,UAAU,MAAM,cAAc,MAAM,OAAO,CAAC;AAAA,EACrD;AAAA,EAEA,IAAI,KAAc,MAAY;AAC5B,QAAI,KAAK;AACP,yBAAmB,IAAI;AACvB,WAAK,IAAI,EAAE,IAAI,KAAK,IAAI;AAAA,IAC1B;AAAA,EACF;AACF;AASO,MAAM,wBAAwB,OAAkB;AAAA,EACrD,YAAY,MAAc,SAAc;AACtC,UAAM,CAAC,UAAU,MAAM,gBAAgB,MAAM,OAAO,CAAC;AAAA,EACvD;AAAA,EAEA,OAAO,KAAc,MAAY;AAC/B,QAAI,KAAK;AACP,yBAAmB,IAAI;AACvB,WAAK,IAAI,EAAE,OAAO,KAAK,IAAI;AAAA,IAC7B;AAAA,EACF;AACF;AAQA,SAAS,mBAAmB,MAAY;AACtC,MAAI,MAAM;AACR,WAAO,KAAK,IAAI,EAAE,QAAQ,CAAC,MAAM;AAC/B,UAAI,OAAO,KAAK,CAAC,MAAM,UAAU;AAC/B,aAAK,CAAC,IAAI,KAAK,CAAC,EAAE,UAAU,GAAG,0BAA0B;AAAA,MAC3D;AAAA,IACF,CAAC;AAAA,EACH;AACF;","names":[]}

package/lib/model-armor.d.mts

@@ -0,0 +1,59 @@
+import { ModelArmorClient, protos } from '@google-cloud/modelarmor';
+import { MessageData, ModelMiddleware } from 'genkit/model';
+
+/**
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+interface ModelArmorOptions {
+    templateName: string;
+    client?: ModelArmorClient;
+    /**
+     * Options for the Model Armor client (e.g. apiEndpoint).
+     */
+    clientOptions?: ConstructorParameters<typeof ModelArmorClient>[0];
+    /**
+     * What to sanitize. Defaults to 'all'.
+     */
+    protectionTarget?: 'all' | 'userPrompt' | 'modelResponse';
+    /**
+     * Whether to block on SDP match even if the content was successfully de-identified.
+     * Defaults to false (lenient).
+     */
+    strictSdpEnforcement?: boolean;
+    /**
+     * List of filters to enforce. If not specified, all filters are enforced.
+     * Possible values: 'rai', 'pi_and_jailbreak', 'malicious_uris', 'csam', 'sdp'.
+     */
+    filters?: ('rai' | 'pi_and_jailbreak' | 'malicious_uris' | 'csam' | 'sdp' | (string & {}))[];
+    /**
+     * Whether to apply the de-identification results to the content.
+     * - If true, the default logic (replace text, preserve structure) is used.
+     * - If false, no changes are applied.
+     * - If a function, it is called with the messages and SDP result, and should return the new messages.
+     *
+     * Defaults to false.
+     */
+    applyDeidentificationResults?: boolean | ((data: {
+        messages: MessageData[];
+        sdpResult: protos.google.cloud.modelarmor.v1.ISdpFilterResult;
+    }) => MessageData[] | undefined);
+}
+/**
+ * Model Middleware that uses Google Cloud Model Armor to sanitize user prompts and model responses.
+ */
+declare function modelArmor(options: ModelArmorOptions): ModelMiddleware;
+
+export { type ModelArmorOptions, modelArmor };

package/lib/model-armor.d.ts

@@ -0,0 +1,59 @@
+import { ModelArmorClient, protos } from '@google-cloud/modelarmor';
+import { MessageData, ModelMiddleware } from 'genkit/model';
+
+/**
+ * Copyright 2025 Google LLC
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+interface ModelArmorOptions {
+    templateName: string;
+    client?: ModelArmorClient;
+    /**
+     * Options for the Model Armor client (e.g. apiEndpoint).
+     */
+    clientOptions?: ConstructorParameters<typeof ModelArmorClient>[0];
+    /**
+     * What to sanitize. Defaults to 'all'.
+     */
+    protectionTarget?: 'all' | 'userPrompt' | 'modelResponse';
+    /**
+     * Whether to block on SDP match even if the content was successfully de-identified.
+     * Defaults to false (lenient).
+     */
+    strictSdpEnforcement?: boolean;
+    /**
+     * List of filters to enforce. If not specified, all filters are enforced.
+     * Possible values: 'rai', 'pi_and_jailbreak', 'malicious_uris', 'csam', 'sdp'.
+     */
+    filters?: ('rai' | 'pi_and_jailbreak' | 'malicious_uris' | 'csam' | 'sdp' | (string & {}))[];
+    /**
+     * Whether to apply the de-identification results to the content.
+     * - If true, the default logic (replace text, preserve structure) is used.
+     * - If false, no changes are applied.
+     * - If a function, it is called with the messages and SDP result, and should return the new messages.
+     *
+     * Defaults to false.
+     */
+    applyDeidentificationResults?: boolean | ((data: {
+        messages: MessageData[];
+        sdpResult: protos.google.cloud.modelarmor.v1.ISdpFilterResult;
+    }) => MessageData[] | undefined);
+}
+/**
+ * Model Middleware that uses Google Cloud Model Armor to sanitize user prompts and model responses.
+ */
+declare function modelArmor(options: ModelArmorOptions): ModelMiddleware;
+
+export { type ModelArmorOptions, modelArmor };

package/lib/model-armor.js

@@ -0,0 +1,205 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+var model_armor_exports = {};
+__export(model_armor_exports, {
+  modelArmor: () => modelArmor
+});
+module.exports = __toCommonJS(model_armor_exports);
+var import_modelarmor = require("@google-cloud/modelarmor");
+var import_genkit = require("genkit");
+var import_tracing = require("genkit/tracing");
+function extractText(parts) {
+  return parts.map((p) => p.text || "").join("");
+}
+function applySdp(messages, targetIndex, result, options) {
+  const sdpFilterResult = result.filterResults?.["sdp"]?.sdpFilterResult;
+  if (!sdpFilterResult) {
+    return { sdpApplied: false, messages };
+  }
+  if (typeof options.applyDeidentificationResults === "function") {
+    const newMessages = options.applyDeidentificationResults({
+      messages,
+      sdpResult: sdpFilterResult
+    });
+    if (!newMessages) {
+      return { sdpApplied: false, messages };
+    }
+    const sdpApplied = !!sdpFilterResult.deidentifyResult?.data?.text;
+    return { sdpApplied, messages: newMessages };
+  }
+  if (options.applyDeidentificationResults === true) {
+    const deidentifyResult = sdpFilterResult.deidentifyResult;
+    if (deidentifyResult && deidentifyResult.data?.text) {
+      const targetMessage = messages[targetIndex];
+      const nonTextParts = targetMessage.content.filter((p) => !p.text);
+      const newContent = [
+        ...nonTextParts,
+        { text: deidentifyResult.data.text }
+      ];
+      const newMessages = [...messages];
+      newMessages[targetIndex] = { ...targetMessage, content: newContent };
+      return {
+        sdpApplied: true,
+        messages: newMessages
+      };
+    }
+  }
+  return { sdpApplied: false, messages };
+}
+function shouldBlock(result, options, sdpApplied) {
+  if (result.filterMatchState !== "MATCH_FOUND") {
+    return false;
+  }
+  if (options.strictSdpEnforcement && sdpApplied) {
+    return true;
+  }
+  if (result.filterResults) {
+    for (const [key, filterResult] of Object.entries(result.filterResults)) {
+      if (options.filters && !options.filters.includes(key)) continue;
+      if (key === "sdp" && sdpApplied) continue;
+      const nestedResult = Object.values(filterResult)[0];
+      if (nestedResult?.matchState === "MATCH_FOUND") {
+        return true;
+      }
+    }
+  }
+  return false;
+}
+async function sanitizeUserPrompt(req, client, options) {
+  let targetMessageIndex = -1;
+  for (let i = req.messages.length - 1; i >= 0; i--) {
+    if (req.messages[i].role === "user") {
+      targetMessageIndex = i;
+      break;
+    }
+  }
+  if (targetMessageIndex !== -1) {
+    const userMessage = req.messages[targetMessageIndex];
+    const promptText = extractText(userMessage.content);
+    if (promptText) {
+      await (0, import_tracing.runInNewSpan)(
+        { metadata: { name: "sanitizeUserPrompt" } },
+        async (meta) => {
+          meta.input = {
+            name: options.templateName,
+            userPromptData: {
+              text: promptText
+            }
+          };
+          const [response] = await client.sanitizeUserPrompt({
+            name: options.templateName,
+            userPromptData: {
+              text: promptText
+            }
+          });
+          meta.output = response;
+          if (response.sanitizationResult) {
+            const result = response.sanitizationResult;
+            const { sdpApplied, messages: modifiedMessages } = applySdp(
+              req.messages,
+              targetMessageIndex,
+              result,
+              options
+            );
+            if (sdpApplied || typeof options.applyDeidentificationResults === "function") {
+              req.messages = modifiedMessages;
+            }
+            if (shouldBlock(result, options, sdpApplied)) {
+              throw new import_genkit.GenkitError({
+                status: "PERMISSION_DENIED",
+                message: "Model Armor blocked user prompt.",
+                detail: result
+              });
+            }
+          }
+        }
+      );
+    }
+  }
+}
+async function sanitizeModelResponse(response, client, options) {
+  const usingMessageProp = !!response.message;
+  const candidates = response.message ? [{ index: 0, message: response.message, finishReason: "stop" }] : response.candidates || [];
+  for (const candidate of candidates) {
+    const modelText = extractText(candidate.message.content);
+    if (modelText) {
+      await (0, import_tracing.runInNewSpan)(
+        { metadata: { name: "sanitizeModelResponse" } },
+        async (meta) => {
+          meta.input = {
+            name: options.templateName,
+            modelResponseData: {
+              text: modelText
+            }
+          };
+          const [apiResponse] = await client.sanitizeModelResponse({
+            name: options.templateName,
+            modelResponseData: {
+              text: modelText
+            }
+          });
+          meta.output = apiResponse;
+          if (apiResponse.sanitizationResult) {
+            const result = apiResponse.sanitizationResult;
+            const { sdpApplied, messages: modifiedMessages } = applySdp(
+              [candidate.message],
+              0,
+              result,
+              options
+            );
+            if (sdpApplied || typeof options.applyDeidentificationResults === "function") {
+              candidate.message = modifiedMessages[0];
+            }
+            if (shouldBlock(result, options, sdpApplied)) {
+              throw new import_genkit.GenkitError({
+                status: "PERMISSION_DENIED",
+                message: "Model Armor blocked model response.",
+                detail: result
+              });
+            }
+          }
+        }
+      );
+    }
+  }
+  if (usingMessageProp && candidates.length > 0) {
+    response.message = candidates[0].message;
+  }
+}
+function modelArmor(options) {
+  const client = options.client || new import_modelarmor.ModelArmorClient(options.clientOptions);
+  const protectionTarget = options.protectionTarget ?? "all";
+  const protectUserPrompt = protectionTarget === "all" || protectionTarget === "userPrompt";
+  const protectModelResponse = protectionTarget === "all" || protectionTarget === "modelResponse";
+  return async (req, next) => {
+    if (protectUserPrompt) {
+      await sanitizeUserPrompt(req, client, options);
+    }
+    const response = await next(req);
+    if (protectModelResponse) {
+      await sanitizeModelResponse(response, client, options);
+    }
+    return response;
+  };
+}
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  modelArmor
+});
+//# sourceMappingURL=model-armor.js.map

package/lib/model-armor.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/model-armor.ts"],"sourcesContent":["/**\n * Copyright 2025 Google LLC\n *\n * Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n *\n *     http://www.apache.org/licenses/LICENSE-2.0\n *\n * Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n */\n\nimport { ModelArmorClient, protos } from '@google-cloud/modelarmor';\nimport { GenkitError } from 'genkit';\nimport {\n  GenerateRequest,\n  GenerateResponseData,\n  MessageData,\n  ModelMiddleware,\n  Part,\n} from 'genkit/model';\nimport { runInNewSpan } from 'genkit/tracing';\n\nexport interface ModelArmorOptions {\n  templateName: string;\n  client?: ModelArmorClient;\n  /**\n   * Options for the Model Armor client (e.g. apiEndpoint).\n   */\n  clientOptions?: ConstructorParameters<typeof ModelArmorClient>[0];\n  /**\n   * What to sanitize. Defaults to 'all'.\n   */\n  protectionTarget?: 'all' | 'userPrompt' | 'modelResponse';\n  /**\n   * Whether to block on SDP match even if the content was successfully de-identified.\n   * Defaults to false (lenient).\n   */\n  strictSdpEnforcement?: boolean;\n  /**\n   * List of filters to enforce. If not specified, all filters are enforced.\n   * Possible values: 'rai', 'pi_and_jailbreak', 'malicious_uris', 'csam', 'sdp'.\n   */\n  filters?: (\n    | 'rai'\n    | 'pi_and_jailbreak'\n    | 'malicious_uris'\n    | 'csam'\n    | 'sdp'\n    | (string & {})\n  )[];\n  /**\n   * Whether to apply the de-identification results to the content.\n   * - If true, the default logic (replace text, preserve structure) is used.\n   * - If false, no changes are applied.\n   * - If a function, it is called with the messages and SDP result, and should return the new messages.\n   *\n   * Defaults to false.\n   */\n  applyDeidentificationResults?:\n    | boolean\n    | ((data: {\n        messages: MessageData[];\n        sdpResult: protos.google.cloud.modelarmor.v1.ISdpFilterResult;\n      }) => MessageData[] | undefined);\n}\n\nfunction extractText(parts: Part[]): string {\n  return parts.map((p) => p.text || '').join('');\n}\n\n/**\n * If SDP (Sensitive Data Protection) filter returns sanitized data,\n * we swap out the data with sanitized data.\n */\nfunction applySdp(\n  messages: MessageData[],\n  targetIndex: number,\n  result: protos.google.cloud.modelarmor.v1.ISanitizationResult,\n  options: ModelArmorOptions\n): { sdpApplied: boolean; messages: MessageData[] } {\n  const sdpFilterResult = result.filterResults?.['sdp']?.sdpFilterResult;\n\n  if (!sdpFilterResult) {\n    return { sdpApplied: false, messages };\n  }\n\n  // If user provided applyDeidentificationResults, we use it to apply\n  // the deidentification results.\n  if (typeof options.applyDeidentificationResults === 'function') {\n    const newMessages = options.applyDeidentificationResults({\n      messages,\n      sdpResult: sdpFilterResult,\n    });\n    if (!newMessages) {\n      return { sdpApplied: false, messages };\n    }\n    const sdpApplied = !!sdpFilterResult.deidentifyResult?.data?.text;\n    return { sdpApplied, messages: newMessages };\n  }\n\n  // if applyDeidentificationResults is set to true, we use the default/basic\n  // approach to apply the results.\n  if (options.applyDeidentificationResults === true) {\n    const deidentifyResult = sdpFilterResult.deidentifyResult;\n    if (deidentifyResult && deidentifyResult.data?.text) {\n      const targetMessage = messages[targetIndex];\n      const nonTextParts = targetMessage.content.filter((p) => !p.text);\n      const newContent = [\n        ...nonTextParts,\n        { text: deidentifyResult.data.text },\n      ];\n      const newMessages = [...messages];\n      newMessages[targetIndex] = { ...targetMessage, content: newContent };\n      return {\n        sdpApplied: true,\n        messages: newMessages,\n      };\n    }\n  }\n\n  return { sdpApplied: false, messages };\n}\n\nfunction shouldBlock(\n  result: protos.google.cloud.modelarmor.v1.ISanitizationResult,\n  options: ModelArmorOptions,\n  sdpApplied: boolean\n): boolean {\n  if (result.filterMatchState !== 'MATCH_FOUND') {\n    return false;\n  }\n  // Check if we should block.\n  // If strict SDP enforcement is enabled and SDP was applied, we must block.\n  if (options.strictSdpEnforcement && sdpApplied) {\n    return true;\n  }\n  // Otherwise, check if any active filter matched.\n  if (result.filterResults) {\n    for (const [key, filterResult] of Object.entries(result.filterResults)) {\n      if (options.filters && !options.filters.includes(key)) continue;\n      if (key === 'sdp' && sdpApplied) continue;\n\n      // Look for matchState in the nested object\n      // e.g. filterResult.raiFilterResult.matchState\n      const nestedResult = Object.values(filterResult)[0];\n      if (nestedResult?.matchState === 'MATCH_FOUND') {\n        return true;\n      }\n    }\n  }\n  return false;\n}\n\nasync function sanitizeUserPrompt(\n  req: GenerateRequest,\n  client: ModelArmorClient,\n  options: ModelArmorOptions\n) {\n  let targetMessageIndex = -1;\n  // Find the last user message to sanitize\n  for (let i = req.messages.length - 1; i >= 0; i--) {\n    if (req.messages[i].role === 'user') {\n      targetMessageIndex = i;\n      break;\n    }\n  }\n\n  if (targetMessageIndex !== -1) {\n    const userMessage = req.messages[targetMessageIndex];\n    const promptText = extractText(userMessage.content);\n\n    if (promptText) {\n      await runInNewSpan(\n        { metadata: { name: 'sanitizeUserPrompt' } },\n        async (meta) => {\n          meta.input = {\n            name: options.templateName,\n            userPromptData: {\n              text: promptText,\n            },\n          };\n          const [response] = await client.sanitizeUserPrompt({\n            name: options.templateName,\n            userPromptData: {\n              text: promptText,\n            },\n          });\n          meta.output = response;\n\n          if (response.sanitizationResult) {\n            const result = response.sanitizationResult;\n            const { sdpApplied, messages: modifiedMessages } = applySdp(\n              req.messages,\n              targetMessageIndex,\n              result,\n              options\n            );\n\n            if (\n              sdpApplied ||\n              typeof options.applyDeidentificationResults === 'function'\n            ) {\n              req.messages = modifiedMessages;\n            }\n\n            if (shouldBlock(result, options, sdpApplied)) {\n              throw new GenkitError({\n                status: 'PERMISSION_DENIED',\n                message: 'Model Armor blocked user prompt.',\n                detail: result,\n              });\n            }\n          }\n        }\n      );\n    }\n  }\n}\n\nasync function sanitizeModelResponse(\n  response: GenerateResponseData,\n  client: ModelArmorClient,\n  options: ModelArmorOptions\n) {\n  const usingMessageProp = !!response.message;\n  const candidates = response.message\n    ? [{ index: 0, message: response.message, finishReason: 'stop' }]\n    : response.candidates || [];\n\n  for (const candidate of candidates) {\n    const modelText = extractText(candidate.message.content);\n\n    if (modelText) {\n      await runInNewSpan(\n        { metadata: { name: 'sanitizeModelResponse' } },\n        async (meta) => {\n          meta.input = {\n            name: options.templateName,\n            modelResponseData: {\n              text: modelText,\n            },\n          };\n          const [apiResponse] = await client.sanitizeModelResponse({\n            name: options.templateName,\n            modelResponseData: {\n              text: modelText,\n            },\n          });\n          meta.output = apiResponse;\n\n          if (apiResponse.sanitizationResult) {\n            const result = apiResponse.sanitizationResult;\n            const { sdpApplied, messages: modifiedMessages } = applySdp(\n              [candidate.message],\n              0,\n              result,\n              options\n            );\n\n            if (\n              sdpApplied ||\n              typeof options.applyDeidentificationResults === 'function'\n            ) {\n              candidate.message = modifiedMessages[0];\n            }\n\n            if (shouldBlock(result, options, sdpApplied)) {\n              throw new GenkitError({\n                status: 'PERMISSION_DENIED',\n                message: 'Model Armor blocked model response.',\n                detail: result,\n              });\n            }\n          }\n        }\n      );\n    }\n  }\n\n  if (usingMessageProp && candidates.length > 0) {\n    response.message = candidates[0].message;\n  }\n}\n\n/**\n * Model Middleware that uses Google Cloud Model Armor to sanitize user prompts and model responses.\n */\nexport function modelArmor(options: ModelArmorOptions): ModelMiddleware {\n  const client = options.client || new ModelArmorClient(options.clientOptions);\n  const protectionTarget = options.protectionTarget ?? 'all';\n  const protectUserPrompt =\n    protectionTarget === 'all' || protectionTarget === 'userPrompt';\n  const protectModelResponse =\n    protectionTarget === 'all' || protectionTarget === 'modelResponse';\n\n  return async (req, next) => {\n    // 1. Sanitize User Prompt\n    if (protectUserPrompt) {\n      await sanitizeUserPrompt(req, client, options);\n    }\n\n    // 2. Call Model\n    const response = await next(req);\n\n    // 3. Sanitize Model Response\n    if (protectModelResponse) {\n      await sanitizeModelResponse(response, client, options);\n    }\n\n    return response;\n  };\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAgBA,wBAAyC;AACzC,oBAA4B;AAQ5B,qBAA6B;AA8C7B,SAAS,YAAY,OAAuB;AAC1C,SAAO,MAAM,IAAI,CAAC,MAAM,EAAE,QAAQ,EAAE,EAAE,KAAK,EAAE;AAC/C;AAMA,SAAS,SACP,UACA,aACA,QACA,SACkD;AAClD,QAAM,kBAAkB,OAAO,gBAAgB,KAAK,GAAG;AAEvD,MAAI,CAAC,iBAAiB;AACpB,WAAO,EAAE,YAAY,OAAO,SAAS;AAAA,EACvC;AAIA,MAAI,OAAO,QAAQ,iCAAiC,YAAY;AAC9D,UAAM,cAAc,QAAQ,6BAA6B;AAAA,MACvD;AAAA,MACA,WAAW;AAAA,IACb,CAAC;AACD,QAAI,CAAC,aAAa;AAChB,aAAO,EAAE,YAAY,OAAO,SAAS;AAAA,IACvC;AACA,UAAM,aAAa,CAAC,CAAC,gBAAgB,kBAAkB,MAAM;AAC7D,WAAO,EAAE,YAAY,UAAU,YAAY;AAAA,EAC7C;AAIA,MAAI,QAAQ,iCAAiC,MAAM;AACjD,UAAM,mBAAmB,gBAAgB;AACzC,QAAI,oBAAoB,iBAAiB,MAAM,MAAM;AACnD,YAAM,gBAAgB,SAAS,WAAW;AAC1C,YAAM,eAAe,cAAc,QAAQ,OAAO,CAAC,MAAM,CAAC,EAAE,IAAI;AAChE,YAAM,aAAa;AAAA,QACjB,GAAG;AAAA,QACH,EAAE,MAAM,iBAAiB,KAAK,KAAK;AAAA,MACrC;AACA,YAAM,cAAc,CAAC,GAAG,QAAQ;AAChC,kBAAY,WAAW,IAAI,EAAE,GAAG,eAAe,SAAS,WAAW;AACnE,aAAO;AAAA,QACL,YAAY;AAAA,QACZ,UAAU;AAAA,MACZ;AAAA,IACF;AAAA,EACF;AAEA,SAAO,EAAE,YAAY,OAAO,SAAS;AACvC;AAEA,SAAS,YACP,QACA,SACA,YACS;AACT,MAAI,OAAO,qBAAqB,eAAe;AAC7C,WAAO;AAAA,EACT;AAGA,MAAI,QAAQ,wBAAwB,YAAY;AAC9C,WAAO;AAAA,EACT;AAEA,MAAI,OAAO,eAAe;AACxB,eAAW,CAAC,KAAK,YAAY,KAAK,OAAO,QAAQ,OAAO,aAAa,GAAG;AACtE,UAAI,QAAQ,WAAW,CAAC,QAAQ,QAAQ,SAAS,GAAG,EAAG;AACvD,UAAI,QAAQ,SAAS,WAAY;AAIjC,YAAM,eAAe,OAAO,OAAO,YAAY,EAAE,CAAC;AAClD,UAAI,cAAc,eAAe,eAAe;AAC9C,eAAO;AAAA,MACT;AAAA,IACF;AAAA,EACF;AACA,SAAO;AACT;AAEA,eAAe,mBACb,KACA,QACA,SACA;AACA,MAAI,qBAAqB;AAEzB,WAAS,IAAI,IAAI,SAAS,SAAS,GAAG,KAAK,GAAG,KAAK;AACjD,QAAI,IAAI,SAAS,CAAC,EAAE,SAAS,QAAQ;AACnC,2BAAqB;AACrB;AAAA,IACF;AAAA,EACF;AAEA,MAAI,uBAAuB,IAAI;AAC7B,UAAM,cAAc,IAAI,SAAS,kBAAkB;AACnD,UAAM,aAAa,YAAY,YAAY,OAAO;AAElD,QAAI,YAAY;AACd,gBAAM;AAAA,QACJ,EAAE,UAAU,EAAE,MAAM,qBAAqB,EAAE;AAAA,QAC3C,OAAO,SAAS;AACd,eAAK,QAAQ;AAAA,YACX,MAAM,QAAQ;AAAA,YACd,gBAAgB;AAAA,cACd,MAAM;AAAA,YACR;AAAA,UACF;AACA,gBAAM,CAAC,QAAQ,IAAI,MAAM,OAAO,mBAAmB;AAAA,YACjD,MAAM,QAAQ;AAAA,YACd,gBAAgB;AAAA,cACd,MAAM;AAAA,YACR;AAAA,UACF,CAAC;AACD,eAAK,SAAS;AAEd,cAAI,SAAS,oBAAoB;AAC/B,kBAAM,SAAS,SAAS;AACxB,kBAAM,EAAE,YAAY,UAAU,iBAAiB,IAAI;AAAA,cACjD,IAAI;AAAA,cACJ;AAAA,cACA;AAAA,cACA;AAAA,YACF;AAEA,gBACE,cACA,OAAO,QAAQ,iCAAiC,YAChD;AACA,kBAAI,WAAW;AAAA,YACjB;AAEA,gBAAI,YAAY,QAAQ,SAAS,UAAU,GAAG;AAC5C,oBAAM,IAAI,0BAAY;AAAA,gBACpB,QAAQ;AAAA,gBACR,SAAS;AAAA,gBACT,QAAQ;AAAA,cACV,CAAC;AAAA,YACH;AAAA,UACF;AAAA,QACF;AAAA,MACF;AAAA,IACF;AAAA,EACF;AACF;AAEA,eAAe,sBACb,UACA,QACA,SACA;AACA,QAAM,mBAAmB,CAAC,CAAC,SAAS;AACpC,QAAM,aAAa,SAAS,UACxB,CAAC,EAAE,OAAO,GAAG,SAAS,SAAS,SAAS,cAAc,OAAO,CAAC,IAC9D,SAAS,cAAc,CAAC;AAE5B,aAAW,aAAa,YAAY;AAClC,UAAM,YAAY,YAAY,UAAU,QAAQ,OAAO;AAEvD,QAAI,WAAW;AACb,gBAAM;AAAA,QACJ,EAAE,UAAU,EAAE,MAAM,wBAAwB,EAAE;AAAA,QAC9C,OAAO,SAAS;AACd,eAAK,QAAQ;AAAA,YACX,MAAM,QAAQ;AAAA,YACd,mBAAmB;AAAA,cACjB,MAAM;AAAA,YACR;AAAA,UACF;AACA,gBAAM,CAAC,WAAW,IAAI,MAAM,OAAO,sBAAsB;AAAA,YACvD,MAAM,QAAQ;AAAA,YACd,mBAAmB;AAAA,cACjB,MAAM;AAAA,YACR;AAAA,UACF,CAAC;AACD,eAAK,SAAS;AAEd,cAAI,YAAY,oBAAoB;AAClC,kBAAM,SAAS,YAAY;AAC3B,kBAAM,EAAE,YAAY,UAAU,iBAAiB,IAAI;AAAA,cACjD,CAAC,UAAU,OAAO;AAAA,cAClB;AAAA,cACA;AAAA,cACA;AAAA,YACF;AAEA,gBACE,cACA,OAAO,QAAQ,iCAAiC,YAChD;AACA,wBAAU,UAAU,iBAAiB,CAAC;AAAA,YACxC;AAEA,gBAAI,YAAY,QAAQ,SAAS,UAAU,GAAG;AAC5C,oBAAM,IAAI,0BAAY;AAAA,gBACpB,QAAQ;AAAA,gBACR,SAAS;AAAA,gBACT,QAAQ;AAAA,cACV,CAAC;AAAA,YACH;AAAA,UACF;AAAA,QACF;AAAA,MACF;AAAA,IACF;AAAA,EACF;AAEA,MAAI,oBAAoB,WAAW,SAAS,GAAG;AAC7C,aAAS,UAAU,WAAW,CAAC,EAAE;AAAA,EACnC;AACF;AAKO,SAAS,WAAW,SAA6C;AACtE,QAAM,SAAS,QAAQ,UAAU,IAAI,mCAAiB,QAAQ,aAAa;AAC3E,QAAM,mBAAmB,QAAQ,oBAAoB;AACrD,QAAM,oBACJ,qBAAqB,SAAS,qBAAqB;AACrD,QAAM,uBACJ,qBAAqB,SAAS,qBAAqB;AAErD,SAAO,OAAO,KAAK,SAAS;AAE1B,QAAI,mBAAmB;AACrB,YAAM,mBAAmB,KAAK,QAAQ,OAAO;AAAA,IAC/C;AAGA,UAAM,WAAW,MAAM,KAAK,GAAG;AAG/B,QAAI,sBAAsB;AACxB,YAAM,sBAAsB,UAAU,QAAQ,OAAO;AAAA,IACvD;AAEA,WAAO;AAAA,EACT;AACF;","names":[]}