@houtini/lm 1.0.0

package/dist/prompts/analyze/security-audit.js

@@ -0,0 +1,637 @@
+/**
+ * Plugin Template - Modern v4.2 (Single Source of Truth)
+ *
+ * Universal template that intelligently handles both single-file and multi-file analysis
+ * Automatically detects analysis type based on provided parameters
+ *
+ * Copy this template for creating any new plugin - it adapts to your needs
+ */
+import { BasePlugin } from '../../plugins/base-plugin.js';
+import { ThreeStagePromptManager } from '../../core/ThreeStagePromptManager.js';
+import { withSecurity } from '../../security/integration-helpers.js';
+import { readFileContent } from '../shared/helpers.js';
+import { ModelSetup, ResponseProcessor, ParameterValidator, ErrorHandler, MultiFileAnalysis } from '../../utils/plugin-utilities.js';
+import { getAnalysisCache } from '../../cache/index.js';
+export class SecurityAuditor extends BasePlugin {
+    constructor() {
+        super();
+        this.name = 'security_audit';
+        this.category = 'analyze';
+        this.description = 'Perform comprehensive security audit across entire project, analyzing data flows, authentication chains, and cross-file vulnerabilities with OWASP compliance checking';
+        // Universal parameter set - supports both single and multi-file scenarios
+        this.parameters = {
+            // Single-file parameters
+            code: {
+                type: 'string',
+                description: 'The code to analyze for security issues (for single-file analysis)',
+                required: false
+            },
+            filePath: {
+                type: 'string',
+                description: 'Path to single file to analyze for security vulnerabilities',
+                required: false
+            },
+            // Multi-file parameters  
+            projectPath: {
+                type: 'string',
+                description: 'Absolute path to project root directory',
+                required: false
+            },
+            files: {
+                type: 'array',
+                description: 'Array of specific file paths (for multi-file analysis)',
+                required: false,
+                items: { type: 'string' }
+            },
+            maxDepth: {
+                type: 'number',
+                description: 'Maximum directory depth for multi-file discovery (1-5)',
+                required: false,
+                default: 4
+            },
+            // Security-specific parameters
+            projectType: {
+                type: 'string',
+                description: 'Project type for specific security checks',
+                required: false,
+                enum: ['wordpress-plugin', 'wordpress-theme', 'react-app', 'react-component', 'node-api', 'browser-extension', 'cli-tool', 'n8n-node', 'n8n-workflow', 'html-component', 'generic'],
+                default: 'generic'
+            },
+            auditDepth: {
+                type: 'string',
+                description: 'Depth of security audit',
+                enum: ['basic', 'standard', 'comprehensive'],
+                default: 'standard',
+                required: false
+            },
+            includeOwasp: {
+                type: 'boolean',
+                description: 'Include OWASP Top 10 checks',
+                required: false,
+                default: true
+            },
+            focusAreas: {
+                type: 'array',
+                description: 'Specific areas to focus on: authentication, data-flow, input-validation, authorization',
+                required: false,
+                items: { type: 'string' }
+            },
+            // Universal parameters
+            language: {
+                type: 'string',
+                description: 'Programming language',
+                required: false,
+                default: 'javascript'
+            },
+            analysisDepth: {
+                type: 'string',
+                description: 'Level of analysis detail',
+                enum: ['basic', 'detailed', 'comprehensive'],
+                default: 'detailed',
+                required: false
+            },
+            analysisType: {
+                type: 'string',
+                description: 'Type of analysis to perform',
+                enum: ['security', 'owasp', 'comprehensive'],
+                default: 'comprehensive',
+                required: false
+            }
+        };
+        this.analysisCache = getAnalysisCache();
+        this.multiFileAnalysis = new MultiFileAnalysis();
+        // Cache and analysis utilities are initialized above
+    }
+    async execute(params, llmClient) {
+        return await withSecurity(this, params, llmClient, async (secureParams) => {
+            try {
+                // 1. Auto-detect analysis mode based on parameters
+                const analysisMode = this.detectAnalysisMode(secureParams);
+                // 2. Validate parameters based on detected mode
+                this.validateParameters(secureParams, analysisMode);
+                // 3. Setup model
+                const { model, contextLength } = await ModelSetup.getReadyModel(llmClient);
+                // 4. Route to appropriate analysis method
+                if (analysisMode === 'single-file') {
+                    return await this.executeSingleFileAnalysis(secureParams, model, contextLength);
+                }
+                else {
+                    return await this.executeMultiFileAnalysis(secureParams, model, contextLength);
+                }
+            }
+            catch (error) {
+                return ErrorHandler.createExecutionError('security_audit', error);
+            }
+        });
+    }
+    /**
+     * Auto-detect whether this is single-file or multi-file analysis
+     */
+    detectAnalysisMode(params) {
+        // Single-file indicators (check these first)
+        if (params.code || params.filePath) {
+            return 'single-file';
+        }
+        // Multi-file indicators
+        if (params.projectPath || params.files) {
+            return 'multi-file';
+        }
+        // Default to multi-file for project security audits
+        return 'multi-file';
+    }
+    /**
+     * Validate parameters based on detected analysis mode
+     */
+    validateParameters(params, mode) {
+        if (mode === 'single-file') {
+            // For single-file, we need either code OR filePath
+            if (!params.code && !params.filePath) {
+                throw new Error('Either code or filePath must be provided for single-file analysis');
+            }
+        }
+        else {
+            // For multi-file, we need either projectPath OR files array
+            if (!params.projectPath && !params.files) {
+                throw new Error('Either projectPath or files array must be provided');
+            }
+            ParameterValidator.validateDepth(params);
+        }
+        // Universal validations
+        ParameterValidator.validateEnum(params, 'analysisType', ['security', 'owasp', 'comprehensive']);
+        ParameterValidator.validateEnum(params, 'analysisDepth', ['basic', 'detailed', 'comprehensive']);
+        ParameterValidator.validateEnum(params, 'projectType', ['wordpress-plugin', 'wordpress-theme', 'react-app', 'react-component', 'node-api', 'browser-extension', 'cli-tool', 'n8n-node', 'n8n-workflow', 'html-component', 'generic']);
+    }
+    /**
+     * Execute single-file analysis
+     */
+    async executeSingleFileAnalysis(params, model, contextLength) {
+        // Process single file input
+        let codeToAnalyze = params.code;
+        if (params.filePath) {
+            codeToAnalyze = await readFileContent(params.filePath);
+        }
+        // Generate prompt stages for single file
+        const promptStages = this.getSingleFilePromptStages({
+            ...params,
+            code: codeToAnalyze
+        });
+        // Execute with appropriate method
+        const promptManager = new ThreeStagePromptManager(contextLength);
+        const needsChunking = promptManager.needsChunking(promptStages);
+        if (needsChunking) {
+            const conversation = promptManager.createChunkedConversation(promptStages);
+            const messages = [
+                conversation.systemMessage,
+                ...conversation.dataMessages,
+                conversation.analysisMessage
+            ];
+            return await ResponseProcessor.executeChunked(messages, model, contextLength, 'security_audit', 'single');
+        }
+        else {
+            return await ResponseProcessor.executeDirect(promptStages, model, contextLength, 'security_audit');
+        }
+    }
+    /**
+     * Execute multi-file analysis
+     */
+    async executeMultiFileAnalysis(params, model, contextLength) {
+        // Discover files
+        let filesToAnalyze = params.files ||
+            await this.discoverRelevantFiles(params.projectPath, params.maxDepth, params.projectType);
+        // Perform multi-file analysis with caching
+        const analysisResult = await this.performMultiFileAnalysis(filesToAnalyze, params, model, contextLength);
+        // Generate prompt stages for multi-file
+        const promptStages = this.getMultiFilePromptStages({
+            ...params,
+            analysisResult,
+            fileCount: filesToAnalyze.length
+        });
+        // Always use chunking for multi-file
+        const promptManager = new ThreeStagePromptManager(contextLength);
+        const conversation = promptManager.createChunkedConversation(promptStages);
+        const messages = [
+            conversation.systemMessage,
+            ...conversation.dataMessages,
+            conversation.analysisMessage
+        ];
+        return await ResponseProcessor.executeChunked(messages, model, contextLength, 'security_audit', 'multifile');
+    }
+    /**
+     * Implement single-file security audit prompt stages
+     */
+    getSingleFilePromptStages(params) {
+        const { code, language, analysisDepth, projectType, includeOwasp, focusAreas } = params;
+        const systemAndContext = `You are a senior cybersecurity expert with 15+ years of experience in application security, penetration testing, and secure code review. You specialize in identifying vulnerabilities across all major programming languages and frameworks.
+
+**YOUR EXPERTISE:**
+- OWASP Top 10 vulnerabilities and mitigation strategies
+- Cross-site scripting (XSS), SQL injection, and injection attack vectors
+- Authentication bypass and authorization flaws
+- Cryptographic failures and insecure data storage
+- Security misconfigurations and exposed components
+- Modern framework security patterns (React, Node.js, PHP, etc.)
+- Static code analysis and dynamic security testing
+- Compliance with security standards (NIST, ISO 27001, PCI DSS)
+
+**ANALYSIS CONTEXT:**
+- Programming Language: ${language}
+- Project Type: ${projectType}
+- Analysis Depth: ${analysisDepth}
+- OWASP Analysis: ${includeOwasp ? 'ENABLED - Include OWASP Top 10 checks' : 'DISABLED'}
+- Focus Areas: ${focusAreas?.length > 0 ? focusAreas.join(', ') : 'All security domains'}
+- Mode: Single File Security Analysis
+
+**SECURITY ASSESSMENT METHODOLOGY:**
+1. **Static Code Analysis**: Examine code patterns for known vulnerability signatures
+2. **Data Flow Analysis**: Trace user input from entry points through processing
+3. **Authentication/Authorization**: Verify access controls and privilege escalation risks  
+4. **Input Validation**: Check for sanitization and validation of all user inputs
+5. **Output Encoding**: Ensure proper encoding prevents XSS and injection attacks
+6. **Cryptographic Review**: Assess encryption, hashing, and key management practices
+7. **Configuration Security**: Review security-relevant configuration and defaults
+8. **Business Logic Flaws**: Identify application-specific security weaknesses
+
+Your task is to perform a comprehensive security audit of this individual file, identifying vulnerabilities with precise locations, assessing their severity, and providing actionable remediation guidance.`;
+        const dataPayload = `**SECURITY AUDIT TARGET:**
+
+File: ${params.filePath || 'Inline Code'}
+Language: ${language}
+Project Type: ${projectType}
+
+**SOURCE CODE TO AUDIT:**
+
+\`\`\`${language}
+${code}
+\`\`\``;
+        const outputInstructions = `**PROVIDE COMPREHENSIVE SECURITY AUDIT REPORT:**
+
+Your analysis must be thorough, actionable, and prioritized by business risk. Focus on real vulnerabilities that could be exploited, not theoretical concerns.
+
+**EXECUTIVE SUMMARY:**
+Begin with an overall assessment including:
+- **Overall Risk Level**: Critical, High, Medium, or Low
+- **Total Vulnerabilities Found**: Count by severity (critical, high, medium, low)
+- **Most Critical Issue**: Brief description of the most severe vulnerability
+- **OWASP Compliance Status**: How well the code follows OWASP Top 10 guidelines
+- **Business Impact**: What these vulnerabilities mean for the organization
+
+**DETAILED VULNERABILITY ASSESSMENT:**
+For EACH vulnerability found, provide a comprehensive analysis:
+
+**Vulnerability Analysis Format:**
+- **Vulnerability Name & Type**: Clear, descriptive name of the security issue
+- **Severity Level**: CRITICAL, HIGH, MEDIUM, or LOW with justification
+- **OWASP Category**: Reference to OWASP Top 10 category if applicable (A01-A10)
+- **Location Details**: Specific line numbers, functions, or code sections affected
+- **Vulnerable Code**: Show the exact problematic code snippet
+- **Attack Vector**: Detailed explanation of how an attacker would exploit this
+- **Impact Assessment**: What happens if successfully exploited (data loss, access, etc.)
+- **Proof of Concept**: Example exploit code or attack payload demonstrating the vulnerability
+- **Fix Implementation**: Specific code changes needed with secure implementation examples
+- **Prevention Strategy**: Long-term approaches to prevent similar issues
+
+**SECURITY STRENGTHS ASSESSMENT:**
+Highlight positive security practices found:
+- **Good Practices Identified**: Security measures already implemented correctly
+- **Framework Security Features**: Built-in security features being used appropriately  
+- **Defense in Depth**: Multiple security layers and their effectiveness
+- **Code Quality**: Security-aware coding practices being followed
+
+**RISK-PRIORITIZED ACTION PLAN:**
+Organize remediation by urgency and impact:
+
+**IMMEDIATE ACTIONS** (Fix within 24 hours):
+- Critical and high severity vulnerabilities that pose immediate risk
+- Specific steps for emergency patching
+
+**SHORT-TERM IMPROVEMENTS** (Fix within 1 week):
+- Medium severity issues and important security enhancements
+- Implementation timeline and resource requirements
+
+**LONG-TERM ENHANCEMENTS** (Address in next development cycle):
+- Low severity items and architectural security improvements
+- Strategic security initiatives and process improvements
+
+**SECURE CODE EXAMPLES:**
+Provide practical, working code examples demonstrating:
+- **Input Validation**: Proper techniques for validating and sanitizing user input
+- **Output Encoding**: Methods to prevent XSS and injection attacks
+- **Authentication Patterns**: Secure authentication and session management
+- **Database Security**: Parameterized queries and database access controls
+- **Error Handling**: Secure error handling that doesn't leak information
+- **Access Controls**: Proper authorization and privilege checking
+
+**IMPLEMENTATION GUIDANCE:**
+- **Priority Matrix**: Risk vs. effort assessment for each recommendation
+- **Dependencies**: Issues that must be fixed together or in sequence
+- **Testing Strategy**: How to verify fixes without breaking functionality
+- **Monitoring**: What to monitor after implementing security fixes
+
+**COMPLIANCE & STANDARDS:**
+- **Industry Standards**: Alignment with relevant security standards
+- **Regulatory Requirements**: Compliance with applicable regulations
+- **Best Practices**: Industry best practices being followed or needed
+
+**CRITICAL REQUIREMENTS:**
+- Every vulnerability MUST include precise line numbers where possible
+- Every fix MUST include working, tested code examples
+- Focus on exploitable vulnerabilities that pose real business risk
+- Prioritize recommendations by likelihood and impact of exploitation
+- Include specific attack scenarios that clearly demonstrate each vulnerability
+- Provide actionable steps that development teams can implement immediately
+
+Be comprehensive but practical - focus on security issues that matter most to the business and can be realistically addressed by the development team.`;
+        return { systemAndContext, dataPayload, outputInstructions };
+    }
+    /**
+     * Implement multi-file security audit prompt stages
+     */
+    getMultiFilePromptStages(params) {
+        const { analysisResult, projectType, auditDepth, includeOwasp, fileCount, focusAreas } = params;
+        const systemAndContext = `You are a senior cybersecurity expert and application security architect with 15+ years of experience in enterprise security audits. You specialize in comprehensive cross-file security analysis and identifying complex attack vectors that span multiple components.
+
+**YOUR EXPERTISE:**
+- Multi-tier application security architecture review
+- Cross-component vulnerability analysis and attack chain identification  
+- Data flow security analysis across entire applications
+- Authentication and authorization workflow security
+- API security and microservices security patterns
+- DevSecOps and secure development lifecycle implementation
+- Enterprise compliance (SOX, HIPAA, PCI DSS, GDPR)
+- Advanced persistent threat (APT) defense strategies
+
+**PROJECT SECURITY AUDIT CONTEXT:**
+- Project Type: ${projectType}
+- Audit Depth: ${auditDepth}
+- Files Analyzed: ${fileCount}
+- OWASP Analysis: ${includeOwasp ? 'ENABLED - Full OWASP Top 10 coverage' : 'DISABLED'}
+- Focus Areas: ${focusAreas?.length > 0 ? focusAreas.join(', ') : 'Comprehensive security domains'}
+- Mode: Multi-File Cross-Component Security Analysis
+
+**MULTI-FILE SECURITY METHODOLOGY:**
+1. **Attack Surface Mapping**: Identify all entry points and data flow paths
+2. **Cross-File Data Flow Analysis**: Trace user input through entire application
+3. **Authentication Chain Analysis**: Review complete auth/authz workflows
+4. **Privilege Escalation Assessment**: Find vertical and horizontal privilege issues
+5. **Business Logic Security**: Identify workflow and process vulnerabilities
+6. **Configuration Drift Analysis**: Find security misconfigurations across components
+7. **Supply Chain Security**: Assess dependencies and third-party component risks
+8. **Architectural Security Patterns**: Evaluate security design patterns and anti-patterns
+
+Your task is to perform a comprehensive enterprise-grade security audit across all files, focusing on cross-component vulnerabilities, attack chains, and systemic security weaknesses that could compromise the entire application.`;
+        const dataPayload = `**COMPREHENSIVE PROJECT SECURITY AUDIT DATA:**
+
+Project Type: ${projectType}
+Total Files Analyzed: ${fileCount}
+Analysis Scope: ${auditDepth} depth review
+
+**CROSS-FILE ANALYSIS RESULTS:**
+
+${JSON.stringify(analysisResult, null, 2)}`;
+        const outputInstructions = `**PROVIDE ENTERPRISE-GRADE MULTI-FILE SECURITY AUDIT:**
+
+Your analysis must identify systemic vulnerabilities, attack chains spanning multiple files, and architectural security flaws. Focus on risks that could lead to complete system compromise.
+
+**ENTERPRISE-GRADE MULTI-FILE SECURITY ASSESSMENT:**
+
+**EXECUTIVE SUMMARY:**
+- **Overall Security Posture**: Critical, High, Medium, or Low assessment
+- **Business Risk Rating**: Extreme, High, Moderate, or Low business impact
+- **Total Security Findings**: Count of systemic vulnerabilities, cross-file issues, configuration flaws, and architectural weaknesses  
+- **Critical Attack Chains**: Description of the most dangerous attack paths that span multiple files
+- **Compliance Gaps**: OWASP Top 10 or other compliance issues identified
+- **Business Impact**: Potential impact on business operations, data, and reputation
+
+**CROSS-FILE ATTACK CHAIN ANALYSIS:**
+For each attack chain that spans multiple files, provide:
+
+**Attack Chain Analysis Format:**
+- **Attack Chain Name & Severity**: Descriptive name and Critical/High/Medium/Low rating
+- **Attack Path Flow**: File A → File B → File C → Complete System Compromise
+- **Entry Point Details**: Specific file, function, and line where the attack begins  
+- **Exploitation Flow**: Step-by-step progression of how the attack moves through files
+- **Files Involved**: Complete list of all files that participate in this attack chain
+- **Business Function Impact**: What critical business function gets compromised
+- **Complete Exploit Scenario**: Full working proof-of-concept demonstrating the attack
+- **Systemic Fix Strategy**: Architectural changes needed across all involved files
+- **Detection & Monitoring**: How to monitor for this attack pattern in production
+
+**DATA FLOW SECURITY ANALYSIS:**
+- **User Input Entry Points**: Comprehensive mapping of all places user data enters the system
+- **Data Processing Chain**: How user data flows through components and transformations
+- **Validation Gaps**: Where input validation is missing, insufficient, or inconsistently applied
+- **Output Vulnerabilities**: Where unencoded data reaches outputs and could cause XSS/injection
+- **Data Leakage Risks**: Where sensitive data could be inadvertently exposed or logged
+
+**AUTHENTICATION & AUTHORIZATION ARCHITECTURE REVIEW:**
+- **Authentication Flow Analysis**: Complete auth workflow security across all components
+- **Session Management**: Session creation, validation, termination, and storage security
+- **Authorization Consistency**: Access control implementation across all system components  
+- **Privilege Escalation Risks**: Both horizontal and vertical privilege escalation opportunities
+- **Account Management**: User creation, deletion, role management, and password security
+
+### 5. Configuration Security Assessment  
+- **Security Misconfigurations**: Dangerous default settings and configurations
+- **Environment Inconsistencies**: Security settings that vary between environments
+- **Secrets Management**: How API keys, passwords, and tokens are handled
+- **Infrastructure Security**: Server, database, and service configurations
+
+### 6. Architectural Security Review
+- **Security Patterns in Use**: Well-implemented security patterns
+- **Security Anti-Patterns**: Problematic code patterns across the codebase
+- **Defense in Depth Analysis**: Multiple security layer effectiveness
+- **Single Points of Failure**: Where security relies on single mechanisms
+
+### 7. Risk-Prioritized Remediation Roadmap
+**IMMEDIATE CRITICAL FIXES (24-48 hours):**
+- [Issues that could lead to immediate system compromise]
+
+**HIGH PRIORITY (1-2 weeks):**  
+- [Cross-file vulnerabilities and architectural flaws]
+
+**MEDIUM PRIORITY (1 month):**
+- [Configuration improvements and security hardening]
+
+**STRATEGIC SECURITY IMPROVEMENTS (3-6 months):**
+- [Architectural security enhancements and process improvements]
+
+### 8. Implementation Guidance
+- **Secure Development Standards**: Code standards to prevent similar issues
+- **Security Testing Strategy**: How to test for these vulnerability classes
+- **Monitoring and Detection**: Security monitoring for ongoing protection
+- **Developer Training Needs**: Skills gaps identified during the audit
+
+**ENTERPRISE AUDIT REQUIREMENTS:**
+- Focus on business-critical attack scenarios
+- Provide complete attack chains with proof-of-concept
+- Include compliance mapping to relevant standards
+- Emphasize systemic fixes over isolated patches
+- Consider threat modeling and attacker motivations
+- Address security at architectural and implementation levels`;
+        return { systemAndContext, dataPayload, outputInstructions };
+    }
+    /**
+     * Implement for backwards compatibility
+     * The system still expects this method, so we intelligently route to the appropriate stages
+     */
+    getPromptStages(params) {
+        const mode = this.detectAnalysisMode(params);
+        if (mode === 'single-file') {
+            return this.getSingleFilePromptStages(params);
+        }
+        else {
+            return this.getMultiFilePromptStages(params);
+        }
+    }
+    // Multi-file helper methods
+    async discoverRelevantFiles(projectPath, maxDepth, projectType) {
+        const extensions = this.getFileExtensions(projectType);
+        return await this.multiFileAnalysis.discoverFiles(projectPath, extensions, maxDepth);
+    }
+    async performMultiFileAnalysis(files, params, model, contextLength) {
+        const cacheKey = this.analysisCache.generateKey('security_audit', params, files);
+        const cached = await this.analysisCache.get(cacheKey);
+        if (cached)
+            return cached;
+        const fileAnalysisResults = await this.multiFileAnalysis.analyzeBatch(files, (file) => this.analyzeIndividualFile(file, params, model), contextLength);
+        // Aggregate results into comprehensive security analysis
+        const aggregatedResult = {
+            summary: `Multi-file security audit of ${files.length} files`,
+            findings: fileAnalysisResults,
+            securityAssessment: {
+                fileCount: files.length,
+                totalSize: fileAnalysisResults.reduce((sum, result) => sum + (result.size || 0), 0),
+                riskDistribution: this.categorizeFilesByRisk(fileAnalysisResults),
+                criticalFiles: fileAnalysisResults.filter((result) => result.riskLevel === 'high'),
+                dataFlowAnalysis: this.analyzeDataFlows(fileAnalysisResults),
+                authenticationChain: this.analyzeAuthChain(fileAnalysisResults, params.projectType),
+                configurationSecurity: this.analyzeConfigurations(fileAnalysisResults)
+            }
+        };
+        await this.analysisCache.cacheAnalysis(cacheKey, aggregatedResult, {
+            modelUsed: model.identifier || 'unknown',
+            executionTime: Date.now() - Date.now(), // TODO: Track actual execution time
+            timestamp: new Date().toISOString()
+        });
+        return aggregatedResult;
+    }
+    async analyzeIndividualFile(file, params, model) {
+        const content = await import('fs/promises').then(fs => fs.readFile(file, 'utf-8'));
+        const stats = await import('fs/promises').then(fs => fs.stat(file));
+        return {
+            filePath: file,
+            size: content.length,
+            lines: content.split('\n').length,
+            extension: file.split('.').pop() || '',
+            riskLevel: this.assessFileRisk(content, file, params.projectType),
+            securityPatterns: this.identifySecurityPatterns(content, file),
+            vulnerabilityIndicators: this.scanForVulnerabilities(content),
+            modified: stats.mtime
+        };
+    }
+    getFileExtensions(projectType) {
+        const extensionMap = {
+            'wordpress-plugin': ['.php', '.js', '.json', '.css', '.html'],
+            'wordpress-theme': ['.php', '.js', '.css', '.html', '.json'],
+            'react-app': ['.js', '.jsx', '.ts', '.tsx', '.json', '.html', '.css'],
+            'react-component': ['.js', '.jsx', '.ts', '.tsx', '.css'],
+            'node-api': ['.js', '.ts', '.json', '.yaml', '.yml', '.env'],
+            'browser-extension': ['.js', '.json', '.html', '.css', '.xml'],
+            'cli-tool': ['.js', '.ts', '.py', '.sh', '.json'],
+            'n8n-node': ['.ts', '.js', '.json'],
+            'n8n-workflow': ['.json'],
+            'html-component': ['.html', '.js', '.css', '.json'],
+            'generic': ['.js', '.ts', '.jsx', '.tsx', '.php', '.py', '.java', '.cs', '.cpp', '.h', '.html', '.css', '.json', '.xml', '.yml', '.yaml', '.env', '.config', '.ini']
+        };
+        return extensionMap[projectType] || extensionMap.generic;
+    }
+    categorizeFilesByRisk(results) {
+        const riskCategories = { high: 0, medium: 0, low: 0 };
+        results.forEach(result => {
+            riskCategories[result.riskLevel] = (riskCategories[result.riskLevel] || 0) + 1;
+        });
+        return riskCategories;
+    }
+    analyzeDataFlows(results) {
+        // Analyze how data flows between files
+        return {
+            entryPoints: results.filter(r => r.securityPatterns?.includes('user-input')).length,
+            processingFiles: results.filter(r => r.securityPatterns?.includes('data-processing')).length,
+            outputFiles: results.filter(r => r.securityPatterns?.includes('output-generation')).length,
+            dataFlowRisks: 'Cross-file data flow analysis would be performed here'
+        };
+    }
+    analyzeAuthChain(results, projectType) {
+        // Analyze authentication and authorization chains
+        return {
+            authFiles: results.filter(r => r.filePath.toLowerCase().includes('auth')).length,
+            loginFiles: results.filter(r => r.filePath.toLowerCase().includes('login')).length,
+            adminFiles: results.filter(r => r.filePath.toLowerCase().includes('admin')).length,
+            authChainAnalysis: 'Authentication chain analysis would be performed here'
+        };
+    }
+    analyzeConfigurations(results) {
+        // Analyze configuration security
+        const configFiles = results.filter(r => r.extension === 'json' ||
+            r.extension === 'env' ||
+            r.filePath.includes('config'));
+        return {
+            configFileCount: configFiles.length,
+            configurationRisks: 'Configuration security analysis would be performed here',
+            configFiles: configFiles.map(f => f.filePath)
+        };
+    }
+    assessFileRisk(content, filePath, projectType) {
+        // Assess individual file risk based on content patterns
+        const riskPatterns = {
+            high: [/eval\s*\(/i, /exec\s*\(/i, /\$_GET\s*\[/i, /\$_POST\s*\[/i, /password.*=.*['"]/i],
+            medium: [/innerHTML\s*=/i, /document\.write/i, /api.*key/i, /secret/i],
+            low: [/console\.log/i, /debug/i]
+        };
+        for (const [level, patterns] of Object.entries(riskPatterns)) {
+            for (const pattern of patterns) {
+                if (pattern.test(content)) {
+                    return level;
+                }
+            }
+        }
+        return 'low';
+    }
+    identifySecurityPatterns(content, filePath) {
+        const patterns = [];
+        if (/input|form|request/i.test(content))
+            patterns.push('user-input');
+        if (/validation|sanitize|filter/i.test(content))
+            patterns.push('input-validation');
+        if (/auth|login|session/i.test(content))
+            patterns.push('authentication');
+        if (/admin|role|permission/i.test(content))
+            patterns.push('authorization');
+        if (/encrypt|hash|crypto/i.test(content))
+            patterns.push('cryptography');
+        if (/output|echo|print|render/i.test(content))
+            patterns.push('output-generation');
+        return patterns;
+    }
+    scanForVulnerabilities(content) {
+        const vulnerabilities = [];
+        if (/eval\s*\(/i.test(content))
+            vulnerabilities.push('code-injection');
+        if (/\$_GET\s*\[.*\]\s*(?!.*htmlspecialchars)/i.test(content))
+            vulnerabilities.push('xss-risk');
+        if (/SELECT.*FROM.*WHERE.*\$_/i.test(content))
+            vulnerabilities.push('sql-injection-risk');
+        if (/password.*=.*['"]\w+['"]/i.test(content))
+            vulnerabilities.push('hardcoded-credentials');
+        if (/api.?key.*=.*['"]\w+['"]/i.test(content))
+            vulnerabilities.push('hardcoded-api-key');
+        return vulnerabilities;
+    }
+    generateCacheKey(files, params) {
+        const fileHash = files.join('|');
+        const paramHash = JSON.stringify(params);
+        return `${fileHash}_${paramHash}`.substring(0, 64);
+    }
+}
+export default SecurityAuditor;
+//# sourceMappingURL=security-audit.js.map

package/dist/prompts/analyze/security-audit.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-audit.js","sourceRoot":"","sources":["../../../src/prompts/analyze/security-audit.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,UAAU,EAAE,MAAM,8BAA8B,CAAC;AAE1D,OAAO,EAAE,uBAAuB,EAAE,MAAM,uCAAuC,CAAC;AAEhF,OAAO,EAAE,YAAY,EAAE,MAAM,uCAAuC,CAAC;AACrE,OAAO,EAAE,eAAe,EAAE,MAAM,sBAAsB,CAAC;AACvD,OAAO,EACL,UAAU,EACV,iBAAiB,EACjB,kBAAkB,EAClB,YAAY,EACZ,iBAAiB,EAClB,MAAM,iCAAiC,CAAC;AACzC,OAAO,EAAE,gBAAgB,EAAE,MAAM,sBAAsB,CAAC;AAExD,MAAM,OAAO,eAAgB,SAAQ,UAAU;IA4F7C;QACE,KAAK,EAAE,CAAC;QA5FV,SAAI,GAAG,gBAAgB,CAAC;QACxB,aAAQ,GAAG,SAAkB,CAAC;QAC9B,gBAAW,GAAG,wKAAwK,CAAC;QAEvL,0EAA0E;QAC1E,eAAU,GAAG;YACX,yBAAyB;YACzB,IAAI,EAAE;gBACJ,IAAI,EAAE,QAAiB;gBACvB,WAAW,EAAE,oEAAoE;gBACjF,QAAQ,EAAE,KAAK;aAChB;YACD,QAAQ,EAAE;gBACR,IAAI,EAAE,QAAiB;gBACvB,WAAW,EAAE,6DAA6D;gBAC1E,QAAQ,EAAE,KAAK;aAChB;YAED,0BAA0B;YAC1B,WAAW,EAAE;gBACX,IAAI,EAAE,QAAiB;gBACvB,WAAW,EAAE,yCAAyC;gBACtD,QAAQ,EAAE,KAAK;aAChB;YACD,KAAK,EAAE;gBACL,IAAI,EAAE,OAAgB;gBACtB,WAAW,EAAE,wDAAwD;gBACrE,QAAQ,EAAE,KAAK;gBACf,KAAK,EAAE,EAAE,IAAI,EAAE,QAAiB,EAAE;aACnC;YACD,QAAQ,EAAE;gBACR,IAAI,EAAE,QAAiB;gBACvB,WAAW,EAAE,wDAAwD;gBACrE,QAAQ,EAAE,KAAK;gBACf,OAAO,EAAE,CAAC;aACX;YAED,+BAA+B;YAC/B,WAAW,EAAE;gBACX,IAAI,EAAE,QAAiB;gBACvB,WAAW,EAAE,2CAA2C;gBACxD,QAAQ,EAAE,KAAK;gBACf,IAAI,EAAE,CAAC,kBAAkB,EAAE,iBAAiB,EAAE,WAAW,EAAE,iBAAiB,EAAE,UAAU,EAAE,mBAAmB,EAAE,UAAU,EAAE,UAAU,EAAE,cAAc,EAAE,gBAAgB,EAAE,SAAS,CAAC;gBACnL,OAAO,EAAE,SAAS;aACnB;YACD,UAAU,EAAE;gBACV,IAAI,EAAE,QAAiB;gBACvB,WAAW,EAAE,yBAAyB;gBACtC,IAAI,EAAE,CAAC,OAAO,EAAE,UAAU,EAAE,eAAe,CAAC;gBAC5C,OAAO,EAAE,UAAU;gBACnB,QAAQ,EAAE,KAAK;aAChB;YACD,YAAY,EAAE;gBACZ,IAAI,EAAE,SAAkB;gBACxB,WAAW,EAAE,6BAA6B;gBAC1C,QAAQ,EAAE,KAAK;gBACf,OAAO,EAAE,IAAI;aACd;YACD,UAAU,EAAE;gBACV,IAAI,EAAE,OAAgB;gBACtB,WAAW,EAAE,wFAAwF;gBACrG,QAAQ,EAAE,KAAK;gBACf,KAAK,EAAE,EAAE,IAAI,EAAE,QAAiB,EAAE;aACnC;YAED,uBAAuB;YACvB,QAAQ,EAAE;gBACR,IAAI,EAAE,QAAiB;gBACvB,WAAW,EAAE,sBAAsB;gBACnC,QAAQ,EAAE,KAAK;gBACf,OAAO,EAAE,YAAY;aACtB;YACD,aAAa,EAAE;gBACb,IAAI,EAAE,QAAiB;gBACvB,WAAW,EAAE,0BAA0B;gBACvC,IAAI,EAAE,CAAC,OAAO,EAAE,UAAU,EAAE,eAAe,CAAC;gBAC5C,OAAO,EAAE,UAAU;gBACnB,QAAQ,EAAE,KAAK;aAChB;YACD,YAAY,EAAE;gBACZ,IAAI,EAAE,QAAiB;gBACvB,WAAW,EAAE,6BAA6B;gBAC1C,IAAI,EAAE,CAAC,UAAU,EAAE,OAAO,EAAE,eAAe,CAAC;gBAC5C,OAAO,EAAE,eAAe;gBACxB,QAAQ,EAAE,KAAK;aAChB;SACF,CAAC;QAEM,kBAAa,GAAG,gBAAgB,EAAE,CAAC;QACnC,sBAAiB,GAAG,IAAI,iBAAiB,EAAE,CAAC;QAIlD,qDAAqD;IACvD,CAAC;IAED,KAAK,CAAC,OAAO,CAAC,MAAW,EAAE,SAAc;QACvC,OAAO,MAAM,YAAY,CAAC,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,KAAK,EAAE,YAAY,EAAE,EAAE;YACxE,IAAI,CAAC;gBACH,mDAAmD;gBACnD,MAAM,YAAY,GAAG,IAAI,CAAC,kBAAkB,CAAC,YAAY,CAAC,CAAC;gBAE3D,gDAAgD;gBAChD,IAAI,CAAC,kBAAkB,CAAC,YAAY,EAAE,YAAY,CAAC,CAAC;gBAEpD,iBAAiB;gBACjB,MAAM,EAAE,KAAK,EAAE,aAAa,EAAE,GAAG,MAAM,UAAU,CAAC,aAAa,CAAC,SAAS,CAAC,CAAC;gBAE3E,0CAA0C;gBAC1C,IAAI,YAAY,KAAK,aAAa,EAAE,CAAC;oBACnC,OAAO,MAAM,IAAI,CAAC,yBAAyB,CAAC,YAAY,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC;gBAClF,CAAC;qBAAM,CAAC;oBACN,OAAO,MAAM,IAAI,CAAC,wBAAwB,CAAC,YAAY,EAAE,KAAK,EAAE,aAAa,CAAC,CAAC;gBACjF,CAAC;YAEH,CAAC;YAAC,OAAO,KAAU,EAAE,CAAC;gBACpB,OAAO,YAAY,CAAC,oBAAoB,CAAC,gBAAgB,EAAE,KAAK,CAAC,CAAC;YACpE,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,MAAW;QACpC,6CAA6C;QAC7C,IAAI,MAAM,CAAC,IAAI,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YACnC,OAAO,aAAa,CAAC;QACvB,CAAC;QAED,wBAAwB;QACxB,IAAI,MAAM,CAAC,WAAW,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;YACvC,OAAO,YAAY,CAAC;QACtB,CAAC;QAED,oDAAoD;QACpD,OAAO,YAAY,CAAC;IACtB,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,MAAW,EAAE,IAAkC;QACxE,IAAI,IAAI,KAAK,aAAa,EAAE,CAAC;YAC3B,mDAAmD;YACnD,IAAI,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC;gBACrC,MAAM,IAAI,KAAK,CAAC,mEAAmE,CAAC,CAAC;YACvF,CAAC;QACH,CAAC;aAAM,CAAC;YACN,4DAA4D;YAC5D,IAAI,CAAC,MAAM,CAAC,WAAW,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBACzC,MAAM,IAAI,KAAK,CAAC,oDAAoD,CAAC,CAAC;YACxE,CAAC;YACD,kBAAkB,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC;QAC3C,CAAC;QAED,wBAAwB;QACxB,kBAAkB,CAAC,YAAY,CAAC,MAAM,EAAE,cAAc,EAAE,CAAC,UAAU,EAAE,OAAO,EAAE,eAAe,CAAC,CAAC,CAAC;QAChG,kBAAkB,CAAC,YAAY,CAAC,MAAM,EAAE,eAAe,EAAE,CAAC,OAAO,EAAE,UAAU,EAAE,eAAe,CAAC,CAAC,CAAC;QACjG,kBAAkB,CAAC,YAAY,CAAC,MAAM,EAAE,aAAa,EAAE,CAAC,kBAAkB,EAAE,iBAAiB,EAAE,WAAW,EAAE,iBAAiB,EAAE,UAAU,EAAE,mBAAmB,EAAE,UAAU,EAAE,UAAU,EAAE,cAAc,EAAE,gBAAgB,EAAE,SAAS,CAAC,CAAC,CAAC;IACxO,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,yBAAyB,CAAC,MAAW,EAAE,KAAU,EAAE,aAAqB;QACpF,4BAA4B;QAC5B,IAAI,aAAa,GAAG,MAAM,CAAC,IAAI,CAAC;QAChC,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YACpB,aAAa,GAAG,MAAM,eAAe,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QACzD,CAAC;QAED,yCAAyC;QACzC,MAAM,YAAY,GAAG,IAAI,CAAC,yBAAyB,CAAC;YAClD,GAAG,MAAM;YACT,IAAI,EAAE,aAAa;SACpB,CAAC,CAAC;QAEH,kCAAkC;QAClC,MAAM,aAAa,GAAG,IAAI,uBAAuB,CAAC,aAAa,CAAC,CAAC;QACjE,MAAM,aAAa,GAAG,aAAa,CAAC,aAAa,CAAC,YAAY,CAAC,CAAC;QAEhE,IAAI,aAAa,EAAE,CAAC;YAClB,MAAM,YAAY,GAAG,aAAa,CAAC,yBAAyB,CAAC,YAAY,CAAC,CAAC;YAC3E,MAAM,QAAQ,GAAG;gBACf,YAAY,CAAC,aAAa;gBAC1B,GAAG,YAAY,CAAC,YAAY;gBAC5B,YAAY,CAAC,eAAe;aAC7B,CAAC;YAEF,OAAO,MAAM,iBAAiB,CAAC,cAAc,CAC3C,QAAQ,EACR,KAAK,EACL,aAAa,EACb,gBAAgB,EAChB,QAAQ,CACT,CAAC;QACJ,CAAC;aAAM,CAAC;YACN,OAAO,MAAM,iBAAiB,CAAC,aAAa,CAC1C,YAAY,EACZ,KAAK,EACL,aAAa,EACb,gBAAgB,CACjB,CAAC;QACJ,CAAC;IACH,CAAC;IAED;;OAEG;IACK,KAAK,CAAC,wBAAwB,CAAC,MAAW,EAAE,KAAU,EAAE,aAAqB;QACnF,iBAAiB;QACjB,IAAI,cAAc,GAAa,MAAM,CAAC,KAAK;YACzC,MAAM,IAAI,CAAC,qBAAqB,CAC9B,MAAM,CAAC,WAAW,EAClB,MAAM,CAAC,QAAQ,EACf,MAAM,CAAC,WAAW,CACnB,CAAC;QAEJ,2CAA2C;QAC3C,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,wBAAwB,CACxD,cAAc,EACd,MAAM,EACN,KAAK,EACL,aAAa,CACd,CAAC;QAEF,wCAAwC;QACxC,MAAM,YAAY,GAAG,IAAI,CAAC,wBAAwB,CAAC;YACjD,GAAG,MAAM;YACT,cAAc;YACd,SAAS,EAAE,cAAc,CAAC,MAAM;SACjC,CAAC,CAAC;QAEH,qCAAqC;QACrC,MAAM,aAAa,GAAG,IAAI,uBAAuB,CAAC,aAAa,CAAC,CAAC;QACjE,MAAM,YAAY,GAAG,aAAa,CAAC,yBAAyB,CAAC,YAAY,CAAC,CAAC;QAC3E,MAAM,QAAQ,GAAG;YACf,YAAY,CAAC,aAAa;YAC1B,GAAG,YAAY,CAAC,YAAY;YAC5B,YAAY,CAAC,eAAe;SAC7B,CAAC;QAEF,OAAO,MAAM,iBAAiB,CAAC,cAAc,CAC3C,QAAQ,EACR,KAAK,EACL,aAAa,EACb,gBAAgB,EAChB,WAAW,CACZ,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,yBAAyB,CAAC,MAAW;QAC3C,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,aAAa,EAAE,WAAW,EAAE,YAAY,EAAE,UAAU,EAAE,GAAG,MAAM,CAAC;QAExF,MAAM,gBAAgB,GAAG;;;;;;;;;;;;;0BAaH,QAAQ;kBAChB,WAAW;oBACT,aAAa;oBACb,YAAY,CAAC,CAAC,CAAC,uCAAuC,CAAC,CAAC,CAAC,UAAU;iBACtE,UAAU,EAAE,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,sBAAsB;;;;;;;;;;;;;6MAaqH,CAAC;QAE1M,MAAM,WAAW,GAAG;;QAEhB,MAAM,CAAC,QAAQ,IAAI,aAAa;YAC5B,QAAQ;gBACJ,WAAW;;;;QAInB,QAAQ;EACd,IAAI;OACC,CAAC;QAEJ,MAAM,kBAAkB,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;uJA6EwH,CAAC;QAEpJ,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,kBAAkB,EAAE,CAAC;IAC/D,CAAC;IAED;;OAEG;IACK,wBAAwB,CAAC,MAAW;QAC1C,MAAM,EAAE,cAAc,EAAE,WAAW,EAAE,UAAU,EAAE,YAAY,EAAE,SAAS,EAAE,UAAU,EAAE,GAAG,MAAM,CAAC;QAEhG,MAAM,gBAAgB,GAAG;;;;;;;;;;;;;kBAaX,WAAW;iBACZ,UAAU;oBACP,SAAS;oBACT,YAAY,CAAC,CAAC,CAAC,sCAAsC,CAAC,CAAC,CAAC,UAAU;iBACrE,UAAU,EAAE,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,gCAAgC;;;;;;;;;;;;;qOAamI,CAAC;QAElO,MAAM,WAAW,GAAG;;gBAER,WAAW;wBACH,SAAS;kBACf,UAAU;;;;EAI1B,IAAI,CAAC,SAAS,CAAC,cAAc,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,CAAC;QAExC,MAAM,kBAAkB,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;8DA+E+B,CAAC;QAE3D,OAAO,EAAE,gBAAgB,EAAE,WAAW,EAAE,kBAAkB,EAAE,CAAC;IAC/D,CAAC;IAED;;;OAGG;IACH,eAAe,CAAC,MAAW;QACzB,MAAM,IAAI,GAAG,IAAI,CAAC,kBAAkB,CAAC,MAAM,CAAC,CAAC;QAE7C,IAAI,IAAI,KAAK,aAAa,EAAE,CAAC;YAC3B,OAAO,IAAI,CAAC,yBAAyB,CAAC,MAAM,CAAC,CAAC;QAChD,CAAC;aAAM,CAAC;YACN,OAAO,IAAI,CAAC,wBAAwB,CAAC,MAAM,CAAC,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,4BAA4B;IACpB,KAAK,CAAC,qBAAqB,CACjC,WAAmB,EACnB,QAAgB,EAChB,WAAmB;QAEnB,MAAM,UAAU,GAAG,IAAI,CAAC,iBAAiB,CAAC,WAAW,CAAC,CAAC;QACvD,OAAO,MAAM,IAAI,CAAC,iBAAiB,CAAC,aAAa,CAAC,WAAW,EAAE,UAAU,EAAE,QAAQ,CAAC,CAAC;IACvF,CAAC;IAEO,KAAK,CAAC,wBAAwB,CACpC,KAAe,EACf,MAAW,EACX,KAAU,EACV,aAAqB;QAErB,MAAM,QAAQ,GAAG,IAAI,CAAC,aAAa,CAAC,WAAW,CAC7C,gBAAgB,EAChB,MAAM,EACN,KAAK,CACN,CAAC;QAEF,MAAM,MAAM,GAAG,MAAM,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QACtD,IAAI,MAAM;YAAE,OAAO,MAAM,CAAC;QAE1B,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,iBAAiB,CAAC,YAAY,CACnE,KAAK,EACL,CAAC,IAAY,EAAE,EAAE,CAAC,IAAI,CAAC,qBAAqB,CAAC,IAAI,EAAE,MAAM,EAAE,KAAK,CAAC,EACjE,aAAa,CACd,CAAC;QAEF,yDAAyD;QACzD,MAAM,gBAAgB,GAAG;YACvB,OAAO,EAAE,gCAAgC,KAAK,CAAC,MAAM,QAAQ;YAC7D,QAAQ,EAAE,mBAAmB;YAC7B,kBAAkB,EAAE;gBAClB,SAAS,EAAE,KAAK,CAAC,MAAM;gBACvB,SAAS,EAAE,mBAAmB,CAAC,MAAM,CAAC,CAAC,GAAW,EAAE,MAAW,EAAE,EAAE,CAAC,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,IAAI,CAAC,CAAC,EAAE,CAAC,CAAC;gBAChG,gBAAgB,EAAE,IAAI,CAAC,qBAAqB,CAAC,mBAAmB,CAAC;gBACjE,aAAa,EAAE,mBAAmB,CAAC,MAAM,CAAC,CAAC,MAAW,EAAE,EAAE,CAAC,MAAM,CAAC,SAAS,KAAK,MAAM,CAAC;gBACvF,gBAAgB,EAAE,IAAI,CAAC,gBAAgB,CAAC,mBAAmB,CAAC;gBAC5D,mBAAmB,EAAE,IAAI,CAAC,gBAAgB,CAAC,mBAAmB,EAAE,MAAM,CAAC,WAAW,CAAC;gBACnF,qBAAqB,EAAE,IAAI,CAAC,qBAAqB,CAAC,mBAAmB,CAAC;aACvE;SACF,CAAC;QAEF,MAAM,IAAI,CAAC,aAAa,CAAC,aAAa,CAAC,QAAQ,EAAE,gBAAgB,EAAE;YACjE,SAAS,EAAE,KAAK,CAAC,UAAU,IAAI,SAAS;YACxC,aAAa,EAAE,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,oCAAoC;YAC5E,SAAS,EAAE,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;SACpC,CAAC,CAAC;QAEH,OAAO,gBAAgB,CAAC;IAC1B,CAAC;IAEO,KAAK,CAAC,qBAAqB,CAAC,IAAY,EAAE,MAAW,EAAE,KAAU;QACvE,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,QAAQ,CAAC,IAAI,EAAE,OAAO,CAAC,CAAC,CAAC;QACnF,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,CAAC,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC;QAEpE,OAAO;YACL,QAAQ,EAAE,IAAI;YACd,IAAI,EAAE,OAAO,CAAC,MAAM;YACpB,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM;YACjC,SAAS,EAAE,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,IAAI,EAAE;YACtC,SAAS,EAAE,IAAI,CAAC,cAAc,CAAC,OAAO,EAAE,IAAI,EAAE,MAAM,CAAC,WAAW,CAAC;YACjE,gBAAgB,EAAE,IAAI,CAAC,wBAAwB,CAAC,OAAO,EAAE,IAAI,CAAC;YAC9D,uBAAuB,EAAE,IAAI,CAAC,sBAAsB,CAAC,OAAO,CAAC;YAC7D,QAAQ,EAAE,KAAK,CAAC,KAAK;SACtB,CAAC;IACJ,CAAC;IAEO,iBAAiB,CAAC,WAAmB;QAC3C,MAAM,YAAY,GAA6B;YAC7C,kBAAkB,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,CAAC;YAC7D,iBAAiB,EAAE,CAAC,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC;YAC5D,WAAW,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,CAAC;YACrE,iBAAiB,EAAE,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,CAAC;YACzD,UAAU,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,CAAC;YAC5D,mBAAmB,EAAE,CAAC,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,CAAC;YAC9D,UAAU,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,KAAK,EAAE,OAAO,CAAC;YACjD,UAAU,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,OAAO,CAAC;YACnC,cAAc,EAAE,CAAC,OAAO,CAAC;YACzB,gBAAgB,EAAE,CAAC,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,CAAC;YACnD,SAAS,EAAE,CAAC,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,CAAC;SACrK,CAAC;QAEF,OAAO,YAAY,CAAC,WAAW,CAAC,IAAI,YAAY,CAAC,OAAO,CAAC;IAC3D,CAAC;IAEO,qBAAqB,CAAC,OAAc;QAC1C,MAAM,cAAc,GAA2B,EAAE,IAAI,EAAE,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,CAAC;QAC9E,OAAO,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE;YACvB,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,cAAc,CAAC,MAAM,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QACjF,CAAC,CAAC,CAAC;QACH,OAAO,cAAc,CAAC;IACxB,CAAC;IAEO,gBAAgB,CAAC,OAAc;QACrC,uCAAuC;QACvC,OAAO;YACL,WAAW,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,gBAAgB,EAAE,QAAQ,CAAC,YAAY,CAAC,CAAC,CAAC,MAAM;YACnF,eAAe,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,gBAAgB,EAAE,QAAQ,CAAC,iBAAiB,CAAC,CAAC,CAAC,MAAM;YAC5F,WAAW,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,gBAAgB,EAAE,QAAQ,CAAC,mBAAmB,CAAC,CAAC,CAAC,MAAM;YAC1F,aAAa,EAAE,uDAAuD;SACvE,CAAC;IACJ,CAAC;IAEO,gBAAgB,CAAC,OAAc,EAAE,WAAmB;QAC1D,kDAAkD;QAClD,OAAO;YACL,SAAS,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM;YAChF,UAAU,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM;YAClF,UAAU,EAAE,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM;YAClF,iBAAiB,EAAE,uDAAuD;SAC3E,CAAC;IACJ,CAAC;IAEO,qBAAqB,CAAC,OAAc;QAC1C,iCAAiC;QACjC,MAAM,WAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CACrC,CAAC,CAAC,SAAS,KAAK,MAAM;YACtB,CAAC,CAAC,SAAS,KAAK,KAAK;YACrB,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAC9B,CAAC;QAEF,OAAO;YACL,eAAe,EAAE,WAAW,CAAC,MAAM;YACnC,kBAAkB,EAAE,yDAAyD;YAC7E,WAAW,EAAE,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC;SAC9C,CAAC;IACJ,CAAC;IAEO,cAAc,CAAC,OAAe,EAAE,QAAgB,EAAE,WAAmB;QAC3E,wDAAwD;QACxD,MAAM,YAAY,GAAG;YACnB,IAAI,EAAE,CAAC,YAAY,EAAE,YAAY,EAAE,cAAc,EAAE,eAAe,EAAE,oBAAoB,CAAC;YACzF,MAAM,EAAE,CAAC,gBAAgB,EAAE,kBAAkB,EAAE,WAAW,EAAE,SAAS,CAAC;YACtE,GAAG,EAAE,CAAC,eAAe,EAAE,QAAQ,CAAC;SACjC,CAAC;QAEF,KAAK,MAAM,CAAC,KAAK,EAAE,QAAQ,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,YAAY,CAAC,EAAE,CAAC;YAC7D,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;gBAC/B,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,OAAO,KAAkC,CAAC;gBAC5C,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,wBAAwB,CAAC,OAAe,EAAE,QAAgB;QAChE,MAAM,QAAQ,GAAa,EAAE,CAAC;QAE9B,IAAI,qBAAqB,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,QAAQ,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;QACrE,IAAI,6BAA6B,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,QAAQ,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;QACnF,IAAI,qBAAqB,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,QAAQ,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QACzE,IAAI,wBAAwB,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAC3E,IAAI,sBAAsB,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,QAAQ,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACxE,IAAI,2BAA2B,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;QAElF,OAAO,QAAQ,CAAC;IAClB,CAAC;IAEO,sBAAsB,CAAC,OAAe;QAC5C,MAAM,eAAe,GAAa,EAAE,CAAC;QAErC,IAAI,YAAY,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,eAAe,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;QACvE,IAAI,2CAA2C,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,eAAe,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAChG,IAAI,2BAA2B,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,eAAe,CAAC,IAAI,CAAC,oBAAoB,CAAC,CAAC;QAC1F,IAAI,2BAA2B,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,eAAe,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;QAC7F,IAAI,2BAA2B,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,eAAe,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;QAEzF,OAAO,eAAe,CAAC;IACzB,CAAC;IAEO,gBAAgB,CAAC,KAAe,EAAE,MAAW;QACnD,MAAM,QAAQ,GAAG,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACjC,MAAM,SAAS,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;QACzC,OAAO,GAAG,QAAQ,IAAI,SAAS,EAAE,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACrD,CAAC;CACF;AAED,eAAe,eAAe,CAAC"}