@hsuite/smart-engines-sdk 4.2.0 → 5.0.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (8) hide show
  1. package/CHANGELOG.md +14 -0
  2. package/dist/index.d.ts +432 -350
  3. package/dist/index.js +59 -10
  4. package/dist/index.js.map +1 -1
  5. package/dist/nestjs/index.d.ts +1256 -1175
  6. package/dist/nestjs/index.js +59 -10
  7. package/dist/nestjs/index.js.map +1 -1
  8. package/package.json +2 -2
package/dist/nestjs/index.js.map CHANGED
@@ -1 +1 @@
1
- {"version":3,"sources":["../../src/_vendor/chain.schema.ts","../../src/_vendor/capabilities.schema.ts","../../src/_vendor/account.schema.ts","../../src/_vendor/sovereignty.schema.ts","../../src/_vendor/api.schema.ts","../../src/discovery/mirror-node.ts","../../src/discovery/validator-discovery.ts","../../src/discovery/cluster-discovery.ts","../../src/http/index.ts","../../src/discovery/discovery-client.ts","../../src/network-presets.ts","../../src/discovery/resolve-cluster.ts","../../src/auth/validator-auth.ts","../../src/subscription/index.ts","../../src/faucet/index.ts","../../src/tss/index.ts","../../src/ipfs/index.ts","../../src/hedera-tss/index.ts","../../src/transactions/chains/hedera.ts","../../src/transactions/chains/xrpl.ts","../../src/transactions/chains/solana.ts","../../src/transactions/chains/polkadot.ts","../../src/transactions/index.ts","../../src/snapshots/index.ts","../../src/historical-balance/historical-balance-client.ts","../../src/settlement/index.ts","../../src/governance/governance-client.ts","../../src/dao/dashboard-client.ts","../../src/dao/dao-client.ts","../../src/personhood/personhood-client.ts","../../src/baas/agents/index.ts","../../src/baas/deployment/index.ts","../../src/bridge/bridge-client.ts","../../src/resources/resources-client.ts","../../src/envelope/envelope-client.ts","../../src/tokens/tokens-client.ts","../../src/operator/operator-client.ts","../../src/client.ts","../../src/gateway/routing/index.ts","../../src/gateway/domains/index.ts","../../src/gateway/dns/index.ts","../../src/gateway/health/index.ts","../../src/gateway/client.ts","../../src/baas/database/index.ts","../../src/baas/storage/index.ts","../../src/baas/functions/index.ts","../../src/baas/messaging/index.ts","../../src/baas/customer-session/index.ts","../../src/baas/rules/client.ts","../../src/baas/entities/client.ts","../../src/baas/client.ts","../../src/nestjs/smart-engine.service.ts","../../src/nestjs/smart-engine.module.ts"],"names":["z","buildQuery","validateUrl","SmartEngineService","Logger","Injectable","Optional","SmartEngineModule","Module"],"mappings":";;;;;;;;;;;;;;AAKO,IAAM,eAAA,GAAkBA,MAAE,IAAA,CAAK;AAAA,EACpC,QAAA;AAAA,EACA,MAAA;AAAA,EACA,UAAA;AAAA,EACA,QAAA;AAAA,EACA,SAAA;AAAA,EACA,UAAA;AAAA,EACA,SAAA;AAAA,EACA,SAAA;AAAA,EACA;AACF,CAAC,CAAA;AAOM,IAAM,iBAAA,GAAoBA,MAAE,IAAA,CAAK,CAAC,WAAW,SAAA,EAAW,QAAA,EAAU,OAAO,CAAC,CAAA;AAO9CA,MAAE,MAAA,CAAO;AAAA,EAC1C,KAAA,EAAO,eAAA;AAAA,EACP,OAAA,EAAS,iBAAA;AAAA,EACT,cAAA,EAAgBA,MAAE,MAAA,CAAO;AAAA,IACvB,IAAA,EAAMA,MAAE,MAAA,EAAO;AAAA,IACf,MAAA,EAAQA,MAAE,MAAA,EAAO;AAAA,IACjB,UAAUA,KAAA,CAAE,MAAA,GAAS,GAAA,EAAI,CAAE,IAAI,CAAC;AAAA,GACjC,CAAA;AAAA,EACD,SAAA,EAAWA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,aAAaA,KAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,QAAA;AAChC,CAAC;ACzBM,IAAM,uBAAA,GAA0BA,MAAE,MAAA,CAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM9C,QAAA,EAAUA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOnC,YAAA,EAAcA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOvC,SAAA,EAAWA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOpC,QAAA,EAAUA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOnC,QAAA,EAAUA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOlC,QAAA,EAAUA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAMlC,YAAA,EAAcA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI;AACxC,CAAC,CAAA;ACxDM,IAAM,eAAA,GAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAQdA,MAAE,MAAA,CAAO;AAAA,EACxC,SAAA,EAAW,eAAA;AAAA,EACX,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA;AAAA,EAClB,KAAA,EAAO,eAAA;AAAA,EACP,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA,EAAS;AAAA,EACrC,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA,EAAS;AAAA,EAC7B,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC;AAOmCA,MAAE,MAAA,CAAO;AAAA,EAC3C,SAAA,EAAW,eAAA;AAAA,EACX,KAAA,EAAO,eAAA;AAAA,EACP,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,QAAQA,KAAAA,CACL,KAAA;AAAA,IACCA,MAAE,MAAA,CAAO;AAAA,MACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,UAAUA,KAAAA,CAAE,MAAA,GAAS,GAAA,EAAI,CAAE,IAAI,CAAC,CAAA;AAAA,MAChC,MAAA,EAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAAS,KAC7B;AAAA,IAEF,QAAA,EAAS;AAAA,EACZ,SAAA,EAAWA,MAAE,IAAA;AACf,CAAC;AC/BM,IAAM,qBAAqBA,KAAAA,CAAE,IAAA,CAAK,CAAC,SAAA,EAAW,MAAM,CAAC,CAAA;AAYrD,IAAM,0BAAA,GAA6B,CAAC,CAAA,KAI5B;AACb,EAAA,IAAI,CAAA,CAAE,iBAAiB,SAAA,EAAW;AAChC,IAAA,OAAO,CAAC,CAAC,CAAA,CAAE,QAAA,IAAY,CAAC,CAAC,CAAA,CAAE,iBAAA;AAAA,EAC7B;AAEA,EAAA,OAAO,CAAC,CAAC,CAAA,CAAE,QAAA;AACb,CAAA;AAEO,IAAM,0BAAA,GACX,sFAAA;AAWK,IAAM,0BAAA,GAA6BA,MAAE,MAAA,CAAO;AAAA,EACjD,YAAA,EAAc,kBAAA,CAAmB,OAAA,CAAQ,MAAM,CAAA;AAAA,EAC/C,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,iBAAA,EAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAChC,CAAC,CAAA;AAEsC,0BAAA,CACpC,MAAA,CAAO,4BAA4B,EAAE,OAAA,EAAS,4BAA4B;AA+BtE,IAAM,uBAAkDA,KAAAA,CAAE,IAAA;AAAA,EAAK,MACpEA,MAAE,KAAA,CAAM;AAAA,IACNA,KAAAA,CAAE,MAAA,CAAO,EAAE,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA,EAAG,GAAA,EAAKA,KAAAA,CAAE,MAAA,EAAO,EAAG,CAAA;AAAA,IACxDA,MAAE,MAAA,CAAO;AAAA,MACP,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA;AAAA,MACzB,WAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA,EAAY;AAAA,MACxC,IAAA,EAAMA,KAAAA,CAAE,KAAA,CAAM,oBAAoB;AAAA,KACnC;AAAA,GACF;AACH,CAAA;AAEO,IAAM,iCAAA,GAAoCA,MAAE,MAAA,CAAO;AAAA,EACxD,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,QAAQ,CAAA;AAAA,EACzB,QAAA,EAAU,oBAAA;AAAA,EACV,SAAA,EAAW,qBAAqB,QAAA,EAAS;AAAA,EACzC,SAAA,EAAW,qBAAqB,QAAA,EAAS;AAAA,EACzC,OAAA,EAAS,qBAAqB,QAAA,EAAS;AAAA,EACvC,QAAA,EAAU,qBAAqB,QAAA,EAAS;AAAA,EACxC,MAAA,EAAQ,qBAAqB,QAAA;AAC/B,CAAC,CAAA;AAEM,IAAM,+BAAA,GAAkCA,MAAE,MAAA,CAAO;AAAA,EACtD,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,MAAM,CAAA;AAAA,EACvB,eAAeA,KAAAA,CAAE,KAAA;AAAA,IACfA,MAAE,MAAA,CAAO;AAAA,MACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,QAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AAAY,KACtC;AAAA,GACH;AAAA,EACA,cAAcA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA,EAAY;AAAA,EAC3C,cAAA,EAAgBA,MAAE,OAAA;AACpB,CAAC,CAAA;AAEM,IAAM,kCAAA,GAAqCA,MAAE,MAAA,CAAO;AAAA,EACzD,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA;AAAA,EAC1B,SAASA,KAAAA,CAAE,KAAA;AAAA,IACTA,MAAE,MAAA,CAAO;AAAA,MACP,GAAA,EAAKA,MAAE,MAAA,EAAO;AAAA,MACd,QAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AAAY,KACtC;AAAA,GACH;AAAA,EACA,UAAA,EAAYA,MAAE,MAAA,CAAO;AAAA,IACnB,KAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA,EAAY;AAAA,IAClC,KAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA,EAAY;AAAA,IAClC,MAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AAAY,GACpC,CAAA;AAAA,EACD,cAAcA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AACjC,CAAC,CAAA;AAuBM,IAAM,+BAAkEA,KAAAA,CAAE,IAAA;AAAA,EAAK,MACpFA,MAAE,KAAA,CAAM;AAAA,IACNA,KAAAA,CAAE,MAAA,CAAO,EAAE,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA,EAAG,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,EAAG,CAAA;AAAA,IAC5DA,MAAE,MAAA,CAAO;AAAA,MACP,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,UAAU,CAAA;AAAA,MAC1B,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,WAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,QAAA,EAAS;AAAA,MACrC,WAAA,EAAaA,KAAAA,CAAE,KAAA,CAAM,4BAA4B;AAAA,KAClD;AAAA,GACF;AACH,CAAA;AAEO,IAAM,mCAAA,GAAsCA,MAAE,MAAA,CAAO;AAAA,EAC1D,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,UAAU,CAAA;AAAA,EAC3B,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,SAAA,EAAW,4BAAA;AAAA,EACX,YAAYA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AAC/B,CAAC,CAAA;AAEM,IAAM,yCAAA,GAA4CA,KAAAA,CAAE,kBAAA,CAAmB,OAAA,EAAS;AAAA,EACrF,iCAAA;AAAA,EACA,+BAAA;AAAA,EACA,kCAAA;AAAA,EACA;AACF,CAAC,CAAA;AAqBM,IAAM,oCAAA,GAAuCA,KAAAA,CAAE,kBAAA,CAAmB,MAAA,EAAQ;AAAA,EAC/EA,MAAE,MAAA,CAAO;AAAA,IACP,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA;AAAA,IACzB,QAAA,EAAUA,MAAE,MAAA,EAAO;AAAA,IACnB,mBAAA,EAAqBA,KAAAA,CAAE,KAAA,CAAMA,KAAAA,CAAE,QAAQ,CAAA;AAAA,IACvC,gBAAA,EAAkB,0CAA0C,QAAA;AAAS,GACtE,CAAA;AAAA,EACDA,MAAE,MAAA,CAAO;AAAA,IACP,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,MAAM,CAAA;AAAA,IACtB,QAAA,EAAUA,MAAE,MAAA,EAAO;AAAA,IACnB,mBAAA,EAAqBA,KAAAA,CAAE,KAAA,CAAMA,KAAAA,CAAE,QAAQ,CAAA;AAAA,IACvC,gBAAA,EAAkB,0CAA0C,QAAA;AAAS,GACtE;AACH,CAAC,CAAA;AClMM,IAAM,aAAA,GAAgBA,MAAE,MAAA,CAAO;AAAA;AAAA,EAEpC,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA;AAAA,EAEzB,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC;AACtC,CAAC,CAAA;AAUM,IAAM,0BAAA,GAA6BA,MAAE,MAAA,CAAO;AAAA,EACjD,KAAA,EAAO,eAAA;AAAA,EACP,cAAA,EAAgBA,MAAE,MAAA,EAAO;AAAA,EACzB,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,IAAA,EAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQ1B,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA,EAKpC,oBAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,gCAAgC,CAAA;AAAA;AAAA;AAAA;AAAA,EAItE,kBAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,8BAA8B,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAKlE,SAAA,EAAWA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOnC,YAAA,EAAcA,MAAE,IAAA,CAAK,CAAC,WAAW,MAAM,CAAC,CAAA,CAAE,OAAA,CAAQ,MAAM,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAKxD,iBAAA,EAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUvC,OAAA,EAAS,cAAc,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAMhC,YAAYA,KAAAA,CAAE,MAAA,GAAS,GAAA,CAAI,CAAC,EAAE,QAAA,EAAS;AAAA,EACvC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAO0CA,MAAE,MAAA,CAAO;AAAA,EAClD,SAAA,EAAW,eAAA;AAAA,EACX,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,UAAA,EAAYA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAChC,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,KAAA,EAAO,eAAA;AAAA,EACP,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC;AAOM,IAAM,qBAAA,GAAwBA,MAAE,MAAA,CAAO;AAAA,EAC5C,KAAA,EAAO,eAAA;AAAA,EACP,IAAA,EAAM,eAAA;AAAA,EACN,EAAA,EAAI,eAAA;AAAA,EACJ,MAAA,EAAQA,MAAE,MAAA,EAAO;AAAA,EACjB,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAC7B,IAAA,EAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE1B,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAOqCA,MAAE,MAAA,CAAO;AAAA,EAC7C,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,QAAQA,KAAAA,CAAE,IAAA,CAAK,CAAC,SAAA,EAAW,SAAA,EAAW,QAAQ,CAAC,CAAA;AAAA,EAC/C,KAAA,EAAO,eAAA;AAAA,EACP,GAAA,EAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC;AAOwCA,MAAE,MAAA,CAAO;AAAA,EAChD,KAAA,EAAO,eAAA;AAAA,EACP,SAAA,EAAW;AACb,CAAC;AAO4CA,MAAE,MAAA,CAAO;AAAA,EACpD,KAAA,EAAO,eAAA;AAAA,EACP,aAAA,EAAeA,MAAE,MAAA;AACnB,CAAC;AAUM,IAAM,wBAAA,GAA2BA,MAAE,MAAA,CAAO;AAAA,EAC/C,KAAA,EAAO,eAAA;AAAA,EACP,IAAA,EAAMA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,GAAG,CAAA;AAAA,EAC/B,MAAA,EAAQA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EAChC,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,GAAA,CAAI,CAAC,CAAA,CAAE,GAAA,CAAI,EAAE,CAAA;AAAA,EACxC,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,MAAMA,KAAAA,CAAE,IAAA,CAAK,CAAC,UAAA,EAAY,KAAK,CAAC,CAAA;AAAA,EAChC,QAAA,EAAU,gBAAgB,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBnC,YAAA,EAAc,uBAAA,CAAwB,QAAA,EAAS,CAAE,OAAA,CAAQ;AAAA,IACvD,QAAA,EAAU,KAAA;AAAA,IACV,YAAA,EAAc,KAAA;AAAA,IACd,SAAA,EAAW,KAAA;AAAA,IACX,QAAA,EAAU,KAAA;AAAA,IACV,QAAA,EAAU,IAAA;AAAA,IACV,QAAA,EAAU,IAAA;AAAA,IACV,YAAA,EAAc;AAAA,GACf,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAKD,oBAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,gCAAgC,CAAA;AAAA;AAAA;AAAA;AAAA,EAItE,kBAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,8BAA8B,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAKlE,SAAA,EAAWA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI,CAAA;AAAA;AAAA,EAEnC,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUpC,OAAA,EAAS,cAAc,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA,EAKhC,YAAYA,KAAAA,CAAE,MAAA,GAAS,GAAA,CAAI,CAAC,EAAE,QAAA,EAAS;AAAA,EACvC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAOwCA,MAAE,MAAA,CAAO;AAAA,EAChD,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,KAAA,EAAO,eAAA;AAAA,EACP,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC;AAgBM,IAAM,sBAAA,GAAyBA,MAAE,MAAA,CAAO;AAAA,EAC7C,KAAA,EAAO,eAAA;AAAA,EACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA;AAAA,EAGlB,MAAA,EAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAG5B,SAAA,EAAW,gBAAgB,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQpC,aAAaA,KAAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,EAAE,QAAA,EAAS;AAAA;AAAA,EAG1C,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA,EAAS;AAAA;AAAA,EAErC,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAC7B,CAAC,CAAA;AAOM,IAAM,sBAAA,GAAyBA,MAAE,MAAA,CAAO;AAAA,EAC7C,KAAA,EAAO,eAAA;AAAA,EACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,MAAA,EAAQA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEjB,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAOM,IAAM,wBAAA,GAA2BA,MAAE,MAAA,CAAO;AAAA,EAC/C,KAAA,EAAO,eAAA;AAAA,EACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,SAAA,EAAW,gBAAgB,QAAA,EAAS;AAAA;AAAA,EACpC,MAAA,EAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA,EAE5B,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAOM,IAAM,kBAAA,GAAqBA,MAAE,MAAA,CAAO;AAAA,EACzC,OAAA,EAASA,MAAE,OAAA,EAAQ;AAAA,EACnB,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,cAAA,EAAgBA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEzB,OAAOA,KAAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,EAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC,CAAA;AAOsC,mBAAmB,MAAA,CAAO;AAAA,EAC/D,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA;AAAA,EAElB,mBAAA,EAAqBA,KAAAA,CAAE,KAAA,CAAMA,KAAAA,CAAE,QAAQ;AACzC,CAAC;AAWM,IAAM,wBAAA,GAA2BA,MAAE,MAAA,CAAO;AAAA;AAAA,EAE/C,WAAA,EAAaA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEtB,SAAA,EAAWA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEpB,SAAA,EAAWA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEpB,QAAA,EAAUA,MAAE,IAAA,EAAK;AAAA;AAAA,EAEjB,SAAA,EAAWA,MAAE,IAAA,CAAK,CAAC,WAAW,iBAAA,EAAmB,WAAW,CAAC,CAAA,CAAE,QAAA;AACjE,CAAC,CAAA;AAOM,IAAM,4BAAA,GAA+BA,MAAE,MAAA,CAAO;AAAA;AAAA,EAEnD,gBAAgBA,KAAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,EAAE,QAAA,EAAS;AAAA;AAAA,EAE7C,iBAAA,EAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEvC,IAAA,EAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE1B,YAAA,EAAcA,MACX,MAAA,CAAO;AAAA,IACN,UAAA,EAAYA,MAAE,MAAA,EAAO;AAAA,IACrB,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAAS,GAC/B,EACA,QAAA;AACL,CAAC,CAAA;AAOM,IAAM,0BAAA,GAA6BA,MAAE,MAAA,CAAO;AAAA;AAAA,EAEjD,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE9B,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAExC,YAAYA,KAAAA,CACT,KAAA;AAAA,IACCA,MAAE,MAAA,CAAO;AAAA,MACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,YAAA,EAAcA,MAAE,MAAA;AAAO,KACxB;AAAA,IAEF,QAAA,EAAS;AAAA;AAAA,EAEZ,YAAA,EAAcA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAC3B,CAAC,CAAA;AAOM,IAAM,4BAAA,GAA+BA,MAAE,MAAA,CAAO;AAAA;AAAA,EAEnD,eAAA,EAAiBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAErC,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE9B,YAAYA,KAAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,EAAE,QAAA,EAAS;AAAA;AAAA,EAEzC,iBAAA,EAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEvC,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,sBAAA,EAAwBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE5C,qBAAA,EAAuBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE3C,eAAA,EAAiBA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA;AAAA,EAEtC,YAAA,EAAcA,MAAE,IAAA,CAAK,CAAC,WAAW,MAAM,CAAC,EAAE,QAAA,EAAS;AAAA;AAAA,EAEnD,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AACtB,CAAC,CAAA;AAOM,IAAM,8BAAA,GAAiCA,MAAE,MAAA,CAAO;AAAA;AAAA,EAErD,GAAA,EAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEzB,KAAA,EAAOA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE3B,GAAA,EAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEzB,WAAA,EAAaA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAC1B,CAAC,CAAA;AAOM,IAAM,2BAAA,GAA8BA,MAAE,KAAA,CAAM;AAAA,EACjD,4BAAA;AAAA,EACA,0BAAA;AAAA,EACA,4BAAA;AAAA,EACA,8BAAA;AAAA,EACAA,KAAAA,CAAE,MAAA,CAAOA,KAAAA,CAAE,GAAA,EAAK;AAAA;AAClB,CAAC,CAAA;AAiBgDA,MAAE,MAAA,CAAO;AAAA;AAAA,EAExD,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,eAAA,EAAiBA,MAAE,MAAA,EAAO;AAAA;AAAA,EAE1B,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA;AAAA,EAExB,gBAAA,EAAkBA,MAAE,MAAA,EAAO;AAAA;AAAA,EAE3B,SAAA,EAAWA,MAAE,IAAA,EAAK;AAAA;AAAA,EAElB,mBAAA,EAAqBA,KAAAA,CAAE,KAAA,CAAM,wBAAwB,CAAA;AAAA;AAAA,EAErD,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,YAAA,EAAcA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAElC,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAExC,aAAA,EAAeA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA,EAExC,QAAA,EAAU,4BAA4B,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM/C,WAAA,EAAa,qCAAqC,QAAA;AACpD,CAAC;AAsDgDA,MAAE,MAAA,CAAO;AAAA;AAAA,EAExD,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA;AAAA,EAExB,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,OAAA,EAASA,MAAE,OAAA,EAAQ;AAAA;AAAA,EAEnB,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAExC,WAAA,EAAaA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEjC,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE/B,SAASA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,KAAA,EAAOA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AACpB,CAAC;AAc8CA,MAC5C,MAAA,CAAO;AAAA,EACN,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,QAAQ,CAAA;AAAA,EACzB,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,IAAA,EAAMA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,GAAG,CAAA;AAAA,EAC/B,MAAA,EAAQA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EAChC,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,GAAA,CAAI,CAAC,CAAA,CAAE,GAAA,CAAI,EAAE,CAAA;AAAA,EACxC,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,mBAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,+BAA+B,CAAA;AAAA,EACpE,IAAA,EAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC1B,SAAA,EAAWA,MAAE,IAAA,CAAK,CAAC,mBAAmB,qBAAqB,CAAC,CAAA,CAAE,OAAA,CAAQ,iBAAiB,CAAA;AAAA,EACvF,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,MAAA,EAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC5B,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA,EACpC,gBAAA,EAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC;AACpC,CAAC,CAAA,CAGA,MAAM,0BAA0B,CAAA,CAChC,OAAO,0BAAA,EAA4B,EAAE,OAAA,EAAS,0BAAA,EAA4B;AAUzBA,MACjD,MAAA,CAAO;AAAA,EACN,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,MAAM,CAAA;AAAA,EACvB,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,cAAA,EAAgBA,MAAE,MAAA,EAAO,CAAE,IAAI,EAAE,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EACzC,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA,EACpC,gBAAA,EAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC;AACpC,CAAC,CAAA,CACA,MAAM,0BAA0B,CAAA,CAChC,OAAO,0BAAA,EAA4B,EAAE,OAAA,EAAS,0BAAA,EAA4B;AASrBA,MACrD,MAAA,CAAO;AAAA,EACN,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA;AAAA,EAC1B,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,SAAA,EAAWA,MAAE,MAAA,EAAO,CAAE,IAAI,EAAE,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EACpC,eAAA,EAAiBA,KAAAA,CAAE,MAAA,EAAO,CAAE,MAAM,eAAe,CAAA;AAAA,EACjD,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA,EACpC,gBAAA,EAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC;AACpC,CAAC,CAAA,CACA,KAAA,CAAM,0BAA0B,CAAA,CAKhC,MAAA;AAAA,EACC,CAAC,CAAA,KAAM,CAAC,CAAC,CAAA,CAAE,QAAA;AAAA,EACX,EAAE,SAAS,iDAAA;AACb;;;ACjoBF,SAAS,WAAA,CAAY,GAAA,EAAa,aAAA,GAAgB,KAAA,EAAY;AAC5D,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,IAAI,GAAA,CAAI,GAAG,CAAA;AAG1B,IAAA,IAAI,CAAC,CAAC,OAAA,EAAS,QAAQ,EAAE,QAAA,CAAS,MAAA,CAAO,QAAQ,CAAA,EAAG;AAClD,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,kBAAA,EAAqB,MAAA,CAAO,QAAQ,CAAA,CAAE,CAAA;AAAA,IACxD;AAGA,IAAA,IAAI,CAAC,aAAA,IAAiB,MAAA,CAAO,QAAA,KAAa,QAAA,EAAU;AAClD,MAAA,MAAM,IAAI,KAAA;AAAA,QACR;AAAA,OACF;AAAA,IACF;AAGA,IAAA,MAAM,QAAA,GAAW,MAAA,CAAO,QAAA,CAAS,WAAA,EAAY;AAC7C,IAAA,MAAM,eAAA,GAAkB;AAAA,MACtB,cAAA;AAAA,MACA,QAAA;AAAA,MACA,OAAA;AAAA,MACA,+BAAA;AAAA,MACA,aAAA;AAAA,MACA,aAAA;AAAA,MACA,OAAA;AAAA,MACA,SAAA;AAAA,MACA,SAAA;AAAA,MACA;AAAA,KACF;AAGA,IAAA,MAAM,SAAA,GAAY,gBAAgB,IAAA,CAAK,CAAC,YAAY,OAAA,CAAQ,IAAA,CAAK,QAAQ,CAAC,CAAA;AAC1E,IAAA,IAAI,SAAA,IAAa,CAAC,aAAA,EAAe;AAC/B,MAAA,MAAM,IAAI,KAAA;AAAA,QACR;AAAA,OACF;AAAA,IACF;AAEA,IAAA,OAAO,MAAA;AAAA,EACT,SAAS,KAAA,EAAO;AACd,IAAA,IAAI,iBAAiB,KAAA,IAAS,KAAA,CAAM,OAAA,CAAQ,QAAA,CAAS,aAAa,CAAA,EAAG;AACnE,MAAA,MAAM,IAAI,eAAA,CAAgB,CAAA,oBAAA,EAAuB,GAAG,IAAI,GAAG,CAAA;AAAA,IAC7D;AACA,IAAA,MAAM,KAAA;AAAA,EACR;AACF;AAKA,SAAS,gBAAgB,OAAA,EAAuB;AAE9C,EAAA,IAAI,CAAC,iBAAA,CAAkB,IAAA,CAAK,OAAO,CAAA,EAAG;AACpC,IAAA,MAAM,IAAI,eAAA;AAAA,MACR,4BAA4B,OAAO,CAAA,6BAAA,CAAA;AAAA,MACnC;AAAA,KACF;AAAA,EACF;AACF;AAmCO,IAAM,gBAAA,GAA2C;AAAA,EACtD,OAAA,EAAS,8CAAA;AAAA,EACT,OAAA,EAAS,uCAAA;AAAA,EACT,UAAA,EAAY;AACd,CAAA;AAOO,IAAM,gBAAA,GAAN,MAAM,iBAAA,CAAiB;AAAA,EACX,OAAA;AAAA,EACA,OAAA;AAAA,EACA,aAAA;AAAA,EAEjB,YAAY,MAAA,EAA0B;AACpC,IAAA,IAAA,CAAK,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAG7C,IAAA,MAAM,YAAA,GAAe,WAAA,CAAY,MAAA,CAAO,OAAA,EAAS,KAAK,aAAa,CAAA;AACnE,IAAA,IAAA,CAAK,UAAU,YAAA,CAAa,MAAA;AAC5B,IAAA,IAAA,CAAK,OAAA,GAAU,OAAO,OAAA,IAAW,GAAA;AAAA,EACnC;AAAA;AAAA;AAAA;AAAA,EAKA,OAAO,WAAW,OAAA,EAAiE;AACjF,IAAA,MAAM,OAAA,GAAU,iBAAiB,OAAO,CAAA;AACxC,IAAA,IAAI,CAAC,OAAA,EAAS;AACZ,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,iBAAA,EAAoB,OAAO,CAAA,CAAE,CAAA;AAAA,IAC/C;AACA,IAAA,OAAO,IAAI,iBAAA,CAAiB,EAAE,OAAA,EAAS,CAAA;AAAA,EACzC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,gBAAA,CACJ,OAAA,EACA,OAAA,EAYyB;AAEzB,IAAA,eAAA,CAAgB,OAAO,CAAA;AAEvB,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AAEnC,IAAA,IAAI,SAAS,KAAA,EAAO;AAClB,MAAA,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,OAAA,CAAQ,KAAA,CAAM,UAAU,CAAA;AAAA,IAC9C;AACA,IAAA,IAAI,SAAS,KAAA,EAAO;AAClB,MAAA,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,OAAA,CAAQ,KAAK,CAAA;AAAA,IACnC;AACA,IAAA,IAAI,SAAS,cAAA,EAAgB;AAC3B,MAAA,MAAA,CAAO,GAAA,CAAI,WAAA,EAAa,CAAA,IAAA,EAAO,OAAA,CAAQ,cAAc,CAAA,CAAE,CAAA;AAAA,IACzD;AACA,IAAA,IAAI,SAAS,YAAA,EAAc;AACzB,MAAA,MAAA,CAAO,GAAA,CAAI,WAAA,EAAa,CAAA,IAAA,EAAO,OAAA,CAAQ,YAAY,CAAA,CAAE,CAAA;AAAA,IACvD;AACA,IAAA,IAAI,SAAS,mBAAA,EAAqB;AAChC,MAAA,MAAA,CAAO,GAAA,CAAI,gBAAA,EAAkB,CAAA,IAAA,EAAO,OAAA,CAAQ,mBAAmB,CAAA,CAAE,CAAA;AAAA,IACnE;AAEA,IAAA,MAAM,GAAA,GAAM,GAAG,IAAA,CAAK,OAAO,kBAAkB,OAAO,CAAA,UAAA,EAAa,MAAA,CAAO,QAAA,EAAU,CAAA,CAAA;AAElF,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS;AAAA,UACP,MAAA,EAAQ;AAAA,SACV;AAAA,QACA,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,IAAI,eAAA;AAAA,UACR,CAAA,mBAAA,EAAsB,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UAC5D,QAAA,CAAS;AAAA,SACX;AAAA,MACF;AAEA,MAAA,MAAM,IAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,EAAK;AAClC,MAAA,OAAO,IAAA,CAAK,QAAA;AAAA,IACd,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,iBAAiB,eAAA,EAAiB;AACpC,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,eAAA,CAAgB,6BAAA,EAA+B,GAAG,CAAA;AAAA,MAC9D;AACA,MAAA,MAAM,IAAI,eAAA,CAAgB,CAAA,2BAAA,EAA8B,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,IAC1E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,mBAAA,CAAoB,OAAA,EAAiB,WAAA,GAAsB,GAAA,EAA+B;AAE9F,IAAA,eAAA,CAAgB,OAAO,CAAA;AAGvB,IAAA,MAAM,eAAA,GAAkB,IAAA,CAAK,GAAA,CAAI,WAAA,EAAa,GAAK,CAAA;AAEnD,IAAA,MAAM,cAA8B,EAAC;AACrC,IAAA,IAAI,QAAA,GAA+B,kBAAkB,OAAO,CAAA,8BAAA,CAAA;AAE5D,IAAA,OAAO,QAAA,IAAY,WAAA,CAAY,MAAA,GAAS,eAAA,EAAiB;AACvD,MAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,MAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,MAAA,IAAI;AAEF,QAAA,MAAM,OAAA,GAAU,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,QAAQ,CAAA,CAAA;AAE1C,QAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,OAAA,EAAS;AAAA,UACpC,MAAA,EAAQ,KAAA;AAAA,UACR,OAAA,EAAS,EAAE,MAAA,EAAQ,kBAAA,EAAmB;AAAA,UACtC,QAAQ,UAAA,CAAW;AAAA,SACpB,CAAA;AAED,QAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,QAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,UAAA,MAAM,IAAI,eAAA;AAAA,YACR,CAAA,mBAAA,EAAsB,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,YAC5D,QAAA,CAAS;AAAA,WACX;AAAA,QACF;AAEA,QAAA,MAAM,IAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,EAAK;AAClC,QAAA,WAAA,CAAY,IAAA,CAAK,GAAG,IAAA,CAAK,QAAQ,CAAA;AAIjC,QAAA,IAAI,IAAA,CAAK,MAAM,IAAA,EAAM;AACnB,UAAA,MAAM,QAAA,GAAW,KAAK,KAAA,CAAM,IAAA;AAC5B,UAAA,IAAI,QAAA,CAAS,UAAA,CAAW,iBAAiB,CAAA,EAAG;AAC1C,YAAA,QAAA,GAAW,QAAA;AAAA,UACb,CAAA,MAAO;AAEL,YAAA,QAAA,GAAW,KAAA,CAAA;AAAA,UACb;AAAA,QACF,CAAA,MAAO;AACL,UAAA,QAAA,GAAW,KAAA,CAAA;AAAA,QACb;AAAA,MACF,SAAS,KAAA,EAAO;AACd,QAAA,YAAA,CAAa,SAAS,CAAA;AACtB,QAAA,IAAI,iBAAiB,eAAA,EAAiB;AACpC,UAAA,MAAM,KAAA;AAAA,QACR;AACA,QAAA,MAAM,GAAA,GAAM,KAAA;AACZ,QAAA,MAAM,IAAI,eAAA,CAAgB,CAAA,mBAAA,EAAsB,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,MAClE;AAAA,IACF;AAEA,IAAA,OAAO,WAAA,CAAY,KAAA,CAAM,CAAA,EAAG,eAAe,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA,EAKA,OAAO,cAAc,aAAA,EAA+B;AAClD,IAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AACjC,MAAA,OAAO,OAAO,IAAA,CAAK,aAAA,EAAe,QAAQ,CAAA,CAAE,SAAS,OAAO,CAAA;AAAA,IAC9D;AAEA,IAAA,OAAO,KAAK,aAAa,CAAA;AAAA,EAC3B;AACF,CAAA;AAKO,IAAM,eAAA,GAAN,cAA8B,KAAA,CAAM;AAAA,EACzC,WAAA,CACE,SACO,UAAA,EACP;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAFN,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AAGP,IAAA,IAAA,CAAK,IAAA,GAAO,iBAAA;AAAA,EACd;AAAA,EAJS,UAAA;AAKX,CAAA;;;AC9NO,IAAM,2BAAN,MAA+B;AAAA,EACnB,UAAA;AAAA,EACA,eAAA;AAAA,EACA,UAAA;AAAA,EACT,KAAA,GAA+B,IAAA;AAAA,EAEvC,YAAY,MAAA,EAAkC;AAC5C,IAAA,MAAM,aAAA,GAAgB,MAAA,CAAO,aAAA,IAAiB,gBAAA,CAAiB,OAAO,OAAO,CAAA;AAC7E,IAAA,IAAI,CAAC,aAAA,EAAe;AAClB,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,iBAAA,EAAoB,MAAA,CAAO,OAAO,CAAA,CAAE,CAAA;AAAA,IACtD;AAEA,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB;AAAA,MACrC,OAAA,EAAS,aAAA;AAAA,MACT,eAAe,MAAA,CAAO;AAAA,KACvB,CAAA;AACD,IAAA,IAAA,CAAK,kBAAkB,MAAA,CAAO,eAAA;AAC9B,IAAA,IAAA,CAAK,UAAA,GAAa,OAAO,UAAA,IAAc,GAAA;AAAA,EACzC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,aAAA,CAAc,YAAA,GAAe,KAAA,EAAiC;AAElE,IAAA,IAAI,CAAC,YAAA,IAAgB,IAAA,CAAK,KAAA,IAAS,IAAA,CAAK,cAAa,EAAG;AACtD,MAAA,OAAO,KAAK,KAAA,CAAM,UAAA;AAAA,IACpB;AAGA,IAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,UAAA,CAAW,mBAAA;AAAA,MACrC,IAAA,CAAK,eAAA;AAAA,MACL;AAAA;AAAA,KACF;AAGA,IAAA,MAAM,YAAA,uBAAmB,GAAA,EAA2B;AACpD,IAAA,MAAM,cAAA,uBAAqB,GAAA,EAAY;AAGvC,IAAA,KAAA,MAAW,OAAO,QAAA,EAAU;AAC1B,MAAA,IAAI;AACF,QAAA,MAAM,OAAA,GAAU,gBAAA,CAAiB,aAAA,CAAc,GAAA,CAAI,OAAO,CAAA;AAC1D,QAAA,MAAM,GAAA,GAAM,IAAA,CAAK,KAAA,CAAM,OAAO,CAAA;AAC9B,QAAA,MAAM,KAAA,GAAQ,uBAAuB,GAAG,CAAA;AACxC,QAAA,IAAI,CAAC,KAAA,EAAO;AAGZ,QAAA,IAAI,KAAA,CAAM,gBAAgB,iBAAA,EAAmB;AAC3C,UAAA,cAAA,CAAe,GAAA,CAAI,MAAM,MAAM,CAAA;AAC/B,UAAA;AAAA,QACF;AAGA,QAAA,IAAI,cAAA,CAAe,GAAA,CAAI,KAAA,CAAM,MAAM,CAAA,EAAG;AACpC,UAAA;AAAA,QACF;AAGA,QAAA,IAAI,CAAC,YAAA,CAAa,GAAA,CAAI,KAAA,CAAM,MAAM,CAAA,EAAG;AACnC,UAAA,YAAA,CAAa,GAAA,CAAI,KAAA,CAAM,MAAA,EAAQ,KAAK,CAAA;AAAA,QACtC;AAAA,MACF,CAAA,CAAA,MAAQ;AAEN,QAAA;AAAA,MACF;AAAA,IACF;AAEA,IAAA,MAAM,UAAA,GAAa,KAAA,CAAM,IAAA,CAAK,YAAA,CAAa,QAAQ,CAAA;AAGnD,IAAA,IAAA,CAAK,KAAA,GAAQ;AAAA,MACX,UAAA;AAAA,MACA,WAAA,EAAa,KAAK,GAAA;AAAI,KACxB;AAEA,IAAA,OAAO,UAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,0BAAA,CAA2B,YAAA,GAAe,KAAA,EAAiC;AAC/E,IAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,aAAA,CAAc,YAAY,CAAA;AACxD,IAAA,OAAO,WAAW,MAAA,CAAO,CAAC,CAAA,KAAM,CAAA,CAAE,kBAAkB,WAAW,CAAA;AAAA,EACjE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,kBAAA,CAAmB,YAAA,GAAe,KAAA,EAAsC;AAC5E,IAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,0BAAA,CAA2B,YAAY,CAAA;AAErE,IAAA,IAAI,UAAA,CAAW,WAAW,CAAA,EAAG;AAC3B,MAAA,OAAO,IAAA;AAAA,IACT;AAGA,IAAA,MAAM,WAAA,GAAc,IAAI,WAAA,CAAY,CAAC,CAAA;AACrC,IAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA;AAClC,IAAA,MAAM,WAAA,GAAc,WAAA,CAAY,CAAC,CAAA,GAAI,UAAA,CAAW,MAAA;AAChD,IAAA,OAAO,WAAW,WAAW,CAAA;AAAA,EAC/B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,qBAAA,CAAsB,YAAA,GAAe,KAAA,EAA+B;AACxE,IAAA,MAAM,SAAA,GAAY,MAAM,IAAA,CAAK,kBAAA,CAAmB,YAAY,CAAA;AAC5D,IAAA,OAAO,SAAA,EAAW,kBAAkB,WAAA,IAAe,IAAA;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,oBAAA,CAAqB,MAAA,EAAgB,YAAA,GAAe,KAAA,EAAsC;AAC9F,IAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,aAAA,CAAc,YAAY,CAAA;AACxD,IAAA,OAAO,WAAW,IAAA,CAAK,CAAC,MAAM,CAAA,CAAE,MAAA,KAAW,MAAM,CAAA,IAAK,IAAA;AAAA,EACxD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,yBAAA,CACJ,UAAA,EACA,YAAA,GAAe,KAAA,EACW;AAC1B,IAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,0BAAA,CAA2B,YAAY,CAAA;AACrE,IAAA,OAAO,UAAA,CAAW,OAAO,CAAC,CAAA,KAAM,EAAE,YAAA,EAAc,QAAA,CAAS,UAAU,CAAC,CAAA;AAAA,EACtE;AAAA;AAAA;AAAA;AAAA,EAKA,UAAA,GAAmB;AACjB,IAAA,IAAA,CAAK,KAAA,GAAQ,IAAA;AAAA,EACf;AAAA;AAAA;AAAA;AAAA,EAKQ,YAAA,GAAwB;AAC9B,IAAA,IAAI,CAAC,IAAA,CAAK,KAAA,EAAO,OAAO,KAAA;AACxB,IAAA,OAAO,KAAK,GAAA,EAAI,GAAI,IAAA,CAAK,KAAA,CAAM,cAAc,IAAA,CAAK,UAAA;AAAA,EACpD;AACF,CAAA;AAmBA,SAAS,uBAAuB,GAAA,EAAoD;AAElF,EAAA,IAAI,GAAA,CAAI,WAAA,IAAe,OAAO,GAAA,CAAI,WAAW,QAAA,EAAU;AACrD,IAAA,OAAO,GAAA;AAAA,EACT;AAGA,EAAA,IAAI,GAAA,CAAI,SAAS,oBAAA,EAAsB;AAErC,IAAA,IAAI,IAAI,aAAA,IAAiB,GAAA,CAAI,kBAAkB,MAAA,IAAa,GAAA,CAAI,kBAAkB,IAAA,EAAM;AACtF,MAAA,IAAI,OAAO,GAAA,CAAI,aAAA,KAAkB,QAAA,IAAY,GAAA,CAAI,kBAAkB,MAAA,EAAQ;AACzE,QAAA,OAAO,IAAA;AAAA,MACT;AAAA,IACF;AAEA,IAAA,MAAM,MAAA,GACH,OAAO,GAAA,CAAI,WAAA,KAAgB,QAAA,IAAY,GAAA,CAAI,WAAA,IAC3C,OAAO,GAAA,CAAI,MAAA,KAAW,QAAA,IAAY,GAAA,CAAI,MAAA,IACvC,IAAA;AACF,IAAA,IAAI,CAAC,QAAQ,OAAO,IAAA;AAEpB,IAAA,MAAM,WAAW,OAAO,GAAA,CAAI,QAAA,KAAa,QAAA,GAAW,IAAI,QAAA,GAAW,MAAA;AACnE,IAAA,IAAI,CAAC,UAAU,OAAO,IAAA;AAEtB,IAAA,MAAM,YAAA,GAAe,KAAA,CAAM,OAAA,CAAQ,GAAA,CAAI,YAAY,CAAA,GAC9C,GAAA,CAAI,YAAA,CAA2B,MAAA,CAAO,CAAC,CAAA,KAAmB,OAAO,CAAA,KAAM,QAAQ,CAAA,GAChF,MAAA;AAEJ,IAAA,OAAO;AAAA,MACL,oBAAoB,OAAO,GAAA,CAAI,SAAA,KAAc,QAAA,GAAW,IAAI,SAAA,GAAY,EAAA;AAAA,MACxE,MAAA;AAAA,MACA,IAAA,EAAM,WAAA;AAAA,MACN,gBAAA,EAAkB,EAAE,WAAA,EAAa,QAAA,EAAS;AAAA,MAC1C,WAAW,OAAO,GAAA,CAAI,SAAA,KAAc,QAAA,GAAW,IAAI,SAAA,GAAY,MAAA;AAAA,MAC/D,YAAA;AAAA,MACA,UAAU,EAAC;AAAA,MACX,cAAc,OAAO,GAAA,CAAI,SAAA,KAAc,QAAA,GAAW,IAAI,SAAA,GAAY,EAAA;AAAA,MAClE,WAAA,EAAa;AAAA,KACf;AAAA,EACF;AAGA,EAAA,OAAO,IAAA;AACT;;;ACvOO,IAAM,yBAAN,MAA6B;AAAA,EACjB,SAAA;AAAA,EACA,UAAA;AAAA,EACA,cAAA;AAAA,EACA,aAAA;AAAA,EACA,iBAAA;AAAA,EACT,KAAA,GAA6B,IAAA;AAAA,EAErC,YAAY,MAAA,EAAgC;AAC1C,IAAA,IAAI,CAAC,MAAA,CAAO,SAAA,IAAa,MAAA,CAAO,SAAA,CAAU,WAAW,CAAA,EAAG;AACtD,MAAA,MAAM,IAAI,MAAM,mEAAmE,CAAA;AAAA,IACrF;AACA,IAAA,IAAI,CAAC,OAAO,aAAA,EAAe;AACzB,MAAA,KAAA,MAAW,IAAA,IAAQ,OAAO,SAAA,EAAW;AACnC,QAAA,IAAI,CAAC,IAAA,CAAK,UAAA,CAAW,UAAU,CAAA,EAAG;AAChC,UAAA,MAAM,IAAI,KAAA;AAAA,YACR,2CAA2C,IAAI,CAAA,kEAAA;AAAA,WAEjD;AAAA,QACF;AAAA,MACF;AAAA,IACF;AACA,IAAA,IAAA,CAAK,YAAY,MAAA,CAAO,SAAA;AACxB,IAAA,IAAA,CAAK,UAAA,GAAa,OAAO,UAAA,IAAc,GAAA;AACvC,IAAA,IAAA,CAAK,cAAA,GAAiB,OAAO,cAAA,IAAkB,GAAA;AAC/C,IAAA,IAAA,CAAK,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAC7C,IAAA,IAAA,CAAK,oBAAoB,MAAA,CAAO,WAAA,GAC5B,IAAI,wBAAA,CAAyB,MAAA,CAAO,WAAW,CAAA,GAC/C,IAAA;AAAA,EACN;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,WAAA,CAAY,YAAA,GAAe,KAAA,EAA+B;AAC9D,IAAA,IAAI,CAAC,YAAA,IAAgB,IAAA,CAAK,KAAA,IAAS,IAAA,CAAK,cAAa,EAAG;AACtD,MAAA,OAAO,KAAK,KAAA,CAAM,QAAA;AAAA,IACpB;AAEA,IAAA,MAAM,OAAA,GAAU,MAAM,IAAA,CAAK,2BAAA,EAA4B;AACvD,IAAA,MAAM,WAAW,IAAA,CAAK,iBAAA,GAAoB,MAAM,IAAA,CAAK,wBAAA,CAAyB,OAAO,CAAA,GAAI,OAAA;AAEzF,IAAA,IAAA,CAAK,QAAQ,EAAE,QAAA,EAAU,UAAU,WAAA,EAAa,IAAA,CAAK,KAAI,EAAE;AAC3D,IAAA,OAAO,QAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,gBAAA,CAAiB,YAAA,GAAe,KAAA,EAAoC;AACxE,IAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,WAAA,CAAY,YAAY,CAAA;AACpD,IAAA,IAAI,QAAA,CAAS,MAAA,KAAW,CAAA,EAAG,OAAO,IAAA;AAClC,IAAA,OAAO,QAAA,CAAS,IAAA,CAAK,eAAA,CAAgB,QAAA,CAAS,MAAM,CAAC,CAAA;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,mBAAA,CAAoB,YAAA,GAAe,KAAA,EAA+B;AACtE,IAAA,MAAM,OAAA,GAAU,MAAM,IAAA,CAAK,gBAAA,CAAiB,YAAY,CAAA;AACxD,IAAA,OAAO,OAAA,EAAS,UAAU,UAAA,IAAc,IAAA;AAAA,EAC1C;AAAA;AAAA,EAGA,MAAM,cAAA,CAAe,SAAA,EAAmB,YAAA,GAAe,KAAA,EAAoC;AACzF,IAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,WAAA,CAAY,YAAY,CAAA;AACpD,IAAA,OAAO,SAAS,IAAA,CAAK,CAAC,MAAM,CAAA,CAAE,SAAA,KAAc,SAAS,CAAA,IAAK,IAAA;AAAA,EAC5D;AAAA,EAEA,UAAA,GAAmB;AACjB,IAAA,IAAA,CAAK,KAAA,GAAQ,IAAA;AAAA,EACf;AAAA,EAEQ,YAAA,GAAwB;AAC9B,IAAA,IAAI,CAAC,IAAA,CAAK,KAAA,EAAO,OAAO,KAAA;AACxB,IAAA,OAAO,KAAK,GAAA,EAAI,GAAI,IAAA,CAAK,KAAA,CAAM,cAAc,IAAA,CAAK,UAAA;AAAA,EACpD;AAAA,EAEA,MAAc,2BAAA,GAAsD;AAClE,IAAA,MAAM,SAAmB,EAAC;AAC1B,IAAA,KAAA,MAAW,IAAA,IAAQ,KAAK,SAAA,EAAW;AACjC,MAAA,IAAI;AACF,QAAA,OAAO,MAAM,IAAA,CAAK,qBAAA,CAAsB,IAAI,CAAA;AAAA,MAC9C,SAAS,GAAA,EAAK;AACZ,QAAA,MAAA,CAAO,KAAK,CAAA,EAAG,IAAI,CAAA,EAAA,EAAM,GAAA,CAAc,OAAO,CAAA,CAAE,CAAA;AAAA,MAClD;AAAA,IACF;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA;AAAA,EAAA,EAAqE,MAAA,CAAO,IAAA,CAAK,MAAM,CAAC,CAAA;AAAA,KAC1F;AAAA,EACF;AAAA,EAEA,MAAc,sBAAsB,IAAA,EAAsC;AACxE,IAAA,MAAM,MAAM,CAAA,EAAG,IAAA,CAAK,OAAA,CAAQ,KAAA,EAAO,EAAE,CAAC,CAAA,0BAAA,CAAA;AACtC,IAAA,MAAM,IAAA,GAAO,IAAI,eAAA,EAAgB;AACjC,IAAA,MAAM,QAAQ,UAAA,CAAW,MAAM,KAAK,KAAA,EAAM,EAAG,KAAK,cAAc,CAAA;AAChE,IAAA,IAAI;AACF,MAAA,MAAM,GAAA,GAAM,MAAM,KAAA,CAAM,GAAA,EAAK,EAAE,MAAA,EAAQ,IAAA,CAAK,QAAQ,CAAA;AACpD,MAAA,IAAI,CAAC,IAAI,EAAA,EAAI;AACX,QAAA,MAAM,IAAI,KAAA,CAAM,CAAA,KAAA,EAAQ,GAAA,CAAI,MAAM,CAAA,CAAE,CAAA;AAAA,MACtC;AACA,MAAA,MAAM,IAAA,GAAQ,MAAM,GAAA,CAAI,IAAA,EAAK;AAO7B,MAAA,IAAI,CAAC,KAAA,CAAM,OAAA,CAAQ,IAAA,CAAK,QAAQ,CAAA,EAAG;AACjC,QAAA,MAAM,IAAI,MAAM,6BAA6B,CAAA;AAAA,MAC/C;AACA,MAAA,OAAO,IAAA,CAAK,QAAA,CACT,GAAA,CAAI,CAAC,MAAM,IAAA,CAAK,qBAAA,CAAsB,CAAC,CAAC,CAAA,CACxC,MAAA,CAAO,CAAC,CAAA,KAAwB,MAAM,IAAI,CAAA;AAAA,IAC/C,CAAA,SAAE;AACA,MAAA,YAAA,CAAa,KAAK,CAAA;AAAA,IACpB;AAAA,EACF;AAAA,EAEQ,sBAAsB,GAAA,EAIP;AACrB,IAAA,IAAI,OAAO,GAAA,CAAI,SAAA,KAAc,YAAY,CAAC,GAAA,CAAI,WAAW,OAAO,IAAA;AAChE,IAAA,IAAI,CAAC,GAAA,CAAI,SAAA,IAAa,OAAO,GAAA,CAAI,SAAA,KAAc,UAAU,OAAO,IAAA;AAChE,IAAA,MAAM,KAAK,GAAA,CAAI,SAAA;AACf,IAAA,IAAI,OAAO,EAAA,CAAG,UAAA,KAAe,YAAY,CAAC,EAAA,CAAG,YAAY,OAAO,IAAA;AAChE,IAAA,IAAI,CAAC,KAAK,aAAA,IAAiB,CAAC,GAAG,UAAA,CAAW,UAAA,CAAW,UAAU,CAAA,EAAG;AAGhE,MAAA,OAAO,IAAA;AAAA,IACT;AACA,IAAA,MAAM,OAAA,GAAU,KAAA,CAAM,OAAA,CAAQ,GAAA,CAAI,OAAO,CAAA,GACrC,GAAA,CAAI,OAAA,CAAQ,MAAA,CAAO,CAAC,CAAA,KAAmB,OAAO,CAAA,KAAM,QAAQ,IAC5D,EAAC;AACL,IAAA,OAAO;AAAA,MACL,WAAW,GAAA,CAAI,SAAA;AAAA,MACf,SAAA,EAAW;AAAA,QACT,WAAW,GAAA,CAAI,SAAA;AAAA,QACf,YAAY,EAAA,CAAG,UAAA;AAAA,QACf,WAAW,OAAO,EAAA,CAAG,SAAA,KAAc,QAAA,GAAW,GAAG,SAAA,GAAY,MAAA;AAAA,QAC7D,SAAS,OAAO,EAAA,CAAG,OAAA,KAAY,QAAA,GAAW,GAAG,OAAA,GAAU,MAAA;AAAA,QACvD,UAAU,OAAO,EAAA,CAAG,QAAA,KAAa,QAAA,GAAW,GAAG,QAAA,GAAW,MAAA;AAAA,QAC1D,QAAQ,OAAO,EAAA,CAAG,MAAA,KAAW,QAAA,GAAW,GAAG,MAAA,GAAS;AAAA,OACtD;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBA,MAAc,yBAAyB,QAAA,EAAiD;AACtF,IAAA,IAAI,CAAC,IAAA,CAAK,iBAAA,IAAqB,QAAA,CAAS,MAAA,KAAW,GAAG,OAAO,QAAA;AAC7D,IAAA,IAAI,cAAA;AACJ,IAAA,IAAI;AACF,MAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,iBAAA,CAAkB,aAAA,EAAc;AAC9D,MAAA,IAAI,UAAA,CAAW,MAAA,KAAW,CAAA,EAAG,OAAO,QAAA;AACpC,MAAA,cAAA,GAAiB,IAAI,IAAI,UAAA,CAAW,GAAA,CAAI,CAAC,CAAA,KAAM,CAAA,CAAE,MAAM,CAAC,CAAA;AAAA,IAC1D,CAAA,CAAA,MAAQ;AACN,MAAA,OAAO,QAAA;AAAA,IACT;AACA,IAAA,OAAO,QAAA,CAAS,MAAA,CAAO,CAAC,CAAA,KAAM;AAC5B,MAAA,IAAI,CAAA,CAAE,OAAA,CAAQ,MAAA,KAAW,CAAA,EAAG;AAK1B,QAAA,OAAO,KAAA;AAAA,MACT;AACA,MAAA,OAAO,CAAA,CAAE,QAAQ,IAAA,CAAK,CAAC,OAAO,cAAA,CAAe,GAAA,CAAI,EAAE,CAAC,CAAA;AAAA,IACtD,CAAC,CAAA;AAAA,EACH;AAAA,EAEQ,gBAAgB,CAAA,EAAmB;AACzC,IAAA,IAAI,CAAA,IAAK,GAAG,OAAO,CAAA;AACnB,IAAA,MAAM,IAAK,UAAA,CAAkF,MAAA;AAC7F,IAAA,IAAI,GAAG,eAAA,EAAiB;AACtB,MAAA,MAAM,GAAA,GAAM,IAAI,WAAA,CAAY,CAAC,CAAA;AAC7B,MAAA,CAAA,CAAE,gBAAgB,GAAG,CAAA;AACrB,MAAA,OAAO,GAAA,CAAI,CAAC,CAAA,GAAI,CAAA;AAAA,IAClB;AACA,IAAA,OAAO,IAAA,CAAK,KAAA,CAAM,IAAA,CAAK,MAAA,KAAW,CAAC,CAAA;AAAA,EACrC;AACF,CAAA;;;ACtLO,IAAM,YAAA,GAAN,cAA2B,KAAA,CAAM;AAAA,EACtC,WAAA,CACE,OAAA,EACgB,UAAA,EACA,OAAA,EAChB;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHG,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGhB,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AAAA,EACd;AAAA,EALkB,UAAA;AAAA,EACA,OAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUlB,IAAI,WAAA,GAAuB;AACzB,IAAA,OACE,IAAA,CAAK,UAAA,KAAe,CAAA,IACpB,IAAA,CAAK,UAAA,KAAe,OACpB,IAAA,CAAK,UAAA,KAAe,GAAA,IACpB,IAAA,CAAK,UAAA,IAAc,GAAA;AAAA,EAEvB;AACF,CAAA;AAMO,SAAS,iBAAiB,MAAA,EAAsC;AACrE,EAAA,MAAM,OAAA,GAAU,OAAO,OAAA,IAAW,GAAA;AAElC,EAAA,SAAS,UAAA,CAAW,aAAsB,IAAA,EAAgD;AACxF,IAAA,MAAM,UAAkC,EAAC;AACzC,IAAA,IAAI,WAAA,EAAa;AACf,MAAA,OAAA,CAAQ,cAAc,CAAA,GAAI,WAAA;AAAA,IAC5B;AACA,IAAA,IAAI,OAAO,SAAA,EAAW;AACpB,MAAA,OAAA,CAAQ,eAAe,CAAA,GAAI,CAAA,OAAA,EAAU,MAAA,CAAO,SAAS,CAAA,CAAA;AAAA,IACvD;AACA,IAAA,IAAI,OAAO,MAAA,EAAQ;AACjB,MAAA,OAAA,CAAQ,WAAW,IAAI,MAAA,CAAO,MAAA;AAAA,IAChC;AAGA,IAAA,IAAI,MAAM,aAAA,EAAe;AACvB,MAAA,OAAA,CAAQ,0BAA0B,IAAI,IAAA,CAAK,aAAA;AAAA,IAC7C;AAIA,IAAA,IAAI,MAAM,UAAA,EAAY;AACpB,MAAA,OAAA,CAAQ,eAAe,CAAA,GAAI,CAAA,OAAA,EAAU,IAAA,CAAK,UAAU,CAAA,CAAA;AACpD,MAAA,OAAA,CAAQ,0BAA0B,IAAI,IAAA,CAAK,UAAA;AAAA,IAC7C;AACA,IAAA,IAAI,MAAM,OAAA,EAAS;AACjB,MAAA,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,IAAA,CAAK,OAAO,CAAA;AAAA,IACrC;AACA,IAAA,OAAO,OAAA;AAAA,EACT;AAGA,EAAA,SAAS,aAAa,KAAA,EAAiC;AACrD,IAAA,MAAA,CAAO,SAAA,GAAY,KAAA;AAAA,EACrB;AAGA,EAAA,SAAS,YAAA,GAAmC;AAC1C,IAAA,OAAO,MAAA,CAAO,SAAA;AAAA,EAChB;AAEA,EAAA,eAAe,OAAA,CAAW,MAAA,EAAgB,IAAA,EAAc,IAAA,EAAgB,IAAA,EAAoC;AAC1G,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,UAAA,CAAW,KAAA,IAAS,OAAO,CAAA;AAE9D,IAAA,IAAI;AACF,MAAA,MAAM,IAAA,GAAoB;AAAA,QACxB,MAAA;AAAA,QACA,OAAA,EAAS,UAAA,CAAW,kBAAA,EAAoB,IAAI,CAAA;AAAA,QAC5C,QAAQ,UAAA,CAAW;AAAA,OACrB;AAEA,MAAA,IAAI,SAAS,KAAA,CAAA,EAAW;AACtB,QAAA,IAAA,CAAK,IAAA,GAAO,IAAA,CAAK,SAAA,CAAU,IAAI,CAAA;AAAA,MACjC;AAEA,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK,IAAI,CAAA;AACtC,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,SAAA,GAAY,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACxD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,UAAU,OAAA,IAAsB,CAAA,WAAA,EAAc,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACrF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAGA,MAAA,MAAM,IAAA,GAAO,MAAM,QAAA,CAAS,IAAA,EAAK;AACjC,MAAA,IAAI,CAAC,MAAM,OAAO,KAAA,CAAA;AAClB,MAAA,OAAO,IAAA,CAAK,MAAM,IAAI,CAAA;AAAA,IACxB,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,iBAAA,EAAmB,GAAG,CAAA;AAAA,MAC/C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,eAAA,EAAkB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IAClE;AAAA,EACF;AAEA,EAAA,eAAe,OAAA,CAAQ,MAAc,IAAA,EAAyC;AAC5E,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,UAAA,CAAW,KAAA,IAAS,OAAO,CAAA;AAE9D,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS,UAAA,CAAW,KAAA,CAAA,EAAW,IAAI,CAAA;AAAA,QACnC,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AACD,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAIhB,QAAA,MAAM,OAAA,GAAW,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACvD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,QAAQ,OAAA,IAAsB,CAAA,WAAA,EAAc,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACnF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAO,MAAM,SAAS,IAAA,EAAK;AAAA,IAC7B,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,iBAAA,EAAmB,GAAG,CAAA;AAAA,MAC/C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,eAAA,EAAkB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IAClE;AAAA,EACF;AAEA,EAAA,eAAe,SAAA,CAAU,MAAc,IAAA,EAA6C;AAClF,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,UAAA,CAAW,KAAA,IAAS,OAAO,CAAA;AAE9D,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS,UAAA,CAAW,KAAA,CAAA,EAAW,IAAI,CAAA;AAAA,QACnC,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AACD,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAEhB,QAAA,MAAM,OAAA,GAAW,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACvD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,QAAQ,OAAA,IAAsB,CAAA,WAAA,EAAc,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACnF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAGA,MAAA,OAAO,IAAI,UAAA,CAAW,MAAM,QAAA,CAAS,aAAa,CAAA;AAAA,IACpD,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,iBAAA,EAAmB,GAAG,CAAA;AAAA,MAC/C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,eAAA,EAAkB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IAClE;AAAA,EACF;AAEA,EAAA,eAAe,iBAAA,CACb,MACA,IAAA,EACyE;AACzE,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,UAAA,CAAW,KAAA,IAAS,OAAO,CAAA;AAE9D,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS,UAAA,CAAW,KAAA,CAAA,EAAW,IAAI,CAAA;AAAA,QACnC,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AACD,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,OAAA,GAAW,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACvD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,QAAQ,OAAA,IAAsB,CAAA,WAAA,EAAc,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACnF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,MAAM,QAAQ,IAAI,UAAA,CAAW,MAAM,QAAA,CAAS,aAAa,CAAA;AACzD,MAAA,MAAM,WAAA,GAAc,QAAA,CAAS,OAAA,CAAQ,GAAA,CAAI,cAAc,CAAA,IAAK,KAAA,CAAA;AAE5D,MAAA,MAAM,WAAA,GAAc,QAAA,CAAS,OAAA,CAAQ,GAAA,CAAI,qBAAqB,CAAA,IAAK,EAAA;AACnE,MAAA,MAAM,KAAA,GAAQ,yCAAA,CAA0C,IAAA,CAAK,WAAW,CAAA;AACxE,MAAA,MAAM,QAAA,GAAW,QAAQ,kBAAA,CAAmB,KAAA,CAAM,CAAC,CAAA,CAAE,IAAA,EAAM,CAAA,GAAI,KAAA,CAAA;AAC/D,MAAA,OAAO,EAAE,KAAA,EAAO,WAAA,EAAa,QAAA,EAAS;AAAA,IACxC,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,iBAAA,EAAmB,GAAG,CAAA;AAAA,MAC/C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,eAAA,EAAkB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IAClE;AAAA,EACF;AAEA,EAAA,eAAe,OACb,IAAA,EACA,IAAA,EACA,UACA,QAAA,EACA,SAAA,GAAoB,QACpB,IAAA,EACY;AACZ,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AAEvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,UAAU,CAAC,CAAA;AAElE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,IAAI,QAAA,EAAS;AAC9B,MAAA,MAAM,IAAA,GAAO,IAAA,YAAgB,IAAA,GAAO,IAAA,GAAO,IAAI,IAAA,CAAK,CAAC,IAAI,UAAA,CAAW,IAAc,CAAC,CAAC,CAAA;AACpF,MAAA,QAAA,CAAS,MAAA,CAAO,SAAA,EAAW,IAAA,EAAM,QAAQ,CAAA;AAEzC,MAAA,IAAI,QAAA,EAAU;AACZ,QAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,QAAQ,CAAA,EAAG;AACnD,UAAA,QAAA,CAAS,MAAA,CAAO,KAAK,KAAK,CAAA;AAAA,QAC5B;AAAA,MACF;AAGA,MAAA,MAAM,UAAkC,EAAC;AACzC,MAAA,IAAI,OAAO,SAAA,EAAW;AACpB,QAAA,OAAA,CAAQ,eAAe,CAAA,GAAI,CAAA,OAAA,EAAU,MAAA,CAAO,SAAS,CAAA,CAAA;AAAA,MACvD;AACA,MAAA,IAAI,OAAO,MAAA,EAAQ;AACjB,QAAA,OAAA,CAAQ,WAAW,IAAI,MAAA,CAAO,MAAA;AAAA,MAChC;AACA,MAAA,IAAI,MAAM,aAAA,EAAe;AACvB,QAAA,OAAA,CAAQ,0BAA0B,IAAI,IAAA,CAAK,aAAA;AAAA,MAC7C;AACA,MAAA,IAAI,MAAM,UAAA,EAAY;AACpB,QAAA,OAAA,CAAQ,eAAe,CAAA,GAAI,CAAA,OAAA,EAAU,IAAA,CAAK,UAAU,CAAA,CAAA;AACpD,QAAA,OAAA,CAAQ,0BAA0B,IAAI,IAAA,CAAK,UAAA;AAAA,MAC7C;AACA,MAAA,IAAI,MAAM,OAAA,EAAS;AACjB,QAAA,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,IAAA,CAAK,OAAO,CAAA;AAAA,MACrC;AAEA,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,MAAA;AAAA,QACR,OAAA;AAAA,QACA,IAAA,EAAM,QAAA;AAAA,QACN,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,SAAA,GAAY,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACxD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,UAAU,OAAA,IAAsB,CAAA,cAAA,EAAiB,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACxF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAO,SAAS,IAAA,EAAK;AAAA,IACvB,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,gBAAA,EAAkB,GAAG,CAAA;AAAA,MAC9C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,cAAA,EAAiB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IACjE;AAAA,EACF;AAMA,EAAA,IAAI,cAAA,GAAuC,IAAA;AAC3C,EAAA,eAAe,aAAA,CAAiB,MAAc,EAAA,EAAkC;AAC9E,IAAA,IAAI;AACF,MAAA,OAAO,MAAM,EAAA,EAAG;AAAA,IAClB,SAAS,KAAA,EAAO;AACd,MAAA,MAAM,cACJ,CAAC,CAAC,OAAO,cAAA,IACT,CAAC,KAAK,UAAA,CAAW,oBAAoB,CAAA,IACrC,CAAC,KAAK,UAAA,CAAW,eAAe,KAChC,KAAA,YAAiB,YAAA,IACjB,MAAM,UAAA,KAAe,GAAA;AACvB,MAAA,IAAI,CAAC,aAAa,MAAM,KAAA;AACxB,MAAA,IAAI,CAAC,cAAA,EAAgB;AACnB,QAAA,cAAA,GAAiB,QAAQ,OAAA,CAAQ,MAAA,CAAO,gBAAiB,CAAA,CAAE,QAAQ,MAAM;AACvE,UAAA,cAAA,GAAiB,IAAA;AAAA,QACnB,CAAC,CAAA;AAAA,MACH;AACA,MAAA,IAAI;AACF,QAAA,MAAM,cAAA;AAAA,MACR,CAAA,CAAA,MAAQ;AACN,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,OAAO,MAAM,EAAA,EAAG;AAAA,IAClB;AAAA,EACF;AAEA,EAAA,MAAM,MAAA,GAAqB;AAAA,IACzB,IAAA,EAAM,CAAI,IAAA,EAAc,IAAA,EAAe,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,MAAA,EAAQ,IAAA,EAAM,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IAChI,GAAA,EAAK,CAAI,IAAA,EAAc,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,KAAA,EAAO,IAAA,EAAM,KAAA,CAAA,EAAW,IAAI,CAAC,CAAA;AAAA,IACpH,GAAA,EAAK,CAAI,IAAA,EAAc,IAAA,EAAe,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,KAAA,EAAO,IAAA,EAAM,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IAC9H,KAAA,EAAO,CAAI,IAAA,EAAc,IAAA,EAAe,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,OAAA,EAAS,IAAA,EAAM,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IAClI,MAAA,EAAQ,CAAI,IAAA,EAAc,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,QAAA,EAAU,IAAA,EAAM,KAAA,CAAA,EAAW,IAAI,CAAC,CAAA;AAAA,IAC1H,OAAA,EAAS,CAAC,IAAA,EAAc,IAAA,KAA2B,aAAA,CAAc,MAAM,MAAM,OAAA,CAAQ,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IAChG,SAAA,EAAW,CAAC,IAAA,EAAc,IAAA,KAA2B,aAAA,CAAc,MAAM,MAAM,SAAA,CAAU,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IACpG,iBAAA,EAAmB,CAAC,IAAA,EAAc,IAAA,KAChC,aAAA,CAAc,MAAM,MAAM,iBAAA,CAAkB,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IACzD,SAAS,CAAC,IAAA,EAAc,MAAqB,QAAA,EAAkB,QAAA,EAAmC,WAAoB,IAAA,KACpH,aAAA,CAAc,IAAA,EAAM,MAAM,OAAO,IAAA,EAAM,IAAA,EAAM,UAAU,QAAA,EAAU,SAAA,EAAW,IAAI,CAAC,CAAA,CAAA;AAAA,IACnF,YAAA;AAAA,IACA;AAAA,GACF;AAEA,EAAA,OAAO,MAAA;AACT;AAMO,SAAS,gBAAgB,KAAA,EAAuB;AACrD,EAAA,OAAO,kBAAA,CAAmB,KAAK,CAAA,CAAE,OAAA,CAAQ,SAAS,EAAE,CAAA;AACtD;;;AClWO,IAAM,kBAAN,MAAsB;AAAA,EAI3B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAC3B,IAAA,IAAA,CAAK,cAAA,GAAiB,IAAI,oBAAA,CAAqB,IAAI,CAAA;AAAA,EACrD;AAAA,EAF6B,IAAA;AAAA;AAAA,EAFb,cAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWhB,MAAM,YAAA,GAAgE;AACpE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,qBAAqB,CAAA;AAAA,EAC5C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,eAAA,GAA+D;AACnE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,yBAAyB,CAAA;AAAA,EAChD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,iBAAiB,MAAA,EAAiE;AACtF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,uBAAuB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EACvE;AACF,CAAA;AAWO,IAAM,uBAAN,MAA2B;AAAA,EAChC,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,IAAA,GAAiE;AACrE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,4BAA4B,CAAA;AAAA,EACnD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,aAAA,GAA0E;AAC9E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,sCAAsC,CAAA;AAAA,EAC7D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,IAAI,SAAA,EAGP;AACD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,8BAA8B,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAE,CAAA;AAAA,EACjF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,UAAA,CACJ,SAAA,EACA,OAAA,EAC8D;AAC9D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,8BAA8B,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,OAAO,CAAC,CAAA;AAAA,KACtF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,MAAA,CACJ,SAAA,EACA,OAAA,EACA,MAAA,EACgC;AAChC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,2BAAA,EAA8B,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAA,EAAI,eAAA;AAAA,QAC1D;AAAA,OACD,CAAA,eAAA,EAAkB,kBAAA,CAAmB,MAAM,CAAC,CAAA;AAAA,KAC/C;AAAA,EACF;AACF,CAAA;;;ACzMO,IAAM,cAAA,GAA+D;AAAA,EAC1E,OAAA,EAAS;AAAA,IACP,SAAA,EAAW,CAAC,wCAAwC;AAAA,GACtD;AAAA,EACA,OAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAQP,SAAA,EAAW,CAAC,gCAAgC;AAAA;AAEhD,CAAA;AASO,SAAS,eAAe,IAAA,EAAkC;AAC/D,EAAA,MAAM,MAAA,GAAS,eAAe,IAAI,CAAA;AAClC,EAAA,IAAI,CAAC,MAAA,EAAQ;AAGX,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,kBAAA,EAAqB,IAAI,CAAA,mBAAA,EAAsB,MAAA,CAAO,KAAK,cAAc,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KACvF;AAAA,EACF;AACA,EAAA,OAAO,MAAA;AACT;;;AChBA,eAAsB,uBACpB,MAAA,EAC+B;AAC/B,EAAA,MAAM,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAI9C,EAAA,MAAM,YAAsB,MAAA,CAAO,SAAA,GAC/B,CAAC,GAAG,MAAA,CAAO,SAAS,CAAA,GACpB,MAAA,CAAO,OAAA,GACL,CAAC,GAAG,cAAA,CAAe,MAAA,CAAO,OAAO,CAAA,CAAE,SAAS,IAC5C,EAAC;AAEP,EAAA,IAAI,SAAA,CAAU,WAAW,CAAA,EAAG;AAC1B,IAAA,OAAO,EAAE,EAAA,EAAI,KAAA,EAAO,MAAA,EAAQ,UAAA,EAAW;AAAA,EACzC;AAEA,EAAA,MAAM,SAAA,GAAY,IAAI,sBAAA,CAAuB;AAAA,IAC3C,SAAA;AAAA,IACA,aAAA;AAAA,IACA,WAAA,EAAa,OAAO,WAAA,GAChB;AAAA,MACE,OAAA,EAAS,OAAO,WAAA,CAAY,OAAA;AAAA,MAC5B,eAAA,EAAiB,OAAO,WAAA,CAAY,eAAA;AAAA,MACpC,aAAA,EAAe,OAAO,WAAA,CAAY,aAAA;AAAA,MAClC;AAAA,KACF,GACA;AAAA,GACL,CAAA;AAED,EAAA,MAAM,OAAA,GAAU,MAAM,SAAA,CAAU,gBAAA,EAAiB;AACjD,EAAA,IAAI,CAAC,OAAA,EAAS;AACZ,IAAA,OAAO,EAAE,EAAA,EAAI,KAAA,EAAO,MAAA,EAAQ,aAAA,EAAc;AAAA,EAC5C;AAEA,EAAA,OAAO,EAAE,EAAA,EAAI,IAAA,EAAM,OAAA,EAAQ;AAC7B;;;ACpFA,IAAM,qBAAA,GAA8C;AAAA,EAClD,QAAA;AAAA,EACA,MAAA;AAAA,EACA,UAAA;AAAA,EACA,SAAA;AAAA,EACA;AACF,CAAA;AAmCA,SAAS,QAAQ,KAAA,EAAoE;AAEnF,EAAA,IAAI,KAAA,YAAiB,YAAY,OAAO,KAAA;AACxC,EAAA,OAAO,MAAM,OAAA,EAAQ;AACvB;AAKA,SAAS,oBAAA,CAAqB,GAAA,EAAa,aAAA,GAAgB,KAAA,EAAe;AACxE,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,IAAI,GAAA,CAAI,GAAG,CAAA;AAG1B,IAAA,IAAI,CAAC,CAAC,OAAA,EAAS,QAAQ,EAAE,QAAA,CAAS,MAAA,CAAO,QAAQ,CAAA,EAAG;AAClD,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,kBAAA,EAAqB,MAAA,CAAO,QAAQ,IAAI,GAAG,CAAA;AAAA,IAC1E;AAGA,IAAA,IAAI,CAAC,aAAA,IAAiB,MAAA,CAAO,QAAA,KAAa,QAAA,EAAU;AAClD,MAAA,MAAM,IAAI,kBAAA;AAAA,QACR,4FAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAGA,IAAA,MAAM,QAAA,GAAW,MAAA,CAAO,QAAA,CAAS,WAAA,EAAY;AAC7C,IAAA,MAAM,WAAA,GAAc,QAAA,KAAa,WAAA,IAAe,QAAA,KAAa,eAAe,QAAA,KAAa,KAAA;AAEzF,IAAA,IAAI,WAAA,IAAe,CAAC,aAAA,EAAe;AACjC,MAAA,MAAM,IAAI,kBAAA;AAAA,QACR,6FAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAEA,IAAA,OAAO,MAAA,CAAO,MAAA;AAAA,EAChB,SAAS,KAAA,EAAO;AACd,IAAA,IAAI,iBAAiB,kBAAA,EAAoB;AACvC,MAAA,MAAM,KAAA;AAAA,IACR;AACA,IAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,uBAAA,EAA0B,GAAG,IAAI,GAAG,CAAA;AAAA,EACnE;AACF;AAKA,SAAS,aAAA,CAAc,KAAA,EAAe,SAAA,EAAmB,SAAA,GAAY,GAAA,EAAa;AAChF,EAAA,IAAI,OAAO,UAAU,QAAA,EAAU;AAC7B,IAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,EAAG,SAAS,qBAAqB,GAAG,CAAA;AAAA,EACnE;AAEA,EAAA,IAAI,KAAA,CAAM,SAAS,SAAA,EAAW;AAC5B,IAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,EAAG,SAAS,CAAA,2BAAA,EAA8B,SAAS,IAAI,GAAG,CAAA;AAAA,EACzF;AAGA,EAAA,OAAO,KAAA,CAAM,OAAA,CAAQ,kBAAA,EAAoB,EAAE,CAAA;AAC7C;AAwHO,IAAM,sBAAN,MAA0B;AAAA,EACd,OAAA;AAAA,EACA,aAAA;AAAA,EAEjB,YAAY,MAAA,EAA8B;AACxC,IAAA,IAAA,CAAK,OAAA,GAAU,QAAQ,OAAA,IAAW,GAAA;AAClC,IAAA,IAAA,CAAK,aAAA,GAAgB,MAAA,EAAQ,QAAA,EAAU,aAAA,IAAiB,KAAA;AAAA,EAC1D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,gBAAA,CACJ,YAAA,EACA,KAAA,EACA,OAAA,EAC4B;AAE5B,IAAA,MAAM,OAAA,GAAU,oBAAA,CAAqB,YAAA,EAAc,IAAA,CAAK,aAAa,CAAA;AACrE,IAAA,MAAM,WAAA,GAAc,aAAA,CAAc,OAAA,EAAS,SAAA,EAAW,GAAG,CAAA;AAEzD,IAAA,IAAI,CAAC,qBAAA,CAAsB,QAAA,CAAS,KAAK,CAAA,EAAG;AAC1C,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,oBAAA,EAAuB,KAAK,IAAI,GAAG,CAAA;AAAA,IAClE;AAEA,IAAA,MAAM,GAAA,GAAM,GAAG,OAAO,CAAA,yBAAA,CAAA;AAEtB,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,MAAA;AAAA,QACR,OAAA,EAAS;AAAA,UACP,cAAA,EAAgB;AAAA,SAClB;AAAA,QACA,MAAM,IAAA,CAAK,SAAA,CAAU,EAAE,KAAA,EAAO,OAAA,EAAS,aAAa,CAAA;AAAA,QACpD,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,KAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACpD,QAAA,MAAM,IAAI,kBAAA;AAAA,UACR,CAAA,0BAAA,EAA6B,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACnE,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,IAC9B,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,iBAAiB,kBAAA,EAAoB;AACvC,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,kBAAA,CAAmB,2BAAA,EAA6B,GAAG,CAAA;AAAA,MAC/D;AACA,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,0BAAA,EAA6B,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,IAC5E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,YAAA,CACJ,YAAA,EACA,OAAA,EAC+B;AAE/B,IAAA,MAAM,OAAA,GAAU,oBAAA,CAAqB,YAAA,EAAc,IAAA,CAAK,aAAa,CAAA;AAGrE,IAAA,MAAM,gBAAA,GAAwC;AAAA,MAC5C,OAAO,OAAA,CAAQ,KAAA;AAAA,MACf,OAAA,EAAS,aAAA,CAAc,OAAA,CAAQ,OAAA,EAAS,WAAW,GAAG,CAAA;AAAA,MACtD,SAAA,EAAW,aAAA,CAAc,OAAA,CAAQ,SAAA,EAAW,aAAa,GAAG,CAAA;AAAA,MAC5D,SAAA,EAAW,aAAA,CAAc,OAAA,CAAQ,SAAA,EAAW,aAAa,IAAI,CAAA;AAAA,MAC7D,SAAA,EAAW,aAAA,CAAc,OAAA,CAAQ,SAAA,EAAW,aAAa,GAAG,CAAA;AAAA,MAC5D,QAAA,EAAU,QAAQ,QAAA,GACd;AAAA,QACE,MAAA,EAAQ,OAAA,CAAQ,QAAA,CAAS,MAAA,GACrB,aAAA,CAAc,QAAQ,QAAA,CAAS,MAAA,EAAQ,QAAA,EAAU,EAAE,CAAA,GACnD,MAAA;AAAA,QACJ,QAAA,EAAU,OAAA,CAAQ,QAAA,CAAS,QAAA,GACvB,aAAA,CAAc,QAAQ,QAAA,CAAS,QAAA,EAAU,UAAA,EAAY,GAAG,CAAA,GACxD,MAAA;AAAA,QACJ,YAAA,EAAc,QAAQ,QAAA,CAAS,YAAA;AAAA,QAC/B,KAAA,EAAO,OAAA,CAAQ,QAAA,CAAS,KAAA,GACpB,aAAA,CAAc,QAAQ,QAAA,CAAS,KAAA,EAAO,OAAA,EAAS,EAAE,CAAA,GACjD,MAAA;AAAA,QACJ,OAAA,EAAS,OAAA,CAAQ,QAAA,CAAS,OAAA,GACtB,aAAA,CAAc,QAAQ,QAAA,CAAS,OAAA,EAAS,SAAA,EAAW,GAAG,CAAA,GACtD;AAAA,OACN,GACA;AAAA,KACN;AAEA,IAAA,IAAI,CAAC,qBAAA,CAAsB,QAAA,CAAS,gBAAA,CAAiB,KAAK,CAAA,EAAG;AAC3D,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,oBAAA,EAAuB,gBAAA,CAAiB,KAAK,IAAI,GAAG,CAAA;AAAA,IACnF;AAGA,IAAA,IAAI,CAAC,iBAAiB,IAAA,CAAK,gBAAA,CAAiB,UAAU,OAAA,CAAQ,MAAA,EAAQ,EAAE,CAAC,CAAA,EAAG;AAC1E,MAAA,MAAM,IAAI,kBAAA,CAAmB,+CAAA,EAAiD,GAAG,CAAA;AAAA,IACnF;AAEA,IAAA,MAAM,GAAA,GAAM,GAAG,OAAO,CAAA,4BAAA,CAAA;AAEtB,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,MAAA;AAAA,QACR,OAAA,EAAS;AAAA,UACP,cAAA,EAAgB;AAAA,SAClB;AAAA,QACA,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,gBAAgB,CAAA;AAAA,QACrC,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,KAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACpD,QAAA,MAAM,IAAI,kBAAA;AAAA,UACR,CAAA,uBAAA,EAA0B,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UAChE,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,IAC9B,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,iBAAiB,kBAAA,EAAoB;AACvC,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,kBAAA,CAAmB,gCAAA,EAAkC,GAAG,CAAA;AAAA,MACpE;AACA,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,uBAAA,EAA0B,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,IACzE;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAA,CAAW,YAAA,EAAsB,KAAA,EAAqC;AAE1E,IAAA,MAAM,OAAA,GAAU,oBAAA,CAAqB,YAAA,EAAc,IAAA,CAAK,aAAa,CAAA;AACrE,IAAA,MAAM,SAAA,GAAY,aAAA,CAAc,KAAA,EAAO,OAAA,EAAS,IAAI,CAAA;AAEpD,IAAA,MAAM,GAAA,GAAM,GAAG,OAAO,CAAA,uBAAA,CAAA;AAEtB,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS;AAAA,UACP,aAAA,EAAe,UAAU,SAAS,CAAA;AAAA,SACpC;AAAA,QACA,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,KAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACpD,QAAA,MAAM,IAAI,kBAAA;AAAA,UACR,CAAA,wBAAA,EAA2B,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACjE,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,IAC9B,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,iBAAiB,kBAAA,EAAoB;AACvC,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,kBAAA,CAAmB,yBAAA,EAA2B,GAAG,CAAA;AAAA,MAC7D;AACA,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,wBAAA,EAA2B,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,IAC1E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,mBAAA,CAAoB,WAAmB,UAAA,EAAkC;AACvE,IAAA,MAAM,eAAe,IAAI,UAAA,CAAW,OAAO,IAAA,CAAK,SAAA,EAAW,OAAO,CAAC,CAAA;AACnE,IAAA,MAAM,SAAA,GAAY,UAAA,CAAW,IAAA,CAAK,YAAY,CAAA;AAC9C,IAAA,OAAO,OAAO,IAAA,CAAK,OAAA,CAAQ,SAAS,CAAC,CAAA,CAAE,SAAS,KAAK,CAAA;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,iBAAA,CAAkB,WAAmB,MAAA,EAA4B;AAC/D,IAAA,MAAM,SAAA,GAAY,MAAA,CAAO,IAAA,CAAK,SAAS,CAAA;AAGvC,IAAA,IAAI,OAAO,cAAc,QAAA,EAAU;AACjC,MAAA,IAAI,gBAAA,CAAiB,IAAA,CAAK,SAAS,CAAA,EAAG,OAAO,SAAA;AAC7C,MAAA,OAAO,MAAA,CAAO,IAAA,CAAK,SAAS,CAAA,CAAE,SAAS,KAAK,CAAA;AAAA,IAC9C;AACA,IAAA,OAAO,SAAA,CAAU,iBAAA;AAAA,EACnB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,sBAAA,CACJ,YAAA,EACA,OACA,OAAA,EACA,SAAA,EACA,QACA,QAAA,EAC+B;AAE/B,IAAA,MAAM,oBAAoB,MAAM,IAAA,CAAK,gBAAA,CAAiB,YAAA,EAAc,OAAO,OAAO,CAAA;AAGlF,IAAA,MAAM,SAAA,GAAY,MAAM,MAAA,CAAO,iBAAA,CAAkB,SAAS,CAAA;AAG1D,IAAA,OAAO,IAAA,CAAK,aAAa,YAAA,EAAc;AAAA,MACrC,KAAA;AAAA,MACA,OAAA;AAAA,MACA,SAAA;AAAA,MACA,SAAA;AAAA,MACA,WAAW,iBAAA,CAAkB,SAAA;AAAA,MAC7B;AAAA,KACD,CAAA;AAAA,EACH;AACF,CAAA;AAKO,IAAM,kBAAA,GAAN,cAAiC,KAAA,CAAM;AAAA,EAC5C,WAAA,CACE,OAAA,EACO,UAAA,EACA,OAAA,EACP;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHN,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGP,IAAA,IAAA,CAAK,IAAA,GAAO,oBAAA;AAAA,EACd;AAAA,EALS,UAAA;AAAA,EACA,OAAA;AAKX,CAAA;;;AC7JO,IAAM,qBAAN,MAAyB;AAAA,EAC9B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,QAAQ,OAAA,EAA6D;AACzE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,uBAAA,EAAyB,OAAO,CAAA;AAAA,EACxD;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAU,KAAA,EAAoD;AAClE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,wBAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAQ,KAAA,EAAyC;AACrD,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,mBAAA,EAAsB,gBAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,EAAE,CAAA;AAAA,EAC1E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAM,OAAA,EAA2E;AACrF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qBAAA,EAAuB,OAAO,CAAA;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBA,MAAM,QAAA,GAA4C;AAChD,IAAA,IAAI;AACF,MAAA,OAAO,MAAM,IAAA,CAAK,IAAA,CAAK,GAAA,CAA4B,qBAAqB,CAAA;AAAA,IAC1E,SAAS,GAAA,EAAK;AAKZ,MAAA,MAAM,UAAA,GACJ,OAAO,IAAA,IACP,OAAO,QAAQ,QAAA,IACf,YAAA,IAAgB,GAAA,IACf,GAAA,CAAgC,UAAA,KAAe,GAAA;AAClD,MAAA,IAAI,CAAC,YAAY,MAAM,GAAA;AACvB,MAAA,MAAM,GAAA,GAAM,MAAM,IAAA,CAAK,IAAA,CAAK,IAEzB,sBAAsB,CAAA;AAKzB,MAAA,OAAA,CAAQ,IAAI,cAAA,IAAkB,EAAC,EAAG,GAAA,CAAI,CAAC,GAAA,KAAQ;AAC7C,QAAA,MAAM,IAAA,GAAQ,GAAA,CAAI,IAAA,IAAQ,GAAA,CAAI,IAAA;AAC9B,QAAA,MAAM,cAAe,GAAA,CAAI,IAAA,IAAQ,GAAA,CAAI,WAAA,IAAe,OAAO,IAAI,CAAA;AAC/D,QAAA,MAAM,kBAAA,GAAqB,MAAA;AAAA,UACzB,GAAA,CAAI,kBAAA,IAAsB,GAAA,CAAI,aAAA,IAAiB;AAAA,SACjD;AACA,QAAA,MAAM,cAAA,GAAiB,MAAA,CAAO,GAAA,CAAI,cAAA,IAAkB,CAAC,CAAA;AACrD,QAAA,MAAM,WAAA,GAAe,GAAA,CAAI,eAAA,IAAmB,GAAA,CAAI,qBAAqB,EAAC;AACtE,QAAA,MAAM,oBAA2C,WAAA,CAAY,IAAA;AAAA,UAC3D,CAAC,MAAM,CAAA,KAAM;AAAA,YAEX,CAAC,QAAA,EAAU,MAAM,CAAA,GACjB,CAAC,QAAQ,CAAA;AACb,QAAA,OAAO;AAAA,UACL,IAAA,EAAM,IAAA;AAAA,UACN,WAAA;AAAA,UACA,WAAA,EACG,GAAA,CAAI,WAAA,IACL,CAAA,EAAG,WAAW,CAAA,KAAA,CAAA;AAAA,UAChB,QAAA,EAAU,MAAA,CAAO,GAAA,CAAI,QAAA,IAAY,CAAC,CAAA;AAAA,UAClC,aAAA,EAAe,OAAO,kBAAkB,CAAA;AAAA,UACxC,gBAAgB,MAAA,CAAO,QAAA,CAAS,cAAc,CAAA,GAC1C,iBACA,MAAA,CAAO,gBAAA;AAAA,UACX,iBAAA;AAAA,UACA,QAAA,EAAW,GAAA,CAAI,QAAA,IAAyB;AAAC,SAC3C;AAAA,MACF,CAAC,CAAA;AAAA,IACH;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAA,GAAyC;AAC7C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,sBAAsB,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAA,GAA0C;AAC9C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,CAAA;AAAA,EAC3C;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,aAAa,MAAA,EAA+D;AAChF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,6BAA6B,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EAC7E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAW,KAAA,EAAyC;AACxD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,yBAAyB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACxE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UACJ,OAAA,EACwC;AACxC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,yBAAA,EAA2B,OAAO,CAAA;AAAA,EAC1D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QACJ,OAAA,EACsC;AACtC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,uBAAA,EAAyB,OAAO,CAAA;AAAA,EACxD;AAAA;AAAA,EAGA,MAAM,iBACJ,OAAA,EACmC;AACnC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,kCAAA,EAAoC,OAAO,CAAA;AAAA,EACnE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,aAAa,aAAA,EAAqE;AACtF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,yBAAA,EAA4B,eAAA,CAAgB,aAAa,CAAC,CAAA;AAAA,KAC5D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,SAAS,KAAA,EAA0D;AACvE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,uBAAuB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACtE;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,eAAe,KAAA,EAAyD;AAC5E,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,8BAA8B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EAC7E;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,UAAA,CACJ,KAAA,EACA,OAAA,EACsC;AACtC,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,OAAO,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC9E,IAAA,IAAI,OAAA,EAAS,WAAW,MAAA,EAAW,MAAA,CAAO,OAAO,QAAA,EAAU,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAC,CAAA;AACjF,IAAA,IAAI,SAAS,IAAA,EAAM,MAAA,CAAO,MAAA,CAAO,MAAA,EAAQ,QAAQ,IAAI,CAAA;AACrD,IAAA,IAAI,SAAS,EAAA,EAAI,MAAA,CAAO,MAAA,CAAO,IAAA,EAAM,QAAQ,EAAE,CAAA;AAC/C,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,gBAAgB,KAAK,CAAC,GAAG,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KACtE;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,MAAM,aACJ,OAAA,EAC2C;AAC3C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,6BAAA,EAA+B,OAAO,CAAA;AAAA,EAC9D;AACF,CAAA;;;ACzdO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,gBAAA,CACJ,KAAA,EACA,gBAAA,EAC0B;AAC1B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA,CAAK,4BAA4B,EAAE,KAAA,EAAO,kBAAkB,CAAA;AAAA,EAC/E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,SAAS,GAAA,EAA2D;AACxE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gBAAA,EAAkB,GAAG,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAA,CACJ,KAAA,EACA,gBAAA,EAC+B;AAC/B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,MAAA,CAAO,MAAA,CAAO,SAAS,KAAK,CAAA;AAC5B,IAAA,MAAA,CAAO,MAAA,CAAO,oBAAoB,gBAAgB,CAAA;AAClD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,yBAAyB,MAAA,CAAO,QAAA,EAAU,CAAA,CAAE,CAAA;AAAA,EACnE;AACF,CAAA;;;ACxHO,IAAM,YAAN,MAAgB;AAAA,EACrB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQ7B,MAAM,aAAa,OAAA,EAAiE;AAClF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,oBAAA,EAAsB,OAAO,CAAA;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,eAAe,OAAA,EAAmD;AACtE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sBAAA,EAAwB,OAAO,CAAA;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,UAAU,QAAA,EAA0C;AACxD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,eAAe,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EACjE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,MAAM,QACJ,OAAA,EAC6B;AAC7B,IAAA,MAAM,KAAA,GAAQ,QAAA;AACd,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,KAAA,EAAQ,KAAK,aAAa,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,CAAA;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,aAAA,GAAgD;AACpD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,CAAA;AAAA,EACxC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,WAAA,GAA8D;AAClE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,eAAA,EAAiB,EAAE,CAAA;AAAA,EAC3C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAA,GAA8B;AAClC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,YAAY,CAAA;AAAA,EACnC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,YAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,eAAe,CAAA;AAAA,EACtC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,SAAA,GAAwC;AAC5C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,aAAa,CAAA;AAAA,EACpC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,cAAA,GAAgD;AACpD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,0BAA0B,CAAA;AAAA,EACjD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,kBAAkB,IAAA,EAA+C;AACrE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,8BAA8B,eAAA,CAAgB,IAAI,CAAC,CAAA,CAAE,CAAA;AAAA,EAC5E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,kBAAkB,OAAA,EAAyD;AAC/E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,OAAO,CAAA;AAAA,EAC3D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,oBAAoB,OAAA,EAAkD;AAC1E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,OAAO,CAAA;AAAA,EAC7D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,OAAO,KAAA,EAAwC;AACnD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,aAAa,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EAC5D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,MAAM,UAAA,CAAW,KAAA,EAAe,OAAA,EAAyD;AACvF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,YAAA,EAAe,gBAAgB,KAAK,CAAC,SAAS,OAAO,CAAA;AAAA,EAC7E;AACF,CAAA;;;ACnLO,IAAM,aAAN,MAAiB;AAAA,EACtB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAU7B,MAAM,MAAA,CACJ,IAAA,EACA,QAAA,EACA,QAAA,EAC2B;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,cAAA,EAAgB,IAAA,EAAM,UAAU,QAAQ,CAAA;AAAA,EAClE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAI,GAAA,EAAqC;AAC7C,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,UAAA,EAAa,gBAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,EAAE,CAAA;AAAA,EAC/D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAM,GAAA,EAAqC;AAC/C,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,eAAe,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAE,CAAA;AAAA,EAC/D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAQ,GAAA,EAA2B;AACvC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAE,CAAA;AAAA,EAC3D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAW,GAAA,EAA2B;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,SAAS,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAE,CAAA;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,YAAY,GAAA,EAAwC;AACxD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAE,CAAA;AAAA,EAC/D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAA,GAAyC;AAC7C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,YAAY,CAAA;AAAA,EACnC;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAA,GAAyC;AAC7C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,cAAc,CAAA;AAAA,EACrC;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,eAAA,GAAqD;AACzD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,eAAe,CAAA;AAAA,EACtC;AACF,CAAA;;;AC0EO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,cAAc,OAAA,EAA2E;AAC7F,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,OAAO,CAAA;AAAA,EAC7D;AAAA;AAAA,EAGA,MAAM,WAAW,OAAA,EAAqE;AACpF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,yBAAA,EAA2B,OAAO,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,YAAY,OAAA,EAAuE;AACvF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,OAAO,CAAA;AAAA,EAC3D;AAAA;AAAA,EAGA,MAAM,cAAc,OAAA,EAA2E;AAC7F,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,OAAO,CAAA;AAAA,EAC7D;AAAA;AAAA,EAGA,MAAM,YAAY,OAAA,EAAuE;AACvF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,OAAO,CAAA;AAAA,EAC3D;AAAA;AAAA,EAGA,MAAM,UAAU,OAAA,EAAmE;AACjF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,wBAAA,EAA0B,OAAO,CAAA;AAAA,EACzD;AACF,CAAA;;;AC7IO,IAAM,2BAAN,MAA+B;AAAA,EAgBpC,WAAA,CAA6B,MAAkB,OAAA,EAAqB;AAAvC,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAC3B,IAAA,IAAA,CAAK,GAAA,GAAM,IAAI,eAAA,CAAgB,OAAO,CAAA;AAAA,EACxC;AAAA,EAF6B,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAFb,GAAA;AAAA;AAAA,EAOhB,MAAM,mBAAmB,OAAA,EAAkE;AACzF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,uBAAA,EAAyB,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EAChF;AAAA;AAAA,EAGA,MAAM,oBAAoB,OAAA,EAAmE;AAC3F,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,wBAAA,EAA0B,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EACjF;AAAA;AAAA,EAGA,MAAM,6BACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,kCAAA,EAAoC,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EAC3F;AAAA;AAAA,EAGA,MAAM,8BACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,mCAAA,EAAqC,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EAC5F;AAAA;AAAA,EAGA,MAAM,iBAAiB,OAAA,EAAgE;AACrF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,qBAAA,EAAuB,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EAC9E;AACF,CAAA;;;AC9BO,IAAM,yBAAN,MAA6B;AAAA,EAClC,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,iBAAiB,OAAA,EAAgE;AACrF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,oBAAA,EAAsB,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,MAAA,EAAQ,CAAA;AAAA,EAC3E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,oBACJ,OAAA,EACgC;AAChC,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,6BAAA,EAA+B,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,MAAA,EAAQ,CAAA;AAAA,EACpF;AACF,CAAA;;;AC3EO,IAAM,2BAAN,MAA+B;AAAA,EACpC,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,yBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,8BAAA,EAAgC,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EACvF;AACF,CAAA;;;ACYO,IAAM,6BAAN,MAAiC;AAAA,EACtC,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,oBAAoB,OAAA,EAAmE;AAC3F,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,yBAAA,EAA2B,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,UAAA,EAAY,CAAA;AAAA,EACpF;AAAA;AAAA,EAGA,MAAM,wBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,6BAAA,EAA+B,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,UAAA,EAAY,CAAA;AAAA,EACxF;AACF,CAAA;;;ACbO,IAAM,qBAAN,MAAyB;AAAA,EAC9B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,OAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,OAAO,CAAA;AAAA,EAC9B;AAAA;AAAA,EAGA,MAAM,gBAAgB,OAAA,EAA+D;AACnF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AAAA;AAAA,EAGA,MAAM,eAAe,OAAA,EAA8D;AACjF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AAAA;AAAA,EAGA,MAAM,eAAe,OAAA,EAA8D;AACjF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AAAA;AAAA,EAGA,MAAM,mBAAmB,OAAA,EAAkE;AACzF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,uBAAA,EAAyB,OAAO,CAAA;AAAA,EACxD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,2BACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gCAAA,EAAkC,OAAO,CAAA;AAAA,EACjE;AAAA;AAAA,EAGA,MAAM,sBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,2BAAA,EAA6B,OAAO,CAAA;AAAA,EAC5D;AAAA;AAAA,EAGA,MAAM,gCACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC,OAAO,CAAA;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,yBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,8BAAA,EAAgC,OAAO,CAAA;AAAA,EAC/D;AAAA;AAAA,EAGA,MAAM,mBAAmB,OAAA,EAAkE;AACzF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,uBAAA,EAAyB,OAAO,CAAA;AAAA,EACxD;AAAA;AAAA,EAGA,MAAM,iBAAiB,OAAA,EAAgE;AACrF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qBAAA,EAAuB,OAAO,CAAA;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,iBAAiB,OAAA,EAAgE;AACrF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qBAAA,EAAuB,OAAO,CAAA;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,sBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,OAAO,CAAA;AAAA,EAC3D;AAAA;AAAA,EAGA,MAAM,kBAAkB,OAAA,EAAiE;AACvF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sBAAA,EAAwB,OAAO,CAAA;AAAA,EACvD;AAAA;AAAA,EAGA,MAAM,oBAAoB,OAAA,EAAmE;AAC3F,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,wBAAA,EAA0B,OAAO,CAAA;AAAA,EACzD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,qBAAqB,OAAA,EAAoE;AAC7F,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,yBAAA,EAA2B,OAAO,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,uBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,2BAAA,EAA6B,OAAO,CAAA;AAAA,EAC5D;AACF,CAAA;;;AC5IO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQ7B,MAAM,QAAA,CACJ,OAAA,EACA,OAAA,EACmC;AACnC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,oBAAA,EAAuB,eAAA,CAAgB,OAAO,CAAC,CAAA,CAAA;AAAA,MAC/C,WAAW;AAAC,KACd;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAI,UAAA,EAA2C;AACnD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CACJ,OAAA,EACA,UAAA,EAC+B;AAC/B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,UAAA,EAAY,SAAS,MAAA,EAAW,MAAA,CAAO,IAAI,MAAA,EAAQ,MAAA,CAAO,UAAA,CAAW,IAAI,CAAC,CAAA;AAC9E,IAAA,IAAI,UAAA,EAAY,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,UAAA,CAAW,KAAK,CAAC,CAAA;AACjF,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,iBAAA,EAAoB,gBAAgB,OAAO,CAAC,GAAG,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KACnE;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,QAAA,CAAS,UAAA,EAAoB,MAAA,EAAuC;AACxE,IAAA,MAAM,SAAS,MAAA,GAAS,CAAA,QAAA,EAAW,kBAAA,CAAmB,MAAM,CAAC,CAAA,CAAA,GAAK,EAAA;AAClE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,WAAA,EAAc,eAAA,CAAgB,UAAU,CAAC,YAAY,MAAM,CAAA;AAAA,KAC7D;AAAA,EACF;AACF,CAAA;;;ACnEA,IAAM,kBAAA,GAAqB,GAAA;AAC3B,IAAM,aAAA,GAAgB,kCAAA;AAQf,IAAM,4BAAA,GAAN,cAA2C,KAAA,CAAM;AAAA,EACtD,WAAA,CACE,OAAA,EACgB,UAAA,EACA,OAAA,EAChB;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHG,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGhB,IAAA,IAAA,CAAK,IAAA,GAAO,8BAAA;AAAA,EACd;AAAA,EALkB,UAAA;AAAA,EACA,OAAA;AAKpB,CAAA;AAEO,IAAM,uBAAA,GAAN,MAAM,wBAAA,CAAwB;AAAA;AAAA,EAElB,OAAA;AAAA,EACA,SAAA;AAAA,EACA,MAAA;AAAA,EACA,SAAA;AAAA,EACA,SAAA;AAAA;AAAA,EAGA,IAAA;AAAA,EAEjB,YAAY,MAAA,EAA8D;AACxE,IAAA,IAAI,UAAU,MAAA,EAAQ;AACpB,MAAA,IAAA,CAAK,OAAO,MAAA,CAAO,IAAA;AACnB,MAAA,IAAA,CAAK,SAAA,GAAY,kBAAA;AACjB,MAAA;AAAA,IACF;AACA,IAAA,IAAI,CAAC,OAAO,OAAA,EAAS;AACnB,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,0EAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,IAAA,CAAK,OAAA,GAAU,MAAA,CAAO,OAAA,CAAQ,OAAA,CAAQ,QAAQ,EAAE,CAAA;AAChD,IAAA,IAAA,CAAK,YAAY,MAAA,CAAO,SAAA;AACxB,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AACrB,IAAA,IAAA,CAAK,SAAA,GAAY,OAAO,SAAA,IAAa,kBAAA;AACrC,IAAA,IAAA,CAAK,YAAY,MAAA,CAAO,SAAA;AAAA,EAC1B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAO,SAAS,IAAA,EAA2C;AACzD,IAAA,OAAO,IAAI,wBAAA,CAAwB,EAAE,IAAA,EAAM,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,WAAW,MAAA,EAAwE;AACvF,IAAA,IAAA,CAAK,eAAe,MAAM,CAAA;AAE1B,IAAA,IAAI,KAAK,IAAA,EAAM;AAGb,MAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAA8B,2BAAA,EAA6B,MAAM,CAAA;AAAA,IACpF;AACA,IAAA,OAAO,IAAA,CAAK,gBAAgB,MAAM,CAAA;AAAA,EACpC;AAAA,EAEQ,eAAe,MAAA,EAA4C;AACjE,IAAA,IAAI,CAAC,MAAA,IAAU,OAAO,MAAA,KAAW,QAAA,EAAU;AACzC,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,+DAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,MAAM,EAAE,KAAA,EAAO,QAAA,EAAU,OAAA,EAAS,aAAY,GAAI,MAAA;AAClD,IAAA,IAAI,KAAA,KAAU,QAAA,IAAY,KAAA,KAAU,MAAA,IAAU,UAAU,UAAA,EAAY;AAClE,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,CAAA,uDAAA,EAA0D,MAAA,CAAO,KAAK,CAAC,CAAA,qCAAA,CAAA;AAAA,QACvE;AAAA,OACF;AAAA,IACF;AACA,IAAA,IAAI,OAAO,QAAA,KAAa,QAAA,IAAY,QAAA,CAAS,WAAW,CAAA,EAAG;AACzD,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,yEAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,IAAI,OAAO,OAAA,KAAY,QAAA,IAAY,OAAA,CAAQ,WAAW,CAAA,EAAG;AACvD,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,wEAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,IACE,OAAO,gBAAgB,QAAA,IACvB,CAAC,OAAO,SAAA,CAAU,WAAW,CAAA,IAC7B,WAAA,IAAe,CAAA,EACf;AACA,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,2FAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAc,gBACZ,MAAA,EACkC;AAClC,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,aAAa,CAAA,CAAA;AAC3C,IAAA,MAAM,OAAA,GAAkC;AAAA,MACtC,cAAA,EAAgB,kBAAA;AAAA,MAChB,MAAA,EAAQ;AAAA,KACV;AACA,IAAA,IAAI,KAAK,SAAA,EAAW,OAAA,CAAQ,aAAA,GAAgB,CAAA,OAAA,EAAU,KAAK,SAAS,CAAA,CAAA;AACpE,IAAA,IAAI,IAAA,CAAK,MAAA,EAAQ,OAAA,CAAQ,WAAW,IAAI,IAAA,CAAK,MAAA;AAE7C,IAAA,MAAM,UAAU,IAAA,CAAK,SAAA,KAAc,OAAO,KAAA,KAAU,cAAc,KAAA,GAAQ,MAAA,CAAA;AAC1E,IAAA,IAAI,CAAC,OAAA,EAAS;AACZ,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,gFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAEA,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,QAAQ,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,SAAS,CAAA;AAEjE,IAAA,IAAI,QAAA;AACJ,IAAA,IAAI;AACF,MAAA,QAAA,GAAW,MAAM,QAAQ,GAAA,EAAK;AAAA,QAC5B,MAAA,EAAQ,MAAA;AAAA,QACR,OAAA;AAAA,QACA,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,MAAM,CAAA;AAAA,QAC3B,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAAA,IACH,SAAS,GAAA,EAAK;AACZ,MAAA,YAAA,CAAa,KAAK,CAAA;AAClB,MAAA,MAAM,UAAU,GAAA,YAAe,KAAA,GAAQ,GAAA,CAAI,OAAA,GAAU,OAAO,GAAG,CAAA;AAC/D,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,6CAA6C,OAAO,CAAA,CAAA;AAAA,QACpD,CAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,YAAA,CAAa,KAAK,CAAA;AAElB,IAAA,IAAI,IAAA;AACJ,IAAA,MAAM,IAAA,GAAO,MAAM,QAAA,CAAS,IAAA,EAAK;AACjC,IAAA,IAAI,IAAA,CAAK,SAAS,CAAA,EAAG;AACnB,MAAA,IAAI;AACF,QAAA,IAAA,GAAO,IAAA,CAAK,MAAM,IAAI,CAAA;AAAA,MACxB,SAAS,GAAA,EAAK;AACZ,QAAA,MAAM,UAAU,GAAA,YAAe,KAAA,GAAQ,GAAA,CAAI,OAAA,GAAU,OAAO,GAAG,CAAA;AAC/D,QAAA,MAAM,IAAI,4BAAA;AAAA,UACR,CAAA,mDAAA,EAAsD,QAAA,CAAS,MAAM,CAAA,GAAA,EAAM,OAAO,CAAA,CAAA;AAAA,UAClF,QAAA,CAAS,MAAA;AAAA,UACT,EAAE,KAAK,IAAA;AAAK,SACd;AAAA,MACF;AAAA,IACF;AAEA,IAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,MAAA,MAAM,MAAA,GACJ,IAAA,IAAQ,OAAO,IAAA,KAAS,QAAA,IAAY,SAAA,IAAc,IAAA,GAC9C,MAAA,CAAQ,IAAA,CAAa,OAAO,CAAA,GAC5B,CAAA,KAAA,EAAQ,SAAS,MAAM,CAAA,CAAA;AAC7B,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,4BAA4B,MAAM,CAAA,CAAA;AAAA,QAClC,QAAA,CAAS,MAAA;AAAA,QACT;AAAA,OACF;AAAA,IACF;AAEA,IAAA,OAAO,IAAA;AAAA,EACT;AACF,CAAA;;;AC/LO,IAAM,mBAAN,MAAuB;AAAA,EAC5B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,SAAS,OAAA,EAAuE;AACpF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sBAAA,EAAwB,OAAO,CAAA;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAU,YAAA,EAAyD;AACvE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,eAAe,eAAA,CAAgB,YAAY,CAAC,CAAA,OAAA,CAAS,CAAA;AAAA,EAC5E;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,iBAAiB,YAAA,EAAyD;AAC9E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,YAAA,EAAe,gBAAgB,YAAY,CAAC,CAAA,YAAA,CAAA,EAAgB,EAAE,CAAA;AAAA,EACtF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAW,QAAA,EAAqD;AACpE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,uBAAuB,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EACzE;AACF,CAAA;;;ACtBO,IAAM,mBAAN,MAAuB;AAAA,EAC5B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAY7B,MAAM,SAAS,MAAA,EAAwE;AACrF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAiC,sBAAA,EAAwB,MAAM,CAAA;AAAA,EAClF;AACF,CAAA;;;AC7BA,SAAS,WAAW,MAAA,EAA6D;AAC/E,EAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,EAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAA,EAAG;AACjD,IAAA,IAAI,UAAU,MAAA,EAAW;AACzB,IAAA,MAAA,CAAO,GAAA,CAAI,GAAA,EAAK,MAAA,CAAO,KAAK,CAAC,CAAA;AAAA,EAC/B;AACA,EAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,EAAA,OAAO,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAA;AACzB;AAEO,IAAM,qBAAN,MAAyB;AAAA,EAC9B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,SAAS,WAAA,EAAiD;AAC9D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,qBAAA,EAAwB,eAAA,CAAgB,WAAW,CAAC,CAAA;AAAA,KACtD;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,mBACJ,WAAA,EACqC;AACrC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,gCAAA,EAAmC,eAAA,CAAgB,WAAW,CAAC,CAAA;AAAA,KACjE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,cAAA,CACJ,WAAA,EACA,IAAA,GAA6B,EAAC,EACgB;AAC9C,IAAA,MAAM,EAAA,GAAK,WAAW,EAAE,KAAA,EAAO,KAAK,KAAA,EAAO,MAAA,EAAQ,IAAA,CAAK,MAAA,EAAQ,CAAA;AAChE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,4BAAA,EAA+B,eAAA,CAAgB,WAAW,CAAC,GAAG,EAAE,CAAA;AAAA,KAClE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,WAAA,CACJ,WAAA,EACA,IAAA,GAAiC,EAAC,EACL;AAC7B,IAAA,MAAM,EAAA,GAAK,WAAW,EAAE,KAAA,EAAO,KAAK,KAAA,EAAO,KAAA,EAAO,IAAA,CAAK,KAAA,EAAO,CAAA;AAC9D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,wBAAA,EAA2B,eAAA,CAAgB,WAAW,CAAC,GAAG,EAAE,CAAA;AAAA,KAC9D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,kBAAkB,WAAA,EAAkD;AACxE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,+BAAA,EAAkC,eAAA,CAAgB,WAAW,CAAC,CAAA;AAAA,KAChE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAU,WAAA,EAAmD;AACjE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,WAAW,CAAC,CAAA;AAAA,KACvD;AAAA,EACF;AACF,CAAA;;;AC7BA,SAASC,YAAW,MAAA,EAA6D;AAC/E,EAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,EAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAA,EAAG;AACjD,IAAA,IAAI,UAAU,MAAA,EAAW;AACzB,IAAA,MAAA,CAAO,GAAA,CAAI,GAAA,EAAK,MAAA,CAAO,KAAK,CAAC,CAAA;AAAA,EAC/B;AACA,EAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,EAAA,OAAO,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAA;AACzB;AAEA,SAAS,YAAY,KAAA,EAAuB;AAC1C,EAAA,OAAO,gBAAgB,KAAK,CAAA;AAC9B;AAEA,SAAS,iBAAiB,UAAA,EAA4B;AACpD,EAAA,OAAO,gBAAgB,UAAU,CAAA;AACnC;AAEA,SAAS,cAAc,OAAA,EAAyB;AAC9C,EAAA,OAAO,gBAAgB,OAAO,CAAA;AAChC;AAyBO,IAAM,YAAN,MAAgB;AAAA,EAIrB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAC3B,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,kBAAA,CAAmB,IAAI,CAAA;AAAA,EAC9C;AAAA,EAF6B,IAAA;AAAA;AAAA,EAFb,SAAA;AAAA;AAAA;AAAA,EAShB,MAAM,OAAO,OAAA,EAAuD;AAClE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,aAAA,EAAe,OAAO,CAAA;AAAA,EAC9C;AAAA;AAAA,EAGA,MAAM,IAAA,CAAK,IAAA,GAAwB,EAAC,EAA8B;AAChE,IAAA,MAAM,EAAA,GAAKA,YAAW,EAAE,MAAA,EAAQ,KAAK,MAAA,EAAQ,SAAA,EAAW,IAAA,CAAK,SAAA,EAAW,CAAA;AACxE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,SAAA,EAAY,EAAE,CAAA,CAAE,CAAA;AAAA,EACvC;AAAA;AAAA,EAGA,MAAM,IAAI,KAAA,EAAmC;AAC3C,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACnD;AAAA;AAAA,EAGA,MAAM,iBAAiB,KAAA,EAAkD;AACvE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,eAAA,CAAiB,CAAA;AAAA,EAClE;AAAA;AAAA;AAAA,EAKA,MAAM,aAAA,CACJ,KAAA,EACA,IAAA,GAA6B,EAAC,EACE;AAChC,IAAA,MAAM,EAAA,GAAKA,YAAW,EAAE,MAAA,EAAQ,KAAK,MAAA,EAAQ,QAAA,EAAU,IAAA,CAAK,QAAA,EAAU,CAAA;AACtE,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,CAAA,UAAA,EAAa,EAAE,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA,EAGA,MAAM,cAAA,CACJ,KAAA,EACA,OAAA,EACiC;AACjC,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,cAAc,OAAO,CAAA;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,eAAA,CACJ,KAAA,EACA,OAAA,EACkC;AAClC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,KAAA,EAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,kBAAA,CAAA;AAAA,MAC1B;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,KAAA,EACA,UAAA,EACA,OAAA,EACuC;AACvC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,KAAA,CAAA;AAAA,MACpE;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,WAAA,CACJ,KAAA,EACA,UAAA,EACA,OAAA,EAC8B;AAC9B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,aAAA,CAAA;AAAA,MACpE;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAA,CACJ,KAAA,EACA,UAAA,EACA,OAAA,EAC2B;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,YAAA,CAAA;AAAA,MACpE;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,IAAA,CACJ,KAAA,EACA,UAAA,EACA,OAAA,EAC2B;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,KAAA,CAAA;AAAA,MACpE;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,OAAA,CACJ,KAAA,EACA,UAAA,EACkC;AAClC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,QAAA,CAAA;AAAA,MACpE;AAAC,KACH;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,QAAA,CACJ,KAAA,EACA,UAAA,EACA,IAAA,GAAwB,EAAC,EACG;AAC5B,IAAA,MAAM,EAAA,GAAKA,YAAW,EAAE,KAAA,EAAO,KAAK,KAAA,EAAO,MAAA,EAAQ,IAAA,CAAK,MAAA,EAAQ,CAAA;AAChE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,cAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,MAAA,EAAS,EAAE,CAAA;AAAA,KACjF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAA,CACJ,KAAA,EACA,UAAA,EACkC;AAClC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,QAAA;AAAA,KACtE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,aAAA,CACJ,KAAA,EACA,UAAA,EACiC;AACjC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,YAAA;AAAA,KACtE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,cAAA,CACJ,KAAA,EACA,UAAA,EACA,YAAA,EACkB;AAClB,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,KAAA,EAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,OAAA,EAAU,aAAA,CAAc,YAAY,CAAC,CAAA;AAAA,KAC3G;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,WAAA,CACJ,KAAA,EACA,UAAA,EAC4B;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA;AAAA,KACtE;AAAA,EACF;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CACJ,KAAA,EACA,KAAA,EACmC;AACnC,IAAA,MAAM,EAAA,GAAKA,WAAAA,CAAW,EAAE,KAAA,EAAO,CAAA;AAC/B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,CAAA,SAAA,EAAY,EAAE,CAAA,CAAE,CAAA;AAAA,EACjE;AAAA;AAAA,EAGA,MAAM,kBAAA,CACJ,KAAA,EACA,IAAA,GAA+B,EAAC,EACE;AAClC,IAAA,MAAM,KAAKA,WAAAA,CAAW;AAAA,MACpB,OAAO,IAAA,CAAK,KAAA;AAAA,MACZ,OAAO,IAAA,CAAK,KAAA;AAAA,MACZ,QAAQ,IAAA,CAAK;AAAA,KACd,CAAA;AACD,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,CAAA,iBAAA,EAAoB,EAAE,CAAA,CAAE,CAAA;AAAA,EACzE;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CACJ,KAAA,EACA,IAAA,GAA2B,EAAC,EACE;AAC9B,IAAA,MAAM,KAAKA,WAAAA,CAAW,EAAE,MAAA,EAAQ,IAAA,CAAK,QAAQ,CAAA;AAC7C,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,CAAA,QAAA,EAAW,EAAE,CAAA,CAAE,CAAA;AAAA,EAChE;AAAA;AAAA,EAGA,MAAM,SAAA,CACJ,KAAA,EACA,OAAA,EAC4B;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,YAAY,OAAO,CAAA;AAAA,EACrE;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,KAAA,EACA,OAAA,EAC+B;AAC/B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,SAAA,EAAY,aAAA,CAAc,OAAO,CAAC,CAAA;AAAA,KAC9D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,cAAA,CACJ,KAAA,EACA,OAAA,EACA,OAAA,EAC2B;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,SAAA,EAAY,aAAA,CAAc,OAAO,CAAC,CAAA,UAAA,CAAA;AAAA,MAC5D;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,KAAA,EACA,OAAA,EAC4B;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,SAAA,EAAY,aAAA,CAAc,OAAO,CAAC,CAAA,IAAA;AAAA,KAC9D;AAAA,EACF;AACF,CAAA;;;ACpTO,IAAM,mBAAN,MAAuB;AAAA,EAC5B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAS7B,MAAM,OAAO,MAAA,EAAgE;AAC3E,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA;AAAA,MAC7B,oBAAA;AAAA,MACA;AAAA,QACE,WAAW,MAAA,CAAO,SAAA;AAAA,QAClB,OAAO,MAAA,CAAO;AAAA;AAChB,KACF;AAKA,IAAA,IAAI,MAAA,KAAW,QAAW,OAAO,IAAA;AACjC,IAAA,OAAO,MAAA;AAAA,EACT;AACF,CAAA;;;ACAO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,QAAA,CAAS,OAAA,EAA+B,IAAA,EAA4C;AACxF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,8BAAA,EAAgC,SAAS,IAAI,CAAA;AAAA,EACrE;AAAA;AAAA,EAGA,MAAM,GAAA,CAAI,OAAA,EAAiB,IAAA,EAA4C;AACrE,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,IAAI,IAAI,CAAA;AAAA,EAC9E;AAAA;AAAA,EAGA,MAAM,KAAK,IAAA,EAAyE;AAClF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,qBAAA,EAAuB,IAAI,CAAA;AAAA,EAClD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,IAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EAC0E;AAC1E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,KAAA,CAAA,EAAS,OAAA,EAAS,IAAI,CAAA;AAAA,EAC7F;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,KAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EAC2C;AAC3C,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,MAAA,CAAA,EAAU,OAAA,EAAS,IAAI,CAAA;AAAA,EAC9F;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,QAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EAC2C;AAC3C,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,SAAA,CAAA,EAAa,OAAA,EAAS,IAAI,CAAA;AAAA,EACjG;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,OAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EACmD;AACnD,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,QAAA,CAAA,EAAY,OAAA,EAAS,IAAI,CAAA;AAAA,EAChG;AAAA;AAAA,EAGA,MAAM,KAAA,CAAM,OAAA,EAAiB,IAAA,EAAuE;AAClG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,eAAA,CAAgB,OAAO,CAAC,CAAA,MAAA,CAAA,EAAU,EAAC,EAAG,IAAI,CAAA;AAAA,EACzF;AAAA;AAAA,EAGA,MAAM,MAAA,CAAO,OAAA,EAAiB,IAAA,EAAuE;AACnG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,eAAA,CAAgB,OAAO,CAAC,CAAA,OAAA,CAAA,EAAW,EAAC,EAAG,IAAI,CAAA;AAAA,EAC1F;AAAA;AAAA,EAGA,MAAM,MAAA,CAAO,OAAA,EAAiB,IAAA,EAAuE;AACnG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,eAAA,CAAgB,OAAO,CAAC,CAAA,OAAA,CAAA,EAAW,EAAC,EAAG,IAAI,CAAA;AAAA,EAC1F;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,aAAA,CAAc,OAAA,EAAiB,IAAA,EAAqD;AACxF,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,kBAAkB,IAAI,CAAA;AAAA,EAC5F;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,WAAA,CAAY,OAAA,EAAiB,KAAA,EAA4B,IAAA,EAA4C;AACzG,IAAA,OAAO,IAAA,CAAK,KAAK,KAAA,CAAM,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,MAAA,CAAA,EAAU,KAAA,EAAO,IAAI,CAAA;AAAA,EAC7F;AAAA;AAAA,EAGA,MAAM,SAAA,CAAU,OAAA,EAAiB,IAAA,EAA0E;AACzG,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,WAAW,IAAI,CAAA;AAAA,EACrF;AAAA;AAAA,EAGA,MAAM,WAAA,CAAY,OAAA,EAAiB,IAAA,EAA+D;AAChG,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,aAAa,IAAI,CAAA;AAAA,EACvF;AAAA;AAAA,EAGA,MAAM,OAAA,CAAQ,OAAA,EAAiB,WAAA,EAAqB,IAAA,EAAuD;AACzG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,SAAA,EAAY,eAAA,CAAgB,WAAW,CAAC,CAAA,CAAA,EAAI,IAAI,IAAI,CAAA;AAAA,EAC3H;AAAA;AAAA,EAGA,MAAM,MAAA,CAAO,OAAA,EAAiB,WAAA,EAAqB,IAAA,EAAuD;AACxG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,QAAA,EAAW,eAAA,CAAgB,WAAW,CAAC,CAAA,CAAA,EAAI,IAAI,IAAI,CAAA;AAAA,EAC1H;AACF,CAAA;;;AC9JO,IAAM,mBAAN,MAAuB;AAAA,EAC5B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAmB7B,MAAM,KAAK,OAAA,EAAqD;AAC9D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mCAAA,EAAqC,OAAO,CAAA;AAAA,EACpE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAuBA,MAAM,gBAAgB,KAAA,EAA0C;AAC9D,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,iBAAA,CAAA;AAAA,MACtD;AAAC,KACH;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAkBA,MAAM,uBACJ,KAAA,EAC6C;AAC7C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,oBAAA,CAAA;AAAA,MACtD;AAAC,KACH;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,cAAA,CACJ,KAAA,EACA,MAAA,EACA,WAAW,eAAA,EAC0B;AAIrC,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,SAAA,CAAA;AAAA,MACtD,MAAA;AAAA,MACA,QAAA;AAAA,MACA,MAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,MAAA,CAAO,KAAA,EAAe,OAAA,EAAyD;AACnF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,6BAAA,EAAgC,gBAAgB,KAAK,CAAC,WAAW,OAAO,CAAA;AAAA,EAChG;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,QAAA,CAAS,KAAA,EAAe,OAAA,EAA2D;AACvF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,6BAAA,EAAgC,gBAAgB,KAAK,CAAC,aAAa,OAAO,CAAA;AAAA,EAClG;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAO,KAAA,EAA2C;AACtD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,gCAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,OAAA,CAAS,CAAA;AAAA,EACtF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAA,GAAqC;AACzC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,CAAA;AAAA,EAC3C;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAI,KAAA,EAAyC;AACjD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,sBAAsB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACrE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,MAAA,CAAO,KAAA,EAAe,OAAA,EAA+D;AACzF,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,mBAAA,EAAsB,gBAAgB,KAAK,CAAC,IAAI,OAAO,CAAA;AAAA,EAC9E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAO,KAAA,EAA8C;AACzD,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,sBAAsB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACxE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAQ,KAAA,EAA8D;AAC1E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,mBAAA,EAAsB,gBAAgB,KAAK,CAAC,CAAA,QAAA,CAAA,EAAY,EAAE,CAAA;AAAA,EAClF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAO,KAAA,EAA8D;AACzE,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,mBAAA,EAAsB,gBAAgB,KAAK,CAAC,CAAA,OAAA,CAAA,EAAW,EAAE,CAAA;AAAA,EACjF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAA,GAIH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,0BAA0B,CAAA;AAAA,EACjD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAoBA,MAAM,UAAA,CAAW,KAAA,EAAe,UAAA,EAAqD;AACnF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,gCAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,QAAA,CAAA,EAAY;AAAA,MACrF;AAAA,KACD,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,WAAW,KAAA,EAAgC;AAC/C,IAAA,OAAO,KAAK,IAAA,CAAK,OAAA,CAAQ,gCAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,QAAA,CAAU,CAAA;AAAA,EAC3F;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAU,KAAA,EAA+C;AAC7D,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,uBAAA,CAAA;AAAA,MACtD;AAAC,KACH;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,SAAA,CAAU,KAAA,EAAe,OAAA,EAAiD;AAC9E,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,uBAAA,CAAA;AAAA,MACtD,EAAE,OAAA;AAAQ,KACZ;AAAA,EACF;AACF,CAAA;;;ACxPO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,OAAO,OAAA,EAA6D;AACxE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gBAAA,EAAkB,OAAO,CAAA;AAAA,EACjD;AAAA;AAAA,EAGA,MAAM,KAAK,OAAA,EAA4D;AACrE,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,SAAS,MAAA,EAAQ,MAAA,CAAO,MAAA,CAAO,QAAA,EAAU,QAAQ,MAAM,CAAA;AAC3D,IAAA,IAAI,SAAS,WAAA,EAAa,MAAA,CAAO,MAAA,CAAO,aAAA,EAAe,QAAQ,WAAW,CAAA;AAC1E,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,YAAA,EAAe,KAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA,CAAE,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,IAAI,QAAA,EAAyC;AACjD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,WAAW,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EAC7D;AAAA;AAAA,EAGA,MAAM,IAAA,CAAK,QAAA,EAAkB,OAAA,EAA2C;AACtE,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,QAAA,EAAW,gBAAgB,QAAQ,CAAC,SAAS,OAAO,CAAA;AAAA,EAC5E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,MAAA,CAAO,QAAA,EAAkB,OAAA,EAA6C;AAC1E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,QAAA,EAAW,gBAAgB,QAAQ,CAAC,WAAW,OAAO,CAAA;AAAA,EAC9E;AAAA;AAAA,EAGA,MAAM,SAAA,CAAU,QAAA,EAAkB,OAAA,EAA6C;AAC7E,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,WAAW,eAAA,CAAgB,QAAQ,CAAC,CAAA,QAAA,EAAW,eAAA,CAAgB,OAAO,CAAC,CAAA;AAAA,KACzE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAU,QAAA,EAAyC;AACvD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,WAAW,eAAA,CAAgB,QAAQ,CAAC,CAAA,OAAA,CAAS,CAAA;AAAA,EACpE;AAAA;AAAA,EAGA,MAAM,UAAA,CACJ,QAAA,EACA,OAAA,EAC6B;AAC7B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,OAAO,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC9E,IAAA,IAAI,OAAA,EAAS,WAAW,MAAA,EAAW,MAAA,CAAO,OAAO,QAAA,EAAU,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAC,CAAA;AACjF,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,QAAA,EAAW,gBAAgB,QAAQ,CAAC,UAAU,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KAClE;AAAA,EACF;AACF,CAAA;;;ACtEO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,UAAA,GAA+C;AACnD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,CAAA;AAAA,EAC3C;AAAA;AAAA,EAGA,MAAM,eAAe,KAAA,EAAqD;AACxE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACzE;AAAA;AAAA,EAGA,MAAM,UAAA,CAAW,KAAA,EAAe,IAAA,EAAiD;AAC/E,IAAA,MAAM,EAAA,GAAK,IAAA,KAAS,MAAA,GAAY,CAAA,MAAA,EAAS,IAAI,CAAA,CAAA,GAAK,EAAA;AAClD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,WAAW,EAAE,CAAA;AAAA,KAC/D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,SAAA,CACJ,KAAA,EACA,OAAA,EACiC;AACjC,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,OAAO,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC9E,IAAA,IAAI,OAAA,EAAS,WAAW,MAAA,EAAW,MAAA,CAAO,OAAO,QAAA,EAAU,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAC,CAAA;AACjF,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,QAAQ,KAAK,CAAA;AACxD,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,QAAQ,KAAK,CAAA;AACxD,IAAA,IAAI,SAAS,QAAA,EAAU,MAAA,CAAO,MAAA,CAAO,UAAA,EAAY,QAAQ,QAAQ,CAAA;AACjE,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,UAAU,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KAC9E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,SAAA,CAAU,KAAA,EAAe,UAAA,EAAsD;AACnF,IAAA,MAAM,EAAA,GAAK,UAAA,KAAe,MAAA,GAAY,CAAA,YAAA,EAAe,UAAU,CAAA,CAAA,GAAK,EAAA;AACpE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,UAAU,EAAE,CAAA;AAAA,KAC9D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,KAAA,EACA,OAAA,EACoC;AACpC,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,QAAQ,KAAK,CAAA;AACxD,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,QAAQ,KAAK,CAAA;AACxD,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,aAAa,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KACjF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,SAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,CAAA;AAAA,EACzC;AAAA;AAAA,EAGA,MAAM,QAAQ,MAAA,EAA+C;AAC3D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EACpE;AACF,CAAA;;;AC/EO,IAAM,iBAAN,MAAqB;AAAA,EAC1B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAO7B,MAAM,QAAQ,OAAA,EAAmD;AAC/D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAQ,OAAA,EAAmD;AAC/D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AACF,CAAA;;;AChCO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,QAAQ,OAAA,EAAiE;AAC7E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,iBAAA,EAAmB,OAAO,CAAA;AAAA,EAClD;AAAA;AAAA,EAGA,MAAM,cAAA,GAAkD;AACtD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,CAAA;AAAA,EAC3C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,aACJ,WAAA,EACmD;AACnD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,sBAAsB,eAAA,CAAgB,WAAW,CAAC,CAAA,CAAE,CAAA;AAAA,EAC3E;AAAA;AAAA,EAGA,MAAM,sBACJ,OAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,WAAW,eAAA,CAAgB,OAAO,CAAC,CAAA,WAAA,CAAa,CAAA;AAAA,EACvE;AACF,CAAA;;;ACzBO,IAAM,iBAAN,MAAqB;AAAA,EAC1B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,UAAA,CACJ,KAAA,EACA,SAAA,EACkC;AAClC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,qBAAqB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,SAAS,CAAC,CAAA;AAAA,KAC3E;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,QAAA,CACJ,KAAA,EACA,SAAA,EACgC;AAChC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,SAAS,CAAC,CAAA;AAAA,KACzE;AAAA,EACF;AACF,CAAA;;;ACsIO,IAAM,iBAAA,GAAN,MAAM,kBAAA,CAAkB;AAAA,EACrB,OAAA;AAAA,EACA,aAAA;AAAA,EACS,IAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAET,aAAA;AAAA;AAAA;AAAA,EAKQ,YAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,GAAA;AAAA;AAAA,EAEA,IAAA;AAAA;AAAA,EAEA,YAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,IAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,QAAA;AAAA;AAAA,EAEA,SAAA;AAAA;AAAA,EAEA,iBAAA;AAAA;AAAA,EAEA,UAAA;AAAA;AAAA,EAEA,UAAA;AAAA;AAAA,EAEA,GAAA;AAAA;AAAA,EAEA,UAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,WAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,SAAA;AAAA;AAAA,EAEA,QAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,QAAA;AAAA;AAAA,EAEA,SAAA;AAAA,EAEhB,YAAY,MAAA,EAAiC;AAC3C,IAAA,IAAA,CAAK,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAC7C,IAAA,IAAA,CAAK,OAAA,GAAU,iBAAA,CAAkB,MAAA,CAAO,gBAAA,EAAkB,KAAK,aAAa,CAAA;AAG5E,IAAA,IAAA,CAAK,OAAO,gBAAA,CAAiB;AAAA,MAC3B,OAAA,EAAS,CAAA,EAAG,IAAA,CAAK,OAAO,CAAA,OAAA,CAAA;AAAA,MACxB,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO;AAAA,KACjB,CAAA;AAGD,IAAA,IAAA,CAAK,SAAS,gBAAA,CAAiB;AAAA,MAC7B,OAAA,EAAS,CAAA,EAAG,IAAA,CAAK,OAAO,CAAA,oBAAA,CAAA;AAAA,MACxB,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO;AAAA,KACjB,CAAA;AAGD,IAAA,IAAA,CAAK,YAAA,GAAe,IAAI,kBAAA,CAAmB,IAAA,CAAK,IAAI,CAAA;AACpD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AACxC,IAAA,IAAA,CAAK,GAAA,GAAM,IAAI,SAAA,CAAU,IAAA,CAAK,IAAI,CAAA;AAClC,IAAA,IAAA,CAAK,IAAA,GAAO,IAAI,UAAA,CAAW,IAAA,CAAK,IAAI,CAAA;AACpC,IAAA,IAAA,CAAK,YAAA,GAAe,IAAI,kBAAA,CAAmB,IAAA,CAAK,MAAM,CAAA;AAItD,IAAA,IAAA,CAAK,SAAS,IAAI,wBAAA,CAAyB,IAAA,CAAK,MAAA,EAAQ,KAAK,IAAI,CAAA;AACjE,IAAA,IAAA,CAAK,IAAA,GAAO,IAAI,sBAAA,CAAuB,IAAA,CAAK,MAAM,CAAA;AAClD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,wBAAA,CAAyB,IAAA,CAAK,MAAM,CAAA;AACtD,IAAA,IAAA,CAAK,QAAA,GAAW,IAAI,0BAAA,CAA2B,IAAA,CAAK,MAAM,CAAA;AAC1D,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,IAAI,CAAA;AAC9C,IAAA,IAAA,CAAK,iBAAA,GAAoB,uBAAA,CAAwB,QAAA,CAAS,IAAA,CAAK,IAAI,CAAA;AACnE,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB,IAAA,CAAK,IAAI,CAAA;AAChD,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB,IAAA,CAAK,IAAI,CAAA;AAChD,IAAA,IAAA,CAAK,GAAA,GAAM,IAAI,SAAA,CAAU,IAAA,CAAK,IAAI,CAAA;AAClC,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB,IAAA,CAAK,IAAI,CAAA;AAOhD,IAAA,MAAM,WAAW,gBAAA,CAAiB;AAAA,MAChC,SAAS,IAAA,CAAK,OAAA;AAAA,MACd,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO;AAAA,KACjB,CAAA;AACD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,QAAQ,CAAA;AACvC,IAAA,IAAA,CAAK,WAAA,GAAc,IAAI,gBAAA,CAAiB,QAAQ,CAAA;AAChD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AACxC,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,IAAI,CAAA;AAC9C,IAAA,IAAA,CAAK,QAAA,GAAW,IAAI,cAAA,CAAe,IAAA,CAAK,IAAI,CAAA;AAC5C,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AACxC,IAAA,IAAA,CAAK,QAAA,GAAW,IAAI,cAAA,CAAe,IAAA,CAAK,IAAI,CAAA;AAC5C,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,IAAI,CAAA;AAAA,EAChD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,OAAO,QAAQ,GAAA,EAA4D;AACzE,IAAA,MAAM,OAAA,GAAU,IAAI,eAAe,CAAA;AACnC,IAAA,IAAI,CAAC,OAAA,EAAS;AACZ,MAAA,MAAM,IAAI,gBAAA,CAAiB,wDAAA,EAA0D,GAAG,CAAA;AAAA,IAC1F;AACA,IAAA,MAAM,UAAA,GAAa,IAAI,iBAAiB,CAAA;AACxC,IAAA,MAAM,UAAU,UAAA,GAAa,MAAA,CAAO,QAAA,CAAS,UAAA,EAAY,EAAE,CAAA,GAAI,MAAA;AAC/D,IAAA,OAAO,IAAI,kBAAA,CAAkB;AAAA,MAC3B,gBAAA,EAAkB,OAAA;AAAA,MAClB,MAAA,EAAQ,IAAI,mBAAmB,CAAA;AAAA,MAC/B,SAAA,EAAW,IAAI,WAAW,CAAA;AAAA,MAC1B,aAAA,EAAe,GAAA,CAAI,gBAAgB,CAAA,KAAM,MAAA;AAAA,MACzC,OAAA,EAAS,MAAA,CAAO,QAAA,CAAS,OAAO,IAAI,OAAA,GAAU;AAAA,KAC/C,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,aAAa,iBAAiB,MAAA,EAAmE;AAC/F,IAAA,MAAM,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAG9C,IAAA,MAAM,SAAA,GAAY,IAAI,wBAAA,CAAyB;AAAA,MAC7C,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,iBAAiB,MAAA,CAAO,eAAA;AAAA,MACxB,eAAe,MAAA,CAAO;AAAA,KACvB,CAAA;AAED,IAAA,MAAM,SAAA,GAAY,MAAM,SAAA,CAAU,kBAAA,EAAmB;AAErD,IAAA,IAAI,CAAC,SAAA,IAAa,CAAC,SAAA,CAAU,kBAAkB,WAAA,EAAa;AAC1D,MAAA,MAAM,IAAI,gBAAA;AAAA,QACR,0EAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAEA,IAAA,MAAM,YAAA,GAAe,UAAU,gBAAA,CAAiB,WAAA;AAChD,IAAA,iBAAA,CAAkB,cAAc,aAAa,CAAA;AAG7C,IAAA,MAAM,IAAA,GAAO,IAAI,mBAAA,CAAoB;AAAA,MACnC,QAAA,EAAU,EAAE,aAAA;AAAc,KAC3B,CAAA;AACD,IAAA,MAAM,OAAA,GAAU,MAAM,IAAA,CAAK,sBAAA;AAAA,MACzB,YAAA;AAAA,MACA,MAAA,CAAO,KAAA;AAAA,MACP,MAAA,CAAO,OAAA;AAAA,MACP,MAAA,CAAO,SAAA;AAAA,MACP,MAAA,CAAO,MAAA;AAAA,MACP,MAAA,CAAO;AAAA,KACT;AAKA,IAAA,MAAM,MAAA,GAAS,IAAI,kBAAA,CAAkB;AAAA,MACnC,gBAAA,EAAkB,YAAA;AAAA,MAClB,WAAW,OAAA,CAAQ,KAAA;AAAA,MACnB;AAAA,KACD,CAAA;AAED,IAAA,OAAO,EAAE,MAAA,EAAQ,SAAA,EAAW,OAAA,EAAQ;AAAA,EACtC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,UAAA,GAAqB;AACnB,IAAA,OAAO,IAAA,CAAK,OAAA;AAAA,EACd;AAAA;AAAA,EAGA,eAAA,GAA2B;AACzB,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,YAAA,EAAa,KAAM,MAAA;AAAA,EACtC;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,aAAA,GAA+E;AAI7E,IAAA,OAAO;AAAA,MACL,OAAA,EAAS,IAAA;AAAA,MACT,WAAW,IAAA,CAAK;AAAA,KAClB;AAAA,EACF;AAAA;AAAA;AAAA,EAKA,MAAM,SAAA,GAA2E;AAC/E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA,EAGA,MAAM,kBAAA,GAAoD;AACxD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA;AAAA,EAKA,MAAM,cAAc,OAAA,EAA+D;AACjF,IAAA,MAAM,SAAA,GAAY,0BAAA,CAA2B,KAAA,CAAM,OAAO,CAAA;AAC1D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,WAAA,EAAa,SAAS,CAAA;AAAA,EAC9C;AAAA;AAAA,EAGA,MAAM,cAAA,CAAe,KAAA,EAAe,SAAA,EAAyC;AAC3E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,UAAA,EAAa,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAE,CAAA;AAAA,EAC1F;AAAA;AAAA,EAGA,MAAM,UAAA,CAAW,KAAA,EAAe,SAAA,EAA4C;AAC1E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,UAAA,EAAa,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,SAAS,CAAC,CAAA,QAAA,CAAU,CAAA;AAAA,EAClG;AAAA;AAAA;AAAA,EAKA,MAAM,SAAS,OAAA,EAAqD;AAClE,IAAA,MAAM,SAAA,GAAY,qBAAA,CAAsB,KAAA,CAAM,OAAO,CAAA;AACrD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,WAAA,EAAa,SAAS,CAAA;AAAA,EAC9C;AAAA;AAAA,EAGA,MAAM,cAAA,CAAe,KAAA,EAAe,IAAA,EAAoC;AACtE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,cAAA,EAAiB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,IAAI,CAAC,CAAA,CAAE,CAAA;AAAA,EACzF;AAAA;AAAA,EAGA,MAAM,qBAAA,CAAsB,KAAA,EAAe,IAAA,EAA4B;AACrE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,cAAA,EAAiB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,IAAI,CAAC,CAAA,QAAA,CAAU,CAAA;AAAA,EACjG;AAAA;AAAA;AAAA,EAKA,MAAM,YAAY,OAAA,EAA2D;AAC3E,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,SAAA,EAAW,SAAS,CAAA;AAAA,EAC5C;AAAA;AAAA,EAGA,MAAM,UAAU,OAAA,EAAyC;AACvD,IAAA,MAAM,SAAA,GAAY,sBAAA,CAAuB,KAAA,CAAM,OAAO,CAAA;AACtD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,cAAA,EAAgB,SAAS,CAAA;AAAA,EACjD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,YAAA,CAAa,KAAA,EAAe,OAAA,EAAqC;AACrE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,QAAA,EAAW,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,OAAO,CAAC,CAAA,CAAE,CAAA;AAAA,EACtF;AAAA;AAAA,EAGA,MAAM,UAAU,OAAA,EAAkD;AAChE,IAAA,MAAM,SAAA,GAAY,sBAAA,CAAuB,KAAA,CAAM,OAAO,CAAA;AACtD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,cAAA,EAAgB,SAAS,CAAA;AAAA,EACjD;AAAA;AAAA,EAGA,MAAM,WAAW,OAAA,EAAoD;AACnE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,eAAA,EAAiB,SAAS,CAAA;AAAA,EAClD;AAAA;AAAA,EAGA,MAAM,aAAa,OAAA,EAAoD;AACrE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,iBAAA,EAAmB,SAAS,CAAA;AAAA,EACpD;AAAA;AAAA,EAGA,MAAM,gBAAgB,OAAA,EAAoD;AACxE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,2CAAA,EAA6C,GAAG,CAAA;AAAA,IAC7E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,kBAAA,EAAoB,SAAS,CAAA;AAAA,EACrD;AAAA;AAAA,EAGA,MAAM,kBAAkB,OAAA,EAAoD;AAC1E,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,6CAAA,EAA+C,GAAG,CAAA;AAAA,IAC/E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,oBAAA,EAAsB,SAAS,CAAA;AAAA,EACvD;AAAA;AAAA,EAGA,MAAM,iBAAiB,OAAA,EAAoD;AACzE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,4CAAA,EAA8C,GAAG,CAAA;AAAA,IAC9E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,2BAAA,EAA6B,SAAS,CAAA;AAAA,EAC9D;AAAA;AAAA,EAGA,MAAM,kBAAkB,OAAA,EAAoD;AAC1E,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,6CAAA,EAA+C,GAAG,CAAA;AAAA,IAC/E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,SAAS,CAAA;AAAA,EAC/D;AAAA;AAAA,EAGA,MAAM,gBAAgB,OAAA,EAAoD;AACxE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,2CAAA,EAA6C,GAAG,CAAA;AAAA,IAC7E;AACA,IAAA,IAAI,CAAC,UAAU,MAAA,EAAQ;AACrB,MAAA,MAAM,IAAI,gBAAA,CAAiB,wCAAA,EAA0C,GAAG,CAAA;AAAA,IAC1E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,cAAA,EAAgB,SAAS,CAAA;AAAA,EACjD;AAAA;AAAA;AAAA,EAKA,MAAM,kBAAA,GAAmC;AACvC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,eAAe,CAAA;AAAA,EACtC;AAAA;AAAA,EAGA,MAAM,qBAAqB,KAAA,EAAgC;AACzD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EAChE;AAAA;AAAA,EAGA,MAAM,eAAA,GAAgC;AACpC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,MAAM,aAAA,CAAc,KAAA,EAAe,OAAA,EAAiB,OAAA,EAA+B;AACjF,IAAA,IAAI,OAAA,CAAQ,MAAA,GAAS,IAAA,GAAO,IAAA,EAAM;AAChC,MAAA,MAAM,IAAI,gBAAA,CAAiB,6BAAA,EAA+B,GAAG,CAAA;AAAA,IAC/D;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,UAAA,EAAa,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,OAAO,CAAC,CAAA,CAAA,EAAI;AAAA,MACvF;AAAA,KACD,CAAA;AAAA,EACH;AAAA;AAAA;AAAA,EAKA,MAAM,gBAAA,GAKH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,CAAA;AAAA,EACxC;AAAA;AAAA,EAGA,MAAM,gBAAA,GAcH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,CAAA;AAAA,EACxC;AAAA;AAAA;AAAA,EAKA,MAAM,UAAA,GAA8B;AAClC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,UAAU,CAAA;AAAA,EACjC;AAAA;AAAA,EAGA,MAAM,aAAA,GAMH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,CAAA;AAAA,EAC1C;AAAA;AAAA,EAGA,MAAM,uBAAA,GAYH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,8BAA8B,CAAA;AAAA,EACrD;AAAA;AAAA;AAAA,EAKA,MAAM,gBAAgB,OAAA,EAK4B;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,wBAAA,EAA0B,OAAO,CAAA;AAAA,EACzD;AACF,CAAA;AAKO,IAAM,gBAAA,GAAN,cAA+B,KAAA,CAAM;AAAA,EAC1C,WAAA,CACE,OAAA,EACO,UAAA,EACA,OAAA,EACP;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHN,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGP,IAAA,IAAA,CAAK,IAAA,GAAO,kBAAA;AAAA,EACd;AAAA,EALS,UAAA;AAAA,EACA,OAAA;AAKX,CAAA;AAKA,SAAS,iBAAA,CAAkB,GAAA,EAAa,aAAA,GAAgB,KAAA,EAAe;AACrE,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,IAAI,GAAA,CAAI,GAAG,CAAA;AAC1B,IAAA,IAAI,CAAC,CAAC,OAAA,EAAS,QAAQ,EAAE,QAAA,CAAS,MAAA,CAAO,QAAQ,CAAA,EAAG;AAClD,MAAA,MAAM,IAAI,gBAAA,CAAiB,CAAA,kBAAA,EAAqB,MAAA,CAAO,QAAQ,IAAI,GAAG,CAAA;AAAA,IACxE;AACA,IAAA,IAAI,CAAC,aAAA,IAAiB,MAAA,CAAO,QAAA,KAAa,QAAA,EAAU;AAClD,MAAA,MAAM,IAAI,gBAAA;AAAA,QACR,yFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,MAAA,CAAO,MAAA;AAAA,EAChB,SAAS,KAAA,EAAO;AACd,IAAA,IAAI,KAAA,YAAiB,kBAAkB,MAAM,KAAA;AAC7C,IAAA,MAAM,IAAI,gBAAA,CAAiB,CAAA,aAAA,EAAgB,GAAG,IAAI,GAAG,CAAA;AAAA,EACvD;AACF;;;ACxqBO,IAAM,gBAAN,MAAoB;AAAA,EACzB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQ7B,MAAM,aAAa,OAAA,EAA6D;AAC9E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gBAAA,EAAkB,OAAO,CAAA;AAAA,EACjD;AAAA;AAAA,EAGA,MAAM,eAAe,MAAA,EAAgE;AACnF,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,kBAAkB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EACrE;AAAA;AAAA,EAGA,MAAM,WAAA,GAAyC;AAC7C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,gBAAgB,CAAA;AAAA,EACvC;AAAA;AAAA,EAGA,MAAM,gBAAA,GAA8C;AAClD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,yBAAyB,CAAA;AAAA,EAChD;AAAA;AAAA,EAGA,MAAM,QAAQ,MAAA,EAAmC;AAC/C,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA,EAGA,MAAM,WACJ,MAAA,EAOC;AACD,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,eAAA,EAAkB,gBAAgB,MAAM,CAAC,CAAA,OAAA,CAAA,EAAW,EAAE,CAAA;AAAA,EAC9E;AAAA;AAAA,EAGA,MAAM,gBAAA,CACJ,KAAA,EACA,MAAA,EAC+D;AAC/D,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,gBAAA,EAAmB,gBAAgB,KAAK,CAAC,IAAI,MAAM,CAAA;AAAA,EAC1E;AAAA;AAAA,EAGA,MAAM,iBAAiB,KAAA,EAAuC;AAC5D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA,EAGA,MAAM,aAAa,OAAA,EAA+C;AAChE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gBAAA,EAAkB,OAAO,CAAA;AAAA,EACjD;AAAA;AAAA,EAGA,MAAM,QAAA,GAA0C;AAC9C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,gBAAgB,CAAA;AAAA,EACvC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,cAAA,CAAe,MAAA,EAAgB,KAAA,EAAgD;AACnF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,iBAAA,EAAoB,eAAA,CAAgB,MAAM,CAAC,CAAA,IAAA,CAAA,EAAQ,EAAE,KAAA,EAAO,CAAA;AAAA,EACpF;AACF,CAAA;;;AChFO,IAAM,gBAAN,MAAoB;AAAA,EACzB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,SAAS,OAAA,EAAyD;AACtE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,UAAA,EAAY,OAAO,CAAA;AAAA,EAC3C;AAAA;AAAA,EAGA,MAAM,kBAAkB,MAAA,EAAqD;AAC3E,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA,EAGA,MAAM,QAAQ,MAAA,EAAqC;AACjD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,YAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EAC5D;AAAA;AAAA,EAGA,MAAM,KAAK,KAAA,EAA6C;AACtD,IAAA,MAAM,SAAS,KAAA,GAAQ,CAAA,OAAA,EAAU,kBAAA,CAAmB,KAAK,CAAC,CAAA,CAAA,GAAK,EAAA;AAC/D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,QAAA,EAAW,MAAM,CAAA,CAAE,CAAA;AAAA,EAC1C;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,yBAAA,CACJ,MAAA,EACA,MAAA,EACoC;AACpC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,aAAA,CAAA,EAAiB,EAAE,MAAA,EAAQ,CAAA;AAAA,EACtF;AAAA;AAAA,EAGA,MAAM,eAAA,CAAgB,MAAA,EAAgB,KAAA,EAA4C;AAChF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,OAAA,CAAA,EAAW,EAAE,KAAA,EAAO,CAAA;AAAA,EAC/E;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,MAAA,EACA,OAAA,EACqD;AACrD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,IAAA,CAAA,EAAQ,EAAE,OAAA,EAAS,CAAA;AAAA,EAC9E;AAAA;AAAA,EAGA,MAAM,aAAa,MAAA,EAAgE;AACjF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,cAAA,CAAA,EAAkB,EAAE,CAAA;AAAA,EAC/E;AAAA;AAAA,EAGA,MAAM,cAAc,MAAA,EAAgE;AAClF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,eAAA,CAAA,EAAmB,EAAE,CAAA;AAAA,EAChF;AAAA;AAAA,EAGA,MAAM,KAAA,CAAM,MAAA,EAAgB,KAAA,EAAqC;AAC/D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,MAAA,CAAA,EAAU,EAAE,KAAA,EAAO,KAAA,IAAS,CAAA,EAAG,CAAA;AAAA,EAC1F;AAAA;AAAA,EAGA,MAAM,QAAA,CACJ,MAAA,EACA,OAAA,EACgD;AAChD,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,aAAa,OAAO,CAAA;AAAA,EAC/E;AAAA;AAAA,EAGA,MAAM,gBAAgB,MAAA,EAA+C;AACnE,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,iBAAA,CAAA,EAAqB,EAAE,CAAA;AAAA,EAClF;AAAA;AAAA,EAGA,MAAM,eAAe,MAAA,EAA+C;AAClE,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,gBAAA,CAAA,EAAoB,EAAE,CAAA;AAAA,EACjF;AAAA;AAAA,EAGA,MAAM,OAAA,CAAQ,MAAA,EAAgB,MAAA,EAA+C;AAC3E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,QAAA,CAAA,EAAY,EAAE,MAAA,EAAQ,CAAA;AAAA,EACjF;AAAA;AAAA,EAGA,MAAM,UAAU,MAAA,EAA+C;AAC7D,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,UAAA,CAAA,EAAc,EAAE,CAAA;AAAA,EAC3E;AACF,CAAA;;;AC1FO,IAAM,YAAN,MAAgB;AAAA,EACrB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,OAAA,CAAQ,IAAA,EAAc,IAAA,EAAe,MAAA,EAA+C;AACxF,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,CAAgB,EAAE,MAAM,CAAA;AAC3C,IAAA,IAAI,IAAA,EAAM,MAAA,CAAO,GAAA,CAAI,MAAA,EAAQ,IAAI,CAAA;AACjC,IAAA,IAAI,WAAW,MAAA,EAAW,MAAA,CAAO,IAAI,QAAA,EAAU,MAAA,CAAO,MAAM,CAAC,CAAA;AAC7D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,gBAAgB,MAAA,CAAO,QAAA,EAAU,CAAA,CAAE,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,aAAa,OAAA,EAA4D;AAC7E,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA,CAAK,oBAAA,EAAsB,EAAE,SAAS,CAAA;AAAA,EACzD;AAAA;AAAA,EAGA,MAAM,SAAA,GAA0C;AAC9C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,YAAY,CAAA;AAAA,EACnC;AAAA;AAAA,EAGA,MAAM,QAAQ,QAAA,EAAmE;AAC/E,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EAChE;AAAA;AAAA,EAGA,MAAM,WAAW,OAAA,EAAuE;AACtF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,YAAA,EAAc,OAAO,CAAA;AAAA,EAC7C;AAAA;AAAA,EAGA,MAAM,WAAW,QAAA,EAAiD;AAChE,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EACnE;AAAA;AAAA,EAGA,MAAM,SAAA,CAAU,QAAA,EAAkB,MAAA,EAA2C;AAC3E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,WAAA,EAAc,gBAAgB,QAAQ,CAAC,YAAY,MAAM,CAAA;AAAA,EACjF;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,QAAA,EACA,QAAA,EACA,OAAA,EACwB;AACxB,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,SAAA,EAAY,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAA;AAAA,MAC5E;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,YAAA,CAAa,QAAA,EAAkB,QAAA,EAAiD;AACpF,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,SAAA,EAAY,eAAA,CAAgB,QAAQ,CAAC,CAAA;AAAA,KAC9E;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,kBAAA,CACJ,QAAA,EACA,SAAA,EACgC;AAChC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA,CAAK,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,YAAA,CAAA,EAAgB;AAAA,MAC3E;AAAA,KACD,CAAA;AAAA,EACH;AAAA;AAAA,EAGA,MAAM,cAAc,QAAA,EAAkD;AACpE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,YAAA,CAAc,CAAA;AAAA,EAC5E;AAAA;AAAA,EAGA,MAAM,YAAY,QAAA,EAA2C;AAC3D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,UAAA,CAAY,CAAA;AAAA,EAC1E;AAAA;AAAA,EAGA,MAAM,UAAA,GAAoE;AACxE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,kBAAA,EAAoB,EAAE,CAAA;AAAA,EAC9C;AACF,CAAA;;;ACtGO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,UAAA,GAA8C;AAClD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,CAAA;AAAA,EACxC;AACF,CAAA;;;AC2CO,IAAM,qBAAN,MAAyB;AAAA,EACb,IAAA;AAAA;AAAA,EAGD,OAAA;AAAA;AAAA,EAEA,OAAA;AAAA;AAAA,EAEA,GAAA;AAAA;AAAA,EAEA,MAAA;AAAA,EAEhB,YAAY,MAAA,EAAkC;AAC5C,IAAA,MAAM,OAAA,GAAU,MAAA,CAAO,OAAA,CAAQ,OAAA,CAAQ,QAAQ,EAAE,CAAA;AAEjD,IAAA,IAAA,CAAK,OAAO,gBAAA,CAAiB;AAAA,MAC3B,OAAA,EAAS,GAAG,OAAO,CAAA,OAAA,CAAA;AAAA,MACnB,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO;AAAA,KACjB,CAAA;AAED,IAAA,IAAA,CAAK,OAAA,GAAU,IAAI,aAAA,CAAc,IAAA,CAAK,IAAI,CAAA;AAC1C,IAAA,IAAA,CAAK,OAAA,GAAU,IAAI,aAAA,CAAc,IAAA,CAAK,IAAI,CAAA;AAC1C,IAAA,IAAA,CAAK,GAAA,GAAM,IAAI,SAAA,CAAU,IAAA,CAAK,IAAI,CAAA;AAClC,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AAAA,EAC1C;AAAA;AAAA;AAAA,EAKA,MAAM,SAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,YAAA,GAAkD;AACtD,IAAA,IAAI;AACF,MAAA,OAAO,MAAM,IAAA,CAAK,IAAA,CAAK,GAAA,CAA8B,QAAQ,CAAA;AAAA,IAC/D,SAAS,GAAA,EAAK;AAMZ,MAAA,IAAI,GAAA,YAAe,YAAA,IAAgB,GAAA,CAAI,UAAA,KAAe,GAAA,EAAK;AACzD,QAAA,MAAM,IAAI,GAAA,CAAI,OAAA;AAGd,QAAA,MAAM,IAAA,GAAQ,GAAG,OAAA,IAAW,CAAA;AAG5B,QAAA,IAAI,IAAA,EAAM,WAAW,WAAA,EAAa;AAChC,UAAA,OAAO,IAAA;AAAA,QACT;AAAA,MACF;AACA,MAAA,MAAM,GAAA;AAAA,IACR;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,WAAA,GAAgD;AACpD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,OAAO,CAAA;AAAA,EAC9B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,WAAW,OAAA,EAAoD;AACnE,IAAA,MAAM,MAAA,GAAS,UAAU,eAAA,GAAkB,EAAA;AAC3C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,QAAA,EAAW,MAAM,CAAA,CAAE,CAAA;AAAA,EAC1C;AAAA;AAAA,EAGA,MAAM,iBAAA,GAA4D;AAChE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,CAAA;AAAA,EACzC;AACF,CAAA;;;ACrGO,IAAM,iBAAN,MAAqB;AAAA,EAC1B,WAAA,CACmB,MACA,QAAA,EACjB;AAFiB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,QAAA,GAAA,QAAA;AAAA,EAChB;AAAA,EAFgB,IAAA;AAAA,EACA,QAAA;AAAA;AAAA;AAAA;AAAA,EAMnB,MAAM,MAAA,CAAO,UAAA,EAAoB,QAAA,EAA8D;AAC7F,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MACxE;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAA,CACJ,UAAA,EACA,KAAA,EACA,OAAA,EACyB;AACzB,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,SAAS,MAAA,CAAO,IAAA,CAAK,KAAK,CAAA,CAAE,SAAS,CAAA,EAAG;AAC1C,MAAA,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,IAAA,CAAK,SAAA,CAAU,KAAK,CAAC,CAAA;AAAA,IAC3C;AACA,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC3E,IAAA,IAAI,OAAA,EAAS,SAAS,MAAA,EAAW,MAAA,CAAO,IAAI,MAAA,EAAQ,MAAA,CAAO,OAAA,CAAQ,IAAI,CAAC,CAAA;AACxE,IAAA,IAAI,SAAS,IAAA,EAAM,MAAA,CAAO,GAAA,CAAI,MAAA,EAAQ,QAAQ,IAAI,CAAA;AAClD,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,gBAAA,EAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,EAAG,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,KAAK,EAAE,CAAA;AAAA,KAC/F;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CACJ,UAAA,EACA,UAAA,EACA,OAAA,EAC2B;AAC3B,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,gBAAA,EAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MACvG;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,UAAA,EAAoB,UAAA,EAA+C;AAC9E,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,CAAA,gBAAA,EAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA;AAAA,KACzG;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,eAAA,GAAsD;AAC1D,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,YAAA,CAAc,CAAA;AAAA,EAC9E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,iBAAiB,IAAA,EAAiE;AACtF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,gBAAA,EAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,YAAA,CAAA,EAAgB,EAAE,IAAA,EAAM,CAAA;AAAA,EACzF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,eAAe,IAAA,EAA6C;AAChE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,aAAA,EAAgB,eAAA,CAAgB,IAAI,CAAC,CAAA;AAAA,KAChF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,YAAA,GAA2C;AAC/C,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,WAAA,CAAa,CAAA;AAAA,EAC7E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,iBAAiB,UAAA,EAAoD;AACzE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,MAAA;AAAA,KAC1E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,oBAAoB,OAAA,EAIY;AACpC,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,cAAc,MAAA,EAAW,MAAA,CAAO,IAAI,WAAA,EAAa,MAAA,CAAO,OAAA,CAAQ,SAAS,CAAC,CAAA;AACvF,IAAA,IAAI,OAAA,EAAS,YAAY,MAAA,EAAW,MAAA,CAAO,IAAI,SAAA,EAAW,MAAA,CAAO,OAAA,CAAQ,OAAO,CAAC,CAAA;AACjF,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC3E,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,gBAAA,EAAmB,gBAAgB,KAAK,CAAC,qBAAqB,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KAClF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAA,GAA6C;AACjD,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,MAAA,CAAQ,CAAA;AAAA,EACxE;AACF,CAAA;;;AC1LO,IAAM,gBAAN,MAAoB;AAAA,EACzB,WAAA,CACmB,MACA,QAAA,EACjB;AAFiB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,QAAA,GAAA,QAAA;AAAA,EAChB;AAAA,EAFgB,IAAA;AAAA,EACA,QAAA;AAAA;AAAA;AAAA;AAAA,EAMnB,MAAM,MAAA,CACJ,IAAA,EACA,QAAA,EACA,UACA,IAAA,EAC2B;AAC3B,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,MAAA,CAAO,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,OAAA,CAAA,EAAW,IAAA,EAAM,QAAA,EAAU,QAAA,EAAU,MAAA,EAAW,IAAI,CAAA;AAAA,EAC5H;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,QAAA,CAAS,GAAA,EAAa,IAAA,EAA6C;AACvE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,SAAA,CAAU,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EACpH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,gBAAA,CACJ,GAAA,EACA,IAAA,EACyE;AACzE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,iBAAA;AAAA,MACf,wBAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA;AAAA,MAC/E;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CAAY,GAAA,EAAa,IAAA,EAAmD;AAChF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EAC9G;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,GAAA,EAAa,IAAA,EAAuD;AAC/E,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,MAAA,CAAO,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EACxG;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,SAAA,CAAU,UAAA,EAAkD,IAAA,EAA2E;AAC3I,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,UAAA,EAAY,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,UAAA,CAAW,KAAK,CAAC,CAAA;AACjF,IAAA,IAAI,UAAA,EAAY,WAAW,MAAA,EAAW,MAAA,CAAO,IAAI,QAAA,EAAU,MAAA,CAAO,UAAA,CAAW,MAAM,CAAC,CAAA;AACpF,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,qBAAA,EAAwB,gBAAgB,KAAK,CAAC,CAAA,MAAA,EAAS,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,IAAI,IAAI,CAAA;AAAA,EACxG;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAS,IAAA,EAAmD;AAChE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,qBAAA,EAAwB,gBAAgB,KAAK,CAAC,UAAU,IAAI,CAAA;AAAA,EACnF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,GAAA,EAAa,IAAA,EAAmE;AAC3F,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,QAAA,EAAW,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EAC5G;AACF,CAAA;;;ACjFO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,WAAA,CACmB,MACA,QAAA,EACjB;AAFiB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,QAAA,GAAA,QAAA;AAAA,EAChB;AAAA,EAFgB,IAAA;AAAA,EACA,QAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAanB,MAAM,SAAS,IAAA,EAAuC;AACpD,IAAA,MAAM,EAAE,mBAAA,EAAqB,UAAA,EAAY,MAAK,GAAI,MAAM,OAAO,QAAQ,CAAA;AACvE,IAAA,MAAM,EAAE,SAAA,EAAW,UAAA,EAAW,GAAI,oBAAoB,SAAS,CAAA;AAC/D,IAAA,MAAM,IAAA,GAAO,WAAW,QAAQ,CAAA,CAAE,OAAO,IAAA,EAAM,MAAM,CAAA,CAAE,MAAA,CAAO,KAAK,CAAA;AACnE,IAAA,MAAM,SAAA,GAAA,iBAAY,IAAI,IAAA,EAAK,EAAE,WAAA,EAAY;AACzC,IAAA,MAAM,SAAA,GAAY,IAAA,CAAK,IAAA,EAAM,MAAA,CAAO,KAAK,CAAA,EAAG,IAAI,CAAA,CAAA,EAAI,SAAS,IAAI,MAAM,CAAA,EAAG,UAAU,CAAA,CAAE,SAAS,QAAQ,CAAA;AACvG,IAAA,MAAM,YAAA,GAAe,SAAA,CAAU,MAAA,CAAO,EAAE,MAAA,EAAQ,KAAA,EAAO,IAAA,EAAM,MAAA,EAAQ,CAAA,CAAE,QAAA,CAAS,QAAQ,CAAA;AACxF,IAAA,OAAO,EAAE,IAAA,EAAM,IAAA,EAAM,SAAA,EAAW,SAAA,EAAW,WAAW,YAAA,EAAa;AAAA,EACrE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,MAAA,CAAO,OAAA,EAAoC,IAAA,EAA2D;AAC1G,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,aAAa,OAAA,CAAQ,UAAA,IAAe,MAAM,IAAA,CAAK,QAAA,CAAS,QAAQ,IAAI,CAAA;AAC1E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,EAAE,GAAG,OAAA,EAAS,UAAA,IAAc,IAAI,CAAA;AAAA,EAC5G;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,UAAA,EAAoB,OAAA,EAAmB,IAAA,EAAqD;AACvG,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,OAAA,CAAA;AAAA,MAC/E,WAAW,EAAC;AAAA,MACZ;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CAAK,OAAA,EAAkC,IAAA,EAAqD;AAChG,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,aAAa,OAAA,CAAQ,UAAA,IAAe,MAAM,IAAA,CAAK,QAAA,CAAS,QAAQ,IAAI,CAAA;AAC1E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,KAAA,CAAA,EAAS,EAAE,GAAG,OAAA,EAAS,UAAA,IAAc,IAAI,CAAA;AAAA,EACjH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,KAAK,IAAA,EAAmF;AAC5F,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,IAAI,IAAI,CAAA;AAAA,EAC/E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,GAAA,CAAI,UAAA,EAAoB,IAAA,EAAmD;AAC/E,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MAC/E;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAA,CAAQ,UAAA,EAAoB,IAAA,EAAmD;AACnF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,KAAA,CAAA;AAAA,MAC/E;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,UAAA,EAAoB,OAAA,EAA6C,IAAA,EAAmD;AAC/H,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MAC/E,OAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,UAAA,EAAoB,IAAA,EAAuD;AACtF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MAC/E;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAA,CAAQ,UAAA,EAAoB,OAAA,EAAkC,IAAA,EAA6E;AAC/I,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC3E,IAAA,IAAI,SAAS,SAAA,EAAW,MAAA,CAAO,GAAA,CAAI,WAAA,EAAa,QAAQ,SAAS,CAAA;AACjE,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,QAAQ,KAAK,CAAA;AACrD,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,KAAA,EAAQ,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,KAAK,EAAE,CAAA,CAAA;AAAA,MACzG;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAS,IAAA,EAAsC;AACnD,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,UAAU,IAAI,CAAA;AAAA,EACrF;AACF,CAAA;;;AC/IO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,WAAA,CACmB,MACA,QAAA,EACjB;AAFiB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,QAAA,GAAA,QAAA;AAAA,EAChB;AAAA,EAFgB,IAAA;AAAA,EACA,QAAA;AAAA;AAAA;AAAA;AAAA,EAMnB,MAAM,aAAA,CAAc,MAAA,EAA2B,IAAA,EAA4E;AACzH,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,CAAA,SAAA,CAAA,EAAa,MAAA,EAAQ,IAAI,CAAA;AAAA,EACjG;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,aAAA,CAAc,SAAA,EAAmB,IAAA,EAAuD;AAC5F,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,MAAA,CAAO,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EACzH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAA,CAAW,SAAA,EAAmB,IAAA,EAAkG;AACpI,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EACtH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,aAAa,IAAA,EAAgH;AACjI,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,aAAa,IAAI,CAAA;AAAA,EACxF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAA,CACJ,OAAA,EACA,OAAA,EACA,UACA,IAAA,EAC4B;AAC5B,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,QAAA,CAAA;AAAA,MACrF,EAAE,IAAA,EAAM,OAAA,EAAS,QAAA,EAAS;AAAA,MAC1B;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EACuE;AACvE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC3E,IAAA,IAAI,SAAS,MAAA,EAAQ,MAAA,CAAO,GAAA,CAAI,QAAA,EAAU,QAAQ,MAAM,CAAA;AACxD,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,QAAQ,KAAK,CAAA;AACrD,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,QAAA,EAAW,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,KAAK,EAAE,CAAA,CAAA;AAAA,MAClH;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,WAAA,CAAY,OAAA,EAAiB,MAAA,EAA4B,IAAA,EAAuD;AACpH,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,SAAA,CAAA;AAAA,MACrF,MAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,cAAA,CAAe,OAAA,EAAiB,QAAA,EAAkB,IAAA,EAAuD;AAC7G,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAA;AAAA,MAC3H;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CAAY,OAAA,EAAiB,IAAA,EAAmD;AACpF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,SAAA,CAAA;AAAA,MACrF;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAS,IAAA,EAAsC;AACnD,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,UAAU,IAAI,CAAA;AAAA,EACrF;AACF,CAAA;;;AC/FO,IAAM,wBAAN,MAA4B;AAAA,EACjC,WAAA,CACmB,OAAA,EACA,SAAA,GAAoB,GAAA,EACrC;AAFiB,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AACA,IAAA,IAAA,CAAA,SAAA,GAAA,SAAA;AAAA,EAChB;AAAA,EAFgB,OAAA;AAAA,EACA,SAAA;AAAA;AAAA;AAAA;AAAA,EAMnB,MAAM,UAAU,KAAA,EAA8E;AAC5F,IAAA,OAAO,IAAA,CAAK,KAAA,CAAgC,MAAA,EAAQ,yCAAA,EAA2C,KAAK,CAAA;AAAA,EACtG;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,OAAO,GAAA,EAAkE;AAC7E,IAAA,OAAO,IAAA,CAAK,KAAA,CAA4B,MAAA,EAAQ,sCAAA,EAAwC,GAAG,CAAA;AAAA,EAC7F;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAS,MAAA,EAA8C;AAC3D,IAAA,OAAO,IAAA,CAAK,KAAA,CAA2B,KAAA,EAAO,wCAAA,EAA0C,QAAW,MAAM,CAAA;AAAA,EAC3G;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAI,MAAA,EAAkE;AAC1E,IAAA,OAAO,IAAA,CAAK,KAAA;AAAA,MACV,MAAA;AAAA,MACA,mCAAA;AAAA,MACA,MAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA,EAEA,MAAc,KAAA,CACZ,MAAA,EACA,IAAA,EACA,MACA,MAAA,EACY;AACZ,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,IAAI,CAAA,CAAA;AAClC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,SAAS,CAAA;AACrE,IAAA,IAAI;AACF,MAAA,MAAM,OAAA,GAAkC,EAAE,cAAA,EAAgB,kBAAA,EAAmB;AAC7E,MAAA,IAAI,MAAA,EAAQ,OAAA,CAAQ,eAAe,CAAA,GAAI,UAAU,MAAM,CAAA,CAAA;AACvD,MAAA,MAAM,OAAoB,EAAE,MAAA,EAAQ,OAAA,EAAS,MAAA,EAAQ,WAAW,MAAA,EAAO;AACvE,MAAA,IAAI,SAAS,KAAA,CAAA,EAAW,IAAA,CAAK,IAAA,GAAO,IAAA,CAAK,UAAU,IAAI,CAAA;AACvD,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK,IAAI,CAAA;AACtC,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,OAAA,GAAW,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACvD,QAAA,MAAM,MAAM,IAAI,KAAA;AAAA,UACd,OAAA,CAAQ,WAAW,CAAA,iBAAA,EAAoB,IAAI,YAAY,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,QAAA,CAAS,UAAU,CAAA;AAAA,SAC/F;AACA,QAAA,GAAA,CAAI,SAAS,QAAA,CAAS,MAAA;AACtB,QAAA,MAAM,GAAA;AAAA,MACR;AACA,MAAA,MAAM,IAAA,GAAO,MAAM,QAAA,CAAS,IAAA,EAAK;AACjC,MAAA,IAAI,CAAC,MAAM,OAAO,KAAA,CAAA;AAClB,MAAA,OAAO,IAAA,CAAK,MAAM,IAAI,CAAA;AAAA,IACxB,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,MAAM,CAAA,GAAI,KAAA;AACV,MAAA,IAAI,CAAA,CAAE,SAAS,YAAA,EAAc;AAC3B,QAAA,MAAM,IAAI,KAAA,CAAM,CAAA,iBAAA,EAAoB,IAAI,CAAA,QAAA,CAAU,CAAA;AAAA,MACpD;AACA,MAAA,MAAM,KAAA;AAAA,IACR;AAAA,EACF;AACF,CAAA;;;ACvGO,IAAM,cAAN,MAAkB;AAAA,EACvB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,QAAQ,IAAA,EAAoD;AAChE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,IAAI,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,IAAI,kBAAA,EAAoD;AAC5D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,sBAAsB,eAAA,CAAgB,kBAAkB,CAAC,CAAA,CAAE,CAAA;AAAA,EAClF;AAAA;AAAA,EAGA,MAAM,YAAY,MAAA,EAAsD;AACtE,IAAA,MAAM,IAAA,GAAO,QAAQ,IAAA,GACjB,CAAA,wBAAA,EAA2B,mBAAmB,MAAA,CAAO,IAAI,CAAC,CAAA,CAAA,GAC1D,oBAAA;AACJ,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,IAAI,CAAA;AAAA,EAC3B;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAS,MAAA,EAAwD;AACrE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,6BAAA,EAA+B,MAAM,CAAA;AAAA,EAC7D;AAAA;AAAA,EAGA,MAAM,kBAAkB,kBAAA,EAA6D;AACnF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,mBAAA,EAAsB,eAAA,CAAgB,kBAAkB,CAAC,CAAA,SAAA;AAAA,KAC3D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAU,kBAAA,EAA4D;AAC1E,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,mBAAA,EAAsB,eAAA,CAAgB,kBAAkB,CAAC,CAAA,UAAA,CAAA;AAAA,MACzD;AAAC,KACH;AAAA,EACF;AACF;;;AC1BO,IAAM,cAAA,GAAN,MAAM,eAAA,CAAe;AAAA,EAC1B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgB7B,OAAwB,yBAAA,mBACtB,IAAI,GAAA,CAAe;AAAA,IACjB,QAAA;AAAA,IACA,SAAA;AAAA,IACA,QAAA;AAAA,IACA,UAAA;AAAA,IACA,MAAA;AAAA,IACA;AAAA,GACD,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYH,MAAM,mBACJ,GAAA,EACiC;AACjC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,UAAA,EAAY,OAAA;AAAA,MACZ,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,mBAAmB,GAAA,EAYS;AAChC,IAAA,MAAM,EAAE,UAAA,EAAY,iBAAA,EAAmB,GAAG,MAAK,GAAI,GAAA;AACnD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,GAAG,IAAA;AAAA,MACH,GAAI,UAAA,KAAe,MAAA,GAAY,EAAE,UAAA,KAAe,EAAC;AAAA,MACjD,GAAI,iBAAA,KAAsB,MAAA,GAAY,EAAE,iBAAA,KAAsB,EAAC;AAAA,MAC/D,UAAA,EAAY;AAAA,KACb,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAoBA,MAAM,YAAY,GAAA,EAAwD;AACxE,IAAA,IAAI,eAAA,CAAe,yBAAA,CAA0B,GAAA,CAAI,GAAA,CAAI,KAAK,CAAA,EAAG;AAC3D,MAAA,MAAM,EAAE,QAAA,EAAU,GAAG,OAAA,EAAQ,GAAI,GAAA;AACjC,MAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,kBAAA,CAAmB,OAAO,CAAA;AAClD,MAAA,IAAI,CAAC,QAAA,EAAU;AACb,QAAA,MAAM,IAAI,KAAA;AAAA,UACR,CAAA,YAAA,EAAe,IAAI,KAAK,CAAA,6GAAA;AAAA,SAC1B;AAAA,MACF;AAIA,MAAA,MAAM,MAAA,GAAS,MAAM,QAAA,CAAS,IAAA,CAAK,QAAA,EAAU;AAAA,QAC3C,SAAS,IAAA,CAAK,OAAA;AAAA,QACd,oBAAoB,IAAA,CAAK;AAAA,OAC1B,CAAA;AAMD,MAAA,OAAO,KAAK,kBAAA,CAAmB;AAAA,QAC7B,UAAU,IAAA,CAAK,QAAA;AAAA,QACf,OAAO,GAAA,CAAI,KAAA;AAAA,QACX,cAAc,GAAA,CAAI,YAAA;AAAA,QAClB,iBAAA,EAAmB,gBAAe,yBAAA,CAA0B,GAAA,CAAI,IAAI,KAAK,CAAA,GACrE,QAAQ,iBAAA,GACR,MAAA;AAAA,QACJ,UAAA,EACE,IAAI,KAAA,KAAU,QAAA,GAAW,KAAK,QAAA,GAAW,CAAC,GAAG,aAAA,GAAgB;AAAA,OAChE,CAAA;AAAA,IACH;AAGA,IAAA,MAAM;AAAA,MACJ,QAAA,EAAU,gBAAA;AAAA,MACV,cAAA,EAAgB,aAAA;AAAA,MAChB,YAAA,EAAc,oBAAA;AAAA,MACd,GAAG;AAAA,KACL,GAAI,GAAA;AACJ,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mCAAA,EAAqC,SAAS,CAAA;AAAA,EACtE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,qBACJ,GAAA,EACiC;AACjC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,UAAA,EAAY,SAAA;AAAA,MACZ,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBA,MAAM,qBAAqB,GAAA,EAOO;AAOhC,IAAA,MAAM,EAAE,UAAA,EAAY,GAAG,IAAA,EAAK,GAAI,GAAA;AAChC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,GAAG,IAAA;AAAA,MACH,GAAI,UAAA,KAAe,MAAA,GAAY,EAAE,UAAA,KAAe;AAAC,KAClD,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAoBA,OAAwB,0BAAA,mBACtB,IAAI,GAAA,CAAe;AAAA,IACjB,MAAA;AAAA,IACA,SAAA;AAAA,IACA,SAAA;AAAA,IACA,UAAA;AAAA,IACA,QAAA;AAAA,IACA,QAAA;AAAA,IACA;AAAA,GACD,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWH,OAAwB,yBAAA,mBACtB,IAAI,IAAe,CAAC,MAAA,EAAQ,SAAS,CAAC,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAuBxC,MAAM,cAAc,GAAA,EAA0D;AAC5E,IAAA,IAAI,eAAA,CAAe,0BAAA,CAA2B,GAAA,CAAI,GAAA,CAAI,KAAK,CAAA,EAAG;AAE5D,MAAA,MAAM,EAAE,QAAA,EAAU,GAAG,OAAA,EAAQ,GAAI,GAAA;AACjC,MAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,oBAAA,CAAqB,OAAO,CAAA;AACpD,MAAA,IAAI,CAAC,QAAA,EAAU;AACb,QAAA,MAAM,IAAI,KAAA;AAAA,UACR,CAAA,cAAA,EAAiB,IAAI,KAAK,CAAA,kHAAA;AAAA,SAC5B;AAAA,MACF;AACA,MAAA,MAAM,MAAA,GAAS,MAAM,QAAA,CAAS,IAAA,CAAK,QAAA,EAAU;AAAA,QAC3C,SAAS,IAAA,CAAK,OAAA;AAAA,QACd,oBAAoB,IAAA,CAAK;AAAA,OAC1B,CAAA;AAaD,MAAA,OAAO,KAAK,oBAAA,CAAqB;AAAA,QAC/B,UAAU,IAAA,CAAK,QAAA;AAAA,QACf,OAAO,GAAA,CAAI,KAAA;AAAA,QACX,cAAc,GAAA,CAAI,YAAA;AAAA,QAClB,iBAAA,EAAmB,gBAAe,yBAAA,CAA0B,GAAA,CAAI,IAAI,KAAK,CAAA,GACrE,QAAQ,iBAAA,GACR,MAAA;AAAA,QACJ,UAAA,EACE,IAAI,KAAA,KAAU,QAAA,GAAW,KAAK,QAAA,GAAW,CAAC,GAAG,aAAA,GAAgB;AAAA,OAChE,CAAA;AAAA,IACH;AAGA,IAAA,MAAM;AAAA,MACJ,QAAA,EAAU,gBAAA;AAAA,MACV,cAAA,EAAgB,aAAA;AAAA,MAChB,YAAA,EAAc,oBAAA;AAAA,MACd,GAAG;AAAA,KACL,GAAI,GAAA;AACJ,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qCAAA,EAAuC,SAAS,CAAA;AAAA,EACxE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,mBACJ,GAAA,EACiC;AACjC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,UAAA,EAAY,OAAA;AAAA,MACZ,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,mBAAmB,GAAA,EAKS;AAChC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,GAAG,GAAA;AAAA,MACH,UAAA,EAAY;AAAA,KACb,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,YAAY,GAAA,EAAwD;AACxE,IAAA,IAAI,GAAA,CAAI,UAAU,QAAA,EAAU;AAC1B,MAAA,MAAM,EAAE,QAAA,EAAU,GAAG,OAAA,EAAQ,GAAI,GAAA;AACjC,MAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,kBAAA,CAAmB,OAAO,CAAA;AAClD,MAAA,IAAI,CAAC,QAAA,EAAU;AACb,QAAA,MAAM,IAAI,KAAA;AAAA,UACR;AAAA,SACF;AAAA,MACF;AAGA,MAAA,MAAM,QAAA,CAAS,KAAK,QAAA,EAAU;AAAA,QAC5B,SAAS,IAAA,CAAK,OAAA;AAAA,QACd,oBAAoB,IAAA,CAAK;AAAA,OAC1B,CAAA;AACD,MAAA,MAAM,UAAA,GAAa,IAAA,CAAK,QAAA,GAAW,CAAC,CAAA,EAAG,aAAA;AACvC,MAAA,IAAI,CAAC,UAAA,EAAY;AACf,QAAA,MAAM,IAAI,KAAA;AAAA,UACR;AAAA,SACF;AAAA,MACF;AACA,MAAA,OAAO,KAAK,kBAAA,CAAmB;AAAA,QAC7B,UAAU,IAAA,CAAK,QAAA;AAAA,QACf,OAAO,GAAA,CAAI,KAAA;AAAA,QACX,UAAA;AAAA,QACA,cAAc,GAAA,CAAI;AAAA,OACnB,CAAA;AAAA,IACH;AAEA,IAAA,MAAM;AAAA,MACJ,QAAA,EAAU,gBAAA;AAAA,MACV,cAAA,EAAgB,aAAA;AAAA,MAChB,YAAA,EAAc,oBAAA;AAAA,MACd,GAAG;AAAA,KACL,GAAI,GAAA;AACJ,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mCAAA,EAAqC,SAAS,CAAA;AAAA,EACtE;AAAA;AAAA,EAGA,MAAM,YAAY,GAAA,EAAwD;AACxE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mCAAA,EAAqC,GAAG,CAAA;AAAA,EAChE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,mBACJ,GAAA,EACiC;AACjC,IAAA,MAAM,EAAE,YAAA,EAAc,GAAG,IAAA,EAAK,GAAI,GAAA;AAClC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,UAAA,EAAY,OAAA;AAAA,MACZ,KAAA,EAAO,YAAA;AAAA,MACP,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,mBAAmB,GAAA,EAOS;AAIhC,IAAA,MAAM,EAAE,UAAA,EAAY,iBAAA,EAAmB,GAAG,MAAK,GAAI,GAAA;AACnD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,GAAG,IAAA;AAAA,MACH,GAAI,UAAA,KAAe,MAAA,GAAY,EAAE,UAAA,KAAe,EAAC;AAAA,MACjD,GAAI,iBAAA,KAAsB,MAAA,GAAY,EAAE,iBAAA,KAAsB,EAAC;AAAA,MAC/D,UAAA,EAAY;AAAA,KACb,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,UAAU,GAAA,EAA6D;AAC3E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,iCAAA,EAAmC,GAAG,CAAA;AAAA,EAC9D;AAAA;AAAA,EAGA,MAAM,IAAI,QAAA,EAAuC;AAC/C,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,yBAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EAC3E;AAAA;AAAA,EAGA,MAAM,YAAY,MAAA,EAA4D;AAC5E,IAAA,MAAM,IAAA,GAAO,QAAQ,IAAA,GACjB,CAAA,2BAAA,EAA8B,mBAAmB,MAAA,CAAO,IAAI,CAAC,CAAA,CAAA,GAC7D,uBAAA;AACJ,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,IAAI,CAAA;AAAA,EAC3B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAuBA,MAAM,QAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,SAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,SAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,IAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,KAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,IAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,KAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,WAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,SAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,UAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AACF;;;ACjfO,IAAM,UAAA,GAAN,MAAM,WAAA,CAAW;AAAA,EACL,OAAA;AAAA,EACA,UAAA;AAAA,EACT,KAAA;AAAA,EACS,OAAA;AAAA,EACA,aAAA;AAAA,EACA,IAAA;AAAA;AAAA,EAET,aAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,WAAA;AAAA;AAAA;AAAA,EAKQ,EAAA;AAAA;AAAA,EAEA,OAAA;AAAA;AAAA,EAEA,SAAA;AAAA;AAAA,EAEA,SAAA;AAAA;AAAA,EAEA,UAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,eAAA;AAAA;AAAA,EAEA,KAAA;AAAA;AAAA,EAEA,QAAA;AAAA,EAEhB,YAAY,MAAA,EAA0B;AACpC,IAAA,IAAA,CAAK,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAC7C,IAAA,IAAA,CAAK,OAAA,GAAUC,YAAAA,CAAY,MAAA,CAAO,OAAA,EAAS,KAAK,aAAa,CAAA;AAC7D,IAAA,IAAA,CAAK,QAAQ,MAAA,CAAO,KAAA;AACpB,IAAA,IAAA,CAAK,OAAA,GAAU,OAAO,OAAA,IAAW,GAAA;AAGjC,IAAA,MAAM,UAAU,MAAA,CAAO,UAAA,IAAc,EAAA,EAAI,OAAA,CAAQ,OAAO,EAAE,CAAA;AAC1D,IAAA,IAAA,CAAK,UAAA,GAAa,SAAU,MAAA,CAAO,UAAA,CAAW,GAAG,CAAA,GAAI,MAAA,GAAS,CAAA,CAAA,EAAI,MAAM,CAAA,CAAA,GAAM,EAAA;AAC9E,IAAA,MAAM,iBAAA,GAAoB,IAAA,CAAK,UAAA,GAC3B,IAAA,CAAK,OAAA,CAAQ,OAAA,CAAQ,KAAA,EAAO,EAAE,CAAA,GAAI,IAAA,CAAK,UAAA,GACvC,IAAA,CAAK,OAAA;AAIT,IAAA,IAAA,CAAK,OAAO,gBAAA,CAAiB;AAAA,MAC3B,OAAA,EAAS,iBAAA;AAAA,MACT,SAAS,IAAA,CAAK,OAAA;AAAA;AAAA;AAAA;AAAA,MAId,cAAA,EAAgB,MAAM,IAAA,CAAK,cAAA;AAAe,KAC3C,CAAA;AAGD,IAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,YAAA,EAAa;AAGzC,IAAA,IAAA,CAAK,EAAA,GAAK,IAAI,cAAA,CAAe,IAAA,CAAK,MAAM,QAAQ,CAAA;AAChD,IAAA,IAAA,CAAK,OAAA,GAAU,IAAI,aAAA,CAAc,IAAA,CAAK,MAAM,QAAQ,CAAA;AACpD,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,MAAM,QAAQ,CAAA;AACxD,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,MAAM,QAAQ,CAAA;AACxD,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB,IAAA,CAAK,IAAI,CAAA;AAChD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AACxC,IAAA,IAAA,CAAK,eAAA,GAAkB,IAAI,qBAAA,CAAsB,iBAAA,EAAmB,KAAK,OAAO,CAAA;AAChF,IAAA,IAAA,CAAK,KAAA,GAAQ,IAAI,WAAA,CAAY,IAAA,CAAK,IAAI,CAAA;AACtC,IAAA,IAAA,CAAK,QAAA,GAAW,IAAI,cAAA,CAAe,IAAA,CAAK,IAAI,CAAA;AAAA,EAC9C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAyCA,aAAa,iBAAiB,MAAA,EAAyD;AACrF,IAAA,MAAM,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAE9C,IAAA,MAAM,QAAA,GAAW,MAAM,sBAAA,CAAuB;AAAA,MAC5C,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,aAAA;AAAA,MACA,aAAa,MAAA,CAAO;AAAA,KACrB,CAAA;AAED,IAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,MAAA,IAAI,QAAA,CAAS,WAAW,UAAA,EAAY;AAClC,QAAA,MAAM,IAAI,SAAA;AAAA,UACR,0FAAA;AAAA,UACA;AAAA,SACF;AAAA,MACF;AACA,MAAA,MAAM,IAAI,SAAA;AAAA,QACR,iGAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAEA,IAAA,MAAM,UAAU,QAAA,CAAS,OAAA;AACzB,IAAA,OAAO,IAAI,WAAA,CAAW;AAAA,MACpB,OAAA,EAAS,QAAQ,SAAA,CAAU,UAAA;AAAA,MAC3B,OAAO,MAAA,CAAO,KAAA;AAAA,MACd,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,aAAA;AAAA;AAAA;AAAA,MAGA,UAAA,EAAY,OAAO,UAAA,IAAc;AAAA,KAClC,CAAA;AAAA,EACH;AAAA;AAAA,EAGA,SAAS,KAAA,EAAqB;AAC5B,IAAA,IAAA,CAAK,KAAA,GAAQ,KAAA;AAAA,EACf;AAAA;AAAA,EAGA,eAAA,GAA2B;AACzB,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,YAAA,EAAa,KAAM,MAAA;AAAA,EACtC;AAAA;AAAA,EAGA,QAAA,GAA+B;AAC7B,IAAA,OAAO,IAAA,CAAK,KAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,UAAA,GAAqB;AACnB,IAAA,OAAO,IAAA,CAAK,OAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,aAAA,GAA+E;AAI7E,IAAA,OAAO;AAAA,MACL,OAAA,EAAS,IAAA;AAAA,MACT,WAAW,IAAA,CAAK;AAAA,KAClB;AAAA,EACF;AAAA,EAEQ,YAAA,GAAuB;AAC7B,IAAA,IAAI,CAAC,KAAK,KAAA,EAAO;AACf,MAAA,MAAM,IAAI,SAAA;AAAA,QACR,sFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,IAAA,CAAK,KAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,aAAa,OAAA,EAAuD;AACxE,IAAA,MAAM,EAAE,KAAA,EAAO,aAAA,EAAe,SAAA,EAAW,QAAO,GAAI,OAAA;AAEpD,IAAA,IAAA,CAAK,WAAA,GAAc,OAAA;AAKnB,IAAA,IAAI,SAAA;AACJ,IAAA,IAAI;AACF,MAAA,SAAA,GAAY,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAA4B,6BAAA,EAA+B;AAAA,QACrF,KAAA;AAAA,QACA,aAAA;AAAA,QACA,OAAO,IAAA,CAAK;AAAA,OACb,CAAA;AAAA,IACH,SAAS,GAAA,EAAK;AACZ,MAAA,MAAM,YAAY,GAAG,CAAA;AAAA,IACvB;AAGA,IAAA,MAAM,SAAA,GAAY,MAAM,MAAA,CAAO,SAAA,CAAU,OAAO,CAAA;AAGhD,IAAA,IAAI,MAAA;AACJ,IAAA,IAAI;AACF,MAAA,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAAqB,0BAAA,EAA4B;AAAA,QACxE,aAAa,SAAA,CAAU,WAAA;AAAA,QACvB,SAAA;AAAA,QACA;AAAA,OACD,CAAA;AAAA,IACH,SAAS,GAAA,EAAK;AACZ,MAAA,MAAM,YAAY,GAAG,CAAA;AAAA,IACvB;AAIA,IAAA,IAAA,CAAK,IAAA,CAAK,YAAA,CAAa,MAAA,CAAO,KAAK,CAAA;AAEnC,IAAA,OAAO,MAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAc,cAAA,GAAgC;AAC5C,IAAA,MAAM,MAAM,IAAA,CAAK,WAAA;AACjB,IAAA,IAAI,CAAC,GAAA,EAAK;AACV,IAAA,MAAM,SAAA,GAAY,MAAM,IAAA,CAAK,IAAA,CAAK,KAA4B,6BAAA,EAA+B;AAAA,MAC3F,OAAO,GAAA,CAAI,KAAA;AAAA,MACX,eAAe,GAAA,CAAI,aAAA;AAAA,MACnB,OAAO,IAAA,CAAK;AAAA,KACb,CAAA;AACD,IAAA,MAAM,SAAA,GAAY,MAAM,GAAA,CAAI,MAAA,CAAO,UAAU,OAAO,CAAA;AACpD,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,KAAqB,0BAAA,EAA4B;AAAA,MAC9E,aAAa,SAAA,CAAU,WAAA;AAAA,MACvB,SAAA;AAAA,MACA,WAAW,GAAA,CAAI;AAAA,KAChB,CAAA;AACD,IAAA,IAAA,CAAK,IAAA,CAAK,YAAA,CAAa,MAAA,CAAO,KAAK,CAAA;AAAA,EACrC;AAAA;AAAA,EAGA,MAAM,eAAA,GAA4C;AAChD,IAAA,IAAA,CAAK,WAAA,EAAY;AACjB,IAAA,IAAI;AACF,MAAA,OAAO,MAAM,IAAA,CAAK,IAAA,CAAK,GAAA,CAAqB,2BAA2B,CAAA;AAAA,IACzE,SAAS,GAAA,EAAK;AACZ,MAAA,MAAM,YAAY,GAAG,CAAA;AAAA,IACvB;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,MAAA,GAAwB;AAC5B,IAAA,IAAI,IAAA,CAAK,IAAA,CAAK,YAAA,EAAa,EAAG;AAC5B,MAAA,IAAI;AACF,QAAA,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,EAAE,CAAA;AAAA,MACrD,CAAA,CAAA,MAAQ;AAAA,MAER;AAAA,IACF;AACA,IAAA,IAAA,CAAK,IAAA,CAAK,aAAa,MAAS,CAAA;AAAA,EAClC;AAAA;AAAA,EAIQ,WAAA,GAAoB;AAC1B,IAAA,IAAI,CAAC,IAAA,CAAK,IAAA,CAAK,YAAA,EAAa,EAAG;AAC7B,MAAA,MAAM,IAAI,SAAA,CAAU,qDAAA,EAAuD,GAAG,CAAA;AAAA,IAChF;AAAA,EACF;AACF;AAKO,IAAM,SAAA,GAAN,cAAwB,KAAA,CAAM;AAAA,EACnC,WAAA,CACE,OAAA,EACgB,UAAA,EACA,OAAA,EAChB;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHG,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGhB,IAAA,IAAA,CAAK,IAAA,GAAO,WAAA;AAAA,EACd;AAAA,EALkB,UAAA;AAAA,EACA,OAAA;AAKpB,CAAA;AAQA,SAAS,YAAY,GAAA,EAAyB;AAC5C,EAAA,IAAI,GAAA,YAAe,WAAW,OAAO,GAAA;AACrC,EAAA,IAAI,eAAe,YAAA,EAAc;AAC/B,IAAA,MAAM,OAAA,GAAW,IAAI,OAAA,IAAW,MAAA;AAChC,IAAA,OAAO,IAAI,SAAA,CAAU,GAAA,CAAI,OAAA,EAAS,GAAA,CAAI,YAAY,OAAO,CAAA;AAAA,EAC3D;AACA,EAAA,MAAM,CAAA,GAAI,GAAA;AACV,EAAA,OAAO,IAAI,UAAU,CAAA,eAAA,EAAkB,CAAA,EAAG,WAAW,MAAA,CAAO,GAAG,CAAC,CAAA,CAAA,EAAI,CAAA,EAAG;AAAA,IACrE,aAAA,EAAe,CAAA,EAAG,OAAA,IAAW,MAAA,CAAO,GAAG;AAAA,GACxC,CAAA;AACH;AAEA,SAASA,YAAAA,CAAY,GAAA,EAAa,aAAA,GAAgB,KAAA,EAAe;AAC/D,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,IAAI,GAAA,CAAI,GAAG,CAAA;AAC1B,IAAA,IAAI,CAAC,CAAC,OAAA,EAAS,QAAQ,EAAE,QAAA,CAAS,MAAA,CAAO,QAAQ,CAAA,EAAG;AAClD,MAAA,MAAM,IAAI,SAAA,CAAU,CAAA,kBAAA,EAAqB,MAAA,CAAO,QAAQ,IAAI,GAAG,CAAA;AAAA,IACjE;AACA,IAAA,IAAI,CAAC,aAAA,IAAiB,MAAA,CAAO,QAAA,KAAa,QAAA,EAAU;AAClD,MAAA,MAAM,IAAI,SAAA;AAAA,QACR,yFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,MAAA,CAAO,MAAA;AAAA,EAChB,SAAS,KAAA,EAAO;AACd,IAAA,IAAI,KAAA,YAAiB,WAAW,MAAM,KAAA;AACtC,IAAA,MAAM,IAAI,SAAA,CAAU,CAAA,aAAA,EAAgB,GAAG,IAAI,GAAG,CAAA;AAAA,EAChD;AACF;;;ACrdO,IAAM,mBAAA,GAAsB;AAO5B,IAAM,eAAA,GAAkB;AAMxB,IAAM,YAAA,GAAe;AAMrB,IAAM,eAAA,GAAkB;AA6DlBC,6BAAN,wBAAA,CAAkE;AAAA,EAQvE,YAGmB,MAAA,EACjB;AADiB,IAAA,IAAA,CAAA,MAAA,GAAA,MAAA;AAAA,EAChB;AAAA,EADgB,MAAA;AAAA,EAVF,MAAA,GAAS,IAAIC,aAAA,CAAOD,0BAAA,CAAmB,IAAI,CAAA;AAAA,EACpD,MAAA,GAAmC,IAAA;AAAA,EACnC,UAAA,GAAgC,IAAA;AAAA,EAChC,SAAA,GAAY,KAAA;AAAA,EACZ,cAAA,GAAwC,IAAA;AAAA,EACxC,iBAAA,GAAoB,CAAA;AAAA;AAAA;AAAA;AAAA,EAW5B,MAAM,YAAA,GAA8B;AAClC,IAAA,IAAI,CAAC,KAAK,MAAA,EAAQ;AAChB,MAAA,IAAA,CAAK,MAAA,CAAO,IAAA;AAAA,QACV;AAAA,OACF;AACA,MAAA;AAAA,IACF;AAEA,IAAA,MAAM,IAAA,CAAK,UAAA,CAAW,IAAA,CAAK,MAAM,CAAA;AAAA,EACnC;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,eAAA,GAAiC;AACrC,IAAA,MAAM,KAAK,QAAA,EAAS;AAAA,EACtB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,WAAW,MAAA,EAAiD;AAChE,IAAA,IAAA,CAAK,MAAA,CAAO,GAAA,CAAI,CAAA,oCAAA,EAAuC,MAAA,CAAO,gBAAgB,CAAA,CAAE,CAAA;AAEhF,IAAA,IAAI;AACF,MAAA,IAAA,CAAK,MAAA,GAAS,IAAI,iBAAA,CAAkB;AAAA;AAAA;AAAA,QAGlC,kBAAkB,MAAA,CAAO,gBAAA;AAAA,QACzB,QAAQ,MAAA,CAAO,MAAA;AAAA,QACf,WAAW,MAAA,CAAO,SAAA;AAAA,QAClB,SAAS,MAAA,CAAO,OAAA;AAAA,QAChB,eAAe,MAAA,CAAO;AAAA,OACvB,CAAA;AAGD,MAAA,IAAA,CAAK,UAAA,GAAa,IAAA,CAAK,gBAAA,CAAiB,IAAA,CAAK,MAAM,CAAA;AAGnD,MAAA,IAAI,MAAA,CAAO,mBAAmB,KAAA,EAAO;AACnC,QAAA,MAAM,KAAK,cAAA,EAAe;AAAA,MAC5B;AAEA,MAAA,IAAA,CAAK,SAAA,GAAY,IAAA;AACjB,MAAA,IAAA,CAAK,iBAAA,GAAoB,CAAA;AACzB,MAAA,IAAA,CAAK,MAAA,CAAO,IAAI,6CAA6C,CAAA;AAAA,IAC/D,SAAS,KAAA,EAAO;AACd,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAA,CAAK,MAAA,CAAO,KAAA,CAAM,CAAA,yCAAA,EAA4C,GAAA,CAAI,OAAO,CAAA,CAAE,CAAA;AAE3E,MAAA,IAAI,OAAO,aAAA,EAAe;AACxB,QAAA,IAAA,CAAK,kBAAkB,MAAM,CAAA;AAAA,MAC/B,CAAA,MAAO;AACL,QAAA,MAAM,KAAA;AAAA,MACR;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAA,GAA0B;AAC9B,IAAA,IAAA,CAAK,MAAA,CAAO,IAAI,kCAAkC,CAAA;AAGlD,IAAA,IAAI,KAAK,cAAA,EAAgB;AACvB,MAAA,YAAA,CAAa,KAAK,cAAc,CAAA;AAChC,MAAA,IAAA,CAAK,cAAA,GAAiB,IAAA;AAAA,IACxB;AAGA,IAAA,IAAA,CAAK,MAAA,GAAS,IAAA;AACd,IAAA,IAAA,CAAK,UAAA,GAAa,IAAA;AAClB,IAAA,IAAA,CAAK,SAAA,GAAY,KAAA;AAEjB,IAAA,IAAA,CAAK,MAAA,CAAO,IAAI,sCAAsC,CAAA;AAAA,EACxD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,SAAA,GAA+B;AAC7B,IAAA,IAAI,CAAC,KAAK,MAAA,EAAQ;AAChB,MAAA,MAAM,IAAI,gBAAA;AAAA,QACR,sFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,IAAA,CAAK,MAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,aAAA,GAA4B;AAC1B,IAAA,IAAI,CAAC,KAAK,UAAA,EAAY;AACpB,MAAA,MAAM,IAAI,gBAAA;AAAA,QACR,+EAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,IAAA,CAAK,UAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA,EAKA,WAAA,GAAuB;AACrB,IAAA,OAAO,IAAA,CAAK,SAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,cAAA,GAAmC;AACvC,IAAA,IAAI,CAAC,KAAK,MAAA,EAAQ;AAChB,MAAA,OAAO,KAAA;AAAA,IACT;AAEA,IAAA,IAAI;AACF,MAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,MAAA,CAAO,SAAA,EAAU;AAC3C,MAAA,IAAA,CAAK,SAAA,GAAY,MAAA,CAAO,MAAA,KAAW,SAAA,IAAa,OAAO,MAAA,KAAW,IAAA;AAClE,MAAA,OAAO,IAAA,CAAK,SAAA;AAAA,IACd,SAAS,KAAA,EAAO;AACd,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAA,CAAK,MAAA,CAAO,IAAA,CAAK,CAAA,wBAAA,EAA2B,GAAA,CAAI,OAAO,CAAA,CAAE,CAAA;AACzD,MAAA,IAAA,CAAK,SAAA,GAAY,KAAA;AACjB,MAAA,OAAO,KAAA;AAAA,IACT;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,SAAA,GAKE;AACA,IAAA,OAAO;AAAA,MACL,WAAW,IAAA,CAAK,SAAA;AAAA,MAChB,OAAA,EAAS,IAAA,CAAK,MAAA,EAAQ,UAAA,EAAW,IAAK,IAAA;AAAA,MACtC,aAAA,EAAe,IAAA,CAAK,MAAA,EAAQ,eAAA,EAAgB,IAAK,KAAA;AAAA,MACjD,mBAAmB,IAAA,CAAK;AAAA,KAC1B;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,oBAAoB,MAAA,EAMG;AACrB,IAAA,OAAO,IAAI,mBAAmB,MAAM,CAAA;AAAA,EACtC;AAAA;AAAA;AAAA;AAAA,EAKA,iBAAiB,MAAA,EAKC;AAChB,IAAA,OAAO,IAAI,WAAc,MAAM,CAAA;AAAA,EACjC;AAAA;AAAA;AAAA;AAAA,EAKQ,iBAAiB,MAAA,EAAuC;AAC9D,IAAA,OAAO;AAAA,MACL,MAAA;AAAA,MACA,WAAW,YAAY;AACrB,QAAA,IAAI;AACF,UAAA,MAAM,MAAA,GAAS,MAAM,MAAA,CAAO,SAAA,EAAU;AACtC,UAAA,OAAO,MAAA,CAAO,MAAA,KAAW,SAAA,IAAa,MAAA,CAAO,MAAA,KAAW,IAAA;AAAA,QAC1D,CAAA,CAAA,MAAQ;AACN,UAAA,OAAO,KAAA;AAAA,QACT;AAAA,MACF,CAAA;AAAA,MACA,UAAA,EAAY,MAAM,MAAA,CAAO,UAAA;AAAW,KACtC;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKQ,kBAAkB,MAAA,EAAwC;AAChE,IAAA,MAAM,WAAA,GAAc,OAAO,oBAAA,IAAwB,CAAA;AACnD,IAAA,MAAM,QAAA,GAAW,OAAO,iBAAA,IAAqB,GAAA;AAE7C,IAAA,IAAI,WAAA,GAAc,CAAA,IAAK,IAAA,CAAK,iBAAA,IAAqB,WAAA,EAAa;AAC5D,MAAA,IAAA,CAAK,MAAA,CAAO,KAAA,CAAM,CAAA,2BAAA,EAA8B,WAAW,CAAA,qBAAA,CAAuB,CAAA;AAClF,MAAA;AAAA,IACF;AAEA,IAAA,IAAA,CAAK,iBAAA,EAAA;AACL,IAAA,IAAA,CAAK,OAAO,GAAA,CAAI,CAAA,gCAAA,EAAmC,KAAK,iBAAiB,CAAA,IAAA,EAAO,QAAQ,CAAA,EAAA,CAAI,CAAA;AAE5F,IAAA,IAAA,CAAK,cAAA,GAAiB,WAAW,YAAY;AAC3C,MAAA,IAAI;AACF,QAAA,MAAM,IAAA,CAAK,WAAW,MAAM,CAAA;AAAA,MAC9B,CAAA,CAAA,MAAQ;AAAA,MAER;AAAA,IACF,GAAG,QAAQ,CAAA;AAAA,EACb;AACF;AAhPaA,0BAAA,GAAN,eAAA,CAAA;AAAA,EADNE,iBAAA,EAAW;AAAA,EAUP,eAAA,CAAA,CAAA,EAAAC,eAAA,EAAS,CAAA;AAAA,EACT,iCAAO,mBAAmB,CAAA;AAAA,CAAA,EAVlBH,0BAAA,CAAA;;;ACFAI,4BAAN,uBAAA,CAAwB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAS7B,OAAO,OAAA,CAAQ,MAAA,EAAkC,QAAA,GAAW,IAAA,EAAqB;AAC/E,IAAA,OAAO;AAAA,MACL,MAAA,EAAQA,yBAAA;AAAA,MACR,MAAA,EAAQ,QAAA;AAAA,MACR,SAAA,EAAW;AAAA,QACT;AAAA,UACE,OAAA,EAAS,mBAAA;AAAA,UACT,QAAA,EAAU;AAAA,SACZ;AAAA,QACAJ,0BAAA;AAAA,QACA,GAAG,KAAK,mBAAA;AAAoB,OAC9B;AAAA,MACA,OAAA,EAAS;AAAA,QACPA,0BAAA;AAAA,QACA,eAAA;AAAA,QACA,YAAA;AAAA,QACA;AAAA;AACF,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,OAAO,aAAa,OAAA,EAAuD;AACzE,IAAA,MAAM,cAAA,GAAiB,IAAA,CAAK,oBAAA,CAAqB,OAAO,CAAA;AAExD,IAAA,OAAO;AAAA,MACL,MAAA,EAAQI,yBAAA;AAAA,MACR,MAAA,EAAQ,QAAQ,QAAA,IAAY,IAAA;AAAA,MAC5B,OAAA,EAAS,OAAA,CAAQ,OAAA,IAAW,EAAC;AAAA,MAC7B,SAAA,EAAW;AAAA,QACT,GAAG,cAAA;AAAA,QACHJ,0BAAA;AAAA,QACA,GAAG,KAAK,mBAAA;AAAoB,OAC9B;AAAA,MACA,OAAA,EAAS;AAAA,QACPA,0BAAA;AAAA,QACA,eAAA;AAAA,QACA,YAAA;AAAA,QACA;AAAA;AACF,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAe,mBAAA,GAAkC;AAC/C,IAAA,OAAO;AAAA,MACL;AAAA,QACE,OAAA,EAAS,eAAA;AAAA,QACT,UAAA,EAAY,CAAC,MAAA,KACX,IAAI,UAAA,CAAc;AAAA;AAAA;AAAA;AAAA,UAIhB,SAAS,MAAA,CAAO,gBAAA;AAAA,UAChB,SAAS,MAAA,CAAO,OAAA;AAAA,UAChB,eAAe,MAAA,CAAO;AAAA,SACvB,CAAA;AAAA,QACH,MAAA,EAAQ,CAAC,mBAAmB;AAAA,OAC9B;AAAA,MACA;AAAA,QACE,OAAA,EAAS,YAAA;AAAA,QACT,UAAA,EAAY,CAAC,IAAA,KAAwB,IAAA,CAAK,KAAA;AAAA,QAC1C,MAAA,EAAQ,CAAC,eAAe;AAAA,OAC1B;AAAA,MACA;AAAA,QACE,OAAA,EAAS,eAAA;AAAA,QACT,UAAA,EAAY,CAAC,IAAA,KAAwB,IAAA,CAAK,QAAA;AAAA,QAC1C,MAAA,EAAQ,CAAC,eAAe;AAAA;AAC1B,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,OAAe,qBAAqB,OAAA,EAAoD;AACtF,IAAA,IAAI,QAAQ,UAAA,EAAY;AACtB,MAAA,OAAO;AAAA,QACL;AAAA,UACE,OAAA,EAAS,mBAAA;AAAA,UACT,YAAY,OAAA,CAAQ,UAAA;AAAA,UACpB,MAAA,EAAQ,OAAA,CAAQ,MAAA,IAAU;AAAC;AAC7B,OACF;AAAA,IACF;AAEA,IAAA,IAAI,QAAQ,QAAA,EAAU;AACpB,MAAA,OAAO;AAAA,QACL;AAAA,UACE,SAAS,OAAA,CAAQ,QAAA;AAAA,UACjB,UAAU,OAAA,CAAQ;AAAA,SACpB;AAAA,QACA;AAAA,UACE,OAAA,EAAS,mBAAA;AAAA,UACT,UAAA,EAAY,OAAO,cAAA,KACjB,cAAA,CAAe,wBAAA,EAAyB;AAAA,UAC1C,MAAA,EAAQ,CAAC,OAAA,CAAQ,QAAQ;AAAA;AAC3B,OACF;AAAA,IACF;AAEA,IAAA,IAAI,QAAQ,WAAA,EAAa;AACvB,MAAA,OAAO;AAAA,QACL;AAAA,UACE,OAAA,EAAS,mBAAA;AAAA,UACT,UAAA,EAAY,OAAO,cAAA,KACjB,cAAA,CAAe,wBAAA,EAAyB;AAAA,UAC1C,MAAA,EAAQ,CAAC,OAAA,CAAQ,WAAW;AAAA;AAC9B,OACF;AAAA,IACF;AAEA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR;AAAA,KACF;AAAA,EACF;AACF;AA5IaI,yBAAA,GAAN,eAAA,CAAA;AAAA,EADNC,aAAA,CAAO,EAAE;AAAA,CAAA,EACGD,yBAAA,CAAA","file":"index.js","sourcesContent":["import { z } from 'zod';\n\n/**\n * Supported blockchain types\n */\nexport const ChainTypeSchema = z.enum([\n 'hedera',\n 'xrpl',\n 'polkadot',\n 'solana',\n 'stellar',\n 'ethereum',\n 'polygon',\n 'bitcoin',\n 'cardano',\n]);\n\nexport type ChainType = z.infer<typeof ChainTypeSchema>;\n\n/**\n * Network environment types\n */\nexport const NetworkTypeSchema = z.enum(['mainnet', 'testnet', 'devnet', 'local']);\n\nexport type NetworkType = z.infer<typeof NetworkTypeSchema>;\n\n/**\n * Chain metadata schema\n */\nexport const ChainMetadataSchema = z.object({\n chain: ChainTypeSchema,\n network: NetworkTypeSchema,\n nativeCurrency: z.object({\n name: z.string(),\n symbol: z.string(),\n decimals: z.number().int().min(0),\n }),\n blockTime: z.number().optional(),\n rpcEndpoint: z.string().url().optional(),\n});\n\nexport type ChainMetadata = z.infer<typeof ChainMetadataSchema>;\n","/**\n * Token Capabilities Schema\n *\n * Defines universal token capabilities that are chain-agnostic.\n * Each capability maps to chain-specific implementations.\n */\nimport { z } from 'zod';\n\n/**\n * Token Capabilities Schema\n *\n * These capabilities define what operations a token supports.\n * The validator layer translates these to chain-specific implementations.\n */\nexport const TokenCapabilitiesSchema = z.object({\n /**\n * Pause all token operations globally\n * - Hedera: Adds pauseKey to token\n * - XRPL: Enables GlobalFreeze flag on issuer account\n */\n pausable: z.boolean().default(false),\n\n /**\n * Freeze/restrict specific accounts from transacting\n * - Hedera: Adds freezeKey to token\n * - XRPL: Enables trust line freeze capability\n */\n restrictable: z.boolean().default(false),\n\n /**\n * KYC/compliance controls for accounts\n * - Hedera: Adds kycKey to token\n * - XRPL: Requires authorized trust lines (RequireAuth)\n */\n compliant: z.boolean().default(false),\n\n /**\n * Force remove tokens from accounts (compliance wipe)\n * - Hedera: Adds wipeKey to token\n * - XRPL: Enables clawback (lsfAllowTrustLineClawback)\n */\n wipeable: z.boolean().default(false),\n\n /**\n * Mint additional supply after creation\n * - Hedera: Adds supplyKey to token\n * - XRPL: Issuer can always issue more via Payment\n */\n mintable: z.boolean().default(true),\n\n /**\n * Burn tokens (reduce supply)\n * - Hedera: Requires supplyKey\n * - XRPL: Send back to issuer (reduces supply)\n */\n burnable: z.boolean().default(true),\n\n /**\n * Allow transfers between accounts\n * - All chains: Generally always supported\n */\n transferable: z.boolean().default(true),\n});\n\nexport type TokenCapabilities = z.infer<typeof TokenCapabilitiesSchema>;\n\n/**\n * Capability names as a type\n */\nexport type CapabilityName = keyof TokenCapabilities;\n\n/**\n * List of all capability names\n */\nexport const CAPABILITY_NAMES: CapabilityName[] = [\n 'pausable',\n 'restrictable',\n 'compliant',\n 'wipeable',\n 'mintable',\n 'burnable',\n 'transferable',\n];\n","import { z } from 'zod';\nimport { ChainTypeSchema } from './chain.schema';\n\n/**\n * Account identifier schema - generic string that works across chains\n */\nexport const AccountIdSchema = z.string().min(1);\n\n// Note: Export as AccountIdString to avoid collision with AccountId value object\nexport type AccountIdString = z.infer<typeof AccountIdSchema>;\n\n/**\n * Account information schema\n */\nexport const AccountInfoSchema = z.object({\n accountId: AccountIdSchema,\n balance: z.string(), // String to handle large numbers and decimals\n chain: ChainTypeSchema,\n publicKey: z.string().optional(),\n metadata: z.record(z.any()).optional(),\n createdAt: z.date().optional(),\n updatedAt: z.date().optional(),\n});\n\nexport type AccountInfo = z.infer<typeof AccountInfoSchema>;\n\n/**\n * Account balance schema with token details\n */\nexport const AccountBalanceSchema = z.object({\n accountId: AccountIdSchema,\n chain: ChainTypeSchema,\n nativeBalance: z.string(),\n tokens: z\n .array(\n z.object({\n tokenId: z.string(),\n balance: z.string(),\n decimals: z.number().int().min(0),\n symbol: z.string().optional(),\n })\n )\n .optional(),\n timestamp: z.date(),\n});\n\nexport type AccountBalance = z.infer<typeof AccountBalanceSchema>;\n","import { z } from 'zod';\n\n/**\n * Sovereignty mode for entity creation.\n * - 'partial': user + validator both sign; on-chain = nested KeyList/SignerList\n * - 'full': validator-only signs; on-chain = validator multisig alone\n *\n * \"partial\" is product-facing \"mixed\".\n *\n * The schema accepts only 'partial' and 'full'. There is no owner-only mode\n * (no validator in the signing path); any payload carrying an unrecognized\n * `securityMode` fails safeParse at the schema boundary.\n */\nexport const SecurityModeSchema = z.enum(['partial', 'full']);\nexport type SecurityMode = z.infer<typeof SecurityModeSchema>;\n\n/**\n * Single source of truth for the sovereignty field invariant.\n *\n * - partial: requires BOTH entityId and appOwnerPublicKey\n * - full: requires entityId (appOwnerPublicKey is ignored, not an error)\n *\n * Exported so merged schemas in api.schema.ts can delegate here\n * instead of duplicating the predicate logic.\n */\nexport const sovereigntyRefinePredicate = (v: {\n securityMode: SecurityMode;\n entityId?: string;\n appOwnerPublicKey?: string;\n}): boolean => {\n if (v.securityMode === 'partial') {\n return !!v.entityId && !!v.appOwnerPublicKey;\n }\n // 'full': requires entityId\n return !!v.entityId;\n};\n\nexport const SOVEREIGNTY_REFINE_MESSAGE =\n \"securityMode='partial' requires entityId+appOwnerPublicKey; 'full' requires entityId\";\n\n/**\n * Shared fragment for every entity-creation prepare schema.\n *\n * Invariants enforced via refine:\n * - partial mode requires BOTH entityId and appOwnerPublicKey\n * - full mode requires entityId (appOwnerPublicKey ignored)\n */\n// Internal: the raw object so callers can `.merge()` it without needing\n// Zod-version-specific `.innerType()` unwrapping (v3 vs v4 API drift).\nexport const SovereigntyFieldsRawSchema = z.object({\n securityMode: SecurityModeSchema.default('full'),\n entityId: z.string().optional(),\n appOwnerPublicKey: z.string().optional(),\n});\n\nexport const SovereigntyFieldsSchema = SovereigntyFieldsRawSchema\n .refine(sovereigntyRefinePredicate, { message: SOVEREIGNTY_REFINE_MESSAGE });\n\nexport type SovereigntyFields = z.infer<typeof SovereigntyFieldsSchema>;\n\n/**\n * ---------------------------------------------------------------------------\n * Response-side metadata: the `sovereignty` block on PreparedTransaction\n * ---------------------------------------------------------------------------\n *\n * Every `PreparedTransactionResponse` carries a `sovereignty` block so smart-\n * apps and tests can inspect the on-chain authorization topology the\n * validator is building, without decoding raw chain-native bytes.\n *\n * - `mode: 'partial'|'full'` carries the entity id, the raw BLS hex pubkeys\n * from the entity's DKG binding, and a chain-native authorization-set\n * descriptor (KeyList for Hedera, SignerList for XRPL, weighted signer set\n * for Stellar).\n */\n\n/**\n * Recursive JSON shape for a Hedera authorization key.\n *\n * A Hedera `adminKey` / `supplyKey` / capability-key value is either a single\n * ed25519 public key or a threshold KeyList whose members are themselves\n * keys. Kept JSON-serializable (ed25519 keys as hex strings) so callers can\n * walk the structure without a `@hashgraph/sdk` dep.\n */\nexport type HederaKeyShape =\n | { type: 'ed25519'; key: string }\n | { type: 'keyList'; threshold: number; keys: HederaKeyShape[] };\n\nexport const HederaKeyShapeSchema: z.ZodType<HederaKeyShape> = z.lazy(() =>\n z.union([\n z.object({ type: z.literal('ed25519'), key: z.string() }),\n z.object({\n type: z.literal('keyList'),\n threshold: z.number().int().nonnegative(),\n keys: z.array(HederaKeyShapeSchema),\n }),\n ]),\n);\n\nexport const HederaAuthorizationSetShapeSchema = z.object({\n chain: z.literal('hedera'),\n adminKey: HederaKeyShapeSchema,\n supplyKey: HederaKeyShapeSchema.optional(),\n freezeKey: HederaKeyShapeSchema.optional(),\n wipeKey: HederaKeyShapeSchema.optional(),\n pauseKey: HederaKeyShapeSchema.optional(),\n kycKey: HederaKeyShapeSchema.optional(),\n});\n\nexport const XrplAuthorizationSetShapeSchema = z.object({\n chain: z.literal('xrpl'),\n signerEntries: z.array(\n z.object({\n account: z.string(),\n weight: z.number().int().nonnegative(),\n }),\n ),\n signerQuorum: z.number().int().nonnegative(),\n masterDisabled: z.boolean(),\n});\n\nexport const StellarAuthorizationSetShapeSchema = z.object({\n chain: z.literal('stellar'),\n signers: z.array(\n z.object({\n key: z.string(),\n weight: z.number().int().nonnegative(),\n }),\n ),\n thresholds: z.object({\n low: z.number().int().nonnegative(),\n med: z.number().int().nonnegative(),\n high: z.number().int().nonnegative(),\n }),\n masterWeight: z.number().int().nonnegative(),\n});\n\n/**\n * Recursive JSON shape for a Polkadot authorization signatory.\n *\n * A Polkadot sovereignty set resolves to a single on-chain controlling\n * `address`. That address is either a native `pallet_multisig` address\n * whose signatories may themselves be multisig accounts (`'full'` = flat\n * validator multisig; `'partial'` = nested outer multisig\n * `[userAddress, innerValidatorMultisig]`).\n *\n * Kept JSON-serializable (SS58 addresses as strings) so callers can walk the\n * structure without a `@polkadot/*` dep.\n */\nexport type PolkadotSignatoryShape =\n | { type: 'account'; address: string }\n | {\n type: 'multisig';\n address: string;\n threshold: number;\n signatories: PolkadotSignatoryShape[];\n };\n\nexport const PolkadotSignatoryShapeSchema: z.ZodType<PolkadotSignatoryShape> = z.lazy(() =>\n z.union([\n z.object({ type: z.literal('account'), address: z.string() }),\n z.object({\n type: z.literal('multisig'),\n address: z.string(),\n threshold: z.number().int().positive(),\n signatories: z.array(PolkadotSignatoryShapeSchema),\n }),\n ]),\n);\n\nexport const PolkadotAuthorizationSetShapeSchema = z.object({\n chain: z.literal('polkadot'),\n address: z.string(),\n signatory: PolkadotSignatoryShapeSchema,\n ss58Format: z.number().int().nonnegative(),\n});\n\nexport const PreparedTransactionAuthorizationSetSchema = z.discriminatedUnion('chain', [\n HederaAuthorizationSetShapeSchema,\n XrplAuthorizationSetShapeSchema,\n StellarAuthorizationSetShapeSchema,\n PolkadotAuthorizationSetShapeSchema,\n]);\n\nexport type HederaAuthorizationSetShape = z.infer<typeof HederaAuthorizationSetShapeSchema>;\nexport type XrplAuthorizationSetShape = z.infer<typeof XrplAuthorizationSetShapeSchema>;\nexport type StellarAuthorizationSetShape = z.infer<typeof StellarAuthorizationSetShapeSchema>;\nexport type PolkadotAuthorizationSetShape = z.infer<typeof PolkadotAuthorizationSetShapeSchema>;\nexport type PreparedTransactionAuthorizationSet = z.infer<\n typeof PreparedTransactionAuthorizationSetSchema\n>;\n\n/**\n * `authorizationSet` is REQUIRED for prepare endpoints that build the on-chain\n * authorization at create time (token create, account create, account setup)\n * and OPTIONAL for prepare endpoints that invoke an already-configured\n * authorization (mint, burn, transfer, payment). In the latter case the\n * authorization set lives on-chain from a prior create and smart-apps already\n * have its shape from the original create response.\n *\n * The union has two arms: `'partial'` and `'full'`. There is no owner-only\n * `'none'` arm.\n */\nexport const PreparedTransactionSovereigntySchema = z.discriminatedUnion('mode', [\n z.object({\n mode: z.literal('partial'),\n entityId: z.string(),\n validatorPublicKeys: z.array(z.string()),\n authorizationSet: PreparedTransactionAuthorizationSetSchema.optional(),\n }),\n z.object({\n mode: z.literal('full'),\n entityId: z.string(),\n validatorPublicKeys: z.array(z.string()),\n authorizationSet: PreparedTransactionAuthorizationSetSchema.optional(),\n }),\n]);\n\nexport type PreparedTransactionSovereignty = z.infer<typeof PreparedTransactionSovereigntySchema>;\n","import { z } from 'zod';\nimport { ChainTypeSchema } from './chain.schema';\nimport { AccountIdSchema } from './account.schema';\nimport { TokenCapabilitiesSchema } from './capabilities.schema';\nimport {\n SovereigntyFieldsRawSchema,\n sovereigntyRefinePredicate,\n SOVEREIGNTY_REFINE_MESSAGE,\n PreparedTransactionSovereigntySchema,\n} from './sovereignty.schema';\n\n/**\n * Vendored mirror of `RuleRefSchema` from\n * `libs/shared/src/schemas/api.schema.ts`. An HCS pointer to a published\n * `ValidatorRules`: the chain whose HCS carries it, the topic id, and the\n * rule message's consensus timestamp. Supplied on a create request so the\n * chain adapter stamps the IMMUTABLE creation-tx rule anchor\n * (`rule:<topicId>@<consensusTimestamp>:<entityType>`) instead of the degraded\n * `rule:bootstrap:<entityType>` marker (RFC 2026-06-15-onchain-rule-anchor §6.1).\n * Keep byte-identical with the shared definition when that schema changes.\n */\nexport const RuleRefSchema = z.object({\n /** Chain whose HCS the rule was published on (canonically 'hedera'). */\n chain: ChainTypeSchema,\n /** HCS topic ID the rule message was published to. */\n topicId: z.string().min(1),\n /** HCS consensus timestamp of the rule message. */\n consensusTimestamp: z.string().min(1),\n});\n\nexport type RuleRefInput = z.infer<typeof RuleRefSchema>;\n\n/**\n * Create account request schema\n *\n * @important validatorTimestamp is REQUIRED - all entities must be bound to a validator.\n * The validator rules are stored on HCS and referenced by consensus timestamp.\n */\nexport const CreateAccountRequestSchema = z.object({\n chain: ChainTypeSchema,\n initialBalance: z.string(),\n publicKey: z.string().optional(),\n memo: z.string().optional(),\n /**\n * Who pays the chain fee for this transaction. Resolution happens in the\n * controller layer (`resolvePayerAccountId`): explicit `payerAccountId`\n * wins, else the JWT-authenticated smart-app's wallet address, else the\n * request is rejected with 400. The validator **never** silently falls\n * back to its own operator account.\n */\n payerAccountId: z.string().optional(),\n /**\n * HCS consensus timestamp of the validator rules (REQUIRED).\n * Format: \"1766490325.123456789\"\n */\n validatorTimestamp: z.string().min(1, 'validatorTimestamp is required'),\n /**\n * HCS topic ID where validator rules are stored (REQUIRED).\n */\n validatorTopicId: z.string().min(1, 'validatorTopicId is required'),\n /**\n * Whether to remove admin key after creation (makes entity immutable).\n * Default: true for production-grade immutability.\n */\n immutable: z.boolean().default(true),\n /**\n * Smart node security mode for the account key structure.\n * - 'partial': threshold(2, [appOwnerKey, tssKeyList]) — co-control\n * - 'full': TSS KeyList only — full validator network control\n * @defaultValue 'full'\n */\n securityMode: z.enum(['partial', 'full']).default('full'),\n /**\n * App owner's public key (required for 'partial' security mode).\n * The owner key + TSS network key form a threshold-2 multi-sig.\n */\n appOwnerPublicKey: z.string().optional(),\n /**\n * The entity's canonical `ruleRef` (HCS pointer to its `ValidatorRules`). When\n * present, the chain adapter stamps the IMMUTABLE creation-tx rule anchor\n * (`rule:<topicId>@<consensusTimestamp>:<entityType>`) — distinct from the\n * mutable validator-binding memo — so the sign-gate resolves the rule on-chain\n * (kind:'ref') rather than trusting the replicated binding\n * (RFC 2026-06-15-onchain-rule-anchor §6.1). Absent ⇒ the degraded\n * `rule:bootstrap:<entityType>` marker when `entityType` is supplied.\n */\n ruleRef: RuleRefSchema.optional(),\n /**\n * Entity-type tag stamped into the rule anchor (e.g. 'wallet', 'account').\n * Supply it to enable the on-chain anchor; omit for the prior memo-less\n * (legacy) behaviour.\n */\n entityType: z.string().min(1).optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type CreateAccountRequest = z.infer<typeof CreateAccountRequestSchema>;\n\n/**\n * Create account response schema\n */\nexport const CreateAccountResponseSchema = z.object({\n accountId: AccountIdSchema,\n publicKey: z.string().optional(),\n privateKey: z.string().optional(), // Only returned on creation, store securely!\n transactionId: z.string(),\n chain: ChainTypeSchema,\n timestamp: z.date().optional(),\n});\n\nexport type CreateAccountResponse = z.infer<typeof CreateAccountResponseSchema>;\n\n/**\n * Transfer request schema\n */\nexport const TransferRequestSchema = z.object({\n chain: ChainTypeSchema,\n from: AccountIdSchema,\n to: AccountIdSchema,\n amount: z.string(),\n tokenId: z.string().optional(), // undefined = native token\n memo: z.string().optional(),\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type TransferRequest = z.infer<typeof TransferRequestSchema>;\n\n/**\n * Transfer response schema\n */\nexport const TransferResponseSchema = z.object({\n transactionId: z.string(),\n status: z.enum(['pending', 'success', 'failed']),\n chain: ChainTypeSchema,\n fee: z.string().optional(),\n timestamp: z.date().optional(),\n});\n\nexport type TransferResponse = z.infer<typeof TransferResponseSchema>;\n\n/**\n * Query balance request schema\n */\nexport const QueryBalanceRequestSchema = z.object({\n chain: ChainTypeSchema,\n accountId: AccountIdSchema,\n});\n\nexport type QueryBalanceRequest = z.infer<typeof QueryBalanceRequestSchema>;\n\n/**\n * Query transaction request schema\n */\nexport const QueryTransactionRequestSchema = z.object({\n chain: ChainTypeSchema,\n transactionId: z.string(),\n});\n\nexport type QueryTransactionRequest = z.infer<typeof QueryTransactionRequestSchema>;\n\n/**\n * Create token request schema (v2 with capabilities)\n *\n * Supports universal token capabilities that are validated against chain support.\n * If a capability is requested but not supported on the target chain, an error is thrown.\n */\nexport const CreateTokenRequestSchema = z.object({\n chain: ChainTypeSchema,\n name: z.string().min(1).max(100),\n symbol: z.string().min(1).max(10),\n decimals: z.number().int().min(0).max(18),\n initialSupply: z.string(),\n type: z.enum(['fungible', 'nft']),\n treasury: AccountIdSchema.optional(),\n /**\n * Token capabilities define what operations the token supports.\n * These are validated against chain support and translated to native implementations.\n *\n * @example\n * ```typescript\n * capabilities: {\n * pausable: true, // Hedera: pauseKey, XRPL: GlobalFreeze\n * restrictable: true, // Hedera: freezeKey, XRPL: TrustLineFreeze\n * compliant: true, // Hedera: kycKey, XRPL: RequireAuth\n * wipeable: true, // Hedera: wipeKey, XRPL: Clawback\n * mintable: true, // Allow additional minting\n * burnable: true, // Allow burning\n * }\n * ```\n */\n capabilities: TokenCapabilitiesSchema.optional().default({\n pausable: false,\n restrictable: false,\n compliant: false,\n wipeable: false,\n mintable: true,\n burnable: true,\n transferable: true,\n }),\n /**\n * HCS consensus timestamp of the validator rules (REQUIRED).\n * Format: \"1766490325.123456789\"\n */\n validatorTimestamp: z.string().min(1, 'validatorTimestamp is required'),\n /**\n * HCS topic ID where validator rules are stored (REQUIRED).\n */\n validatorTopicId: z.string().min(1, 'validatorTopicId is required'),\n /**\n * Whether to remove admin key after creation (makes entity immutable).\n * Default: true for production-grade immutability.\n */\n immutable: z.boolean().default(true),\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n /**\n * The entity's canonical `ruleRef` (HCS pointer to its `ValidatorRules`). When\n * present, the chain adapter stamps the IMMUTABLE creation-tx rule anchor\n * (`rule:<topicId>@<consensusTimestamp>:<entityType>`) — distinct from the\n * mutable validator-binding token memo — so the sign-gate resolves the rule\n * on-chain (kind:'ref') rather than trusting the replicated binding\n * (RFC 2026-06-15-onchain-rule-anchor §6.1). Absent ⇒ the degraded\n * `rule:bootstrap:<entityType>` marker when `entityType` is supplied.\n */\n ruleRef: RuleRefSchema.optional(),\n /**\n * Entity-type tag stamped into the rule anchor (e.g. 'token'). Supply it to\n * enable the on-chain anchor; omit for the prior memo-less behaviour.\n */\n entityType: z.string().min(1).optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type CreateTokenRequest = z.infer<typeof CreateTokenRequestSchema>;\n\n/**\n * Create token response schema\n */\nexport const CreateTokenResponseSchema = z.object({\n tokenId: z.string(),\n transactionId: z.string(),\n chain: ChainTypeSchema,\n timestamp: z.date().optional(),\n});\n\nexport type CreateTokenResponse = z.infer<typeof CreateTokenResponseSchema>;\n\n/**\n * Mint token request schema\n */\n/**\n * Mint token request schema\n *\n * Supports both fungible and non-fungible token minting:\n * - Fungible: requires `amount` (e.g. \"1000\")\n * - NFT: requires `nftMetadata` (array of byte-encodable entries, one per NFT to mint)\n *\n * The chain adapter determines the appropriate native operation based on the token type.\n */\nexport const MintTokenRequestSchema = z.object({\n chain: ChainTypeSchema,\n tokenId: z.string(),\n\n /** Amount to mint (fungible tokens). Ignored for NFTs. */\n amount: z.string().optional(),\n\n /** Recipient account (fungible: transfer after mint; NFT: Hedera mints to treasury). */\n recipient: AccountIdSchema.optional(),\n\n /**\n * NFT metadata entries — one per NFT to mint.\n * Each entry becomes on-chain metadata (e.g. IPFS CID, encoded memo).\n * On Hedera: passed to TokenMintTransaction.setMetadata().\n * On XRPL: used as URI in NFTokenMint.\n */\n nftMetadata: z.array(z.string()).optional(),\n\n /** Additional chain-specific options. */\n metadata: z.record(z.any()).optional(),\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n});\n\nexport type MintTokenRequest = z.infer<typeof MintTokenRequestSchema>;\n\n/**\n * Burn token request schema\n */\nexport const BurnTokenRequestSchema = z.object({\n chain: ChainTypeSchema,\n tokenId: z.string(),\n amount: z.string(),\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type BurnTokenRequest = z.infer<typeof BurnTokenRequestSchema>;\n\n/**\n * Token action request schema (for pause, restrict, etc.)\n */\nexport const TokenActionRequestSchema = z.object({\n chain: ChainTypeSchema,\n tokenId: z.string(),\n accountId: AccountIdSchema.optional(), // Required for account-specific actions\n amount: z.string().optional(), // Required for wipe action\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type TokenActionRequest = z.infer<typeof TokenActionRequestSchema>;\n\n/**\n * Action result schema - unified response for all token actions\n */\nexport const ActionResultSchema = z.object({\n success: z.boolean(),\n transactionId: z.string(),\n chain: ChainTypeSchema,\n /** The native chain operation that was executed */\n chainOperation: z.string(),\n /** Additional context or notes about the operation */\n notes: z.array(z.string()).optional(),\n /** Timestamp of the operation */\n timestamp: z.date().optional(),\n});\n\nexport type ActionResult = z.infer<typeof ActionResultSchema>;\n\n/**\n * Create token result schema - extends ActionResult with token info\n */\nexport const CreateTokenResultSchema = ActionResultSchema.extend({\n tokenId: z.string(),\n /** The capabilities that were enabled for this token */\n enabledCapabilities: z.array(z.string()),\n});\n\nexport type CreateTokenResult = z.infer<typeof CreateTokenResultSchema>;\n\n// =============================================================================\n// PREPARED TRANSACTION RESPONSE TYPES (v3 API - Transaction Sovereignty)\n// =============================================================================\n\n/**\n * Validator signature for a prepared transaction\n */\nexport const ValidatorSignatureSchema = z.object({\n /** Validator's node ID */\n validatorId: z.string(),\n /** Validator's public key (hex-encoded) */\n publicKey: z.string(),\n /** Signature over the transaction bytes (hex-encoded) */\n signature: z.string(),\n /** When this signature was created */\n signedAt: z.date(),\n /** Signature algorithm used */\n algorithm: z.enum(['ed25519', 'ecdsa-secp256k1', 'bls12-381']).optional(),\n});\n\nexport type ValidatorSignature = z.infer<typeof ValidatorSignatureSchema>;\n\n/**\n * Hedera-specific metadata for prepared transactions\n */\nexport const HederaPreparedMetadataSchema = z.object({\n /** Hedera node account IDs that will process this transaction */\n nodeAccountIds: z.array(z.string()).optional(),\n /** Maximum transaction fee in tinybars */\n maxTransactionFee: z.string().optional(),\n /** Transaction memo */\n memo: z.string().optional(),\n /** Schedule info if this is a scheduled transaction */\n scheduleInfo: z\n .object({\n scheduleId: z.string(),\n adminKey: z.string().optional(),\n })\n .optional(),\n});\n\nexport type HederaPreparedMetadata = z.infer<typeof HederaPreparedMetadataSchema>;\n\n/**\n * XRPL-specific metadata for prepared transactions\n */\nexport const XRPLPreparedMetadataSchema = z.object({\n /** Sequence number for this transaction */\n sequence: z.number().optional(),\n /** Last ledger sequence for expiration */\n lastLedgerSequence: z.number().optional(),\n /** Signer list info for multi-sig */\n signerList: z\n .array(\n z.object({\n account: z.string(),\n signerWeight: z.number(),\n })\n )\n .optional(),\n /** Quorum weight required */\n signerQuorum: z.number().optional(),\n});\n\nexport type XRPLPreparedMetadata = z.infer<typeof XRPLPreparedMetadataSchema>;\n\n/**\n * Solana-specific metadata for prepared transactions\n */\nexport const SolanaPreparedMetadataSchema = z.object({\n /** Recent blockhash for transaction validity */\n recentBlockhash: z.string().optional(),\n /** Fee payer account */\n feePayer: z.string().optional(),\n /** Program IDs involved */\n programIds: z.array(z.string()).optional(),\n /** Squads v4 multisig PDA address (partial/full modes) */\n squadsMultisigPda: z.string().optional(),\n /** Squads v4 vault PDA address (partial/full modes) */\n squadsVaultPda: z.string().optional(),\n /** Index of the vault transaction proposal */\n squadsTransactionIndex: z.number().optional(),\n /** Proposal PDA address */\n squadsProposalAddress: z.string().optional(),\n /** Whether the multisig was created in this call (vs already existed) */\n multisigCreated: z.boolean().optional(),\n /** Security mode used to prepare this transaction */\n securityMode: z.enum(['partial', 'full']).optional(),\n /** SPL Token mint address (token-create and all SPL operations) */\n splMint: z.string().optional(),\n});\n\nexport type SolanaPreparedMetadata = z.infer<typeof SolanaPreparedMetadataSchema>;\n\n/**\n * Polkadot-specific metadata for prepared transactions\n */\nexport const PolkadotPreparedMetadataSchema = z.object({\n /** Era for transaction mortality */\n era: z.string().optional(),\n /** Nonce for the sender */\n nonce: z.number().optional(),\n /** Tip for priority */\n tip: z.string().optional(),\n /** Spec version for runtime */\n specVersion: z.number().optional(),\n});\n\nexport type PolkadotPreparedMetadata = z.infer<typeof PolkadotPreparedMetadataSchema>;\n\n/**\n * Union of all chain-specific metadata types\n */\nexport const ChainPreparedMetadataSchema = z.union([\n HederaPreparedMetadataSchema,\n XRPLPreparedMetadataSchema,\n SolanaPreparedMetadataSchema,\n PolkadotPreparedMetadataSchema,\n z.record(z.any()), // Allow extension for future chains\n]);\n\nexport type ChainPreparedMetadata = z.infer<typeof ChainPreparedMetadataSchema>;\n\n/**\n * Prepared transaction response - the core type for v3 API\n *\n * IMPORTANT: This is the unified response type for all transaction operations.\n * The transaction is frozen/prepared but NOT submitted. The caller is responsible\n * for submitting the transaction to the network.\n *\n * SECURITY PRINCIPLES:\n * 1. Validators NEVER pay fees - caller provides payerAccountId\n * 2. Validators NEVER submit transactions - they return signed bytes\n * 3. All operations use multi-sig - no single-key fallbacks\n * 4. Transaction ID is pre-assigned for deterministic tracking\n */\nexport const PreparedTransactionResponseSchema = z.object({\n /** The blockchain this transaction is for */\n chain: ChainTypeSchema,\n /** Type of transaction (e.g., 'TokenCreate', 'Payment', 'NFTMint') */\n transactionType: z.string(),\n /** Pre-assigned transaction ID for tracking */\n transactionId: z.string(),\n /** Base64-encoded frozen transaction bytes ready for submission */\n transactionBytes: z.string(),\n /** When this prepared transaction expires */\n expiresAt: z.date(),\n /** Validator signatures collected for this transaction */\n validatorSignatures: z.array(ValidatorSignatureSchema),\n /** Required payer account ID (caller must fund this account) */\n payerAccountId: z.string().optional(),\n /** Estimated network fee */\n estimatedFee: z.string().optional(),\n /** Number of signatures required for submission */\n requiredSignatures: z.number().optional(),\n /** Whether the transaction has enough signatures to submit */\n readyToSubmit: z.boolean().default(false),\n /** Chain-specific metadata */\n metadata: ChainPreparedMetadataSchema.optional(),\n /**\n * Sovereignty metadata: the mode and (for partial/full) the on-chain\n * authorization set the validator is binding to. Lets smart-apps and tests\n * inspect the authorization topology without decoding chain-native bytes.\n */\n sovereignty: PreparedTransactionSovereigntySchema.optional(),\n});\n\nexport type PreparedTransactionResponse = z.infer<typeof PreparedTransactionResponseSchema>;\n\n/**\n * Generic prepared transaction response with typed metadata\n */\nexport type PreparedTransactionResponseWithMetadata<T extends ChainPreparedMetadata> = Omit<\n PreparedTransactionResponse,\n 'metadata'\n> & {\n metadata?: T;\n};\n\n/**\n * Type-safe prepared transaction responses for each chain\n */\nexport type HederaPreparedTransaction =\n PreparedTransactionResponseWithMetadata<HederaPreparedMetadata>;\n/**\n * XRPL prepared transaction response.\n *\n * Includes `transactionJson` alongside `transactionBytes` so xrpl.js-native\n * clients can sign the autofilled transaction object directly without having\n * to decode the binary blob. See Transaction Sovereignty Parity Part A.4.\n *\n * `transactionJson` is typed as the structural minimum — the fields every\n * autofilled XRPL tx carries — so `@hsuite/smart-engines-shared` stays\n * decoupled from the xrpl.js package. Callers that need the full\n * `SubmittableTransaction` union (see xrpl.js) should consume the stronger\n * local type exported from `@hsuite/smart-engines-chain-xrpl`, which is\n * typed against xrpl.js directly.\n */\nexport type XRPLPreparedTransactionJson = {\n TransactionType: string;\n Account: string;\n Fee?: string;\n Sequence?: number;\n LastLedgerSequence?: number;\n [extra: string]: unknown;\n};\n\nexport type XRPLPreparedTransaction = PreparedTransactionResponseWithMetadata<XRPLPreparedMetadata> & {\n /** Autofilled XRPL transaction object (post-autofill, pre-sign) for xrpl.js-native callers */\n transactionJson: XRPLPreparedTransactionJson;\n};\nexport type SolanaPreparedTransaction =\n PreparedTransactionResponseWithMetadata<SolanaPreparedMetadata>;\nexport type PolkadotPreparedTransaction =\n PreparedTransactionResponseWithMetadata<PolkadotPreparedMetadata>;\n\n/**\n * Submission result after caller submits the prepared transaction\n */\nexport const TransactionSubmissionResultSchema = z.object({\n /** The original transaction ID */\n transactionId: z.string(),\n /** The blockchain */\n chain: ChainTypeSchema,\n /** Whether submission was successful */\n success: z.boolean(),\n /** Consensus timestamp (Hedera) or ledger/block info */\n consensusTimestamp: z.string().optional(),\n /** Block or ledger number */\n blockNumber: z.number().optional(),\n /** Actual fee paid */\n actualFee: z.string().optional(),\n /** Receipt or confirmation data */\n receipt: z.record(z.any()).optional(),\n /** Error message if submission failed */\n error: z.string().optional(),\n});\n\nexport type TransactionSubmissionResult = z.infer<typeof TransactionSubmissionResultSchema>;\n\n// =============================================================================\n// PREPARE REQUEST SCHEMAS (v3 API - Transaction Sovereignty Mixed Layer)\n// =============================================================================\n\n/**\n * Prepare token-create request schema (Hedera HTS).\n *\n * Merges SovereigntyFieldsSchema so securityMode, entityId, and\n * appOwnerPublicKey carry the same cross-chain invariants.\n */\nexport const PrepareTokenCreateRequestSchema = z\n .object({\n chain: z.literal('hedera'),\n payerAccountId: z.string().optional(),\n name: z.string().min(1).max(100),\n symbol: z.string().min(1).max(10),\n decimals: z.number().int().min(0).max(18),\n initialSupply: z.string(),\n treasuryAccountId: z.string().min(1, 'treasuryAccountId is required'),\n memo: z.string().optional(),\n tokenType: z.enum(['FUNGIBLE_COMMON', 'NON_FUNGIBLE_UNIQUE']).default('FUNGIBLE_COMMON'),\n supplyKey: z.string().optional(),\n adminKey: z.string().optional(),\n pauseKey: z.string().optional(),\n freezeKey: z.string().optional(),\n kycKey: z.string().optional(),\n wipeKey: z.string().optional(),\n validatorTimestamp: z.string().min(1),\n validatorTopicId: z.string().min(1),\n })\n // SovereigntyFieldsRawSchema is the unrefined object (no .refine wrapping)\n // the sovereignty invariant is re-applied by the .refine() below.\n .merge(SovereigntyFieldsRawSchema)\n .refine(sovereigntyRefinePredicate, { message: SOVEREIGNTY_REFINE_MESSAGE });\n\nexport type PrepareTokenCreateRequest = z.infer<typeof PrepareTokenCreateRequestSchema>;\n\n/**\n * Prepare XRPL account-setup request schema.\n *\n * Used to configure the authorization (signer list / AccountSet flags) on an\n * existing XRPL account as part of the sovereignty key setup.\n */\nexport const PrepareXrplAccountSetupRequestSchema = z\n .object({\n chain: z.literal('xrpl'),\n payerAccountId: z.string().optional(),\n // User's XRPL account whose authorization we're configuring.\n accountAddress: z.string().min(25).max(34),\n validatorTimestamp: z.string().min(1),\n validatorTopicId: z.string().min(1),\n })\n .merge(SovereigntyFieldsRawSchema)\n .refine(sovereigntyRefinePredicate, { message: SOVEREIGNTY_REFINE_MESSAGE });\n\nexport type PrepareXrplAccountSetupRequest = z.infer<typeof PrepareXrplAccountSetupRequestSchema>;\n\n/**\n * Prepare Stellar account-create request schema.\n *\n * Creates a new Stellar account and optionally configures sovereignty signers.\n */\nexport const PrepareStellarAccountCreateRequestSchema = z\n .object({\n chain: z.literal('stellar'),\n payerAccountId: z.string().optional(),\n // The master public key of the new Stellar account.\n publicKey: z.string().min(56).max(56),\n startingBalance: z.string().regex(/^\\d+(\\.\\d+)?$/),\n validatorTimestamp: z.string().min(1),\n validatorTopicId: z.string().min(1),\n })\n .merge(SovereigntyFieldsRawSchema)\n // Stellar's partial mode uses the new account's OWN master key as the\n // \"user\" signer (via SetOptions(masterWeight=2)) — there is NO separate\n // appOwnerPublicKey because Stellar allows the master key to satisfy\n // authorization directly. Only entityId is required for partial/full.\n .refine(\n (v) => !!v.entityId,\n { message: \"securityMode='partial'/'full' requires entityId\" },\n );\n\nexport type PrepareStellarAccountCreateRequest = z.infer<\n typeof PrepareStellarAccountCreateRequestSchema\n>;\n","/**\n * Hedera Mirror Node Client\n *\n * Lightweight client for querying Hedera mirror node REST API.\n * Used for validator discovery by reading HCS topic messages.\n */\n\n/**\n * Mirror node configuration\n */\nexport interface MirrorNodeConfig {\n /** Mirror node base URL (e.g., https://testnet.mirrornode.hedera.com) */\n baseUrl: string;\n /** Request timeout in milliseconds */\n timeout?: number;\n /** Allow HTTP (insecure) connections - default false */\n allowInsecure?: boolean;\n}\n\n/**\n * Validate and sanitize a URL\n * Prevents SSRF and ensures HTTPS for security\n */\nfunction validateUrl(url: string, allowInsecure = false): URL {\n try {\n const parsed = new URL(url);\n\n // Only allow http/https protocols\n if (!['http:', 'https:'].includes(parsed.protocol)) {\n throw new Error(`Invalid protocol: ${parsed.protocol}`);\n }\n\n // Enforce HTTPS unless explicitly allowed\n if (!allowInsecure && parsed.protocol !== 'https:') {\n throw new Error(\n 'HTTPS is required for secure connections. Set allowInsecure=true to override.'\n );\n }\n\n // Block private/internal IP ranges to prevent SSRF\n const hostname = parsed.hostname.toLowerCase();\n const blockedPatterns = [\n /^localhost$/i,\n /^127\\./,\n /^10\\./,\n /^172\\.(1[6-9]|2[0-9]|3[01])\\./,\n /^192\\.168\\./,\n /^169\\.254\\./,\n /^::1$/,\n /^fe80:/i,\n /^fc00:/i,\n /^fd00:/i,\n ];\n\n // Allow localhost only in development with explicit flag\n const isPrivate = blockedPatterns.some((pattern) => pattern.test(hostname));\n if (isPrivate && !allowInsecure) {\n throw new Error(\n 'Private/internal URLs are blocked. Set allowInsecure=true for local development.'\n );\n }\n\n return parsed;\n } catch (error) {\n if (error instanceof Error && error.message.includes('Invalid URL')) {\n throw new MirrorNodeError(`Invalid URL format: ${url}`, 400);\n }\n throw error;\n }\n}\n\n/**\n * Validate Hedera topic ID format\n */\nfunction validateTopicId(topicId: string): void {\n // Format: shard.realm.num (e.g., 0.0.123456)\n if (!/^\\d+\\.\\d+\\.\\d+$/.test(topicId)) {\n throw new MirrorNodeError(\n `Invalid topic ID format: ${topicId}. Expected format: 0.0.123456`,\n 400\n );\n }\n}\n\n/**\n * HCS topic message from mirror node API\n */\nexport interface TopicMessage {\n /** Consensus timestamp */\n consensus_timestamp: string;\n /** Message content (base64 encoded) */\n message: string;\n /** Payer account ID */\n payer_account_id: string;\n /** Running hash */\n running_hash: string;\n /** Running hash version */\n running_hash_version: number;\n /** Sequence number */\n sequence_number: number;\n /** Topic ID */\n topic_id: string;\n}\n\n/**\n * Mirror node API response for topic messages\n */\nexport interface TopicMessagesResponse {\n messages: TopicMessage[];\n links: {\n next?: string;\n };\n}\n\n/**\n * Default mirror node URLs by network\n */\nexport const MIRROR_NODE_URLS: Record<string, string> = {\n mainnet: 'https://mainnet-public.mirrornode.hedera.com',\n testnet: 'https://testnet.mirrornode.hedera.com',\n previewnet: 'https://previewnet.mirrornode.hedera.com',\n};\n\n/**\n * Hedera Mirror Node Client\n *\n * Query HCS topic messages via REST API for validator discovery.\n */\nexport class MirrorNodeClient {\n private readonly baseUrl: string;\n private readonly timeout: number;\n private readonly allowInsecure: boolean;\n\n constructor(config: MirrorNodeConfig) {\n this.allowInsecure = config.allowInsecure ?? false;\n\n // Validate the base URL\n const validatedUrl = validateUrl(config.baseUrl, this.allowInsecure);\n this.baseUrl = validatedUrl.origin;\n this.timeout = config.timeout || 30000;\n }\n\n /**\n * Create client for a specific network\n */\n static forNetwork(network: 'mainnet' | 'testnet' | 'previewnet'): MirrorNodeClient {\n const baseUrl = MIRROR_NODE_URLS[network];\n if (!baseUrl) {\n throw new Error(`Unknown network: ${network}`);\n }\n return new MirrorNodeClient({ baseUrl });\n }\n\n /**\n * Get topic messages from mirror node\n *\n * @param topicId - HCS topic ID (e.g., '0.0.123456')\n * @param options - Query options\n * @returns Topic messages\n */\n async getTopicMessages(\n topicId: string,\n options?: {\n /** Limit number of messages */\n limit?: number;\n /** Order (asc or desc) */\n order?: 'asc' | 'desc';\n /** Timestamp to start from */\n timestampStart?: string;\n /** Timestamp to end at */\n timestampEnd?: string;\n /** Sequence number to start from */\n sequenceNumberStart?: number;\n }\n ): Promise<TopicMessage[]> {\n // Validate topic ID format to prevent injection\n validateTopicId(topicId);\n\n const params = new URLSearchParams();\n\n if (options?.limit) {\n params.set('limit', options.limit.toString());\n }\n if (options?.order) {\n params.set('order', options.order);\n }\n if (options?.timestampStart) {\n params.set('timestamp', `gte:${options.timestampStart}`);\n }\n if (options?.timestampEnd) {\n params.set('timestamp', `lte:${options.timestampEnd}`);\n }\n if (options?.sequenceNumberStart) {\n params.set('sequencenumber', `gte:${options.sequenceNumberStart}`);\n }\n\n const url = `${this.baseUrl}/api/v1/topics/${topicId}/messages?${params.toString()}`;\n\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: {\n Accept: 'application/json',\n },\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n throw new MirrorNodeError(\n `Mirror node error: ${response.status} ${response.statusText}`,\n response.status\n );\n }\n\n const data = (await response.json()) as TopicMessagesResponse;\n return data.messages;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof MirrorNodeError) {\n throw error;\n }\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new MirrorNodeError('Mirror node request timeout', 408);\n }\n throw new MirrorNodeError(`Mirror node network error: ${err.message}`, 0);\n }\n }\n\n /**\n * Get all topic messages with pagination\n *\n * @param topicId - HCS topic ID\n * @param maxMessages - Maximum messages to fetch (default: 1000)\n * @returns All topic messages\n */\n async getAllTopicMessages(topicId: string, maxMessages: number = 1000): Promise<TopicMessage[]> {\n // Validate topic ID format\n validateTopicId(topicId);\n\n // Enforce reasonable limits to prevent DoS\n const safeMaxMessages = Math.min(maxMessages, 10000);\n\n const allMessages: TopicMessage[] = [];\n let nextPath: string | undefined = `/api/v1/topics/${topicId}/messages?limit=100&order=desc`;\n\n while (nextPath && allMessages.length < safeMaxMessages) {\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n // Construct full URL safely - only use path from pagination\n const fullUrl = `${this.baseUrl}${nextPath}`;\n\n const response = await fetch(fullUrl, {\n method: 'GET',\n headers: { Accept: 'application/json' },\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n throw new MirrorNodeError(\n `Mirror node error: ${response.status} ${response.statusText}`,\n response.status\n );\n }\n\n const data = (await response.json()) as TopicMessagesResponse;\n allMessages.push(...data.messages);\n\n // Validate and sanitize pagination link\n // Only accept relative paths starting with /api/v1/\n if (data.links.next) {\n const nextLink = data.links.next;\n if (nextLink.startsWith('/api/v1/topics/')) {\n nextPath = nextLink;\n } else {\n // Invalid pagination link - stop pagination\n nextPath = undefined;\n }\n } else {\n nextPath = undefined;\n }\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof MirrorNodeError) {\n throw error;\n }\n const err = error as Error;\n throw new MirrorNodeError(`Mirror node error: ${err.message}`, 0);\n }\n }\n\n return allMessages.slice(0, safeMaxMessages);\n }\n\n /**\n * Decode base64 message content\n */\n static decodeMessage(base64Message: string): string {\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(base64Message, 'base64').toString('utf-8');\n }\n // Browser environment\n return atob(base64Message);\n }\n}\n\n/**\n * Mirror node error\n */\nexport class MirrorNodeError extends Error {\n constructor(\n message: string,\n public statusCode: number\n ) {\n super(message);\n this.name = 'MirrorNodeError';\n }\n}\n","/**\n * Validator Discovery Client\n *\n * Discover smart-engine validators by reading the HCS validator registry topic.\n * Provides methods to list validators and select random validators for connection.\n */\n\nimport { MirrorNodeClient, MIRROR_NODE_URLS } from './mirror-node';\n\n/**\n * Network endpoints for validator connectivity\n */\nexport interface ValidatorNetworkEndpoints {\n /** HTTP API endpoint (e.g., https://validator.example.com:3000) */\n apiEndpoint: string;\n /** NATS endpoint for peer-to-peer messaging */\n natsEndpoint?: string;\n /** Public IP for NAT traversal */\n publicIp?: string;\n /** NATS port if different from default */\n natsPort?: number;\n}\n\n/**\n * Validator metadata\n */\nexport interface ValidatorMetadata {\n /** Human-readable description */\n description?: string;\n /** Version string */\n version?: string;\n /** Tags for categorization */\n tags?: string[];\n /** Author/operator name */\n author?: string;\n}\n\n/**\n * Validator registry entry parsed from HCS\n */\nexport interface ValidatorInfo {\n /** Validator consensus timestamp (unique ID) */\n validatorTimestamp: string;\n /** Node ID (e.g., validator-1) */\n nodeId: string;\n /** Validator type */\n type: 'consensus' | 'tokens' | 'accounts' | 'network';\n /** Network endpoints for connectivity */\n networkEndpoints?: ValidatorNetworkEndpoints;\n /** Public key for peer authentication (Ed25519 hex) */\n publicKey?: string;\n /** Membership NFT serial number */\n membershipNftSerial?: number;\n /** Supported blockchain capabilities */\n capabilities?: string[];\n /** Validator metadata */\n metadata: ValidatorMetadata;\n /** When registered */\n registeredAt: string;\n /** Message type */\n messageType?: 'validator.join' | 'validator.leave' | 'validator.update';\n}\n\n/**\n * Validator discovery configuration\n */\nexport interface ValidatorDiscoveryConfig {\n /** Hedera network (mainnet, testnet, previewnet) */\n network: 'mainnet' | 'testnet' | 'previewnet';\n /** HCS topic ID for validator registry */\n registryTopicId: string;\n /** Cache TTL in milliseconds (default: 60000 = 1 minute) */\n cacheTtlMs?: number;\n /** Custom mirror node URL (optional) */\n mirrorNodeUrl?: string;\n /** Allow HTTP (insecure) connections - only for local development */\n allowInsecure?: boolean;\n}\n\n/**\n * Cached validators data\n */\ninterface ValidatorCache {\n validators: ValidatorInfo[];\n lastUpdated: number;\n}\n\n/**\n * Validator Discovery Client\n *\n * Discovers validators by reading the HCS validator registry topic\n * via Hedera mirror node API.\n *\n * @example\n * ```typescript\n * const discovery = new ValidatorDiscoveryClient({\n * network: 'testnet',\n * registryTopicId: '0.0.123456',\n * });\n *\n * const validators = await discovery.getValidators();\n * const randomValidator = await discovery.getRandomValidator();\n * ```\n */\nexport class ValidatorDiscoveryClient {\n private readonly mirrorNode: MirrorNodeClient;\n private readonly registryTopicId: string;\n private readonly cacheTtlMs: number;\n private cache: ValidatorCache | null = null;\n\n constructor(config: ValidatorDiscoveryConfig) {\n const mirrorNodeUrl = config.mirrorNodeUrl || MIRROR_NODE_URLS[config.network];\n if (!mirrorNodeUrl) {\n throw new Error(`Unknown network: ${config.network}`);\n }\n\n this.mirrorNode = new MirrorNodeClient({\n baseUrl: mirrorNodeUrl,\n allowInsecure: config.allowInsecure,\n });\n this.registryTopicId = config.registryTopicId;\n this.cacheTtlMs = config.cacheTtlMs ?? 60000; // 1 minute default\n }\n\n /**\n * Get all active validators from the registry\n *\n * Results are cached for efficiency. Use `forceRefresh` to bypass cache.\n *\n * @param forceRefresh - Force refresh from mirror node\n * @returns List of active validators\n */\n async getValidators(forceRefresh = false): Promise<ValidatorInfo[]> {\n // Return cached data if valid\n if (!forceRefresh && this.cache && this.isCacheValid()) {\n return this.cache.validators;\n }\n\n // Fetch from mirror node\n const messages = await this.mirrorNode.getAllTopicMessages(\n this.registryTopicId,\n 500 // Max messages to fetch\n );\n\n // Parse and deduplicate validators\n const validatorMap = new Map<string, ValidatorInfo>();\n const leftValidators = new Set<string>();\n\n // Process messages (newest first since we fetch desc order)\n for (const msg of messages) {\n try {\n const content = MirrorNodeClient.decodeMessage(msg.message);\n const raw = JSON.parse(content) as Record<string, unknown>;\n const entry = normalizeRegistryEntry(raw);\n if (!entry) continue;\n\n // Track leave events\n if (entry.messageType === 'validator.leave') {\n leftValidators.add(entry.nodeId);\n continue;\n }\n\n // Skip if validator has left\n if (leftValidators.has(entry.nodeId)) {\n continue;\n }\n\n // Keep only the latest entry per nodeId\n if (!validatorMap.has(entry.nodeId)) {\n validatorMap.set(entry.nodeId, entry);\n }\n } catch {\n // Skip unparseable messages\n continue;\n }\n }\n\n const validators = Array.from(validatorMap.values());\n\n // Update cache\n this.cache = {\n validators,\n lastUpdated: Date.now(),\n };\n\n return validators;\n }\n\n /**\n * Get validators with API endpoints available\n *\n * @param forceRefresh - Force refresh from mirror node\n * @returns Validators with apiEndpoint configured\n */\n async getValidatorsWithEndpoints(forceRefresh = false): Promise<ValidatorInfo[]> {\n const validators = await this.getValidators(forceRefresh);\n return validators.filter((v) => v.networkEndpoints?.apiEndpoint);\n }\n\n /**\n * Get a random validator from the registry\n *\n * @param forceRefresh - Force refresh from mirror node\n * @returns Random validator info or null if none available\n */\n async getRandomValidator(forceRefresh = false): Promise<ValidatorInfo | null> {\n const validators = await this.getValidatorsWithEndpoints(forceRefresh);\n\n if (validators.length === 0) {\n return null;\n }\n\n // Use crypto.getRandomValues for cryptographically secure random selection\n const randomBytes = new Uint32Array(1);\n crypto.getRandomValues(randomBytes);\n const randomIndex = randomBytes[0] % validators.length;\n return validators[randomIndex];\n }\n\n /**\n * Get a random validator API endpoint URL\n *\n * @param forceRefresh - Force refresh from mirror node\n * @returns Random validator API URL or null if none available\n */\n async getRandomValidatorUrl(forceRefresh = false): Promise<string | null> {\n const validator = await this.getRandomValidator(forceRefresh);\n return validator?.networkEndpoints?.apiEndpoint ?? null;\n }\n\n /**\n * Get validator by node ID\n *\n * @param nodeId - Validator node ID (e.g., 'validator-1')\n * @param forceRefresh - Force refresh from mirror node\n * @returns Validator info or null if not found\n */\n async getValidatorByNodeId(nodeId: string, forceRefresh = false): Promise<ValidatorInfo | null> {\n const validators = await this.getValidators(forceRefresh);\n return validators.find((v) => v.nodeId === nodeId) ?? null;\n }\n\n /**\n * Get validators by capability\n *\n * @param capability - Required capability (e.g., 'hedera', 'xrpl', 'dkg')\n * @param forceRefresh - Force refresh from mirror node\n * @returns Validators with the specified capability\n */\n async getValidatorsByCapability(\n capability: string,\n forceRefresh = false\n ): Promise<ValidatorInfo[]> {\n const validators = await this.getValidatorsWithEndpoints(forceRefresh);\n return validators.filter((v) => v.capabilities?.includes(capability));\n }\n\n /**\n * Clear the validator cache\n */\n clearCache(): void {\n this.cache = null;\n }\n\n /**\n * Check if cache is still valid\n */\n private isCacheValid(): boolean {\n if (!this.cache) return false;\n return Date.now() - this.cache.lastUpdated < this.cacheTtlMs;\n }\n}\n\n/**\n * Normalize a raw registry message into a ValidatorInfo.\n *\n * Accepts two shapes observed on real HCS registry topics:\n *\n * 1. Canonical (emitted by chain-hedera ValidatorRegistryService):\n * { messageType: 'validator.join'|'validator.leave'|'validator.update',\n * nodeId, networkEndpoints: { apiEndpoint, ... }, ... }\n *\n * 2. Legacy / multisig-consensus (emitted by ops / genesis scripts):\n * { type: 'validator.register', validatorId, endpoint, capabilities,\n * publicKey, accountId, network, ... }\n *\n * Token-scoped validator registrations (validatorType === 'token') are ignored\n * — those are DAO token validators, not node validators. Returns null when the\n * entry doesn't represent a node validator.\n */\nfunction normalizeRegistryEntry(raw: Record<string, unknown>): ValidatorInfo | null {\n // Canonical shape: already a ValidatorInfo\n if (raw.messageType && typeof raw.nodeId === 'string') {\n return raw as unknown as ValidatorInfo;\n }\n\n // Legacy shape: { type: 'validator.register', validatorId, endpoint, ... }\n if (raw.type === 'validator.register') {\n // Skip token validator registrations - they aren't nodes\n if (raw.validatorType && raw.validatorType !== undefined && raw.validatorType !== null) {\n if (typeof raw.validatorType === 'string' && raw.validatorType !== 'node') {\n return null;\n }\n }\n\n const nodeId =\n (typeof raw.validatorId === 'string' && raw.validatorId) ||\n (typeof raw.nodeId === 'string' && raw.nodeId) ||\n null;\n if (!nodeId) return null;\n\n const endpoint = typeof raw.endpoint === 'string' ? raw.endpoint : undefined;\n if (!endpoint) return null;\n\n const capabilities = Array.isArray(raw.capabilities)\n ? (raw.capabilities as unknown[]).filter((c): c is string => typeof c === 'string')\n : undefined;\n\n return {\n validatorTimestamp: typeof raw.timestamp === 'string' ? raw.timestamp : '',\n nodeId,\n type: 'consensus',\n networkEndpoints: { apiEndpoint: endpoint },\n publicKey: typeof raw.publicKey === 'string' ? raw.publicKey : undefined,\n capabilities,\n metadata: {},\n registeredAt: typeof raw.timestamp === 'string' ? raw.timestamp : '',\n messageType: 'validator.join',\n };\n }\n\n // Unknown / unrelated message type (e.g., token validator registrations)\n return null;\n}\n","/**\n * Cluster Discovery Client.\n *\n * SDK-side consumer of the service-registry distribution layer\n * (validator `GET /api/v3/discovery/clusters`). Instead of pinning one\n * baseUrl, the caller supplies a bootstrap-seed list and the client\n * random-picks an active cluster per request, so SDK consumers automatically\n * follow permissionless cluster join/leave without code edits.\n *\n * Resolution chain:\n * 1. HTTP fetch of `/api/v3/discovery/clusters` from each bootstrap seed\n * in order; take the first successful response.\n * 2. (Optional) HCS trust-anchor membership cross-check — verify that\n * every returned nodeId appears in the HCS validator registry and\n * that the publicKey matches. A bootstrap seed cannot inject a rogue\n * cluster whose nodeIds aren't on-chain.\n * 3. Random-pick over the verified set.\n *\n * The {@link ValidatorDiscoveryClient} (HCS mirror-node read, per-validator\n * granularity) stays available as the HCS-direct fallback / trust anchor —\n * it is the only path that doesn't require any HTTP-reachable cluster.\n */\n\nimport { ValidatorDiscoveryClient, type ValidatorDiscoveryConfig } from './validator-discovery';\n\n/**\n * Cluster-level endpoint metadata as exposed by the validator's\n * `/api/v3/discovery/clusters` HTTP endpoint. Mirrors the on-wire shape\n * defined server-side by the service-registry cluster-endpoints payload.\n */\nexport interface ClusterEndpointsView {\n clusterId: string;\n gatewayUrl: string;\n harborUrl?: string;\n natsUrl?: string;\n publicIp?: string;\n region?: string;\n}\n\n/**\n * Cluster info as returned by `getClusters()`. `nodeIds` are the validator\n * nodeIds whose announcements contributed to this cluster's record —\n * useful for HCS trust-anchor cross-checking.\n */\nexport interface ClusterInfo {\n clusterId: string;\n endpoints: ClusterEndpointsView;\n nodeIds: string[];\n}\n\nexport interface ClusterDiscoveryConfig {\n /**\n * Bootstrap seeds — fully-qualified URLs that respond to\n * `GET /api/v3/discovery/clusters`. The SDK tries them in order on each\n * refresh; the first success wins. **Order is the operator's\n * preference signal** (e.g., list a Cloudflare-fronted hostname first,\n * then individual cluster ingress IPs as backstops).\n */\n bootstrap: string[];\n\n /** Cache TTL in milliseconds (default: 60_000 — same as HCS path). */\n cacheTtlMs?: number;\n\n /**\n * Per-bootstrap fetch timeout in milliseconds (default: 5_000). Keep\n * tight: when the first seed is unreachable, we want to fall through\n * to the next without blocking the SDK call for long.\n */\n fetchTimeoutMs?: number;\n\n /**\n * Optional HCS trust anchor. When supplied, the SDK lazily loads the\n * on-chain validator-registry set and verifies that:\n *\n * - every cluster's `nodeIds` appears in the HCS registry, and\n * - the on-chain `publicKey` for each nodeId matches the HTTP\n * response (when the discovery endpoint exposes it).\n *\n * Clusters that fail the cross-check are dropped silently. A logged\n * warning would normally accompany this, but the SDK is environment-\n * agnostic (browser, Node, edge) — surfacing via the returned set is\n * the conservative contract.\n *\n * The anchor performs membership cross-checking only; cryptographic\n * per-record signature verification of the DKG-signed payload is not\n * performed here.\n */\n trustAnchor?: ValidatorDiscoveryConfig;\n\n /** Allow HTTP (insecure) connections — only for local development. */\n allowInsecure?: boolean;\n}\n\ninterface ClusterCache {\n clusters: ClusterInfo[];\n lastUpdated: number;\n}\n\n/**\n * Cluster Discovery Client — HTTP-driven, random-pick across an active\n * cluster set with optional on-chain trust anchor.\n */\nexport class ClusterDiscoveryClient {\n private readonly bootstrap: string[];\n private readonly cacheTtlMs: number;\n private readonly fetchTimeoutMs: number;\n private readonly allowInsecure: boolean;\n private readonly trustAnchorClient: ValidatorDiscoveryClient | null;\n private cache: ClusterCache | null = null;\n\n constructor(config: ClusterDiscoveryConfig) {\n if (!config.bootstrap || config.bootstrap.length === 0) {\n throw new Error('ClusterDiscoveryClient: bootstrap must list at least one seed URL');\n }\n if (!config.allowInsecure) {\n for (const seed of config.bootstrap) {\n if (!seed.startsWith('https://')) {\n throw new Error(\n `ClusterDiscoveryClient: bootstrap seed \"${seed}\" is not HTTPS. ` +\n `Set allowInsecure=true for local development only.`,\n );\n }\n }\n }\n this.bootstrap = config.bootstrap;\n this.cacheTtlMs = config.cacheTtlMs ?? 60_000;\n this.fetchTimeoutMs = config.fetchTimeoutMs ?? 5_000;\n this.allowInsecure = config.allowInsecure ?? false;\n this.trustAnchorClient = config.trustAnchor\n ? new ValidatorDiscoveryClient(config.trustAnchor)\n : null;\n }\n\n /**\n * Fetch the active-cluster set, with caching.\n *\n * Tries each bootstrap seed in order until one returns HTTP 200 with a\n * parseable cluster list. If all seeds fail, throws — callers can\n * handle by falling back to a previously-cached value if they want,\n * or by initializing with multiple seeds.\n */\n async getClusters(forceRefresh = false): Promise<ClusterInfo[]> {\n if (!forceRefresh && this.cache && this.isCacheValid()) {\n return this.cache.clusters;\n }\n\n const fetched = await this.fetchFromFirstAvailableSeed();\n const verified = this.trustAnchorClient ? await this.verifyAgainstTrustAnchor(fetched) : fetched;\n\n this.cache = { clusters: verified, lastUpdated: Date.now() };\n return verified;\n }\n\n /**\n * Random pick over the active-cluster set. Returns `null` when no\n * cluster passes verification (empty registry / all-rejected anchor).\n *\n * Uses `crypto.getRandomValues` when available (browsers, Deno, modern\n * Node) for cryptographic-strength randomness; `Math.random` is a\n * fallback for older runtimes where `globalThis.crypto` is undefined.\n * Discovery isn't cryptographically sensitive — load distribution is\n * the goal here.\n */\n async getRandomCluster(forceRefresh = false): Promise<ClusterInfo | null> {\n const clusters = await this.getClusters(forceRefresh);\n if (clusters.length === 0) return null;\n return clusters[this.pickRandomIndex(clusters.length)];\n }\n\n /**\n * Convenience wrapper returning just the gateway URL of a random\n * active cluster. Feed this to `BaasClient` (the host BaaS tier) — e.g.\n * `new BaasClient({ hostUrl, pathPrefix: '/host' })` or\n * `BaasClient.connectToCluster({ network })`. Do NOT feed it to\n * `SmartEngineClient`: that client's raw `/api/v3/*` tier is un-ingressed at\n * the gateway and will 404 (it requires an explicit `validatorBaseUrl`).\n */\n async getRandomGatewayUrl(forceRefresh = false): Promise<string | null> {\n const cluster = await this.getRandomCluster(forceRefresh);\n return cluster?.endpoints.gatewayUrl ?? null;\n }\n\n /** Per-clusterId lookup, useful for \"stick the SDK to cluster X\" flows. */\n async getClusterById(clusterId: string, forceRefresh = false): Promise<ClusterInfo | null> {\n const clusters = await this.getClusters(forceRefresh);\n return clusters.find((c) => c.clusterId === clusterId) ?? null;\n }\n\n clearCache(): void {\n this.cache = null;\n }\n\n private isCacheValid(): boolean {\n if (!this.cache) return false;\n return Date.now() - this.cache.lastUpdated < this.cacheTtlMs;\n }\n\n private async fetchFromFirstAvailableSeed(): Promise<ClusterInfo[]> {\n const errors: string[] = [];\n for (const seed of this.bootstrap) {\n try {\n return await this.fetchClustersFromSeed(seed);\n } catch (err) {\n errors.push(`${seed}: ${(err as Error).message}`);\n }\n }\n throw new Error(\n `ClusterDiscoveryClient: no bootstrap seed reachable. Attempts:\\n ${errors.join('\\n ')}`,\n );\n }\n\n private async fetchClustersFromSeed(seed: string): Promise<ClusterInfo[]> {\n const url = `${seed.replace(/\\/$/, '')}/api/v3/discovery/clusters`;\n const ctrl = new AbortController();\n const timer = setTimeout(() => ctrl.abort(), this.fetchTimeoutMs);\n try {\n const res = await fetch(url, { signal: ctrl.signal });\n if (!res.ok) {\n throw new Error(`HTTP ${res.status}`);\n }\n const body = (await res.json()) as {\n clusters?: Array<{\n clusterId?: unknown;\n endpoints?: Record<string, unknown>;\n nodeIds?: unknown;\n }>;\n };\n if (!Array.isArray(body.clusters)) {\n throw new Error('response missing clusters[]');\n }\n return body.clusters\n .map((c) => this.normalizeClusterEntry(c))\n .filter((c): c is ClusterInfo => c !== null);\n } finally {\n clearTimeout(timer);\n }\n }\n\n private normalizeClusterEntry(raw: {\n clusterId?: unknown;\n endpoints?: Record<string, unknown>;\n nodeIds?: unknown;\n }): ClusterInfo | null {\n if (typeof raw.clusterId !== 'string' || !raw.clusterId) return null;\n if (!raw.endpoints || typeof raw.endpoints !== 'object') return null;\n const ep = raw.endpoints as Record<string, unknown>;\n if (typeof ep.gatewayUrl !== 'string' || !ep.gatewayUrl) return null;\n if (!this.allowInsecure && !ep.gatewayUrl.startsWith('https://')) {\n // Drop non-HTTPS gateways in secure mode — never silently accept\n // a downgrade attack via a poisoned bootstrap response.\n return null;\n }\n const nodeIds = Array.isArray(raw.nodeIds)\n ? raw.nodeIds.filter((n): n is string => typeof n === 'string')\n : [];\n return {\n clusterId: raw.clusterId,\n endpoints: {\n clusterId: raw.clusterId,\n gatewayUrl: ep.gatewayUrl,\n harborUrl: typeof ep.harborUrl === 'string' ? ep.harborUrl : undefined,\n natsUrl: typeof ep.natsUrl === 'string' ? ep.natsUrl : undefined,\n publicIp: typeof ep.publicIp === 'string' ? ep.publicIp : undefined,\n region: typeof ep.region === 'string' ? ep.region : undefined,\n },\n nodeIds,\n };\n }\n\n /**\n * Cross-check the HTTP-fetched cluster set against the HCS validator\n * registry. Clusters whose nodeIds are not on-chain are dropped.\n *\n * Two failure modes are deliberately silent here:\n * - the HCS read itself throws → original list is returned\n * un-verified. Trust-anchor is advisory; a network partition\n * between SDK and Hedera mirror shouldn't strand the SDK.\n * - the HCS read returns empty (mirror node lag, wrong topicId)\n * → original list is returned. Better to keep working off\n * possibly-stale-but-real data than reject every cluster.\n *\n * Both behaviors are why this is called \"trust *anchor*\", not\n * \"trust gate\". Crypto-strong gating is a follow-up.\n */\n private async verifyAgainstTrustAnchor(clusters: ClusterInfo[]): Promise<ClusterInfo[]> {\n if (!this.trustAnchorClient || clusters.length === 0) return clusters;\n let onChainNodeIds: Set<string>;\n try {\n const validators = await this.trustAnchorClient.getValidators();\n if (validators.length === 0) return clusters;\n onChainNodeIds = new Set(validators.map((v) => v.nodeId));\n } catch {\n return clusters;\n }\n return clusters.filter((c) => {\n if (c.nodeIds.length === 0) {\n // The discovery endpoint surfaces nodeIds for verifiability.\n // An entry with none was either (a) emitted by an older\n // validator, or (b) crafted to evade the check. Either way,\n // drop it to keep the contract sharp.\n return false;\n }\n return c.nodeIds.some((id) => onChainNodeIds.has(id));\n });\n }\n\n private pickRandomIndex(n: number): number {\n if (n <= 1) return 0;\n const g = (globalThis as { crypto?: { getRandomValues?: (a: Uint32Array) => Uint32Array } }).crypto;\n if (g?.getRandomValues) {\n const buf = new Uint32Array(1);\n g.getRandomValues(buf);\n return buf[0] % n;\n }\n return Math.floor(Math.random() * n);\n }\n}\n","/**\n * Shared HTTP Client\n *\n * Unified HTTP layer used by all SDK clients (SmartEngineClient, SmartGatewayClient, BaasClient).\n * Handles authentication headers, timeouts, error handling, and multipart uploads.\n */\n\n/**\n * Per-call request options. Lets a single request carry extra context the\n * client-wide config can't express.\n *\n * The motivating case is multi-tenant BaaS: an app-as-proxy holds its OWN\n * Bearer auth (set once on the client), but each downstream request acts on\n * behalf of a specific END USER whose session token must reach the host for\n * per-user metering/quota. That token is per-call, not per-client — so it\n * rides here as `customerToken` and is attached as `X-Customer-Session-Token`\n * for this request only.\n */\nexport type HttpCallOptions = {\n /**\n * End-user customer-session token, forwarded to the host as\n * `X-Customer-Session-Token` for this request only. Used by app-as-proxy\n * flows so the host meters the end user, not the app.\n */\n customerToken?: string;\n /**\n * Act ON BEHALF OF an end user for OWNER-GATED routes (e.g. agents\n * fund/withdraw/execute). The value is that user's Mode-1 customer-session\n * JWT (the `token` from `baas.customerSession.verify()`). It is forwarded\n * verbatim as BOTH `Authorization: Bearer <jwt>` (so the host pins the caller\n * to that user) AND `X-Customer-Session-Claim` (the host's claim-resolution\n * header). No client-side signing: owner routes accept only this Mode-1 JWT —\n * the Mode-2 BLS claim is minted host-side and is rejected on owner routes.\n * Distinct from {@link customerToken} (metering-only `X-Customer-Session-Token`).\n */\n onBehalfOf?: string;\n /** Extra per-call headers (escape hatch); merged last, wins on conflict. */\n headers?: Record<string, string>;\n};\n\n/**\n * HTTP client interface consumed by all sub-clients.\n * Sub-clients only depend on this interface, never on fetch directly.\n *\n * Every method takes an optional trailing {@link HttpCallOptions} so a single\n * request can carry an end-user `customerToken` without mutating client state.\n */\nexport type HttpClient = {\n post<T = any>(path: string, body: unknown, opts?: HttpCallOptions): Promise<T>;\n get<T = any>(path: string, opts?: HttpCallOptions): Promise<T>;\n put<T = any>(path: string, body: unknown, opts?: HttpCallOptions): Promise<T>;\n patch<T = any>(path: string, body: unknown, opts?: HttpCallOptions): Promise<T>;\n delete<T = any>(path: string, opts?: HttpCallOptions): Promise<T>;\n /**\n * GET a non-JSON body. Returns the raw response text without attempting\n * to parse it. Required for endpoints that emit Prometheus exposition,\n * plain logs, or any other `text/*` content-type — the default\n * {@link HttpClient.get} eagerly `JSON.parse`s and would corrupt those\n * payloads.\n */\n getText(path: string, opts?: HttpCallOptions): Promise<string>;\n /**\n * GET a binary body as raw bytes. Returns a {@link Uint8Array} without any\n * decoding — required for file downloads and any non-text content where the\n * default {@link HttpClient.get}'s `JSON.parse` would corrupt the payload.\n */\n getBinary(path: string, opts?: HttpCallOptions): Promise<Uint8Array>;\n /**\n * GET a binary body WITH its response metadata — the bytes plus the\n * `content-type` and (parsed) `content-disposition` filename. {@link getBinary}\n * discards the headers; this variant is for download endpoints whose caller\n * must echo the content-type back (the host derives it from the stored file's\n * metadata, so a bytes-only download can't recover it).\n */\n getBinaryWithMeta(\n path: string,\n opts?: HttpCallOptions,\n ): Promise<{ bytes: Uint8Array; contentType?: string; filename?: string }>;\n /**\n * Upload a file with `multipart/form-data`.\n *\n * `fieldName` defaults to `'file'` for back-compat; callers whose\n * server-side handler uses a different multer field name (e.g.\n * `'bundle'` for SPA tarball uploads) MUST override.\n */\n upload<T = any>(\n path: string,\n file: Blob | Buffer,\n filename: string,\n metadata?: Record<string, string>,\n fieldName?: string,\n opts?: HttpCallOptions,\n ): Promise<T>;\n /**\n * Update the Bearer auth token used on subsequent requests. Pass\n * `undefined` to clear the Authorization header (e.g. on logout).\n *\n * Typed accessor — replaces the previous `(client as any).authToken`\n * peek that scattered across the SDK.\n */\n setAuthToken(token: string | undefined): void;\n /**\n * Return the currently configured Bearer auth token, or `undefined`\n * when no token is set.\n */\n getAuthToken(): string | undefined;\n};\n\n/**\n * Configuration for creating an HttpClient instance\n */\nexport type HttpClientConfig = {\n /** Base URL for all requests (e.g. https://validator.example.com/api/v3) */\n baseUrl: string;\n /** Bearer token for Authorization header */\n authToken?: string;\n /** API key for X-API-Key header */\n apiKey?: string;\n /** Request timeout in milliseconds (default: 30000) */\n timeout?: number;\n /**\n * Optional hook invoked when a request returns 401 Unauthorized. Lets the\n * client owner refresh the session (e.g. re-run the web3 challenge-response\n * and call {@link HttpClient.setAuthToken}); the failed request is then\n * retried once with the new token. Calls to `/api/v3/{,baas/}auth/*` are excluded so the\n * refresh flow itself can never recurse, and concurrent 401s share a single\n * in-flight refresh. Without this hook a 401 propagates unchanged.\n */\n onUnauthorized?: () => Promise<void>;\n};\n\n/**\n * SDK-level error class used across all clients\n */\nexport class SdkHttpError extends Error {\n constructor(\n message: string,\n public readonly statusCode: number,\n public readonly details?: any\n ) {\n super(message);\n this.name = 'SdkHttpError';\n }\n\n /**\n * True for transient failures worth retrying: a 5xx, a 429 (rate limit), a 408\n * (timeout), or a 0 (network/abort). Deterministic 4xx client errors are not.\n */\n get isRetryable(): boolean {\n return (\n this.statusCode === 0 ||\n this.statusCode === 408 ||\n this.statusCode === 429 ||\n this.statusCode >= 500\n );\n }\n}\n\n/**\n * Create a concrete HttpClient from config.\n * This is the single place where `fetch` is called in the entire SDK.\n */\nexport function createHttpClient(config: HttpClientConfig): HttpClient {\n const timeout = config.timeout ?? 30000;\n\n function getHeaders(contentType?: string, opts?: HttpCallOptions): Record<string, string> {\n const headers: Record<string, string> = {};\n if (contentType) {\n headers['Content-Type'] = contentType;\n }\n if (config.authToken) {\n headers['Authorization'] = `Bearer ${config.authToken}`;\n }\n if (config.apiKey) {\n headers['X-API-Key'] = config.apiKey;\n }\n // Per-call end-user token for app-as-proxy metering. Distinct from the\n // app's own Authorization above — both can ride the same request.\n if (opts?.customerToken) {\n headers['X-Customer-Session-Token'] = opts.customerToken;\n }\n // Owner-acting: forward the end user's Mode-1 JWT as the Authorization\n // bearer (overriding the app token for this request) AND the host's\n // claim-resolution header. Verbatim pass-through — no signing.\n if (opts?.onBehalfOf) {\n headers['Authorization'] = `Bearer ${opts.onBehalfOf}`;\n headers['X-Customer-Session-Claim'] = opts.onBehalfOf;\n }\n if (opts?.headers) {\n Object.assign(headers, opts.headers);\n }\n return headers;\n }\n\n /** Update auth token (e.g. after authentication flow) */\n function setAuthToken(token: string | undefined): void {\n config.authToken = token;\n }\n\n /** Read the current auth token (or undefined when none is set). */\n function getAuthToken(): string | undefined {\n return config.authToken;\n }\n\n async function request<T>(method: string, path: string, body?: unknown, opts?: HttpCallOptions): Promise<T> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), timeout);\n\n try {\n const init: RequestInit = {\n method,\n headers: getHeaders('application/json', opts),\n signal: controller.signal,\n };\n\n if (body !== undefined) {\n init.body = JSON.stringify(body);\n }\n\n const response = await fetch(url, init);\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const errorData = await response.json().catch(() => ({})) as Record<string, unknown>;\n throw new SdkHttpError(\n (errorData.message as string) || `API error: ${response.status} ${response.statusText}`,\n response.status,\n errorData\n );\n }\n\n // Handle empty responses (204 No Content)\n const text = await response.text();\n if (!text) return undefined as T;\n return JSON.parse(text) as T;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Request timeout', 408);\n }\n throw new SdkHttpError(`Network error: ${err.message}`, 0, error);\n }\n }\n\n async function getText(path: string, opts?: HttpCallOptions): Promise<string> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: getHeaders(undefined, opts),\n signal: controller.signal,\n });\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n // The error path still tries JSON — server-side error responses\n // are JSON even when the success path is text/plain (e.g.\n // Prometheus metrics). Fall back to text if that fails.\n const errBody = (await response.json().catch(() => ({}))) as Record<string, unknown>;\n throw new SdkHttpError(\n (errBody.message as string) || `API error: ${response.status} ${response.statusText}`,\n response.status,\n errBody,\n );\n }\n\n return await response.text();\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Request timeout', 408);\n }\n throw new SdkHttpError(`Network error: ${err.message}`, 0, error);\n }\n }\n\n async function getBinary(path: string, opts?: HttpCallOptions): Promise<Uint8Array> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: getHeaders(undefined, opts),\n signal: controller.signal,\n });\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n // Error bodies stay JSON even when the success body is binary.\n const errBody = (await response.json().catch(() => ({}))) as Record<string, unknown>;\n throw new SdkHttpError(\n (errBody.message as string) || `API error: ${response.status} ${response.statusText}`,\n response.status,\n errBody,\n );\n }\n\n // Raw bytes — never JSON.parse / text-decode, which would corrupt a file.\n return new Uint8Array(await response.arrayBuffer());\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Request timeout', 408);\n }\n throw new SdkHttpError(`Network error: ${err.message}`, 0, error);\n }\n }\n\n async function getBinaryWithMeta(\n path: string,\n opts?: HttpCallOptions,\n ): Promise<{ bytes: Uint8Array; contentType?: string; filename?: string }> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: getHeaders(undefined, opts),\n signal: controller.signal,\n });\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const errBody = (await response.json().catch(() => ({}))) as Record<string, unknown>;\n throw new SdkHttpError(\n (errBody.message as string) || `API error: ${response.status} ${response.statusText}`,\n response.status,\n errBody,\n );\n }\n\n const bytes = new Uint8Array(await response.arrayBuffer());\n const contentType = response.headers.get('content-type') ?? undefined;\n // Pull `filename` out of content-disposition (filename* RFC 5987 or plain).\n const disposition = response.headers.get('content-disposition') ?? '';\n const match = /filename\\*?=(?:UTF-8'')?\"?([^\"\\n;]+)\"?/i.exec(disposition);\n const filename = match ? decodeURIComponent(match[1].trim()) : undefined;\n return { bytes, contentType, filename };\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Request timeout', 408);\n }\n throw new SdkHttpError(`Network error: ${err.message}`, 0, error);\n }\n }\n\n async function upload<T>(\n path: string,\n file: Blob | Buffer,\n filename: string,\n metadata?: Record<string, string>,\n fieldName: string = 'file',\n opts?: HttpCallOptions,\n ): Promise<T> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n // Uploads get 2x timeout\n const timeoutId = setTimeout(() => controller.abort(), timeout * 2);\n\n try {\n const formData = new FormData();\n const blob = file instanceof Blob ? file : new Blob([new Uint8Array(file as Buffer)]);\n formData.append(fieldName, blob, filename);\n\n if (metadata) {\n for (const [key, value] of Object.entries(metadata)) {\n formData.append(key, value);\n }\n }\n\n // Don't set Content-Type — browser/node will set multipart boundary\n const headers: Record<string, string> = {};\n if (config.authToken) {\n headers['Authorization'] = `Bearer ${config.authToken}`;\n }\n if (config.apiKey) {\n headers['X-API-Key'] = config.apiKey;\n }\n if (opts?.customerToken) {\n headers['X-Customer-Session-Token'] = opts.customerToken;\n }\n if (opts?.onBehalfOf) {\n headers['Authorization'] = `Bearer ${opts.onBehalfOf}`;\n headers['X-Customer-Session-Claim'] = opts.onBehalfOf;\n }\n if (opts?.headers) {\n Object.assign(headers, opts.headers);\n }\n\n const response = await fetch(url, {\n method: 'POST',\n headers,\n body: formData,\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const errorData = await response.json().catch(() => ({})) as Record<string, unknown>;\n throw new SdkHttpError(\n (errorData.message as string) || `Upload error: ${response.status} ${response.statusText}`,\n response.status,\n errorData\n );\n }\n\n return response.json() as Promise<T>;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Upload timeout', 408);\n }\n throw new SdkHttpError(`Upload error: ${err.message}`, 0, error);\n }\n }\n\n // Transparent session refresh: when a request 401s, invoke `onUnauthorized`\n // (which re-authenticates and updates the token) and retry the request once.\n // Concurrent 401s share a single in-flight refresh; `/api/v3/{,baas/}auth/*` is excluded\n // so the refresh's own challenge/verify can never trigger another refresh.\n let reauthInFlight: Promise<void> | null = null;\n async function withAuthRetry<T>(path: string, op: () => Promise<T>): Promise<T> {\n try {\n return await op();\n } catch (error) {\n const refreshable =\n !!config.onUnauthorized &&\n !path.startsWith('/api/v3/baas/auth/') &&\n !path.startsWith('/api/v3/auth/') &&\n error instanceof SdkHttpError &&\n error.statusCode === 401;\n if (!refreshable) throw error;\n if (!reauthInFlight) {\n reauthInFlight = Promise.resolve(config.onUnauthorized!()).finally(() => {\n reauthInFlight = null;\n });\n }\n try {\n await reauthInFlight;\n } catch {\n throw error; // refresh failed → surface the original 401\n }\n return await op(); // retry once with the refreshed token\n }\n }\n\n const client: HttpClient = {\n post: <T>(path: string, body: unknown, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('POST', path, body, opts)),\n get: <T>(path: string, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('GET', path, undefined, opts)),\n put: <T>(path: string, body: unknown, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('PUT', path, body, opts)),\n patch: <T>(path: string, body: unknown, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('PATCH', path, body, opts)),\n delete: <T>(path: string, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('DELETE', path, undefined, opts)),\n getText: (path: string, opts?: HttpCallOptions) => withAuthRetry(path, () => getText(path, opts)),\n getBinary: (path: string, opts?: HttpCallOptions) => withAuthRetry(path, () => getBinary(path, opts)),\n getBinaryWithMeta: (path: string, opts?: HttpCallOptions) =>\n withAuthRetry(path, () => getBinaryWithMeta(path, opts)),\n upload: ((path: string, file: Blob | Buffer, filename: string, metadata?: Record<string, string>, fieldName?: string, opts?: HttpCallOptions) =>\n withAuthRetry(path, () => upload(path, file, filename, metadata, fieldName, opts))) as HttpClient['upload'],\n setAuthToken,\n getAuthToken,\n };\n\n return client;\n}\n\n/**\n * Encode a path parameter to prevent injection attacks.\n * Removes path traversal attempts and encodes special characters.\n */\nexport function encodePathParam(param: string): string {\n return encodeURIComponent(param).replace(/%2F/gi, '');\n}\n\n/**\n * Body shape of an HTTP 403 `rule_rejected` envelope raised by the validator's\n * rule-enforcement hooks (e.g. the NFT-transfer hook):\n *\n * ```json\n * { \"error\": \"rule_rejected\", \"reason\": \"<atom-reason>\", \"ruleAtoms\": [\"SoulboundNftAtom\"] }\n * ```\n */\nexport interface RuleRejectedDetails {\n /** Literal discriminator — always 'rule_rejected'. */\n error: 'rule_rejected';\n /** Atom-supplied reason string, e.g. 'soulbound_transfer_rejected'. */\n reason: string;\n /** Names of the rule atoms that fired the rejection. */\n ruleAtoms: string[];\n}\n\n/**\n * Type predicate: narrows an unknown error to a 403 `rule_rejected` envelope.\n *\n * Use in smart-app code to branch on rules-engine rejections without\n * inspecting raw HTTP details:\n *\n * ```typescript\n * try {\n * await sdk.transactions.prepareNftTransfer({ chain: 'hedera', ... });\n * } catch (err) {\n * if (isRuleRejected(err)) {\n * console.log(`Blocked by ${err.details.ruleAtoms.join(', ')}: ${err.details.reason}`);\n * return;\n * }\n * throw err;\n * }\n * ```\n *\n * Status-code AND shape are both checked — non-403 errors and 403s without\n * the rule_rejected envelope (e.g. plain auth failures) return false.\n *\n * @public SDK-SOULBOUND-1\n */\nexport function isRuleRejected(\n err: unknown,\n): err is SdkHttpError & { details: RuleRejectedDetails } {\n if (!(err instanceof SdkHttpError)) return false;\n if (err.statusCode !== 403) return false;\n const d = err.details as unknown;\n if (d === null || typeof d !== 'object') return false;\n const obj = d as Record<string, unknown>;\n if (obj.error !== 'rule_rejected') return false;\n if (typeof obj.reason !== 'string') return false;\n if (!Array.isArray(obj.ruleAtoms)) return false;\n return obj.ruleAtoms.every((a) => typeof a === 'string');\n}\n\n/**\n * Type predicate: narrows an unknown error to the SDK's {@link SdkHttpError}.\n * Lets consumers branch on SDK HTTP failures without importing the class purely\n * for an `instanceof` check.\n */\nexport function isSmartEngineSdkError(err: unknown): err is SdkHttpError {\n return err instanceof SdkHttpError;\n}\n\n/**\n * Normalize any thrown value into an HTTP-shaped record a server (e.g. a NestJS\n * exception filter) can re-emit. An {@link SdkHttpError} maps verbatim; a sub-400\n * status (0 network / unexpected) is clamped to 502 Bad Gateway (a failed\n * upstream call is a gateway error, not a success); a non-SDK error becomes 500.\n * `isRetryable` follows {@link SdkHttpError.isRetryable}.\n */\nexport function toHttpError(err: unknown): {\n statusCode: number;\n code: string;\n message: string;\n isRetryable: boolean;\n details?: unknown;\n} {\n if (isSmartEngineSdkError(err)) {\n return {\n statusCode: err.statusCode >= 400 ? err.statusCode : 502,\n code: 'SDK_HTTP_ERROR',\n message: err.message,\n isRetryable: err.isRetryable,\n details: err.details,\n };\n }\n const message = err instanceof Error ? err.message : 'Unknown error';\n return { statusCode: 500, code: 'INTERNAL_ERROR', message, isRetryable: false };\n}\n","/**\n * Discovery Sub-Client — `client.discovery.*`\n *\n * Thin typed wrapper over the validator's `/api/v3/discovery/*` HTTP\n * surface. Backs the cluster-registry browser endpoints (active set,\n * all-nodes debug view, per-nodeId lookup) **and** the platform-image\n * manifest discovery endpoints (list, per-image versions, single-version\n * fetch, verify gate, signed envelopes).\n *\n * Trust model — discovery endpoints are intentionally `@Public`\n * server-side:\n *\n * - Cluster registry rows are signed cluster-internal data; the\n * advertised `publicKey` is the SDK's verification anchor.\n * - Platform-image manifests are DKG-threshold signed at publish time;\n * pulling them by SHA-256 digest + content-addressed verification\n * keeps the read surface authentication-free.\n *\n * The {@link ClusterDiscoveryClient} in this same module already wraps\n * the active-set endpoint for the bootstrap → random-pick connect flow.\n * This client exists for callers that want the **typed** endpoints\n * directly (operator dashboards, supply-chain auditors, smart-apps\n * inspecting validator membership).\n *\n * Mounted at `client.discovery` over the `/api/v3`-rooted shared\n * `HttpClient` — every method here resolves to `/api/v3/discovery/...`.\n */\n\nimport { encodePathParam, type HttpClient } from '../http';\n\n/**\n * Cluster endpoints payload, mirrored from the server-side\n * `ClusterEndpointsPayload` shape.\n *\n * Re-declared here (not imported from `./cluster-discovery`) so this\n * client stays compileable in environments that tree-shake the\n * mirror-node / HCS path out.\n */\nexport type DiscoveryClusterEndpoints = {\n clusterId: string;\n gatewayUrl: string;\n harborUrl?: string;\n natsUrl?: string;\n publicIp?: string;\n region?: string;\n};\n\n/**\n * Active-set cluster row returned by `GET /api/v3/discovery/clusters`.\n *\n * `nodeIds` is the validator-pod identity set whose announcements\n * contributed to this cluster's record — the HCS trust-anchor uses\n * these for cross-checking against the on-chain validator registry.\n */\nexport type DiscoveryClusterRecord = {\n clusterId: string;\n endpoints: DiscoveryClusterEndpoints;\n nodeIds: string[];\n};\n\n/**\n * Per-node registry row returned by `GET /api/v3/discovery/clusters/all`\n * and `GET /api/v3/discovery/clusters/:nodeId`. Carries the publish-time\n * `publicKey` (SDK's verification anchor), the cluster-internal `status`,\n * and the content-addressed envelope CID.\n */\nexport type DiscoveryNodeRecord = {\n nodeId: string;\n publicKey?: string;\n status?: string;\n endpoints: DiscoveryClusterEndpoints;\n endpointsCid: string;\n /** ISO-8601 timestamp of the last cluster-registry event for this node. */\n lastEventTs: string;\n};\n\n/**\n * Platform image manifest — content-addressed kubelet-pull payload.\n * Mirrors `PlatformImageManifest` from `service-registry.events.ts`.\n * Re-declared as an `unknown`-leaning structural type so the SDK does\n * not pull the full server-side schema package into customer bundles.\n */\nexport type DiscoveryPlatformImageManifest = {\n imageName: string;\n version: string;\n sha256digest: string;\n publishedAt: string;\n publisherNodeId?: string;\n metadata?: Record<string, unknown>;\n};\n\n/**\n * Signed platform-image envelope — manifest + DKG-threshold signature +\n * the cluster's aggregated public key. Used by external re-verifiers\n * that want to independently confirm authenticity without trusting\n * the discovery endpoint.\n */\nexport type DiscoveryPlatformImageEnvelope = {\n manifest: DiscoveryPlatformImageManifest;\n signature: string;\n publicKey: string;\n};\n\n/**\n * Result of the `/verify` gate — whether the supplied `sha256digest`\n * matches the on-record manifest for `(imageName, version)`. The\n * server returns a structured `{ verified, reason? }` object even on\n * mismatch so callers don't have to disambiguate HTTP 200 + 404 + 400.\n */\nexport type DiscoveryVerifyResult = {\n verified: boolean;\n reason?: string;\n};\n\n/**\n * Top-level discovery client.\n *\n * Exposes two namespaces via the `client.discovery` surface:\n *\n * - `clusters` (default — flat methods on this instance):\n * `listClusters` / `listAllClusters` / `getClusterByNode`.\n * - `platformImages` (sub-object): manifest browsing, per-version\n * fetch, content-addressed verify, signed envelope retrieval.\n *\n * The two namespaces share the underlying `/api/v3/discovery` URL\n * prefix; splitting them at the SDK boundary mirrors the server-side\n * controller split (`ServiceRegistryController` + `ImageManifestController`)\n * and keeps the API discoverable in IDE autocomplete.\n *\n * @example List active clusters + drill into platform images\n * ```ts\n * const { clusters } = await client.discovery.listClusters();\n * console.log(`${clusters.length} active clusters in this validator's registry view`);\n *\n * const manifests = await client.discovery.platformImages.list();\n * ```\n */\nexport class DiscoveryClient {\n /** Platform-image manifest discovery endpoints. */\n public readonly platformImages: PlatformImagesClient;\n\n constructor(private readonly http: HttpClient) {\n this.platformImages = new PlatformImagesClient(http);\n }\n\n /**\n * `GET /api/v3/discovery/clusters` — active-set cluster registry,\n * grouped by `clusterId`. This is the same data the bootstrap-seed\n * flow consumes for random-pick connect.\n */\n async listClusters(): Promise<{ clusters: DiscoveryClusterRecord[] }> {\n return this.http.get('/discovery/clusters');\n }\n\n /**\n * `GET /api/v3/discovery/clusters/all` — every node-level record\n * (debug / audit view). Includes nodes that the active-set filter\n * dropped (e.g. recently-departed validators still in the registry's\n * eventual-consistency window).\n */\n async listAllClusters(): Promise<{ records: DiscoveryNodeRecord[] }> {\n return this.http.get('/discovery/clusters/all');\n }\n\n /**\n * `GET /api/v3/discovery/clusters/:nodeId` — per-nodeId registry row.\n * Returns `{ record: null }` (not 404) when the nodeId is unknown to\n * this validator's registry view, so callers can branch without\n * try/catch.\n */\n async getClusterByNode(nodeId: string): Promise<{ record: DiscoveryNodeRecord | null }> {\n return this.http.get(`/discovery/clusters/${encodePathParam(nodeId)}`);\n }\n}\n\n/**\n * Platform-image manifest browser. Mounted under\n * `client.discovery.platformImages`.\n *\n * The kubelet pulls platform images by their `sha256digest` (per-image\n * content-addressed pinning at the deploy boundary); this client lets\n * smart-app builders inspect WHICH digests the cluster has DKG-signed\n * as canonical for `(imageName, version)` pairs.\n */\nexport class PlatformImagesClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * `GET /api/v3/discovery/platform-images` — every signed manifest the\n * cluster has on record. One row per `(imageName, version)` pair.\n */\n async list(): Promise<{ manifests: DiscoveryPlatformImageManifest[] }> {\n return this.http.get('/discovery/platform-images');\n }\n\n /**\n * `GET /api/v3/discovery/platform-images/envelopes` — full signed\n * envelopes (manifest + signature + publicKey). Heavier payload than\n * {@link list}; for external re-verifiers that want to independently\n * confirm authenticity.\n */\n async listEnvelopes(): Promise<{ envelopes: DiscoveryPlatformImageEnvelope[] }> {\n return this.http.get('/discovery/platform-images/envelopes');\n }\n\n /**\n * `GET /api/v3/discovery/platform-images/:imageName` — every version\n * of a single image. Useful for \"which tags has the cluster\n * authorized?\" queries.\n */\n async get(imageName: string): Promise<{\n imageName: string;\n manifests: DiscoveryPlatformImageManifest[];\n }> {\n return this.http.get(`/discovery/platform-images/${encodePathParam(imageName)}`);\n }\n\n /**\n * `GET /api/v3/discovery/platform-images/:imageName/:version` —\n * single signed manifest. Returns `{ manifest: null }` when the\n * `(imageName, version)` pair is unknown.\n */\n async getVersion(\n imageName: string,\n version: string,\n ): Promise<{ manifest: DiscoveryPlatformImageManifest | null }> {\n return this.http.get(\n `/discovery/platform-images/${encodePathParam(imageName)}/${encodePathParam(version)}`,\n );\n }\n\n /**\n * `GET /api/v3/discovery/platform-images/:imageName/:version/verify?digest=...`\n * — content-addressed verify gate. Returns `{ verified: true }` only\n * when the supplied SHA-256 digest matches the on-record manifest.\n *\n * Use before pulling an image off a registry to make sure you're\n * about to run cluster-signed bits and not whatever drifted into\n * the registry namespace.\n */\n async verify(\n imageName: string,\n version: string,\n digest: string,\n ): Promise<DiscoveryVerifyResult> {\n return this.http.get(\n `/discovery/platform-images/${encodePathParam(imageName)}/${encodePathParam(\n version,\n )}/verify?digest=${encodeURIComponent(digest)}`,\n );\n }\n}\n","/**\n * Network presets for the Smart Engines SDK.\n *\n * Built so SDK consumers don't have to hand-roll a gateway URL or remember\n * which HCS topic ID is the validator-registry trust anchor. The \"zero-\n * config\" entrypoint flow:\n *\n * ```ts\n * const baas = await BaasClient.connectToCluster({\n * network: 'testnet',\n * appId: 'app_abc',\n * });\n * ```\n *\n * ↓ the SDK internally:\n * 1. Resolves `KNOWN_NETWORKS['testnet'].bootstrap` to the canonical\n * `https://gateway.<network>.hsuite.network` entrypoint.\n * 2. Fetches `GET /api/v3/discovery/clusters` from that gateway.\n * 3. Random-picks an active cluster's gatewayUrl.\n * 4. Returns a `BaasClient`/`SmartEngineClient` pointed at that cluster.\n *\n * The on-chain trust-anchor (validator-registry HCS topic) is **per\n * deployment** — the testnet that ships today, a customer-run private\n * testnet, or future mainnet all have different topic IDs. We deliberately\n * do NOT bake a registryTopicId in here; callers who want anchored discovery\n * pass `trustAnchor` explicitly. Callers who don't get the same security\n * guarantees as a plain HTTPS fetch of a public endpoint, which is the same\n * trust model as every other \"talk to gateway.testnet.X\" SDK in the wild.\n */\n\n/** Network identifiers the SDK knows about by name. */\nexport type NetworkName = 'testnet' | 'mainnet';\n\n/** Resolved network preset — what the SDK needs to bootstrap discovery. */\nexport interface NetworkPreset {\n /**\n * Bootstrap seeds for `ClusterDiscoveryClient`. Ordered: first reachable\n * wins. Operators can append fallback URLs locally; the SDK only ships\n * the canonical Cloudflare-fronted gateway here.\n */\n readonly bootstrap: readonly string[];\n}\n\n/**\n * Canonical entrypoints for each supported HSuite network.\n *\n * Update this map (and ship a SDK minor bump) when DNS for a network changes\n * or when a new network goes live. Customers who run their own validators\n * should NOT extend this map — they should pass `bootstrap: [...]` directly.\n */\nexport const KNOWN_NETWORKS: Readonly<Record<NetworkName, NetworkPreset>> = {\n testnet: {\n bootstrap: ['https://gateway.testnet.hsuite.network'],\n },\n mainnet: {\n // Mainnet entrypoint reserved. The SDK still resolves the name so\n // upgrade-by-flipping-NETWORK works; the bootstrap URL is the\n // pre-allocated DNS we own. If mainnet isn't deployed yet, the discovery\n // fetch will fail at runtime with the same \"no seed reachable\" error\n // any unreachable URL produces — the caller learns the network is not\n // live, rather than getting a baffling \"unknown network\" TypeScript\n // error at compile time.\n bootstrap: ['https://gateway.hsuite.network'],\n },\n} as const;\n\n/**\n * Resolve a network name to its preset. Throws on unknown name — this is the\n * one place a stringly-typed call (e.g. from a config file) gets validated.\n *\n * Callers passing a `NetworkName`-typed value compile-time-guarantee this\n * never throws.\n */\nexport function resolveNetwork(name: NetworkName): NetworkPreset {\n const preset = KNOWN_NETWORKS[name];\n if (!preset) {\n // Defensive guard for the runtime string case. NetworkName is a closed\n // union, but JS callers can pass anything.\n throw new Error(\n `Unknown network: \"${name}\". Known networks: ${Object.keys(KNOWN_NETWORKS).join(', ')}`,\n );\n }\n return preset;\n}\n\n/**\n * Type guard for `NetworkName`. Useful when accepting input from configs,\n * env vars, or CLI flags.\n */\nexport function isKnownNetwork(name: string): name is NetworkName {\n return Object.prototype.hasOwnProperty.call(KNOWN_NETWORKS, name);\n}\n","/**\n * Shared bootstrap → cluster resolution helper.\n *\n * `BaasClient.connectToCluster` (and, before SDK 4.0, the now-removed\n * `SmartEngineClient.connectToCluster`) had ~25 lines of identical scaffolding\n * (resolve `bootstrap | network` → `ClusterDiscoveryClient` → `getRandomCluster`\n * → throw if null). This helper collapses that duplication; the factory delegates\n * here and wraps the null-case in its own error class.\n */\n\nimport { ClusterDiscoveryClient, type ClusterInfo } from './cluster-discovery';\nimport { resolveNetwork, type NetworkName } from '../network-presets';\n\n/**\n * Discovery-seed half of every `connectToCluster` config — must supply\n * exactly one of `bootstrap` or `network` (the call-sites encode the\n * exactly-one constraint via a discriminated union; this type intersects\n * with the auth / config half).\n */\nexport type ResolveClusterSeed = {\n /** Bootstrap seeds: URLs that serve `GET /api/v3/discovery/clusters`. */\n bootstrap?: string[];\n /** Named network — resolves the canonical gateway entrypoint. */\n network?: NetworkName;\n};\n\n/**\n * Optional HCS trust-anchor (cross-checks the bootstrap response against\n * the on-chain validator-registry topic so a compromised bootstrap seed\n * can't inject rogue clusters).\n */\nexport type ResolveClusterTrustAnchor = {\n network: 'mainnet' | 'testnet' | 'previewnet';\n registryTopicId: string;\n mirrorNodeUrl?: string;\n};\n\n/**\n * Common config inputs for {@link resolveClusterEndpoint}.\n */\nexport type ResolveClusterConfig = ResolveClusterSeed & {\n allowInsecure?: boolean;\n trustAnchor?: ResolveClusterTrustAnchor;\n};\n\n/**\n * Outcomes from {@link resolveClusterEndpoint}.\n *\n * - `'no-seeds'` — neither a `bootstrap` list nor a known `network` was\n * supplied (caller passed an empty list explicitly, or the network\n * preset has no seeds).\n * - `'no-clusters'` — discovery completed but found no active cluster\n * via any seed (network reachability / bootstrap URLs are likely off).\n */\nexport type ResolveClusterFailure = 'no-seeds' | 'no-clusters';\n\nexport type ResolveClusterResult =\n | { ok: true; cluster: ClusterInfo }\n | { ok: false; reason: ResolveClusterFailure };\n\n/**\n * Resolve a cluster endpoint via bootstrap seeds or a named network.\n *\n * `BaasClient.connectToCluster` calls this. The factory handles wrapping\n * the failure cases in its error class (so callers keep getting `BaasError`\n * rather than a leaked helper-side type).\n */\nexport async function resolveClusterEndpoint(\n config: ResolveClusterConfig,\n): Promise<ResolveClusterResult> {\n const allowInsecure = config.allowInsecure ?? false;\n\n // Resolve the seed half. `bootstrap` wins when both are set under\n // `any`-cast usage; the call-site types prevent that under normal TS.\n const bootstrap: string[] = config.bootstrap\n ? [...config.bootstrap]\n : config.network\n ? [...resolveNetwork(config.network).bootstrap]\n : [];\n\n if (bootstrap.length === 0) {\n return { ok: false, reason: 'no-seeds' };\n }\n\n const discovery = new ClusterDiscoveryClient({\n bootstrap,\n allowInsecure,\n trustAnchor: config.trustAnchor\n ? {\n network: config.trustAnchor.network,\n registryTopicId: config.trustAnchor.registryTopicId,\n mirrorNodeUrl: config.trustAnchor.mirrorNodeUrl,\n allowInsecure,\n }\n : undefined,\n });\n\n const cluster = await discovery.getRandomCluster();\n if (!cluster) {\n return { ok: false, reason: 'no-clusters' };\n }\n\n return { ok: true, cluster };\n}\n","/**\n * Validator Authentication Client\n *\n * Web3-style authentication for connecting to smart-engine validators.\n * Supports challenge-response authentication with Hedera, XRPL, Polkadot,\n * Stellar, or Solana wallets.\n */\n\n/**\n * Supported blockchain types for authentication.\n *\n * All five are verified end-to-end server-side by {@link Web3AuthService}\n * (Hedera ed25519, XRPL secp256k1/ed25519, Polkadot sr25519/ed25519,\n * Stellar ed25519, Solana ed25519). The partial-mode prepare guards\n * enforce `session.chain === request.chain`, so a caller who wants to\n * prepare sovereignty on chain X must authenticate with chain X's wallet.\n */\nexport type AuthChain = 'hedera' | 'xrpl' | 'polkadot' | 'stellar' | 'solana';\n\nconst SUPPORTED_AUTH_CHAINS: readonly AuthChain[] = [\n 'hedera',\n 'xrpl',\n 'polkadot',\n 'stellar',\n 'solana',\n];\n\n/**\n * Security configuration for auth client\n */\nexport interface SecurityConfig {\n /** Allow HTTP (insecure) connections - default false, use only for local development */\n allowInsecure?: boolean;\n}\n\n/**\n * Structural type of a Hedera-style signer — matches the `PrivateKey`\n * surface in `@hashgraph/sdk` without importing it. Accepts any of the\n * three return shapes the SDK has historically used: a raw `Uint8Array`,\n * a Node `Buffer`, or an object with `toBytes()`.\n *\n * Defined here rather than imported to keep `@hashgraph/sdk` out of the\n * SDK's runtime — it stays a peer/optional dep of the consumer.\n */\nexport type HederaSigner = {\n sign(message: Uint8Array): Uint8Array | Buffer | { toBytes(): Uint8Array };\n};\n\n/**\n * Structural type of an XRPL-style signer — matches the `Wallet.sign`\n * surface in the `xrpl` library without importing it. Returns either a\n * bare hex/base58 string or a `{ signedTransaction }` envelope.\n */\nexport type XrplSigner = {\n sign(message: string): string | { signedTransaction: string };\n};\n\n/**\n * Normalize the three Hedera-signer return shapes into a `Uint8Array`.\n */\nfunction toBytes(value: Uint8Array | Buffer | { toBytes(): Uint8Array }): Uint8Array {\n // Buffer extends Uint8Array, so this branch catches both.\n if (value instanceof Uint8Array) return value;\n return value.toBytes();\n}\n\n/**\n * Validate and sanitize a validator URL\n */\nfunction validateValidatorUrl(url: string, allowInsecure = false): string {\n try {\n const parsed = new URL(url);\n\n // Only allow http/https protocols\n if (!['http:', 'https:'].includes(parsed.protocol)) {\n throw new ValidatorAuthError(`Invalid protocol: ${parsed.protocol}`, 400);\n }\n\n // Enforce HTTPS unless explicitly allowed for development\n if (!allowInsecure && parsed.protocol !== 'https:') {\n throw new ValidatorAuthError(\n 'HTTPS is required for validator connections. Set allowInsecure=true for local development.',\n 400\n );\n }\n\n // Block private IP ranges in production to prevent SSRF\n const hostname = parsed.hostname.toLowerCase();\n const isLocalhost = hostname === 'localhost' || hostname === '127.0.0.1' || hostname === '::1';\n\n if (isLocalhost && !allowInsecure) {\n throw new ValidatorAuthError(\n 'Localhost connections blocked in secure mode. Set allowInsecure=true for local development.',\n 400\n );\n }\n\n return parsed.origin;\n } catch (error) {\n if (error instanceof ValidatorAuthError) {\n throw error;\n }\n throw new ValidatorAuthError(`Invalid validator URL: ${url}`, 400);\n }\n}\n\n/**\n * Sanitize input to prevent injection attacks\n */\nfunction sanitizeInput(input: string, fieldName: string, maxLength = 256): string {\n if (typeof input !== 'string') {\n throw new ValidatorAuthError(`${fieldName} must be a string`, 400);\n }\n\n if (input.length > maxLength) {\n throw new ValidatorAuthError(`${fieldName} exceeds maximum length of ${maxLength}`, 400);\n }\n\n // Remove any control characters\n return input.replace(/[\\x00-\\x1F\\x7F]/g, '');\n}\n\n/**\n * Challenge response from validator\n */\nexport interface ChallengeResponse {\n /** Whether the request was successful */\n success: boolean;\n /** Challenge string to sign */\n challenge: string;\n /** Informational message */\n message: string;\n /** Challenge expiration time */\n expiresIn: string;\n}\n\n/**\n * Authentication request payload\n */\nexport interface AuthenticateRequest {\n /** Blockchain type */\n chain: AuthChain;\n /** Wallet address (account ID for Hedera, address for XRPL) */\n address: string;\n /** Public key (hex encoded) */\n publicKey: string;\n /** Signed challenge (hex encoded signature) */\n signature: string;\n /** Original challenge string */\n challenge: string;\n /** Optional metadata */\n metadata?: {\n nodeId?: string;\n endpoint?: string;\n capabilities?: string[];\n appId?: string;\n appName?: string;\n };\n}\n\n/**\n * Authentication response with session token\n */\nexport interface AuthenticateResponse {\n /** JWT session token */\n token: string;\n /** Session ID */\n sessionId: string;\n /** Assigned validator ID */\n validatorId: string;\n /** Token expiration timestamp */\n expiresAt: string;\n /** Informational message */\n message: string;\n}\n\n/**\n * Session information\n */\nexport interface SessionInfo {\n /** Session ID */\n sessionId: string;\n /** Validator ID */\n validatorId: string;\n /** Wallet address */\n address: string;\n /** Blockchain type */\n chain: AuthChain;\n /** Session creation time */\n createdAt: string;\n /** Session expiration time */\n expiresAt: string;\n /** Whether session is valid */\n isValid: boolean;\n}\n\n/**\n * Validator auth configuration\n */\nexport interface ValidatorAuthConfig {\n /** Request timeout in milliseconds */\n timeout?: number;\n /** Security configuration */\n security?: SecurityConfig;\n}\n\n/**\n * Validator Authentication Client\n *\n * Implements Web3-style challenge-response authentication:\n * 1. Request challenge from validator\n * 2. Sign challenge with wallet private key\n * 3. Authenticate with signed challenge to get session token\n *\n * @example\n * ```typescript\n * const auth = new ValidatorAuthClient();\n *\n * // Request challenge\n * const challenge = await auth.requestChallenge(\n * 'https://validator.example.com',\n * 'hedera',\n * '0.0.123456'\n * );\n *\n * // Sign challenge (using @hashgraph/sdk)\n * const signature = auth.signChallengeHedera(challenge.challenge, privateKey);\n *\n * // Authenticate\n * const session = await auth.authenticate('https://validator.example.com', {\n * chain: 'hedera',\n * address: '0.0.123456',\n * publicKey: publicKeyHex,\n * signature,\n * challenge: challenge.challenge,\n * });\n *\n * console.log('Token:', session.token);\n * ```\n */\nexport class ValidatorAuthClient {\n private readonly timeout: number;\n private readonly allowInsecure: boolean;\n\n constructor(config?: ValidatorAuthConfig) {\n this.timeout = config?.timeout ?? 30000;\n this.allowInsecure = config?.security?.allowInsecure ?? false;\n }\n\n /**\n * Request authentication challenge from validator\n *\n * @param validatorUrl - Validator API base URL\n * @param chain - Blockchain type\n * @param address - Wallet address\n * @returns Challenge to sign\n */\n async requestChallenge(\n validatorUrl: string,\n chain: AuthChain,\n address: string\n ): Promise<ChallengeResponse> {\n // Validate and sanitize inputs\n const safeUrl = validateValidatorUrl(validatorUrl, this.allowInsecure);\n const safeAddress = sanitizeInput(address, 'address', 128);\n\n if (!SUPPORTED_AUTH_CHAINS.includes(chain)) {\n throw new ValidatorAuthError(`Invalid chain type: ${chain}`, 400);\n }\n\n const url = `${safeUrl}/auth/validator/challenge`;\n\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n const response = await fetch(url, {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({ chain, address: safeAddress }),\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const error = await response.json().catch(() => ({}));\n throw new ValidatorAuthError(\n `Challenge request failed: ${response.status} ${response.statusText}`,\n response.status,\n error\n );\n }\n\n return (await response.json()) as ChallengeResponse;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof ValidatorAuthError) {\n throw error;\n }\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new ValidatorAuthError('Challenge request timeout', 408);\n }\n throw new ValidatorAuthError(`Challenge request failed: ${err.message}`, 0);\n }\n }\n\n /**\n * Authenticate with signed challenge\n *\n * @param validatorUrl - Validator API base URL\n * @param request - Authentication request with signature\n * @returns Session token and info\n */\n async authenticate(\n validatorUrl: string,\n request: AuthenticateRequest\n ): Promise<AuthenticateResponse> {\n // Validate URL\n const safeUrl = validateValidatorUrl(validatorUrl, this.allowInsecure);\n\n // Validate and sanitize request fields\n const sanitizedRequest: AuthenticateRequest = {\n chain: request.chain,\n address: sanitizeInput(request.address, 'address', 128),\n publicKey: sanitizeInput(request.publicKey, 'publicKey', 512),\n signature: sanitizeInput(request.signature, 'signature', 1024),\n challenge: sanitizeInput(request.challenge, 'challenge', 512),\n metadata: request.metadata\n ? {\n nodeId: request.metadata.nodeId\n ? sanitizeInput(request.metadata.nodeId, 'nodeId', 64)\n : undefined,\n endpoint: request.metadata.endpoint\n ? sanitizeInput(request.metadata.endpoint, 'endpoint', 256)\n : undefined,\n capabilities: request.metadata.capabilities,\n appId: request.metadata.appId\n ? sanitizeInput(request.metadata.appId, 'appId', 64)\n : undefined,\n appName: request.metadata.appName\n ? sanitizeInput(request.metadata.appName, 'appName', 128)\n : undefined,\n }\n : undefined,\n };\n\n if (!SUPPORTED_AUTH_CHAINS.includes(sanitizedRequest.chain)) {\n throw new ValidatorAuthError(`Invalid chain type: ${sanitizedRequest.chain}`, 400);\n }\n\n // Validate signature is hex\n if (!/^[0-9a-fA-F]+$/.test(sanitizedRequest.signature.replace(/_.*$/, ''))) {\n throw new ValidatorAuthError('Invalid signature format: must be hex encoded', 400);\n }\n\n const url = `${safeUrl}/auth/validator/authenticate`;\n\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n const response = await fetch(url, {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify(sanitizedRequest),\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const error = await response.json().catch(() => ({}));\n throw new ValidatorAuthError(\n `Authentication failed: ${response.status} ${response.statusText}`,\n response.status,\n error\n );\n }\n\n return (await response.json()) as AuthenticateResponse;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof ValidatorAuthError) {\n throw error;\n }\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new ValidatorAuthError('Authentication request timeout', 408);\n }\n throw new ValidatorAuthError(`Authentication failed: ${err.message}`, 0);\n }\n }\n\n /**\n * Get current session info\n *\n * @param validatorUrl - Validator API base URL\n * @param token - Session token\n * @returns Session information\n */\n async getSession(validatorUrl: string, token: string): Promise<SessionInfo> {\n // Validate URL and token\n const safeUrl = validateValidatorUrl(validatorUrl, this.allowInsecure);\n const safeToken = sanitizeInput(token, 'token', 2048);\n\n const url = `${safeUrl}/auth/validator/session`;\n\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${safeToken}`,\n },\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const error = await response.json().catch(() => ({}));\n throw new ValidatorAuthError(\n `Session request failed: ${response.status} ${response.statusText}`,\n response.status,\n error\n );\n }\n\n return (await response.json()) as SessionInfo;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof ValidatorAuthError) {\n throw error;\n }\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new ValidatorAuthError('Session request timeout', 408);\n }\n throw new ValidatorAuthError(`Session request failed: ${err.message}`, 0);\n }\n }\n\n /**\n * Sign challenge with Hedera private key.\n *\n * Structurally typed against the surface of `@hashgraph/sdk`'s\n * `PrivateKey`. We don't `import` the SDK directly — pulling it into\n * the smart-engine SDK's runtime would bloat browser bundles and bring\n * peer-dep churn — but any object with a compatible `sign(...)` method\n * works.\n *\n * @param challenge - Challenge string from validator\n * @param privateKey - Hedera PrivateKey instance (or compatible signer)\n * @returns Hex-encoded signature\n */\n signChallengeHedera(challenge: string, privateKey: HederaSigner): string {\n const messageBytes = new Uint8Array(Buffer.from(challenge, 'utf-8'));\n const signature = privateKey.sign(messageBytes);\n return Buffer.from(toBytes(signature)).toString('hex');\n }\n\n /**\n * Sign challenge with XRPL wallet.\n *\n * Structurally typed against the surface of xrpl's `Wallet` — see the\n * comment on {@link HederaSigner} for the \"no direct import\" rationale.\n * Accepts both the `{ signedTransaction }` envelope and the bare-string\n * return shapes that xrpl signer libraries expose.\n *\n * @param challenge - Challenge string from validator\n * @param wallet - XRPL Wallet instance (or compatible signer)\n * @returns Hex-encoded signature\n */\n signChallengeXRPL(challenge: string, wallet: XrplSigner): string {\n const signature = wallet.sign(challenge);\n // XRPL libs expose two return shapes: a bare hex/base58 string, or a\n // `{ signedTransaction }` envelope. Normalize to hex.\n if (typeof signature === 'string') {\n if (/^[0-9A-Fa-f]+$/.test(signature)) return signature;\n return Buffer.from(signature).toString('hex');\n }\n return signature.signedTransaction;\n }\n\n /**\n * Complete authentication flow in one call\n *\n * @param validatorUrl - Validator API base URL\n * @param chain - Blockchain type\n * @param address - Wallet address\n * @param publicKey - Public key (hex)\n * @param signFn - Function to sign the challenge\n * @param metadata - Optional metadata\n * @returns Session token and info\n */\n async authenticateWithSigner(\n validatorUrl: string,\n chain: AuthChain,\n address: string,\n publicKey: string,\n signFn: (challenge: string) => string | Promise<string>,\n metadata?: AuthenticateRequest['metadata']\n ): Promise<AuthenticateResponse> {\n // Step 1: Request challenge\n const challengeResponse = await this.requestChallenge(validatorUrl, chain, address);\n\n // Step 2: Sign challenge\n const signature = await signFn(challengeResponse.challenge);\n\n // Step 3: Authenticate\n return this.authenticate(validatorUrl, {\n chain,\n address,\n publicKey,\n signature,\n challenge: challengeResponse.challenge,\n metadata,\n });\n }\n}\n\n/**\n * Authentication error\n */\nexport class ValidatorAuthError extends Error {\n constructor(\n message: string,\n public statusCode: number,\n public details?: any\n ) {\n super(message);\n this.name = 'ValidatorAuthError';\n }\n}\n","/**\n * Subscription Sub-Client\n *\n * Manages application subscriptions for using the validator network.\n */\n\n/**\n * Subscription tier names.\n *\n * The ladder is `builder → growth → scale → enterprise`. Every tier is paid;\n * the previous free_testnet/starter/professional names were retired.\n *\n * - builder: Entry-level paid tier\n * - growth: Mid-tier with usage analytics\n * - scale: High-volume tier with advanced features\n * - enterprise: Full-featured enterprise tier (custom / unlimited)\n *\n * BREAKING: this union changed from `free_testnet | starter | professional |\n * enterprise`. Consumers pinning the old names must migrate.\n */\nexport type SubscriptionTierName = 'builder' | 'growth' | 'scale' | 'enterprise';\n\n/**\n * Subscription statuses.\n *\n * NOTE: `'deposit_confirmed'` is the mint-ready status — the validator's\n * `activateSubscription` refuses to mint the subscription NFT unless the\n * subscription is in `deposit_confirmed` (there is no `'pending_mint'` status).\n * After a successful mint the status advances to `'active'`.\n */\nexport type SubscriptionStatus =\n | 'pending_deposit'\n | 'deposit_confirmed'\n | 'active'\n | 'expired'\n | 'cancelled';\n\n/**\n * Deposit wallet statuses\n */\nexport type DepositWalletStatus = 'pending' | 'locked' | 'expired' | 'slashed' | 'released';\n\n/**\n * Subscription tier information for API responses\n */\nexport type SubscriptionTierInfo = {\n /** Tier name identifier */\n name: SubscriptionTierName;\n /** Display name for UI */\n displayName: string;\n /** Tier description */\n description: string;\n /** Monthly price in USD */\n priceUsd: number;\n /** Deposit amount in HSUITE tokens */\n depositAmount: string;\n /** API calls per day limit */\n apiCallsPerDay: number;\n /** Supported networks for this tier */\n supportedNetworks: ('hedera' | 'xrpl')[];\n /** Additional features included in this tier */\n features: string[];\n};\n\n/**\n * Subscription request\n */\nexport type SubscriptionRequest = {\n /** Application ID */\n appId: string;\n /** Application name */\n appName: string;\n /** Developer's account ID on the chosen chain */\n developerAccountId: string;\n /** Chain for deposit */\n chain: 'hedera' | 'xrpl';\n /** Selected subscription tier */\n selectedTier: SubscriptionTierName;\n /** Selected networks to support */\n selectedNetworks: ('hedera' | 'xrpl')[];\n /** App logo URL (optional) */\n logoUrl?: string;\n /** App description (optional) */\n appDescription?: string;\n /** Additional metadata (optional) */\n metadata?: Record<string, unknown>;\n};\n\n/**\n * Subscription response\n */\nexport type SubscriptionResponse = {\n success: boolean;\n subscriptionId?: string;\n status?: SubscriptionStatus;\n depositInstructions?: {\n walletAddress: string;\n tokenId: string;\n amount: string;\n chain: string;\n };\n message: string;\n};\n\n/**\n * Subscription status response\n */\nexport type SubscriptionStatusResponse = {\n appId: string;\n hasSubscription: boolean;\n subscriptionId?: string;\n appName?: string;\n status: SubscriptionStatus | 'not_found';\n depositWallet?: {\n walletAddress: string;\n chain: string;\n depositAmount: string;\n actualDepositAmount?: string;\n status: DepositWalletStatus;\n lockedUntil?: string;\n };\n subscriptionNftSerial?: number;\n /**\n * Per-chain minted-NFT coordinates exposed by the validator once the\n * subscription NFT is minted. For XRPL this carries the NFTokenID, the\n * issuing account (the cluster SignerList issuer), and the brokered\n * sell-offer tx id — enough for a client to resolve + accept the sell offer\n * so the NFT lands on the developer wallet (`NFTokenAcceptOffer`).\n */\n chainNfts?: {\n xrpl?: {\n nftId?: string;\n issuerAddress?: string;\n offerTxId?: string;\n };\n } & Record<string, unknown>;\n expiresAt?: string;\n remainingBalance?: string;\n createdAt?: string;\n /** Current subscription tier */\n tier?: SubscriptionTierName;\n /** Networks selected for this subscription */\n selectedNetworks?: string[];\n /** API calls made today */\n apiCallsToday?: number;\n /** Daily API call limit based on tier */\n apiCallsLimit?: number;\n};\n\n/**\n * Mint NFT response\n */\nexport type MintNftResponse = {\n success: boolean;\n subscriptionId?: string;\n appId?: string;\n expiresAt?: string;\n message: string;\n};\n\n/**\n * Subscription renewal request\n */\nexport type SubscriptionRenewalRequest = {\n appId: string;\n additionalDays?: number;\n};\n\n/**\n * Subscription renewal response\n */\nexport type SubscriptionRenewalResponse = {\n success: boolean;\n appId: string;\n status?: string;\n newExpiresAt?: string;\n message: string;\n};\n\n/**\n * Subscription configuration\n */\nexport type SubscriptionConfig = {\n subscriptionDepositAmount: string;\n lockDurationDays: number;\n renewalWindowDays: number;\n hsuiteTokenIds: Record<string, string>;\n /** Available subscription tiers */\n availableTiers: SubscriptionTierInfo[];\n};\n\n/**\n * Subscription list response\n */\nexport type SubscriptionListResponse = {\n count: number;\n subscriptions: Array<{\n subscriptionId: string;\n appId: string;\n appName: string;\n status: SubscriptionStatus;\n expiresAt?: string;\n createdAt: string;\n }>;\n};\n\n/**\n * Pending tier change envelope returned by downgrade/upgrade endpoints.\n * The validator records the change without applying it until the next\n * renewal (downgrade) or until the on-chain top-up is confirmed (upgrade).\n */\nexport type PendingTierChange = {\n fromTier?: SubscriptionTierName;\n toTier?: SubscriptionTierName;\n direction?: 'upgrade' | 'downgrade';\n effectiveAt?: string;\n /** Top-up deposit (upgrade only). */\n depositInstructions?: {\n walletAddress: string;\n tokenId: string;\n amount: string;\n chain: string;\n };\n};\n\n/** Response shape for `POST /subscription/downgrade`. */\nexport type DowngradeSubscriptionRequest = {\n appId: string;\n toTier: SubscriptionTierName;\n};\n\nexport type DowngradeSubscriptionResponse = {\n success: boolean;\n appId: string;\n pendingTierChange?: PendingTierChange;\n message: string;\n};\n\n/** Response shape for `POST /subscription/upgrade`. */\nexport type UpgradeSubscriptionRequest = {\n appId: string;\n toTier: SubscriptionTierName;\n};\n\nexport type UpgradeSubscriptionResponse = {\n success: boolean;\n appId: string;\n pendingTierChange?: PendingTierChange;\n /** Top-up deposit instructions; flip activates once on-chain. */\n depositInstructions?: {\n walletAddress: string;\n tokenId: string;\n amount: string;\n chain: string;\n };\n message: string;\n};\n\nexport type CancelTierChangeRequest = {\n appId: string;\n};\n\nexport type CancelTierChangeResponse = {\n success: boolean;\n appId: string;\n message: string;\n};\n\n/**\n * Response shape for `GET /subscription/active-for/:walletAddress`.\n *\n * **Internal-by-design.** Server-side this is allowlisted under\n * `ApiKeyGuard.INTERNAL_SERVICE_MESH_ROUTES` — smart-host pods call it via\n * `X-API-Key`. Smart-app callers SHOULD NOT use this endpoint; it is\n * exposed for completeness and for in-cluster tooling.\n */\nexport type ActiveSubscriptionForWalletResponse = {\n active: boolean;\n};\n\n/**\n * Response shape for `GET /subscription/usage/:appId`. Mirrors the\n * server-side `UsageBreakdown` projection.\n */\nexport type SubscriptionUsageSummaryResponse = {\n appId: string;\n total: number;\n byCategory: {\n database: number;\n functions: number;\n messaging: number;\n storage: number;\n ipfs: number;\n snapshots: number;\n other: number;\n };\n recordCount: number;\n lastUpdated: string;\n};\n\n/** Response shape for `GET /subscription/usage/status/:appId`. */\nexport type SubscriptionUsageStatusResponse = {\n appId: string;\n usagePercent: number;\n currentUsage: number;\n dailyLimit: number;\n overagePercent: number;\n inGracePeriod: boolean;\n graceExpiresAt: string | null;\n blocked: boolean;\n suggestUpgrade: boolean;\n nextTier: {\n tier: SubscriptionTierName;\n name: string;\n apiCallsPerDay: number;\n monthlyPriceHsuite: number;\n } | null;\n projectedDaysUntilLimit: number | null;\n};\n\n/** Response shape for `GET /subscription/billing/:appId`. */\nexport type SubscriptionBillingLedgerEntry = {\n id: string;\n subscriptionId: string;\n operation: string;\n amount: string;\n balanceAfter: string;\n timestamp: string;\n metadata?: Record<string, unknown>;\n};\n\nexport type SubscriptionBillingResponse = {\n appId: string;\n entries: SubscriptionBillingLedgerEntry[];\n total: number;\n hasMore: boolean;\n};\n\nexport type GetBillingOptions = {\n limit?: number;\n offset?: number;\n /** ISO-8601 lower bound. */\n from?: string;\n /** ISO-8601 upper bound. */\n to?: string;\n};\n\n/** Response shape for `POST /subscription/customer/mint`. */\nexport type MintCustomerSubscriptionRequest = {\n appId: string;\n customerAddress: string;\n /** v1 is XRPL-only — Hedera/Solana/Polkadot not supported server-side. */\n customerChain: 'xrpl';\n metadataCid: string;\n};\n\nexport type MintCustomerSubscriptionResponse = {\n success: true;\n nftSerial: number;\n txHash: string;\n};\n\n/**\n * Balance response\n */\nexport type BalanceResponse = {\n appId: string;\n subscriptionId: string;\n status: SubscriptionStatus;\n remainingBalance: string;\n expiresAt?: string;\n};\n\nimport { encodePathParam, type HttpClient } from '../http';\n\n/**\n * Subscription Sub-Client\n *\n * Manages application subscriptions including:\n * - Subscription requests with deposit wallets\n * - Deposit verification and NFT minting\n * - Subscription renewal\n * - Balance checking\n */\nexport class SubscriptionClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Request a new subscription.\n * Creates a deposit wallet and returns deposit instructions.\n */\n async request(request: SubscriptionRequest): Promise<SubscriptionResponse> {\n return this.http.post('/subscription/request', request);\n }\n\n /**\n * Get subscription status by app ID\n */\n async getStatus(appId: string): Promise<SubscriptionStatusResponse> {\n return this.http.get(`/subscription/status/${encodePathParam(appId)}`);\n }\n\n /**\n * Mint subscription NFT after deposit is confirmed\n */\n async mintNft(appId: string): Promise<MintNftResponse> {\n return this.http.post(`/subscription/mint/${encodePathParam(appId)}`, {});\n }\n\n /**\n * Renew subscription by extending period\n */\n async renew(request: SubscriptionRenewalRequest): Promise<SubscriptionRenewalResponse> {\n return this.http.post('/subscription/renew', request);\n }\n\n /**\n * Fetch available subscription tiers from the network.\n *\n * Use this instead of hard-coding tier names -- the validator returns the\n * canonical list of tiers together with pricing, limits, and features.\n *\n * @returns Array of {@link SubscriptionTierInfo} objects.\n *\n * @example\n * ```typescript\n * const tiers = await subscription.getTiers();\n * console.log(tiers.map(t => `${t.name}: $${t.priceUsd}/mo`));\n * ```\n */\n async getTiers(): Promise<SubscriptionTierInfo[]> {\n try {\n return await this.http.get<SubscriptionTierInfo[]>('/subscription/tiers');\n } catch (err) {\n // Backwards compatibility: older validator builds don't have the\n // dedicated /tiers endpoint yet. Fall back to /config, which\n // returns the same tiers under `availableTiers` (though in the\n // raw pricing-core shape rather than SubscriptionTierInfo).\n const isNotFound =\n err != null &&\n typeof err === 'object' &&\n 'statusCode' in err &&\n (err as { statusCode?: number }).statusCode === 404;\n if (!isNotFound) throw err;\n const cfg = await this.http.get<{\n availableTiers: Array<Record<string, unknown>>;\n }>('/subscription/config');\n // Normalize: pricing-core's SubscriptionTierConfig uses\n // { tier, name, monthlyPriceHsuite, allowedNetworks, ... } — map\n // to the SDK contract so callers see a stable shape across\n // server versions.\n return (cfg.availableTiers || []).map((raw) => {\n const tier = (raw.tier ?? raw.name) as SubscriptionTierName;\n const displayName = (raw.name ?? raw.displayName ?? String(tier)) as string;\n const monthlyPriceHsuite = Number(\n raw.monthlyPriceHsuite ?? raw.depositAmount ?? 0\n );\n const apiCallsPerDay = Number(raw.apiCallsPerDay ?? 0);\n const rawNetworks = (raw.allowedNetworks ?? raw.supportedNetworks ?? []) as string[];\n const supportedNetworks: ('hedera' | 'xrpl')[] = rawNetworks.some(\n (n) => n === 'mainnet'\n )\n ? ['hedera', 'xrpl']\n : ['hedera'];\n return {\n name: tier,\n displayName,\n description:\n (raw.description as string | undefined) ??\n `${displayName} tier`,\n priceUsd: Number(raw.priceUsd ?? 0),\n depositAmount: String(monthlyPriceHsuite),\n apiCallsPerDay: Number.isFinite(apiCallsPerDay)\n ? apiCallsPerDay\n : Number.MAX_SAFE_INTEGER,\n supportedNetworks,\n features: (raw.features as string[]) ?? [],\n };\n });\n }\n }\n\n /**\n * Get subscription configuration\n */\n async getConfig(): Promise<SubscriptionConfig> {\n return this.http.get('/subscription/config');\n }\n\n /**\n * List all subscriptions\n */\n async list(): Promise<SubscriptionListResponse> {\n return this.http.get('/subscription/list');\n }\n\n /**\n * List subscriptions by status\n */\n async listByStatus(status: SubscriptionStatus): Promise<SubscriptionListResponse> {\n return this.http.get(`/subscription/list/status/${encodePathParam(status)}`);\n }\n\n /**\n * Get subscription balance\n */\n async getBalance(appId: string): Promise<BalanceResponse> {\n return this.http.get(`/subscription/balance/${encodePathParam(appId)}`);\n }\n\n // ─── Tier-Change Endpoints ────────────────────────────────────────────────\n\n /**\n * Schedule a tier downgrade. The downgrade takes effect at the next\n * renewal — the deposit is NOT partially refunded mid-lock. Excess\n * collateral returns on eventual cancel.\n */\n async downgrade(\n request: DowngradeSubscriptionRequest,\n ): Promise<DowngradeSubscriptionResponse> {\n return this.http.post('/subscription/downgrade', request);\n }\n\n /**\n * Request a tier upgrade. The server records the upgrade and returns\n * top-up deposit instructions for the price delta. The new tier flips\n * only once the on-chain top-up is confirmed by the deposit monitor.\n */\n async upgrade(\n request: UpgradeSubscriptionRequest,\n ): Promise<UpgradeSubscriptionResponse> {\n return this.http.post('/subscription/upgrade', request);\n }\n\n /** Cancel a pending (not-yet-applied) tier change. */\n async cancelTierChange(\n request: CancelTierChangeRequest,\n ): Promise<CancelTierChangeResponse> {\n return this.http.post('/subscription/tier-change/cancel', request);\n }\n\n // ─── Internal / Usage / Billing ───────────────────────────────────────────\n\n /**\n * Check whether a developer wallet has any active subscription. Used by\n * smart-host's deploy gate via the cluster-internal API-key path; smart-app\n * callers should not rely on this endpoint (server-side it requires the\n * `INTERNAL_SERVICE_MESH_ROUTES` allowlist + an `X-API-Key` header).\n */\n async getActiveFor(walletAddress: string): Promise<ActiveSubscriptionForWalletResponse> {\n return this.http.get(\n `/subscription/active-for/${encodePathParam(walletAddress)}`,\n );\n }\n\n /** Today's consumption breakdown by category for an app. Owner-only. */\n async getUsage(appId: string): Promise<SubscriptionUsageSummaryResponse> {\n return this.http.get(`/subscription/usage/${encodePathParam(appId)}`);\n }\n\n /**\n * Current usage with overage info: usage percent, grace status,\n * upgrade suggestion, projected days until limit. Owner-only.\n */\n async getUsageStatus(appId: string): Promise<SubscriptionUsageStatusResponse> {\n return this.http.get(`/subscription/usage/status/${encodePathParam(appId)}`);\n }\n\n /**\n * Subscription balance deduction history. Pagination + ISO-8601 range\n * filtering supported. Owner-only.\n */\n async getBilling(\n appId: string,\n options?: GetBillingOptions,\n ): Promise<SubscriptionBillingResponse> {\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.append('limit', String(options.limit));\n if (options?.offset !== undefined) params.append('offset', String(options.offset));\n if (options?.from) params.append('from', options.from);\n if (options?.to) params.append('to', options.to);\n const qs = params.toString();\n return this.http.get(\n `/subscription/billing/${encodePathParam(appId)}${qs ? `?${qs}` : ''}`,\n );\n }\n\n /**\n * Mint a customer-subscription NFT on behalf of a smart-app.\n *\n * Distinct from `mintNft(appId)`, which mints the smart-app's own\n * developer-level subscription NFT. This endpoint mints a *customer*\n * NFT held by an end-user wallet — used by smart-host's\n * `XrplCustomerNftIssuerAdapter` when an app calls\n * `SubscriptionService.issueCustomerSubscription()` from the sandbox.\n *\n * v1 is XRPL-only (the `customerChain` field is a literal `'xrpl'`).\n * Internal-by-design — server-side gated by `X-API-Key`.\n */\n async mintCustomer(\n request: MintCustomerSubscriptionRequest,\n ): Promise<MintCustomerSubscriptionResponse> {\n return this.http.post('/subscription/customer/mint', request);\n }\n}\n","/**\n * Faucet Sub-Client\n *\n * Public bootstrap surface for dispensing testnet HSUITE (HST) to a recipient\n * address via a challenge/response signature flow.\n */\n\nimport { type HttpClient } from '../http';\n\n/**\n * Challenge envelope returned by `POST /faucet/hsuite/challenge`.\n *\n * The caller signs `message` with the key controlling `recipientAddress` and\n * echoes the `challengeId` back on the dispense call.\n */\nexport type FaucetChallenge = {\n /** Opaque challenge identifier; echo on the dispense call. */\n challengeId: string;\n /** The exact string to sign with the recipient's key. */\n message: string;\n /** Seconds until the challenge expires and must be re-requested. */\n expiresInSeconds: number;\n};\n\n/**\n * Request body for `POST /faucet/hsuite`.\n */\nexport type FaucetDispenseRequest = {\n /** Chain the recipient address lives on (e.g. `'xrpl'`). */\n chain: string;\n /** Address to receive the dispensed HST. */\n recipientAddress: string;\n /** `challengeId` from the prior {@link FaucetChallenge}. */\n challengeId: string;\n /** Signature over the challenge `message`, hex-encoded. */\n signature: string;\n /** Public key (hex) that produced `signature`; optional when derivable. */\n publicKey?: string;\n};\n\n/**\n * Successful dispense — HST was sent on-chain.\n */\nexport type FaucetDispensed = {\n status: 'dispensed';\n /** Amount of HST dispensed. */\n amount: string;\n /** On-chain transaction hash of the dispense. */\n txHash: string;\n /** Remaining HST the recipient may still claim today. */\n remainingDailyAllowance: string;\n};\n\n/**\n * The recipient must establish a trust line for the HST issued-currency\n * before it can receive any. Set the returned trust line, then re-dispense\n * with a fresh challenge.\n */\nexport type FaucetTrustlineRequired = {\n status: 'trustline_required';\n /** Trust line the recipient must set before re-dispensing. */\n trustLine: {\n /** Issued-currency code (e.g. `'HST'`). */\n currency: string;\n /** Issuer address of the currency. */\n issuer: string;\n /** Trust line limit to set. */\n limit: string;\n };\n};\n\n/**\n * The recipient hit the daily rate limit; retry after the given delay.\n */\nexport type FaucetRateLimited = {\n status: 'rate_limited';\n /** Seconds to wait before the next dispense attempt is allowed. */\n retryAfterSeconds: number;\n};\n\n/**\n * Discriminated union over `status` returned by `POST /faucet/hsuite`.\n */\nexport type FaucetDispenseResult =\n | FaucetDispensed\n | FaucetTrustlineRequired\n | FaucetRateLimited;\n\n/**\n * Response shape for `GET /faucet/hsuite/status`.\n */\nexport type FaucetStatusResponse = {\n /** HST already dispensed to the recipient today. */\n dispensedToday: string;\n /** Forward-compatible: server may add allowance/reset fields. */\n [key: string]: unknown;\n};\n\n/**\n * Faucet Sub-Client\n *\n * Dispenses testnet HSUITE (HST) through a Web3-style challenge/response.\n * These are `@Public` bootstrap routes — no bearer token is required (a token\n * on the shared HTTP client is harmless).\n *\n * Lifecycle:\n * 1. {@link FaucetClient.requestChallenge} — get a {@link FaucetChallenge}.\n * 2. Sign `challenge.message` with the key controlling `recipientAddress`.\n * 3. {@link FaucetClient.dispense} — submit `{challengeId, signature, publicKey?}`.\n * 4. If the result is `status: 'trustline_required'`, the signer MUST set the\n * returned `trustLine` on `recipientAddress`, then request a NEW challenge\n * and re-dispense (the consumed challenge can't be reused).\n * 5. If the result is `status: 'rate_limited'`, wait `retryAfterSeconds` and retry.\n * 6. On `status: 'dispensed'`, the HST `txHash` confirms the on-chain transfer.\n *\n * @example\n * ```typescript\n * const challenge = await faucet.requestChallenge('xrpl', wallet.address);\n * const signature = await sign(challenge.message);\n * let result = await faucet.dispense({\n * chain: 'xrpl',\n * recipientAddress: wallet.address,\n * challengeId: challenge.challengeId,\n * signature,\n * publicKey: wallet.publicKey,\n * });\n * if (result.status === 'trustline_required') {\n * await setTrustLine(result.trustLine); // set on recipientAddress, then retry\n * }\n * ```\n */\nexport class FaucetClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Request a signing challenge for a recipient address. The returned\n * `message` must be signed by the key controlling `recipientAddress`.\n */\n async requestChallenge(\n chain: string,\n recipientAddress: string,\n ): Promise<FaucetChallenge> {\n return this.http.post('/faucet/hsuite/challenge', { chain, recipientAddress });\n }\n\n /**\n * Submit a signed challenge to dispense HST. The result is a discriminated\n * union on `status` — branch on `'dispensed' | 'trustline_required' |\n * 'rate_limited'`. On `'trustline_required'`, set the returned trust line on\n * the recipient and re-dispense with a fresh challenge.\n */\n async dispense(req: FaucetDispenseRequest): Promise<FaucetDispenseResult> {\n return this.http.post('/faucet/hsuite', req);\n }\n\n /**\n * Get today's dispense status for a recipient (e.g. amount already\n * dispensed today).\n */\n async getStatus(\n chain: string,\n recipientAddress: string,\n ): Promise<FaucetStatusResponse> {\n const params = new URLSearchParams();\n params.append('chain', chain);\n params.append('recipientAddress', recipientAddress);\n return this.http.get(`/faucet/hsuite/status?${params.toString()}`);\n }\n}\n","/**\n * TSS (Threshold Signature Scheme) Sub-Client\n *\n * Provides access to TSS/MPC operations for multi-sig entity management.\n * All operations are chain-agnostic — pass `chain` as a parameter.\n */\nimport type {\n EntityCreationOptions,\n EntityCreationResponse,\n ReshareRequest,\n ReshareResponse,\n EntityDetails,\n MPCSigningRequest,\n MPCSigningResponse,\n ValidatorListResponse,\n TSSStats,\n EntityListResponse,\n TSSHealthResponse,\n CeremonyListResponse,\n MultiSigStatusResponse,\n TssJobAccepted,\n TssJobResponse,\n SignForAppRequest,\n SignForAppResponse,\n} from './types';\nimport { encodePathParam, type HttpClient } from '../http';\n\nexport * from './types';\n\n/**\n * TSS Sub-Client\n *\n * Manages Threshold Signature Scheme operations including:\n * - Multi-sig entity creation (chain-agnostic)\n * - Key resharing for membership changes\n * - MPC transaction signing for any supported chain\n * - DKG ceremony monitoring\n *\n * @example\n * ```typescript\n * // Sign a transaction on any chain\n * const result = await client.tss.signMPC({\n * chain: 'hedera',\n * entityId: 'entity-123',\n * transactionBytes: '0x...',\n * });\n * ```\n */\nexport class TSSClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Create a multi-sig entity via a synchronous DKG ceremony.\n *\n * @param options Entity-creation parameters (chain, threshold, participants).\n * @returns The created entity's identity (ids + group public keys).\n */\n async createEntity(options: EntityCreationOptions): Promise<EntityCreationResponse> {\n return this.http.post('/tss/entity/create', options);\n }\n\n /**\n * Reshare keys when cluster membership changes. Redistributes secret shares\n * WITHOUT changing public keys.\n *\n * @param request The new membership / threshold to reshare to.\n * @returns The reshare outcome.\n */\n async reshareCluster(request: ReshareRequest): Promise<ReshareResponse> {\n return this.http.post('/tss/cluster/reshare', request);\n }\n\n /**\n * Get entity details by id.\n *\n * @param entityId The entity id to look up.\n * @returns The entity's details.\n */\n async getEntity(entityId: string): Promise<EntityDetails> {\n return this.http.get(`/tss/entity/${encodePathParam(entityId)}`);\n }\n\n /**\n * Sign a transaction using MPC.\n *\n * Routes to `POST /api/v3/tss/hedera/sign-mpc`. Only `'hedera'` is wired\n * server-side; other chain signing paths run via their own controllers (XRPL\n * multisig, Polkadot MPC) and are not exposed through this sub-client. The\n * `chain` field is carried into the request body so the validator can log +\n * route, but any non-`'hedera'` value will 404.\n *\n * @param request The MPC signing request; `chain` is forced to `'hedera'`.\n * @returns The MPC signing result.\n */\n async signMPC(\n request: MPCSigningRequest & { chain?: 'hedera' },\n ): Promise<MPCSigningResponse> {\n const chain = 'hedera' as const;\n return this.http.post(`/tss/${chain}/sign-mpc`, { ...request, chain });\n }\n\n /**\n * Get known validators and their public keys.\n *\n * @returns The validator list with public keys.\n */\n async getValidators(): Promise<ValidatorListResponse> {\n return this.http.get('/tss/validators');\n }\n\n /**\n * Force announcement of this node's public key.\n *\n * @returns Whether the announcement was accepted, plus a status message.\n */\n async announceKey(): Promise<{ success: boolean; message: string }> {\n return this.http.post('/tss/announce', {});\n }\n\n /**\n * Get TSS statistics.\n *\n * @returns Aggregate TSS statistics.\n */\n async getStats(): Promise<TSSStats> {\n return this.http.get('/tss/stats');\n }\n\n /**\n * List all TSS entities.\n *\n * @returns The full entity list.\n */\n async listEntities(): Promise<EntityListResponse> {\n return this.http.get('/tss/entities');\n }\n\n /**\n * TSS health check.\n *\n * @returns The TSS subsystem health report.\n */\n async getHealth(): Promise<TSSHealthResponse> {\n return this.http.get('/tss/health');\n }\n\n /**\n * List DKG ceremonies and their statistics.\n *\n * @returns The ceremony list.\n */\n async listCeremonies(): Promise<CeremonyListResponse> {\n return this.http.get('/tss/multisig/ceremonies');\n }\n\n /**\n * Get multi-sig transaction status by transaction id.\n *\n * @param txId The multi-sig transaction id.\n * @returns The current status of that transaction.\n */\n async getMultiSigStatus(txId: string): Promise<MultiSigStatusResponse> {\n return this.http.get(`/tss/multisig/transactions/${encodePathParam(txId)}`);\n }\n\n /**\n * Async-job variant of {@link createEntity}.\n *\n * Server returns 202 + `{ jobId, statusUrl, status: 'pending' }` immediately;\n * the DKG ceremony runs in the background. Poll {@link getJob} until the\n * status reaches `'success'` or `'failed'`.\n *\n * @param options Entity-creation parameters.\n * @returns A job descriptor (`jobId`, `statusUrl`, initial status).\n */\n async createEntityAsync(options: EntityCreationOptions): Promise<TssJobAccepted> {\n return this.http.post('/tss/entity/create/async', options);\n }\n\n /**\n * Async-job variant of {@link reshareCluster}. Returns 202 + a polling\n * descriptor; resharing runs in the background.\n *\n * @param request The new membership / threshold to reshare to.\n * @returns A job descriptor to poll via {@link getJob}.\n */\n async reshareClusterAsync(request: ReshareRequest): Promise<TssJobAccepted> {\n return this.http.post('/tss/cluster/reshare/async', request);\n }\n\n /**\n * Poll the status of an async TSS-ceremony job kicked off via\n * {@link createEntityAsync} or {@link reshareClusterAsync}.\n *\n * @param jobId The job id returned by the async kickoff call.\n * @returns The job's current status (and result once terminal).\n */\n async getJob(jobId: string): Promise<TssJobResponse> {\n return this.http.get(`/tss/jobs/${encodePathParam(jobId)}`);\n }\n\n /**\n * Sign a hex payload as smart-app entity `appId` via the cluster's TSS\n * quorum. Used by smart-deployer for per-entity BLS12-381 signatures over\n * deployment-context payloads (trustless APP_TOKEN replacement).\n *\n * Payload constraints (enforced server-side):\n * - even-length lowercase hex\n * - ≥32 bytes, ≤8KB\n *\n * @param appId The smart-app entity id to sign as.\n * @param request The hex payload to sign.\n * @returns The aggregate signature over the payload.\n */\n async signForApp(appId: string, request: SignForAppRequest): Promise<SignForAppResponse> {\n return this.http.post(`/tss/entity/${encodePathParam(appId)}/sign`, request);\n }\n}\n","/**\n * IPFS Sub-Client\n *\n * Provides access to IPFS operations for decentralized file storage.\n *\n * @example\n * ```typescript\n * // Upload a file\n * const result = await client.ipfs.upload(fileBuffer, 'document.pdf');\n *\n * // Pin content\n * await client.ipfs.pin(result.cid);\n *\n * // Get file\n * const file = await client.ipfs.getFile(result.cid);\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n IpfsUploadResult,\n IpfsPinResult,\n IpfsFileMetadata,\n IpfsPinListResponse,\n IpfsStatusResponse,\n IpfsStorageUsageResponse,\n} from './types';\n\nexport * from './types';\n\n/**\n * IPFS Sub-Client\n *\n * Manages IPFS operations including:\n * - File upload and retrieval\n * - Content pinning and unpinning\n * - Metadata queries\n * - Storage usage monitoring\n */\nexport class IPFSClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Upload a file to IPFS\n *\n * @param file - File data as Blob or Buffer\n * @param filename - Name of the file\n * @param metadata - Optional metadata key-value pairs\n * @returns Upload result with CID\n */\n async upload(\n file: Blob | Buffer,\n filename: string,\n metadata?: Record<string, string>\n ): Promise<IpfsUploadResult> {\n return this.http.upload('/ipfs/upload', file, filename, metadata);\n }\n\n /**\n * Pin content by CID to ensure it persists\n */\n async pin(cid: string): Promise<IpfsPinResult> {\n return this.http.post(`/ipfs/pin/${encodePathParam(cid)}`, {});\n }\n\n /**\n * Unpin content by CID\n */\n async unpin(cid: string): Promise<IpfsPinResult> {\n return this.http.delete(`/ipfs/unpin/${encodePathParam(cid)}`);\n }\n\n /**\n * Get a file by CID\n */\n async getFile(cid: string): Promise<any> {\n return this.http.get(`/ipfs/file/${encodePathParam(cid)}`);\n }\n\n /**\n * Get raw content by CID\n */\n async getContent(cid: string): Promise<any> {\n return this.http.get(`/ipfs/${encodePathParam(cid)}`);\n }\n\n /**\n * Get file metadata by CID\n */\n async getMetadata(cid: string): Promise<IpfsFileMetadata> {\n return this.http.get(`/ipfs/metadata/${encodePathParam(cid)}`);\n }\n\n /**\n * List all pinned content\n */\n async listPins(): Promise<IpfsPinListResponse> {\n return this.http.get('/ipfs/pins');\n }\n\n /**\n * Get IPFS node status\n */\n async getStatus(): Promise<IpfsStatusResponse> {\n return this.http.get('/ipfs/status');\n }\n\n /**\n * Get storage usage information\n */\n async getStorageUsage(): Promise<IpfsStorageUsageResponse> {\n return this.http.get('/ipfs/storage');\n }\n}\n","/**\n * Hedera TSS Sub-Client\n *\n * Server-side controller: the server\n * (route prefix `/api/v3/hedera/tss`).\n *\n * These endpoints are **TSS-signed immediate-execute** — the cluster signs AND\n * submits in one call, distinct from:\n * - `client.hedera.*` (prepare-only, the caller signs + submits)\n * - `client.tss.signMPC(...)` (signs an externally-built tx, doesn't submit)\n *\n * Mounted on the main client as `client.hedera.tss`.\n *\n * Wire format: every request goes to `/api/v3/hedera/tss/<op>`. The injected\n * `HttpClient` must be rooted at `${baseUrl}/api/v3` (the same one\n * `TSSClient`/`SubscriptionClient`/etc. use).\n */\n\nimport type { HttpClient } from '../http';\n\n/** Sovereignty security mode for TSS-controlled Hedera accounts. */\nexport type HederaTssSecurityMode = 'full' | 'partial';\n\n/** Common validator-binding fields required to anchor an op to on-chain rules. */\ntype ValidatorBoundRequest = {\n /** TSS entity id (already created via `client.tss.createEntity*`). */\n entityId: string;\n /** HCS timestamp of the rules message (`SECONDS.NANOS`). */\n validatorTimestamp: string;\n /** HCS topic that holds the rules message. */\n validatorTopicId: string;\n /** Payer for the on-chain fee. Validator operator pays when omitted. */\n payerAccountId?: string;\n};\n\n/** POST `/api/v3/hedera/tss/create-account` request body. */\nexport type CreateHederaAccountRequest = ValidatorBoundRequest & {\n /** Initial HBAR balance for the new account. */\n initialBalance?: number;\n /** Defaults to `full` server-side. `partial` requires `appOwnerPublicKey`. */\n securityMode?: HederaTssSecurityMode;\n /** Required when `securityMode === 'partial'`. */\n appOwnerPublicKey?: string;\n};\n\n/** POST `/api/v3/hedera/tss/create-account` response body. */\nexport type CreateHederaAccountResponse = {\n success: boolean;\n accountId: string;\n transactionId: string;\n hashscanUrl: string;\n securityMode: HederaTssSecurityMode;\n validatorBinding: {\n timestamp: string;\n topicId: string;\n memo: string;\n rulesUrl: string;\n };\n};\n\n/** POST `/api/v3/hedera/tss/update-memo` request body. */\nexport type UpdateHederaMemoRequest = {\n entityId: string;\n accountId: string;\n newMemo: string;\n payerAccountId?: string;\n};\n\n/** POST `/api/v3/hedera/tss/update-memo` response body. */\nexport type UpdateHederaMemoResponse = {\n success: boolean;\n transactionId: string;\n hashscanUrl: string;\n status: string;\n};\n\n/** POST `/api/v3/hedera/tss/create-topic` request body. */\nexport type CreateHederaTopicRequest = ValidatorBoundRequest;\n\n/** POST `/api/v3/hedera/tss/create-topic` response body. */\nexport type CreateHederaTopicResponse = {\n success: boolean;\n topicId: string;\n transactionId: string;\n hashscanUrl: string;\n validatorBinding: {\n timestamp: string;\n topicId: string;\n memo: string;\n rulesUrl: string;\n };\n};\n\n/** POST `/api/v3/hedera/tss/submit-message` request body. */\nexport type SubmitHederaMessageRequest = {\n entityId: string;\n topicId: string;\n message: string;\n payerAccountId?: string;\n};\n\n/** POST `/api/v3/hedera/tss/submit-message` response body. */\nexport type SubmitHederaMessageResponse = {\n success: boolean;\n sequenceNumber: string | number;\n transactionId: string;\n hashscanUrl: string;\n};\n\n/** POST `/api/v3/hedera/tss/create-token` request body. */\nexport type CreateHederaTokenRequest = ValidatorBoundRequest & {\n name: string;\n symbol: string;\n decimals: number;\n initialSupply: number;\n maxSupply?: number;\n treasuryAccountId: string;\n enableAdminKey?: boolean;\n enableSupplyKey?: boolean;\n enableFreezeKey?: boolean;\n enablePauseKey?: boolean;\n enableWipeKey?: boolean;\n};\n\n/** POST `/api/v3/hedera/tss/create-token` response body. */\nexport type CreateHederaTokenResponse = {\n success: boolean;\n tokenId: string;\n transactionId: string;\n hashscanUrl: string;\n tokenUrl: string;\n keys: Record<string, string>;\n validatorBinding: {\n timestamp: string;\n topicId: string;\n memo: string;\n rulesUrl: string;\n };\n};\n\n/**\n * POST `/api/v3/hedera/tss/mint-token` request body.\n *\n * `validatorTopicId` is OPTIONAL here (unlike the create-* ops) — when\n * supplied + the validator has TokenValidationService wired, the cluster\n * enforces the rules-message mint policy. When omitted, mint runs unchecked.\n */\nexport type MintHederaTokenRequest = {\n entityId: string;\n tokenId: string;\n amount: number;\n decimals?: number;\n validatorTopicId?: string;\n payerAccountId?: string;\n};\n\n/** POST `/api/v3/hedera/tss/mint-token` response body. */\nexport type MintHederaTokenResponse = {\n success: boolean;\n transactionId: string;\n hashscanUrl: string;\n newTotalSupply: string;\n mintedAmount: string | number;\n tokenId: string;\n decimals: number;\n};\n\n/**\n * Hedera TSS sub-client — immediate-execute paths where the cluster's TSS\n * quorum signs AND submits the transaction in one HTTP call.\n *\n * Distinct from `client.hedera` (prepare-only) and from\n * `client.tss.signMPC(...)` (sign-only, no submission).\n *\n * @example Mint an HTS token created by the TSS cluster\n * ```ts\n * const minted = await client.hedera.tss.mintToken({\n * entityId: 'tss-entity-1',\n * validatorTimestamp: '1700000000.000000001',\n * validatorTopicId: '0.0.98765',\n * tokenId: '0.0.123456',\n * amount: '1000',\n * });\n * console.log(`Minted tx ${minted.transactionId}, new supply ${minted.newTotalSupply}`);\n * ```\n */\nexport class HederaTssClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Create a Hedera account whose keys are controlled by the TSS cluster. */\n async createAccount(request: CreateHederaAccountRequest): Promise<CreateHederaAccountResponse> {\n return this.http.post('/hedera/tss/create-account', request);\n }\n\n /** Update an existing account's memo via TSS-signed transaction. */\n async updateMemo(request: UpdateHederaMemoRequest): Promise<UpdateHederaMemoResponse> {\n return this.http.post('/hedera/tss/update-memo', request);\n }\n\n /** Create a TSS-controlled HCS topic. */\n async createTopic(request: CreateHederaTopicRequest): Promise<CreateHederaTopicResponse> {\n return this.http.post('/hedera/tss/create-topic', request);\n }\n\n /** Submit a message to an HCS topic via TSS signing. */\n async submitMessage(request: SubmitHederaMessageRequest): Promise<SubmitHederaMessageResponse> {\n return this.http.post('/hedera/tss/submit-message', request);\n }\n\n /** Create an HTS token with TSS-controlled admin/supply/freeze/pause/wipe keys. */\n async createToken(request: CreateHederaTokenRequest): Promise<CreateHederaTokenResponse> {\n return this.http.post('/hedera/tss/create-token', request);\n }\n\n /** Mint tokens via TSS signing — optionally rule-validated via `validatorTopicId`. */\n async mintToken(request: MintHederaTokenRequest): Promise<MintHederaTokenResponse> {\n return this.http.post('/hedera/tss/mint-token', request);\n }\n}\n","/**\n * Hedera-Specific Transaction Preparation Sub-Client\n *\n * Hedera-only escape hatches that have no multi-chain analog.\n *\n * Available via: `client.hedera.*`\n *\n * Operations exposed here:\n * - HCS topic create + topic message (Hedera Consensus Service — no analog on\n * other chains. Most app developers will not need these.)\n * - HTS compliance enable/disable (KYC grant/revoke — server hard-dispatches\n * to the Hedera capability; even though the request schema accepts other\n * chains, the handler always treats it as Hedera).\n * - HTS wipe (force-remove tokens from an account — Hedera-only by schema).\n *\n * For multi-chain operations (createToken, transfer, mint, burn, pause,\n * restrict, etc.), use the chain-agnostic top-level `client.transactions.*`\n * or top-level `client.*` methods.\n */\n\nimport type { HttpClient } from '../../http';\nimport type { PreparedTransaction, SecurityMode } from '../types';\nimport { HederaTssClient } from '../../hedera-tss';\n\n/** Topic creation preparation request (Hedera HCS only). */\nexport type PrepareTopicCreateRequest = {\n payerAccountId?: string;\n memo?: string;\n adminKeyRequired?: boolean;\n submitKeyRequired?: boolean;\n entityId: string;\n};\n\n/** Topic message preparation request (Hedera HCS only). */\nexport type PrepareTopicMessageRequest = {\n payerAccountId?: string;\n topicId: string;\n message: string | Record<string, unknown>;\n entityId: string;\n};\n\n/** Token compliance-enable (grant KYC) — Hedera-only by handler dispatch. */\nexport type PrepareTokenComplianceEnableRequest = {\n payerAccountId?: string;\n tokenId: string;\n accountId: string;\n entityId: string;\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n memo?: string;\n};\n\n/** Token compliance-disable (revoke KYC) — Hedera-only by handler dispatch. */\nexport type PrepareTokenComplianceDisableRequest = PrepareTokenComplianceEnableRequest;\n\n/** Token wipe — Hedera-only (literal schema). Force-removes tokens from an account. */\nexport type PrepareTokenWipeRequest = {\n payerAccountId?: string;\n tokenId: string;\n accountId: string;\n amount: string;\n entityId: string;\n memo?: string;\n};\n\n/**\n * Hedera-specific transaction preparation sub-client.\n *\n * Wire format: every request body is augmented with `chain: 'hedera'` before\n * POSTing — callers never write the chain literal themselves.\n *\n * Nested sub-client:\n * - `client.hedera.tss` — TSS-signed immediate-execute paths\n * (HCS topic + HTS token, account create + memo update, all submitted by\n * the cluster in one round-trip). Routes under `/api/v3/hedera/tss/*` —\n * distinct base path from the prepare-only routes on this class.\n */\nexport class HederaTransactionsClient {\n /**\n * TSS-signed Hedera operations (`/api/v3/hedera/tss/*`).\n *\n * Distinct from the prepare-only routes on this class:\n * - `client.hedera.prepareTopicCreate(...)` returns bytes for local sign+submit.\n * - `client.hedera.tss.createTopic(...)` makes the cluster sign+submit in one call.\n *\n * `tssHttp` is the validator's `/api/v3`-rooted HTTP client (different from\n * the `/api/v3/transactions` one this class uses for prepare paths). Both\n * clients are required — the previous single-arg fallback to `http` was\n * unreachable through `SmartEngineClient` (the only call site always\n * passes both).\n */\n public readonly tss: HederaTssClient;\n\n constructor(private readonly http: HttpClient, tssHttp: HttpClient) {\n this.tss = new HederaTssClient(tssHttp);\n }\n\n /** Prepare an HCS topic creation transaction. */\n async prepareTopicCreate(request: PrepareTopicCreateRequest): Promise<PreparedTransaction> {\n return this.http.post('/topic/create/prepare', { ...request, chain: 'hedera' });\n }\n\n /** Prepare an HCS topic message submission. */\n async prepareTopicMessage(request: PrepareTopicMessageRequest): Promise<PreparedTransaction> {\n return this.http.post('/topic/message/prepare', { ...request, chain: 'hedera' });\n }\n\n /** Prepare a token compliance-enable (KYC grant) transaction. */\n async prepareTokenComplianceEnable(\n request: PrepareTokenComplianceEnableRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/compliance/enable/prepare', { ...request, chain: 'hedera' });\n }\n\n /** Prepare a token compliance-disable (KYC revoke) transaction. */\n async prepareTokenComplianceDisable(\n request: PrepareTokenComplianceDisableRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/compliance/disable/prepare', { ...request, chain: 'hedera' });\n }\n\n /** Prepare a token wipe transaction (force-remove tokens from an account). */\n async prepareTokenWipe(request: PrepareTokenWipeRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/wipe/prepare', { ...request, chain: 'hedera' });\n }\n}\n","/**\n * XRPL-Specific Transaction Preparation Sub-Client\n *\n * XRPL-only escape hatches that have no multi-chain analog.\n *\n * Available via: `client.xrpl.*`\n *\n * Operations exposed here:\n * - Trust line setup (XRPL TrustSet — XRPL's account-to-issuer authorization\n * for an issued currency. The chain-agnostic analog `associateToken` does\n * not yet exist on the validator; once added, callers should prefer that.)\n *\n * For multi-chain operations (transfer, mint, burn, NFT ops), use the\n * chain-agnostic top-level `client.transactions.*` or top-level `client.*`\n * methods with `chain: 'xrpl'`.\n */\n\nimport type { HttpClient } from '../../http';\nimport type { PreparedTransaction, SecurityMode } from '../types';\n\n/** Trust line preparation request (XRPL TrustSet). */\nexport type PrepareTrustLineRequest = {\n /**\n * XRPL account authorising the trust line. Falls back to `payerAccountId`\n * and ultimately the authenticated session wallet.\n */\n accountAddress?: string;\n payerAccountId?: string;\n /** ISO-4217-like currency code (e.g. \"USD\") or 40-char hex. */\n currency: string;\n /** Classic-address of the issuer. */\n issuerAddress: string;\n /** Decimal-string trust-line limit. Defaults to validator policy when omitted. */\n limit?: string;\n entityId: string;\n};\n\n/**\n * XRPL account-setup preparation request (SignerList + DisableMaster).\n *\n * Builds the ordered transaction set required to flip an XRPL account into\n * sovereignty mode: install the validator-derived SignerList, then disable\n * the master key. Two-step response — caller signs + submits in order.\n *\n * Server schema (the server):\n * - `accountAddress` 25–34 chars (XRPL classic address).\n * - `validatorTimestamp` + `validatorTopicId` required for rule anchoring.\n * - `securityMode='partial'` requires `appOwnerPublicKey` + `entityId`.\n */\nexport type PrepareXrplAccountSetupRequest = {\n payerAccountId?: string;\n /** XRPL classic address whose authorization we're configuring. */\n accountAddress: string;\n validatorTimestamp: string;\n validatorTopicId: string;\n /** Sovereignty mode — `partial` requires `appOwnerPublicKey`. */\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n /** Required in `partial`/`full` modes to identify the TSS entity. */\n entityId?: string;\n};\n\n/**\n * Sovereignty descriptor attached to a prepared XRPL account-setup response.\n * Field shape mirrors the server's `PreparedTransactionSovereignty`.\n */\nexport type PreparedTransactionSovereignty = {\n mode: SecurityMode | 'none';\n appOwnerPublicKey?: string;\n signerListEntries?: Array<{ account: string; weight: number }>;\n signerQuorum?: number;\n};\n\n/**\n * Two-step response from `POST /xrpl/account-setup/prepare`. The caller must\n * sign + submit each step in order — step 0 installs the SignerList, step 1\n * disables the master key.\n */\nexport type XrplAccountSetupSteps = {\n steps: Array<{\n step: number;\n description?: string;\n transactionBytes: string;\n transactionId?: string;\n [k: string]: unknown;\n }>;\n sovereignty: PreparedTransactionSovereignty;\n};\n\n/**\n * XRPL-specific transaction preparation sub-client.\n *\n * Wire format: every request body is augmented with `chain: 'xrpl'` before\n * POSTing — callers never write the chain literal themselves.\n */\nexport class XrplTransactionsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Prepare an XRPL TrustSet (trust line) transaction. */\n async prepareTrustLine(request: PrepareTrustLineRequest): Promise<PreparedTransaction> {\n return this.http.post('/trustline/prepare', { ...request, chain: 'xrpl' });\n }\n\n /**\n * Prepare the ordered XRPL account-setup transaction set\n * (SignerListSet + AccountSet DisableMaster) for sovereignty mode.\n *\n * Returns `{ steps, sovereignty }`. Caller signs + submits each step in\n * order; the master key remains usable until the final AccountSet lands.\n */\n async prepareAccountSetup(\n request: PrepareXrplAccountSetupRequest,\n ): Promise<XrplAccountSetupSteps> {\n return this.http.post('/xrpl/account-setup/prepare', { ...request, chain: 'xrpl' });\n }\n}\n","/**\n * Solana-Specific Transaction Preparation Sub-Client\n *\n * Solana-only escape hatches that have no multi-chain analog.\n *\n * Available via: `client.solana.*`\n *\n * Operations exposed here:\n * - Token close-account (SPL Token CloseAccount — closes an empty ATA and\n * recovers the SOL rent. No analog on Hedera/XRPL/Polkadot/Cardano.)\n *\n * For multi-chain operations (createToken, transfer, mint, burn, pause,\n * restrict, NFT ops), use the chain-agnostic top-level `client.transactions.*`\n * or top-level `client.*` methods with `chain: 'solana'`.\n */\n\nimport type { HttpClient } from '../../http';\nimport type { PreparedTransaction, SecurityMode } from '../types';\n\n/** Token close-account preparation request (Solana SPL Token). */\nexport type PrepareTokenCloseAccountRequest = {\n payerAccountId?: string;\n /** ATA address to close. Must have zero token balance. */\n account: string;\n /** Recipient of recovered SOL rent lamports. */\n destination: string;\n /** ATA owner — required when not using TSS multisig; vault PDA used for partial/full. */\n owner?: string;\n entityId?: string;\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n memo?: string;\n};\n\n/**\n * Solana-specific transaction preparation sub-client.\n *\n * Wire format: every request body is augmented with `chain: 'solana'` before\n * POSTing — callers never write the chain literal themselves.\n */\nexport class SolanaTransactionsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Prepare an SPL Token close-account transaction. */\n async prepareTokenCloseAccount(\n request: PrepareTokenCloseAccountRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/close-account/prepare', { ...request, chain: 'solana' });\n }\n}\n","/**\n * Polkadot-Specific Transaction Preparation Sub-Client\n *\n * Polkadot Asset Hub-only escape hatches that have no multi-chain analog.\n *\n * Available via: `client.polkadot.*`\n *\n * Operations exposed here:\n * - assets.setTeam — transfer issuer/admin/freezer roles of a pallet-assets\n * asset to new SS58 addresses. No analog on Hedera/XRPL.\n * - assets.setMetadata — update on-chain name/symbol/decimals of a pallet-\n * assets asset post-creation.\n *\n * For multi-chain operations (createToken, transfer, mint, burn, pause,\n * restrict, NFT ops), use the chain-agnostic top-level `client.transactions.*`\n * or top-level `client.*` methods with `chain: 'polkadot'`.\n */\n\nimport type { HttpClient } from '../../http';\nimport type { PreparedTransaction, SecurityMode } from '../types';\n\n/** Asset setTeam preparation request (Polkadot Asset Hub). */\nexport type PrepareAssetSetTeamRequest = {\n payerAccountId?: string;\n /** pallet-assets asset id (u32). */\n assetId: number;\n /** SS58 address — new issuer. */\n issuer: string;\n /** SS58 address — new admin. */\n admin: string;\n /** SS58 address — new freezer. */\n freezer: string;\n entityId?: string;\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n ss58Format?: number;\n};\n\n/** Asset setMetadata preparation request (Polkadot Asset Hub). */\nexport type PrepareAssetSetMetadataRequest = {\n payerAccountId?: string;\n /** pallet-assets asset id (u32). */\n assetId: number;\n /** Human-readable asset name (max 64 chars). */\n name: string;\n /** Asset symbol (max 16 chars). */\n symbol: string;\n /** Decimal precision (0..18). */\n decimals: number;\n entityId?: string;\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n ss58Format?: number;\n};\n\n/**\n * Polkadot-specific transaction preparation sub-client.\n *\n * Wire format: every request body is augmented with `chain: 'polkadot'`\n * before POSTing — callers never write the chain literal themselves.\n */\nexport class PolkadotTransactionsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Prepare a pallet-assets.setTeam transaction. */\n async prepareAssetSetTeam(request: PrepareAssetSetTeamRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/set-team/prepare', { ...request, chain: 'polkadot' });\n }\n\n /** Prepare a pallet-assets.setMetadata transaction. */\n async prepareAssetSetMetadata(\n request: PrepareAssetSetMetadataRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/set-metadata/prepare', { ...request, chain: 'polkadot' });\n }\n}\n","/**\n * Transactions Sub-Client — Chain-Agnostic\n *\n * Provides transaction preparation for the sovereignty model:\n * transactions are prepared on the validator but signed locally by the user.\n *\n * **Every method here accepts the `ChainType` union — never a chain literal.**\n * Chain-specific escape hatches (Hedera HCS topics, XRPL trust lines, Solana\n * close-account, Polkadot setTeam/setMetadata) are exposed via namespaced\n * sub-clients on the main client: `client.hedera`, `client.xrpl`,\n * `client.solana`, `client.polkadot`.\n *\n * @example\n * ```typescript\n * // Multi-chain transfer\n * const prepared = await client.transactions.prepareTransfer({\n * chain: 'xrpl',\n * from: 'rXXX',\n * to: 'rYYY',\n * amount: '100',\n * });\n *\n * // Multi-chain token mint\n * const prepared = await client.transactions.prepareTokenMint({\n * chain: 'solana',\n * tokenId: '<mint-pubkey>',\n * amount: '1000',\n * });\n * ```\n */\n\nimport type { HttpClient } from '../http';\nimport type {\n PreparedTransaction,\n PrepareTransferRequest,\n PrepareNftMintRequest,\n PrepareNftBurnRequest,\n PrepareNftTransferRequest,\n PrepareNftCollectionCreateRequest,\n PrepareNftSetMetadataRequest,\n PrepareNftCollectionSetMetadataRequest,\n PrepareNftCollectionLockRequest,\n PrepareTokenCreateRequest,\n PrepareTokenMintRequest,\n PrepareTokenBurnRequest,\n PrepareTokenAssociateRequest,\n PrepareTokenPauseRequest,\n PrepareTokenUnpauseRequest,\n PrepareTokenRestrictRequest,\n PrepareTokenUnrestrictRequest,\n TransactionInfoResponse,\n} from './types';\n\nexport * from './types';\nexport * from './chains';\n\n/**\n * Chain-agnostic transactions sub-client.\n *\n * NOTE: This client targets `/api/v3/transactions`.\n * The injected `HttpClient` must be configured with that base URL.\n */\nexport class TransactionsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Get transaction preparation service info. */\n async getInfo(): Promise<TransactionInfoResponse> {\n return this.http.get('/info');\n }\n\n /** Prepare a transfer transaction (any supported chain). */\n async prepareTransfer(request: PrepareTransferRequest): Promise<PreparedTransaction> {\n return this.http.post('/transfer/prepare', request);\n }\n\n /** Prepare an NFT mint transaction (any supported chain). */\n async prepareNftMint(request: PrepareNftMintRequest): Promise<PreparedTransaction> {\n return this.http.post('/nft/mint/prepare', request);\n }\n\n /** Prepare an NFT burn transaction (any supported chain). */\n async prepareNftBurn(request: PrepareNftBurnRequest): Promise<PreparedTransaction> {\n return this.http.post('/nft/burn/prepare', request);\n }\n\n /** Prepare an NFT transfer transaction (any supported chain). */\n async prepareNftTransfer(request: PrepareNftTransferRequest): Promise<PreparedTransaction> {\n return this.http.post('/nft/transfer/prepare', request);\n }\n\n /**\n * Prepare an NFT collection-create transaction (Polkadot pallet-nfts /\n * Solana Metaplex master-edition).\n */\n async prepareNftCollectionCreate(\n request: PrepareNftCollectionCreateRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/nft/collection/create/prepare', request);\n }\n\n /** Prepare an NFT item set-metadata transaction (Polkadot pallet-nfts/uniques). */\n async prepareNftSetMetadata(\n request: PrepareNftSetMetadataRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/nft/set-metadata/prepare', request);\n }\n\n /** Prepare an NFT collection set-metadata transaction (Polkadot pallet-nfts/uniques). */\n async prepareNftCollectionSetMetadata(\n request: PrepareNftCollectionSetMetadataRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/nft/collection/set-metadata/prepare', request);\n }\n\n /**\n * Prepare an NFT collection-lock transaction (Polkadot pallet-nfts only).\n * Asset Hub runtimes on pallet-uniques fallback will reject with a 4xx.\n */\n async prepareNftCollectionLock(\n request: PrepareNftCollectionLockRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/nft/collection/lock/prepare', request);\n }\n\n /** Prepare a token creation transaction (Hedera, Solana, Polkadot, Cardano). */\n async prepareTokenCreate(request: PrepareTokenCreateRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/create/prepare', request);\n }\n\n /** Prepare a token mint transaction (any supported chain). */\n async prepareTokenMint(request: PrepareTokenMintRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/mint/prepare', request);\n }\n\n /**\n * Prepare a fungible token burn transaction (Hedera, Solana, Polkadot,\n * Cardano). For NFT burn use `prepareNftBurn` with a `serialNumber`.\n */\n async prepareTokenBurn(request: PrepareTokenBurnRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/burn/prepare', request);\n }\n\n /**\n * Prepare a token association transaction (Hedera HTS associate / Solana\n * ATA create). On chains that don't need explicit association (XRPL uses\n * trustlines — see `client.xrpl.prepareTrustLine`), the server returns 400.\n */\n async prepareTokenAssociate(\n request: PrepareTokenAssociateRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/associate/prepare', request);\n }\n\n /** Prepare a token pause transaction (Hedera, Polkadot, Solana). */\n async prepareTokenPause(request: PrepareTokenPauseRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/pause/prepare', request);\n }\n\n /** Prepare a token unpause transaction (Hedera, Polkadot, Solana). */\n async prepareTokenUnpause(request: PrepareTokenUnpauseRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/unpause/prepare', request);\n }\n\n /**\n * Prepare a token restrict (freeze account) transaction (Hedera, Polkadot,\n * Solana). Freezes `accountId`/`who`/`account` from transacting the token.\n */\n async prepareTokenRestrict(request: PrepareTokenRestrictRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/restrict/prepare', request);\n }\n\n /** Prepare a token unrestrict (unfreeze account) transaction. */\n async prepareTokenUnrestrict(\n request: PrepareTokenUnrestrictRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/unrestrict/prepare', request);\n }\n}\n","/**\n * Snapshots Sub-Client\n *\n * Provides token holder snapshot generation and retrieval.\n *\n * @example\n * ```typescript\n * // Generate a snapshot\n * const { snapshotId } = await client.snapshots.generate('0.0.12345');\n *\n * // Check status\n * const info = await client.snapshots.get(snapshotId);\n *\n * // Download when ready\n * const data = await client.snapshots.download(snapshotId, 'csv');\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n SnapshotInfo,\n SnapshotGenerateOptions,\n SnapshotGenerateResponse,\n SnapshotListResponse,\n SnapshotFormat,\n PaginationOptions,\n} from './types';\n\nexport * from './types';\n\n/**\n * Snapshots Sub-Client\n *\n * Manages token holder snapshots:\n * - Generate point-in-time snapshots of token holders\n * - Query snapshot status and metadata\n * - Download snapshot data in JSON or CSV\n */\nexport class SnapshotsClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Generate a new snapshot for a token\n *\n * @param tokenId - Token identifier\n * @param options - Generation options (format, filters)\n */\n async generate(\n tokenId: string,\n options?: SnapshotGenerateOptions\n ): Promise<SnapshotGenerateResponse> {\n return this.http.post(\n `/snapshots/generate/${encodePathParam(tokenId)}`,\n options || {}\n );\n }\n\n /**\n * Get snapshot details by ID\n */\n async get(snapshotId: string): Promise<SnapshotInfo> {\n return this.http.get(`/snapshots/${encodePathParam(snapshotId)}`);\n }\n\n /**\n * List snapshots for a token\n */\n async listByToken(\n tokenId: string,\n pagination?: PaginationOptions\n ): Promise<SnapshotListResponse> {\n const params = new URLSearchParams();\n if (pagination?.page !== undefined) params.set('page', String(pagination.page));\n if (pagination?.limit !== undefined) params.set('limit', String(pagination.limit));\n const qs = params.toString();\n return this.http.get(\n `/snapshots/token/${encodePathParam(tokenId)}${qs ? `?${qs}` : ''}`\n );\n }\n\n /**\n * Download snapshot data\n *\n * @param snapshotId - Snapshot ID\n * @param format - Output format (json or csv)\n */\n async download(snapshotId: string, format?: SnapshotFormat): Promise<any> {\n const params = format ? `?format=${encodeURIComponent(format)}` : '';\n return this.http.get(\n `/snapshots/${encodePathParam(snapshotId)}/download${params}`\n );\n }\n}\n","/**\n * HistoricalBalanceClient — thin HTTP wrapper around\n * `POST /api/v3/historical-balance/query`.\n *\n * Two construction modes:\n * 1. **Standalone (CLI):** `new HistoricalBalanceClient({ baseUrl, ... })`.\n * The client builds its own `fetch` URL + headers + timeout.\n * 2. **As a sub-client of `SmartEngineClient`:** the parent passes its\n * shared `HttpClient` via the static `HistoricalBalanceClient.fromHttp`\n * factory so that auth, timeouts, and base-URL resolution stay in one\n * place. See `client.ts`.\n *\n * Zero internal `@hsuite/*` imports — wire types are locally declared in\n * `./historical-balance-types` so the published SDK has no workspace\n * dependency.\n */\n\nimport type { HttpClient } from '../http';\nimport type {\n HistoricalBalanceClientConfig,\n HistoricalBalanceQueryParams,\n HistoricalBalanceResult,\n} from './historical-balance-types';\n\nconst DEFAULT_TIMEOUT_MS = 30_000;\nconst ENDPOINT_PATH = '/api/v3/historical-balance/query';\n\n/**\n * Error thrown by `HistoricalBalanceClient` on non-2xx responses or transport\n * failures. Surfaces `statusCode` so callers can map specific codes (400 →\n * input error / unsupported chain, 502 → upstream archive issue) without\n * string-matching messages.\n */\nexport class HistoricalBalanceClientError extends Error {\n constructor(\n message: string,\n public readonly statusCode: number,\n public readonly details?: unknown\n ) {\n super(message);\n this.name = 'HistoricalBalanceClientError';\n }\n}\n\nexport class HistoricalBalanceClient {\n // Standalone-mode fields (set when the client builds its own fetch).\n private readonly baseUrl?: string;\n private readonly authToken?: string;\n private readonly apiKey?: string;\n private readonly timeoutMs: number;\n private readonly fetchImpl?: typeof fetch;\n\n // Sub-client-mode field (set when wired via SmartEngineClient).\n private readonly http?: HttpClient;\n\n constructor(config: HistoricalBalanceClientConfig | { http: HttpClient }) {\n if ('http' in config) {\n this.http = config.http;\n this.timeoutMs = DEFAULT_TIMEOUT_MS;\n return;\n }\n if (!config.baseUrl) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient: baseUrl is required for standalone construction',\n 400\n );\n }\n this.baseUrl = config.baseUrl.replace(/\\/+$/, '');\n this.authToken = config.authToken;\n this.apiKey = config.apiKey;\n this.timeoutMs = config.timeoutMs ?? DEFAULT_TIMEOUT_MS;\n this.fetchImpl = config.fetchImpl;\n }\n\n /**\n * Factory used by `SmartEngineClient` to wire this sub-client onto the\n * parent's shared `HttpClient` (which already carries auth + baseUrl + a\n * `/api/v3` prefix). Routes through `/historical-balance/query` since the\n * parent's HttpClient is rooted at `/api/v3`.\n */\n static fromHttp(http: HttpClient): HistoricalBalanceClient {\n return new HistoricalBalanceClient({ http });\n }\n\n /**\n * Query a point-in-time balance.\n *\n * The validator returns the on-chain bigint as a base-10 decimal string.\n * Callers needing arithmetic precision should wrap the result:\n *\n * ```ts\n * const { balance } = await client.historicalBalance.getBalance({ ... });\n * const value = BigInt(balance);\n * ```\n */\n async getBalance(params: HistoricalBalanceQueryParams): Promise<HistoricalBalanceResult> {\n this.validateParams(params);\n\n if (this.http) {\n // Sub-client mode: delegate to the shared HttpClient. The path is\n // relative because the parent client roots at `/api/v3`.\n return this.http.post<HistoricalBalanceResult>('/historical-balance/query', params);\n }\n return this.standaloneFetch(params);\n }\n\n private validateParams(params: HistoricalBalanceQueryParams): void {\n if (!params || typeof params !== 'object') {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient.getBalance: params object is required',\n 400\n );\n }\n const { chain, entityId, account, atTimestamp } = params;\n if (chain !== 'hedera' && chain !== 'xrpl' && chain !== 'polkadot') {\n throw new HistoricalBalanceClientError(\n `HistoricalBalanceClient.getBalance: unsupported chain \"${String(chain)}\" (expected hedera | xrpl | polkadot)`,\n 400\n );\n }\n if (typeof entityId !== 'string' || entityId.length === 0) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient.getBalance: entityId must be a non-empty string',\n 400\n );\n }\n if (typeof account !== 'string' || account.length === 0) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient.getBalance: account must be a non-empty string',\n 400\n );\n }\n if (\n typeof atTimestamp !== 'number' ||\n !Number.isInteger(atTimestamp) ||\n atTimestamp <= 0\n ) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient.getBalance: atTimestamp must be a positive integer (unix seconds)',\n 400\n );\n }\n }\n\n private async standaloneFetch(\n params: HistoricalBalanceQueryParams\n ): Promise<HistoricalBalanceResult> {\n const url = `${this.baseUrl}${ENDPOINT_PATH}`;\n const headers: Record<string, string> = {\n 'Content-Type': 'application/json',\n Accept: 'application/json',\n };\n if (this.authToken) headers.Authorization = `Bearer ${this.authToken}`;\n if (this.apiKey) headers['X-API-Key'] = this.apiKey;\n\n const fetchFn = this.fetchImpl ?? (typeof fetch !== 'undefined' ? fetch : undefined);\n if (!fetchFn) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient: no fetch implementation available (provide fetchImpl)',\n 500\n );\n }\n\n const controller = new AbortController();\n const timer = setTimeout(() => controller.abort(), this.timeoutMs);\n\n let response: Response;\n try {\n response = await fetchFn(url, {\n method: 'POST',\n headers,\n body: JSON.stringify(params),\n signal: controller.signal,\n });\n } catch (err) {\n clearTimeout(timer);\n const message = err instanceof Error ? err.message : String(err);\n throw new HistoricalBalanceClientError(\n `HistoricalBalanceClient: transport error: ${message}`,\n 0,\n err\n );\n }\n clearTimeout(timer);\n\n let body: unknown;\n const text = await response.text();\n if (text.length > 0) {\n try {\n body = JSON.parse(text);\n } catch (err) {\n const message = err instanceof Error ? err.message : String(err);\n throw new HistoricalBalanceClientError(\n `HistoricalBalanceClient: non-JSON response (status=${response.status}): ${message}`,\n response.status,\n { raw: text }\n );\n }\n }\n\n if (!response.ok) {\n const detail =\n body && typeof body === 'object' && 'message' in (body as any)\n ? String((body as any).message)\n : `HTTP ${response.status}`;\n throw new HistoricalBalanceClientError(\n `HistoricalBalanceClient: ${detail}`,\n response.status,\n body\n );\n }\n\n return body as HistoricalBalanceResult;\n }\n}\n","/**\n * Settlement Sub-Client\n *\n * Manages cross-chain settlement operations including initiation,\n * status tracking, XRP landing confirmation, and history retrieval.\n */\n\nimport { encodePathParam, type HttpClient } from '../http';\n\nexport type {\n SettlementPurpose,\n SettlementAsset,\n SettlementInitiateRequest,\n SettlementStatusResponse,\n SettlementHistoryEntry,\n} from './types';\n\nimport type {\n SettlementInitiateRequest,\n SettlementStatusResponse,\n SettlementHistoryEntry,\n} from './types';\n\nexport class SettlementClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Initiate a new settlement operation.\n * Submits source-chain payment details and begins the conversion pipeline.\n */\n async initiate(request: SettlementInitiateRequest): Promise<SettlementStatusResponse> {\n return this.http.post('/settlement/initiate', request);\n }\n\n /**\n * Get the current status of a settlement by ID.\n */\n async getStatus(settlementId: string): Promise<SettlementStatusResponse> {\n return this.http.get(`/settlement/${encodePathParam(settlementId)}/status`);\n }\n\n /**\n * Confirm that XRP has landed on the destination address.\n * Advances the settlement to the next processing step.\n */\n async confirmXrpLanded(settlementId: string): Promise<SettlementStatusResponse> {\n return this.http.post(`/settlement/${encodePathParam(settlementId)}/confirm-xrp`, {});\n }\n\n /**\n * Get settlement history for a given entity.\n */\n async getHistory(entityId: string): Promise<SettlementHistoryEntry[]> {\n return this.http.get(`/settlement/history/${encodePathParam(entityId)}`);\n }\n}\n","/**\n * Governance Sub-Client.\n *\n * Thin HTTP wrapper around `POST /api/v3/governance/simulate`. Lets\n * smart-app authors dry-run governance-rule validation against fixture data\n * without depending on the rules-engine package.\n *\n * Zero internal-lib coupling: types are declared locally in\n * `./governance-types`; the only runtime dependency is the SDK's own\n * `HttpClient` abstraction.\n */\nimport type { HttpClient } from '../http';\nimport type {\n GovernanceSimulateRequest,\n GovernanceValidationResult,\n} from './governance-types';\n\n/**\n * Governance Sub-Client.\n *\n * Exposed as `client.governance` on `SmartEngineClient`.\n *\n * @example\n * ```typescript\n * const result = await client.governance.simulate({\n * config: { governanceTokenId: '0.0.123', proposalThreshold: '100', votingPeriodMs: 604800000 },\n * context: { callerAccountId: '0.0.111', action: 'create_proposal', tokenBalance: '500' },\n * });\n * if (!result.isValid) {\n * console.error('proposal rejected:', result.reason);\n * }\n * ```\n */\nexport class GovernanceClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Dry-run a governance proposal/vote/etc. against `GovernanceMolecule.validate(...)`.\n *\n * Returns whatever `ValidationResult` the molecule produced. A `false`\n * `isValid` is **not** an error — it is a successful \"this proposal is\n * invalid\" outcome and is surfaced via the normal return value.\n *\n * HTTP errors (400 malformed body, 500 unexpected) bubble up as\n * `SdkHttpError` via the shared `HttpClient` layer.\n */\n async simulate(params: GovernanceSimulateRequest): Promise<GovernanceValidationResult> {\n return this.http.post<GovernanceValidationResult>('/governance/simulate', params);\n }\n}\n","/**\n * DAO Dashboard Sub-Client.\n *\n * Read-only rollups indexed by user wallet address — backs the smart-app\n * \"your governance\" home screen. Maps 1:1 to `dao.controller.ts`'s\n * `dashboard/*` route group.\n */\n\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n DaoActiveProposalForUser,\n DaoActivityEntry,\n DaoDashboardStats,\n DaoGovernanceImpact,\n DaoPendingAction,\n DaoVote,\n DashboardActivityOptions,\n DashboardListOptions,\n} from './types';\n\nfunction buildQuery(params: Record<string, string | number | undefined>): string {\n const search = new URLSearchParams();\n for (const [key, value] of Object.entries(params)) {\n if (value === undefined) continue;\n search.set(key, String(value));\n }\n const qs = search.toString();\n return qs ? `?${qs}` : '';\n}\n\nexport class DaoDashboardClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Aggregated dashboard counters for a user's governance home screen. */\n async getStats(userAddress: string): Promise<DaoDashboardStats> {\n return this.http.get(\n `/dao/dashboard/stats/${encodePathParam(userAddress)}`,\n );\n }\n\n /** Active proposals across every DAO the user belongs to, with vote state. */\n async getActiveProposals(\n userAddress: string,\n ): Promise<DaoActiveProposalForUser[]> {\n return this.http.get(\n `/dao/dashboard/active-proposals/${encodePathParam(userAddress)}`,\n );\n }\n\n /** Paginated vote history across DAOs. */\n async getVoteHistory(\n userAddress: string,\n opts: DashboardListOptions = {},\n ): Promise<{ count: number; votes: DaoVote[] }> {\n const qs = buildQuery({ limit: opts.limit, offset: opts.offset });\n return this.http.get(\n `/dao/dashboard/vote-history/${encodePathParam(userAddress)}${qs}`,\n );\n }\n\n /** Activity feed (proposal-created/vote-cast/etc.) across user's DAOs. */\n async getActivity(\n userAddress: string,\n opts: DashboardActivityOptions = {},\n ): Promise<DaoActivityEntry[]> {\n const qs = buildQuery({ limit: opts.limit, daoId: opts.daoId });\n return this.http.get(\n `/dao/dashboard/activity/${encodePathParam(userAddress)}${qs}`,\n );\n }\n\n /** Items the user must act on (sign prepared messages, claim NFTs, …). */\n async getPendingActions(userAddress: string): Promise<DaoPendingAction[]> {\n return this.http.get(\n `/dao/dashboard/pending-actions/${encodePathParam(userAddress)}`,\n );\n }\n\n /** Governance impact metrics — weight delivered, success rate, streak. */\n async getImpact(userAddress: string): Promise<DaoGovernanceImpact> {\n return this.http.get(\n `/dao/dashboard/impact/${encodePathParam(userAddress)}`,\n );\n }\n}\n","/**\n * DAO Sub-Client.\n *\n * Wraps every public DAO endpoint (mounted under `/api/v3/dao`).\n *\n * Why a dedicated sub-client:\n * - The controller exposes ~30 endpoints across 5 surfaces (DAOs,\n * proposals, votes, treasury, members) plus a dashboard rollup. Before\n * this client there was no SDK entrypoint at all — smart-apps were\n * hand-rolling fetch calls.\n * - Types mirror `multi-chain-core`'s `dao.types.ts` over the wire (see\n * `./types`) so smart-app bundles don't drag NestJS / Mongoose.\n */\n\nimport { encodePathParam, type HttpClient } from '../http';\nimport { DaoDashboardClient } from './dashboard-client';\nimport type {\n AddDaoMemberRequest,\n AddMemberResponse,\n CastVoteRequest,\n CastVoteResponse,\n ClaimDaoMemberNftRequest,\n ClaimNftResponse,\n CreateDaoProposalRequest,\n CreateDaoRequest,\n CreateDaoResponse,\n CreateProposalResponse,\n DaoConfig,\n DaoProposalConfig,\n DaoVote,\n DaoWithProposalsResponse,\n ExecuteProposalResponse,\n ListDaosOptions,\n ListDaosResponse,\n ListMembersOptions,\n ListMembersResponse,\n ListProposalsOptions,\n ListProposalsResponse,\n MemberNftResponse,\n PrepareDaoProposalRequest,\n PrepareProposalResponse,\n PrepareVoteRequest,\n PrepareVoteResponse,\n ProposalResultsResponse,\n RemoveMemberResponse,\n SubmitSignedProposalRequest,\n SubmitSignedProposalResponse,\n SubmitSignedVoteRequest,\n TreasuryBalancesResponse,\n TreasuryHistoryOptions,\n TreasuryHistoryResponse,\n VoteListOptions,\n VotesListResponse,\n} from './types';\n\nfunction buildQuery(params: Record<string, string | number | undefined>): string {\n const search = new URLSearchParams();\n for (const [key, value] of Object.entries(params)) {\n if (value === undefined) continue;\n search.set(key, String(value));\n }\n const qs = search.toString();\n return qs ? `?${qs}` : '';\n}\n\nfunction encodeDaoId(daoId: string): string {\n return encodePathParam(daoId);\n}\n\nfunction encodeProposalId(proposalId: string): string {\n return encodePathParam(proposalId);\n}\n\nfunction encodeAddress(address: string): string {\n return encodePathParam(address);\n}\n\n/**\n * DAO Sub-Client — exposed as `client.dao` on `SmartEngineClient`.\n *\n * @example Create a DAO and submit a proposal\n * ```typescript\n * const { dao } = await client.dao.create({\n * name: 'Foo DAO',\n * description: '...',\n * membershipModel: 'token-only',\n * governanceToken: { symbol: 'FOO', chains: [{ chain: 'xrpl', tokenId: 'FOO.rISSUER', decimals: 8 }] },\n * votingRules: { ... },\n * treasuryChains: ['xrpl'],\n * createdBy: 'rUserAddress',\n * });\n * const { proposal } = await client.dao.createProposal(dao.daoId, {\n * type: 'dao_treasury_transfer',\n * title: 'Pay grant',\n * description: '...',\n * proposer: 'rUserAddress',\n * actions: [...],\n * });\n * ```\n */\nexport class DaoClient {\n /** Per-user rollups for the smart-app's governance home screen. */\n public readonly dashboard: DaoDashboardClient;\n\n constructor(private readonly http: HttpClient) {\n this.dashboard = new DaoDashboardClient(http);\n }\n\n // ─── Lifecycle ────────────────────────────────────────────────────────────\n\n /** Create a new DAO. */\n async create(request: CreateDaoRequest): Promise<CreateDaoResponse> {\n return this.http.post('/dao/create', request);\n }\n\n /** List DAOs with optional status / creator filters. */\n async list(opts: ListDaosOptions = {}): Promise<ListDaosResponse> {\n const qs = buildQuery({ status: opts.status, createdBy: opts.createdBy });\n return this.http.get(`/dao/list${qs}`);\n }\n\n /** Fetch a single DAO by ID. */\n async get(daoId: string): Promise<DaoConfig> {\n return this.http.get(`/dao/${encodeDaoId(daoId)}`);\n }\n\n /** Fetch a DAO together with its proposals (single round-trip). */\n async getWithProposals(daoId: string): Promise<DaoWithProposalsResponse> {\n return this.http.get(`/dao/${encodeDaoId(daoId)}/with-proposals`);\n }\n\n // ─── Proposals ────────────────────────────────────────────────────────────\n\n /** List proposals for a DAO, optionally filtered by status / proposer. */\n async listProposals(\n daoId: string,\n opts: ListProposalsOptions = {},\n ): Promise<ListProposalsResponse> {\n const qs = buildQuery({ status: opts.status, proposer: opts.proposer });\n return this.http.get(`/dao/${encodeDaoId(daoId)}/proposals${qs}`);\n }\n\n /** Create a proposal (server activates the proposal immediately). */\n async createProposal(\n daoId: string,\n request: CreateDaoProposalRequest,\n ): Promise<CreateProposalResponse> {\n return this.http.post(`/dao/${encodeDaoId(daoId)}/proposals`, request);\n }\n\n /**\n * Prepare a proposal for off-chain signing (returns the message to sign).\n * Use {@link signProposal} to submit the signature once captured.\n */\n async prepareProposal(\n daoId: string,\n request: PrepareDaoProposalRequest,\n ): Promise<PrepareProposalResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/prepare`,\n request,\n );\n }\n\n /** Submit the signed prepared-proposal payload. */\n async signProposal(\n daoId: string,\n proposalId: string,\n request: SubmitSignedProposalRequest,\n ): Promise<SubmitSignedProposalResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/sign`,\n request,\n );\n }\n\n /** Prepare a vote message for off-chain signing. */\n async prepareVote(\n daoId: string,\n proposalId: string,\n request: PrepareVoteRequest,\n ): Promise<PrepareVoteResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/prepare-vote`,\n request,\n );\n }\n\n /** Submit the signed prepared-vote payload. */\n async submitVote(\n daoId: string,\n proposalId: string,\n request: SubmitSignedVoteRequest,\n ): Promise<CastVoteResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/submit-vote`,\n request,\n );\n }\n\n /**\n * Cast a vote directly (no separate prepare/sign hop — server records the\n * vote on the caller's behalf). Use {@link prepareVote} + {@link submitVote}\n * when the smart-app's signing model requires client-side signing.\n */\n async vote(\n daoId: string,\n proposalId: string,\n request: CastVoteRequest,\n ): Promise<CastVoteResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/vote`,\n request,\n );\n }\n\n /**\n * Manually execute a passed proposal via TSS. Proposals auto-execute after\n * the execution delay; this endpoint is for the governance-admin override\n * path.\n */\n async execute(\n daoId: string,\n proposalId: string,\n ): Promise<ExecuteProposalResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/execute`,\n {},\n );\n }\n\n /** Paginated vote list for a proposal. */\n async getVotes(\n daoId: string,\n proposalId: string,\n opts: VoteListOptions = {},\n ): Promise<VotesListResponse> {\n const qs = buildQuery({ limit: opts.limit, offset: opts.offset });\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/votes${qs}`,\n );\n }\n\n /** Resolved tally / quorum / pass-fail for a proposal. */\n async getResults(\n daoId: string,\n proposalId: string,\n ): Promise<ProposalResultsResponse> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/results`,\n );\n }\n\n /** Raw vote counts by option ID (no quorum / pass logic). */\n async getVoteCounts(\n daoId: string,\n proposalId: string,\n ): Promise<Record<string, number>> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/vote-counts`,\n );\n }\n\n /** Fetch a single voter's vote on a proposal. */\n async getVoterRecord(\n daoId: string,\n proposalId: string,\n voterAddress: string,\n ): Promise<DaoVote> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/voter/${encodeAddress(voterAddress)}`,\n );\n }\n\n /** Fetch a single proposal by ID. */\n async getProposal(\n daoId: string,\n proposalId: string,\n ): Promise<DaoProposalConfig> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}`,\n );\n }\n\n // ─── Treasury ─────────────────────────────────────────────────────────────\n\n /** Per-chain treasury balances for a DAO. */\n async getTreasury(\n daoId: string,\n chain?: string,\n ): Promise<TreasuryBalancesResponse> {\n const qs = buildQuery({ chain });\n return this.http.get(`/dao/${encodeDaoId(daoId)}/treasury${qs}`);\n }\n\n /** Paginated treasury transaction history (in/out/swap). */\n async getTreasuryHistory(\n daoId: string,\n opts: TreasuryHistoryOptions = {},\n ): Promise<TreasuryHistoryResponse> {\n const qs = buildQuery({\n chain: opts.chain,\n limit: opts.limit,\n offset: opts.offset,\n });\n return this.http.get(`/dao/${encodeDaoId(daoId)}/treasury/history${qs}`);\n }\n\n // ─── Members ──────────────────────────────────────────────────────────────\n\n /** List a DAO's members, optionally filtered by status. */\n async listMembers(\n daoId: string,\n opts: ListMembersOptions = {},\n ): Promise<ListMembersResponse> {\n const qs = buildQuery({ status: opts.status });\n return this.http.get(`/dao/${encodeDaoId(daoId)}/members${qs}`);\n }\n\n /** Add a member to a DAO. */\n async addMember(\n daoId: string,\n request: AddDaoMemberRequest,\n ): Promise<AddMemberResponse> {\n return this.http.post(`/dao/${encodeDaoId(daoId)}/members`, request);\n }\n\n /** Remove a member from a DAO. */\n async removeMember(\n daoId: string,\n address: string,\n ): Promise<RemoveMemberResponse> {\n return this.http.delete(\n `/dao/${encodeDaoId(daoId)}/members/${encodeAddress(address)}`,\n );\n }\n\n /** Bind a held membership NFT serial to a member record. */\n async claimMemberNft(\n daoId: string,\n address: string,\n request: ClaimDaoMemberNftRequest,\n ): Promise<ClaimNftResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/members/${encodeAddress(address)}/claim-nft`,\n request,\n );\n }\n\n /** Fetch the NFT serials + status for a member. */\n async getMemberNft(\n daoId: string,\n address: string,\n ): Promise<MemberNftResponse> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/members/${encodeAddress(address)}/nft`,\n );\n }\n}\n","/**\n * Personhood Sub-Client\n *\n * Thin HTTP wrapper around `POST /api/v3/personhood/verify`. Pure HTTP —\n * never imports a server-side personhood module or the baas-core types.\n * The locally-declared types in `./personhood-types` mirror the server's\n * wire shape; see that file for the source-of-truth annotation.\n *\n * @example\n * ```typescript\n * const cert = await client.personhood.verify({\n * candidate: '0.0.12345',\n * proof: {\n * attestationMethod: 'web-of-trust',\n * payload: { vouchers: ['0.0.111', '0.0.222'] },\n * },\n * });\n * if (!cert) {\n * console.log('verification rejected');\n * return;\n * }\n * console.log('cert expires at', cert.expiresAt);\n * ```\n */\nimport type { HttpClient } from '../http';\nimport { SdkHttpError } from '../http';\nimport type {\n PersonhoodCert,\n PersonhoodVerifyParams,\n} from './personhood-types';\n\n/**\n * Error envelope emitted by the validator when the hub has no\n * `IPersonhoodVerifier` wired. Exposed as a constant so callers can\n * branch on the `error` discriminator without re-typing the string.\n */\nexport const PERSONHOOD_VERIFIER_NOT_CONFIGURED = 'personhood_verifier_not_configured' as const;\n\n/**\n * Thin HTTP client for the personhood endpoint.\n *\n * Method outcomes:\n * - HTTP 200 with a cert object → resolves to `PersonhoodCert`.\n * - HTTP 200 with `null` body → resolves to `null` (clean rejection).\n * - HTTP 400 → throws `SdkHttpError(400)`.\n * - HTTP 503 → throws `SdkHttpError(503)` whose\n * `.details.error === 'personhood_verifier_not_configured'`.\n * - HTTP 5xx → throws `SdkHttpError` with the upstream status.\n * - Network / timeout → throws `SdkHttpError(0|408)`.\n */\nexport class PersonhoodClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Verify a personhood proof for `candidate`.\n *\n * Returns the issued cert on accept, `null` on clean rejection. All\n * other failure modes (validation, transport, 5xx) propagate as\n * `SdkHttpError`.\n */\n async verify(params: PersonhoodVerifyParams): Promise<PersonhoodCert | null> {\n const result = await this.http.post<PersonhoodCert | null>(\n '/personhood/verify',\n {\n candidate: params.candidate,\n proof: params.proof,\n },\n );\n // The validator returns `null` literally on clean rejection, and the\n // HTTP layer surfaces empty `204 No Content` bodies as `undefined`.\n // Treat both as the same \"no cert\" outcome so callers only branch on\n // `=== null`.\n if (result === undefined) return null;\n return result;\n }\n}\n\nexport type { PersonhoodCert, PersonhoodVerifyParams } from './personhood-types';\n\n/**\n * Predicate: narrows an unknown error to a 503\n * `personhood_verifier_not_configured` envelope. Use in smart-app code to\n * treat unconfigured hubs as a graceful downgrade.\n */\nexport function isPersonhoodVerifierNotConfigured(\n err: unknown,\n): err is SdkHttpError & { details: { error: typeof PERSONHOOD_VERIFIER_NOT_CONFIGURED } } {\n if (!(err instanceof SdkHttpError)) return false;\n if (err.statusCode !== 503) return false;\n const d = err.details as unknown;\n if (d === null || typeof d !== 'object') return false;\n return (d as Record<string, unknown>).error === PERSONHOOD_VERIFIER_NOT_CONFIGURED;\n}\n","/**\n * Agents Sub-Client\n *\n * Manages autonomous smart agents on the host platform.\n *\n * @example\n * ```typescript\n * // Register an agent\n * const agent = await baas.agents.register({\n * name: 'Trading Bot',\n * capabilities: ['trade', 'withdraw'],\n * rules: { maxTradeAmount: '1000', allowedPairs: ['HBAR/USDC'] },\n * });\n *\n * // Fund and trade\n * await baas.agents.fund(agent.agentId, { chain: 'hedera', amount: '500' });\n * await baas.agents.trade(agent.agentId, { chain: 'hedera', pair: 'HBAR/USDC', side: 'buy', amount: '100' });\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type { PreparedTransactionResponse } from '../../_vendor';\nimport type {\n AgentRegisterRequest,\n AgentInfo,\n AgentCertification,\n AgentRules,\n AgentEvent,\n AgentBalance,\n AgentFundRequest,\n AgentTradeRequest,\n AgentWithdrawRequest,\n AgentExecuteRequest,\n AgentExecuteResponse,\n} from './types';\n\nexport * from './types';\nexport { validateAgentRules } from './types';\nexport type { PreparedTransactionResponse } from '../../_vendor';\n\n/**\n * Envelope returned by `fund` / `trade` / `withdraw` on the host. The\n * server wraps the underlying `PreparedTransactionResponse` with a\n * `success: true` flag so the caller can distinguish the\n * lifecycle-success path from a 400/404 error response.\n */\nexport type AgentPreparedTransactionResponse = PreparedTransactionResponse & {\n success: true;\n};\n\n/**\n * Envelope returned by `fund` when the requested amount trips an\n * approval-required rule: instead of prepared transaction bytes the host\n * records a pending operation and returns its id for later approve/reject.\n * Discriminate from {@link AgentPreparedTransactionResponse} with\n * {@link isAgentFundPending}.\n */\nexport type AgentPendingApprovalResponse = {\n success: true;\n pendingOpId: string;\n agentId: string;\n action: string;\n status: 'awaiting_approval';\n description: string;\n};\n\n/**\n * Type guard distinguishing the pending-approval envelope from the\n * prepared-transaction envelope returned by {@link AgentsClient.fund}.\n */\nexport function isAgentFundPending(\n r: AgentPreparedTransactionResponse | AgentPendingApprovalResponse,\n): r is AgentPendingApprovalResponse {\n return 'pendingOpId' in r;\n}\n\nexport class AgentsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Register a new agent */\n async register(request: AgentRegisterRequest, opts?: HttpCallOptions): Promise<AgentInfo> {\n return this.http.post('/api/v3/baas/agents/register', request, opts);\n }\n\n /** Get agent details */\n async get(agentId: string, opts?: HttpCallOptions): Promise<AgentInfo> {\n return this.http.get(`/api/v3/baas/agents/${encodePathParam(agentId)}`, opts);\n }\n\n /** List all agents */\n async list(opts?: HttpCallOptions): Promise<{ agents: AgentInfo[]; total: number }> {\n return this.http.get('/api/v3/baas/agents', opts);\n }\n\n /**\n * Fund agent treasury (owner-only). Normally returns a\n * `PreparedTransactionResponse` wrapped in a `success: true` envelope —\n * the caller is expected to sign and submit the prepared bytes. When the\n * amount trips an approval-required rule the host instead returns an\n * {@link AgentPendingApprovalResponse}; discriminate with\n * {@link isAgentFundPending}.\n */\n async fund(\n agentId: string,\n request: AgentFundRequest,\n opts?: HttpCallOptions,\n ): Promise<AgentPreparedTransactionResponse | AgentPendingApprovalResponse> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/fund`, request, opts);\n }\n\n /**\n * Execute a trade (agent-wallet OR owner). Returns a\n * `PreparedTransactionResponse` wrapped in a `success: true` envelope.\n */\n async trade(\n agentId: string,\n request: AgentTradeRequest,\n opts?: HttpCallOptions,\n ): Promise<AgentPreparedTransactionResponse> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/trade`, request, opts);\n }\n\n /**\n * Withdraw from agent treasury (owner-only). Returns a\n * `PreparedTransactionResponse` wrapped in a `success: true` envelope.\n */\n async withdraw(\n agentId: string,\n request: AgentWithdrawRequest,\n opts?: HttpCallOptions,\n ): Promise<AgentPreparedTransactionResponse> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/withdraw`, request, opts);\n }\n\n /**\n * Execute a generic, declared capability (agent-wallet OR owner). The\n * chain-agnostic general form of an agent action: the capability may settle\n * on-chain, act off-chain, or both. Returns the ordered step results.\n */\n async execute(\n agentId: string,\n request: AgentExecuteRequest,\n opts?: HttpCallOptions,\n ): Promise<AgentExecuteResponse & { success: true }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/execute`, request, opts);\n }\n\n /** Pause an agent */\n async pause(agentId: string, opts?: HttpCallOptions): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/pause`, {}, opts);\n }\n\n /** Resume a paused agent */\n async resume(agentId: string, opts?: HttpCallOptions): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/resume`, {}, opts);\n }\n\n /** Revoke an agent (permanent) */\n async revoke(agentId: string, opts?: HttpCallOptions): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/revoke`, {}, opts);\n }\n\n /**\n * Get an agent's certification snapshot (identity, rule refs, BLS group key,\n * and recent on-chain activity). A 404 throws `SdkHttpError` via `http.get`\n * — parity with {@link get}.\n */\n async certification(agentId: string, opts?: HttpCallOptions): Promise<AgentCertification> {\n return this.http.get(`/api/v3/baas/agents/${encodePathParam(agentId)}/certification`, opts);\n }\n\n /**\n * Update agent rules.\n *\n * Server route is PATCH `/api/v3/baas/agents/:agentId/rules`\n * (`agents.controller.ts:375`). The previous PUT variant 404'd because\n * Nest matched the dynamic `:agentId` GET/POST handlers and rejected\n * the verb mismatch.\n */\n async updateRules(agentId: string, rules: Partial<AgentRules>, opts?: HttpCallOptions): Promise<AgentInfo> {\n return this.http.patch(`/api/v3/baas/agents/${encodePathParam(agentId)}/rules`, rules, opts);\n }\n\n /** Get agent events */\n async getEvents(agentId: string, opts?: HttpCallOptions): Promise<{ events: AgentEvent[]; total: number }> {\n return this.http.get(`/api/v3/baas/agents/${encodePathParam(agentId)}/events`, opts);\n }\n\n /** Get agent balances across chains */\n async getBalances(agentId: string, opts?: HttpCallOptions): Promise<{ balances: AgentBalance[] }> {\n return this.http.get(`/api/v3/baas/agents/${encodePathParam(agentId)}/balances`, opts);\n }\n\n /** Approve a pending agent operation */\n async approve(agentId: string, operationId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/approve/${encodePathParam(operationId)}`, {}, opts);\n }\n\n /** Reject a pending agent operation */\n async reject(agentId: string, operationId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/reject/${encodePathParam(operationId)}`, {}, opts);\n }\n}\n","/**\n * Deployment Sub-Client — runtime orchestration.\n *\n * The four-step deploy flow:\n *\n * 1. `init` — server allocates appId + per-app Harbor project + ephemeral push robot creds.\n * 2. (out-of-band) — customer `docker login <registry.server>` then `docker push <registry.server>/<registry.repository>:<tag>`.\n * 3. `uploadFrontend` — (optional) tarball with the SPA bundle.\n * 4. `deploy` — server reconciles to k8s.\n *\n * @example\n * ```typescript\n * const init = await baas.deployment.init({ name: 'my-app', port: 3200, services: ['database'] });\n *\n * // Use the credentials returned in init.registry to push the backend image.\n * // init.registry.server → e.g. 'harbor.testnet.hsuite.network' (public round-robin)\n * // init.registry.repository → e.g. 'hsuite-customers-<appId>'\n * // init.registry.username → per-project robot account\n * // init.registry.password → per-app push secret (re-derivable, not persisted as plaintext)\n * //\n * // docker login <init.registry.server> -u <init.registry.username> -p <init.registry.password>\n * // docker push <init.registry.server>/<init.registry.repository>:v1\n *\n * await baas.deployment.deploy(init.appId, { tag: 'v1', replicas: 2 });\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n BaasInitRequest,\n BaasInitResponse,\n BaasReissuePushCredentialsResponse,\n BaasDeployRequest,\n BaasDeployResponse,\n BaasUploadFrontendResponse,\n BaasRollbackRequest,\n BaasRuntimeStatus,\n BaasAppListResponse,\n BaasSetWebhookResponse,\n BaasRotateKekResponse,\n BaasRevokeKekResponse,\n DeployedAppInfo,\n} from '../types';\n\nexport class DeploymentClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Step 1 — allocate appId + receive ephemeral push credentials for\n * the cluster's per-tenant Harbor project.\n *\n * Each app gets its own Harbor project (`hsuite-customers-<appId>`)\n * isolated by Harbor's RBAC. The push robot returned in\n * `registry.{username, password}` is scoped to that project only —\n * it cannot read or write any other tenant's images.\n *\n * **Single-use secret discipline:** `registry.password` is returned\n * exactly once and is NOT persisted server-side. Store it locally\n * for the `docker push` and discard. To rotate, call `init` again\n * (issues a new robot under the same project).\n *\n * Use the credentials to `docker login` + `docker push`, then call\n * {@link deploy} with the pushed image tag.\n */\n async init(request: BaasInitRequest): Promise<BaasInitResponse> {\n return this.http.post('/api/v3/baas/deployment/apps/init', request);\n }\n\n /**\n * Issue ephemeral Harbor push credentials for a smart-app that ALREADY\n * EXISTS — the MINT-FIRST / DEPLOY-LAST credentials-push call.\n *\n * Unlike {@link init} (which historically allocated a fresh entity), this\n * takes the developer's pre-existing `appId` — the `SUBSCRIPTION_APP_ID`\n * minted by `hsuite subscribe` (`appId == DKG entityId`) — and ONLY\n * (re)provisions the per-app Harbor project + push robot. The server creates\n * no DKG entity and no subscription; it asserts the caller owns the app and\n * that its subscription is ACTIVE (402 otherwise) first.\n *\n * Returns the same `{ appId, registry }` shape as {@link init}. Single-use\n * secret discipline applies to `registry.password` exactly as in `init`.\n *\n * This is the credentials path the mint-first `hsuite deploy` uses to obtain\n * push creds for the developer's already-minted subscription app\n * (`POST /apps/:appId/credentials/push`). The `hsuite redeploy` re-push path\n * uses {@link reissuePushCredentials} instead, which targets a dedicated\n * `credentials/reissue` route with stricter SUSPENDED-app + Harbor-failure\n * handling.\n */\n async pushCredentials(appId: string): Promise<BaasInitResponse> {\n return this.http.post(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/credentials/push`,\n {},\n );\n }\n\n /**\n * Reissue ephemeral Harbor push credentials for an EXISTING app, WITHOUT\n * allocating a new appId / entity. Unlike {@link init} — which historically\n * forked a fresh smart-app entity (and a fresh paid subscription) on every\n * call — this re-binds to an app the developer already owns: the `appId` is\n * echoed back unchanged and only a new single-use `registry.password` push\n * robot is minted. Same `{ appId, registry }` response shape as `init`.\n *\n * Owner-only + active-subscription gated server-side. This is the credential\n * path `hsuite redeploy` uses so a re-push does not cost a new entity +\n * subscription each run. Targets the dedicated\n * `POST /apps/:appId/credentials/reissue` route (distinct from\n * {@link pushCredentials}'s first-deploy `credentials/push`): the reissue\n * route additionally refuses SUSPENDED apps and surfaces Harbor failures\n * loudly rather than returning placeholder creds.\n */\n async reissuePushCredentials(\n appId: string,\n ): Promise<BaasReissuePushCredentialsResponse> {\n return this.http.post(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/credentials/reissue`,\n {},\n );\n }\n\n /**\n * Step 3 (optional) — upload the SPA tarball.\n *\n * The tarball is content-addressed (SHA-256) and mounted read-only\n * into the customer's pod alongside the backend container. Returns\n * the hash + size so the caller can verify the upload.\n */\n async uploadFrontend(\n appId: string,\n bundle: Blob | Buffer,\n filename = 'bundle.tar.gz'\n ): Promise<BaasUploadFrontendResponse> {\n // The smart-host upload handler uses `FileInterceptor('bundle', ...)` —\n // the multipart field name MUST be `bundle`, not the SDK's default\n // `'file'`. Override explicitly.\n return this.http.upload(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/frontend`,\n bundle,\n filename,\n undefined,\n 'bundle',\n );\n }\n\n /**\n * Step 4 — reconcile the runtime to k8s.\n *\n * Returns immediately with `status: 'deploying'`. Poll {@link status}\n * until `runtime.runtimeState === 'RUNNING'` for the URL to be live.\n */\n async deploy(appId: string, request: BaasDeployRequest): Promise<BaasDeployResponse> {\n return this.http.post(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/deploy`, request);\n }\n\n /**\n * Roll back to a previously-deployed image tag (must exist in\n * `runtime.deploymentHistory[]`).\n */\n async rollback(appId: string, request: BaasRollbackRequest): Promise<BaasDeployResponse> {\n return this.http.post(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/rollback`, request);\n }\n\n /**\n * Live combined lifecycle + runtime status of an app.\n */\n async status(appId: string): Promise<BaasRuntimeStatus> {\n return this.http.get(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/status`);\n }\n\n /**\n * List all deployed apps for the authenticated developer.\n */\n async list(): Promise<BaasAppListResponse> {\n return this.http.get('/api/v3/smart-apps');\n }\n\n /**\n * Get app details.\n */\n async get(appId: string): Promise<DeployedAppInfo> {\n return this.http.get(`/api/v3/smart-apps/${encodePathParam(appId)}`);\n }\n\n /**\n * Update app configuration.\n *\n * @param appId - The app to update.\n * @param updates - Partial deploy-request fields to apply.\n * @returns The updated app info.\n */\n async update(appId: string, updates: Partial<BaasDeployRequest>): Promise<DeployedAppInfo> {\n return this.http.put(`/api/v3/smart-apps/${encodePathParam(appId)}`, updates);\n }\n\n /**\n * Delete an app (runtime effect: namespace teardown).\n */\n async delete(appId: string): Promise<{ success: boolean }> {\n return this.http.delete(`/api/v3/smart-apps/${encodePathParam(appId)}`);\n }\n\n /**\n * Suspend an app (runtime effect: scale to zero).\n */\n async suspend(appId: string): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/smart-apps/${encodePathParam(appId)}/suspend`, {});\n }\n\n /**\n * Resume a suspended app (runtime effect: scale back up).\n */\n async resume(appId: string): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/smart-apps/${encodePathParam(appId)}/resume`, {});\n }\n\n /**\n * Get deployment statistics.\n */\n async getStats(): Promise<{\n totalApps: number;\n activeApps: number;\n totalOwners: number;\n }> {\n return this.http.get('/api/v3/smart-apps/stats');\n }\n\n /**\n * Register or update the developer-facing webhook URL for runtime\n * lifecycle events (`runtime.deploying` / `running` / `failed` /\n * `suspended` / `resumed` / `retired`).\n *\n * The host's `DeployWebhookDispatcher` POSTs to this URL whenever the\n * smart-deployer reconciler emits a `runtime.*` NATS event, signed with\n * the returned `webhookSecret`:\n *\n * `X-HSuite-Signature: sha256=<hmac-sha256(secret, raw-body)>`\n *\n * Store `webhookSecret` server-side and re-compute the signature over\n * the raw delivery body to verify authenticity. The secret is surfaced\n * only on PUT — re-call this method to rotate.\n *\n * Server validates: HTTPS only, no loopback / RFC1918 / link-local /\n * CGNAT / cloud metadata destinations (SSRF guard).\n */\n async setWebhook(appId: string, webhookUrl: string): Promise<BaasSetWebhookResponse> {\n return this.http.put(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/webhook`, {\n webhookUrl,\n });\n }\n\n /**\n * Per-app Prometheus metrics in the standard exposition format\n * (text/plain; version=0.0.4). The server filters smart-deployer's\n * `/metrics` to lines that mention this app's `appId` label, while\n * preserving HELP / TYPE comment lines and cluster-wide metrics.\n *\n * Returned as a raw string so callers can pipe directly into a\n * Prometheus parser (`prom-client`, `parse-prometheus-text-format`,\n * etc.) without an intermediate JSON decode that would corrupt the\n * exposition format.\n */\n async getMetrics(appId: string): Promise<string> {\n return this.http.getText(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/metrics`);\n }\n\n /**\n * Rotate the smart-app's tenant-secret KEK.\n *\n * Re-encrypts every `runtime.env` envelope at the new KEK version\n * transparently. Previous versions remain valid until explicitly\n * revoked via {@link revokeKek}. Owner-only.\n */\n async rotateKek(appId: string): Promise<BaasRotateKekResponse> {\n return this.http.post(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/credentials/rotate-kek`,\n {},\n );\n }\n\n /**\n * Revoke a tenant-secret KEK version (emergency burn).\n *\n * Envelopes at the revoked version become operationally dead —\n * decryption inside the smart-app pod fails. Owner-only and\n * **irreversible**. Returns the cumulative list of revoked versions\n * for this app.\n */\n async revokeKek(appId: string, version: number): Promise<BaasRevokeKekResponse> {\n return this.http.post(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/credentials/revoke-kek`,\n { version },\n );\n }\n}\n","/**\n * Bridge Sub-Client.\n *\n * Mounted on `client.bridge`. Endpoints map 1:1 to the validator bridge routes:\n *\n * - POST `/bridge/create` → `create`\n * - GET `/bridge/list` → `list` (Public)\n * - GET `/bridge/:bridgeId` → `get` (Public)\n * - POST `/bridge/:bridgeId/port` → `port`\n * - POST `/bridge/:bridgeId/return` → `return`\n * - GET `/bridge/:bridgeId/status/:claimId` → `getStatus` (Public)\n * - GET `/bridge/:bridgeId/supply` → `getSupply` (Public)\n * - GET `/bridge/:bridgeId/claims` → `listClaims` (Public)\n *\n * Operator-only routes (PATCH `/rules`, POST `/pause`, POST `/close`) are\n * intentionally not surfaced — those flip the cross-cluster state of a\n * live bridge and belong in governance tooling, not SDK callers.\n *\n * @example List bridges then port tokens through one\n * ```ts\n * const { bridges } = await client.bridge.list();\n * const port = await client.bridge.port(bridges[0].bridgeId, {\n * fromChain: 'hedera',\n * toChain: 'xrpl',\n * amount: '100',\n * recipient: 'rRecipient...',\n * });\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n CreateBridgeRequest,\n CreateBridgeResponse,\n BridgeConfig,\n ListBridgesOptions,\n ListBridgesResponse,\n PortRequest,\n ReturnRequest,\n PortResult,\n BridgeClaimRecord,\n BridgeSupply,\n ListClaimsOptions,\n ListClaimsResponse,\n} from './bridge-types';\n\nexport class BridgeClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Create a new bridge instance — triggers DKG + TSS entity creation server-side. */\n async create(request: CreateBridgeRequest): Promise<CreateBridgeResponse> {\n return this.http.post('/bridge/create', request);\n }\n\n /** List bridges. Both filters are optional. */\n async list(options?: ListBridgesOptions): Promise<ListBridgesResponse> {\n const params = new URLSearchParams();\n if (options?.status) params.append('status', options.status);\n if (options?.sourceChain) params.append('sourceChain', options.sourceChain);\n const qs = params.toString();\n return this.http.get(`/bridge/list${qs ? `?${qs}` : ''}`);\n }\n\n /** Get bridge configuration. */\n async get(bridgeId: string): Promise<BridgeConfig> {\n return this.http.get(`/bridge/${encodePathParam(bridgeId)}`);\n }\n\n /** Port tokens from source → destination. */\n async port(bridgeId: string, request: PortRequest): Promise<PortResult> {\n return this.http.post(`/bridge/${encodePathParam(bridgeId)}/port`, request);\n }\n\n /**\n * Return tokens from destination → source. Only meaningful on two-way\n * bridges; the validator rejects the call on one-way bridges with a 400.\n *\n * Method name is `return_` to avoid colliding with the reserved JS\n * keyword in some downstream codegen. Prefer `client.bridge.return(...)`\n * via the named alias below.\n */\n async return(bridgeId: string, request: ReturnRequest): Promise<PortResult> {\n return this.http.post(`/bridge/${encodePathParam(bridgeId)}/return`, request);\n }\n\n /** Get claim status by claim ID under a given bridge. */\n async getStatus(bridgeId: string, claimId: string): Promise<BridgeClaimRecord> {\n return this.http.get(\n `/bridge/${encodePathParam(bridgeId)}/status/${encodePathParam(claimId)}`,\n );\n }\n\n /** Get aggregate supply view for a bridge. */\n async getSupply(bridgeId: string): Promise<BridgeSupply> {\n return this.http.get(`/bridge/${encodePathParam(bridgeId)}/supply`);\n }\n\n /** List bridge claims with optional pagination. */\n async listClaims(\n bridgeId: string,\n options?: ListClaimsOptions,\n ): Promise<ListClaimsResponse> {\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.append('limit', String(options.limit));\n if (options?.offset !== undefined) params.append('offset', String(options.offset));\n const qs = params.toString();\n return this.http.get(\n `/bridge/${encodePathParam(bridgeId)}/claims${qs ? `?${qs}` : ''}`,\n );\n }\n}\n","/**\n * Resources Sub-Client.\n *\n * Mounted on `client.resources`. Wraps the validator resources routes:\n *\n * - GET `/resources/summary` → `getSummary`\n * - GET `/resources/consumption/:appId` → `getConsumption`\n * - GET `/resources/consumption/:appId/history` → `getHistory`\n * - GET `/resources/consumption/:appId/ledger` → `getLedger`\n * - GET `/resources/consumption/:appId/status` → `getStatus`\n * - GET `/resources/consumption/:appId/breakdown` → `getBreakdown`\n * - GET `/resources/nodes` → `listNodes`\n * - GET `/resources/nodes/:nodeId` → `getNode`\n *\n * The two resource controllers (`ResourcesController` here +\n * `ResourceController` in `monitoring/`) are kept separate because they\n * serve different audiences; this wrapper exposes the smart-app facing\n * surface only.\n *\n * @example Inspect today's consumption for a smart-app\n * ```ts\n * const summary = await client.resources.getConsumption('app_abc');\n * console.log(`${summary.requests} requests, ${summary.storageMb} MB storage today`);\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n ResourceSummaryResponse,\n ResourceConsumptionResponse,\n ResourceHistoryResponse,\n ResourceLedgerResponse,\n ResourceStatusResponse,\n ResourceBreakdownResponse,\n ResourceNodesResponse,\n ResourceNodeResponse,\n ResourceLedgerOptions,\n ResourceBreakdownOptions,\n} from './resources-types';\n\nexport class ResourcesClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Network-wide consumption summary across all nodes. */\n async getSummary(): Promise<ResourceSummaryResponse> {\n return this.http.get('/resources/summary');\n }\n\n /** Current-day consumption breakdown for an app. */\n async getConsumption(appId: string): Promise<ResourceConsumptionResponse> {\n return this.http.get(`/resources/consumption/${encodePathParam(appId)}`);\n }\n\n /** Daily usage history from the persistent store. `days` defaults to 30 server-side. */\n async getHistory(appId: string, days?: number): Promise<ResourceHistoryResponse> {\n const qs = days !== undefined ? `?days=${days}` : '';\n return this.http.get(\n `/resources/consumption/${encodePathParam(appId)}/history${qs}`,\n );\n }\n\n /** Paginated billing ledger. All filters optional. */\n async getLedger(\n appId: string,\n options?: ResourceLedgerOptions,\n ): Promise<ResourceLedgerResponse> {\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.append('limit', String(options.limit));\n if (options?.offset !== undefined) params.append('offset', String(options.offset));\n if (options?.since) params.append('since', options.since);\n if (options?.until) params.append('until', options.until);\n if (options?.category) params.append('category', options.category);\n const qs = params.toString();\n return this.http.get(\n `/resources/consumption/${encodePathParam(appId)}/ledger${qs ? `?${qs}` : ''}`,\n );\n }\n\n /**\n * Current consumption status with threshold warnings and upgrade hints.\n * `dailyLimit` overrides the per-app tier default and is rare —\n * smart-app callers should leave it unset.\n */\n async getStatus(appId: string, dailyLimit?: number): Promise<ResourceStatusResponse> {\n const qs = dailyLimit !== undefined ? `?dailyLimit=${dailyLimit}` : '';\n return this.http.get(\n `/resources/consumption/${encodePathParam(appId)}/status${qs}`,\n );\n }\n\n /** Consumption aggregated by category over the supplied window. */\n async getBreakdown(\n appId: string,\n options?: ResourceBreakdownOptions,\n ): Promise<ResourceBreakdownResponse> {\n const params = new URLSearchParams();\n if (options?.since) params.append('since', options.since);\n if (options?.until) params.append('until', options.until);\n const qs = params.toString();\n return this.http.get(\n `/resources/consumption/${encodePathParam(appId)}/breakdown${qs ? `?${qs}` : ''}`,\n );\n }\n\n /** Per-node consumption reports. */\n async listNodes(): Promise<ResourceNodesResponse> {\n return this.http.get('/resources/nodes');\n }\n\n /** Single node's report. */\n async getNode(nodeId: string): Promise<ResourceNodeResponse> {\n return this.http.get(`/resources/nodes/${encodePathParam(nodeId)}`);\n }\n}\n","/**\n * Envelope Sub-Client.\n *\n * Mounted on `client.envelope`. Wraps the validator envelope routes:\n *\n * - POST `/envelope/encrypt` → `encrypt`\n * - POST `/envelope/decrypt` → `decrypt`\n *\n * The cluster master KEK and the derived per-app KEK NEVER cross the HTTP\n * boundary. Only the envelope (ciphertext + nonce + tag + metadata) is\n * persisted client-side; the validator handles all key material.\n *\n * @example Seal a tenant secret + recover it later\n * ```ts\n * const sealed = await client.envelope.encrypt({\n * appId: 'app_abc',\n * plaintext: 'super-secret-api-key',\n * });\n *\n * const opened = await client.envelope.decrypt({\n * appId: 'app_abc',\n * envelope: sealed.envelope,\n * });\n * ```\n */\nimport type { HttpClient } from '../http';\nimport type {\n EncryptRequest,\n EncryptResponse,\n DecryptRequest,\n DecryptResponse,\n} from './envelope-types';\n\nexport class EnvelopeClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Seal `plaintext` under the per-app KEK for `appId` at `kekVersion`.\n * Returns the canonical envelope shape suitable for persistence in\n * Mongo / NATS / on the EventBus.\n */\n async encrypt(request: EncryptRequest): Promise<EncryptResponse> {\n return this.http.post('/envelope/encrypt', request);\n }\n\n /**\n * Open `envelope` for `appId`. The plaintext is returned in the response\n * body — callers MUST treat it as ephemeral (no logs, no Mongo, no\n * NATS broadcast). The validator never persists or replays it.\n */\n async decrypt(request: DecryptRequest): Promise<DecryptResponse> {\n return this.http.post('/envelope/decrypt', request);\n }\n}\n","/**\n * Tokens (Migration) Sub-Client.\n *\n * Mounted on `client.tokens`. Wraps the validator's token-migration routes:\n *\n * - POST `/tokens/migrate` → `migrate`\n * - GET `/tokens/migrations` → `listMigrations`\n * - GET `/tokens/migrations/:id` → `getMigration`\n * - GET `/tokens/:tokenId/migrations` → `getMigrationsForToken`\n *\n * For per-token details, use `client.getTokenInfo(chain, tokenId)`.\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n TokenMigrationRequest,\n TokenMigrationResponse,\n TokenMigrationStatus,\n ListMigrationsResponse,\n TokenMigrationsForTokenResponse,\n} from './tokens-types';\n\nexport class TokensClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Initiate a token migration to TSS-controlled keys. */\n async migrate(request: TokenMigrationRequest): Promise<TokenMigrationResponse> {\n return this.http.post('/tokens/migrate', request);\n }\n\n /** List all known migrations on this validator. */\n async listMigrations(): Promise<ListMigrationsResponse> {\n return this.http.get('/tokens/migrations');\n }\n\n /**\n * Get one migration's status by id. The server returns\n * `{ error: string }` (NOT a 404) when the migration is unknown, so the\n * union type makes the failure mode explicit.\n */\n async getMigration(\n migrationId: string,\n ): Promise<TokenMigrationStatus | { error: string }> {\n return this.http.get(`/tokens/migrations/${encodePathParam(migrationId)}`);\n }\n\n /** All migrations recorded against a specific token id. */\n async getMigrationsForToken(\n tokenId: string,\n ): Promise<TokenMigrationsForTokenResponse> {\n return this.http.get(`/tokens/${encodePathParam(tokenId)}/migrations`);\n }\n}\n","/**\n * Operator Funding Sub-Client.\n *\n * Mounted on `client.operator`. Wraps the validator operator-funding routes:\n *\n * - GET `/operator/balance/:chain/:accountId` → `getBalance`\n * - GET `/operator/topup/:chain/:accountId` → `getTopup`\n *\n * Both endpoints are `@Public()` server-side — no auth required.\n *\n * @example Check operator funding before submitting a chain op\n * ```ts\n * const balance = await client.operator.getBalance('hedera', '0.0.12345');\n * const topup = await client.operator.getTopup('hedera', '0.0.12345');\n * if (topup.status !== 'healthy') {\n * console.warn(`Operator needs top-up: recommended=${topup.recommendedBalance}`);\n * }\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n OperatorChain,\n OperatorBalanceResponse,\n OperatorTopUpResponse,\n} from './operator-types';\n\nexport class OperatorClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Get the on-chain HBAR + token balance of an operator account. */\n async getBalance(\n chain: OperatorChain,\n accountId: string,\n ): Promise<OperatorBalanceResponse> {\n return this.http.get(\n `/operator/balance/${encodePathParam(chain)}/${encodePathParam(accountId)}`,\n );\n }\n\n /** Get top-up guidance for an operator account (recommended balance + status). */\n async getTopup(\n chain: OperatorChain,\n accountId: string,\n ): Promise<OperatorTopUpResponse> {\n return this.http.get(\n `/operator/topup/${encodePathParam(chain)}/${encodePathParam(accountId)}`,\n );\n }\n}\n","import {\n CreateAccountRequestSchema,\n CreateAccountRequest,\n CreateAccountResponse,\n TransferRequestSchema,\n TransferRequest,\n TransferResponse,\n CreateTokenRequestSchema,\n CreateTokenRequest,\n CreateTokenResponse,\n MintTokenRequestSchema,\n MintTokenRequest,\n BurnTokenRequestSchema,\n BurnTokenRequest,\n TokenActionRequestSchema,\n TokenActionRequest,\n ActionResult,\n AccountBalance,\n AccountInfo,\n Transaction,\n TokenInfo,\n ChainType,\n} from './_vendor';\nimport { type CircuitBreakerSnapshot } from './_vendor';\nimport {\n ValidatorDiscoveryClient,\n ValidatorInfo,\n DiscoveryClient,\n} from './discovery';\nimport { ValidatorAuthClient, AuthChain, AuthenticateResponse } from './auth';\nimport { createHttpClient, encodePathParam, type HttpClient } from './http';\n\n// Sub-client imports — public API only (for third-party smart-app developers)\nimport { SubscriptionClient } from './subscription';\nimport { FaucetClient } from './faucet';\nimport { TSSClient } from './tss';\nimport { IPFSClient } from './ipfs';\nimport {\n TransactionsClient,\n HederaTransactionsClient,\n XrplTransactionsClient,\n SolanaTransactionsClient,\n PolkadotTransactionsClient,\n} from './transactions';\nimport { SnapshotsClient } from './snapshots';\nimport { HistoricalBalanceClient } from './historical-balance';\nimport { SettlementClient } from './settlement';\nimport { GovernanceClient } from './governance';\nimport { DaoClient } from './dao';\nimport { PersonhoodClient } from './personhood';\nimport { AgentsClient } from './baas/agents';\nimport { DeploymentClient } from './baas/deployment';\nimport { BridgeClient } from './bridge';\nimport { ResourcesClient } from './resources';\nimport { EnvelopeClient } from './envelope';\nimport { TokensClient } from './tokens';\nimport { OperatorClient } from './operator';\n\n/**\n * Smart Engine Client Configuration.\n *\n * TYPE-FENCE (SDK 4.0): `SmartEngineClient` is the IN-CLUSTER / VALIDATOR-DIRECT\n * profile. It targets the validator's RAW tier (`/api/v3/{transactions,tss,\n * faucet,tokens,...}`), which is un-ingressed at the public gateway — calling it\n * with a gateway origin 404s. To make that footgun structurally impossible the\n * config requires an EXPLICIT `validatorBaseUrl` (not a generic `baseUrl`): the\n * caller must consciously hand over a validator origin, never a gateway URL that\n * happened to flow out of cluster discovery. App-as-proxy / external consumers\n * must use {@link BaasClient} instead (host BaaS tier).\n */\nexport interface SmartEngineClientConfig {\n /**\n * VALIDATOR API base URL (the in-cluster validator origin — NOT a gateway).\n * The raw `/api/v3/*` tier is reachable only here; a gateway URL will 404.\n */\n validatorBaseUrl: string;\n /** API key for authenticated requests */\n apiKey?: string;\n /** Session token from validator auth */\n authToken?: string;\n /** Request timeout in milliseconds */\n timeout?: number;\n /** Allow HTTP (insecure) connections - only for local development */\n allowInsecure?: boolean;\n}\n\n/**\n * Network connection configuration for auto-discovery\n */\nexport interface NetworkConnectionConfig {\n /** Hedera network (mainnet, testnet, previewnet) */\n network: 'mainnet' | 'testnet' | 'previewnet';\n /** HCS topic ID for validator registry */\n registryTopicId: string;\n /** Blockchain type for authentication */\n chain: AuthChain;\n /** Wallet address for authentication */\n address: string;\n /** Public key (hex encoded) */\n publicKey: string;\n /** Function to sign the challenge */\n signFn: (challenge: string) => string | Promise<string>;\n /** Optional metadata for authentication */\n metadata?: {\n appId?: string;\n appName?: string;\n };\n /** Custom mirror node URL */\n mirrorNodeUrl?: string;\n /** Allow HTTP (insecure) connections - only for local development */\n allowInsecure?: boolean;\n}\n\n/**\n * Connection result from connectToNetwork\n */\nexport interface NetworkConnectionResult {\n /** Configured client ready to use */\n client: SmartEngineClient;\n /** Validator that was connected to */\n validator: ValidatorInfo;\n /** Authentication session */\n session: AuthenticateResponse;\n}\n\n/**\n * Smart Engine Client — IN-CLUSTER / VALIDATOR-DIRECT profile.\n *\n * Unified, type-safe client for interacting with Smart Engines validators over\n * the RAW tier (`/api/v3/{transactions,tss,faucet,tokens,...}`).\n *\n * **TYPE-FENCE (SDK 4.0):** this client is constructible ONLY with an explicit\n * validator origin ({@link SmartEngineClientConfig.validatorBaseUrl}). The raw\n * `/api/v3/*` tier is un-ingressed at the public gateway, so pointing this\n * client at a gateway URL 404s — that footgun is removed by requiring a\n * conscious validator origin and by NOT shipping a gateway-discovery factory on\n * this client. External / app-as-proxy consumers must use `BaasClient` (the\n * host BaaS tier at `{gateway}/host/api/v3/baas/*`) instead. The only\n * auto-discovery path here ({@link connectToNetwork}) resolves a real validator\n * `apiEndpoint` from the HCS registry, never a gateway URL.\n *\n * Supports direct connection or HCS-registry auto-discovery.\n *\n * Sub-clients for third-party app developers:\n * - `client.subscription` — Application subscription management\n * - `client.tss` — Threshold Signature Scheme (chain-agnostic MPC)\n * - `client.ipfs` — Decentralized file storage\n * - `client.transactions` — Transaction sovereignty (prepare-sign-submit) — **chain-agnostic**\n *\n * Chain-namespaced advanced sub-clients (escape hatches with no multi-chain analog):\n * - `client.hedera` — HCS topics, KYC compliance, HTS wipe\n * - `client.xrpl` — Trust lines\n * - `client.solana` — Token close-account\n * - `client.polkadot` — Asset setTeam/setMetadata\n *\n * @example Direct connection (explicit validator origin)\n * ```typescript\n * const client = new SmartEngineClient({\n * validatorBaseUrl: 'https://validator.example.com', // a VALIDATOR origin, never a gateway\n * apiKey: 'your-api-key',\n * });\n * ```\n *\n * @example Auto-discovery with authentication\n * ```typescript\n * const { client, validator, session } = await SmartEngineClient.connectToNetwork({\n * network: 'testnet',\n * registryTopicId: '0.0.123456',\n * chain: 'hedera',\n * address: '0.0.789',\n * publicKey: 'your-public-key-hex',\n * signFn: (challenge) => privateKey.sign(Buffer.from(challenge)).toString('hex'),\n * });\n *\n * // Use sub-clients\n * const result = await client.tss.signMPC({\n * chain: 'hedera',\n * entityId: 'entity-123',\n * transactionBytes: '0x...',\n * });\n * ```\n */\nexport class SmartEngineClient {\n private baseUrl: string;\n private allowInsecure: boolean;\n private readonly http: HttpClient;\n /** Separate HTTP client for /api/v3/transactions */\n private readonly txHttp: HttpClient;\n /** Last HTTP error (for getHttpHealth) */\n private lastHttpError?: Error;\n\n // ========== Sub-Clients ==========\n\n /** Application subscription management */\n public readonly subscription: SubscriptionClient;\n /** Testnet HST faucet (challenge -> sign -> dispense) */\n public readonly faucet: FaucetClient;\n /** Threshold Signature Scheme — chain-agnostic MPC operations */\n public readonly tss: TSSClient;\n /** IPFS decentralized file storage */\n public readonly ipfs: IPFSClient;\n /** Transaction preparation for local signing (sovereignty model) — chain-agnostic */\n public readonly transactions: TransactionsClient;\n /** Hedera-specific transaction preparation (HCS topics, KYC, wipe) */\n public readonly hedera: HederaTransactionsClient;\n /** XRPL-specific transaction preparation (trust lines) */\n public readonly xrpl: XrplTransactionsClient;\n /** Solana-specific transaction preparation (close-account) */\n public readonly solana: SolanaTransactionsClient;\n /** Polkadot-specific transaction preparation (asset setTeam/setMetadata) */\n public readonly polkadot: PolkadotTransactionsClient;\n /** Token holder snapshot generation and retrieval */\n public readonly snapshots: SnapshotsClient;\n /** Historical balance archive reads (chain-native bigint, returned as decimal string) */\n public readonly historicalBalance: HistoricalBalanceClient;\n /** Cross-chain settlement operations */\n public readonly settlement: SettlementClient;\n /** Governance proposal dry-run (simulate-only) */\n public readonly governance: GovernanceClient;\n /** DAO governance — DAOs, proposals, votes, treasury, members, dashboard */\n public readonly dao: DaoClient;\n /** Personhood verification (HPP one-human-one-member) */\n public readonly personhood: PersonhoodClient;\n /** BaaS smart-agent lifecycle (register/fund/trade/withdraw/pause/resume/revoke/...) */\n public readonly agents: AgentsClient;\n /** BaaS smart-app deployment lifecycle (init/uploadFrontend/deploy/rollback/status/...) */\n public readonly deployments: DeploymentClient;\n /** Universal Token Bridge — port/return/claim across chains */\n public readonly bridge: BridgeClient;\n /** Network + per-app resource consumption (summary, history, ledger, nodes) */\n public readonly resources: ResourcesClient;\n /** AES-256-GCM envelope encrypt/decrypt under the TSS-backed master KEK */\n public readonly envelope: EnvelopeClient;\n /** Token migration — move existing tokens to TSS-controlled keys */\n public readonly tokens: TokensClient;\n /** Operator account funding helpers (balance + top-up guidance) */\n public readonly operator: OperatorClient;\n /** Discovery endpoints — cluster registry + platform-image manifests */\n public readonly discovery: DiscoveryClient;\n\n constructor(config: SmartEngineClientConfig) {\n this.allowInsecure = config.allowInsecure ?? false;\n this.baseUrl = validateClientUrl(config.validatorBaseUrl, this.allowInsecure);\n\n // Create shared HTTP client for /api/v3 endpoints\n this.http = createHttpClient({\n baseUrl: `${this.baseUrl}/api/v3`,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n });\n\n // Create separate HTTP client for /api/v3/transactions\n this.txHttp = createHttpClient({\n baseUrl: `${this.baseUrl}/api/v3/transactions`,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n });\n\n // Initialize sub-clients\n this.subscription = new SubscriptionClient(this.http);\n this.faucet = new FaucetClient(this.http);\n this.tss = new TSSClient(this.http);\n this.ipfs = new IPFSClient(this.http);\n this.transactions = new TransactionsClient(this.txHttp);\n // Pass `this.http` (rooted at `/api/v3`) as the second arg so\n // `client.hedera.tss.*` reaches `/api/v3/hedera/tss/*` — the prepare paths\n // continue to use `this.txHttp` (rooted at `/api/v3/transactions`).\n this.hedera = new HederaTransactionsClient(this.txHttp, this.http);\n this.xrpl = new XrplTransactionsClient(this.txHttp);\n this.solana = new SolanaTransactionsClient(this.txHttp);\n this.polkadot = new PolkadotTransactionsClient(this.txHttp);\n this.snapshots = new SnapshotsClient(this.http);\n this.historicalBalance = HistoricalBalanceClient.fromHttp(this.http);\n this.settlement = new SettlementClient(this.http);\n this.governance = new GovernanceClient(this.http);\n this.dao = new DaoClient(this.http);\n this.personhood = new PersonhoodClient(this.http);\n // BaaS sub-clients — they call fully-qualified `/api/v3/baas/<x>` (host) and\n // `/api/v3/smart-apps/<x>` (validator) paths directly, so they need an HTTP\n // client rooted at the bare `baseUrl` (NO `/api/v3` suffix — the suffix is\n // already baked into each method's path). Reuse of `txHttp` is wrong because\n // its base is `${baseUrl}/api/v3/transactions`. Build a fresh, root-scoped\n // client just for these.\n const rootHttp = createHttpClient({\n baseUrl: this.baseUrl,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n });\n this.agents = new AgentsClient(rootHttp);\n this.deployments = new DeploymentClient(rootHttp);\n this.bridge = new BridgeClient(this.http);\n this.resources = new ResourcesClient(this.http);\n this.envelope = new EnvelopeClient(this.http);\n this.tokens = new TokensClient(this.http);\n this.operator = new OperatorClient(this.http);\n this.discovery = new DiscoveryClient(this.http);\n }\n\n /**\n * Build a `SmartEngineClient` from a plain env object. Reads:\n * - `VALIDATOR_URL` (required) — gateway/validator base URL\n * - `VALIDATOR_API_KEY` (optional) — API key for authenticated calls\n * - `APP_TOKEN` (optional) — session JWT from prior auth\n * - `ALLOW_INSECURE` (optional, `'true'`) — only for local dev\n * - `REQUEST_TIMEOUT` (optional, ms)\n *\n * Throws if `VALIDATOR_URL` is missing or invalid. Designed for BaaS\n * scheduled functions: `const client = SmartEngineClient.fromEnv(ctx.env)`.\n */\n static fromEnv(env: Record<string, string | undefined>): SmartEngineClient {\n const baseUrl = env['VALIDATOR_URL'];\n if (!baseUrl) {\n throw new SmartEngineError('VALIDATOR_URL is required to build a SmartEngineClient', 500);\n }\n const timeoutRaw = env['REQUEST_TIMEOUT'];\n const timeout = timeoutRaw ? Number.parseInt(timeoutRaw, 10) : undefined;\n return new SmartEngineClient({\n validatorBaseUrl: baseUrl,\n apiKey: env['VALIDATOR_API_KEY'],\n authToken: env['APP_TOKEN'],\n allowInsecure: env['ALLOW_INSECURE'] === 'true',\n timeout: Number.isFinite(timeout) ? timeout : undefined,\n });\n }\n\n /**\n * Connect to the smart-engines network with auto-discovery and authentication.\n *\n * Steps:\n * 1. Discovers validators via the HCS registry topic.\n * 2. Selects a random validator with an API endpoint.\n * 3. Authenticates with Web3-style challenge-response.\n * 4. Returns a configured client ready to use.\n *\n * @param config - Network, registry topic, and auth signer config.\n * @returns The configured client, the chosen validator, and the auth session.\n * @throws SmartEngineError 503 if no validator with an API endpoint is found.\n */\n static async connectToNetwork(config: NetworkConnectionConfig): Promise<NetworkConnectionResult> {\n const allowInsecure = config.allowInsecure ?? false;\n\n // Step 1: Discover validators\n const discovery = new ValidatorDiscoveryClient({\n network: config.network,\n registryTopicId: config.registryTopicId,\n mirrorNodeUrl: config.mirrorNodeUrl,\n });\n\n const validator = await discovery.getRandomValidator();\n\n if (!validator || !validator.networkEndpoints?.apiEndpoint) {\n throw new SmartEngineError(\n 'No validators available. Check registry topic and network configuration.',\n 503\n );\n }\n\n const validatorUrl = validator.networkEndpoints.apiEndpoint;\n validateClientUrl(validatorUrl, allowInsecure);\n\n // Step 2: Authenticate\n const auth = new ValidatorAuthClient({\n security: { allowInsecure },\n });\n const session = await auth.authenticateWithSigner(\n validatorUrl,\n config.chain,\n config.address,\n config.publicKey,\n config.signFn,\n config.metadata\n );\n\n // Step 3: Create client with auth token. `validatorUrl` is the validator's\n // own `apiEndpoint` resolved from the HCS registry — a validator origin, NOT\n // a gateway URL — so it satisfies the validator-origin type-fence.\n const client = new SmartEngineClient({\n validatorBaseUrl: validatorUrl,\n authToken: session.token,\n allowInsecure,\n });\n\n return { client, validator, session };\n }\n\n // NOTE (SDK 4.0 type-fence): the former `SmartEngineClient.connectToCluster`\n // was REMOVED. It resolved a cluster's `gatewayUrl` and fed it into\n // `new SmartEngineClient({ baseUrl: gatewayUrl })` — a gateway-pointed\n // validator-direct client whose raw `/api/v3/*` calls 404 (the raw tier is\n // un-ingressed at the gateway). That was the footgun. To reach web3 through a\n // cluster use `BaasClient.connectToCluster({ network })` (the host BaaS tier);\n // for an explicit in-cluster validator origin use `new SmartEngineClient({\n // validatorBaseUrl })` or `connectToNetwork` (which resolves a real validator\n // `apiEndpoint` from the HCS registry, never a gateway URL).\n\n /** Get the current validator URL */\n getBaseUrl(): string {\n return this.baseUrl;\n }\n\n /** Check if client has an auth token */\n isAuthenticated(): boolean {\n return this.http.getAuthToken() !== undefined;\n }\n\n /**\n * Get HTTP resilience health information\n * @returns Object with circuit breaker state and last error (if any)\n */\n getHttpHealth(): { breaker: CircuitBreakerSnapshot | null; lastError?: Error } {\n // Note: In a real implementation, we would get the circuit breaker state\n // from the resilient HTTP layer. For now, return null since the base\n // HTTP client doesn't expose it yet.\n return {\n breaker: null,\n lastError: this.lastHttpError,\n };\n }\n\n // ========== Health & Info ==========\n\n /** Get health status of the validator */\n async getHealth(): Promise<{ status: string; timestamp: string; chains: any[] }> {\n return this.http.get('/health');\n }\n\n /** Get list of supported chains */\n async getSupportedChains(): Promise<{ chains: string[] }> {\n return this.http.get('/chains');\n }\n\n // ========== Account Operations ==========\n\n /** Create a new account on the specified chain */\n async createAccount(request: CreateAccountRequest): Promise<CreateAccountResponse> {\n const validated = CreateAccountRequestSchema.parse(request);\n return this.http.post('/accounts', validated);\n }\n\n /** Get account information */\n async getAccountInfo(chain: string, accountId: string): Promise<AccountInfo> {\n return this.http.get(`/accounts/${encodePathParam(chain)}/${encodePathParam(accountId)}`);\n }\n\n /** Get account balance */\n async getBalance(chain: string, accountId: string): Promise<AccountBalance> {\n return this.http.get(`/accounts/${encodePathParam(chain)}/${encodePathParam(accountId)}/balance`);\n }\n\n // ========== Transaction Operations ==========\n\n /** Execute a transfer transaction */\n async transfer(request: TransferRequest): Promise<TransferResponse> {\n const validated = TransferRequestSchema.parse(request);\n return this.http.post('/transfer', validated);\n }\n\n /** Get transaction details */\n async getTransaction(chain: string, txId: string): Promise<Transaction> {\n return this.http.get(`/transactions/${encodePathParam(chain)}/${encodePathParam(txId)}`);\n }\n\n /** Get transaction receipt */\n async getTransactionReceipt(chain: string, txId: string): Promise<any> {\n return this.http.get(`/transactions/${encodePathParam(chain)}/${encodePathParam(txId)}/receipt`);\n }\n\n // ========== Token Operations ==========\n\n /** Create a new token */\n async createToken(request: CreateTokenRequest): Promise<CreateTokenResponse> {\n const validated = CreateTokenRequestSchema.parse(request);\n return this.http.post('/tokens', validated);\n }\n\n /** Mint tokens */\n async mintToken(request: MintTokenRequest): Promise<any> {\n const validated = MintTokenRequestSchema.parse(request);\n return this.http.post('/tokens/mint', validated);\n }\n\n /**\n * Get token information for a token on the given chain.\n *\n * @param chain - Chain identifier (e.g. `'hedera'`, `'xrpl'`).\n * @param tokenId - Chain-native token identifier.\n * @returns Token metadata and supply information.\n */\n async getTokenInfo(chain: string, tokenId: string): Promise<TokenInfo> {\n return this.http.get(`/tokens/${encodePathParam(chain)}/${encodePathParam(tokenId)}`);\n }\n\n /** Burn tokens to reduce supply */\n async burnToken(request: BurnTokenRequest): Promise<ActionResult> {\n const validated = BurnTokenRequestSchema.parse(request);\n return this.http.post('/tokens/burn', validated);\n }\n\n /** Pause all token operations globally */\n async pauseToken(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n return this.http.post('/tokens/pause', validated);\n }\n\n /** Unpause token operations */\n async unpauseToken(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n return this.http.post('/tokens/unpause', validated);\n }\n\n /** Freeze/restrict an account from transacting the token */\n async restrictAccount(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for restrictAccount', 400);\n }\n return this.http.post('/tokens/restrict', validated);\n }\n\n /** Unfreeze an account */\n async unrestrictAccount(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for unrestrictAccount', 400);\n }\n return this.http.post('/tokens/unrestrict', validated);\n }\n\n /** Grant KYC/compliance approval to an account */\n async enableCompliance(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for enableCompliance', 400);\n }\n return this.http.post('/tokens/compliance/enable', validated);\n }\n\n /** Revoke KYC/compliance approval from an account */\n async disableCompliance(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for disableCompliance', 400);\n }\n return this.http.post('/tokens/compliance/disable', validated);\n }\n\n /** Force remove tokens from an account (compliance action) */\n async wipeFromAccount(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for wipeFromAccount', 400);\n }\n if (!validated.amount) {\n throw new SmartEngineError('amount is required for wipeFromAccount', 400);\n }\n return this.http.post('/tokens/wipe', validated);\n }\n\n // ========== Capabilities Discovery ==========\n\n /** Get capability support matrix for all chains */\n async getAllCapabilities(): Promise<any> {\n return this.http.get('/capabilities');\n }\n\n /** Get capability support for a specific chain */\n async getChainCapabilities(chain: ChainType): Promise<any> {\n return this.http.get(`/capabilities/${encodePathParam(chain)}`);\n }\n\n /** Get comprehensive system status */\n async getSystemStatus(): Promise<any> {\n return this.http.get('/status');\n }\n\n // ========== Messaging Operations ==========\n\n /**\n * Submit a message to consensus.\n *\n * @deprecated Operator-funded message submission is RETIRED on the validator\n * under transaction sovereignty — `POST /api/v3/messages/:chain/:topicId`\n * now returns `403 Forbidden` (the operator must never front the chain fee\n * for a customer-supplied message). Use the payer-funded prepare path\n * instead: prepare a topic-message transaction via\n * `POST /api/transactions/topic/message/prepare`, then have the payer sign\n * and submit the returned bytes.\n */\n async submitMessage(chain: string, topicId: string, message: string): Promise<any> {\n if (message.length > 1024 * 1024) {\n throw new SmartEngineError('Message too large (max 1MB)', 400);\n }\n return this.http.post(`/messages/${encodePathParam(chain)}/${encodePathParam(topicId)}`, {\n message,\n });\n }\n\n // ========== Cluster Operations ==========\n\n /** Get cluster health status */\n async getClusterHealth(): Promise<{\n status: string;\n nodes: number;\n healthy: number;\n unhealthy: number;\n }> {\n return this.http.get('/cluster/health');\n }\n\n /** Get cluster status including node details */\n async getClusterStatus(): Promise<{\n status: string;\n nodeId: string;\n nodes: Array<{\n nodeId: string;\n endpoint: string;\n status: string;\n lastSeen?: string;\n }>;\n quorum: {\n required: number;\n current: number;\n reached: boolean;\n };\n }> {\n return this.http.get('/cluster/status');\n }\n\n // ========== Metrics & Monitoring ==========\n\n /** Get Prometheus-format metrics */\n async getMetrics(): Promise<string> {\n return this.http.get('/metrics');\n }\n\n /** Get queue statistics for monitoring */\n async getQueueStats(): Promise<{\n queues: Record<\n string,\n { pending: number; processing: number; completed: number; failed: number }\n >;\n timestamp: string;\n }> {\n return this.http.get('/monitoring/queue');\n }\n\n /** Get circuit breaker status for all services */\n async getCircuitBreakerStatus(): Promise<{\n breakers: Record<\n string,\n {\n state: 'closed' | 'open' | 'half-open';\n failures: number;\n successes: number;\n lastFailure?: string;\n nextRetry?: string;\n }\n >;\n timestamp: string;\n }> {\n return this.http.get('/monitoring/circuit-breakers');\n }\n\n // ========== Signature Verification ==========\n\n /** Verify an arbitrary signature */\n async verifySignature(request: {\n chain: ChainType;\n message: string;\n signature: string;\n publicKey: string;\n }): Promise<{ valid: boolean; chain: ChainType }> {\n return this.http.post('/auth/verify-signature', request);\n }\n}\n\n/**\n * Custom error class for Smart Engine client\n */\nexport class SmartEngineError extends Error {\n constructor(\n message: string,\n public statusCode: number,\n public details?: any\n ) {\n super(message);\n this.name = 'SmartEngineError';\n }\n}\n\n/**\n * Validate URL and enforce security requirements\n */\nfunction validateClientUrl(url: string, allowInsecure = false): string {\n try {\n const parsed = new URL(url);\n if (!['http:', 'https:'].includes(parsed.protocol)) {\n throw new SmartEngineError(`Invalid protocol: ${parsed.protocol}`, 400);\n }\n if (!allowInsecure && parsed.protocol !== 'https:') {\n throw new SmartEngineError(\n 'HTTPS is required for secure connections. Set allowInsecure=true for local development.',\n 400\n );\n }\n return parsed.origin;\n } catch (error) {\n if (error instanceof SmartEngineError) throw error;\n throw new SmartEngineError(`Invalid URL: ${url}`, 400);\n }\n}\n","/**\n * Routing Sub-Client\n *\n * Manages host registration, routing configuration, and request proxying.\n * Wire shapes mirror the server.\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n RegisterHostRequest,\n RegisterHostResponse,\n HostInfo,\n HostListResponse,\n RoutingConfig,\n ProxyRequest,\n ProxyResponse,\n RoutingStatsResponse,\n MapDomainToAppResponse,\n} from '../types';\n\n/**\n * Routing Sub-Client\n *\n * @example\n * ```typescript\n * await gateway.routing.registerHost({\n * appId: 'my-app',\n * address: '10.0.0.5',\n * port: 3000,\n * });\n *\n * const stats = await gateway.routing.getStats();\n * ```\n */\nexport class RoutingClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Register a new host. The server validates the payload via Zod (appId\n * pattern, IP/hostname format, port range) and kicks off async\n * verification. Response includes the registered host plus a status\n * message about verification.\n */\n async registerHost(request: RegisterHostRequest): Promise<RegisterHostResponse> {\n return this.http.post('/routing/hosts', request);\n }\n\n /** Unregister a host. */\n async unregisterHost(hostId: string): Promise<{ success: boolean; message: string }> {\n return this.http.delete(`/routing/hosts/${encodePathParam(hostId)}`);\n }\n\n /** Get all registered hosts. */\n async getAllHosts(): Promise<HostListResponse> {\n return this.http.get('/routing/hosts');\n }\n\n /** Get only verified hosts. */\n async getVerifiedHosts(): Promise<HostListResponse> {\n return this.http.get('/routing/hosts/verified');\n }\n\n /** Get a specific host by ID. */\n async getHost(hostId: string): Promise<HostInfo> {\n return this.http.get(`/routing/hosts/${encodePathParam(hostId)}`);\n }\n\n /** Trigger host re-verification. */\n async verifyHost(\n hostId: string,\n ): Promise<{\n success: boolean;\n hostId: string;\n verified: boolean;\n attestationScore?: number;\n message: string;\n }> {\n return this.http.post(`/routing/hosts/${encodePathParam(hostId)}/verify`, {});\n }\n\n /** Set routing configuration for an app. */\n async setRoutingConfig(\n appId: string,\n config: RoutingConfig,\n ): Promise<{ success: boolean; appId: string; message: string }> {\n return this.http.put(`/routing/config/${encodePathParam(appId)}`, config);\n }\n\n /** Get routing configuration for an app. */\n async getRoutingConfig(appId: string): Promise<RoutingConfig> {\n return this.http.get(`/routing/config/${encodePathParam(appId)}`);\n }\n\n /** Proxy a request through the gateway. */\n async proxyRequest(request: ProxyRequest): Promise<ProxyResponse> {\n return this.http.post('/routing/proxy', request);\n }\n\n /** Get routing statistics. */\n async getStats(): Promise<RoutingStatsResponse> {\n return this.http.get('/routing/stats');\n }\n\n /**\n * Map a domain/subdomain to an application for hostname-based routing.\n * The server returns `{ domain, appId, message }` — there is no `success`\n * field; treat `appId` as the success signal.\n */\n async mapDomainToApp(domain: string, appId: string): Promise<MapDomainToAppResponse> {\n return this.http.post(`/routing/domains/${encodePathParam(domain)}/map`, { appId });\n }\n}\n","/**\n * Domains Sub-Client\n *\n * Manages domain registration, verification, DNS configuration, and transfers.\n * Wire shapes mirror the server.\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n DomainRegistrationRequest,\n DomainInfo,\n DomainListResponse,\n DomainAvailabilityResponse,\n VerificationMethod,\n VerificationTokenResponse,\n VerificationResult,\n DnsRecord,\n DomainTransferRequest,\n} from '../types';\n\n/**\n * Domains Sub-Client\n *\n * @example\n * ```typescript\n * const domain = await gateway.domains.register({ domain: 'myapp.example.com', owner: '0.0.123' });\n *\n * const token = await gateway.domains.generateVerificationToken('myapp.example.com', 'dns-txt');\n * const result = await gateway.domains.verifyOwnership('myapp.example.com', token.token);\n * ```\n */\nexport class DomainsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Register a new domain */\n async register(request: DomainRegistrationRequest): Promise<DomainInfo> {\n return this.http.post('/domains', request);\n }\n\n /** Check domain availability */\n async checkAvailability(domain: string): Promise<DomainAvailabilityResponse> {\n return this.http.get(`/domains/check/${encodePathParam(domain)}`);\n }\n\n /** Get domain information */\n async getInfo(domain: string): Promise<DomainInfo> {\n return this.http.get(`/domains/${encodePathParam(domain)}`);\n }\n\n /** List domains, optionally filtered by owner */\n async list(owner?: string): Promise<DomainListResponse> {\n const params = owner ? `?owner=${encodeURIComponent(owner)}` : '';\n return this.http.get(`/domains${params}`);\n }\n\n /**\n * Generate a verification token. Server accepts one of `dns-txt`,\n * `dns-cname`, `http-file`, `email`.\n */\n async generateVerificationToken(\n domain: string,\n method: VerificationMethod,\n ): Promise<VerificationTokenResponse> {\n return this.http.post(`/domains/${encodePathParam(domain)}/verification`, { method });\n }\n\n /** Verify domain ownership */\n async verifyOwnership(domain: string, token: string): Promise<VerificationResult> {\n return this.http.post(`/domains/${encodePathParam(domain)}/verify`, { token });\n }\n\n /** Configure DNS records for a domain */\n async configureDns(\n domain: string,\n records: DnsRecord[],\n ): Promise<{ success: boolean; records: DnsRecord[] }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/dns`, { records });\n }\n\n /** Enable DNSSEC for a domain */\n async enableDnssec(domain: string): Promise<{ success: boolean; message: string }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/dnssec/enable`, {});\n }\n\n /** Disable DNSSEC for a domain */\n async disableDnssec(domain: string): Promise<{ success: boolean; message: string }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/dnssec/disable`, {});\n }\n\n /** Renew a domain */\n async renew(domain: string, years?: number): Promise<DomainInfo> {\n return this.http.post(`/domains/${encodePathParam(domain)}/renew`, { years: years ?? 1 });\n }\n\n /** Initiate a domain transfer */\n async transfer(\n domain: string,\n request: DomainTransferRequest,\n ): Promise<{ success: boolean; message: string }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/transfer`, request);\n }\n\n /** Approve a pending domain transfer */\n async approveTransfer(domain: string): Promise<{ success: boolean }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/transfer/approve`, {});\n }\n\n /** Reject a pending domain transfer */\n async rejectTransfer(domain: string): Promise<{ success: boolean }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/transfer/reject`, {});\n }\n\n /** Suspend a domain */\n async suspend(domain: string, reason: string): Promise<{ success: boolean }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/suspend`, { reason });\n }\n\n /** Unsuspend a domain */\n async unsuspend(domain: string): Promise<{ success: boolean }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/unsuspend`, {});\n }\n}\n","/**\n * DNS Sub-Client\n *\n * Manages DNS resolution, zone management, and DNSSEC.\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n DnsResolveResponse,\n DnsBatchQuery,\n DnsBatchResolveResponse,\n DnsZone,\n DnsZoneListResponse,\n DnsRecord,\n DnsRecordInfo,\n DnssecKey,\n DnssecDsRecord,\n} from '../types';\n\n/**\n * DNS Sub-Client\n *\n * @example\n * ```typescript\n * // Resolve a name\n * const result = await gateway.dns.resolve('myapp.example.com', 'A');\n *\n * // Manage zones\n * const zones = await gateway.dns.listZones();\n * ```\n */\nexport class DnsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Resolve a DNS name */\n async resolve(name: string, type?: string, dnssec?: boolean): Promise<DnsResolveResponse> {\n const params = new URLSearchParams({ name });\n if (type) params.set('type', type);\n if (dnssec !== undefined) params.set('dnssec', String(dnssec));\n return this.http.get(`/dns/resolve?${params.toString()}`);\n }\n\n /** Batch resolve multiple DNS queries */\n async resolveBatch(queries: DnsBatchQuery[]): Promise<DnsBatchResolveResponse> {\n return this.http.post('/dns/resolve/batch', { queries });\n }\n\n /** List all DNS zones */\n async listZones(): Promise<DnsZoneListResponse> {\n return this.http.get('/dns/zones');\n }\n\n /** Get a specific zone */\n async getZone(zoneName: string): Promise<DnsZone & { records: DnsRecordInfo[] }> {\n return this.http.get(`/dns/zones/${encodePathParam(zoneName)}`);\n }\n\n /** Create a new DNS zone */\n async createZone(request: { zoneName: string; description?: string }): Promise<DnsZone> {\n return this.http.post('/dns/zones', request);\n }\n\n /** Delete a DNS zone */\n async deleteZone(zoneName: string): Promise<{ success: boolean }> {\n return this.http.delete(`/dns/zones/${encodePathParam(zoneName)}`);\n }\n\n /** Add a record to a zone */\n async addRecord(zoneName: string, record: DnsRecord): Promise<DnsRecordInfo> {\n return this.http.post(`/dns/zones/${encodePathParam(zoneName)}/records`, record);\n }\n\n /** Update a record in a zone */\n async updateRecord(\n zoneName: string,\n recordId: string,\n updates: Partial<DnsRecord>\n ): Promise<DnsRecordInfo> {\n return this.http.put(\n `/dns/zones/${encodePathParam(zoneName)}/records/${encodePathParam(recordId)}`,\n updates\n );\n }\n\n /** Delete a record from a zone */\n async deleteRecord(zoneName: string, recordId: string): Promise<{ success: boolean }> {\n return this.http.delete(\n `/dns/zones/${encodePathParam(zoneName)}/records/${encodePathParam(recordId)}`\n );\n }\n\n /** Generate DNSSEC keys for a zone */\n async generateDnssecKeys(\n zoneName: string,\n algorithm?: string\n ): Promise<{ keys: DnssecKey[] }> {\n return this.http.post(`/dns/zones/${encodePathParam(zoneName)}/dnssec/keys`, {\n algorithm,\n });\n }\n\n /** Get DNSSEC keys for a zone */\n async getDnssecKeys(zoneName: string): Promise<{ keys: DnssecKey[] }> {\n return this.http.get(`/dns/zones/${encodePathParam(zoneName)}/dnssec/keys`);\n }\n\n /** Get DS record for a zone (for registrar configuration) */\n async getDsRecord(zoneName: string): Promise<DnssecDsRecord> {\n return this.http.get(`/dns/zones/${encodePathParam(zoneName)}/dnssec/ds`);\n }\n\n /** Clear DNS cache */\n async clearCache(): Promise<{ success: boolean; entriesCleared: number }> {\n return this.http.post('/dns/cache/clear', {});\n }\n}\n","/**\n * Health Sub-Client\n *\n * Wraps the gateway's health endpoints, including the per-cluster\n * `GET /cluster/health` aggregate that merges local validator + host +\n * genesis state (used by the cross-cluster metrics aggregator and any SDK\n * caller probing a single cluster). All endpoints are `@Public()` on the\n * server — no auth required.\n */\nimport type { HttpClient } from '../../http';\nimport type { ClusterHealthAggregate } from '../types';\n\nexport class HealthClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Per-cluster aggregate health probe. Wraps `GET /api/v3/cluster/health`.\n * Returns local validator + host + genesis state in a single payload.\n */\n async getCluster(): Promise<ClusterHealthAggregate> {\n return this.http.get('/cluster/health');\n }\n}\n","/**\n * Smart Gateway Client\n *\n * Top-level client for interacting with Smart Engines Gateway.\n * Manages host routing, domain registration, and DNS resolution.\n *\n * @example\n * ```typescript\n * import { SmartGatewayClient } from '@hsuite/smart-engines-sdk';\n *\n * const gateway = new SmartGatewayClient({\n * baseUrl: 'https://gateway.smartengines.io',\n * apiKey: 'your-api-key',\n * });\n *\n * // Routing\n * const hosts = await gateway.routing.getAllHosts();\n *\n * // Domains\n * const available = await gateway.domains.checkAvailability('myapp.example.com');\n *\n * // DNS\n * const resolved = await gateway.dns.resolve('myapp.example.com', 'A');\n *\n * // Health\n * const health = await gateway.getHealth();\n * const cluster = await gateway.health.getCluster();\n * ```\n */\nimport { createHttpClient, SdkHttpError, type HttpClient } from '../http';\nimport { RoutingClient } from './routing';\nimport { DomainsClient } from './domains';\nimport { DnsClient } from './dns';\nimport { HealthClient } from './health';\nimport type {\n GatewayHealthResponse,\n GatewayStatusResponse,\n GatewayReadinessResponse,\n GatewayLivenessResponse,\n GatewayMetricsResponse,\n GatewayMetricsSummaryResponse,\n} from './types';\n\n/**\n * Configuration for SmartGatewayClient\n */\nexport type SmartGatewayClientConfig = {\n /** Gateway API base URL */\n baseUrl: string;\n /** API key for authenticated requests */\n apiKey?: string;\n /** Bearer token from authentication */\n authToken?: string;\n /** Request timeout in milliseconds (default: 30000) */\n timeout?: number;\n /** Allow HTTP connections (only for local development) */\n allowInsecure?: boolean;\n};\n\n/**\n * Smart Gateway Client\n *\n * Primary client for gateway operations: routing, domains, DNS, and\n * cluster-aggregate health.\n */\nexport class SmartGatewayClient {\n private readonly http: HttpClient;\n\n /** Host routing and proxy management */\n public readonly routing: RoutingClient;\n /** Domain registration and management */\n public readonly domains: DomainsClient;\n /** DNS resolution and zone management */\n public readonly dns: DnsClient;\n /** Per-cluster aggregate health probe (validator + host + genesis state) */\n public readonly health: HealthClient;\n\n constructor(config: SmartGatewayClientConfig) {\n const baseUrl = config.baseUrl.replace(/\\/+$/, '');\n\n this.http = createHttpClient({\n baseUrl: `${baseUrl}/api/v3`,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n });\n\n this.routing = new RoutingClient(this.http);\n this.domains = new DomainsClient(this.http);\n this.dns = new DnsClient(this.http);\n this.health = new HealthClient(this.http);\n }\n\n // ========== Health & Metrics ==========\n\n /** Get gateway-only health status (binary `status: 'ok'` snapshot). */\n async getHealth(): Promise<GatewayHealthResponse> {\n return this.http.get('/health');\n }\n\n /**\n * Get detailed gateway status — `subsystems` tree (dns/routing/verification)\n * plus the operating `mode` snapshot. Aggregated counts live on `getMetrics()`.\n */\n async getStatus(): Promise<GatewayStatusResponse> {\n return this.http.get('/status');\n }\n\n /**\n * Check gateway readiness. Resolves to either `{ status: 'ready', ... }`\n * with a verified host count or `{ status: 'not_ready', reason, ... }`.\n *\n * NOTE: `/api/v3/ready` returns **HTTP 503** when not ready (so load\n * balancers / k8s probes drain the origin). This method unwraps that 503's\n * body and still RESOLVES to a `GatewayReadinessResponse` — it does not\n * throw for a not-ready gateway. Genuine errors (non-readiness 503s, 5xx,\n * network) still throw.\n */\n async getReadiness(): Promise<GatewayReadinessResponse> {\n try {\n return await this.http.get<GatewayReadinessResponse>('/ready');\n } catch (err) {\n // The not-ready 503 carries the `{status:'not_ready', ...}` body. The\n // gateway's global exception filter wraps it as\n // {statusCode,error,message,context:{...}} — payload under `context` —\n // while a non-filtered server would return it top-level. Accept either\n // and surface the inner body instead of throwing.\n if (err instanceof SdkHttpError && err.statusCode === 503) {\n const d = err.details as\n | { status?: string; context?: GatewayReadinessResponse }\n | undefined;\n const body = (d?.context ?? d) as\n | (GatewayReadinessResponse & { status?: string })\n | undefined;\n if (body?.status === 'not_ready') {\n return body as GatewayReadinessResponse;\n }\n }\n throw err;\n }\n }\n\n /** Check gateway liveness. */\n async getLiveness(): Promise<GatewayLivenessResponse> {\n return this.http.get('/live');\n }\n\n /**\n * Get aggregated network metrics across all clusters — per-cluster health,\n * chain connectivity, gateway counts, and genesis state. Server caches the\n * payload (default 30s); pass `refresh=true` to force a fresh fetch.\n */\n async getMetrics(refresh?: boolean): Promise<GatewayMetricsResponse> {\n const params = refresh ? '?refresh=true' : '';\n return this.http.get(`/metrics${params}`);\n }\n\n /** Get lightweight network summary (status-badge-friendly). */\n async getMetricsSummary(): Promise<GatewayMetricsSummaryResponse> {\n return this.http.get('/metrics/summary');\n }\n}\n","/**\n * Database Sub-Client\n *\n * Trustless database with state proofs and Merkle verification.\n *\n * @example\n * ```typescript\n * // CRUD operations\n * const result = await baas.db.insert('users', { name: 'Alice' });\n * const users = await baas.db.find('users', { name: 'Alice' });\n *\n * // State proofs\n * const root = await baas.db.getStateRoot();\n * const proof = await baas.db.getDocumentProof('doc-123');\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n BaasInsertResult,\n BaasUpdateResult,\n BaasDeleteResult,\n BaasFindResult,\n BaasQueryOptions,\n BaasMerkleProof,\n BaasStateTransition,\n} from '../types';\n\n/** State root response */\nexport type StateRootResponse = {\n appId: string;\n stateRoot: string;\n blockHeight: number;\n timestamp: string;\n};\n\n/** Document proof response */\nexport type DocumentProofResponse = {\n documentId: string;\n exists: boolean;\n proof: BaasMerkleProof;\n stateRoot: string;\n};\n\n/** State transitions response */\nexport type StateTransitionsResponse = {\n transitions: BaasStateTransition[];\n total: number;\n fromBlock: number;\n toBlock: number;\n};\n\n/** Database stats response */\nexport type DatabaseStatsResponse = {\n collections: number;\n documents: number;\n storageSize: number;\n stateRoot: string;\n blockHeight: number;\n};\n\nexport class DatabaseClient {\n constructor(\n private readonly http: HttpClient,\n private readonly getAppId: () => string\n ) {}\n\n /**\n * Insert a document into a collection\n */\n async insert(collection: string, document: Record<string, unknown>): Promise<BaasInsertResult> {\n const appId = this.getAppId();\n return this.http.post(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(collection)}`,\n document\n );\n }\n\n /**\n * Find documents in a collection\n */\n async find(\n collection: string,\n query?: Record<string, unknown>,\n options?: BaasQueryOptions\n ): Promise<BaasFindResult> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (query && Object.keys(query).length > 0) {\n params.set('query', JSON.stringify(query));\n }\n if (options?.limit !== undefined) params.set('limit', String(options.limit));\n if (options?.skip !== undefined) params.set('skip', String(options.skip));\n if (options?.sort) params.set('sort', options.sort);\n const qs = params.toString();\n return this.http.get(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(collection)}${qs ? `?${qs}` : ''}`\n );\n }\n\n /**\n * Update a document in a collection\n */\n async update(\n collection: string,\n documentId: string,\n updates: Record<string, unknown>\n ): Promise<BaasUpdateResult> {\n const appId = this.getAppId();\n return this.http.put(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(collection)}/${encodePathParam(documentId)}`,\n updates\n );\n }\n\n /**\n * Delete a document from a collection\n */\n async delete(collection: string, documentId: string): Promise<BaasDeleteResult> {\n const appId = this.getAppId();\n return this.http.delete(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(collection)}/${encodePathParam(documentId)}`\n );\n }\n\n /**\n * List collections for the app.\n *\n * Server route is `/api/v3/baas/db/:appId/collections`\n * (`database.controller.ts:106`). The previous bare-`:appId` GET 404'd\n * — Nest reserves that pattern for the document-find router below.\n */\n async listCollections(): Promise<{ collections: string[] }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/db/${encodePathParam(appId)}/collections`);\n }\n\n /**\n * Create a new collection in the database.\n *\n * Server returns `{ success: true; collection: string }`\n * (`database.controller.ts:96`).\n */\n async createCollection(name: string): Promise<{ success: boolean; collection: string }> {\n const appId = this.getAppId();\n return this.http.post(`/api/v3/baas/db/${encodePathParam(appId)}/collections`, { name });\n }\n\n /**\n * Drop a collection and all its documents.\n *\n * Server returns `{ success: true }`\n * (`database.controller.ts:133`).\n */\n async dropCollection(name: string): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(\n `/api/v3/baas/db/${encodePathParam(appId)}/collections/${encodePathParam(name)}`\n );\n }\n\n // ========== State Proofs ==========\n\n /**\n * Get the current state root for the app\n */\n async getStateRoot(): Promise<StateRootResponse> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/db/${encodePathParam(appId)}/state/root`);\n }\n\n /**\n * Get a Merkle proof for a specific document\n */\n async getDocumentProof(documentId: string): Promise<DocumentProofResponse> {\n const appId = this.getAppId();\n return this.http.get(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(documentId)}/proof`\n );\n }\n\n /**\n * Get state transitions (audit log)\n */\n async getStateTransitions(options?: {\n fromBlock?: number;\n toBlock?: number;\n limit?: number;\n }): Promise<StateTransitionsResponse> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (options?.fromBlock !== undefined) params.set('fromBlock', String(options.fromBlock));\n if (options?.toBlock !== undefined) params.set('toBlock', String(options.toBlock));\n if (options?.limit !== undefined) params.set('limit', String(options.limit));\n const qs = params.toString();\n return this.http.get(\n `/api/v3/baas/db/${encodePathParam(appId)}/state/transitions${qs ? `?${qs}` : ''}`\n );\n }\n\n /**\n * Get database statistics\n */\n async getDbStats(): Promise<DatabaseStatsResponse> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/db/${encodePathParam(appId)}/stats`);\n }\n}\n","/**\n * Storage Sub-Client\n *\n * Manages decentralized file storage on the host.\n *\n * @example\n * ```typescript\n * const result = await baas.storage.upload(fileBuffer, 'report.pdf');\n * const exists = await baas.storage.exists(result.cid);\n * const file = await baas.storage.download(result.cid);\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type {\n BaasUploadResult,\n BaasFileInfo,\n BaasFileMetadata,\n BaasStorageUsage,\n} from '../types';\n\nexport class StorageClient {\n constructor(\n private readonly http: HttpClient,\n private readonly getAppId: () => string\n ) {}\n\n /**\n * Upload a file to storage\n */\n async upload(\n file: Blob | Buffer,\n filename: string,\n metadata?: Record<string, string>,\n opts?: HttpCallOptions\n ): Promise<BaasUploadResult> {\n const appId = this.getAppId();\n return this.http.upload(`/api/v3/baas/storage/${encodePathParam(appId)}/upload`, file, filename, metadata, undefined, opts);\n }\n\n /**\n * Download a file by CID. Returns the raw file bytes as a `Uint8Array`\n * (binary-safe — never JSON-parsed or text-decoded).\n */\n async download(cid: string, opts?: HttpCallOptions): Promise<Uint8Array> {\n const appId = this.getAppId();\n return this.http.getBinary(`/api/v3/baas/storage/${encodePathParam(appId)}/download/${encodePathParam(cid)}`, opts);\n }\n\n /**\n * Download a file by CID WITH its response metadata — the raw bytes plus the\n * host-supplied `contentType` (derived from the stored file's metadata) and,\n * when present, the `filename`. Use this instead of {@link download} when the\n * caller must echo the content-type back to its own client; a bytes-only\n * download cannot recover it.\n */\n async downloadWithMeta(\n cid: string,\n opts?: HttpCallOptions,\n ): Promise<{ bytes: Uint8Array; contentType?: string; filename?: string }> {\n const appId = this.getAppId();\n return this.http.getBinaryWithMeta(\n `/api/v3/baas/storage/${encodePathParam(appId)}/download/${encodePathParam(cid)}`,\n opts,\n );\n }\n\n /**\n * Get file metadata\n */\n async getMetadata(cid: string, opts?: HttpCallOptions): Promise<BaasFileMetadata> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/storage/${encodePathParam(appId)}/metadata/${encodePathParam(cid)}`, opts);\n }\n\n /**\n * Delete a file\n */\n async delete(cid: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(`/api/v3/baas/storage/${encodePathParam(appId)}/${encodePathParam(cid)}`, opts);\n }\n\n /**\n * List all files for the app.\n *\n * @param pagination - Optional `limit` and `offset` (the server reads\n * `offset` for pagination).\n * @returns The file list and total count.\n */\n async listFiles(pagination?: { limit?: number; offset?: number }, opts?: HttpCallOptions): Promise<{ files: BaasFileInfo[]; total: number }> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (pagination?.limit !== undefined) params.set('limit', String(pagination.limit));\n if (pagination?.offset !== undefined) params.set('offset', String(pagination.offset));\n const qs = params.toString();\n return this.http.get(`/api/v3/baas/storage/${encodePathParam(appId)}/files${qs ? `?${qs}` : ''}`, opts);\n }\n\n /**\n * Get storage usage for the current app\n */\n async getUsage(opts?: HttpCallOptions): Promise<BaasStorageUsage> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/storage/${encodePathParam(appId)}/usage`, opts);\n }\n\n /**\n * Check if a file exists\n */\n async exists(cid: string, opts?: HttpCallOptions): Promise<{ exists: boolean; cid: string }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/storage/${encodePathParam(appId)}/exists/${encodePathParam(cid)}`, opts);\n }\n}\n","/**\n * Functions Sub-Client\n *\n * Manages serverless function deployment, invocation, and monitoring.\n *\n * @example\n * ```typescript\n * // Deploy a function\n * const fn = await baas.functions.deploy({\n * name: 'process-order',\n * runtime: 'nodejs18',\n * handler: 'index.handler',\n * code: functionCode,\n * });\n *\n * // Invoke it\n * const result = await baas.functions.invoke(fn.functionId, { orderId: '123' });\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type {\n BaasFunctionDeployRequest,\n BaasFunctionEvalRequest,\n BaasFunctionDeployResult,\n BaasFunctionResult,\n BaasFunctionInfo,\n BaasFunctionCode,\n BaasFunctionLog,\n BaasFunctionLogOptions,\n BaasSignedCode,\n} from '../types';\n\nexport class FunctionsClient {\n constructor(\n private readonly http: HttpClient,\n private readonly getAppId: () => string\n ) {}\n\n /**\n * Build the Ed25519 signed-code envelope the host mandates for every deploy\n * and eval. A fresh ephemeral keypair is generated per call, so no long-lived\n * signing key is held anywhere — each artifact carries its own signature.\n *\n * Scheme (must match the host verifier): `hash = sha256(code)` (hex),\n * `message = \"<hash>:<timestamp>\"`, signed Ed25519; `publicKey` is SPKI-DER\n * (base64). `crypto` is imported lazily so this never pulls Node built-ins\n * into a browser bundle that doesn't sign code.\n */\n async signCode(code: string): Promise<BaasSignedCode> {\n const { generateKeyPairSync, createHash, sign } = await import('crypto');\n const { publicKey, privateKey } = generateKeyPairSync('ed25519');\n const hash = createHash('sha256').update(code, 'utf8').digest('hex');\n const timestamp = new Date().toISOString();\n const signature = sign(null, Buffer.from(`${hash}:${timestamp}`, 'utf8'), privateKey).toString('base64');\n const publicKeyDer = publicKey.export({ format: 'der', type: 'spki' }).toString('base64');\n return { code, hash, timestamp, signature, publicKey: publicKeyDer };\n }\n\n /**\n * Deploy a new function. If `signedCode` is omitted it is auto-built from\n * `request.code` via {@link signCode} — the host requires it, so the default\n * is to sign rather than 400. Pass your own envelope to override.\n */\n async deploy(request: BaasFunctionDeployRequest, opts?: HttpCallOptions): Promise<BaasFunctionDeployResult> {\n const appId = this.getAppId();\n const signedCode = request.signedCode ?? (await this.signCode(request.code));\n return this.http.post(`/api/v3/baas/functions/${encodePathParam(appId)}`, { ...request, signedCode }, opts);\n }\n\n /**\n * Invoke a function\n */\n async invoke(functionId: string, payload?: unknown, opts?: HttpCallOptions): Promise<BaasFunctionResult> {\n const appId = this.getAppId();\n return this.http.post(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}/invoke`,\n payload ?? {},\n opts\n );\n }\n\n /**\n * Evaluate signed code once (ephemeral) — no persistent deploy.\n *\n * For throwaway / AI-generated snippets. The host runs it in the same hardened\n * isolate and discards it; metered + quota'd like a normal invocation. As with\n * {@link deploy}, `signedCode` is auto-built from `request.code` when omitted.\n */\n async eval(request: BaasFunctionEvalRequest, opts?: HttpCallOptions): Promise<BaasFunctionResult> {\n const appId = this.getAppId();\n const signedCode = request.signedCode ?? (await this.signCode(request.code));\n return this.http.post(`/api/v3/baas/functions/${encodePathParam(appId)}/eval`, { ...request, signedCode }, opts);\n }\n\n /**\n * List all functions for the current app\n */\n async list(opts?: HttpCallOptions): Promise<{ functions: BaasFunctionInfo[]; total: number }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/functions/${encodePathParam(appId)}`, opts);\n }\n\n /**\n * Get function details\n */\n async get(functionId: string, opts?: HttpCallOptions): Promise<BaasFunctionInfo> {\n const appId = this.getAppId();\n return this.http.get(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}`,\n opts\n );\n }\n\n /**\n * Get a function's source code\n */\n async getCode(functionId: string, opts?: HttpCallOptions): Promise<BaasFunctionCode> {\n const appId = this.getAppId();\n return this.http.get(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}/code`,\n opts\n );\n }\n\n /**\n * Update a function\n */\n async update(functionId: string, updates: Partial<BaasFunctionDeployRequest>, opts?: HttpCallOptions): Promise<BaasFunctionInfo> {\n const appId = this.getAppId();\n return this.http.put(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}`,\n updates,\n opts\n );\n }\n\n /**\n * Delete a function\n */\n async delete(functionId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}`,\n opts\n );\n }\n\n /**\n * Get function execution logs\n */\n async getLogs(functionId: string, options?: BaasFunctionLogOptions, opts?: HttpCallOptions): Promise<{ logs: BaasFunctionLog[]; total: number }> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.set('limit', String(options.limit));\n if (options?.startTime) params.set('startTime', options.startTime);\n if (options?.level) params.set('level', options.level);\n const qs = params.toString();\n return this.http.get(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}/logs${qs ? `?${qs}` : ''}`,\n opts\n );\n }\n\n /**\n * Get function statistics for an app\n */\n async getStats(opts?: HttpCallOptions): Promise<any> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/functions/${encodePathParam(appId)}/stats`, opts);\n }\n}\n","/**\n * Messaging Sub-Client\n *\n * Full pub/sub messaging with channels, history, and presence.\n *\n * @example\n * ```typescript\n * // Create a channel\n * await baas.messaging.createChannel({ name: 'events', persistent: true });\n *\n * // Publish a message\n * await baas.messaging.publish('events', { type: 'order.created', orderId: '123' });\n *\n * // Get history\n * const history = await baas.messaging.getHistory('events', { limit: 50 });\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type {\n BaasChannelConfig,\n BaasPublishResult,\n BaasPresenceMember,\n BaasPresenceInfo,\n BaasHistoryOptions,\n BaasMessage,\n} from '../types';\n\nexport class MessagingClient {\n constructor(\n private readonly http: HttpClient,\n private readonly getAppId: () => string\n ) {}\n\n /**\n * Create a new channel\n */\n async createChannel(config: BaasChannelConfig, opts?: HttpCallOptions): Promise<BaasChannelConfig & { channelId: string }> {\n const appId = this.getAppId();\n return this.http.post(`/api/v3/baas/messaging/${encodePathParam(appId)}/channels`, config, opts);\n }\n\n /**\n * Delete a channel\n */\n async deleteChannel(channelId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(`/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channelId)}`, opts);\n }\n\n /**\n * Get a channel by ID\n */\n async getChannel(channelId: string, opts?: HttpCallOptions): Promise<BaasChannelConfig & { channelId: string; messageCount: number }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channelId)}`, opts);\n }\n\n /**\n * List all channels for the app\n */\n async listChannels(opts?: HttpCallOptions): Promise<{ channels: Array<BaasChannelConfig & { channelId: string }>; total: number }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/messaging/${encodePathParam(appId)}/channels`, opts);\n }\n\n /**\n * Publish a message to a channel\n */\n async publish(\n channel: string,\n message: Record<string, unknown>,\n metadata?: Record<string, unknown>,\n opts?: HttpCallOptions\n ): Promise<BaasPublishResult> {\n const appId = this.getAppId();\n return this.http.post(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/publish`,\n { data: message, metadata },\n opts\n );\n }\n\n /**\n * Get message history for a channel\n */\n async getHistory(\n channel: string,\n options?: BaasHistoryOptions,\n opts?: HttpCallOptions\n ): Promise<{ messages: BaasMessage[]; total: number; hasMore: boolean }> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.set('limit', String(options.limit));\n if (options?.before) params.set('before', options.before);\n if (options?.after) params.set('after', options.after);\n const qs = params.toString();\n return this.http.get(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/history${qs ? `?${qs}` : ''}`,\n opts\n );\n }\n\n /**\n * Set presence for a member in a channel.\n *\n * BREAKING CHANGE (SDK 3.3.0): presence is channel-scoped on the server\n * (`messaging.controller.ts:312`). Previous signature\n * `setPresence(member)` hit a non-existent appId-scoped route and 404'd\n * in production. The channel is now the first argument.\n */\n async setPresence(channel: string, member: BaasPresenceMember, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.post(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/presence`,\n member,\n opts\n );\n }\n\n /**\n * Remove a member's presence from a channel.\n *\n * BREAKING CHANGE (SDK 3.3.0): server route is\n * `/api/v3/baas/messaging/:appId/channels/:channel/presence/:clientId`\n * (`messaging.controller.ts:352`). `channel` is now the first arg and\n * `clientId` (not `memberId`) the second — they're the same identifier\n * but renamed to match the server param.\n */\n async removePresence(channel: string, clientId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/presence/${encodePathParam(clientId)}`,\n opts\n );\n }\n\n /**\n * Get presence info for a channel\n */\n async getPresence(channel: string, opts?: HttpCallOptions): Promise<BaasPresenceInfo> {\n const appId = this.getAppId();\n return this.http.get(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/presence`,\n opts\n );\n }\n\n /**\n * Get messaging statistics\n */\n async getStats(opts?: HttpCallOptions): Promise<any> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/messaging/${encodePathParam(appId)}/stats`, opts);\n }\n}\n","/**\n * Customer-Session Sub-Client (TokenGate Face B).\n *\n * Wraps the smart-host's customer→smart-app session bridge:\n * POST /api/v3/baas/customer-session/challenge (public)\n * POST /api/v3/baas/customer-session/verify (public)\n * GET /api/v3/baas/customer-session/validate (Bearer)\n * POST /api/v3/baas/customer-session/end (Bearer)\n *\n * Used by smart-apps to authenticate their customers without API keys: the\n * customer signs a chain-X challenge with their wallet, the host verifies the\n * signature against the chosen chain (and optionally a TokenGate NFT for\n * paid tiers), and returns a short-lived JWT (≤15 min by default).\n *\n * Free_testnet smart-apps gracefully skip the NFT step — customers only need\n * to prove wallet ownership via signature.\n */\n\nexport type CustomerSessionChallenge = {\n challenge: string;\n};\n\nexport type CustomerSessionVerifyRequest = {\n appId: string;\n chain: string;\n address: string;\n /** Public key (chain-dependent, e.g. ED25519 for Hedera, secp256k1 for XRPL). */\n publicKey?: string;\n signature: string;\n challenge: string;\n};\n\nexport type CustomerSessionToken = {\n /** Short-lived JWT to attach as `Authorization: Bearer ...` on subsequent calls. */\n token: string;\n sessionId: string;\n validatorId: string;\n expiresAt: string;\n sessionSecret: string;\n};\n\nexport type CustomerSessionInfo = {\n sessionId: string;\n appId: string;\n customerChain: string;\n customerAddress: string;\n /** Optional — present only when the customer holds a TokenGate-recognised NFT. */\n subscriptionContext?: {\n nftSerial: number;\n // Subscription tier ladder: builder | growth | scale | enterprise.\n tier: 'builder' | 'growth' | 'scale' | 'enterprise';\n expiresAt: string;\n allowedAutomations?: string[];\n };\n createdAt: string;\n expiresAt: string;\n lastActivityAt: string;\n};\n\nexport class CustomerSessionClient {\n constructor(\n private readonly baseUrl: string,\n private readonly timeoutMs: number = 30_000,\n ) {}\n\n /**\n * Step 1: ask the host to issue a fresh challenge for the customer to sign.\n */\n async challenge(input: { chain: string; address: string }): Promise<CustomerSessionChallenge> {\n return this.fetch<CustomerSessionChallenge>('POST', '/api/v3/baas/customer-session/challenge', input);\n }\n\n /**\n * Step 2: submit the customer's signed challenge. On success returns a\n * short-lived bearer JWT scoped to {appId, chain, address}.\n */\n async verify(req: CustomerSessionVerifyRequest): Promise<CustomerSessionToken> {\n return this.fetch<CustomerSessionToken>('POST', '/api/v3/baas/customer-session/verify', req);\n }\n\n /**\n * Validate a customer bearer + return the decoded session info. Used by\n * smart-app backends to authorise incoming customer requests.\n */\n async validate(bearer: string): Promise<CustomerSessionInfo> {\n return this.fetch<CustomerSessionInfo>('GET', '/api/v3/baas/customer-session/validate', undefined, bearer);\n }\n\n /**\n * Revoke a customer session. Idempotent.\n */\n async end(bearer: string): Promise<{ revoked: boolean; sessionId: string }> {\n return this.fetch<{ revoked: boolean; sessionId: string }>(\n 'POST',\n '/api/v3/baas/customer-session/end',\n undefined,\n bearer,\n );\n }\n\n private async fetch<T>(\n method: 'GET' | 'POST',\n path: string,\n body?: unknown,\n bearer?: string,\n ): Promise<T> {\n const url = `${this.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeoutMs);\n try {\n const headers: Record<string, string> = { 'Content-Type': 'application/json' };\n if (bearer) headers['Authorization'] = `Bearer ${bearer}`;\n const init: RequestInit = { method, headers, signal: controller.signal };\n if (body !== undefined) init.body = JSON.stringify(body);\n const response = await fetch(url, init);\n clearTimeout(timeoutId);\n if (!response.ok) {\n const errBody = (await response.json().catch(() => ({}))) as { message?: string };\n const err = new Error(\n errBody.message ?? `customer-session ${path} failed: ${response.status} ${response.statusText}`,\n ) as Error & { status: number };\n err.status = response.status;\n throw err;\n }\n const text = await response.text();\n if (!text) return undefined as T;\n return JSON.parse(text) as T;\n } catch (error) {\n clearTimeout(timeoutId);\n const e = error as Error;\n if (e.name === 'AbortError') {\n throw new Error(`customer-session ${path} timeout`);\n }\n throw error;\n }\n }\n}\n","/**\n * Rules Sub-Client\n *\n * Smart-app authoring surface for canonical validator rules: publish a\n * `ValidatorRules` document to HCS, fetch a published rule by consensus\n * timestamp, list rules owned by the authenticated entity, simulate\n * cluster-side evaluation, and walk version history.\n *\n * @example\n * ```typescript\n * import { Rules } from '@hsuite/smart-engines-sdk';\n *\n * const rule = Rules.forToken()\n * .withSecurity('full')\n * .withOperations({ mint: { enabled: true, limits: { dailyLimit: '1000000' } } })\n * .build();\n *\n * const { ruleRef } = await baas.rules.publish(rule);\n * const sim = await baas.rules.simulate({ ruleRef, action: 'mint', context: { amount: '500' } });\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type { PublishedRule, RuleRef, ValidatorRules } from '../../rules';\nimport type {\n DeprecateRuleResponse,\n ListRulesFilter,\n ListRulesResponse,\n PublishRuleResponse,\n SimulateRuleRequest,\n ValidationResult,\n VersionHistoryResponse,\n} from './types';\n\nexport class RulesClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Publish a canonical ValidatorRules document to HCS. */\n async publish(rule: ValidatorRules): Promise<PublishRuleResponse> {\n return this.http.post('/api/v3/baas/rules/publish', rule);\n }\n\n /** Fetch a published rule by its HCS consensus timestamp. */\n async get(consensusTimestamp: string): Promise<PublishedRule> {\n return this.http.get(`/api/v3/baas/rules/${encodePathParam(consensusTimestamp)}`);\n }\n\n /** List rules owned by the authenticated entity, optionally filtered by type. */\n async listByOwner(filter?: ListRulesFilter): Promise<ListRulesResponse> {\n const path = filter?.type\n ? `/api/v3/baas/rules?type=${encodeURIComponent(filter.type)}`\n : '/api/v3/baas/rules';\n return this.http.get(path);\n }\n\n /**\n * Simulate cluster-side evaluation of an action against a rule. Either\n * `ruleRef` (published) or `rule` (inline) must be supplied by the caller.\n */\n async simulate(params: SimulateRuleRequest): Promise<ValidationResult> {\n return this.http.post('/api/v3/baas/rules/simulate', params);\n }\n\n /** Walk the version history of a published rule. */\n async getVersionHistory(consensusTimestamp: string): Promise<VersionHistoryResponse> {\n return this.http.get(\n `/api/v3/baas/rules/${encodePathParam(consensusTimestamp)}/versions`,\n );\n }\n\n /** Deprecate a published rule (owner-only). */\n async deprecate(consensusTimestamp: string): Promise<DeprecateRuleResponse> {\n return this.http.post(\n `/api/v3/baas/rules/${encodePathParam(consensusTimestamp)}/deprecate`,\n {},\n );\n }\n}\n\nexport type { RuleRef };\n","/**\n * Entities Sub-Client\n *\n * Smart-app authoring surface for canonical chain-bound entities. Each entity\n * arm (token / account / topic / agent) has a per-arm typed creator that\n * requires a published `ruleRef` — the cluster resolves the rule and stamps\n * it on the entity binding. A `launchpad(...)` mega-helper publishes a token\n * rule with an attached launchpad ModuleEntry and creates the token in one\n * call.\n *\n * @example\n * ```typescript\n * import { Rules } from '@hsuite/smart-engines-sdk';\n *\n * const rule = Rules.forToken().withSecurity('full').build();\n * const { ruleRef } = await baas.rules.publish(rule);\n *\n * const token = await baas.entities.createToken({\n * chain: 'hedera',\n * name: 'My Token',\n * symbol: 'MYT',\n * decimals: 6,\n * ruleRef,\n * });\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type { ChainType } from '../..';\nimport type {\n BurnEntityRequest,\n ComplianceEntityRequest,\n CreateAccountRequest,\n CreateAgentRequest,\n CreateTokenRequest,\n CreateTopicRequest,\n EntityCreationResult,\n EntityInfo,\n EntitySecurityMode,\n LaunchpadEntityRequest,\n LaunchpadEntityResult,\n ListEntitiesFilter,\n ListEntitiesResponse,\n MintEntityRequest,\n PreparedEntityCreation,\n PreparedEntityTransactionResult,\n TransferEntityRequest,\n TrustlineEntityRequest,\n WithdrawEntityRequest,\n} from './types';\n\nexport class EntitiesClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Chains whose token-create routes through the payer-funded 3-step (prepare →\n * fund → execute), mirroring `createAccount`. Hedera = real HTS TokenCreate\n * (admin/supply = the per-entity DKG slot-pubkey KeyList; treasury = the\n * entity's own account; `0.0.X` token id is network-assigned, resolved from the\n * receipt via the threaded `createTxId`). Cardano/Solana/Polkadot = the\n * AUTHORITY entity (the entity IS the policy/mint/Assets-admin multisig — same\n * address as an account; the asset MINT itself is a later operate-tab payer\n * call). XRPL/Stellar token = an ISSUER ACCOUNT (reuses the account preparer) +\n * issuer flags set at finalize: XRPL relays the funding Payment then finalizes\n * (issuer-flag AccountSets + SignerListSet + disable-master); Stellar relays the\n * CreateAccount then finalizes (SetOptions install incl. issuer setFlags +\n * master lock). Every OTHER chain (EVM) stays on the legacy synchronous path.\n */\n private static readonly PAYER_FUNDED_TOKEN_CHAINS: ReadonlySet<ChainType> =\n new Set<ChainType>([\n 'hedera',\n 'cardano',\n 'solana',\n 'polkadot',\n 'xrpl',\n 'stellar',\n ]);\n\n /**\n * PREPARE half of the payer-funded token-create flow.\n *\n * POSTs `/api/v3/baas/entities/prepare-create` with `entityType: 'token'`. The cluster\n * runs the per-entity DKG, builds the payer-funded create (Hedera: TokenCreate\n * keyed by the slot-pubkey KeyList with the entity account as treasury;\n * Cardano/Solana/Polkadot: funds/provisions the authority multisig), and returns\n * the prepared blob. The prepared `transactionId` is the `createTxId` for\n * execute (Hedera).\n */\n async prepareCreateToken(\n req: Omit<CreateTokenRequest, 'fundWith'>,\n ): Promise<PreparedEntityCreation> {\n return this.http.post('/api/v3/baas/entities/prepare-create', {\n entityType: 'token',\n ...req,\n });\n }\n\n /**\n * EXECUTE half of the payer-funded token-create flow.\n *\n * POSTs `/api/v3/baas/entities/execute-create` with `entityType: 'token'`. For Hedera,\n * pass `createTxId` (the prepared create's `transactionId`) so the validator\n * resolves the network-assigned `0.0.X` token id from the receipt and stamps\n * `chainAccounts.hedera`. For the authority-entity chains (cardano/solana/\n * polkadot) execute just verifies the binding and echoes the stamped authority\n * address (no `createTxId` needed).\n */\n async executeCreateToken(req: {\n entityId: string;\n chain: ChainType;\n securityMode?: EntitySecurityMode;\n /** Hedera only: the prepared create's TransactionId (resolves the token id from the receipt). */\n createTxId?: string;\n /**\n * XRPL/Stellar issuer-account only: the payer's signed funding blob for the\n * validator to submit before finalizing the issuer-flag install. Omitted for\n * the other chains (their execute-create rejects a non-undefined blob).\n */\n signedFundingBlob?: string;\n }): Promise<EntityCreationResult> {\n const { createTxId, signedFundingBlob, ...rest } = req;\n return this.http.post('/api/v3/baas/entities/execute-create', {\n ...rest,\n ...(createTxId !== undefined ? { createTxId } : {}),\n ...(signedFundingBlob !== undefined ? { signedFundingBlob } : {}),\n entityType: 'token',\n });\n }\n\n /**\n * Create a canonical token entity bound to a published rule.\n *\n * Dispatches by `chain` (mirrors `createAccount`):\n * - **Hedera / Cardano / Solana / Polkadot** = payer-funded 3-step (prepare →\n * caller funds via `fundWith` → execute). Hedera resolves the network-assigned\n * `0.0.X` token id from the receipt (threads `createTxId`); the authority-\n * entity chains verify/echo the stamped authority address. `fundWith` is\n * REQUIRED; to drive the steps manually call `prepareCreateToken` /\n * `executeCreateToken` directly.\n * - **XRPL / Stellar** = payer-funded too (account-model issuer): `fundWith`\n * REQUIRED; the caller's signed funding blob is RELAYED to the validator,\n * which submits it then finalizes the issuer multisig (master-locked). NO\n * issuer flags are set at create — issuer auth flags / DefaultRipple / clawback\n * are an operate-tab, rules-validated concern.\n * - **EVM / other** = legacy synchronous `POST /api/v3/baas/entities/createToken`\n * (payer-funded-only fields ignored) until it migrates.\n */\n async createToken(req: CreateTokenRequest): Promise<EntityCreationResult> {\n if (EntitiesClient.PAYER_FUNDED_TOKEN_CHAINS.has(req.chain)) {\n const { fundWith, ...prepReq } = req;\n const prep = await this.prepareCreateToken(prepReq);\n if (!fundWith) {\n throw new Error(\n `createToken(${req.chain}): pass fundWith (sign+submit the prepared create tx), or call prepareCreateToken/executeCreateToken directly`,\n );\n }\n // The caller signs the fee + submits the create tx with their OWN wallet.\n // XRPL/Stellar issuer accounts return a signed funding blob for the validator\n // to RELAY (then finalize on-chain); the other chains submit directly.\n const funded = await fundWith(prep.prepared, {\n address: prep.address,\n reserveRequirement: prep.reserveRequirement,\n });\n // Hedera threads the prepared create's TransactionId (network-assigned token\n // id is resolved from the receipt at execute); the authority-entity chains\n // need no createTxId (their address is deterministic / already stamped).\n // XRPL/Stellar (account-model issuer) RELAY the signed funding blob so the\n // validator submits it before finalizing the issuer-flag install.\n return this.executeCreateToken({\n entityId: prep.entityId,\n chain: req.chain,\n securityMode: req.securityMode,\n signedFundingBlob: EntitiesClient.FUNDING_BLOB_RELAY_CHAINS.has(req.chain)\n ? funded?.signedFundingBlob\n : undefined,\n createTxId:\n req.chain === 'hedera' ? prep.prepared?.[0]?.transactionId : undefined,\n });\n }\n // legacy synchronous create (unchanged) — only EVM remains on this path until\n // it migrates to the payer-funded flow.\n const {\n fundWith: _ignoredFundWith,\n payerAccountId: _ignoredPayer,\n securityMode: _ignoredSecurityMode,\n ...legacyReq\n } = req;\n return this.http.post('/api/v3/baas/entities/createToken', legacyReq);\n }\n\n /**\n * PREPARE half of the payer-funded account-create flow.\n *\n * POSTs `/api/v3/baas/entities/prepare-create`. The cluster runs the per-entity DKG\n * (persists the binding, submits nothing on-chain) and returns the unsigned\n * payer-funding `Payment`(s) the caller signs + submits with their own wallet.\n */\n async prepareCreateAccount(\n req: Omit<CreateAccountRequest, 'fundWith'>,\n ): Promise<PreparedEntityCreation> {\n return this.http.post('/api/v3/baas/entities/prepare-create', {\n entityType: 'account',\n ...req,\n });\n }\n\n /**\n * EXECUTE half of the payer-funded account-create flow.\n *\n * POSTs `/api/v3/baas/entities/execute-create`. The entity already exists (its DKG\n * ran during prepare); pass `signedFundingBlob` for the validator to submit\n * the payer's signed funding `Payment` (XRPL only), or omit it when the caller\n * already submitted the funding tx themselves (then execute just finalizes /\n * verifies).\n *\n * `createTxId` is the HEDERA thread: a Hedera AccountCreate gets its\n * network-assigned `0.0.X` id only from the on-chain receipt after the payer\n * submits. The caller threads the prepared create's `transactionId` (from\n * `prepared[0].transactionId`) back here so the validator resolves the id from\n * the receipt server-side. Ignored for non-Hedera chains.\n */\n async executeCreateAccount(req: {\n entityId: string;\n chain: ChainType;\n securityMode?: EntitySecurityMode;\n signedFundingBlob?: string;\n /** Hedera only: the prepared create's TransactionId (resolves the id from the receipt). */\n createTxId?: string;\n }): Promise<EntityCreationResult> {\n // Build a clean body: `createTxId` is the Hedera-only receipt thread, so it\n // is included ONLY when actually defined — non-Hedera bodies stay\n // `{ entityId, chain, securityMode?, signedFundingBlob? }` with no spurious\n // `createTxId: undefined`. `entityType` is omitted for accounts: the\n // execute-create DTO defaults a missing `entityType` to `account`, so the\n // receipt resolver reads `accountId` without the field being relayed.\n const { createTxId, ...rest } = req;\n return this.http.post('/api/v3/baas/entities/execute-create', {\n ...rest,\n ...(createTxId !== undefined ? { createTxId } : {}),\n });\n }\n\n /**\n * Chains whose account-create routes through the payer-funded 3-step\n * (prepare → fund → execute). All are ledgers where the validators never pay:\n * XRPL funds a reserve; Bitcoin funds a P2WSH UTXO; Cardano funds a\n * native-script enterprise address above min-UTXO; Polkadot funds a\n * pallet_multisig SS58 above the existential deposit; Solana funds a Squads\n * multisig PDA (deterministic from the createKey) via a payer-paid\n * `multisigCreateV2` — the payer's submission IS the create (no separate\n * finalizer). Hedera is create-WITH-KEY: the payer submits an AccountCreate\n * whose controlling key is the per-entity DKG slot-pubkey KeyList, so the\n * payer's submit IS the create; its `0.0.X` id is network-assigned (resolved\n * from the receipt at execute-create via the threaded `createTxId`). Stellar is\n * account-MODEL (like XRPL): the payer funds the entity's slot-0 `G...` master\n * via a CreateAccount, the validator RELAYS the signed funding blob, then\n * execute-create finalizes on-chain (threshold-signs a SetOptions installing\n * the validator chain-key multisig + locking the master). EVM stays on the\n * legacy synchronous create until it migrates.\n */\n private static readonly PAYER_FUNDED_CREATE_CHAINS: ReadonlySet<ChainType> =\n new Set<ChainType>([\n 'xrpl',\n 'bitcoin',\n 'cardano',\n 'polkadot',\n 'solana',\n 'hedera',\n 'stellar',\n ]);\n\n /**\n * Chains whose execute-create RELAYS the payer's signed funding blob for the\n * validator to submit (then finalizes on-chain). Both are account-model ledgers\n * with a validator-side finalize step: XRPL (SignerListSet + disable-master),\n * Stellar (SetOptions install + master lock). Every OTHER payer-funded chain\n * has the PAYER submit the funding tx directly with their own wallet — their\n * execute-create REJECTS a non-undefined `signedFundingBlob` (400), so the blob\n * is omitted for them.\n */\n private static readonly FUNDING_BLOB_RELAY_CHAINS: ReadonlySet<ChainType> =\n new Set<ChainType>(['xrpl', 'stellar']);\n\n /**\n * Create a canonical account entity bound to a published rule.\n *\n * Dispatches by `chain`:\n * - **XRPL / Stellar / Bitcoin / Cardano / Polkadot / Solana / Hedera** =\n * payer-funded 3-step (prepare → fund → execute). The cluster runs the\n * per-entity DKG and returns the unsigned payer-funding tx(s); the\n * caller-supplied `fundWith` callback signs + submits (or just signs) the\n * funding tx with their OWN wallet — the SDK never holds the customer's chain\n * key nor opens a network connection — then `executeCreateAccount` finalizes\n * (XRPL + Stellar finalize on-chain after relaying the funding blob; the\n * deterministic ledgers + Solana verify/stamp the binding; Hedera resolves\n * the network-assigned id from the receipt). `fundWith` is REQUIRED on these\n * chains; to drive the steps manually call `prepareCreateAccount` /\n * `executeCreateAccount` directly.\n * - **other chains** (EVM) = legacy synchronous create — a single\n * `POST /api/v3/baas/entities/createAccount`, unchanged from pre-3.9.0. These chains\n * migrate to the payer-funded flow in a later phase; until then the\n * payer-funded-only fields (`fundWith` / `payerAccountId` / `securityMode`)\n * are ignored.\n */\n async createAccount(req: CreateAccountRequest): Promise<EntityCreationResult> {\n if (EntitiesClient.PAYER_FUNDED_CREATE_CHAINS.has(req.chain)) {\n // payer-funded 3-step (the 3.9.0 logic, now multi-chain) — requires fundWith\n const { fundWith, ...prepReq } = req;\n const prep = await this.prepareCreateAccount(prepReq);\n if (!fundWith) {\n throw new Error(\n `createAccount(${req.chain}): pass fundWith (sign+submit the prepared funding tx), or call prepareCreateAccount/executeCreateAccount directly`,\n );\n }\n const funded = await fundWith(prep.prepared, {\n address: prep.address,\n reserveRequirement: prep.reserveRequirement,\n });\n // Only the account-model finalize chains (XRPL, Stellar) relay the payer's\n // signed blob for the validator to submit (their execute-create finalizes\n // on-chain after the funding lands). The deterministic ledgers\n // (bitcoin/cardano/polkadot), Solana AND Hedera have the PAYER submit the tx\n // directly with their own wallet; their execute-create REJECTS a\n // non-undefined `signedFundingBlob` with a 400 (the payer is the submitter,\n // not the validator). So omit the blob for every non-relay chain.\n //\n // Hedera additionally threads `createTxId`: its create-with-key id is\n // network-assigned, so execute-create needs the prepared create's\n // TransactionId (on prepared[0].transactionId, the same tx the payer just\n // submitted via fundWith) to resolve the 0.0.X id from the receipt.\n return this.executeCreateAccount({\n entityId: prep.entityId,\n chain: req.chain,\n securityMode: req.securityMode,\n signedFundingBlob: EntitiesClient.FUNDING_BLOB_RELAY_CHAINS.has(req.chain)\n ? funded?.signedFundingBlob\n : undefined,\n createTxId:\n req.chain === 'hedera' ? prep.prepared?.[0]?.transactionId : undefined,\n });\n }\n // legacy synchronous create (unchanged from pre-3.9.0) — only EVM remains on\n // this path; it migrates to payer-funded in a later phase.\n const {\n fundWith: _ignoredFundWith,\n payerAccountId: _ignoredPayer,\n securityMode: _ignoredSecurityMode,\n ...legacyReq\n } = req;\n return this.http.post('/api/v3/baas/entities/createAccount', legacyReq);\n }\n\n /**\n * PREPARE half of the payer-funded topic-create flow (Hedera).\n *\n * POSTs `/api/v3/baas/entities/prepare-create` with `entityType: 'topic'`. The cluster\n * runs the per-entity DKG (persists the binding), builds the payer-funded\n * TopicCreate keyed by the slot-pubkey KeyList, attaches the validator admin\n * threshold sig, and returns the prepared blob for the caller to add the fee\n * sig + submit. The prepared `transactionId` is the `createTxId` for execute.\n */\n async prepareCreateTopic(\n req: Omit<CreateTopicRequest, 'fundWith'>,\n ): Promise<PreparedEntityCreation> {\n return this.http.post('/api/v3/baas/entities/prepare-create', {\n entityType: 'topic',\n ...req,\n });\n }\n\n /**\n * EXECUTE half of the payer-funded topic-create flow (Hedera).\n *\n * POSTs `/api/v3/baas/entities/execute-create` with `entityType: 'topic'`. The topic\n * already exists once the payer submitted the create tx; pass `createTxId` (the\n * prepared create's `transactionId`) so the validator resolves the network-\n * assigned `0.0.X` topic id from the receipt and stamps `chainAccounts.hedera`.\n */\n async executeCreateTopic(req: {\n entityId: string;\n chain: ChainType;\n createTxId: string;\n securityMode?: EntitySecurityMode;\n }): Promise<EntityCreationResult> {\n return this.http.post('/api/v3/baas/entities/execute-create', {\n ...req,\n entityType: 'topic',\n });\n }\n\n /**\n * Create a canonical topic entity bound to a published rule.\n *\n * Dispatches by `chain`:\n * - **Hedera** = payer-funded 3-step (prepare → caller submits the TopicCreate\n * via `fundWith` → execute resolves the `0.0.X` topic id from the receipt).\n * `fundWith` is REQUIRED; to drive the steps manually call\n * `prepareCreateTopic` / `executeCreateTopic` directly.\n * - **other chains** = legacy synchronous `POST /api/v3/baas/entities/createTopic`\n * (topics are a Hedera primitive; the legacy path is unchanged).\n */\n async createTopic(req: CreateTopicRequest): Promise<EntityCreationResult> {\n if (req.chain === 'hedera') {\n const { fundWith, ...prepReq } = req;\n const prep = await this.prepareCreateTopic(prepReq);\n if (!fundWith) {\n throw new Error(\n 'createTopic(hedera): pass fundWith (sign+submit the prepared TopicCreate), or call prepareCreateTopic/executeCreateTopic directly',\n );\n }\n // The caller signs the fee + submits the create tx with their OWN wallet.\n // Hedera topics have no reserve/address at prepare (the id is receipt-only).\n await fundWith(prep.prepared, {\n address: prep.address,\n reserveRequirement: prep.reserveRequirement,\n });\n const createTxId = prep.prepared?.[0]?.transactionId;\n if (!createTxId) {\n throw new Error(\n 'createTopic(hedera): prepared TopicCreate carries no transactionId — cannot resolve the topic id from the receipt',\n );\n }\n return this.executeCreateTopic({\n entityId: prep.entityId,\n chain: req.chain,\n createTxId,\n securityMode: req.securityMode,\n });\n }\n // legacy synchronous create (unchanged) — topics are a Hedera primitive.\n const {\n fundWith: _ignoredFundWith,\n payerAccountId: _ignoredPayer,\n securityMode: _ignoredSecurityMode,\n ...legacyReq\n } = req;\n return this.http.post('/api/v3/baas/entities/createTopic', legacyReq);\n }\n\n /** Create a canonical agent entity bound to a published rule. */\n async createAgent(req: CreateAgentRequest): Promise<EntityCreationResult> {\n return this.http.post('/api/v3/baas/entities/createAgent', req);\n }\n\n /**\n * PREPARE half of the payer-funded agent-create flow.\n *\n * POSTs `/api/v3/baas/entities/prepare-create` with `entityType: 'agent'`. The cluster\n * runs the per-entity DKG (persists the binding, submits nothing on-chain) and\n * returns the unsigned payer-funding `Payment`(s) the caller signs + submits with\n * their own wallet — mirroring `prepareCreateAccount`. The agent's primary chain\n * is relayed as `chain` (the generic prepare/execute DTO key) so the host's\n * chain-bound preparer runs; `name` / `agentType` / `ruleRef` ride along.\n */\n async prepareCreateAgent(\n req: Omit<CreateAgentRequest, 'fundWith'>,\n ): Promise<PreparedEntityCreation> {\n const { primaryChain, ...rest } = req;\n return this.http.post('/api/v3/baas/entities/prepare-create', {\n entityType: 'agent',\n chain: primaryChain,\n ...rest,\n });\n }\n\n /**\n * EXECUTE half of the payer-funded agent-create flow.\n *\n * POSTs `/api/v3/baas/entities/execute-create` with `entityType: 'agent'`. The entity\n * already exists (its DKG ran during prepare); pass `signedFundingBlob` for the\n * validator to submit the payer's signed funding tx (XRPL/Stellar account-model\n * relay), or omit it when the caller already submitted the funding tx themselves.\n * `createTxId` is the Hedera receipt thread (the prepared create's\n * `transactionId`); ignored for non-Hedera chains. Mirrors\n * `executeCreateAccount` but tags `entityType: 'agent'`.\n */\n async executeCreateAgent(req: {\n entityId: string;\n chain: ChainType;\n securityMode?: EntitySecurityMode;\n signedFundingBlob?: string;\n /** Hedera only: the prepared create's TransactionId (resolves the id from the receipt). */\n createTxId?: string;\n }): Promise<EntityCreationResult> {\n // Build a clean body: `createTxId` / `signedFundingBlob` are included ONLY when\n // actually defined (mirrors executeCreateAccount), so non-relay / non-Hedera\n // bodies stay `{ entityId, chain, securityMode?, entityType: 'agent' }`.\n const { createTxId, signedFundingBlob, ...rest } = req;\n return this.http.post('/api/v3/baas/entities/execute-create', {\n ...rest,\n ...(createTxId !== undefined ? { createTxId } : {}),\n ...(signedFundingBlob !== undefined ? { signedFundingBlob } : {}),\n entityType: 'agent',\n });\n }\n\n /**\n * Mega-helper: build a token rule with a launchpad ModuleEntry attached,\n * publish it, create the token, and return the combined result in one HTTP\n * round-trip.\n */\n async launchpad(req: LaunchpadEntityRequest): Promise<LaunchpadEntityResult> {\n return this.http.post('/api/v3/baas/entities/launchpad', req);\n }\n\n /** Fetch an entity by its canonical `entityId`. */\n async get(entityId: string): Promise<EntityInfo> {\n return this.http.get(`/api/v3/baas/entities/${encodePathParam(entityId)}`);\n }\n\n /** List entities owned by the authenticated wallet, optionally filtered by type. */\n async listByOwner(filter?: ListEntitiesFilter): Promise<ListEntitiesResponse> {\n const path = filter?.type\n ? `/api/v3/baas/entities?type=${encodeURIComponent(filter.type)}`\n : '/api/v3/baas/entities';\n return this.http.get(path);\n }\n\n // ─── Value-movement (prepare-bytes only) ──────────────────────────────────\n //\n // Each method POSTs the host's entity-scoped value-movement route. The entity\n // is the source / treasury / authority + fee-payer (resolved server-side from\n // the entity record — never the body), so a caller can never name a foreign\n // payer or drain another account. The host authorises the call (session\n // caller identity + `loadOwnedEntity` ownership), delegates to the validator\n // preparer, and returns prepared bytes for the caller to sign + submit; the\n // host never submits and never pays. A rule-deny surfaces as an HTTP 403\n // `rule_rejected` (use `isRuleRejected`), never as signed bytes.\n //\n // `opts` threads {@link HttpCallOptions} (`onBehalfOf` / `customerToken` /\n // `headers`) so an app-as-proxy can act on behalf of an owner — the owner's\n // Mode-1 customer-session JWT rides as both `Authorization: Bearer` and\n // `X-Customer-Session-Claim`, exactly as `agents.execute` does.\n\n /**\n * Prepare a native or token transfer FROM an account entity.\n *\n * `POST /api/v3/baas/entities/:entityId/transfer`.\n */\n async transfer(\n entityId: string,\n body: TransferEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/transfer`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare a withdrawal FROM an account entity to a destination.\n *\n * `POST /api/v3/baas/entities/:entityId/withdraw`.\n */\n async withdraw(\n entityId: string,\n body: WithdrawEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/withdraw`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare a token/NFT mint whose supply authority is the account entity.\n *\n * `POST /api/v3/baas/entities/:entityId/mint`.\n */\n async mint(\n entityId: string,\n body: MintEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/mint`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare a token/NFT burn from the account entity's treasury.\n *\n * `POST /api/v3/baas/entities/:entityId/burn`.\n */\n async burn(\n entityId: string,\n body: BurnEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/burn`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare a compliance action (pause / restrict / wipe) on a token whose\n * compliance authority is the account entity. The body `account` is the\n * per-account subject for restrict/wipe — never the payer.\n *\n * `POST /api/v3/baas/entities/:entityId/compliance`.\n */\n async compliance(\n entityId: string,\n body: ComplianceEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/compliance`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare an XRPL TrustSet authorising the account entity to hold a currency\n * from an issuer.\n *\n * `POST /api/v3/baas/entities/:entityId/trustline`.\n */\n async trustline(\n entityId: string,\n body: TrustlineEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/trustline`,\n body,\n opts,\n );\n }\n}\n","/**\n * BaaS Client\n *\n * SDK client for interacting with Smart Engines Backend-as-a-Service.\n *\n * Provides:\n * - Wallet-based authentication (challenge-response)\n * - App registration and management\n * - Trustless database operations with state transitions and Merkle proofs\n * - Decentralized file storage\n * - Serverless function deployment and invocation\n * - Real-time pub/sub messaging with channels, history, and presence\n * - App deployment lifecycle management\n * - Autonomous smart agent management\n *\n * @example\n * ```typescript\n * import { BaasClient } from '@hsuite/smart-engines-sdk';\n *\n * const baas = new BaasClient({\n * hostUrl: 'https://host.smartengines.io',\n * appId: 'my-app',\n * });\n *\n * await baas.authenticate({\n * chain: 'hedera',\n * walletAddress: '0.0.12345',\n * publicKey: 'your-public-key',\n * signFn: async (message) => wallet.sign(message),\n * });\n *\n * // Database with state proofs\n * const result = await baas.db.insert('users', { name: 'Alice' });\n * const proof = await baas.db.getDocumentProof(result.document._id);\n *\n * // File storage\n * const upload = await baas.storage.upload(fileBuffer, 'document.pdf');\n *\n * // Messaging\n * await baas.messaging.publish('events', { type: 'user.created' });\n *\n * // Functions\n * const fn = await baas.functions.deploy({ name: 'handler', runtime: 'nodejs20', code: '...', codeType: 'inline' });\n *\n * // Agents\n * const agent = await baas.agents.register({ name: 'Bot', capabilities: ['trade'], rules: {} });\n * ```\n */\n\nimport type {\n BaasClientConfig,\n BaasSupportedChain,\n BaasChallengeResponse,\n BaasAuthResult,\n BaasSessionInfo,\n BaasErrorDetails,\n} from './types';\nimport { type CircuitBreakerSnapshot } from '../_vendor';\nimport { createHttpClient, SdkHttpError, type HttpClient } from '../http';\nimport { resolveClusterEndpoint } from '../discovery';\nimport { type NetworkName } from '../network-presets';\nimport { DatabaseClient } from './database';\nimport { StorageClient } from './storage';\nimport { FunctionsClient } from './functions';\nimport { MessagingClient } from './messaging';\nimport { DeploymentClient } from './deployment';\nimport { AgentsClient } from './agents';\nimport { CustomerSessionClient } from './customer-session';\nimport { RulesClient } from './rules';\nimport { EntitiesClient } from './entities';\n\n/**\n * Authentication options for wallet-based auth\n */\nexport type AuthenticateOptions = {\n /** Blockchain chain */\n chain: BaasSupportedChain;\n /** Wallet address on the chain */\n walletAddress: string;\n /** Public key (hex encoded) */\n publicKey: string;\n /** Function to sign the challenge message */\n signFn: (message: string) => string | Promise<string>;\n};\n\n/**\n * Fields shared across both arms of {@link BaasConnectToClusterConfig}.\n * Pulled out so the discriminated-union arms below stay focused on the\n * \"where to discover from\" decision.\n */\ninterface BaasConnectToClusterShared {\n /** Application ID (for existing apps) */\n appId?: string;\n /** Application name (for registration) */\n appName?: string;\n /** Request timeout in milliseconds */\n timeout?: number;\n /** Allow HTTP connections (for local development only) */\n allowInsecure?: boolean;\n /**\n * Path prefix prepended to every request to the chosen host. Defaults to\n * `/host` because cluster discovery returns the gateway URL, and the\n * gateway routes BaaS traffic at `/host/*`. Override to `''` if you are\n * pointing the SDK directly at a host that doesn't sit behind the\n * gateway path rewrite.\n */\n pathPrefix?: string;\n /**\n * Optional HCS trust anchor — cross-checks the bootstrap response\n * against the on-chain validator-registry topic so a compromised\n * bootstrap seed can't inject rogue clusters. Per deployment.\n */\n trustAnchor?: {\n network: 'mainnet' | 'testnet' | 'previewnet';\n registryTopicId: string;\n mirrorNodeUrl?: string;\n };\n}\n\n/**\n * Config for {@link BaasClient.connectToCluster}. Exactly ONE of\n * `network` or `bootstrap` must be supplied — encoded as a discriminated\n * union so passing both is a compile-time error.\n *\n * `network` is the recommended default for smart-app callers; the SDK\n * resolves the canonical gateway entrypoint from {@link KNOWN_NETWORKS}.\n * `bootstrap` is the manual escape hatch for private deployments.\n */\nexport type BaasConnectToClusterConfig =\n | ({\n /** Named network — SDK resolves the canonical gateway entrypoint. */\n network: NetworkName;\n bootstrap?: never;\n } & BaasConnectToClusterShared)\n | ({\n /** Bootstrap seeds: URLs that serve `GET /api/v3/discovery/clusters`. */\n bootstrap: string[];\n network?: never;\n } & BaasConnectToClusterShared);\n\nexport class BaasClient {\n private readonly hostUrl: string;\n private readonly pathPrefix: string;\n private appId: string | undefined;\n private readonly timeout: number;\n private readonly allowInsecure: boolean;\n private readonly http: HttpClient;\n /** Last HTTP error (for getHttpHealth) */\n private lastHttpError?: Error;\n /**\n * Auth options from the last {@link authenticate} call, retained so the\n * client can transparently re-authenticate when the session token expires\n * (the http client invokes {@link reauthenticate} on a 401). Undefined until\n * the first successful authenticate.\n */\n private authContext?: AuthenticateOptions;\n\n // ========== Sub-Clients ==========\n\n /** Trustless database with state proofs and Merkle verification */\n public readonly db: DatabaseClient;\n /** Decentralized file storage */\n public readonly storage: StorageClient;\n /** Serverless function deployment and invocation */\n public readonly functions: FunctionsClient;\n /** Real-time pub/sub messaging with channels, history, and presence */\n public readonly messaging: MessagingClient;\n /** App deployment lifecycle management */\n public readonly deployment: DeploymentClient;\n /** Autonomous smart agent management */\n public readonly agents: AgentsClient;\n /** Customer→smart-app session bridge (TokenGate Face B). */\n public readonly customerSession: CustomerSessionClient;\n /** Canonical validator-rules authoring surface (publish/get/list/simulate). */\n public readonly rules: RulesClient;\n /** Canonical entity authoring surface (token/account/topic/agent + launchpad). */\n public readonly entities: EntitiesClient;\n\n constructor(config: BaasClientConfig) {\n this.allowInsecure = config.allowInsecure ?? false;\n this.hostUrl = validateUrl(config.hostUrl, this.allowInsecure);\n this.appId = config.appId;\n this.timeout = config.timeout ?? 30000;\n\n // Strip trailing slash from pathPrefix and ensure leading slash; empty if none.\n const prefix = (config.pathPrefix ?? '').replace(/\\/$/, '');\n this.pathPrefix = prefix ? (prefix.startsWith('/') ? prefix : `/${prefix}`) : '';\n const baseUrlWithPrefix = this.pathPrefix\n ? this.hostUrl.replace(/\\/$/, '') + this.pathPrefix\n : this.hostUrl;\n\n // Create shared HTTP client. baseUrl includes optional pathPrefix so all\n // /api/v3/baas/* paths get routed to the host even when consumed via a gateway.\n this.http = createHttpClient({\n baseUrl: baseUrlWithPrefix,\n timeout: this.timeout,\n // Transparent session refresh: on a 401, re-run the challenge-response\n // with the retained signer and retry once. No-op until authenticate() has\n // been called (authContext set). Excludes /api/v3/{,baas/}auth/* (see http client).\n onUnauthorized: () => this.reauthenticate(),\n });\n\n // Helper to get appId with validation\n const getAppId = () => this.requireAppId();\n\n // Initialize sub-clients\n this.db = new DatabaseClient(this.http, getAppId);\n this.storage = new StorageClient(this.http, getAppId);\n this.functions = new FunctionsClient(this.http, getAppId);\n this.messaging = new MessagingClient(this.http, getAppId);\n this.deployment = new DeploymentClient(this.http);\n this.agents = new AgentsClient(this.http);\n this.customerSession = new CustomerSessionClient(baseUrlWithPrefix, this.timeout);\n this.rules = new RulesClient(this.http);\n this.entities = new EntitiesClient(this.http);\n }\n\n /**\n * Connect to the Smart Engines BaaS via cluster auto-discovery.\n *\n * Zero-config entrypoint flow:\n *\n * 1. Resolves the bootstrap seed list:\n * - `network: 'testnet' | 'mainnet'` → canonical Cloudflare-fronted\n * gateway via {@link KNOWN_NETWORKS}.\n * - `bootstrap: string[]` → explicit seed list (private deployments).\n * 2. Fetches `GET /api/v3/discovery/clusters` from the first reachable\n * seed; the response carries every active cluster's gateway URL.\n * 3. Random-picks one active cluster.\n * 4. Returns a `BaasClient` pointed at that cluster's gatewayUrl, with\n * `pathPrefix: '/host'` so all BaaS sub-clients (db / storage /\n * functions / messaging / agents / rules / entities) route through\n * the gateway's `/host/*` rewrite.\n *\n * @example Zero-config (recommended)\n * ```ts\n * const baas = await BaasClient.connectToCluster({\n * network: 'testnet',\n * appId: 'app_abc',\n * });\n *\n * await baas.db.insert('users', { name: 'Alice' });\n * ```\n *\n * @example Custom seeds (private deployments)\n * ```ts\n * const baas = await BaasClient.connectToCluster({\n * bootstrap: ['https://gateway.my-private-net.example'],\n * appId: 'app_abc',\n * });\n * ```\n *\n * @throws {BaasError} `503` when no cluster is reachable via any seed.\n * @throws {BaasError} `400` when bootstrap resolution yields an empty list\n * (only possible when the caller passes an empty array explicitly).\n */\n static async connectToCluster(config: BaasConnectToClusterConfig): Promise<BaasClient> {\n const allowInsecure = config.allowInsecure ?? false;\n\n const resolved = await resolveClusterEndpoint({\n bootstrap: config.bootstrap,\n network: config.network,\n allowInsecure,\n trustAnchor: config.trustAnchor,\n });\n\n if (!resolved.ok) {\n if (resolved.reason === 'no-seeds') {\n throw new BaasError(\n 'connectToCluster requires either a non-empty `bootstrap` list or a known `network` name.',\n 400,\n );\n }\n throw new BaasError(\n 'No active clusters available via bootstrap seeds. Check network reachability or bootstrap URLs.',\n 503,\n );\n }\n\n const cluster = resolved.cluster;\n return new BaasClient({\n hostUrl: cluster.endpoints.gatewayUrl,\n appId: config.appId,\n appName: config.appName,\n timeout: config.timeout,\n allowInsecure,\n // BaaS traffic is gateway-routed at `/host/*` by default. Callers\n // pointing at a bare host can override with `pathPrefix: ''`.\n pathPrefix: config.pathPrefix ?? '/host',\n });\n }\n\n /** Set the app ID (for newly registered apps) */\n setAppId(appId: string): void {\n this.appId = appId;\n }\n\n /** Check if the client is authenticated */\n isAuthenticated(): boolean {\n return this.http.getAuthToken() !== undefined;\n }\n\n /** Get the current app ID */\n getAppId(): string | undefined {\n return this.appId;\n }\n\n /**\n * Get the configured host URL. After\n * {@link BaasClient.connectToCluster} this is the gateway URL of the\n * cluster the SDK landed on after random-pick — useful for logging,\n * \"behind the curtain\" UIs, or debugging which cluster is serving a\n * given request.\n */\n getHostUrl(): string {\n return this.hostUrl;\n }\n\n /**\n * Get HTTP resilience health information\n * @returns Object with circuit breaker state and last error (if any)\n */\n getHttpHealth(): { breaker: CircuitBreakerSnapshot | null; lastError?: Error } {\n // Note: In a real implementation, we would get the circuit breaker state\n // from the resilient HTTP layer. For now, return null since the base\n // HTTP client doesn't expose it yet.\n return {\n breaker: null,\n lastError: this.lastHttpError,\n };\n }\n\n private requireAppId(): string {\n if (!this.appId) {\n throw new BaasError(\n 'App ID required. Provide appId in config (e.g. from a prior deployment.init() call).',\n 400\n );\n }\n return this.appId;\n }\n\n // ========== Authentication ==========\n\n /**\n * Authenticate with the BaaS host using wallet challenge-response\n *\n * 1. Requests a challenge message from the host\n * 2. Signs the challenge with the provided signing function\n * 3. Submits the signature for verification\n * 4. Stores the JWT token for subsequent requests\n */\n async authenticate(options: AuthenticateOptions): Promise<BaasAuthResult> {\n const { chain, walletAddress, publicKey, signFn } = options;\n // Retain for transparent re-authentication when the token later expires.\n this.authContext = options;\n\n // Step 1: Request challenge — `this.http` already includes the\n // pathPrefix in its baseUrl, so we use the same /api/v3/baas/* path the\n // server route exposes.\n let challenge: BaasChallengeResponse;\n try {\n challenge = await this.http.post<BaasChallengeResponse>('/api/v3/baas/auth/challenge', {\n chain,\n walletAddress,\n appId: this.appId,\n });\n } catch (err) {\n throw asBaasError(err);\n }\n\n // Step 2: Sign the challenge\n const signature = await signFn(challenge.message);\n\n // Step 3: Verify and get token\n let result: BaasAuthResult;\n try {\n result = await this.http.post<BaasAuthResult>('/api/v3/baas/auth/verify', {\n challengeId: challenge.challengeId,\n signature,\n publicKey,\n });\n } catch (err) {\n throw asBaasError(err);\n }\n\n // Persist the token on the shared HTTP client so every subsequent\n // sub-client request automatically carries Authorization: Bearer ...\n this.http.setAuthToken(result.token);\n\n return result;\n }\n\n /**\n * Re-run the challenge-response with the retained signer to mint a fresh\n * session token. Invoked by the http client's `onUnauthorized` hook when a\n * request 401s because the token expired — so long-lived clients keep working\n * without the caller re-implementing refresh. No-op if {@link authenticate}\n * was never called. The `/api/v3/baas/auth/*` calls below are excluded from the http\n * client's 401-retry path, so this can never recurse.\n */\n private async reauthenticate(): Promise<void> {\n const ctx = this.authContext;\n if (!ctx) return; // never authenticated — nothing to refresh\n const challenge = await this.http.post<BaasChallengeResponse>('/api/v3/baas/auth/challenge', {\n chain: ctx.chain,\n walletAddress: ctx.walletAddress,\n appId: this.appId,\n });\n const signature = await ctx.signFn(challenge.message);\n const result = await this.http.post<BaasAuthResult>('/api/v3/baas/auth/verify', {\n challengeId: challenge.challengeId,\n signature,\n publicKey: ctx.publicKey,\n });\n this.http.setAuthToken(result.token);\n }\n\n /** Validate the current session */\n async validateSession(): Promise<BaasSessionInfo> {\n this.requireAuth();\n try {\n return await this.http.get<BaasSessionInfo>('/api/v3/baas/auth/session');\n } catch (err) {\n throw asBaasError(err);\n }\n }\n\n /** Destroy the current session on server and clear local token */\n async logout(): Promise<void> {\n if (this.http.getAuthToken()) {\n try {\n await this.http.post('/api/v3/baas/auth/logout', {});\n } catch {\n // Best effort — clear locally even if server request fails\n }\n }\n this.http.setAuthToken(undefined);\n }\n\n // ========== HTTP Helpers ==========\n\n private requireAuth(): void {\n if (!this.http.getAuthToken()) {\n throw new BaasError('Authentication required. Call authenticate() first.', 401);\n }\n }\n}\n\n/**\n * BaaS Error\n */\nexport class BaasError extends Error {\n constructor(\n message: string,\n public readonly statusCode: number,\n public readonly details?: BaasErrorDetails\n ) {\n super(message);\n this.name = 'BaasError';\n }\n}\n\n/**\n * Convert a thrown `SdkHttpError` (raised by the shared HTTP client) into\n * a `BaasError` so BaaS callers continue to see the historically expected\n * error type, with a uniform `statusCode` field and the raw server-side\n * `details` payload preserved.\n */\nfunction asBaasError(err: unknown): BaasError {\n if (err instanceof BaasError) return err;\n if (err instanceof SdkHttpError) {\n const details = (err.details ?? undefined) as BaasErrorDetails | undefined;\n return new BaasError(err.message, err.statusCode, details);\n }\n const e = err as Error;\n return new BaasError(`Network error: ${e?.message ?? String(err)}`, 0, {\n originalError: e?.message ?? String(err),\n });\n}\n\nfunction validateUrl(url: string, allowInsecure = false): string {\n try {\n const parsed = new URL(url);\n if (!['http:', 'https:'].includes(parsed.protocol)) {\n throw new BaasError(`Invalid protocol: ${parsed.protocol}`, 400);\n }\n if (!allowInsecure && parsed.protocol !== 'https:') {\n throw new BaasError(\n 'HTTPS is required for secure connections. Set allowInsecure=true for local development.',\n 400\n );\n }\n return parsed.origin;\n } catch (error) {\n if (error instanceof BaasError) throw error;\n throw new BaasError(`Invalid URL: ${url}`, 400);\n }\n}\n","import {\n Injectable,\n Logger,\n OnModuleInit,\n OnModuleDestroy,\n Inject,\n Optional,\n} from '@nestjs/common';\nimport { SmartEngineClient, SmartEngineClientConfig, SmartEngineError } from '../client';\nimport { SmartGatewayClient } from '../gateway';\nimport { BaasClient as SdkBaasClient } from '../baas';\n\n/**\n * Configuration for SmartEngineService\n */\nexport interface SmartEngineServiceConfig extends SmartEngineClientConfig {\n /** Enable automatic connection test on module init */\n testConnection?: boolean;\n /** Enable auto-reconnect on connection failure */\n autoReconnect?: boolean;\n /** Reconnection interval in milliseconds */\n reconnectInterval?: number;\n /** Maximum reconnection attempts (0 = infinite) */\n maxReconnectAttempts?: number;\n}\n\n/**\n * Configuration token for dependency injection\n */\nexport const SMART_ENGINE_CONFIG = 'SMART_ENGINE_CONFIG';\n\n/**\n * Injection token for the full SDK `BaasClient` (with `.rules`, `.entities`,\n * `.db`, `.storage`, etc. as sub-clients). Use this when a consumer wants the\n * parent BaaS surface.\n */\nexport const SDK_BAAS_CLIENT = 'SDK_BAAS_CLIENT';\n\n/**\n * Injection token for the BaaS `RulesClient` sub-client (publish/get/list/\n * simulate/deprecate canonical validator rules).\n */\nexport const RULES_CLIENT = 'RULES_CLIENT';\n\n/**\n * Injection token for the BaaS `EntitiesClient` sub-client (create\n * token/account/topic/agent + launchpad).\n */\nexport const ENTITIES_CLIENT = 'ENTITIES_CLIENT';\n\n/**\n * BaaS (Blockchain-as-a-Service) client interface\n *\n * Provides simplified access to blockchain operations for BaaS scenarios\n * where applications need managed blockchain infrastructure without\n * direct validator management.\n */\nexport interface BaasClient {\n /** The underlying SmartEngineClient */\n readonly client: SmartEngineClient;\n /** Check if the client is connected and healthy */\n isHealthy(): Promise<boolean>;\n /** Get the validator base URL */\n getBaseUrl(): string;\n}\n\n/**\n * SmartEngineService - NestJS injectable service for Smart Engines SDK\n *\n * Provides lifecycle-managed access to SmartEngineClient with:\n * - Automatic connection testing on module init\n * - Graceful shutdown on module destroy\n * - BaaS client wrapper for simplified access\n * - Optional auto-reconnect functionality\n *\n * @example Module configuration with forRoot\n * ```typescript\n * import { Module } from '@nestjs/common';\n * import { SmartEngineModule } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Module({\n * imports: [\n * SmartEngineModule.forRoot({\n * validatorBaseUrl: 'https://validator.example.com',\n * apiKey: process.env.SMART_ENGINE_API_KEY,\n * testConnection: true,\n * }),\n * ],\n * })\n * export class AppModule {}\n * ```\n *\n * @example Direct service injection\n * ```typescript\n * import { Injectable } from '@nestjs/common';\n * import { SmartEngineService } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Injectable()\n * export class MyService {\n * constructor(private readonly smartEngine: SmartEngineService) {}\n *\n * async doSomething() {\n * const client = this.smartEngine.getClient();\n * const health = await client.getHealth();\n * }\n * }\n * ```\n */\n@Injectable()\nexport class SmartEngineService implements OnModuleInit, OnModuleDestroy {\n private readonly logger = new Logger(SmartEngineService.name);\n private client: SmartEngineClient | null = null;\n private baasClient: BaasClient | null = null;\n private connected = false;\n private reconnectTimer: NodeJS.Timeout | null = null;\n private reconnectAttempts = 0;\n\n constructor(\n @Optional()\n @Inject(SMART_ENGINE_CONFIG)\n private readonly config?: SmartEngineServiceConfig\n ) {}\n\n /**\n * Initialize the service when the module starts\n */\n async onModuleInit(): Promise<void> {\n if (!this.config) {\n this.logger.warn(\n 'SmartEngineService initialized without configuration. Call configure() before using.'\n );\n return;\n }\n\n await this.initialize(this.config);\n }\n\n /**\n * Clean up resources when the module is destroyed\n */\n async onModuleDestroy(): Promise<void> {\n await this.shutdown();\n }\n\n /**\n * Initialize the service with configuration\n *\n * Can be called manually if not using DI configuration\n */\n async initialize(config: SmartEngineServiceConfig): Promise<void> {\n this.logger.log(`Initializing SmartEngineService for ${config.validatorBaseUrl}`);\n\n try {\n this.client = new SmartEngineClient({\n // SDK 4.0 validator-origin type-fence: the service config extends\n // SmartEngineClientConfig, so it carries `validatorBaseUrl` directly.\n validatorBaseUrl: config.validatorBaseUrl,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n allowInsecure: config.allowInsecure,\n });\n\n // Create BaaS client wrapper\n this.baasClient = this.createBaasClient(this.client);\n\n // Test connection if enabled\n if (config.testConnection !== false) {\n await this.testConnection();\n }\n\n this.connected = true;\n this.reconnectAttempts = 0;\n this.logger.log('SmartEngineService initialized successfully');\n } catch (error) {\n const err = error as Error;\n this.logger.error(`Failed to initialize SmartEngineService: ${err.message}`);\n\n if (config.autoReconnect) {\n this.scheduleReconnect(config);\n } else {\n throw error;\n }\n }\n }\n\n /**\n * Gracefully shutdown the service\n */\n async shutdown(): Promise<void> {\n this.logger.log('Shutting down SmartEngineService');\n\n // Clear reconnect timer\n if (this.reconnectTimer) {\n clearTimeout(this.reconnectTimer);\n this.reconnectTimer = null;\n }\n\n // Clear client references\n this.client = null;\n this.baasClient = null;\n this.connected = false;\n\n this.logger.log('SmartEngineService shutdown complete');\n }\n\n /**\n * Get the SmartEngineClient instance\n *\n * @throws SmartEngineError if client is not initialized\n */\n getClient(): SmartEngineClient {\n if (!this.client) {\n throw new SmartEngineError(\n 'SmartEngineClient not initialized. Ensure SmartEngineService is configured properly.',\n 500\n );\n }\n return this.client;\n }\n\n /**\n * Get the BaaS client for simplified blockchain access\n *\n * The BaaS client provides a simplified interface for applications\n * that need managed blockchain infrastructure access.\n *\n * @throws SmartEngineError if client is not initialized\n */\n getBaasClient(): BaasClient {\n if (!this.baasClient) {\n throw new SmartEngineError(\n 'BaasClient not initialized. Ensure SmartEngineService is configured properly.',\n 500\n );\n }\n return this.baasClient;\n }\n\n /**\n * Check if the service is connected and healthy\n */\n isConnected(): boolean {\n return this.connected;\n }\n\n /**\n * Test the connection to the validator\n */\n async testConnection(): Promise<boolean> {\n if (!this.client) {\n return false;\n }\n\n try {\n const health = await this.client.getHealth();\n this.connected = health.status === 'healthy' || health.status === 'ok';\n return this.connected;\n } catch (error) {\n const err = error as Error;\n this.logger.warn(`Connection test failed: ${err.message}`);\n this.connected = false;\n return false;\n }\n }\n\n /**\n * Get the current connection status\n */\n getStatus(): {\n connected: boolean;\n baseUrl: string | null;\n authenticated: boolean;\n reconnectAttempts: number;\n } {\n return {\n connected: this.connected,\n baseUrl: this.client?.getBaseUrl() ?? null,\n authenticated: this.client?.isAuthenticated() ?? false,\n reconnectAttempts: this.reconnectAttempts,\n };\n }\n\n /**\n * Create a SmartGatewayClient for gateway operations\n */\n createGatewayClient(config: {\n baseUrl: string;\n apiKey?: string;\n authToken?: string;\n timeout?: number;\n allowInsecure?: boolean;\n }): SmartGatewayClient {\n return new SmartGatewayClient(config);\n }\n\n /**\n * Create a BaaS client for host operations\n */\n createHostClient(config: {\n hostUrl: string;\n appId?: string;\n timeout?: number;\n allowInsecure?: boolean;\n }): SdkBaasClient {\n return new SdkBaasClient(config);\n }\n\n /**\n * Create a BaaS client wrapper around the SmartEngineClient\n */\n private createBaasClient(client: SmartEngineClient): BaasClient {\n return {\n client,\n isHealthy: async () => {\n try {\n const health = await client.getHealth();\n return health.status === 'healthy' || health.status === 'ok';\n } catch {\n return false;\n }\n },\n getBaseUrl: () => client.getBaseUrl(),\n };\n }\n\n /**\n * Schedule a reconnection attempt\n */\n private scheduleReconnect(config: SmartEngineServiceConfig): void {\n const maxAttempts = config.maxReconnectAttempts ?? 0;\n const interval = config.reconnectInterval ?? 5000;\n\n if (maxAttempts > 0 && this.reconnectAttempts >= maxAttempts) {\n this.logger.error(`Max reconnection attempts (${maxAttempts}) reached. Giving up.`);\n return;\n }\n\n this.reconnectAttempts++;\n this.logger.log(`Scheduling reconnection attempt ${this.reconnectAttempts} in ${interval}ms`);\n\n this.reconnectTimer = setTimeout(async () => {\n try {\n await this.initialize(config);\n } catch {\n // Error already logged in initialize\n }\n }, interval);\n }\n}\n","import { DynamicModule, Module, Provider, Type } from '@nestjs/common';\nimport {\n SmartEngineService,\n SmartEngineServiceConfig,\n SMART_ENGINE_CONFIG,\n SDK_BAAS_CLIENT,\n RULES_CLIENT,\n ENTITIES_CLIENT,\n} from './smart-engine.service';\nimport { BaasClient as SdkBaasClient } from '../baas';\n\n/**\n * Options for async module configuration\n */\nexport interface SmartEngineModuleAsyncOptions {\n /** Imports required for the factory */\n imports?: any[];\n /** Factory function to create configuration */\n useFactory?: (...args: any[]) => Promise<SmartEngineServiceConfig> | SmartEngineServiceConfig;\n /** Dependencies to inject into the factory */\n inject?: any[];\n /** Class to use for configuration */\n useClass?: Type<SmartEngineOptionsFactory>;\n /** Existing provider to use for configuration */\n useExisting?: Type<SmartEngineOptionsFactory>;\n /** Make the module global */\n isGlobal?: boolean;\n}\n\n/**\n * Factory interface for creating SmartEngine configuration\n */\nexport interface SmartEngineOptionsFactory {\n createSmartEngineOptions(): Promise<SmartEngineServiceConfig> | SmartEngineServiceConfig;\n}\n\n/**\n * SmartEngineModule - NestJS module for Smart Engines SDK integration\n *\n * Provides dependency injection for SmartEngineService with support for\n * both synchronous and asynchronous configuration.\n *\n * @example Synchronous configuration with forRoot\n * ```typescript\n * import { Module } from '@nestjs/common';\n * import { SmartEngineModule } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Module({\n * imports: [\n * SmartEngineModule.forRoot({\n * validatorBaseUrl: 'https://validator.example.com',\n * apiKey: 'your-api-key',\n * testConnection: true,\n * }),\n * ],\n * })\n * export class AppModule {}\n * ```\n *\n * @example Async configuration with forRootAsync\n * ```typescript\n * import { Module } from '@nestjs/common';\n * import { ConfigService, ConfigModule } from '@nestjs/config';\n * import { SmartEngineModule } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Module({\n * imports: [\n * SmartEngineModule.forRootAsync({\n * imports: [ConfigModule],\n * useFactory: (configService: ConfigService) => ({\n * validatorBaseUrl: configService.get('SMART_ENGINE_URL'),\n * apiKey: configService.get('SMART_ENGINE_API_KEY'),\n * testConnection: true,\n * }),\n * inject: [ConfigService],\n * }),\n * ],\n * })\n * export class AppModule {}\n * ```\n *\n * @example Using a configuration class\n * ```typescript\n * import { Injectable } from '@nestjs/common';\n * import { SmartEngineModule, SmartEngineOptionsFactory } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Injectable()\n * class SmartEngineConfigService implements SmartEngineOptionsFactory {\n * createSmartEngineOptions() {\n * return {\n * validatorBaseUrl: process.env.SMART_ENGINE_URL,\n * apiKey: process.env.SMART_ENGINE_API_KEY,\n * };\n * }\n * }\n *\n * @Module({\n * imports: [\n * SmartEngineModule.forRootAsync({\n * useClass: SmartEngineConfigService,\n * }),\n * ],\n * })\n * export class AppModule {}\n * ```\n */\n@Module({})\nexport class SmartEngineModule {\n /**\n * Configure the module with static configuration.\n *\n * @param config - SmartEngine service configuration.\n * @param isGlobal - Whether to make the module global. @defaultValue true\n * @returns A `DynamicModule` exporting {@link SmartEngineService} plus the\n * BaaS / rules / entities clients.\n */\n static forRoot(config: SmartEngineServiceConfig, isGlobal = true): DynamicModule {\n return {\n module: SmartEngineModule,\n global: isGlobal,\n providers: [\n {\n provide: SMART_ENGINE_CONFIG,\n useValue: config,\n },\n SmartEngineService,\n ...this.createBaasProviders(),\n ],\n exports: [\n SmartEngineService,\n SDK_BAAS_CLIENT,\n RULES_CLIENT,\n ENTITIES_CLIENT,\n ],\n };\n }\n\n /**\n * Configure the module with async configuration.\n *\n * Supports factory functions, configuration classes, and existing providers.\n *\n * @param options - Async configuration options.\n * @returns A `DynamicModule` exporting {@link SmartEngineService} plus the\n * BaaS / rules / entities clients.\n * @throws Error if `options` provides none of `useFactory`, `useClass`, or\n * `useExisting`.\n */\n static forRootAsync(options: SmartEngineModuleAsyncOptions): DynamicModule {\n const asyncProviders = this.createAsyncProviders(options);\n\n return {\n module: SmartEngineModule,\n global: options.isGlobal ?? true,\n imports: options.imports || [],\n providers: [\n ...asyncProviders,\n SmartEngineService,\n ...this.createBaasProviders(),\n ],\n exports: [\n SmartEngineService,\n SDK_BAAS_CLIENT,\n RULES_CLIENT,\n ENTITIES_CLIENT,\n ],\n };\n }\n\n /**\n * Build the BaaS SDK providers — the full `BaasClient` and its `rules` /\n * `entities` sub-clients — all bound to dedicated injection tokens. Wired\n * into both `forRoot` and `forRootAsync` so consumers can\n * `@Inject(RULES_CLIENT) rules: RulesClient` directly.\n */\n private static createBaasProviders(): Provider[] {\n return [\n {\n provide: SDK_BAAS_CLIENT,\n useFactory: (config: SmartEngineServiceConfig) =>\n new SdkBaasClient({\n // SDK 4.0: the service config carries a single origin field\n // (`validatorBaseUrl`); the BaaS client uses it as its `hostUrl`,\n // preserving the prior single-URL wiring.\n hostUrl: config.validatorBaseUrl,\n timeout: config.timeout,\n allowInsecure: config.allowInsecure,\n }),\n inject: [SMART_ENGINE_CONFIG],\n },\n {\n provide: RULES_CLIENT,\n useFactory: (baas: SdkBaasClient) => baas.rules,\n inject: [SDK_BAAS_CLIENT],\n },\n {\n provide: ENTITIES_CLIENT,\n useFactory: (baas: SdkBaasClient) => baas.entities,\n inject: [SDK_BAAS_CLIENT],\n },\n ];\n }\n\n /**\n * Create async providers based on configuration options\n */\n private static createAsyncProviders(options: SmartEngineModuleAsyncOptions): Provider[] {\n if (options.useFactory) {\n return [\n {\n provide: SMART_ENGINE_CONFIG,\n useFactory: options.useFactory,\n inject: options.inject || [],\n },\n ];\n }\n\n if (options.useClass) {\n return [\n {\n provide: options.useClass,\n useClass: options.useClass,\n },\n {\n provide: SMART_ENGINE_CONFIG,\n useFactory: async (optionsFactory: SmartEngineOptionsFactory) =>\n optionsFactory.createSmartEngineOptions(),\n inject: [options.useClass],\n },\n ];\n }\n\n if (options.useExisting) {\n return [\n {\n provide: SMART_ENGINE_CONFIG,\n useFactory: async (optionsFactory: SmartEngineOptionsFactory) =>\n optionsFactory.createSmartEngineOptions(),\n inject: [options.useExisting],\n },\n ];\n }\n\n throw new Error(\n 'Invalid SmartEngineModuleAsyncOptions: must provide useFactory, useClass, or useExisting'\n );\n }\n}\n"]}
1
+ {"version":3,"sources":["../../src/_vendor/chain.schema.ts","../../src/_vendor/capabilities.schema.ts","../../src/_vendor/account.schema.ts","../../src/_vendor/sovereignty.schema.ts","../../src/_vendor/api.schema.ts","../../src/discovery/mirror-node.ts","../../src/discovery/validator-discovery.ts","../../src/discovery/cluster-discovery.ts","../../src/http/index.ts","../../src/discovery/discovery-client.ts","../../src/network-presets.ts","../../src/discovery/resolve-cluster.ts","../../src/auth/validator-auth.ts","../../src/subscription/index.ts","../../src/faucet/index.ts","../../src/tss/index.ts","../../src/ipfs/index.ts","../../src/hedera-tss/index.ts","../../src/transactions/chains/hedera.ts","../../src/transactions/chains/xrpl.ts","../../src/transactions/chains/solana.ts","../../src/transactions/chains/polkadot.ts","../../src/transactions/index.ts","../../src/snapshots/index.ts","../../src/historical-balance/historical-balance-client.ts","../../src/settlement/index.ts","../../src/governance/governance-client.ts","../../src/dao/dashboard-client.ts","../../src/dao/dao-client.ts","../../src/personhood/personhood-client.ts","../../src/baas/agents/index.ts","../../src/baas/deployment/index.ts","../../src/bridge/bridge-client.ts","../../src/resources/resources-client.ts","../../src/envelope/envelope-client.ts","../../src/tokens/tokens-client.ts","../../src/operator/operator-client.ts","../../src/client.ts","../../src/gateway/routing/index.ts","../../src/gateway/domains/index.ts","../../src/gateway/dns/index.ts","../../src/gateway/health/index.ts","../../src/gateway/client.ts","../../src/baas/database/index.ts","../../src/baas/storage/index.ts","../../src/baas/functions/index.ts","../../src/baas/messaging/index.ts","../../src/baas/customer-session/index.ts","../../src/baas/rules/client.ts","../../src/baas/entities/client.ts","../../src/baas/client.ts","../../src/nestjs/smart-engine.service.ts","../../src/nestjs/smart-engine.module.ts"],"names":["z","buildQuery","validateUrl","SmartEngineService","Logger","Injectable","Optional","SmartEngineModule","Module"],"mappings":";;;;;;;;;;;;;;AAKO,IAAM,eAAA,GAAkBA,MAAE,IAAA,CAAK;AAAA,EACpC,QAAA;AAAA,EACA,MAAA;AAAA,EACA,UAAA;AAAA,EACA,QAAA;AAAA,EACA,SAAA;AAAA,EACA,UAAA;AAAA,EACA,SAAA;AAAA,EACA,SAAA;AAAA,EACA;AACF,CAAC,CAAA;AAOM,IAAM,iBAAA,GAAoBA,MAAE,IAAA,CAAK,CAAC,WAAW,SAAA,EAAW,QAAA,EAAU,OAAO,CAAC,CAAA;AAO9CA,MAAE,MAAA,CAAO;AAAA,EAC1C,KAAA,EAAO,eAAA;AAAA,EACP,OAAA,EAAS,iBAAA;AAAA,EACT,cAAA,EAAgBA,MAAE,MAAA,CAAO;AAAA,IACvB,IAAA,EAAMA,MAAE,MAAA,EAAO;AAAA,IACf,MAAA,EAAQA,MAAE,MAAA,EAAO;AAAA,IACjB,UAAUA,KAAA,CAAE,MAAA,GAAS,GAAA,EAAI,CAAE,IAAI,CAAC;AAAA,GACjC,CAAA;AAAA,EACD,SAAA,EAAWA,KAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,aAAaA,KAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,QAAA;AAChC,CAAC;ACzBM,IAAM,uBAAA,GAA0BA,MAAE,MAAA,CAAO;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM9C,QAAA,EAAUA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOnC,YAAA,EAAcA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOvC,SAAA,EAAWA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOpC,QAAA,EAAUA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOnC,QAAA,EAAUA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOlC,QAAA,EAAUA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAMlC,YAAA,EAAcA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI;AACxC,CAAC,CAAA;ACxDM,IAAM,eAAA,GAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAQdA,MAAE,MAAA,CAAO;AAAA,EACxC,SAAA,EAAW,eAAA;AAAA,EACX,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA;AAAA,EAClB,KAAA,EAAO,eAAA;AAAA,EACP,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA,EAAS;AAAA,EACrC,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA,EAAS;AAAA,EAC7B,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC;AAOmCA,MAAE,MAAA,CAAO;AAAA,EAC3C,SAAA,EAAW,eAAA;AAAA,EACX,KAAA,EAAO,eAAA;AAAA,EACP,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,QAAQA,KAAAA,CACL,KAAA;AAAA,IACCA,MAAE,MAAA,CAAO;AAAA,MACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,UAAUA,KAAAA,CAAE,MAAA,GAAS,GAAA,EAAI,CAAE,IAAI,CAAC,CAAA;AAAA,MAChC,MAAA,EAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAAS,KAC7B;AAAA,IAEF,QAAA,EAAS;AAAA,EACZ,SAAA,EAAWA,MAAE,IAAA;AACf,CAAC;AC/BM,IAAM,qBAAqBA,KAAAA,CAAE,IAAA,CAAK,CAAC,SAAA,EAAW,MAAM,CAAC,CAAA;AAYrD,IAAM,0BAAA,GAA6B,CAAC,CAAA,KAI5B;AACb,EAAA,IAAI,CAAA,CAAE,iBAAiB,SAAA,EAAW;AAChC,IAAA,OAAO,CAAC,CAAC,CAAA,CAAE,QAAA,IAAY,CAAC,CAAC,CAAA,CAAE,iBAAA;AAAA,EAC7B;AAEA,EAAA,OAAO,CAAC,CAAC,CAAA,CAAE,QAAA;AACb,CAAA;AAEO,IAAM,0BAAA,GACX,sFAAA;AAWK,IAAM,0BAAA,GAA6BA,MAAE,MAAA,CAAO;AAAA,EACjD,YAAA,EAAc,kBAAA,CAAmB,OAAA,CAAQ,MAAM,CAAA;AAAA,EAC/C,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,iBAAA,EAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAChC,CAAC,CAAA;AAEsC,0BAAA,CACpC,MAAA,CAAO,4BAA4B,EAAE,OAAA,EAAS,4BAA4B;AA+BtE,IAAM,uBAAkDA,KAAAA,CAAE,IAAA;AAAA,EAAK,MACpEA,MAAE,KAAA,CAAM;AAAA,IACNA,KAAAA,CAAE,MAAA,CAAO,EAAE,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA,EAAG,GAAA,EAAKA,KAAAA,CAAE,MAAA,EAAO,EAAG,CAAA;AAAA,IACxDA,MAAE,MAAA,CAAO;AAAA,MACP,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA;AAAA,MACzB,WAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA,EAAY;AAAA,MACxC,IAAA,EAAMA,KAAAA,CAAE,KAAA,CAAM,oBAAoB;AAAA,KACnC;AAAA,GACF;AACH,CAAA;AAEO,IAAM,iCAAA,GAAoCA,MAAE,MAAA,CAAO;AAAA,EACxD,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,QAAQ,CAAA;AAAA,EACzB,QAAA,EAAU,oBAAA;AAAA,EACV,SAAA,EAAW,qBAAqB,QAAA,EAAS;AAAA,EACzC,SAAA,EAAW,qBAAqB,QAAA,EAAS;AAAA,EACzC,OAAA,EAAS,qBAAqB,QAAA,EAAS;AAAA,EACvC,QAAA,EAAU,qBAAqB,QAAA,EAAS;AAAA,EACxC,MAAA,EAAQ,qBAAqB,QAAA;AAC/B,CAAC,CAAA;AAEM,IAAM,+BAAA,GAAkCA,MAAE,MAAA,CAAO;AAAA,EACtD,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,MAAM,CAAA;AAAA,EACvB,eAAeA,KAAAA,CAAE,KAAA;AAAA,IACfA,MAAE,MAAA,CAAO;AAAA,MACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,QAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AAAY,KACtC;AAAA,GACH;AAAA,EACA,cAAcA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA,EAAY;AAAA,EAC3C,cAAA,EAAgBA,MAAE,OAAA;AACpB,CAAC,CAAA;AAEM,IAAM,kCAAA,GAAqCA,MAAE,MAAA,CAAO;AAAA,EACzD,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA;AAAA,EAC1B,SAASA,KAAAA,CAAE,KAAA;AAAA,IACTA,MAAE,MAAA,CAAO;AAAA,MACP,GAAA,EAAKA,MAAE,MAAA,EAAO;AAAA,MACd,QAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AAAY,KACtC;AAAA,GACH;AAAA,EACA,UAAA,EAAYA,MAAE,MAAA,CAAO;AAAA,IACnB,KAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA,EAAY;AAAA,IAClC,KAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA,EAAY;AAAA,IAClC,MAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AAAY,GACpC,CAAA;AAAA,EACD,cAAcA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AACjC,CAAC,CAAA;AAuBM,IAAM,+BAAkEA,KAAAA,CAAE,IAAA;AAAA,EAAK,MACpFA,MAAE,KAAA,CAAM;AAAA,IACNA,KAAAA,CAAE,MAAA,CAAO,EAAE,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA,EAAG,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,EAAG,CAAA;AAAA,IAC5DA,MAAE,MAAA,CAAO;AAAA,MACP,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,UAAU,CAAA;AAAA,MAC1B,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,WAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,QAAA,EAAS;AAAA,MACrC,WAAA,EAAaA,KAAAA,CAAE,KAAA,CAAM,4BAA4B;AAAA,KAClD;AAAA,GACF;AACH,CAAA;AAEO,IAAM,mCAAA,GAAsCA,MAAE,MAAA,CAAO;AAAA,EAC1D,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,UAAU,CAAA;AAAA,EAC3B,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,SAAA,EAAW,4BAAA;AAAA,EACX,YAAYA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,WAAA;AAC/B,CAAC,CAAA;AAEM,IAAM,yCAAA,GAA4CA,KAAAA,CAAE,kBAAA,CAAmB,OAAA,EAAS;AAAA,EACrF,iCAAA;AAAA,EACA,+BAAA;AAAA,EACA,kCAAA;AAAA,EACA;AACF,CAAC,CAAA;AAqBM,IAAM,oCAAA,GAAuCA,KAAAA,CAAE,kBAAA,CAAmB,MAAA,EAAQ;AAAA,EAC/EA,MAAE,MAAA,CAAO;AAAA,IACP,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA;AAAA,IACzB,QAAA,EAAUA,MAAE,MAAA,EAAO;AAAA,IACnB,mBAAA,EAAqBA,KAAAA,CAAE,KAAA,CAAMA,KAAAA,CAAE,QAAQ,CAAA;AAAA,IACvC,gBAAA,EAAkB,0CAA0C,QAAA;AAAS,GACtE,CAAA;AAAA,EACDA,MAAE,MAAA,CAAO;AAAA,IACP,IAAA,EAAMA,KAAAA,CAAE,OAAA,CAAQ,MAAM,CAAA;AAAA,IACtB,QAAA,EAAUA,MAAE,MAAA,EAAO;AAAA,IACnB,mBAAA,EAAqBA,KAAAA,CAAE,KAAA,CAAMA,KAAAA,CAAE,QAAQ,CAAA;AAAA,IACvC,gBAAA,EAAkB,0CAA0C,QAAA;AAAS,GACtE;AACH,CAAC,CAAA;AClMM,IAAM,aAAA,GAAgBA,MAAE,MAAA,CAAO;AAAA;AAAA,EAEpC,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA;AAAA,EAEzB,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC;AACtC,CAAC,CAAA;AAUM,IAAM,0BAAA,GAA6BA,MAAE,MAAA,CAAO;AAAA,EACjD,KAAA,EAAO,eAAA;AAAA,EACP,cAAA,EAAgBA,MAAE,MAAA,EAAO;AAAA,EACzB,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,IAAA,EAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQ1B,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA,EAKpC,oBAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,gCAAgC,CAAA;AAAA;AAAA;AAAA;AAAA,EAItE,kBAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,8BAA8B,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAKlE,SAAA,EAAWA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOnC,YAAA,EAAcA,MAAE,IAAA,CAAK,CAAC,WAAW,MAAM,CAAC,CAAA,CAAE,OAAA,CAAQ,MAAM,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAKxD,iBAAA,EAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUvC,OAAA,EAAS,cAAc,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAMhC,YAAYA,KAAAA,CAAE,MAAA,GAAS,GAAA,CAAI,CAAC,EAAE,QAAA,EAAS;AAAA,EACvC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAO0CA,MAAE,MAAA,CAAO;AAAA,EAClD,SAAA,EAAW,eAAA;AAAA,EACX,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,UAAA,EAAYA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAChC,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,KAAA,EAAO,eAAA;AAAA,EACP,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC;AAOM,IAAM,qBAAA,GAAwBA,MAAE,MAAA,CAAO;AAAA,EAC5C,KAAA,EAAO,eAAA;AAAA,EACP,IAAA,EAAM,eAAA;AAAA,EACN,EAAA,EAAI,eAAA;AAAA,EACJ,MAAA,EAAQA,MAAE,MAAA,EAAO;AAAA,EACjB,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAC7B,IAAA,EAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE1B,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAOqCA,MAAE,MAAA,CAAO;AAAA,EAC7C,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,QAAQA,KAAAA,CAAE,IAAA,CAAK,CAAC,SAAA,EAAW,SAAA,EAAW,QAAQ,CAAC,CAAA;AAAA,EAC/C,KAAA,EAAO,eAAA;AAAA,EACP,GAAA,EAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACzB,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC;AAOwCA,MAAE,MAAA,CAAO;AAAA,EAChD,KAAA,EAAO,eAAA;AAAA,EACP,SAAA,EAAW;AACb,CAAC;AAO4CA,MAAE,MAAA,CAAO;AAAA,EACpD,KAAA,EAAO,eAAA;AAAA,EACP,aAAA,EAAeA,MAAE,MAAA;AACnB,CAAC;AAUM,IAAM,wBAAA,GAA2BA,MAAE,MAAA,CAAO;AAAA,EAC/C,KAAA,EAAO,eAAA;AAAA,EACP,IAAA,EAAMA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,GAAG,CAAA;AAAA,EAC/B,MAAA,EAAQA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EAChC,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,GAAA,CAAI,CAAC,CAAA,CAAE,GAAA,CAAI,EAAE,CAAA;AAAA,EACxC,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,MAAMA,KAAAA,CAAE,IAAA,CAAK,CAAC,UAAA,EAAY,KAAK,CAAC,CAAA;AAAA,EAChC,QAAA,EAAU,gBAAgB,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBnC,YAAA,EAAc,uBAAA,CAAwB,QAAA,EAAS,CAAE,OAAA,CAAQ;AAAA,IACvD,QAAA,EAAU,KAAA;AAAA,IACV,YAAA,EAAc,KAAA;AAAA,IACd,SAAA,EAAW,KAAA;AAAA,IACX,QAAA,EAAU,KAAA;AAAA,IACV,QAAA,EAAU,IAAA;AAAA,IACV,QAAA,EAAU,IAAA;AAAA,IACV,YAAA,EAAc;AAAA,GACf,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAKD,oBAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,gCAAgC,CAAA;AAAA;AAAA;AAAA;AAAA,EAItE,kBAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,8BAA8B,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAKlE,SAAA,EAAWA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,IAAI,CAAA;AAAA;AAAA,EAEnC,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUpC,OAAA,EAAS,cAAc,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA,EAKhC,YAAYA,KAAAA,CAAE,MAAA,GAAS,GAAA,CAAI,CAAC,EAAE,QAAA,EAAS;AAAA,EACvC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAOwCA,MAAE,MAAA,CAAO;AAAA,EAChD,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,KAAA,EAAO,eAAA;AAAA,EACP,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC;AAgBM,IAAM,sBAAA,GAAyBA,MAAE,MAAA,CAAO;AAAA,EAC7C,KAAA,EAAO,eAAA;AAAA,EACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA;AAAA,EAGlB,MAAA,EAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAG5B,SAAA,EAAW,gBAAgB,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQpC,aAAaA,KAAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,EAAE,QAAA,EAAS;AAAA;AAAA,EAG1C,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA,EAAS;AAAA;AAAA,EAErC,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAC7B,CAAC,CAAA;AAOM,IAAM,sBAAA,GAAyBA,MAAE,MAAA,CAAO;AAAA,EAC7C,KAAA,EAAO,eAAA;AAAA,EACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,MAAA,EAAQA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEjB,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAOM,IAAM,wBAAA,GAA2BA,MAAE,MAAA,CAAO;AAAA,EAC/C,KAAA,EAAO,eAAA;AAAA,EACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,EAClB,SAAA,EAAW,gBAAgB,QAAA,EAAS;AAAA;AAAA,EACpC,MAAA,EAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA;AAAA,EAE5B,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,UAAUA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA;AAC9B,CAAC,CAAA;AAOM,IAAM,kBAAA,GAAqBA,MAAE,MAAA,CAAO;AAAA,EACzC,OAAA,EAASA,MAAE,OAAA,EAAQ;AAAA,EACnB,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,cAAA,EAAgBA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEzB,OAAOA,KAAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,EAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,SAAA,EAAWA,KAAAA,CAAE,IAAA,EAAK,CAAE,QAAA;AACtB,CAAC,CAAA;AAOsC,mBAAmB,MAAA,CAAO;AAAA,EAC/D,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA;AAAA,EAElB,mBAAA,EAAqBA,KAAAA,CAAE,KAAA,CAAMA,KAAAA,CAAE,QAAQ;AACzC,CAAC;AAWM,IAAM,wBAAA,GAA2BA,MAAE,MAAA,CAAO;AAAA;AAAA,EAE/C,WAAA,EAAaA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEtB,SAAA,EAAWA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEpB,SAAA,EAAWA,MAAE,MAAA,EAAO;AAAA;AAAA,EAEpB,QAAA,EAAUA,MAAE,IAAA,EAAK;AAAA;AAAA,EAEjB,SAAA,EAAWA,MAAE,IAAA,CAAK,CAAC,WAAW,iBAAA,EAAmB,WAAW,CAAC,CAAA,CAAE,QAAA;AACjE,CAAC,CAAA;AAOM,IAAM,4BAAA,GAA+BA,MAAE,MAAA,CAAO;AAAA;AAAA,EAEnD,gBAAgBA,KAAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,EAAE,QAAA,EAAS;AAAA;AAAA,EAE7C,iBAAA,EAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEvC,IAAA,EAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE1B,YAAA,EAAcA,MACX,MAAA,CAAO;AAAA,IACN,UAAA,EAAYA,MAAE,MAAA,EAAO;AAAA,IACrB,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAAS,GAC/B,EACA,QAAA;AACL,CAAC,CAAA;AAOM,IAAM,0BAAA,GAA6BA,MAAE,MAAA,CAAO;AAAA;AAAA,EAEjD,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE9B,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAExC,YAAYA,KAAAA,CACT,KAAA;AAAA,IACCA,MAAE,MAAA,CAAO;AAAA,MACP,OAAA,EAASA,MAAE,MAAA,EAAO;AAAA,MAClB,YAAA,EAAcA,MAAE,MAAA;AAAO,KACxB;AAAA,IAEF,QAAA,EAAS;AAAA;AAAA,EAEZ,YAAA,EAAcA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAC3B,CAAC,CAAA;AAOM,IAAM,4BAAA,GAA+BA,MAAE,MAAA,CAAO;AAAA;AAAA,EAEnD,eAAA,EAAiBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAErC,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE9B,YAAYA,KAAAA,CAAE,KAAA,CAAMA,MAAE,MAAA,EAAQ,EAAE,QAAA,EAAS;AAAA;AAAA,EAEzC,iBAAA,EAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEvC,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,sBAAA,EAAwBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE5C,qBAAA,EAAuBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE3C,eAAA,EAAiBA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAA,EAAS;AAAA;AAAA,EAEtC,YAAA,EAAcA,MAAE,IAAA,CAAK,CAAC,WAAW,MAAM,CAAC,EAAE,QAAA,EAAS;AAAA;AAAA,EAEnD,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AACtB,CAAC,CAAA;AAOM,IAAM,8BAAA,GAAiCA,MAAE,MAAA,CAAO;AAAA;AAAA,EAErD,GAAA,EAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEzB,KAAA,EAAOA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE3B,GAAA,EAAKA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEzB,WAAA,EAAaA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AAC1B,CAAC,CAAA;AAOM,IAAM,2BAAA,GAA8BA,MAAE,KAAA,CAAM;AAAA,EACjD,4BAAA;AAAA,EACA,0BAAA;AAAA,EACA,4BAAA;AAAA,EACA,8BAAA;AAAA,EACAA,KAAAA,CAAE,MAAA,CAAOA,KAAAA,CAAE,GAAA,EAAK;AAAA;AAClB,CAAC,CAAA;AAiBgDA,MAAE,MAAA,CAAO;AAAA;AAAA,EAExD,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,eAAA,EAAiBA,MAAE,MAAA,EAAO;AAAA;AAAA,EAE1B,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA;AAAA,EAExB,gBAAA,EAAkBA,MAAE,MAAA,EAAO;AAAA;AAAA,EAE3B,SAAA,EAAWA,MAAE,IAAA,EAAK;AAAA;AAAA,EAElB,mBAAA,EAAqBA,KAAAA,CAAE,KAAA,CAAM,wBAAwB,CAAA;AAAA;AAAA,EAErD,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,YAAA,EAAcA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAElC,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAExC,aAAA,EAAeA,KAAAA,CAAE,OAAA,EAAQ,CAAE,QAAQ,KAAK,CAAA;AAAA;AAAA,EAExC,QAAA,EAAU,4BAA4B,QAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM/C,WAAA,EAAa,qCAAqC,QAAA;AACpD,CAAC;AAsDgDA,MAAE,MAAA,CAAO;AAAA;AAAA,EAExD,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA;AAAA,EAExB,KAAA,EAAO,eAAA;AAAA;AAAA,EAEP,OAAA,EAASA,MAAE,OAAA,EAAQ;AAAA;AAAA,EAEnB,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAExC,WAAA,EAAaA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEjC,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAE/B,SAASA,KAAAA,CAAE,MAAA,CAAOA,MAAE,GAAA,EAAK,EAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,KAAA,EAAOA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA;AACpB,CAAC;AAc8CA,MAC5C,MAAA,CAAO;AAAA,EACN,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,QAAQ,CAAA;AAAA,EACzB,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EACpC,IAAA,EAAMA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,GAAG,CAAA;AAAA,EAC/B,MAAA,EAAQA,MAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EAChC,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,GAAM,GAAA,CAAI,CAAC,CAAA,CAAE,GAAA,CAAI,EAAE,CAAA;AAAA,EACxC,aAAA,EAAeA,MAAE,MAAA,EAAO;AAAA,EACxB,mBAAmBA,KAAAA,CAAE,MAAA,EAAO,CAAE,GAAA,CAAI,GAAG,+BAA+B,CAAA;AAAA,EACpE,IAAA,EAAMA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC1B,SAAA,EAAWA,MAAE,IAAA,CAAK,CAAC,mBAAmB,qBAAqB,CAAC,CAAA,CAAE,OAAA,CAAQ,iBAAiB,CAAA;AAAA,EACvF,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,QAAA,EAAUA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC9B,SAAA,EAAWA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC/B,MAAA,EAAQA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC5B,OAAA,EAASA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA,EAC7B,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA,EACpC,gBAAA,EAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC;AACpC,CAAC,CAAA,CAGA,MAAM,0BAA0B,CAAA,CAChC,OAAO,0BAAA,EAA4B,EAAE,OAAA,EAAS,0BAAA,EAA4B;AAUzBA,MACjD,MAAA,CAAO;AAAA,EACN,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,MAAM,CAAA;AAAA,EACvB,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,cAAA,EAAgBA,MAAE,MAAA,EAAO,CAAE,IAAI,EAAE,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EACzC,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA,EACpC,gBAAA,EAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC;AACpC,CAAC,CAAA,CACA,MAAM,0BAA0B,CAAA,CAChC,OAAO,0BAAA,EAA4B,EAAE,OAAA,EAAS,0BAAA,EAA4B;AASrBA,MACrD,MAAA,CAAO;AAAA,EACN,KAAA,EAAOA,KAAAA,CAAE,OAAA,CAAQ,SAAS,CAAA;AAAA,EAC1B,cAAA,EAAgBA,KAAAA,CAAE,MAAA,EAAO,CAAE,QAAA,EAAS;AAAA;AAAA,EAEpC,SAAA,EAAWA,MAAE,MAAA,EAAO,CAAE,IAAI,EAAE,CAAA,CAAE,IAAI,EAAE,CAAA;AAAA,EACpC,eAAA,EAAiBA,KAAAA,CAAE,MAAA,EAAO,CAAE,MAAM,eAAe,CAAA;AAAA,EACjD,kBAAA,EAAoBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC,CAAA;AAAA,EACpC,gBAAA,EAAkBA,KAAAA,CAAE,MAAA,EAAO,CAAE,IAAI,CAAC;AACpC,CAAC,CAAA,CACA,KAAA,CAAM,0BAA0B,CAAA,CAKhC,MAAA;AAAA,EACC,CAAC,CAAA,KAAM,CAAC,CAAC,CAAA,CAAE,QAAA;AAAA,EACX,EAAE,SAAS,iDAAA;AACb;;;ACjoBF,SAAS,WAAA,CAAY,GAAA,EAAa,aAAA,GAAgB,KAAA,EAAY;AAC5D,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,IAAI,GAAA,CAAI,GAAG,CAAA;AAG1B,IAAA,IAAI,CAAC,CAAC,OAAA,EAAS,QAAQ,EAAE,QAAA,CAAS,MAAA,CAAO,QAAQ,CAAA,EAAG;AAClD,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,kBAAA,EAAqB,MAAA,CAAO,QAAQ,CAAA,CAAE,CAAA;AAAA,IACxD;AAGA,IAAA,IAAI,CAAC,aAAA,IAAiB,MAAA,CAAO,QAAA,KAAa,QAAA,EAAU;AAClD,MAAA,MAAM,IAAI,KAAA;AAAA,QACR;AAAA,OACF;AAAA,IACF;AAGA,IAAA,MAAM,QAAA,GAAW,MAAA,CAAO,QAAA,CAAS,WAAA,EAAY;AAC7C,IAAA,MAAM,eAAA,GAAkB;AAAA,MACtB,cAAA;AAAA,MACA,QAAA;AAAA,MACA,OAAA;AAAA,MACA,+BAAA;AAAA,MACA,aAAA;AAAA,MACA,aAAA;AAAA,MACA,OAAA;AAAA,MACA,SAAA;AAAA,MACA,SAAA;AAAA,MACA;AAAA,KACF;AAGA,IAAA,MAAM,SAAA,GAAY,gBAAgB,IAAA,CAAK,CAAC,YAAY,OAAA,CAAQ,IAAA,CAAK,QAAQ,CAAC,CAAA;AAC1E,IAAA,IAAI,SAAA,IAAa,CAAC,aAAA,EAAe;AAC/B,MAAA,MAAM,IAAI,KAAA;AAAA,QACR;AAAA,OACF;AAAA,IACF;AAEA,IAAA,OAAO,MAAA;AAAA,EACT,SAAS,KAAA,EAAO;AACd,IAAA,IAAI,iBAAiB,KAAA,IAAS,KAAA,CAAM,OAAA,CAAQ,QAAA,CAAS,aAAa,CAAA,EAAG;AACnE,MAAA,MAAM,IAAI,eAAA,CAAgB,CAAA,oBAAA,EAAuB,GAAG,IAAI,GAAG,CAAA;AAAA,IAC7D;AACA,IAAA,MAAM,KAAA;AAAA,EACR;AACF;AAKA,SAAS,gBAAgB,OAAA,EAAuB;AAE9C,EAAA,IAAI,CAAC,iBAAA,CAAkB,IAAA,CAAK,OAAO,CAAA,EAAG;AACpC,IAAA,MAAM,IAAI,eAAA;AAAA,MACR,4BAA4B,OAAO,CAAA,6BAAA,CAAA;AAAA,MACnC;AAAA,KACF;AAAA,EACF;AACF;AAmCO,IAAM,gBAAA,GAA2C;AAAA,EACtD,OAAA,EAAS,8CAAA;AAAA,EACT,OAAA,EAAS,uCAAA;AAAA,EACT,UAAA,EAAY;AACd,CAAA;AAOO,IAAM,gBAAA,GAAN,MAAM,iBAAA,CAAiB;AAAA,EACX,OAAA;AAAA,EACA,OAAA;AAAA,EACA,aAAA;AAAA,EAEjB,YAAY,MAAA,EAA0B;AACpC,IAAA,IAAA,CAAK,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAG7C,IAAA,MAAM,YAAA,GAAe,WAAA,CAAY,MAAA,CAAO,OAAA,EAAS,KAAK,aAAa,CAAA;AACnE,IAAA,IAAA,CAAK,UAAU,YAAA,CAAa,MAAA;AAC5B,IAAA,IAAA,CAAK,OAAA,GAAU,OAAO,OAAA,IAAW,GAAA;AAAA,EACnC;AAAA;AAAA;AAAA;AAAA,EAKA,OAAO,WAAW,OAAA,EAAiE;AACjF,IAAA,MAAM,OAAA,GAAU,iBAAiB,OAAO,CAAA;AACxC,IAAA,IAAI,CAAC,OAAA,EAAS;AACZ,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,iBAAA,EAAoB,OAAO,CAAA,CAAE,CAAA;AAAA,IAC/C;AACA,IAAA,OAAO,IAAI,iBAAA,CAAiB,EAAE,OAAA,EAAS,CAAA;AAAA,EACzC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,gBAAA,CACJ,OAAA,EACA,OAAA,EAYyB;AAEzB,IAAA,eAAA,CAAgB,OAAO,CAAA;AAEvB,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AAEnC,IAAA,IAAI,SAAS,KAAA,EAAO;AAClB,MAAA,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,OAAA,CAAQ,KAAA,CAAM,UAAU,CAAA;AAAA,IAC9C;AACA,IAAA,IAAI,SAAS,KAAA,EAAO;AAClB,MAAA,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,OAAA,CAAQ,KAAK,CAAA;AAAA,IACnC;AACA,IAAA,IAAI,SAAS,cAAA,EAAgB;AAC3B,MAAA,MAAA,CAAO,GAAA,CAAI,WAAA,EAAa,CAAA,IAAA,EAAO,OAAA,CAAQ,cAAc,CAAA,CAAE,CAAA;AAAA,IACzD;AACA,IAAA,IAAI,SAAS,YAAA,EAAc;AACzB,MAAA,MAAA,CAAO,GAAA,CAAI,WAAA,EAAa,CAAA,IAAA,EAAO,OAAA,CAAQ,YAAY,CAAA,CAAE,CAAA;AAAA,IACvD;AACA,IAAA,IAAI,SAAS,mBAAA,EAAqB;AAChC,MAAA,MAAA,CAAO,GAAA,CAAI,gBAAA,EAAkB,CAAA,IAAA,EAAO,OAAA,CAAQ,mBAAmB,CAAA,CAAE,CAAA;AAAA,IACnE;AAEA,IAAA,MAAM,GAAA,GAAM,GAAG,IAAA,CAAK,OAAO,kBAAkB,OAAO,CAAA,UAAA,EAAa,MAAA,CAAO,QAAA,EAAU,CAAA,CAAA;AAElF,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS;AAAA,UACP,MAAA,EAAQ;AAAA,SACV;AAAA,QACA,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,IAAI,eAAA;AAAA,UACR,CAAA,mBAAA,EAAsB,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UAC5D,QAAA,CAAS;AAAA,SACX;AAAA,MACF;AAEA,MAAA,MAAM,IAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,EAAK;AAClC,MAAA,OAAO,IAAA,CAAK,QAAA;AAAA,IACd,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,iBAAiB,eAAA,EAAiB;AACpC,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,eAAA,CAAgB,6BAAA,EAA+B,GAAG,CAAA;AAAA,MAC9D;AACA,MAAA,MAAM,IAAI,eAAA,CAAgB,CAAA,2BAAA,EAA8B,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,IAC1E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,mBAAA,CAAoB,OAAA,EAAiB,WAAA,GAAsB,GAAA,EAA+B;AAE9F,IAAA,eAAA,CAAgB,OAAO,CAAA;AAGvB,IAAA,MAAM,eAAA,GAAkB,IAAA,CAAK,GAAA,CAAI,WAAA,EAAa,GAAK,CAAA;AAEnD,IAAA,MAAM,cAA8B,EAAC;AACrC,IAAA,IAAI,QAAA,GAA+B,kBAAkB,OAAO,CAAA,8BAAA,CAAA;AAE5D,IAAA,OAAO,QAAA,IAAY,WAAA,CAAY,MAAA,GAAS,eAAA,EAAiB;AACvD,MAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,MAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,MAAA,IAAI;AAEF,QAAA,MAAM,OAAA,GAAU,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,QAAQ,CAAA,CAAA;AAE1C,QAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,OAAA,EAAS;AAAA,UACpC,MAAA,EAAQ,KAAA;AAAA,UACR,OAAA,EAAS,EAAE,MAAA,EAAQ,kBAAA,EAAmB;AAAA,UACtC,QAAQ,UAAA,CAAW;AAAA,SACpB,CAAA;AAED,QAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,QAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,UAAA,MAAM,IAAI,eAAA;AAAA,YACR,CAAA,mBAAA,EAAsB,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,YAC5D,QAAA,CAAS;AAAA,WACX;AAAA,QACF;AAEA,QAAA,MAAM,IAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,EAAK;AAClC,QAAA,WAAA,CAAY,IAAA,CAAK,GAAG,IAAA,CAAK,QAAQ,CAAA;AAIjC,QAAA,IAAI,IAAA,CAAK,MAAM,IAAA,EAAM;AACnB,UAAA,MAAM,QAAA,GAAW,KAAK,KAAA,CAAM,IAAA;AAC5B,UAAA,IAAI,QAAA,CAAS,UAAA,CAAW,iBAAiB,CAAA,EAAG;AAC1C,YAAA,QAAA,GAAW,QAAA;AAAA,UACb,CAAA,MAAO;AAEL,YAAA,QAAA,GAAW,KAAA,CAAA;AAAA,UACb;AAAA,QACF,CAAA,MAAO;AACL,UAAA,QAAA,GAAW,KAAA,CAAA;AAAA,QACb;AAAA,MACF,SAAS,KAAA,EAAO;AACd,QAAA,YAAA,CAAa,SAAS,CAAA;AACtB,QAAA,IAAI,iBAAiB,eAAA,EAAiB;AACpC,UAAA,MAAM,KAAA;AAAA,QACR;AACA,QAAA,MAAM,GAAA,GAAM,KAAA;AACZ,QAAA,MAAM,IAAI,eAAA,CAAgB,CAAA,mBAAA,EAAsB,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,MAClE;AAAA,IACF;AAEA,IAAA,OAAO,WAAA,CAAY,KAAA,CAAM,CAAA,EAAG,eAAe,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA,EAKA,OAAO,cAAc,aAAA,EAA+B;AAClD,IAAA,IAAI,OAAO,WAAW,WAAA,EAAa;AACjC,MAAA,OAAO,OAAO,IAAA,CAAK,aAAA,EAAe,QAAQ,CAAA,CAAE,SAAS,OAAO,CAAA;AAAA,IAC9D;AAEA,IAAA,OAAO,KAAK,aAAa,CAAA;AAAA,EAC3B;AACF,CAAA;AAKO,IAAM,eAAA,GAAN,cAA8B,KAAA,CAAM;AAAA,EACzC,WAAA,CACE,SACO,UAAA,EACP;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAFN,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AAGP,IAAA,IAAA,CAAK,IAAA,GAAO,iBAAA;AAAA,EACd;AAAA,EAJS,UAAA;AAKX,CAAA;;;AC9NO,IAAM,2BAAN,MAA+B;AAAA,EACnB,UAAA;AAAA,EACA,eAAA;AAAA,EACA,UAAA;AAAA,EACT,KAAA,GAA+B,IAAA;AAAA,EAEvC,YAAY,MAAA,EAAkC;AAC5C,IAAA,MAAM,aAAA,GAAgB,MAAA,CAAO,aAAA,IAAiB,gBAAA,CAAiB,OAAO,OAAO,CAAA;AAC7E,IAAA,IAAI,CAAC,aAAA,EAAe;AAClB,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,iBAAA,EAAoB,MAAA,CAAO,OAAO,CAAA,CAAE,CAAA;AAAA,IACtD;AAEA,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB;AAAA,MACrC,OAAA,EAAS,aAAA;AAAA,MACT,eAAe,MAAA,CAAO;AAAA,KACvB,CAAA;AACD,IAAA,IAAA,CAAK,kBAAkB,MAAA,CAAO,eAAA;AAC9B,IAAA,IAAA,CAAK,UAAA,GAAa,OAAO,UAAA,IAAc,GAAA;AAAA,EACzC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,aAAA,CAAc,YAAA,GAAe,KAAA,EAAiC;AAElE,IAAA,IAAI,CAAC,YAAA,IAAgB,IAAA,CAAK,KAAA,IAAS,IAAA,CAAK,cAAa,EAAG;AACtD,MAAA,OAAO,KAAK,KAAA,CAAM,UAAA;AAAA,IACpB;AAGA,IAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,UAAA,CAAW,mBAAA;AAAA,MACrC,IAAA,CAAK,eAAA;AAAA,MACL;AAAA;AAAA,KACF;AAGA,IAAA,MAAM,YAAA,uBAAmB,GAAA,EAA2B;AACpD,IAAA,MAAM,cAAA,uBAAqB,GAAA,EAAY;AAGvC,IAAA,KAAA,MAAW,OAAO,QAAA,EAAU;AAC1B,MAAA,IAAI;AACF,QAAA,MAAM,OAAA,GAAU,gBAAA,CAAiB,aAAA,CAAc,GAAA,CAAI,OAAO,CAAA;AAC1D,QAAA,MAAM,GAAA,GAAM,IAAA,CAAK,KAAA,CAAM,OAAO,CAAA;AAC9B,QAAA,MAAM,KAAA,GAAQ,uBAAuB,GAAG,CAAA;AACxC,QAAA,IAAI,CAAC,KAAA,EAAO;AAGZ,QAAA,IAAI,KAAA,CAAM,gBAAgB,iBAAA,EAAmB;AAC3C,UAAA,cAAA,CAAe,GAAA,CAAI,MAAM,MAAM,CAAA;AAC/B,UAAA;AAAA,QACF;AAGA,QAAA,IAAI,cAAA,CAAe,GAAA,CAAI,KAAA,CAAM,MAAM,CAAA,EAAG;AACpC,UAAA;AAAA,QACF;AAGA,QAAA,IAAI,CAAC,YAAA,CAAa,GAAA,CAAI,KAAA,CAAM,MAAM,CAAA,EAAG;AACnC,UAAA,YAAA,CAAa,GAAA,CAAI,KAAA,CAAM,MAAA,EAAQ,KAAK,CAAA;AAAA,QACtC;AAAA,MACF,CAAA,CAAA,MAAQ;AAEN,QAAA;AAAA,MACF;AAAA,IACF;AAEA,IAAA,MAAM,UAAA,GAAa,KAAA,CAAM,IAAA,CAAK,YAAA,CAAa,QAAQ,CAAA;AAGnD,IAAA,IAAA,CAAK,KAAA,GAAQ;AAAA,MACX,UAAA;AAAA,MACA,WAAA,EAAa,KAAK,GAAA;AAAI,KACxB;AAEA,IAAA,OAAO,UAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,0BAAA,CAA2B,YAAA,GAAe,KAAA,EAAiC;AAC/E,IAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,aAAA,CAAc,YAAY,CAAA;AACxD,IAAA,OAAO,WAAW,MAAA,CAAO,CAAC,CAAA,KAAM,CAAA,CAAE,kBAAkB,WAAW,CAAA;AAAA,EACjE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,kBAAA,CAAmB,YAAA,GAAe,KAAA,EAAsC;AAC5E,IAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,0BAAA,CAA2B,YAAY,CAAA;AAErE,IAAA,IAAI,UAAA,CAAW,WAAW,CAAA,EAAG;AAC3B,MAAA,OAAO,IAAA;AAAA,IACT;AAGA,IAAA,MAAM,WAAA,GAAc,IAAI,WAAA,CAAY,CAAC,CAAA;AACrC,IAAA,MAAA,CAAO,gBAAgB,WAAW,CAAA;AAClC,IAAA,MAAM,WAAA,GAAc,WAAA,CAAY,CAAC,CAAA,GAAI,UAAA,CAAW,MAAA;AAChD,IAAA,OAAO,WAAW,WAAW,CAAA;AAAA,EAC/B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,qBAAA,CAAsB,YAAA,GAAe,KAAA,EAA+B;AACxE,IAAA,MAAM,SAAA,GAAY,MAAM,IAAA,CAAK,kBAAA,CAAmB,YAAY,CAAA;AAC5D,IAAA,OAAO,SAAA,EAAW,kBAAkB,WAAA,IAAe,IAAA;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,oBAAA,CAAqB,MAAA,EAAgB,YAAA,GAAe,KAAA,EAAsC;AAC9F,IAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,aAAA,CAAc,YAAY,CAAA;AACxD,IAAA,OAAO,WAAW,IAAA,CAAK,CAAC,MAAM,CAAA,CAAE,MAAA,KAAW,MAAM,CAAA,IAAK,IAAA;AAAA,EACxD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,yBAAA,CACJ,UAAA,EACA,YAAA,GAAe,KAAA,EACW;AAC1B,IAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,0BAAA,CAA2B,YAAY,CAAA;AACrE,IAAA,OAAO,UAAA,CAAW,OAAO,CAAC,CAAA,KAAM,EAAE,YAAA,EAAc,QAAA,CAAS,UAAU,CAAC,CAAA;AAAA,EACtE;AAAA;AAAA;AAAA;AAAA,EAKA,UAAA,GAAmB;AACjB,IAAA,IAAA,CAAK,KAAA,GAAQ,IAAA;AAAA,EACf;AAAA;AAAA;AAAA;AAAA,EAKQ,YAAA,GAAwB;AAC9B,IAAA,IAAI,CAAC,IAAA,CAAK,KAAA,EAAO,OAAO,KAAA;AACxB,IAAA,OAAO,KAAK,GAAA,EAAI,GAAI,IAAA,CAAK,KAAA,CAAM,cAAc,IAAA,CAAK,UAAA;AAAA,EACpD;AACF,CAAA;AAmBA,SAAS,uBAAuB,GAAA,EAAoD;AAElF,EAAA,IAAI,GAAA,CAAI,WAAA,IAAe,OAAO,GAAA,CAAI,WAAW,QAAA,EAAU;AACrD,IAAA,OAAO,GAAA;AAAA,EACT;AAGA,EAAA,IAAI,GAAA,CAAI,SAAS,oBAAA,EAAsB;AAErC,IAAA,IAAI,IAAI,aAAA,IAAiB,GAAA,CAAI,kBAAkB,MAAA,IAAa,GAAA,CAAI,kBAAkB,IAAA,EAAM;AACtF,MAAA,IAAI,OAAO,GAAA,CAAI,aAAA,KAAkB,QAAA,IAAY,GAAA,CAAI,kBAAkB,MAAA,EAAQ;AACzE,QAAA,OAAO,IAAA;AAAA,MACT;AAAA,IACF;AAEA,IAAA,MAAM,MAAA,GACH,OAAO,GAAA,CAAI,WAAA,KAAgB,QAAA,IAAY,GAAA,CAAI,WAAA,IAC3C,OAAO,GAAA,CAAI,MAAA,KAAW,QAAA,IAAY,GAAA,CAAI,MAAA,IACvC,IAAA;AACF,IAAA,IAAI,CAAC,QAAQ,OAAO,IAAA;AAEpB,IAAA,MAAM,WAAW,OAAO,GAAA,CAAI,QAAA,KAAa,QAAA,GAAW,IAAI,QAAA,GAAW,MAAA;AACnE,IAAA,IAAI,CAAC,UAAU,OAAO,IAAA;AAEtB,IAAA,MAAM,YAAA,GAAe,KAAA,CAAM,OAAA,CAAQ,GAAA,CAAI,YAAY,CAAA,GAC9C,GAAA,CAAI,YAAA,CAA2B,MAAA,CAAO,CAAC,CAAA,KAAmB,OAAO,CAAA,KAAM,QAAQ,CAAA,GAChF,MAAA;AAEJ,IAAA,OAAO;AAAA,MACL,oBAAoB,OAAO,GAAA,CAAI,SAAA,KAAc,QAAA,GAAW,IAAI,SAAA,GAAY,EAAA;AAAA,MACxE,MAAA;AAAA,MACA,IAAA,EAAM,WAAA;AAAA,MACN,gBAAA,EAAkB,EAAE,WAAA,EAAa,QAAA,EAAS;AAAA,MAC1C,WAAW,OAAO,GAAA,CAAI,SAAA,KAAc,QAAA,GAAW,IAAI,SAAA,GAAY,MAAA;AAAA,MAC/D,YAAA;AAAA,MACA,UAAU,EAAC;AAAA,MACX,cAAc,OAAO,GAAA,CAAI,SAAA,KAAc,QAAA,GAAW,IAAI,SAAA,GAAY,EAAA;AAAA,MAClE,WAAA,EAAa;AAAA,KACf;AAAA,EACF;AAGA,EAAA,OAAO,IAAA;AACT;;;ACvOO,IAAM,yBAAN,MAA6B;AAAA,EACjB,SAAA;AAAA,EACA,UAAA;AAAA,EACA,cAAA;AAAA,EACA,aAAA;AAAA,EACA,iBAAA;AAAA,EACT,KAAA,GAA6B,IAAA;AAAA,EAErC,YAAY,MAAA,EAAgC;AAC1C,IAAA,IAAI,CAAC,MAAA,CAAO,SAAA,IAAa,MAAA,CAAO,SAAA,CAAU,WAAW,CAAA,EAAG;AACtD,MAAA,MAAM,IAAI,MAAM,mEAAmE,CAAA;AAAA,IACrF;AACA,IAAA,IAAI,CAAC,OAAO,aAAA,EAAe;AACzB,MAAA,KAAA,MAAW,IAAA,IAAQ,OAAO,SAAA,EAAW;AACnC,QAAA,IAAI,CAAC,IAAA,CAAK,UAAA,CAAW,UAAU,CAAA,EAAG;AAChC,UAAA,MAAM,IAAI,KAAA;AAAA,YACR,2CAA2C,IAAI,CAAA,kEAAA;AAAA,WAEjD;AAAA,QACF;AAAA,MACF;AAAA,IACF;AACA,IAAA,IAAA,CAAK,YAAY,MAAA,CAAO,SAAA;AACxB,IAAA,IAAA,CAAK,UAAA,GAAa,OAAO,UAAA,IAAc,GAAA;AACvC,IAAA,IAAA,CAAK,cAAA,GAAiB,OAAO,cAAA,IAAkB,GAAA;AAC/C,IAAA,IAAA,CAAK,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAC7C,IAAA,IAAA,CAAK,oBAAoB,MAAA,CAAO,WAAA,GAC5B,IAAI,wBAAA,CAAyB,MAAA,CAAO,WAAW,CAAA,GAC/C,IAAA;AAAA,EACN;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,WAAA,CAAY,YAAA,GAAe,KAAA,EAA+B;AAC9D,IAAA,IAAI,CAAC,YAAA,IAAgB,IAAA,CAAK,KAAA,IAAS,IAAA,CAAK,cAAa,EAAG;AACtD,MAAA,OAAO,KAAK,KAAA,CAAM,QAAA;AAAA,IACpB;AAEA,IAAA,MAAM,OAAA,GAAU,MAAM,IAAA,CAAK,2BAAA,EAA4B;AACvD,IAAA,MAAM,WAAW,IAAA,CAAK,iBAAA,GAAoB,MAAM,IAAA,CAAK,wBAAA,CAAyB,OAAO,CAAA,GAAI,OAAA;AAEzF,IAAA,IAAA,CAAK,QAAQ,EAAE,QAAA,EAAU,UAAU,WAAA,EAAa,IAAA,CAAK,KAAI,EAAE;AAC3D,IAAA,OAAO,QAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,gBAAA,CAAiB,YAAA,GAAe,KAAA,EAAoC;AACxE,IAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,WAAA,CAAY,YAAY,CAAA;AACpD,IAAA,IAAI,QAAA,CAAS,MAAA,KAAW,CAAA,EAAG,OAAO,IAAA;AAClC,IAAA,OAAO,QAAA,CAAS,IAAA,CAAK,eAAA,CAAgB,QAAA,CAAS,MAAM,CAAC,CAAA;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,mBAAA,CAAoB,YAAA,GAAe,KAAA,EAA+B;AACtE,IAAA,MAAM,OAAA,GAAU,MAAM,IAAA,CAAK,gBAAA,CAAiB,YAAY,CAAA;AACxD,IAAA,OAAO,OAAA,EAAS,UAAU,UAAA,IAAc,IAAA;AAAA,EAC1C;AAAA;AAAA,EAGA,MAAM,cAAA,CAAe,SAAA,EAAmB,YAAA,GAAe,KAAA,EAAoC;AACzF,IAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,WAAA,CAAY,YAAY,CAAA;AACpD,IAAA,OAAO,SAAS,IAAA,CAAK,CAAC,MAAM,CAAA,CAAE,SAAA,KAAc,SAAS,CAAA,IAAK,IAAA;AAAA,EAC5D;AAAA,EAEA,UAAA,GAAmB;AACjB,IAAA,IAAA,CAAK,KAAA,GAAQ,IAAA;AAAA,EACf;AAAA,EAEQ,YAAA,GAAwB;AAC9B,IAAA,IAAI,CAAC,IAAA,CAAK,KAAA,EAAO,OAAO,KAAA;AACxB,IAAA,OAAO,KAAK,GAAA,EAAI,GAAI,IAAA,CAAK,KAAA,CAAM,cAAc,IAAA,CAAK,UAAA;AAAA,EACpD;AAAA,EAEA,MAAc,2BAAA,GAAsD;AAClE,IAAA,MAAM,SAAmB,EAAC;AAC1B,IAAA,KAAA,MAAW,IAAA,IAAQ,KAAK,SAAA,EAAW;AACjC,MAAA,IAAI;AACF,QAAA,OAAO,MAAM,IAAA,CAAK,qBAAA,CAAsB,IAAI,CAAA;AAAA,MAC9C,SAAS,GAAA,EAAK;AACZ,QAAA,MAAA,CAAO,KAAK,CAAA,EAAG,IAAI,CAAA,EAAA,EAAM,GAAA,CAAc,OAAO,CAAA,CAAE,CAAA;AAAA,MAClD;AAAA,IACF;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA;AAAA,EAAA,EAAqE,MAAA,CAAO,IAAA,CAAK,MAAM,CAAC,CAAA;AAAA,KAC1F;AAAA,EACF;AAAA,EAEA,MAAc,sBAAsB,IAAA,EAAsC;AACxE,IAAA,MAAM,MAAM,CAAA,EAAG,IAAA,CAAK,OAAA,CAAQ,KAAA,EAAO,EAAE,CAAC,CAAA,0BAAA,CAAA;AACtC,IAAA,MAAM,IAAA,GAAO,IAAI,eAAA,EAAgB;AACjC,IAAA,MAAM,QAAQ,UAAA,CAAW,MAAM,KAAK,KAAA,EAAM,EAAG,KAAK,cAAc,CAAA;AAChE,IAAA,IAAI;AACF,MAAA,MAAM,GAAA,GAAM,MAAM,KAAA,CAAM,GAAA,EAAK,EAAE,MAAA,EAAQ,IAAA,CAAK,QAAQ,CAAA;AACpD,MAAA,IAAI,CAAC,IAAI,EAAA,EAAI;AACX,QAAA,MAAM,IAAI,KAAA,CAAM,CAAA,KAAA,EAAQ,GAAA,CAAI,MAAM,CAAA,CAAE,CAAA;AAAA,MACtC;AACA,MAAA,MAAM,IAAA,GAAQ,MAAM,GAAA,CAAI,IAAA,EAAK;AAO7B,MAAA,IAAI,CAAC,KAAA,CAAM,OAAA,CAAQ,IAAA,CAAK,QAAQ,CAAA,EAAG;AACjC,QAAA,MAAM,IAAI,MAAM,6BAA6B,CAAA;AAAA,MAC/C;AACA,MAAA,OAAO,IAAA,CAAK,QAAA,CACT,GAAA,CAAI,CAAC,MAAM,IAAA,CAAK,qBAAA,CAAsB,CAAC,CAAC,CAAA,CACxC,MAAA,CAAO,CAAC,CAAA,KAAwB,MAAM,IAAI,CAAA;AAAA,IAC/C,CAAA,SAAE;AACA,MAAA,YAAA,CAAa,KAAK,CAAA;AAAA,IACpB;AAAA,EACF;AAAA,EAEQ,sBAAsB,GAAA,EAIP;AACrB,IAAA,IAAI,OAAO,GAAA,CAAI,SAAA,KAAc,YAAY,CAAC,GAAA,CAAI,WAAW,OAAO,IAAA;AAChE,IAAA,IAAI,CAAC,GAAA,CAAI,SAAA,IAAa,OAAO,GAAA,CAAI,SAAA,KAAc,UAAU,OAAO,IAAA;AAChE,IAAA,MAAM,KAAK,GAAA,CAAI,SAAA;AACf,IAAA,IAAI,OAAO,EAAA,CAAG,UAAA,KAAe,YAAY,CAAC,EAAA,CAAG,YAAY,OAAO,IAAA;AAChE,IAAA,IAAI,CAAC,KAAK,aAAA,IAAiB,CAAC,GAAG,UAAA,CAAW,UAAA,CAAW,UAAU,CAAA,EAAG;AAGhE,MAAA,OAAO,IAAA;AAAA,IACT;AACA,IAAA,MAAM,OAAA,GAAU,KAAA,CAAM,OAAA,CAAQ,GAAA,CAAI,OAAO,CAAA,GACrC,GAAA,CAAI,OAAA,CAAQ,MAAA,CAAO,CAAC,CAAA,KAAmB,OAAO,CAAA,KAAM,QAAQ,IAC5D,EAAC;AACL,IAAA,OAAO;AAAA,MACL,WAAW,GAAA,CAAI,SAAA;AAAA,MACf,SAAA,EAAW;AAAA,QACT,WAAW,GAAA,CAAI,SAAA;AAAA,QACf,YAAY,EAAA,CAAG,UAAA;AAAA,QACf,WAAW,OAAO,EAAA,CAAG,SAAA,KAAc,QAAA,GAAW,GAAG,SAAA,GAAY,MAAA;AAAA,QAC7D,SAAS,OAAO,EAAA,CAAG,OAAA,KAAY,QAAA,GAAW,GAAG,OAAA,GAAU,MAAA;AAAA,QACvD,UAAU,OAAO,EAAA,CAAG,QAAA,KAAa,QAAA,GAAW,GAAG,QAAA,GAAW,MAAA;AAAA,QAC1D,QAAQ,OAAO,EAAA,CAAG,MAAA,KAAW,QAAA,GAAW,GAAG,MAAA,GAAS;AAAA,OACtD;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBA,MAAc,yBAAyB,QAAA,EAAiD;AACtF,IAAA,IAAI,CAAC,IAAA,CAAK,iBAAA,IAAqB,QAAA,CAAS,MAAA,KAAW,GAAG,OAAO,QAAA;AAC7D,IAAA,IAAI,cAAA;AACJ,IAAA,IAAI;AACF,MAAA,MAAM,UAAA,GAAa,MAAM,IAAA,CAAK,iBAAA,CAAkB,aAAA,EAAc;AAC9D,MAAA,IAAI,UAAA,CAAW,MAAA,KAAW,CAAA,EAAG,OAAO,QAAA;AACpC,MAAA,cAAA,GAAiB,IAAI,IAAI,UAAA,CAAW,GAAA,CAAI,CAAC,CAAA,KAAM,CAAA,CAAE,MAAM,CAAC,CAAA;AAAA,IAC1D,CAAA,CAAA,MAAQ;AACN,MAAA,OAAO,QAAA;AAAA,IACT;AACA,IAAA,OAAO,QAAA,CAAS,MAAA,CAAO,CAAC,CAAA,KAAM;AAC5B,MAAA,IAAI,CAAA,CAAE,OAAA,CAAQ,MAAA,KAAW,CAAA,EAAG;AAK1B,QAAA,OAAO,KAAA;AAAA,MACT;AACA,MAAA,OAAO,CAAA,CAAE,QAAQ,IAAA,CAAK,CAAC,OAAO,cAAA,CAAe,GAAA,CAAI,EAAE,CAAC,CAAA;AAAA,IACtD,CAAC,CAAA;AAAA,EACH;AAAA,EAEQ,gBAAgB,CAAA,EAAmB;AACzC,IAAA,IAAI,CAAA,IAAK,GAAG,OAAO,CAAA;AACnB,IAAA,MAAM,IAAK,UAAA,CAAkF,MAAA;AAC7F,IAAA,IAAI,GAAG,eAAA,EAAiB;AACtB,MAAA,MAAM,GAAA,GAAM,IAAI,WAAA,CAAY,CAAC,CAAA;AAC7B,MAAA,CAAA,CAAE,gBAAgB,GAAG,CAAA;AACrB,MAAA,OAAO,GAAA,CAAI,CAAC,CAAA,GAAI,CAAA;AAAA,IAClB;AACA,IAAA,OAAO,IAAA,CAAK,KAAA,CAAM,IAAA,CAAK,MAAA,KAAW,CAAC,CAAA;AAAA,EACrC;AACF,CAAA;;;ACtLO,IAAM,YAAA,GAAN,cAA2B,KAAA,CAAM;AAAA,EACtC,WAAA,CACE,OAAA,EACgB,UAAA,EACA,OAAA,EAChB;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHG,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGhB,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AAAA,EACd;AAAA,EALkB,UAAA;AAAA,EACA,OAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUlB,IAAI,WAAA,GAAuB;AACzB,IAAA,OACE,IAAA,CAAK,UAAA,KAAe,CAAA,IACpB,IAAA,CAAK,UAAA,KAAe,OACpB,IAAA,CAAK,UAAA,KAAe,GAAA,IACpB,IAAA,CAAK,UAAA,IAAc,GAAA;AAAA,EAEvB;AACF,CAAA;AAMO,SAAS,iBAAiB,MAAA,EAAsC;AACrE,EAAA,MAAM,OAAA,GAAU,OAAO,OAAA,IAAW,GAAA;AAElC,EAAA,SAAS,UAAA,CAAW,aAAsB,IAAA,EAAgD;AACxF,IAAA,MAAM,UAAkC,EAAC;AACzC,IAAA,IAAI,WAAA,EAAa;AACf,MAAA,OAAA,CAAQ,cAAc,CAAA,GAAI,WAAA;AAAA,IAC5B;AACA,IAAA,IAAI,OAAO,SAAA,EAAW;AACpB,MAAA,OAAA,CAAQ,eAAe,CAAA,GAAI,CAAA,OAAA,EAAU,MAAA,CAAO,SAAS,CAAA,CAAA;AAAA,IACvD;AACA,IAAA,IAAI,OAAO,MAAA,EAAQ;AACjB,MAAA,OAAA,CAAQ,WAAW,IAAI,MAAA,CAAO,MAAA;AAAA,IAChC;AAGA,IAAA,IAAI,MAAM,aAAA,EAAe;AACvB,MAAA,OAAA,CAAQ,0BAA0B,IAAI,IAAA,CAAK,aAAA;AAAA,IAC7C;AAIA,IAAA,IAAI,MAAM,UAAA,EAAY;AACpB,MAAA,OAAA,CAAQ,eAAe,CAAA,GAAI,CAAA,OAAA,EAAU,IAAA,CAAK,UAAU,CAAA,CAAA;AACpD,MAAA,OAAA,CAAQ,0BAA0B,IAAI,IAAA,CAAK,UAAA;AAAA,IAC7C;AACA,IAAA,IAAI,MAAM,OAAA,EAAS;AACjB,MAAA,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,IAAA,CAAK,OAAO,CAAA;AAAA,IACrC;AACA,IAAA,OAAO,OAAA;AAAA,EACT;AAGA,EAAA,SAAS,aAAa,KAAA,EAAiC;AACrD,IAAA,MAAA,CAAO,SAAA,GAAY,KAAA;AAAA,EACrB;AAGA,EAAA,SAAS,YAAA,GAAmC;AAC1C,IAAA,OAAO,MAAA,CAAO,SAAA;AAAA,EAChB;AAEA,EAAA,eAAe,OAAA,CAAW,MAAA,EAAgB,IAAA,EAAc,IAAA,EAAgB,IAAA,EAAoC;AAC1G,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,UAAA,CAAW,KAAA,IAAS,OAAO,CAAA;AAE9D,IAAA,IAAI;AACF,MAAA,MAAM,IAAA,GAAoB;AAAA,QACxB,MAAA;AAAA,QACA,OAAA,EAAS,UAAA,CAAW,kBAAA,EAAoB,IAAI,CAAA;AAAA,QAC5C,QAAQ,UAAA,CAAW;AAAA,OACrB;AAEA,MAAA,IAAI,SAAS,KAAA,CAAA,EAAW;AACtB,QAAA,IAAA,CAAK,IAAA,GAAO,IAAA,CAAK,SAAA,CAAU,IAAI,CAAA;AAAA,MACjC;AAEA,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK,IAAI,CAAA;AACtC,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,SAAA,GAAY,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACxD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,UAAU,OAAA,IAAsB,CAAA,WAAA,EAAc,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACrF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAGA,MAAA,MAAM,IAAA,GAAO,MAAM,QAAA,CAAS,IAAA,EAAK;AACjC,MAAA,IAAI,CAAC,MAAM,OAAO,KAAA,CAAA;AAClB,MAAA,OAAO,IAAA,CAAK,MAAM,IAAI,CAAA;AAAA,IACxB,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,iBAAA,EAAmB,GAAG,CAAA;AAAA,MAC/C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,eAAA,EAAkB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IAClE;AAAA,EACF;AAEA,EAAA,eAAe,OAAA,CAAQ,MAAc,IAAA,EAAyC;AAC5E,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,UAAA,CAAW,KAAA,IAAS,OAAO,CAAA;AAE9D,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS,UAAA,CAAW,KAAA,CAAA,EAAW,IAAI,CAAA;AAAA,QACnC,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AACD,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAIhB,QAAA,MAAM,OAAA,GAAW,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACvD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,QAAQ,OAAA,IAAsB,CAAA,WAAA,EAAc,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACnF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAO,MAAM,SAAS,IAAA,EAAK;AAAA,IAC7B,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,iBAAA,EAAmB,GAAG,CAAA;AAAA,MAC/C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,eAAA,EAAkB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IAClE;AAAA,EACF;AAEA,EAAA,eAAe,SAAA,CAAU,MAAc,IAAA,EAA6C;AAClF,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,UAAA,CAAW,KAAA,IAAS,OAAO,CAAA;AAE9D,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS,UAAA,CAAW,KAAA,CAAA,EAAW,IAAI,CAAA;AAAA,QACnC,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AACD,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAEhB,QAAA,MAAM,OAAA,GAAW,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACvD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,QAAQ,OAAA,IAAsB,CAAA,WAAA,EAAc,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACnF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAGA,MAAA,OAAO,IAAI,UAAA,CAAW,MAAM,QAAA,CAAS,aAAa,CAAA;AAAA,IACpD,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,iBAAA,EAAmB,GAAG,CAAA;AAAA,MAC/C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,eAAA,EAAkB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IAClE;AAAA,EACF;AAEA,EAAA,eAAe,iBAAA,CACb,MACA,IAAA,EACyE;AACzE,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,UAAA,CAAW,KAAA,IAAS,OAAO,CAAA;AAE9D,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS,UAAA,CAAW,KAAA,CAAA,EAAW,IAAI,CAAA;AAAA,QACnC,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AACD,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,OAAA,GAAW,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACvD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,QAAQ,OAAA,IAAsB,CAAA,WAAA,EAAc,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACnF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,MAAM,QAAQ,IAAI,UAAA,CAAW,MAAM,QAAA,CAAS,aAAa,CAAA;AACzD,MAAA,MAAM,WAAA,GAAc,QAAA,CAAS,OAAA,CAAQ,GAAA,CAAI,cAAc,CAAA,IAAK,KAAA,CAAA;AAE5D,MAAA,MAAM,WAAA,GAAc,QAAA,CAAS,OAAA,CAAQ,GAAA,CAAI,qBAAqB,CAAA,IAAK,EAAA;AACnE,MAAA,MAAM,KAAA,GAAQ,yCAAA,CAA0C,IAAA,CAAK,WAAW,CAAA;AACxE,MAAA,MAAM,QAAA,GAAW,QAAQ,kBAAA,CAAmB,KAAA,CAAM,CAAC,CAAA,CAAE,IAAA,EAAM,CAAA,GAAI,KAAA,CAAA;AAC/D,MAAA,OAAO,EAAE,KAAA,EAAO,WAAA,EAAa,QAAA,EAAS;AAAA,IACxC,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,iBAAA,EAAmB,GAAG,CAAA;AAAA,MAC/C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,eAAA,EAAkB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IAClE;AAAA,EACF;AAEA,EAAA,eAAe,OACb,IAAA,EACA,IAAA,EACA,UACA,QAAA,EACA,SAAA,GAAoB,QACpB,IAAA,EACY;AACZ,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,MAAA,CAAO,OAAO,GAAG,IAAI,CAAA,CAAA;AACpC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AAEvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,UAAU,CAAC,CAAA;AAElE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,IAAI,QAAA,EAAS;AAC9B,MAAA,MAAM,IAAA,GAAO,IAAA,YAAgB,IAAA,GAAO,IAAA,GAAO,IAAI,IAAA,CAAK,CAAC,IAAI,UAAA,CAAW,IAAc,CAAC,CAAC,CAAA;AACpF,MAAA,QAAA,CAAS,MAAA,CAAO,SAAA,EAAW,IAAA,EAAM,QAAQ,CAAA;AAEzC,MAAA,IAAI,QAAA,EAAU;AACZ,QAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,QAAQ,CAAA,EAAG;AACnD,UAAA,QAAA,CAAS,MAAA,CAAO,KAAK,KAAK,CAAA;AAAA,QAC5B;AAAA,MACF;AAGA,MAAA,MAAM,UAAkC,EAAC;AACzC,MAAA,IAAI,OAAO,SAAA,EAAW;AACpB,QAAA,OAAA,CAAQ,eAAe,CAAA,GAAI,CAAA,OAAA,EAAU,MAAA,CAAO,SAAS,CAAA,CAAA;AAAA,MACvD;AACA,MAAA,IAAI,OAAO,MAAA,EAAQ;AACjB,QAAA,OAAA,CAAQ,WAAW,IAAI,MAAA,CAAO,MAAA;AAAA,MAChC;AACA,MAAA,IAAI,MAAM,aAAA,EAAe;AACvB,QAAA,OAAA,CAAQ,0BAA0B,IAAI,IAAA,CAAK,aAAA;AAAA,MAC7C;AACA,MAAA,IAAI,MAAM,UAAA,EAAY;AACpB,QAAA,OAAA,CAAQ,eAAe,CAAA,GAAI,CAAA,OAAA,EAAU,IAAA,CAAK,UAAU,CAAA,CAAA;AACpD,QAAA,OAAA,CAAQ,0BAA0B,IAAI,IAAA,CAAK,UAAA;AAAA,MAC7C;AACA,MAAA,IAAI,MAAM,OAAA,EAAS;AACjB,QAAA,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,IAAA,CAAK,OAAO,CAAA;AAAA,MACrC;AAEA,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,MAAA;AAAA,QACR,OAAA;AAAA,QACA,IAAA,EAAM,QAAA;AAAA,QACN,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,SAAA,GAAY,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACxD,QAAA,MAAM,IAAI,YAAA;AAAA,UACP,UAAU,OAAA,IAAsB,CAAA,cAAA,EAAiB,SAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACxF,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAO,SAAS,IAAA,EAAK;AAAA,IACvB,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,KAAA,YAAiB,cAAc,MAAM,KAAA;AACzC,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,YAAA,CAAa,gBAAA,EAAkB,GAAG,CAAA;AAAA,MAC9C;AACA,MAAA,MAAM,IAAI,YAAA,CAAa,CAAA,cAAA,EAAiB,IAAI,OAAO,CAAA,CAAA,EAAI,GAAG,KAAK,CAAA;AAAA,IACjE;AAAA,EACF;AAMA,EAAA,IAAI,cAAA,GAAuC,IAAA;AAC3C,EAAA,eAAe,aAAA,CAAiB,MAAc,EAAA,EAAkC;AAC9E,IAAA,IAAI;AACF,MAAA,OAAO,MAAM,EAAA,EAAG;AAAA,IAClB,SAAS,KAAA,EAAO;AACd,MAAA,MAAM,cACJ,CAAC,CAAC,OAAO,cAAA,IACT,CAAC,KAAK,UAAA,CAAW,oBAAoB,CAAA,IACrC,CAAC,KAAK,UAAA,CAAW,eAAe,KAChC,KAAA,YAAiB,YAAA,IACjB,MAAM,UAAA,KAAe,GAAA;AACvB,MAAA,IAAI,CAAC,aAAa,MAAM,KAAA;AACxB,MAAA,IAAI,CAAC,cAAA,EAAgB;AACnB,QAAA,cAAA,GAAiB,QAAQ,OAAA,CAAQ,MAAA,CAAO,gBAAiB,CAAA,CAAE,QAAQ,MAAM;AACvE,UAAA,cAAA,GAAiB,IAAA;AAAA,QACnB,CAAC,CAAA;AAAA,MACH;AACA,MAAA,IAAI;AACF,QAAA,MAAM,cAAA;AAAA,MACR,CAAA,CAAA,MAAQ;AACN,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,OAAO,MAAM,EAAA,EAAG;AAAA,IAClB;AAAA,EACF;AAEA,EAAA,MAAM,MAAA,GAAqB;AAAA,IACzB,IAAA,EAAM,CAAI,IAAA,EAAc,IAAA,EAAe,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,MAAA,EAAQ,IAAA,EAAM,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IAChI,GAAA,EAAK,CAAI,IAAA,EAAc,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,KAAA,EAAO,IAAA,EAAM,KAAA,CAAA,EAAW,IAAI,CAAC,CAAA;AAAA,IACpH,GAAA,EAAK,CAAI,IAAA,EAAc,IAAA,EAAe,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,KAAA,EAAO,IAAA,EAAM,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IAC9H,KAAA,EAAO,CAAI,IAAA,EAAc,IAAA,EAAe,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,OAAA,EAAS,IAAA,EAAM,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IAClI,MAAA,EAAQ,CAAI,IAAA,EAAc,IAAA,KAA2B,aAAA,CAAc,IAAA,EAAM,MAAM,OAAA,CAAW,QAAA,EAAU,IAAA,EAAM,KAAA,CAAA,EAAW,IAAI,CAAC,CAAA;AAAA,IAC1H,OAAA,EAAS,CAAC,IAAA,EAAc,IAAA,KAA2B,aAAA,CAAc,MAAM,MAAM,OAAA,CAAQ,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IAChG,SAAA,EAAW,CAAC,IAAA,EAAc,IAAA,KAA2B,aAAA,CAAc,MAAM,MAAM,SAAA,CAAU,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IACpG,iBAAA,EAAmB,CAAC,IAAA,EAAc,IAAA,KAChC,aAAA,CAAc,MAAM,MAAM,iBAAA,CAAkB,IAAA,EAAM,IAAI,CAAC,CAAA;AAAA,IACzD,SAAS,CAAC,IAAA,EAAc,MAAqB,QAAA,EAAkB,QAAA,EAAmC,WAAoB,IAAA,KACpH,aAAA,CAAc,IAAA,EAAM,MAAM,OAAO,IAAA,EAAM,IAAA,EAAM,UAAU,QAAA,EAAU,SAAA,EAAW,IAAI,CAAC,CAAA,CAAA;AAAA,IACnF,YAAA;AAAA,IACA;AAAA,GACF;AAEA,EAAA,OAAO,MAAA;AACT;AAMO,SAAS,gBAAgB,KAAA,EAAuB;AACrD,EAAA,OAAO,kBAAA,CAAmB,KAAK,CAAA,CAAE,OAAA,CAAQ,SAAS,EAAE,CAAA;AACtD;;;AClWO,IAAM,kBAAN,MAAsB;AAAA,EAI3B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAC3B,IAAA,IAAA,CAAK,cAAA,GAAiB,IAAI,oBAAA,CAAqB,IAAI,CAAA;AAAA,EACrD;AAAA,EAF6B,IAAA;AAAA;AAAA,EAFb,cAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWhB,MAAM,YAAA,GAAgE;AACpE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,qBAAqB,CAAA;AAAA,EAC5C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,eAAA,GAA+D;AACnE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,yBAAyB,CAAA;AAAA,EAChD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,iBAAiB,MAAA,EAAiE;AACtF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,uBAAuB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EACvE;AACF,CAAA;AAWO,IAAM,uBAAN,MAA2B;AAAA,EAChC,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,IAAA,GAAiE;AACrE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,4BAA4B,CAAA;AAAA,EACnD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,aAAA,GAA0E;AAC9E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,sCAAsC,CAAA;AAAA,EAC7D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,IAAI,SAAA,EAGP;AACD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,8BAA8B,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAE,CAAA;AAAA,EACjF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,UAAA,CACJ,SAAA,EACA,OAAA,EAC8D;AAC9D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,8BAA8B,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,OAAO,CAAC,CAAA;AAAA,KACtF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,MAAA,CACJ,SAAA,EACA,OAAA,EACA,MAAA,EACgC;AAChC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,2BAAA,EAA8B,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAA,EAAI,eAAA;AAAA,QAC1D;AAAA,OACD,CAAA,eAAA,EAAkB,kBAAA,CAAmB,MAAM,CAAC,CAAA;AAAA,KAC/C;AAAA,EACF;AACF,CAAA;;;ACzMO,IAAM,cAAA,GAA+D;AAAA,EAC1E,OAAA,EAAS;AAAA,IACP,SAAA,EAAW,CAAC,wCAAwC;AAAA,GACtD;AAAA,EACA,OAAA,EAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,IAQP,SAAA,EAAW,CAAC,gCAAgC;AAAA;AAEhD,CAAA;AASO,SAAS,eAAe,IAAA,EAAkC;AAC/D,EAAA,MAAM,MAAA,GAAS,eAAe,IAAI,CAAA;AAClC,EAAA,IAAI,CAAC,MAAA,EAAQ;AAGX,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,kBAAA,EAAqB,IAAI,CAAA,mBAAA,EAAsB,MAAA,CAAO,KAAK,cAAc,CAAA,CAAE,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,KACvF;AAAA,EACF;AACA,EAAA,OAAO,MAAA;AACT;;;AChBA,eAAsB,uBACpB,MAAA,EAC+B;AAC/B,EAAA,MAAM,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAI9C,EAAA,MAAM,YAAsB,MAAA,CAAO,SAAA,GAC/B,CAAC,GAAG,MAAA,CAAO,SAAS,CAAA,GACpB,MAAA,CAAO,OAAA,GACL,CAAC,GAAG,cAAA,CAAe,MAAA,CAAO,OAAO,CAAA,CAAE,SAAS,IAC5C,EAAC;AAEP,EAAA,IAAI,SAAA,CAAU,WAAW,CAAA,EAAG;AAC1B,IAAA,OAAO,EAAE,EAAA,EAAI,KAAA,EAAO,MAAA,EAAQ,UAAA,EAAW;AAAA,EACzC;AAEA,EAAA,MAAM,SAAA,GAAY,IAAI,sBAAA,CAAuB;AAAA,IAC3C,SAAA;AAAA,IACA,aAAA;AAAA,IACA,WAAA,EAAa,OAAO,WAAA,GAChB;AAAA,MACE,OAAA,EAAS,OAAO,WAAA,CAAY,OAAA;AAAA,MAC5B,eAAA,EAAiB,OAAO,WAAA,CAAY,eAAA;AAAA,MACpC,aAAA,EAAe,OAAO,WAAA,CAAY,aAAA;AAAA,MAClC;AAAA,KACF,GACA;AAAA,GACL,CAAA;AAED,EAAA,MAAM,OAAA,GAAU,MAAM,SAAA,CAAU,gBAAA,EAAiB;AACjD,EAAA,IAAI,CAAC,OAAA,EAAS;AACZ,IAAA,OAAO,EAAE,EAAA,EAAI,KAAA,EAAO,MAAA,EAAQ,aAAA,EAAc;AAAA,EAC5C;AAEA,EAAA,OAAO,EAAE,EAAA,EAAI,IAAA,EAAM,OAAA,EAAQ;AAC7B;;;ACpFA,IAAM,qBAAA,GAA8C;AAAA,EAClD,QAAA;AAAA,EACA,MAAA;AAAA,EACA,UAAA;AAAA,EACA,SAAA;AAAA,EACA;AACF,CAAA;AAmCA,SAAS,QAAQ,KAAA,EAAoE;AAEnF,EAAA,IAAI,KAAA,YAAiB,YAAY,OAAO,KAAA;AACxC,EAAA,OAAO,MAAM,OAAA,EAAQ;AACvB;AAKA,SAAS,oBAAA,CAAqB,GAAA,EAAa,aAAA,GAAgB,KAAA,EAAe;AACxE,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,IAAI,GAAA,CAAI,GAAG,CAAA;AAG1B,IAAA,IAAI,CAAC,CAAC,OAAA,EAAS,QAAQ,EAAE,QAAA,CAAS,MAAA,CAAO,QAAQ,CAAA,EAAG;AAClD,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,kBAAA,EAAqB,MAAA,CAAO,QAAQ,IAAI,GAAG,CAAA;AAAA,IAC1E;AAGA,IAAA,IAAI,CAAC,aAAA,IAAiB,MAAA,CAAO,QAAA,KAAa,QAAA,EAAU;AAClD,MAAA,MAAM,IAAI,kBAAA;AAAA,QACR,4FAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAGA,IAAA,MAAM,QAAA,GAAW,MAAA,CAAO,QAAA,CAAS,WAAA,EAAY;AAC7C,IAAA,MAAM,WAAA,GAAc,QAAA,KAAa,WAAA,IAAe,QAAA,KAAa,eAAe,QAAA,KAAa,KAAA;AAEzF,IAAA,IAAI,WAAA,IAAe,CAAC,aAAA,EAAe;AACjC,MAAA,MAAM,IAAI,kBAAA;AAAA,QACR,6FAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAEA,IAAA,OAAO,MAAA,CAAO,MAAA;AAAA,EAChB,SAAS,KAAA,EAAO;AACd,IAAA,IAAI,iBAAiB,kBAAA,EAAoB;AACvC,MAAA,MAAM,KAAA;AAAA,IACR;AACA,IAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,uBAAA,EAA0B,GAAG,IAAI,GAAG,CAAA;AAAA,EACnE;AACF;AAKA,SAAS,aAAA,CAAc,KAAA,EAAe,SAAA,EAAmB,SAAA,GAAY,GAAA,EAAa;AAChF,EAAA,IAAI,OAAO,UAAU,QAAA,EAAU;AAC7B,IAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,EAAG,SAAS,qBAAqB,GAAG,CAAA;AAAA,EACnE;AAEA,EAAA,IAAI,KAAA,CAAM,SAAS,SAAA,EAAW;AAC5B,IAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,EAAG,SAAS,CAAA,2BAAA,EAA8B,SAAS,IAAI,GAAG,CAAA;AAAA,EACzF;AAGA,EAAA,OAAO,KAAA,CAAM,OAAA,CAAQ,kBAAA,EAAoB,EAAE,CAAA;AAC7C;AAwHO,IAAM,sBAAN,MAA0B;AAAA,EACd,OAAA;AAAA,EACA,aAAA;AAAA,EAEjB,YAAY,MAAA,EAA8B;AACxC,IAAA,IAAA,CAAK,OAAA,GAAU,QAAQ,OAAA,IAAW,GAAA;AAClC,IAAA,IAAA,CAAK,aAAA,GAAgB,MAAA,EAAQ,QAAA,EAAU,aAAA,IAAiB,KAAA;AAAA,EAC1D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,gBAAA,CACJ,YAAA,EACA,KAAA,EACA,OAAA,EAC4B;AAE5B,IAAA,MAAM,OAAA,GAAU,oBAAA,CAAqB,YAAA,EAAc,IAAA,CAAK,aAAa,CAAA;AACrE,IAAA,MAAM,WAAA,GAAc,aAAA,CAAc,OAAA,EAAS,SAAA,EAAW,GAAG,CAAA;AAEzD,IAAA,IAAI,CAAC,qBAAA,CAAsB,QAAA,CAAS,KAAK,CAAA,EAAG;AAC1C,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,oBAAA,EAAuB,KAAK,IAAI,GAAG,CAAA;AAAA,IAClE;AAEA,IAAA,MAAM,GAAA,GAAM,GAAG,OAAO,CAAA,yBAAA,CAAA;AAEtB,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,MAAA;AAAA,QACR,OAAA,EAAS;AAAA,UACP,cAAA,EAAgB;AAAA,SAClB;AAAA,QACA,MAAM,IAAA,CAAK,SAAA,CAAU,EAAE,KAAA,EAAO,OAAA,EAAS,aAAa,CAAA;AAAA,QACpD,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,KAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACpD,QAAA,MAAM,IAAI,kBAAA;AAAA,UACR,CAAA,0BAAA,EAA6B,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACnE,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,IAC9B,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,iBAAiB,kBAAA,EAAoB;AACvC,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,kBAAA,CAAmB,2BAAA,EAA6B,GAAG,CAAA;AAAA,MAC/D;AACA,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,0BAAA,EAA6B,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,IAC5E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,YAAA,CACJ,YAAA,EACA,OAAA,EAC+B;AAE/B,IAAA,MAAM,OAAA,GAAU,oBAAA,CAAqB,YAAA,EAAc,IAAA,CAAK,aAAa,CAAA;AAGrE,IAAA,MAAM,gBAAA,GAAwC;AAAA,MAC5C,OAAO,OAAA,CAAQ,KAAA;AAAA,MACf,OAAA,EAAS,aAAA,CAAc,OAAA,CAAQ,OAAA,EAAS,WAAW,GAAG,CAAA;AAAA,MACtD,SAAA,EAAW,aAAA,CAAc,OAAA,CAAQ,SAAA,EAAW,aAAa,GAAG,CAAA;AAAA,MAC5D,SAAA,EAAW,aAAA,CAAc,OAAA,CAAQ,SAAA,EAAW,aAAa,IAAI,CAAA;AAAA,MAC7D,SAAA,EAAW,aAAA,CAAc,OAAA,CAAQ,SAAA,EAAW,aAAa,GAAG,CAAA;AAAA,MAC5D,QAAA,EAAU,QAAQ,QAAA,GACd;AAAA,QACE,MAAA,EAAQ,OAAA,CAAQ,QAAA,CAAS,MAAA,GACrB,aAAA,CAAc,QAAQ,QAAA,CAAS,MAAA,EAAQ,QAAA,EAAU,EAAE,CAAA,GACnD,MAAA;AAAA,QACJ,QAAA,EAAU,OAAA,CAAQ,QAAA,CAAS,QAAA,GACvB,aAAA,CAAc,QAAQ,QAAA,CAAS,QAAA,EAAU,UAAA,EAAY,GAAG,CAAA,GACxD,MAAA;AAAA,QACJ,YAAA,EAAc,QAAQ,QAAA,CAAS,YAAA;AAAA,QAC/B,KAAA,EAAO,OAAA,CAAQ,QAAA,CAAS,KAAA,GACpB,aAAA,CAAc,QAAQ,QAAA,CAAS,KAAA,EAAO,OAAA,EAAS,EAAE,CAAA,GACjD,MAAA;AAAA,QACJ,OAAA,EAAS,OAAA,CAAQ,QAAA,CAAS,OAAA,GACtB,aAAA,CAAc,QAAQ,QAAA,CAAS,OAAA,EAAS,SAAA,EAAW,GAAG,CAAA,GACtD;AAAA,OACN,GACA;AAAA,KACN;AAEA,IAAA,IAAI,CAAC,qBAAA,CAAsB,QAAA,CAAS,gBAAA,CAAiB,KAAK,CAAA,EAAG;AAC3D,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,oBAAA,EAAuB,gBAAA,CAAiB,KAAK,IAAI,GAAG,CAAA;AAAA,IACnF;AAGA,IAAA,IAAI,CAAC,iBAAiB,IAAA,CAAK,gBAAA,CAAiB,UAAU,OAAA,CAAQ,MAAA,EAAQ,EAAE,CAAC,CAAA,EAAG;AAC1E,MAAA,MAAM,IAAI,kBAAA,CAAmB,+CAAA,EAAiD,GAAG,CAAA;AAAA,IACnF;AAEA,IAAA,MAAM,GAAA,GAAM,GAAG,OAAO,CAAA,4BAAA,CAAA;AAEtB,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,MAAA;AAAA,QACR,OAAA,EAAS;AAAA,UACP,cAAA,EAAgB;AAAA,SAClB;AAAA,QACA,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,gBAAgB,CAAA;AAAA,QACrC,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,KAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACpD,QAAA,MAAM,IAAI,kBAAA;AAAA,UACR,CAAA,uBAAA,EAA0B,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UAChE,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,IAC9B,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,iBAAiB,kBAAA,EAAoB;AACvC,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,kBAAA,CAAmB,gCAAA,EAAkC,GAAG,CAAA;AAAA,MACpE;AACA,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,uBAAA,EAA0B,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,IACzE;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAA,CAAW,YAAA,EAAsB,KAAA,EAAqC;AAE1E,IAAA,MAAM,OAAA,GAAU,oBAAA,CAAqB,YAAA,EAAc,IAAA,CAAK,aAAa,CAAA;AACrE,IAAA,MAAM,SAAA,GAAY,aAAA,CAAc,KAAA,EAAO,OAAA,EAAS,IAAI,CAAA;AAEpD,IAAA,MAAM,GAAA,GAAM,GAAG,OAAO,CAAA,uBAAA,CAAA;AAEtB,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,OAAO,CAAA;AAEnE,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA,EAAQ,KAAA;AAAA,QACR,OAAA,EAAS;AAAA,UACP,aAAA,EAAe,UAAU,SAAS,CAAA;AAAA,SACpC;AAAA,QACA,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAED,MAAA,YAAA,CAAa,SAAS,CAAA;AAEtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,KAAA,GAAQ,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACpD,QAAA,MAAM,IAAI,kBAAA;AAAA,UACR,CAAA,wBAAA,EAA2B,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,SAAS,UAAU,CAAA,CAAA;AAAA,UACjE,QAAA,CAAS,MAAA;AAAA,UACT;AAAA,SACF;AAAA,MACF;AAEA,MAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,IAC9B,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,iBAAiB,kBAAA,EAAoB;AACvC,QAAA,MAAM,KAAA;AAAA,MACR;AACA,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAI,GAAA,CAAI,SAAS,YAAA,EAAc;AAC7B,QAAA,MAAM,IAAI,kBAAA,CAAmB,yBAAA,EAA2B,GAAG,CAAA;AAAA,MAC7D;AACA,MAAA,MAAM,IAAI,kBAAA,CAAmB,CAAA,wBAAA,EAA2B,GAAA,CAAI,OAAO,IAAI,CAAC,CAAA;AAAA,IAC1E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,mBAAA,CAAoB,WAAmB,UAAA,EAAkC;AACvE,IAAA,MAAM,eAAe,IAAI,UAAA,CAAW,OAAO,IAAA,CAAK,SAAA,EAAW,OAAO,CAAC,CAAA;AACnE,IAAA,MAAM,SAAA,GAAY,UAAA,CAAW,IAAA,CAAK,YAAY,CAAA;AAC9C,IAAA,OAAO,OAAO,IAAA,CAAK,OAAA,CAAQ,SAAS,CAAC,CAAA,CAAE,SAAS,KAAK,CAAA;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,iBAAA,CAAkB,WAAmB,MAAA,EAA4B;AAC/D,IAAA,MAAM,SAAA,GAAY,MAAA,CAAO,IAAA,CAAK,SAAS,CAAA;AAGvC,IAAA,IAAI,OAAO,cAAc,QAAA,EAAU;AACjC,MAAA,IAAI,gBAAA,CAAiB,IAAA,CAAK,SAAS,CAAA,EAAG,OAAO,SAAA;AAC7C,MAAA,OAAO,MAAA,CAAO,IAAA,CAAK,SAAS,CAAA,CAAE,SAAS,KAAK,CAAA;AAAA,IAC9C;AACA,IAAA,OAAO,SAAA,CAAU,iBAAA;AAAA,EACnB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,sBAAA,CACJ,YAAA,EACA,OACA,OAAA,EACA,SAAA,EACA,QACA,QAAA,EAC+B;AAE/B,IAAA,MAAM,oBAAoB,MAAM,IAAA,CAAK,gBAAA,CAAiB,YAAA,EAAc,OAAO,OAAO,CAAA;AAGlF,IAAA,MAAM,SAAA,GAAY,MAAM,MAAA,CAAO,iBAAA,CAAkB,SAAS,CAAA;AAG1D,IAAA,OAAO,IAAA,CAAK,aAAa,YAAA,EAAc;AAAA,MACrC,KAAA;AAAA,MACA,OAAA;AAAA,MACA,SAAA;AAAA,MACA,SAAA;AAAA,MACA,WAAW,iBAAA,CAAkB,SAAA;AAAA,MAC7B;AAAA,KACD,CAAA;AAAA,EACH;AACF,CAAA;AAKO,IAAM,kBAAA,GAAN,cAAiC,KAAA,CAAM;AAAA,EAC5C,WAAA,CACE,OAAA,EACO,UAAA,EACA,OAAA,EACP;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHN,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGP,IAAA,IAAA,CAAK,IAAA,GAAO,oBAAA;AAAA,EACd;AAAA,EALS,UAAA;AAAA,EACA,OAAA;AAKX,CAAA;;;AC7JO,IAAM,qBAAN,MAAyB;AAAA,EAC9B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,QAAQ,OAAA,EAA6D;AACzE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,uBAAA,EAAyB,OAAO,CAAA;AAAA,EACxD;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAU,KAAA,EAAoD;AAClE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,wBAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAQ,KAAA,EAAyC;AACrD,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,mBAAA,EAAsB,gBAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,EAAE,CAAA;AAAA,EAC1E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAM,OAAA,EAA2E;AACrF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qBAAA,EAAuB,OAAO,CAAA;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgBA,MAAM,QAAA,GAA4C;AAChD,IAAA,IAAI;AACF,MAAA,OAAO,MAAM,IAAA,CAAK,IAAA,CAAK,GAAA,CAA4B,qBAAqB,CAAA;AAAA,IAC1E,SAAS,GAAA,EAAK;AAKZ,MAAA,MAAM,UAAA,GACJ,OAAO,IAAA,IACP,OAAO,QAAQ,QAAA,IACf,YAAA,IAAgB,GAAA,IACf,GAAA,CAAgC,UAAA,KAAe,GAAA;AAClD,MAAA,IAAI,CAAC,YAAY,MAAM,GAAA;AACvB,MAAA,MAAM,GAAA,GAAM,MAAM,IAAA,CAAK,IAAA,CAAK,IAEzB,sBAAsB,CAAA;AAKzB,MAAA,OAAA,CAAQ,IAAI,cAAA,IAAkB,EAAC,EAAG,GAAA,CAAI,CAAC,GAAA,KAAQ;AAC7C,QAAA,MAAM,IAAA,GAAQ,GAAA,CAAI,IAAA,IAAQ,GAAA,CAAI,IAAA;AAC9B,QAAA,MAAM,cAAe,GAAA,CAAI,IAAA,IAAQ,GAAA,CAAI,WAAA,IAAe,OAAO,IAAI,CAAA;AAC/D,QAAA,MAAM,kBAAA,GAAqB,MAAA;AAAA,UACzB,GAAA,CAAI,kBAAA,IAAsB,GAAA,CAAI,aAAA,IAAiB;AAAA,SACjD;AACA,QAAA,MAAM,cAAA,GAAiB,MAAA,CAAO,GAAA,CAAI,cAAA,IAAkB,CAAC,CAAA;AACrD,QAAA,MAAM,WAAA,GAAe,GAAA,CAAI,eAAA,IAAmB,GAAA,CAAI,qBAAqB,EAAC;AACtE,QAAA,MAAM,oBAA2C,WAAA,CAAY,IAAA;AAAA,UAC3D,CAAC,MAAM,CAAA,KAAM;AAAA,YAEX,CAAC,QAAA,EAAU,MAAM,CAAA,GACjB,CAAC,QAAQ,CAAA;AACb,QAAA,OAAO;AAAA,UACL,IAAA,EAAM,IAAA;AAAA,UACN,WAAA;AAAA,UACA,WAAA,EACG,GAAA,CAAI,WAAA,IACL,CAAA,EAAG,WAAW,CAAA,KAAA,CAAA;AAAA,UAChB,QAAA,EAAU,MAAA,CAAO,GAAA,CAAI,QAAA,IAAY,CAAC,CAAA;AAAA,UAClC,aAAA,EAAe,OAAO,kBAAkB,CAAA;AAAA,UACxC,gBAAgB,MAAA,CAAO,QAAA,CAAS,cAAc,CAAA,GAC1C,iBACA,MAAA,CAAO,gBAAA;AAAA,UACX,iBAAA;AAAA,UACA,QAAA,EAAW,GAAA,CAAI,QAAA,IAAyB;AAAC,SAC3C;AAAA,MACF,CAAC,CAAA;AAAA,IACH;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAA,GAAyC;AAC7C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,sBAAsB,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAA,GAA0C;AAC9C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,CAAA;AAAA,EAC3C;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,aAAa,MAAA,EAA+D;AAChF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,6BAA6B,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EAC7E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAW,KAAA,EAAyC;AACxD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,yBAAyB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACxE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UACJ,OAAA,EACwC;AACxC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,yBAAA,EAA2B,OAAO,CAAA;AAAA,EAC1D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QACJ,OAAA,EACsC;AACtC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,uBAAA,EAAyB,OAAO,CAAA;AAAA,EACxD;AAAA;AAAA,EAGA,MAAM,iBACJ,OAAA,EACmC;AACnC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,kCAAA,EAAoC,OAAO,CAAA;AAAA,EACnE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,aAAa,aAAA,EAAqE;AACtF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,yBAAA,EAA4B,eAAA,CAAgB,aAAa,CAAC,CAAA;AAAA,KAC5D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,SAAS,KAAA,EAA0D;AACvE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,uBAAuB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACtE;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,eAAe,KAAA,EAAyD;AAC5E,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,8BAA8B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EAC7E;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,UAAA,CACJ,KAAA,EACA,OAAA,EACsC;AACtC,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,OAAO,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC9E,IAAA,IAAI,OAAA,EAAS,WAAW,MAAA,EAAW,MAAA,CAAO,OAAO,QAAA,EAAU,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAC,CAAA;AACjF,IAAA,IAAI,SAAS,IAAA,EAAM,MAAA,CAAO,MAAA,CAAO,MAAA,EAAQ,QAAQ,IAAI,CAAA;AACrD,IAAA,IAAI,SAAS,EAAA,EAAI,MAAA,CAAO,MAAA,CAAO,IAAA,EAAM,QAAQ,EAAE,CAAA;AAC/C,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,gBAAgB,KAAK,CAAC,GAAG,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KACtE;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,MAAM,aACJ,OAAA,EAC2C;AAC3C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,6BAAA,EAA+B,OAAO,CAAA;AAAA,EAC9D;AACF,CAAA;;;ACzdO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,gBAAA,CACJ,KAAA,EACA,gBAAA,EAC0B;AAC1B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA,CAAK,4BAA4B,EAAE,KAAA,EAAO,kBAAkB,CAAA;AAAA,EAC/E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,SAAS,GAAA,EAA2D;AACxE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gBAAA,EAAkB,GAAG,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAA,CACJ,KAAA,EACA,gBAAA,EAC+B;AAC/B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,MAAA,CAAO,MAAA,CAAO,SAAS,KAAK,CAAA;AAC5B,IAAA,MAAA,CAAO,MAAA,CAAO,oBAAoB,gBAAgB,CAAA;AAClD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,yBAAyB,MAAA,CAAO,QAAA,EAAU,CAAA,CAAE,CAAA;AAAA,EACnE;AACF,CAAA;;;ACxHO,IAAM,YAAN,MAAgB;AAAA,EACrB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQ7B,MAAM,aAAa,OAAA,EAAiE;AAClF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,oBAAA,EAAsB,OAAO,CAAA;AAAA,EACrD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,eAAe,OAAA,EAAmD;AACtE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sBAAA,EAAwB,OAAO,CAAA;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,UAAU,QAAA,EAA0C;AACxD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,eAAe,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EACjE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAcA,MAAM,QACJ,OAAA,EAC6B;AAC7B,IAAA,MAAM,KAAA,GAAQ,QAAA;AACd,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,KAAA,EAAQ,KAAK,aAAa,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,CAAA;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,aAAA,GAAgD;AACpD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,CAAA;AAAA,EACxC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,WAAA,GAA8D;AAClE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,eAAA,EAAiB,EAAE,CAAA;AAAA,EAC3C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAA,GAA8B;AAClC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,YAAY,CAAA;AAAA,EACnC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,YAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,eAAe,CAAA;AAAA,EACtC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,SAAA,GAAwC;AAC5C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,aAAa,CAAA;AAAA,EACpC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,cAAA,GAAgD;AACpD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,0BAA0B,CAAA;AAAA,EACjD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,kBAAkB,IAAA,EAA+C;AACrE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,8BAA8B,eAAA,CAAgB,IAAI,CAAC,CAAA,CAAE,CAAA;AAAA,EAC5E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,kBAAkB,OAAA,EAAyD;AAC/E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,OAAO,CAAA;AAAA,EAC3D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,oBAAoB,OAAA,EAAkD;AAC1E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,OAAO,CAAA;AAAA,EAC7D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,OAAO,KAAA,EAAwC;AACnD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,aAAa,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EAC5D;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,MAAM,UAAA,CAAW,KAAA,EAAe,OAAA,EAAyD;AACvF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,YAAA,EAAe,gBAAgB,KAAK,CAAC,SAAS,OAAO,CAAA;AAAA,EAC7E;AACF,CAAA;;;ACnLO,IAAM,aAAN,MAAiB;AAAA,EACtB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAU7B,MAAM,MAAA,CACJ,IAAA,EACA,QAAA,EACA,QAAA,EAC2B;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,cAAA,EAAgB,IAAA,EAAM,UAAU,QAAQ,CAAA;AAAA,EAClE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAI,GAAA,EAAqC;AAC7C,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,UAAA,EAAa,gBAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,EAAE,CAAA;AAAA,EAC/D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAM,GAAA,EAAqC;AAC/C,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,eAAe,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAE,CAAA;AAAA,EAC/D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAQ,GAAA,EAA2B;AACvC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAE,CAAA;AAAA,EAC3D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAW,GAAA,EAA2B;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,SAAS,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAE,CAAA;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,YAAY,GAAA,EAAwC;AACxD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAE,CAAA;AAAA,EAC/D;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAA,GAAyC;AAC7C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,YAAY,CAAA;AAAA,EACnC;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAA,GAAyC;AAC7C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,cAAc,CAAA;AAAA,EACrC;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,eAAA,GAAqD;AACzD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,eAAe,CAAA;AAAA,EACtC;AACF,CAAA;;;AC0EO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,cAAc,OAAA,EAA2E;AAC7F,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,OAAO,CAAA;AAAA,EAC7D;AAAA;AAAA,EAGA,MAAM,WAAW,OAAA,EAAqE;AACpF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,yBAAA,EAA2B,OAAO,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,YAAY,OAAA,EAAuE;AACvF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,OAAO,CAAA;AAAA,EAC3D;AAAA;AAAA,EAGA,MAAM,cAAc,OAAA,EAA2E;AAC7F,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,OAAO,CAAA;AAAA,EAC7D;AAAA;AAAA,EAGA,MAAM,YAAY,OAAA,EAAuE;AACvF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,OAAO,CAAA;AAAA,EAC3D;AAAA;AAAA,EAGA,MAAM,UAAU,OAAA,EAAmE;AACjF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,wBAAA,EAA0B,OAAO,CAAA;AAAA,EACzD;AACF,CAAA;;;AC7IO,IAAM,2BAAN,MAA+B;AAAA,EAgBpC,WAAA,CAA6B,MAAkB,OAAA,EAAqB;AAAvC,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAC3B,IAAA,IAAA,CAAK,GAAA,GAAM,IAAI,eAAA,CAAgB,OAAO,CAAA;AAAA,EACxC;AAAA,EAF6B,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAFb,GAAA;AAAA;AAAA,EAOhB,MAAM,mBAAmB,OAAA,EAAkE;AACzF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,uBAAA,EAAyB,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EAChF;AAAA;AAAA,EAGA,MAAM,oBAAoB,OAAA,EAAmE;AAC3F,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,wBAAA,EAA0B,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EACjF;AAAA;AAAA,EAGA,MAAM,6BACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,kCAAA,EAAoC,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EAC3F;AAAA;AAAA,EAGA,MAAM,8BACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,mCAAA,EAAqC,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EAC5F;AAAA;AAAA,EAGA,MAAM,iBAAiB,OAAA,EAAgE;AACrF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,qBAAA,EAAuB,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EAC9E;AACF,CAAA;;;AC9BO,IAAM,yBAAN,MAA6B;AAAA,EAClC,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,iBAAiB,OAAA,EAAgE;AACrF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,oBAAA,EAAsB,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,MAAA,EAAQ,CAAA;AAAA,EAC3E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,oBACJ,OAAA,EACgC;AAChC,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,6BAAA,EAA+B,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,MAAA,EAAQ,CAAA;AAAA,EACpF;AACF,CAAA;;;AC3EO,IAAM,2BAAN,MAA+B;AAAA,EACpC,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,yBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,8BAAA,EAAgC,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,QAAA,EAAU,CAAA;AAAA,EACvF;AACF,CAAA;;;ACYO,IAAM,6BAAN,MAAiC;AAAA,EACtC,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,oBAAoB,OAAA,EAAmE;AAC3F,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,yBAAA,EAA2B,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,UAAA,EAAY,CAAA;AAAA,EACpF;AAAA;AAAA,EAGA,MAAM,wBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,6BAAA,EAA+B,EAAE,GAAG,OAAA,EAAS,KAAA,EAAO,UAAA,EAAY,CAAA;AAAA,EACxF;AACF,CAAA;;;ACbO,IAAM,qBAAN,MAAyB;AAAA,EAC9B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,OAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,OAAO,CAAA;AAAA,EAC9B;AAAA;AAAA,EAGA,MAAM,gBAAgB,OAAA,EAA+D;AACnF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AAAA;AAAA,EAGA,MAAM,eAAe,OAAA,EAA8D;AACjF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AAAA;AAAA,EAGA,MAAM,eAAe,OAAA,EAA8D;AACjF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AAAA;AAAA,EAGA,MAAM,mBAAmB,OAAA,EAAkE;AACzF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,uBAAA,EAAyB,OAAO,CAAA;AAAA,EACxD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,2BACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gCAAA,EAAkC,OAAO,CAAA;AAAA,EACjE;AAAA;AAAA,EAGA,MAAM,sBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,2BAAA,EAA6B,OAAO,CAAA;AAAA,EAC5D;AAAA;AAAA,EAGA,MAAM,gCACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC,OAAO,CAAA;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,yBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,8BAAA,EAAgC,OAAO,CAAA;AAAA,EAC/D;AAAA;AAAA,EAGA,MAAM,mBAAmB,OAAA,EAAkE;AACzF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,uBAAA,EAAyB,OAAO,CAAA;AAAA,EACxD;AAAA;AAAA,EAGA,MAAM,iBAAiB,OAAA,EAAgE;AACrF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qBAAA,EAAuB,OAAO,CAAA;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,iBAAiB,OAAA,EAAgE;AACrF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qBAAA,EAAuB,OAAO,CAAA;AAAA,EACtD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,sBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,OAAO,CAAA;AAAA,EAC3D;AAAA;AAAA,EAGA,MAAM,kBAAkB,OAAA,EAAiE;AACvF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sBAAA,EAAwB,OAAO,CAAA;AAAA,EACvD;AAAA;AAAA,EAGA,MAAM,oBAAoB,OAAA,EAAmE;AAC3F,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,wBAAA,EAA0B,OAAO,CAAA;AAAA,EACzD;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,qBAAqB,OAAA,EAAoE;AAC7F,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,yBAAA,EAA2B,OAAO,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,uBACJ,OAAA,EAC8B;AAC9B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,2BAAA,EAA6B,OAAO,CAAA;AAAA,EAC5D;AACF,CAAA;;;AC5IO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQ7B,MAAM,QAAA,CACJ,OAAA,EACA,OAAA,EACmC;AACnC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,oBAAA,EAAuB,eAAA,CAAgB,OAAO,CAAC,CAAA,CAAA;AAAA,MAC/C,WAAW;AAAC,KACd;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAI,UAAA,EAA2C;AACnD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CACJ,OAAA,EACA,UAAA,EAC+B;AAC/B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,UAAA,EAAY,SAAS,MAAA,EAAW,MAAA,CAAO,IAAI,MAAA,EAAQ,MAAA,CAAO,UAAA,CAAW,IAAI,CAAC,CAAA;AAC9E,IAAA,IAAI,UAAA,EAAY,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,UAAA,CAAW,KAAK,CAAC,CAAA;AACjF,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,iBAAA,EAAoB,gBAAgB,OAAO,CAAC,GAAG,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KACnE;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,QAAA,CAAS,UAAA,EAAoB,MAAA,EAAuC;AACxE,IAAA,MAAM,SAAS,MAAA,GAAS,CAAA,QAAA,EAAW,kBAAA,CAAmB,MAAM,CAAC,CAAA,CAAA,GAAK,EAAA;AAClE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,WAAA,EAAc,eAAA,CAAgB,UAAU,CAAC,YAAY,MAAM,CAAA;AAAA,KAC7D;AAAA,EACF;AACF,CAAA;;;ACnEA,IAAM,kBAAA,GAAqB,GAAA;AAC3B,IAAM,aAAA,GAAgB,kCAAA;AAQf,IAAM,4BAAA,GAAN,cAA2C,KAAA,CAAM;AAAA,EACtD,WAAA,CACE,OAAA,EACgB,UAAA,EACA,OAAA,EAChB;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHG,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGhB,IAAA,IAAA,CAAK,IAAA,GAAO,8BAAA;AAAA,EACd;AAAA,EALkB,UAAA;AAAA,EACA,OAAA;AAKpB,CAAA;AAEO,IAAM,uBAAA,GAAN,MAAM,wBAAA,CAAwB;AAAA;AAAA,EAElB,OAAA;AAAA,EACA,SAAA;AAAA,EACA,MAAA;AAAA,EACA,SAAA;AAAA,EACA,SAAA;AAAA;AAAA,EAGA,IAAA;AAAA,EAEjB,YAAY,MAAA,EAA8D;AACxE,IAAA,IAAI,UAAU,MAAA,EAAQ;AACpB,MAAA,IAAA,CAAK,OAAO,MAAA,CAAO,IAAA;AACnB,MAAA,IAAA,CAAK,SAAA,GAAY,kBAAA;AACjB,MAAA;AAAA,IACF;AACA,IAAA,IAAI,CAAC,OAAO,OAAA,EAAS;AACnB,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,0EAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,IAAA,CAAK,OAAA,GAAU,MAAA,CAAO,OAAA,CAAQ,OAAA,CAAQ,QAAQ,EAAE,CAAA;AAChD,IAAA,IAAA,CAAK,YAAY,MAAA,CAAO,SAAA;AACxB,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AACrB,IAAA,IAAA,CAAK,SAAA,GAAY,OAAO,SAAA,IAAa,kBAAA;AACrC,IAAA,IAAA,CAAK,YAAY,MAAA,CAAO,SAAA;AAAA,EAC1B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAO,SAAS,IAAA,EAA2C;AACzD,IAAA,OAAO,IAAI,wBAAA,CAAwB,EAAE,IAAA,EAAM,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,WAAW,MAAA,EAAwE;AACvF,IAAA,IAAA,CAAK,eAAe,MAAM,CAAA;AAE1B,IAAA,IAAI,KAAK,IAAA,EAAM;AAGb,MAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAA8B,2BAAA,EAA6B,MAAM,CAAA;AAAA,IACpF;AACA,IAAA,OAAO,IAAA,CAAK,gBAAgB,MAAM,CAAA;AAAA,EACpC;AAAA,EAEQ,eAAe,MAAA,EAA4C;AACjE,IAAA,IAAI,CAAC,MAAA,IAAU,OAAO,MAAA,KAAW,QAAA,EAAU;AACzC,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,+DAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,MAAM,EAAE,KAAA,EAAO,QAAA,EAAU,OAAA,EAAS,aAAY,GAAI,MAAA;AAClD,IAAA,IAAI,KAAA,KAAU,QAAA,IAAY,KAAA,KAAU,MAAA,IAAU,UAAU,UAAA,EAAY;AAClE,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,CAAA,uDAAA,EAA0D,MAAA,CAAO,KAAK,CAAC,CAAA,qCAAA,CAAA;AAAA,QACvE;AAAA,OACF;AAAA,IACF;AACA,IAAA,IAAI,OAAO,QAAA,KAAa,QAAA,IAAY,QAAA,CAAS,WAAW,CAAA,EAAG;AACzD,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,yEAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,IAAI,OAAO,OAAA,KAAY,QAAA,IAAY,OAAA,CAAQ,WAAW,CAAA,EAAG;AACvD,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,wEAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,IACE,OAAO,gBAAgB,QAAA,IACvB,CAAC,OAAO,SAAA,CAAU,WAAW,CAAA,IAC7B,WAAA,IAAe,CAAA,EACf;AACA,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,2FAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAAA,EACF;AAAA,EAEA,MAAc,gBACZ,MAAA,EACkC;AAClC,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,aAAa,CAAA,CAAA;AAC3C,IAAA,MAAM,OAAA,GAAkC;AAAA,MACtC,cAAA,EAAgB,kBAAA;AAAA,MAChB,MAAA,EAAQ;AAAA,KACV;AACA,IAAA,IAAI,KAAK,SAAA,EAAW,OAAA,CAAQ,aAAA,GAAgB,CAAA,OAAA,EAAU,KAAK,SAAS,CAAA,CAAA;AACpE,IAAA,IAAI,IAAA,CAAK,MAAA,EAAQ,OAAA,CAAQ,WAAW,IAAI,IAAA,CAAK,MAAA;AAE7C,IAAA,MAAM,UAAU,IAAA,CAAK,SAAA,KAAc,OAAO,KAAA,KAAU,cAAc,KAAA,GAAQ,MAAA,CAAA;AAC1E,IAAA,IAAI,CAAC,OAAA,EAAS;AACZ,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,gFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAEA,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,QAAQ,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,SAAS,CAAA;AAEjE,IAAA,IAAI,QAAA;AACJ,IAAA,IAAI;AACF,MAAA,QAAA,GAAW,MAAM,QAAQ,GAAA,EAAK;AAAA,QAC5B,MAAA,EAAQ,MAAA;AAAA,QACR,OAAA;AAAA,QACA,IAAA,EAAM,IAAA,CAAK,SAAA,CAAU,MAAM,CAAA;AAAA,QAC3B,QAAQ,UAAA,CAAW;AAAA,OACpB,CAAA;AAAA,IACH,SAAS,GAAA,EAAK;AACZ,MAAA,YAAA,CAAa,KAAK,CAAA;AAClB,MAAA,MAAM,UAAU,GAAA,YAAe,KAAA,GAAQ,GAAA,CAAI,OAAA,GAAU,OAAO,GAAG,CAAA;AAC/D,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,6CAA6C,OAAO,CAAA,CAAA;AAAA,QACpD,CAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,YAAA,CAAa,KAAK,CAAA;AAElB,IAAA,IAAI,IAAA;AACJ,IAAA,MAAM,IAAA,GAAO,MAAM,QAAA,CAAS,IAAA,EAAK;AACjC,IAAA,IAAI,IAAA,CAAK,SAAS,CAAA,EAAG;AACnB,MAAA,IAAI;AACF,QAAA,IAAA,GAAO,IAAA,CAAK,MAAM,IAAI,CAAA;AAAA,MACxB,SAAS,GAAA,EAAK;AACZ,QAAA,MAAM,UAAU,GAAA,YAAe,KAAA,GAAQ,GAAA,CAAI,OAAA,GAAU,OAAO,GAAG,CAAA;AAC/D,QAAA,MAAM,IAAI,4BAAA;AAAA,UACR,CAAA,mDAAA,EAAsD,QAAA,CAAS,MAAM,CAAA,GAAA,EAAM,OAAO,CAAA,CAAA;AAAA,UAClF,QAAA,CAAS,MAAA;AAAA,UACT,EAAE,KAAK,IAAA;AAAK,SACd;AAAA,MACF;AAAA,IACF;AAEA,IAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,MAAA,MAAM,MAAA,GACJ,IAAA,IAAQ,OAAO,IAAA,KAAS,QAAA,IAAY,SAAA,IAAc,IAAA,GAC9C,MAAA,CAAQ,IAAA,CAAa,OAAO,CAAA,GAC5B,CAAA,KAAA,EAAQ,SAAS,MAAM,CAAA,CAAA;AAC7B,MAAA,MAAM,IAAI,4BAAA;AAAA,QACR,4BAA4B,MAAM,CAAA,CAAA;AAAA,QAClC,QAAA,CAAS,MAAA;AAAA,QACT;AAAA,OACF;AAAA,IACF;AAEA,IAAA,OAAO,IAAA;AAAA,EACT;AACF,CAAA;;;AC/LO,IAAM,mBAAN,MAAuB;AAAA,EAC5B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,SAAS,OAAA,EAAuE;AACpF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sBAAA,EAAwB,OAAO,CAAA;AAAA,EACvD;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAU,YAAA,EAAyD;AACvE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,eAAe,eAAA,CAAgB,YAAY,CAAC,CAAA,OAAA,CAAS,CAAA;AAAA,EAC5E;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,iBAAiB,YAAA,EAAyD;AAC9E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,YAAA,EAAe,gBAAgB,YAAY,CAAC,CAAA,YAAA,CAAA,EAAgB,EAAE,CAAA;AAAA,EACtF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAW,QAAA,EAAqD;AACpE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,uBAAuB,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EACzE;AACF,CAAA;;;ACtBO,IAAM,mBAAN,MAAuB;AAAA,EAC5B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAY7B,MAAM,SAAS,MAAA,EAAwE;AACrF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAiC,sBAAA,EAAwB,MAAM,CAAA;AAAA,EAClF;AACF,CAAA;;;AC7BA,SAAS,WAAW,MAAA,EAA6D;AAC/E,EAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,EAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAA,EAAG;AACjD,IAAA,IAAI,UAAU,MAAA,EAAW;AACzB,IAAA,MAAA,CAAO,GAAA,CAAI,GAAA,EAAK,MAAA,CAAO,KAAK,CAAC,CAAA;AAAA,EAC/B;AACA,EAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,EAAA,OAAO,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAA;AACzB;AAEO,IAAM,qBAAN,MAAyB;AAAA,EAC9B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,SAAS,WAAA,EAAiD;AAC9D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,qBAAA,EAAwB,eAAA,CAAgB,WAAW,CAAC,CAAA;AAAA,KACtD;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,mBACJ,WAAA,EACqC;AACrC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,gCAAA,EAAmC,eAAA,CAAgB,WAAW,CAAC,CAAA;AAAA,KACjE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,cAAA,CACJ,WAAA,EACA,IAAA,GAA6B,EAAC,EACgB;AAC9C,IAAA,MAAM,EAAA,GAAK,WAAW,EAAE,KAAA,EAAO,KAAK,KAAA,EAAO,MAAA,EAAQ,IAAA,CAAK,MAAA,EAAQ,CAAA;AAChE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,4BAAA,EAA+B,eAAA,CAAgB,WAAW,CAAC,GAAG,EAAE,CAAA;AAAA,KAClE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,WAAA,CACJ,WAAA,EACA,IAAA,GAAiC,EAAC,EACL;AAC7B,IAAA,MAAM,EAAA,GAAK,WAAW,EAAE,KAAA,EAAO,KAAK,KAAA,EAAO,KAAA,EAAO,IAAA,CAAK,KAAA,EAAO,CAAA;AAC9D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,wBAAA,EAA2B,eAAA,CAAgB,WAAW,CAAC,GAAG,EAAE,CAAA;AAAA,KAC9D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,kBAAkB,WAAA,EAAkD;AACxE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,+BAAA,EAAkC,eAAA,CAAgB,WAAW,CAAC,CAAA;AAAA,KAChE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAU,WAAA,EAAmD;AACjE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,WAAW,CAAC,CAAA;AAAA,KACvD;AAAA,EACF;AACF,CAAA;;;AC7BA,SAASC,YAAW,MAAA,EAA6D;AAC/E,EAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,EAAA,KAAA,MAAW,CAAC,GAAA,EAAK,KAAK,KAAK,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAA,EAAG;AACjD,IAAA,IAAI,UAAU,MAAA,EAAW;AACzB,IAAA,MAAA,CAAO,GAAA,CAAI,GAAA,EAAK,MAAA,CAAO,KAAK,CAAC,CAAA;AAAA,EAC/B;AACA,EAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,EAAA,OAAO,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAA;AACzB;AAEA,SAAS,YAAY,KAAA,EAAuB;AAC1C,EAAA,OAAO,gBAAgB,KAAK,CAAA;AAC9B;AAEA,SAAS,iBAAiB,UAAA,EAA4B;AACpD,EAAA,OAAO,gBAAgB,UAAU,CAAA;AACnC;AAEA,SAAS,cAAc,OAAA,EAAyB;AAC9C,EAAA,OAAO,gBAAgB,OAAO,CAAA;AAChC;AAyBO,IAAM,YAAN,MAAgB;AAAA,EAIrB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAC3B,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,kBAAA,CAAmB,IAAI,CAAA;AAAA,EAC9C;AAAA,EAF6B,IAAA;AAAA;AAAA,EAFb,SAAA;AAAA;AAAA;AAAA,EAShB,MAAM,OAAO,OAAA,EAAuD;AAClE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,aAAA,EAAe,OAAO,CAAA;AAAA,EAC9C;AAAA;AAAA,EAGA,MAAM,IAAA,CAAK,IAAA,GAAwB,EAAC,EAA8B;AAChE,IAAA,MAAM,EAAA,GAAKA,YAAW,EAAE,MAAA,EAAQ,KAAK,MAAA,EAAQ,SAAA,EAAW,IAAA,CAAK,SAAA,EAAW,CAAA;AACxE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,SAAA,EAAY,EAAE,CAAA,CAAE,CAAA;AAAA,EACvC;AAAA;AAAA,EAGA,MAAM,IAAI,KAAA,EAAmC;AAC3C,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACnD;AAAA;AAAA,EAGA,MAAM,iBAAiB,KAAA,EAAkD;AACvE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,eAAA,CAAiB,CAAA;AAAA,EAClE;AAAA;AAAA;AAAA,EAKA,MAAM,aAAA,CACJ,KAAA,EACA,IAAA,GAA6B,EAAC,EACE;AAChC,IAAA,MAAM,EAAA,GAAKA,YAAW,EAAE,MAAA,EAAQ,KAAK,MAAA,EAAQ,QAAA,EAAU,IAAA,CAAK,QAAA,EAAU,CAAA;AACtE,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,CAAA,UAAA,EAAa,EAAE,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA,EAGA,MAAM,cAAA,CACJ,KAAA,EACA,OAAA,EACiC;AACjC,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,cAAc,OAAO,CAAA;AAAA,EACvE;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,eAAA,CACJ,KAAA,EACA,OAAA,EACkC;AAClC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,KAAA,EAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,kBAAA,CAAA;AAAA,MAC1B;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,KAAA,EACA,UAAA,EACA,OAAA,EACuC;AACvC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,KAAA,CAAA;AAAA,MACpE;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,WAAA,CACJ,KAAA,EACA,UAAA,EACA,OAAA,EAC8B;AAC9B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,aAAA,CAAA;AAAA,MACpE;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAA,CACJ,KAAA,EACA,UAAA,EACA,OAAA,EAC2B;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,YAAA,CAAA;AAAA,MACpE;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,IAAA,CACJ,KAAA,EACA,UAAA,EACA,OAAA,EAC2B;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,KAAA,CAAA;AAAA,MACpE;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,OAAA,CACJ,KAAA,EACA,UAAA,EACkC;AAClC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,QAAA,CAAA;AAAA,MACpE;AAAC,KACH;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,QAAA,CACJ,KAAA,EACA,UAAA,EACA,IAAA,GAAwB,EAAC,EACG;AAC5B,IAAA,MAAM,EAAA,GAAKA,YAAW,EAAE,KAAA,EAAO,KAAK,KAAA,EAAO,MAAA,EAAQ,IAAA,CAAK,MAAA,EAAQ,CAAA;AAChE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,cAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,MAAA,EAAS,EAAE,CAAA;AAAA,KACjF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAA,CACJ,KAAA,EACA,UAAA,EACkC;AAClC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,QAAA;AAAA,KACtE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,aAAA,CACJ,KAAA,EACA,UAAA,EACiC;AACjC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,YAAA;AAAA,KACtE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,cAAA,CACJ,KAAA,EACA,UAAA,EACA,YAAA,EACkB;AAClB,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,KAAA,EAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA,OAAA,EAAU,aAAA,CAAc,YAAY,CAAC,CAAA;AAAA,KAC3G;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,WAAA,CACJ,KAAA,EACA,UAAA,EAC4B;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,WAAA,EAAc,gBAAA,CAAiB,UAAU,CAAC,CAAA;AAAA,KACtE;AAAA,EACF;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CACJ,KAAA,EACA,KAAA,EACmC;AACnC,IAAA,MAAM,EAAA,GAAKA,WAAAA,CAAW,EAAE,KAAA,EAAO,CAAA;AAC/B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,CAAA,SAAA,EAAY,EAAE,CAAA,CAAE,CAAA;AAAA,EACjE;AAAA;AAAA,EAGA,MAAM,kBAAA,CACJ,KAAA,EACA,IAAA,GAA+B,EAAC,EACE;AAClC,IAAA,MAAM,KAAKA,WAAAA,CAAW;AAAA,MACpB,OAAO,IAAA,CAAK,KAAA;AAAA,MACZ,OAAO,IAAA,CAAK,KAAA;AAAA,MACZ,QAAQ,IAAA,CAAK;AAAA,KACd,CAAA;AACD,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,CAAA,iBAAA,EAAoB,EAAE,CAAA,CAAE,CAAA;AAAA,EACzE;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CACJ,KAAA,EACA,IAAA,GAA2B,EAAC,EACE;AAC9B,IAAA,MAAM,KAAKA,WAAAA,CAAW,EAAE,MAAA,EAAQ,IAAA,CAAK,QAAQ,CAAA;AAC7C,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,CAAA,QAAA,EAAW,EAAE,CAAA,CAAE,CAAA;AAAA,EAChE;AAAA;AAAA,EAGA,MAAM,SAAA,CACJ,KAAA,EACA,OAAA,EAC4B;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,KAAA,EAAQ,YAAY,KAAK,CAAC,YAAY,OAAO,CAAA;AAAA,EACrE;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,KAAA,EACA,OAAA,EAC+B;AAC/B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,SAAA,EAAY,aAAA,CAAc,OAAO,CAAC,CAAA;AAAA,KAC9D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,cAAA,CACJ,KAAA,EACA,OAAA,EACA,OAAA,EAC2B;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,SAAA,EAAY,aAAA,CAAc,OAAO,CAAC,CAAA,UAAA,CAAA;AAAA,MAC5D;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,KAAA,EACA,OAAA,EAC4B;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,QAAQ,WAAA,CAAY,KAAK,CAAC,CAAA,SAAA,EAAY,aAAA,CAAc,OAAO,CAAC,CAAA,IAAA;AAAA,KAC9D;AAAA,EACF;AACF,CAAA;;;ACpTO,IAAM,mBAAN,MAAuB;AAAA,EAC5B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAS7B,MAAM,OAAO,MAAA,EAAgE;AAC3E,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA;AAAA,MAC7B,oBAAA;AAAA,MACA;AAAA,QACE,WAAW,MAAA,CAAO,SAAA;AAAA,QAClB,OAAO,MAAA,CAAO;AAAA;AAChB,KACF;AAKA,IAAA,IAAI,MAAA,KAAW,QAAW,OAAO,IAAA;AACjC,IAAA,OAAO,MAAA;AAAA,EACT;AACF,CAAA;;;ACAO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,QAAA,CAAS,OAAA,EAA+B,IAAA,EAA4C;AACxF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,8BAAA,EAAgC,SAAS,IAAI,CAAA;AAAA,EACrE;AAAA;AAAA,EAGA,MAAM,GAAA,CAAI,OAAA,EAAiB,IAAA,EAA4C;AACrE,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,IAAI,IAAI,CAAA;AAAA,EAC9E;AAAA;AAAA,EAGA,MAAM,KAAK,IAAA,EAAyE;AAClF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,qBAAA,EAAuB,IAAI,CAAA;AAAA,EAClD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,IAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EAC0E;AAC1E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,KAAA,CAAA,EAAS,OAAA,EAAS,IAAI,CAAA;AAAA,EAC7F;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,KAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EAC2C;AAC3C,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,MAAA,CAAA,EAAU,OAAA,EAAS,IAAI,CAAA;AAAA,EAC9F;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,QAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EAC2C;AAC3C,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,SAAA,CAAA,EAAa,OAAA,EAAS,IAAI,CAAA;AAAA,EACjG;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,OAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EACmD;AACnD,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,QAAA,CAAA,EAAY,OAAA,EAAS,IAAI,CAAA;AAAA,EAChG;AAAA;AAAA,EAGA,MAAM,KAAA,CAAM,OAAA,EAAiB,IAAA,EAAuE;AAClG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,eAAA,CAAgB,OAAO,CAAC,CAAA,MAAA,CAAA,EAAU,EAAC,EAAG,IAAI,CAAA;AAAA,EACzF;AAAA;AAAA,EAGA,MAAM,MAAA,CAAO,OAAA,EAAiB,IAAA,EAAuE;AACnG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,eAAA,CAAgB,OAAO,CAAC,CAAA,OAAA,CAAA,EAAW,EAAC,EAAG,IAAI,CAAA;AAAA,EAC1F;AAAA;AAAA,EAGA,MAAM,MAAA,CAAO,OAAA,EAAiB,IAAA,EAAuE;AACnG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,eAAA,CAAgB,OAAO,CAAC,CAAA,OAAA,CAAA,EAAW,EAAC,EAAG,IAAI,CAAA;AAAA,EAC1F;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,aAAA,CAAc,OAAA,EAAiB,IAAA,EAAqD;AACxF,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,kBAAkB,IAAI,CAAA;AAAA,EAC5F;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,WAAA,CAAY,OAAA,EAAiB,KAAA,EAA4B,IAAA,EAA4C;AACzG,IAAA,OAAO,IAAA,CAAK,KAAK,KAAA,CAAM,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,MAAA,CAAA,EAAU,KAAA,EAAO,IAAI,CAAA;AAAA,EAC7F;AAAA;AAAA,EAGA,MAAM,SAAA,CAAU,OAAA,EAAiB,IAAA,EAA0E;AACzG,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,WAAW,IAAI,CAAA;AAAA,EACrF;AAAA;AAAA,EAGA,MAAM,WAAA,CAAY,OAAA,EAAiB,IAAA,EAA+D;AAChG,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,aAAa,IAAI,CAAA;AAAA,EACvF;AAAA;AAAA,EAGA,MAAM,OAAA,CAAQ,OAAA,EAAiB,WAAA,EAAqB,IAAA,EAAuD;AACzG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,SAAA,EAAY,eAAA,CAAgB,WAAW,CAAC,CAAA,CAAA,EAAI,IAAI,IAAI,CAAA;AAAA,EAC3H;AAAA;AAAA,EAGA,MAAM,MAAA,CAAO,OAAA,EAAiB,WAAA,EAAqB,IAAA,EAAuD;AACxG,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,oBAAA,EAAuB,gBAAgB,OAAO,CAAC,CAAA,QAAA,EAAW,eAAA,CAAgB,WAAW,CAAC,CAAA,CAAA,EAAI,IAAI,IAAI,CAAA;AAAA,EAC1H;AACF,CAAA;;;AC9JO,IAAM,mBAAN,MAAuB;AAAA,EAC5B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAmB7B,MAAM,KAAK,OAAA,EAAqD;AAC9D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mCAAA,EAAqC,OAAO,CAAA;AAAA,EACpE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAuBA,MAAM,gBAAgB,KAAA,EAA0C;AAC9D,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,iBAAA,CAAA;AAAA,MACtD;AAAC,KACH;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAkBA,MAAM,uBACJ,KAAA,EAC6C;AAC7C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,oBAAA,CAAA;AAAA,MACtD;AAAC,KACH;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,cAAA,CACJ,KAAA,EACA,MAAA,EACA,WAAW,eAAA,EAC0B;AAIrC,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,SAAA,CAAA;AAAA,MACtD,MAAA;AAAA,MACA,QAAA;AAAA,MACA,MAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,MAAA,CAAO,KAAA,EAAe,OAAA,EAAyD;AACnF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,6BAAA,EAAgC,gBAAgB,KAAK,CAAC,WAAW,OAAO,CAAA;AAAA,EAChG;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,QAAA,CAAS,KAAA,EAAe,OAAA,EAA2D;AACvF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,6BAAA,EAAgC,gBAAgB,KAAK,CAAC,aAAa,OAAO,CAAA;AAAA,EAClG;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAO,KAAA,EAA2C;AACtD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,gCAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,OAAA,CAAS,CAAA;AAAA,EACtF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAA,GAAqC;AACzC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,CAAA;AAAA,EAC3C;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAI,KAAA,EAAyC;AACjD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,sBAAsB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACrE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,MAAA,CAAO,KAAA,EAAe,OAAA,EAA+D;AACzF,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,mBAAA,EAAsB,gBAAgB,KAAK,CAAC,IAAI,OAAO,CAAA;AAAA,EAC9E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAO,KAAA,EAA8C;AACzD,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,sBAAsB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACxE;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAQ,KAAA,EAA8D;AAC1E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,mBAAA,EAAsB,gBAAgB,KAAK,CAAC,CAAA,QAAA,CAAA,EAAY,EAAE,CAAA;AAAA,EAClF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAO,KAAA,EAA8D;AACzE,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,mBAAA,EAAsB,gBAAgB,KAAK,CAAC,CAAA,OAAA,CAAA,EAAW,EAAE,CAAA;AAAA,EACjF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAA,GAIH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,0BAA0B,CAAA;AAAA,EACjD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAoBA,MAAM,UAAA,CAAW,KAAA,EAAe,UAAA,EAAqD;AACnF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,gCAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,QAAA,CAAA,EAAY;AAAA,MACrF;AAAA,KACD,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,WAAW,KAAA,EAAgC;AAC/C,IAAA,OAAO,KAAK,IAAA,CAAK,OAAA,CAAQ,gCAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,QAAA,CAAU,CAAA;AAAA,EAC3F;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAU,KAAA,EAA+C;AAC7D,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,uBAAA,CAAA;AAAA,MACtD;AAAC,KACH;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,SAAA,CAAU,KAAA,EAAe,OAAA,EAAiD;AAC9E,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,6BAAA,EAAgC,eAAA,CAAgB,KAAK,CAAC,CAAA,uBAAA,CAAA;AAAA,MACtD,EAAE,OAAA;AAAQ,KACZ;AAAA,EACF;AACF,CAAA;;;ACxPO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,OAAO,OAAA,EAA6D;AACxE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gBAAA,EAAkB,OAAO,CAAA;AAAA,EACjD;AAAA;AAAA,EAGA,MAAM,KAAK,OAAA,EAA4D;AACrE,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,SAAS,MAAA,EAAQ,MAAA,CAAO,MAAA,CAAO,QAAA,EAAU,QAAQ,MAAM,CAAA;AAC3D,IAAA,IAAI,SAAS,WAAA,EAAa,MAAA,CAAO,MAAA,CAAO,aAAA,EAAe,QAAQ,WAAW,CAAA;AAC1E,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,YAAA,EAAe,KAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA,CAAE,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,IAAI,QAAA,EAAyC;AACjD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,WAAW,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EAC7D;AAAA;AAAA,EAGA,MAAM,IAAA,CAAK,QAAA,EAAkB,OAAA,EAA2C;AACtE,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,QAAA,EAAW,gBAAgB,QAAQ,CAAC,SAAS,OAAO,CAAA;AAAA,EAC5E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,MAAA,CAAO,QAAA,EAAkB,OAAA,EAA6C;AAC1E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,QAAA,EAAW,gBAAgB,QAAQ,CAAC,WAAW,OAAO,CAAA;AAAA,EAC9E;AAAA;AAAA,EAGA,MAAM,SAAA,CAAU,QAAA,EAAkB,OAAA,EAA6C;AAC7E,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,WAAW,eAAA,CAAgB,QAAQ,CAAC,CAAA,QAAA,EAAW,eAAA,CAAgB,OAAO,CAAC,CAAA;AAAA,KACzE;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAU,QAAA,EAAyC;AACvD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,WAAW,eAAA,CAAgB,QAAQ,CAAC,CAAA,OAAA,CAAS,CAAA;AAAA,EACpE;AAAA;AAAA,EAGA,MAAM,UAAA,CACJ,QAAA,EACA,OAAA,EAC6B;AAC7B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,OAAO,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC9E,IAAA,IAAI,OAAA,EAAS,WAAW,MAAA,EAAW,MAAA,CAAO,OAAO,QAAA,EAAU,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAC,CAAA;AACjF,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,QAAA,EAAW,gBAAgB,QAAQ,CAAC,UAAU,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KAClE;AAAA,EACF;AACF,CAAA;;;ACtEO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,UAAA,GAA+C;AACnD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,CAAA;AAAA,EAC3C;AAAA;AAAA,EAGA,MAAM,eAAe,KAAA,EAAqD;AACxE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EACzE;AAAA;AAAA,EAGA,MAAM,UAAA,CAAW,KAAA,EAAe,IAAA,EAAiD;AAC/E,IAAA,MAAM,EAAA,GAAK,IAAA,KAAS,MAAA,GAAY,CAAA,MAAA,EAAS,IAAI,CAAA,CAAA,GAAK,EAAA;AAClD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,WAAW,EAAE,CAAA;AAAA,KAC/D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,SAAA,CACJ,KAAA,EACA,OAAA,EACiC;AACjC,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,OAAO,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC9E,IAAA,IAAI,OAAA,EAAS,WAAW,MAAA,EAAW,MAAA,CAAO,OAAO,QAAA,EAAU,MAAA,CAAO,OAAA,CAAQ,MAAM,CAAC,CAAA;AACjF,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,QAAQ,KAAK,CAAA;AACxD,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,QAAQ,KAAK,CAAA;AACxD,IAAA,IAAI,SAAS,QAAA,EAAU,MAAA,CAAO,MAAA,CAAO,UAAA,EAAY,QAAQ,QAAQ,CAAA;AACjE,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,UAAU,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KAC9E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,SAAA,CAAU,KAAA,EAAe,UAAA,EAAsD;AACnF,IAAA,MAAM,EAAA,GAAK,UAAA,KAAe,MAAA,GAAY,CAAA,YAAA,EAAe,UAAU,CAAA,CAAA,GAAK,EAAA;AACpE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,UAAU,EAAE,CAAA;AAAA,KAC9D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,KAAA,EACA,OAAA,EACoC;AACpC,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,QAAQ,KAAK,CAAA;AACxD,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,MAAA,CAAO,OAAA,EAAS,QAAQ,KAAK,CAAA;AACxD,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,aAAa,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KACjF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,SAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,CAAA;AAAA,EACzC;AAAA;AAAA,EAGA,MAAM,QAAQ,MAAA,EAA+C;AAC3D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EACpE;AACF,CAAA;;;AC/EO,IAAM,iBAAN,MAAqB;AAAA,EAC1B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAO7B,MAAM,QAAQ,OAAA,EAAmD;AAC/D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAQ,OAAA,EAAmD;AAC/D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,mBAAA,EAAqB,OAAO,CAAA;AAAA,EACpD;AACF,CAAA;;;AChCO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,QAAQ,OAAA,EAAiE;AAC7E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,iBAAA,EAAmB,OAAO,CAAA;AAAA,EAClD;AAAA;AAAA,EAGA,MAAM,cAAA,GAAkD;AACtD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,oBAAoB,CAAA;AAAA,EAC3C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,aACJ,WAAA,EACmD;AACnD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,sBAAsB,eAAA,CAAgB,WAAW,CAAC,CAAA,CAAE,CAAA;AAAA,EAC3E;AAAA;AAAA,EAGA,MAAM,sBACJ,OAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,WAAW,eAAA,CAAgB,OAAO,CAAC,CAAA,WAAA,CAAa,CAAA;AAAA,EACvE;AACF,CAAA;;;ACzBO,IAAM,iBAAN,MAAqB;AAAA,EAC1B,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,UAAA,CACJ,KAAA,EACA,SAAA,EACkC;AAClC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,qBAAqB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,SAAS,CAAC,CAAA;AAAA,KAC3E;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,QAAA,CACJ,KAAA,EACA,SAAA,EACgC;AAChC,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,SAAS,CAAC,CAAA;AAAA,KACzE;AAAA,EACF;AACF,CAAA;;;ACsIO,IAAM,iBAAA,GAAN,MAAM,kBAAA,CAAkB;AAAA,EACrB,OAAA;AAAA,EACA,aAAA;AAAA,EACS,IAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAET,aAAA;AAAA;AAAA;AAAA,EAKQ,YAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,GAAA;AAAA;AAAA,EAEA,IAAA;AAAA;AAAA,EAEA,YAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,IAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,QAAA;AAAA;AAAA,EAEA,SAAA;AAAA;AAAA,EAEA,iBAAA;AAAA;AAAA,EAEA,UAAA;AAAA;AAAA,EAEA,UAAA;AAAA;AAAA,EAEA,GAAA;AAAA;AAAA,EAEA,UAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,WAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,SAAA;AAAA;AAAA,EAEA,QAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,QAAA;AAAA;AAAA,EAEA,SAAA;AAAA,EAEhB,YAAY,MAAA,EAAiC;AAC3C,IAAA,IAAA,CAAK,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAC7C,IAAA,IAAA,CAAK,OAAA,GAAU,iBAAA,CAAkB,MAAA,CAAO,gBAAA,EAAkB,KAAK,aAAa,CAAA;AAG5E,IAAA,IAAA,CAAK,OAAO,gBAAA,CAAiB;AAAA,MAC3B,OAAA,EAAS,CAAA,EAAG,IAAA,CAAK,OAAO,CAAA,OAAA,CAAA;AAAA,MACxB,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO;AAAA,KACjB,CAAA;AAGD,IAAA,IAAA,CAAK,SAAS,gBAAA,CAAiB;AAAA,MAC7B,OAAA,EAAS,CAAA,EAAG,IAAA,CAAK,OAAO,CAAA,oBAAA,CAAA;AAAA,MACxB,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO;AAAA,KACjB,CAAA;AAGD,IAAA,IAAA,CAAK,YAAA,GAAe,IAAI,kBAAA,CAAmB,IAAA,CAAK,IAAI,CAAA;AACpD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AACxC,IAAA,IAAA,CAAK,GAAA,GAAM,IAAI,SAAA,CAAU,IAAA,CAAK,IAAI,CAAA;AAClC,IAAA,IAAA,CAAK,IAAA,GAAO,IAAI,UAAA,CAAW,IAAA,CAAK,IAAI,CAAA;AACpC,IAAA,IAAA,CAAK,YAAA,GAAe,IAAI,kBAAA,CAAmB,IAAA,CAAK,MAAM,CAAA;AAItD,IAAA,IAAA,CAAK,SAAS,IAAI,wBAAA,CAAyB,IAAA,CAAK,MAAA,EAAQ,KAAK,IAAI,CAAA;AACjE,IAAA,IAAA,CAAK,IAAA,GAAO,IAAI,sBAAA,CAAuB,IAAA,CAAK,MAAM,CAAA;AAClD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,wBAAA,CAAyB,IAAA,CAAK,MAAM,CAAA;AACtD,IAAA,IAAA,CAAK,QAAA,GAAW,IAAI,0BAAA,CAA2B,IAAA,CAAK,MAAM,CAAA;AAC1D,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,IAAI,CAAA;AAC9C,IAAA,IAAA,CAAK,iBAAA,GAAoB,uBAAA,CAAwB,QAAA,CAAS,IAAA,CAAK,IAAI,CAAA;AACnE,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB,IAAA,CAAK,IAAI,CAAA;AAChD,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB,IAAA,CAAK,IAAI,CAAA;AAChD,IAAA,IAAA,CAAK,GAAA,GAAM,IAAI,SAAA,CAAU,IAAA,CAAK,IAAI,CAAA;AAClC,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB,IAAA,CAAK,IAAI,CAAA;AAOhD,IAAA,MAAM,WAAW,gBAAA,CAAiB;AAAA,MAChC,SAAS,IAAA,CAAK,OAAA;AAAA,MACd,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO;AAAA,KACjB,CAAA;AACD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,QAAQ,CAAA;AACvC,IAAA,IAAA,CAAK,WAAA,GAAc,IAAI,gBAAA,CAAiB,QAAQ,CAAA;AAChD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AACxC,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,IAAI,CAAA;AAC9C,IAAA,IAAA,CAAK,QAAA,GAAW,IAAI,cAAA,CAAe,IAAA,CAAK,IAAI,CAAA;AAC5C,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AACxC,IAAA,IAAA,CAAK,QAAA,GAAW,IAAI,cAAA,CAAe,IAAA,CAAK,IAAI,CAAA;AAC5C,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,IAAI,CAAA;AAAA,EAChD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,OAAO,QAAQ,GAAA,EAA4D;AACzE,IAAA,MAAM,OAAA,GAAU,IAAI,eAAe,CAAA;AACnC,IAAA,IAAI,CAAC,OAAA,EAAS;AACZ,MAAA,MAAM,IAAI,gBAAA,CAAiB,wDAAA,EAA0D,GAAG,CAAA;AAAA,IAC1F;AACA,IAAA,MAAM,UAAA,GAAa,IAAI,iBAAiB,CAAA;AACxC,IAAA,MAAM,UAAU,UAAA,GAAa,MAAA,CAAO,QAAA,CAAS,UAAA,EAAY,EAAE,CAAA,GAAI,MAAA;AAC/D,IAAA,OAAO,IAAI,kBAAA,CAAkB;AAAA,MAC3B,gBAAA,EAAkB,OAAA;AAAA,MAClB,MAAA,EAAQ,IAAI,mBAAmB,CAAA;AAAA,MAC/B,SAAA,EAAW,IAAI,WAAW,CAAA;AAAA,MAC1B,aAAA,EAAe,GAAA,CAAI,gBAAgB,CAAA,KAAM,MAAA;AAAA,MACzC,OAAA,EAAS,MAAA,CAAO,QAAA,CAAS,OAAO,IAAI,OAAA,GAAU;AAAA,KAC/C,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,aAAa,iBAAiB,MAAA,EAAmE;AAC/F,IAAA,MAAM,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAG9C,IAAA,MAAM,SAAA,GAAY,IAAI,wBAAA,CAAyB;AAAA,MAC7C,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,iBAAiB,MAAA,CAAO,eAAA;AAAA,MACxB,eAAe,MAAA,CAAO;AAAA,KACvB,CAAA;AAED,IAAA,MAAM,SAAA,GAAY,MAAM,SAAA,CAAU,kBAAA,EAAmB;AAErD,IAAA,IAAI,CAAC,SAAA,IAAa,CAAC,SAAA,CAAU,kBAAkB,WAAA,EAAa;AAC1D,MAAA,MAAM,IAAI,gBAAA;AAAA,QACR,0EAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAEA,IAAA,MAAM,YAAA,GAAe,UAAU,gBAAA,CAAiB,WAAA;AAChD,IAAA,iBAAA,CAAkB,cAAc,aAAa,CAAA;AAG7C,IAAA,MAAM,IAAA,GAAO,IAAI,mBAAA,CAAoB;AAAA,MACnC,QAAA,EAAU,EAAE,aAAA;AAAc,KAC3B,CAAA;AACD,IAAA,MAAM,OAAA,GAAU,MAAM,IAAA,CAAK,sBAAA;AAAA,MACzB,YAAA;AAAA,MACA,MAAA,CAAO,KAAA;AAAA,MACP,MAAA,CAAO,OAAA;AAAA,MACP,MAAA,CAAO,SAAA;AAAA,MACP,MAAA,CAAO,MAAA;AAAA,MACP,MAAA,CAAO;AAAA,KACT;AAKA,IAAA,MAAM,MAAA,GAAS,IAAI,kBAAA,CAAkB;AAAA,MACnC,gBAAA,EAAkB,YAAA;AAAA,MAClB,WAAW,OAAA,CAAQ,KAAA;AAAA,MACnB;AAAA,KACD,CAAA;AAED,IAAA,OAAO,EAAE,MAAA,EAAQ,SAAA,EAAW,OAAA,EAAQ;AAAA,EACtC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,UAAA,GAAqB;AACnB,IAAA,OAAO,IAAA,CAAK,OAAA;AAAA,EACd;AAAA;AAAA,EAGA,eAAA,GAA2B;AACzB,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,YAAA,EAAa,KAAM,MAAA;AAAA,EACtC;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,aAAA,GAA+E;AAI7E,IAAA,OAAO;AAAA,MACL,OAAA,EAAS,IAAA;AAAA,MACT,WAAW,IAAA,CAAK;AAAA,KAClB;AAAA,EACF;AAAA;AAAA;AAAA,EAKA,MAAM,SAAA,GAA2E;AAC/E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA,EAGA,MAAM,kBAAA,GAAoD;AACxD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA;AAAA,EAKA,MAAM,cAAc,OAAA,EAAwE;AAC1F,IAAA,MAAM,SAAA,GAAY,0BAAA,CAA2B,KAAA,CAAM,OAAO,CAAA;AAC1D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,WAAA,EAAa,SAAS,CAAA;AAAA,EAC9C;AAAA;AAAA,EAGA,MAAM,cAAA,CAAe,KAAA,EAAe,SAAA,EAAyC;AAC3E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,UAAA,EAAa,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAE,CAAA;AAAA,EAC1F;AAAA;AAAA,EAGA,MAAM,UAAA,CAAW,KAAA,EAAe,SAAA,EAA4C;AAC1E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,UAAA,EAAa,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,SAAS,CAAC,CAAA,QAAA,CAAU,CAAA;AAAA,EAClG;AAAA;AAAA;AAAA,EAKA,MAAM,SAAS,OAAA,EAAqD;AAClE,IAAA,MAAM,SAAA,GAAY,qBAAA,CAAsB,KAAA,CAAM,OAAO,CAAA;AACrD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,WAAA,EAAa,SAAS,CAAA;AAAA,EAC9C;AAAA;AAAA,EAGA,MAAM,cAAA,CAAe,KAAA,EAAe,IAAA,EAAoC;AACtE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,cAAA,EAAiB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,IAAI,CAAC,CAAA,CAAE,CAAA;AAAA,EACzF;AAAA;AAAA,EAGA,MAAM,qBAAA,CAAsB,KAAA,EAAe,IAAA,EAA4B;AACrE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,cAAA,EAAiB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,IAAI,CAAC,CAAA,QAAA,CAAU,CAAA;AAAA,EACjG;AAAA;AAAA;AAAA,EAKA,MAAM,YAAY,OAAA,EAAoE;AACpF,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,SAAA,EAAW,SAAS,CAAA;AAAA,EAC5C;AAAA;AAAA,EAGA,MAAM,UAAU,OAAA,EAAyC;AACvD,IAAA,MAAM,SAAA,GAAY,sBAAA,CAAuB,KAAA,CAAM,OAAO,CAAA;AACtD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,cAAA,EAAgB,SAAS,CAAA;AAAA,EACjD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,YAAA,CAAa,KAAA,EAAe,OAAA,EAAqC;AACrE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,QAAA,EAAW,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,OAAO,CAAC,CAAA,CAAE,CAAA;AAAA,EACtF;AAAA;AAAA,EAGA,MAAM,UAAU,OAAA,EAAkD;AAChE,IAAA,MAAM,SAAA,GAAY,sBAAA,CAAuB,KAAA,CAAM,OAAO,CAAA;AACtD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,cAAA,EAAgB,SAAS,CAAA;AAAA,EACjD;AAAA;AAAA,EAGA,MAAM,WAAW,OAAA,EAAoD;AACnE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,eAAA,EAAiB,SAAS,CAAA;AAAA,EAClD;AAAA;AAAA,EAGA,MAAM,aAAa,OAAA,EAAoD;AACrE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,iBAAA,EAAmB,SAAS,CAAA;AAAA,EACpD;AAAA;AAAA,EAGA,MAAM,gBAAgB,OAAA,EAAoD;AACxE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,2CAAA,EAA6C,GAAG,CAAA;AAAA,IAC7E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,kBAAA,EAAoB,SAAS,CAAA;AAAA,EACrD;AAAA;AAAA,EAGA,MAAM,kBAAkB,OAAA,EAAoD;AAC1E,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,6CAAA,EAA+C,GAAG,CAAA;AAAA,IAC/E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,oBAAA,EAAsB,SAAS,CAAA;AAAA,EACvD;AAAA;AAAA,EAGA,MAAM,iBAAiB,OAAA,EAAoD;AACzE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,4CAAA,EAA8C,GAAG,CAAA;AAAA,IAC9E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,2BAAA,EAA6B,SAAS,CAAA;AAAA,EAC9D;AAAA;AAAA,EAGA,MAAM,kBAAkB,OAAA,EAAoD;AAC1E,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,6CAAA,EAA+C,GAAG,CAAA;AAAA,IAC/E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,SAAS,CAAA;AAAA,EAC/D;AAAA;AAAA,EAGA,MAAM,gBAAgB,OAAA,EAAoD;AACxE,IAAA,MAAM,SAAA,GAAY,wBAAA,CAAyB,KAAA,CAAM,OAAO,CAAA;AACxD,IAAA,IAAI,CAAC,UAAU,SAAA,EAAW;AACxB,MAAA,MAAM,IAAI,gBAAA,CAAiB,2CAAA,EAA6C,GAAG,CAAA;AAAA,IAC7E;AACA,IAAA,IAAI,CAAC,UAAU,MAAA,EAAQ;AACrB,MAAA,MAAM,IAAI,gBAAA,CAAiB,wCAAA,EAA0C,GAAG,CAAA;AAAA,IAC1E;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,cAAA,EAAgB,SAAS,CAAA;AAAA,EACjD;AAAA;AAAA;AAAA,EAKA,MAAM,kBAAA,GAAmC;AACvC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,eAAe,CAAA;AAAA,EACtC;AAAA;AAAA,EAGA,MAAM,qBAAqB,KAAA,EAAgC;AACzD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EAChE;AAAA;AAAA,EAGA,MAAM,eAAA,GAAgC;AACpC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAeA,MAAM,aAAA,CAAc,KAAA,EAAe,OAAA,EAAiB,OAAA,EAA+B;AACjF,IAAA,IAAI,OAAA,CAAQ,MAAA,GAAS,IAAA,GAAO,IAAA,EAAM;AAChC,MAAA,MAAM,IAAI,gBAAA,CAAiB,6BAAA,EAA+B,GAAG,CAAA;AAAA,IAC/D;AACA,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,UAAA,EAAa,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,OAAO,CAAC,CAAA,CAAA,EAAI;AAAA,MACvF;AAAA,KACD,CAAA;AAAA,EACH;AAAA;AAAA;AAAA,EAKA,MAAM,gBAAA,GAKH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,CAAA;AAAA,EACxC;AAAA;AAAA,EAGA,MAAM,gBAAA,GAcH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,CAAA;AAAA,EACxC;AAAA;AAAA;AAAA,EAKA,MAAM,UAAA,GAA8B;AAClC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,UAAU,CAAA;AAAA,EACjC;AAAA;AAAA,EAGA,MAAM,aAAA,GAMH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,CAAA;AAAA,EAC1C;AAAA;AAAA,EAGA,MAAM,uBAAA,GAYH;AACD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,8BAA8B,CAAA;AAAA,EACrD;AAAA;AAAA;AAAA,EAKA,MAAM,gBAAgB,OAAA,EAK4B;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,wBAAA,EAA0B,OAAO,CAAA;AAAA,EACzD;AACF,CAAA;AAKO,IAAM,gBAAA,GAAN,cAA+B,KAAA,CAAM;AAAA,EAC1C,WAAA,CACE,OAAA,EACO,UAAA,EACA,OAAA,EACP;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHN,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGP,IAAA,IAAA,CAAK,IAAA,GAAO,kBAAA;AAAA,EACd;AAAA,EALS,UAAA;AAAA,EACA,OAAA;AAKX,CAAA;AAKA,SAAS,iBAAA,CAAkB,GAAA,EAAa,aAAA,GAAgB,KAAA,EAAe;AACrE,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,IAAI,GAAA,CAAI,GAAG,CAAA;AAC1B,IAAA,IAAI,CAAC,CAAC,OAAA,EAAS,QAAQ,EAAE,QAAA,CAAS,MAAA,CAAO,QAAQ,CAAA,EAAG;AAClD,MAAA,MAAM,IAAI,gBAAA,CAAiB,CAAA,kBAAA,EAAqB,MAAA,CAAO,QAAQ,IAAI,GAAG,CAAA;AAAA,IACxE;AACA,IAAA,IAAI,CAAC,aAAA,IAAiB,MAAA,CAAO,QAAA,KAAa,QAAA,EAAU;AAClD,MAAA,MAAM,IAAI,gBAAA;AAAA,QACR,yFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,MAAA,CAAO,MAAA;AAAA,EAChB,SAAS,KAAA,EAAO;AACd,IAAA,IAAI,KAAA,YAAiB,kBAAkB,MAAM,KAAA;AAC7C,IAAA,MAAM,IAAI,gBAAA,CAAiB,CAAA,aAAA,EAAgB,GAAG,IAAI,GAAG,CAAA;AAAA,EACvD;AACF;;;ACxqBO,IAAM,gBAAN,MAAoB;AAAA,EACzB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQ7B,MAAM,aAAa,OAAA,EAA6D;AAC9E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gBAAA,EAAkB,OAAO,CAAA;AAAA,EACjD;AAAA;AAAA,EAGA,MAAM,eAAe,MAAA,EAAgE;AACnF,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,kBAAkB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EACrE;AAAA;AAAA,EAGA,MAAM,WAAA,GAAyC;AAC7C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,gBAAgB,CAAA;AAAA,EACvC;AAAA;AAAA,EAGA,MAAM,gBAAA,GAA8C;AAClD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,yBAAyB,CAAA;AAAA,EAChD;AAAA;AAAA,EAGA,MAAM,QAAQ,MAAA,EAAmC;AAC/C,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA,EAGA,MAAM,WACJ,MAAA,EAOC;AACD,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,eAAA,EAAkB,gBAAgB,MAAM,CAAC,CAAA,OAAA,CAAA,EAAW,EAAE,CAAA;AAAA,EAC9E;AAAA;AAAA,EAGA,MAAM,gBAAA,CACJ,KAAA,EACA,MAAA,EAC+D;AAC/D,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,gBAAA,EAAmB,gBAAgB,KAAK,CAAC,IAAI,MAAM,CAAA;AAAA,EAC1E;AAAA;AAAA,EAGA,MAAM,iBAAiB,KAAA,EAAuC;AAC5D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA,EAGA,MAAM,aAAa,OAAA,EAA+C;AAChE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,gBAAA,EAAkB,OAAO,CAAA;AAAA,EACjD;AAAA;AAAA,EAGA,MAAM,QAAA,GAA0C;AAC9C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,gBAAgB,CAAA;AAAA,EACvC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,cAAA,CAAe,MAAA,EAAgB,KAAA,EAAgD;AACnF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,iBAAA,EAAoB,eAAA,CAAgB,MAAM,CAAC,CAAA,IAAA,CAAA,EAAQ,EAAE,KAAA,EAAO,CAAA;AAAA,EACpF;AACF,CAAA;;;AChFO,IAAM,gBAAN,MAAoB;AAAA,EACzB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,SAAS,OAAA,EAAyD;AACtE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,UAAA,EAAY,OAAO,CAAA;AAAA,EAC3C;AAAA;AAAA,EAGA,MAAM,kBAAkB,MAAA,EAAqD;AAC3E,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EAClE;AAAA;AAAA,EAGA,MAAM,QAAQ,MAAA,EAAqC;AACjD,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,YAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,CAAE,CAAA;AAAA,EAC5D;AAAA;AAAA,EAGA,MAAM,KAAK,KAAA,EAA6C;AACtD,IAAA,MAAM,SAAS,KAAA,GAAQ,CAAA,OAAA,EAAU,kBAAA,CAAmB,KAAK,CAAC,CAAA,CAAA,GAAK,EAAA;AAC/D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,QAAA,EAAW,MAAM,CAAA,CAAE,CAAA;AAAA,EAC1C;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,yBAAA,CACJ,MAAA,EACA,MAAA,EACoC;AACpC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,aAAA,CAAA,EAAiB,EAAE,MAAA,EAAQ,CAAA;AAAA,EACtF;AAAA;AAAA,EAGA,MAAM,eAAA,CAAgB,MAAA,EAAgB,KAAA,EAA4C;AAChF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,OAAA,CAAA,EAAW,EAAE,KAAA,EAAO,CAAA;AAAA,EAC/E;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,MAAA,EACA,OAAA,EACqD;AACrD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,IAAA,CAAA,EAAQ,EAAE,OAAA,EAAS,CAAA;AAAA,EAC9E;AAAA;AAAA,EAGA,MAAM,aAAa,MAAA,EAAgE;AACjF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,cAAA,CAAA,EAAkB,EAAE,CAAA;AAAA,EAC/E;AAAA;AAAA,EAGA,MAAM,cAAc,MAAA,EAAgE;AAClF,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,eAAA,CAAA,EAAmB,EAAE,CAAA;AAAA,EAChF;AAAA;AAAA,EAGA,MAAM,KAAA,CAAM,MAAA,EAAgB,KAAA,EAAqC;AAC/D,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,MAAA,CAAA,EAAU,EAAE,KAAA,EAAO,KAAA,IAAS,CAAA,EAAG,CAAA;AAAA,EAC1F;AAAA;AAAA,EAGA,MAAM,QAAA,CACJ,MAAA,EACA,OAAA,EACgD;AAChD,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,aAAa,OAAO,CAAA;AAAA,EAC/E;AAAA;AAAA,EAGA,MAAM,gBAAgB,MAAA,EAA+C;AACnE,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,iBAAA,CAAA,EAAqB,EAAE,CAAA;AAAA,EAClF;AAAA;AAAA,EAGA,MAAM,eAAe,MAAA,EAA+C;AAClE,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,gBAAA,CAAA,EAAoB,EAAE,CAAA;AAAA,EACjF;AAAA;AAAA,EAGA,MAAM,OAAA,CAAQ,MAAA,EAAgB,MAAA,EAA+C;AAC3E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,SAAA,EAAY,eAAA,CAAgB,MAAM,CAAC,CAAA,QAAA,CAAA,EAAY,EAAE,MAAA,EAAQ,CAAA;AAAA,EACjF;AAAA;AAAA,EAGA,MAAM,UAAU,MAAA,EAA+C;AAC7D,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,SAAA,EAAY,gBAAgB,MAAM,CAAC,CAAA,UAAA,CAAA,EAAc,EAAE,CAAA;AAAA,EAC3E;AACF,CAAA;;;AC1FO,IAAM,YAAN,MAAgB;AAAA,EACrB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,OAAA,CAAQ,IAAA,EAAc,IAAA,EAAe,MAAA,EAA+C;AACxF,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,CAAgB,EAAE,MAAM,CAAA;AAC3C,IAAA,IAAI,IAAA,EAAM,MAAA,CAAO,GAAA,CAAI,MAAA,EAAQ,IAAI,CAAA;AACjC,IAAA,IAAI,WAAW,MAAA,EAAW,MAAA,CAAO,IAAI,QAAA,EAAU,MAAA,CAAO,MAAM,CAAC,CAAA;AAC7D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,gBAAgB,MAAA,CAAO,QAAA,EAAU,CAAA,CAAE,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,aAAa,OAAA,EAA4D;AAC7E,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA,CAAK,oBAAA,EAAsB,EAAE,SAAS,CAAA;AAAA,EACzD;AAAA;AAAA,EAGA,MAAM,SAAA,GAA0C;AAC9C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,YAAY,CAAA;AAAA,EACnC;AAAA;AAAA,EAGA,MAAM,QAAQ,QAAA,EAAmE;AAC/E,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EAChE;AAAA;AAAA,EAGA,MAAM,WAAW,OAAA,EAAuE;AACtF,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,YAAA,EAAc,OAAO,CAAA;AAAA,EAC7C;AAAA;AAAA,EAGA,MAAM,WAAW,QAAA,EAAiD;AAChE,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA,CAAO,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AAAA,EACnE;AAAA;AAAA,EAGA,MAAM,SAAA,CAAU,QAAA,EAAkB,MAAA,EAA2C;AAC3E,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,WAAA,EAAc,gBAAgB,QAAQ,CAAC,YAAY,MAAM,CAAA;AAAA,EACjF;AAAA;AAAA,EAGA,MAAM,YAAA,CACJ,QAAA,EACA,QAAA,EACA,OAAA,EACwB;AACxB,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,SAAA,EAAY,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAA;AAAA,MAC5E;AAAA,KACF;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,YAAA,CAAa,QAAA,EAAkB,QAAA,EAAiD;AACpF,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,SAAA,EAAY,eAAA,CAAgB,QAAQ,CAAC,CAAA;AAAA,KAC9E;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,kBAAA,CACJ,QAAA,EACA,SAAA,EACgC;AAChC,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA,CAAK,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,YAAA,CAAA,EAAgB;AAAA,MAC3E;AAAA,KACD,CAAA;AAAA,EACH;AAAA;AAAA,EAGA,MAAM,cAAc,QAAA,EAAkD;AACpE,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,YAAA,CAAc,CAAA;AAAA,EAC5E;AAAA;AAAA,EAGA,MAAM,YAAY,QAAA,EAA2C;AAC3D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,cAAc,eAAA,CAAgB,QAAQ,CAAC,CAAA,UAAA,CAAY,CAAA;AAAA,EAC1E;AAAA;AAAA,EAGA,MAAM,UAAA,GAAoE;AACxE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,kBAAA,EAAoB,EAAE,CAAA;AAAA,EAC9C;AACF,CAAA;;;ACtGO,IAAM,eAAN,MAAmB;AAAA,EACxB,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAM7B,MAAM,UAAA,GAA8C;AAClD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,iBAAiB,CAAA;AAAA,EACxC;AACF,CAAA;;;AC2CO,IAAM,qBAAN,MAAyB;AAAA,EACb,IAAA;AAAA;AAAA,EAGD,OAAA;AAAA;AAAA,EAEA,OAAA;AAAA;AAAA,EAEA,GAAA;AAAA;AAAA,EAEA,MAAA;AAAA,EAEhB,YAAY,MAAA,EAAkC;AAC5C,IAAA,MAAM,OAAA,GAAU,MAAA,CAAO,OAAA,CAAQ,OAAA,CAAQ,QAAQ,EAAE,CAAA;AAEjD,IAAA,IAAA,CAAK,OAAO,gBAAA,CAAiB;AAAA,MAC3B,OAAA,EAAS,GAAG,OAAO,CAAA,OAAA,CAAA;AAAA,MACnB,QAAQ,MAAA,CAAO,MAAA;AAAA,MACf,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO;AAAA,KACjB,CAAA;AAED,IAAA,IAAA,CAAK,OAAA,GAAU,IAAI,aAAA,CAAc,IAAA,CAAK,IAAI,CAAA;AAC1C,IAAA,IAAA,CAAK,OAAA,GAAU,IAAI,aAAA,CAAc,IAAA,CAAK,IAAI,CAAA;AAC1C,IAAA,IAAA,CAAK,GAAA,GAAM,IAAI,SAAA,CAAU,IAAA,CAAK,IAAI,CAAA;AAClC,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AAAA,EAC1C;AAAA;AAAA;AAAA,EAKA,MAAM,SAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAA,GAA4C;AAChD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,SAAS,CAAA;AAAA,EAChC;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,YAAA,GAAkD;AACtD,IAAA,IAAI;AACF,MAAA,OAAO,MAAM,IAAA,CAAK,IAAA,CAAK,GAAA,CAA8B,QAAQ,CAAA;AAAA,IAC/D,SAAS,GAAA,EAAK;AAMZ,MAAA,IAAI,GAAA,YAAe,YAAA,IAAgB,GAAA,CAAI,UAAA,KAAe,GAAA,EAAK;AACzD,QAAA,MAAM,IAAI,GAAA,CAAI,OAAA;AAGd,QAAA,MAAM,IAAA,GAAQ,GAAG,OAAA,IAAW,CAAA;AAG5B,QAAA,IAAI,IAAA,EAAM,WAAW,WAAA,EAAa;AAChC,UAAA,OAAO,IAAA;AAAA,QACT;AAAA,MACF;AACA,MAAA,MAAM,GAAA;AAAA,IACR;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,WAAA,GAAgD;AACpD,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,OAAO,CAAA;AAAA,EAC9B;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,WAAW,OAAA,EAAoD;AACnE,IAAA,MAAM,MAAA,GAAS,UAAU,eAAA,GAAkB,EAAA;AAC3C,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,QAAA,EAAW,MAAM,CAAA,CAAE,CAAA;AAAA,EAC1C;AAAA;AAAA,EAGA,MAAM,iBAAA,GAA4D;AAChE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,kBAAkB,CAAA;AAAA,EACzC;AACF,CAAA;;;ACrGO,IAAM,iBAAN,MAAqB;AAAA,EAC1B,WAAA,CACmB,MACA,QAAA,EACjB;AAFiB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,QAAA,GAAA,QAAA;AAAA,EAChB;AAAA,EAFgB,IAAA;AAAA,EACA,QAAA;AAAA;AAAA;AAAA;AAAA,EAMnB,MAAM,MAAA,CAAO,UAAA,EAAoB,QAAA,EAA8D;AAC7F,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MACxE;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAA,CACJ,UAAA,EACA,KAAA,EACA,OAAA,EACyB;AACzB,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,SAAS,MAAA,CAAO,IAAA,CAAK,KAAK,CAAA,CAAE,SAAS,CAAA,EAAG;AAC1C,MAAA,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,IAAA,CAAK,SAAA,CAAU,KAAK,CAAC,CAAA;AAAA,IAC3C;AACA,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC3E,IAAA,IAAI,OAAA,EAAS,SAAS,MAAA,EAAW,MAAA,CAAO,IAAI,MAAA,EAAQ,MAAA,CAAO,OAAA,CAAQ,IAAI,CAAC,CAAA;AACxE,IAAA,IAAI,SAAS,IAAA,EAAM,MAAA,CAAO,GAAA,CAAI,MAAA,EAAQ,QAAQ,IAAI,CAAA;AAClD,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,gBAAA,EAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,EAAG,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,KAAK,EAAE,CAAA;AAAA,KAC/F;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CACJ,UAAA,EACA,UAAA,EACA,OAAA,EAC2B;AAC3B,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,gBAAA,EAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MACvG;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,UAAA,EAAoB,UAAA,EAA+C;AAC9E,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,CAAA,gBAAA,EAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA;AAAA,KACzG;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,eAAA,GAAsD;AAC1D,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,YAAA,CAAc,CAAA;AAAA,EAC9E;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,iBAAiB,IAAA,EAAiE;AACtF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,gBAAA,EAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,YAAA,CAAA,EAAgB,EAAE,IAAA,EAAM,CAAA;AAAA,EACzF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,eAAe,IAAA,EAA6C;AAChE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,aAAA,EAAgB,eAAA,CAAgB,IAAI,CAAC,CAAA;AAAA,KAChF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,YAAA,GAA2C;AAC/C,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,WAAA,CAAa,CAAA;AAAA,EAC7E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,iBAAiB,UAAA,EAAoD;AACzE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,MAAA;AAAA,KAC1E;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,oBAAoB,OAAA,EAIY;AACpC,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,cAAc,MAAA,EAAW,MAAA,CAAO,IAAI,WAAA,EAAa,MAAA,CAAO,OAAA,CAAQ,SAAS,CAAC,CAAA;AACvF,IAAA,IAAI,OAAA,EAAS,YAAY,MAAA,EAAW,MAAA,CAAO,IAAI,SAAA,EAAW,MAAA,CAAO,OAAA,CAAQ,OAAO,CAAC,CAAA;AACjF,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC3E,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,gBAAA,EAAmB,gBAAgB,KAAK,CAAC,qBAAqB,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,CAAA;AAAA,KAClF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAA,GAA6C;AACjD,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,mBAAmB,eAAA,CAAgB,KAAK,CAAC,CAAA,MAAA,CAAQ,CAAA;AAAA,EACxE;AACF,CAAA;;;AC1LO,IAAM,gBAAN,MAAoB;AAAA,EACzB,WAAA,CACmB,MACA,QAAA,EACjB;AAFiB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,QAAA,GAAA,QAAA;AAAA,EAChB;AAAA,EAFgB,IAAA;AAAA,EACA,QAAA;AAAA;AAAA;AAAA;AAAA,EAMnB,MAAM,MAAA,CACJ,IAAA,EACA,QAAA,EACA,UACA,IAAA,EAC2B;AAC3B,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,MAAA,CAAO,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,OAAA,CAAA,EAAW,IAAA,EAAM,QAAA,EAAU,QAAA,EAAU,MAAA,EAAW,IAAI,CAAA;AAAA,EAC5H;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,QAAA,CAAS,GAAA,EAAa,IAAA,EAA6C;AACvE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,SAAA,CAAU,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EACpH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,gBAAA,CACJ,GAAA,EACA,IAAA,EACyE;AACzE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,iBAAA;AAAA,MACf,wBAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA;AAAA,MAC/E;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CAAY,GAAA,EAAa,IAAA,EAAmD;AAChF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EAC9G;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,GAAA,EAAa,IAAA,EAAuD;AAC/E,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,MAAA,CAAO,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EACxG;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,SAAA,CAAU,UAAA,EAAkD,IAAA,EAA2E;AAC3I,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,UAAA,EAAY,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,UAAA,CAAW,KAAK,CAAC,CAAA;AACjF,IAAA,IAAI,UAAA,EAAY,WAAW,MAAA,EAAW,MAAA,CAAO,IAAI,QAAA,EAAU,MAAA,CAAO,UAAA,CAAW,MAAM,CAAC,CAAA;AACpF,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,qBAAA,EAAwB,gBAAgB,KAAK,CAAC,CAAA,MAAA,EAAS,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,CAAA,CAAA,GAAK,EAAE,IAAI,IAAI,CAAA;AAAA,EACxG;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAS,IAAA,EAAmD;AAChE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,qBAAA,EAAwB,gBAAgB,KAAK,CAAC,UAAU,IAAI,CAAA;AAAA,EACnF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,GAAA,EAAa,IAAA,EAAmE;AAC3F,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,qBAAA,EAAwB,eAAA,CAAgB,KAAK,CAAC,CAAA,QAAA,EAAW,eAAA,CAAgB,GAAG,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EAC5G;AACF,CAAA;;;ACjFO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,WAAA,CACmB,MACA,QAAA,EACjB;AAFiB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,QAAA,GAAA,QAAA;AAAA,EAChB;AAAA,EAFgB,IAAA;AAAA,EACA,QAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAanB,MAAM,SAAS,IAAA,EAAuC;AACpD,IAAA,MAAM,EAAE,mBAAA,EAAqB,UAAA,EAAY,MAAK,GAAI,MAAM,OAAO,QAAQ,CAAA;AACvE,IAAA,MAAM,EAAE,SAAA,EAAW,UAAA,EAAW,GAAI,oBAAoB,SAAS,CAAA;AAC/D,IAAA,MAAM,IAAA,GAAO,WAAW,QAAQ,CAAA,CAAE,OAAO,IAAA,EAAM,MAAM,CAAA,CAAE,MAAA,CAAO,KAAK,CAAA;AACnE,IAAA,MAAM,SAAA,GAAA,iBAAY,IAAI,IAAA,EAAK,EAAE,WAAA,EAAY;AACzC,IAAA,MAAM,SAAA,GAAY,IAAA,CAAK,IAAA,EAAM,MAAA,CAAO,KAAK,CAAA,EAAG,IAAI,CAAA,CAAA,EAAI,SAAS,IAAI,MAAM,CAAA,EAAG,UAAU,CAAA,CAAE,SAAS,QAAQ,CAAA;AACvG,IAAA,MAAM,YAAA,GAAe,SAAA,CAAU,MAAA,CAAO,EAAE,MAAA,EAAQ,KAAA,EAAO,IAAA,EAAM,MAAA,EAAQ,CAAA,CAAE,QAAA,CAAS,QAAQ,CAAA;AACxF,IAAA,OAAO,EAAE,IAAA,EAAM,IAAA,EAAM,SAAA,EAAW,SAAA,EAAW,WAAW,YAAA,EAAa;AAAA,EACrE;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,MAAA,CAAO,OAAA,EAAoC,IAAA,EAA2D;AAC1G,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,aAAa,OAAA,CAAQ,UAAA,IAAe,MAAM,IAAA,CAAK,QAAA,CAAS,QAAQ,IAAI,CAAA;AAC1E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,EAAE,GAAG,OAAA,EAAS,UAAA,IAAc,IAAI,CAAA;AAAA,EAC5G;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,UAAA,EAAoB,OAAA,EAAmB,IAAA,EAAqD;AACvG,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,OAAA,CAAA;AAAA,MAC/E,WAAW,EAAC;AAAA,MACZ;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CAAK,OAAA,EAAkC,IAAA,EAAqD;AAChG,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,aAAa,OAAA,CAAQ,UAAA,IAAe,MAAM,IAAA,CAAK,QAAA,CAAS,QAAQ,IAAI,CAAA;AAC1E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,KAAA,CAAA,EAAS,EAAE,GAAG,OAAA,EAAS,UAAA,IAAc,IAAI,CAAA;AAAA,EACjH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,KAAK,IAAA,EAAmF;AAC5F,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,IAAI,IAAI,CAAA;AAAA,EAC/E;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,GAAA,CAAI,UAAA,EAAoB,IAAA,EAAmD;AAC/E,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MAC/E;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAA,CAAQ,UAAA,EAAoB,IAAA,EAAmD;AACnF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,KAAA,CAAA;AAAA,MAC/E;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,UAAA,EAAoB,OAAA,EAA6C,IAAA,EAAmD;AAC/H,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MAC/E,OAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,MAAA,CAAO,UAAA,EAAoB,IAAA,EAAuD;AACtF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,CAAA;AAAA,MAC/E;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAA,CAAQ,UAAA,EAAoB,OAAA,EAAkC,IAAA,EAA6E;AAC/I,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC3E,IAAA,IAAI,SAAS,SAAA,EAAW,MAAA,CAAO,GAAA,CAAI,WAAA,EAAa,QAAQ,SAAS,CAAA;AACjE,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,QAAQ,KAAK,CAAA;AACrD,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,CAAA,EAAI,eAAA,CAAgB,UAAU,CAAC,CAAA,KAAA,EAAQ,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,KAAK,EAAE,CAAA,CAAA;AAAA,MACzG;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAS,IAAA,EAAsC;AACnD,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,UAAU,IAAI,CAAA;AAAA,EACrF;AACF,CAAA;;;AC/IO,IAAM,kBAAN,MAAsB;AAAA,EAC3B,WAAA,CACmB,MACA,QAAA,EACjB;AAFiB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AACA,IAAA,IAAA,CAAA,QAAA,GAAA,QAAA;AAAA,EAChB;AAAA,EAFgB,IAAA;AAAA,EACA,QAAA;AAAA;AAAA;AAAA;AAAA,EAMnB,MAAM,aAAA,CAAc,MAAA,EAA2B,IAAA,EAA4E;AACzH,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,IAAA,CAAK,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,CAAA,SAAA,CAAA,EAAa,MAAA,EAAQ,IAAI,CAAA;AAAA,EACjG;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,aAAA,CAAc,SAAA,EAAmB,IAAA,EAAuD;AAC5F,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,MAAA,CAAO,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EACzH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAA,CAAW,SAAA,EAAmB,IAAA,EAAkG;AACpI,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,SAAS,CAAC,CAAA,CAAA,EAAI,IAAI,CAAA;AAAA,EACtH;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,aAAa,IAAA,EAAgH;AACjI,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,aAAa,IAAI,CAAA;AAAA,EACxF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,OAAA,CACJ,OAAA,EACA,OAAA,EACA,UACA,IAAA,EAC4B;AAC5B,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,QAAA,CAAA;AAAA,MACrF,EAAE,IAAA,EAAM,OAAA,EAAS,QAAA,EAAS;AAAA,MAC1B;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,UAAA,CACJ,OAAA,EACA,OAAA,EACA,IAAA,EACuE;AACvE,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,MAAM,MAAA,GAAS,IAAI,eAAA,EAAgB;AACnC,IAAA,IAAI,OAAA,EAAS,UAAU,MAAA,EAAW,MAAA,CAAO,IAAI,OAAA,EAAS,MAAA,CAAO,OAAA,CAAQ,KAAK,CAAC,CAAA;AAC3E,IAAA,IAAI,SAAS,MAAA,EAAQ,MAAA,CAAO,GAAA,CAAI,QAAA,EAAU,QAAQ,MAAM,CAAA;AACxD,IAAA,IAAI,SAAS,KAAA,EAAO,MAAA,CAAO,GAAA,CAAI,OAAA,EAAS,QAAQ,KAAK,CAAA;AACrD,IAAA,MAAM,EAAA,GAAK,OAAO,QAAA,EAAS;AAC3B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,QAAA,EAAW,EAAA,GAAK,CAAA,CAAA,EAAI,EAAE,KAAK,EAAE,CAAA,CAAA;AAAA,MAClH;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,WAAA,CAAY,OAAA,EAAiB,MAAA,EAA4B,IAAA,EAAuD;AACpH,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,SAAA,CAAA;AAAA,MACrF,MAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,cAAA,CAAe,OAAA,EAAiB,QAAA,EAAkB,IAAA,EAAuD;AAC7G,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,MAAA;AAAA,MACf,CAAA,uBAAA,EAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAA;AAAA,MAC3H;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,WAAA,CAAY,OAAA,EAAiB,IAAA,EAAmD;AACpF,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,0BAA0B,eAAA,CAAgB,KAAK,CAAC,CAAA,UAAA,EAAa,eAAA,CAAgB,OAAO,CAAC,CAAA,SAAA,CAAA;AAAA,MACrF;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,SAAS,IAAA,EAAsC;AACnD,IAAA,MAAM,KAAA,GAAQ,KAAK,QAAA,EAAS;AAC5B,IAAA,OAAO,IAAA,CAAK,KAAK,GAAA,CAAI,CAAA,uBAAA,EAA0B,gBAAgB,KAAK,CAAC,UAAU,IAAI,CAAA;AAAA,EACrF;AACF,CAAA;;;AC/FO,IAAM,wBAAN,MAA4B;AAAA,EACjC,WAAA,CACmB,OAAA,EACA,SAAA,GAAoB,GAAA,EACrC;AAFiB,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AACA,IAAA,IAAA,CAAA,SAAA,GAAA,SAAA;AAAA,EAChB;AAAA,EAFgB,OAAA;AAAA,EACA,SAAA;AAAA;AAAA;AAAA;AAAA,EAMnB,MAAM,UAAU,KAAA,EAA8E;AAC5F,IAAA,OAAO,IAAA,CAAK,KAAA,CAAgC,MAAA,EAAQ,yCAAA,EAA2C,KAAK,CAAA;AAAA,EACtG;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,OAAO,GAAA,EAAkE;AAC7E,IAAA,OAAO,IAAA,CAAK,KAAA,CAA4B,MAAA,EAAQ,sCAAA,EAAwC,GAAG,CAAA;AAAA,EAC7F;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAS,MAAA,EAA8C;AAC3D,IAAA,OAAO,IAAA,CAAK,KAAA,CAA2B,KAAA,EAAO,wCAAA,EAA0C,QAAW,MAAM,CAAA;AAAA,EAC3G;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,IAAI,MAAA,EAAkE;AAC1E,IAAA,OAAO,IAAA,CAAK,KAAA;AAAA,MACV,MAAA;AAAA,MACA,mCAAA;AAAA,MACA,MAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA,EAEA,MAAc,KAAA,CACZ,MAAA,EACA,IAAA,EACA,MACA,MAAA,EACY;AACZ,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,IAAI,CAAA,CAAA;AAClC,IAAA,MAAM,UAAA,GAAa,IAAI,eAAA,EAAgB;AACvC,IAAA,MAAM,YAAY,UAAA,CAAW,MAAM,WAAW,KAAA,EAAM,EAAG,KAAK,SAAS,CAAA;AACrE,IAAA,IAAI;AACF,MAAA,MAAM,OAAA,GAAkC,EAAE,cAAA,EAAgB,kBAAA,EAAmB;AAC7E,MAAA,IAAI,MAAA,EAAQ,OAAA,CAAQ,eAAe,CAAA,GAAI,UAAU,MAAM,CAAA,CAAA;AACvD,MAAA,MAAM,OAAoB,EAAE,MAAA,EAAQ,OAAA,EAAS,MAAA,EAAQ,WAAW,MAAA,EAAO;AACvE,MAAA,IAAI,SAAS,KAAA,CAAA,EAAW,IAAA,CAAK,IAAA,GAAO,IAAA,CAAK,UAAU,IAAI,CAAA;AACvD,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK,IAAI,CAAA;AACtC,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,MAAM,OAAA,GAAW,MAAM,QAAA,CAAS,IAAA,GAAO,KAAA,CAAM,OAAO,EAAC,CAAE,CAAA;AACvD,QAAA,MAAM,MAAM,IAAI,KAAA;AAAA,UACd,OAAA,CAAQ,WAAW,CAAA,iBAAA,EAAoB,IAAI,YAAY,QAAA,CAAS,MAAM,CAAA,CAAA,EAAI,QAAA,CAAS,UAAU,CAAA;AAAA,SAC/F;AACA,QAAA,GAAA,CAAI,SAAS,QAAA,CAAS,MAAA;AACtB,QAAA,MAAM,GAAA;AAAA,MACR;AACA,MAAA,MAAM,IAAA,GAAO,MAAM,QAAA,CAAS,IAAA,EAAK;AACjC,MAAA,IAAI,CAAC,MAAM,OAAO,KAAA,CAAA;AAClB,MAAA,OAAO,IAAA,CAAK,MAAM,IAAI,CAAA;AAAA,IACxB,SAAS,KAAA,EAAO;AACd,MAAA,YAAA,CAAa,SAAS,CAAA;AACtB,MAAA,MAAM,CAAA,GAAI,KAAA;AACV,MAAA,IAAI,CAAA,CAAE,SAAS,YAAA,EAAc;AAC3B,QAAA,MAAM,IAAI,KAAA,CAAM,CAAA,iBAAA,EAAoB,IAAI,CAAA,QAAA,CAAU,CAAA;AAAA,MACpD;AACA,MAAA,MAAM,KAAA;AAAA,IACR;AAAA,EACF;AACF,CAAA;;;AC7FO,IAAM,cAAN,MAA0C;AAAA,EAC/C,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA,EAG7B,MAAM,QAAQ,IAAA,EAAoD;AAChE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,4BAAA,EAA8B,IAAI,CAAA;AAAA,EAC1D;AAAA;AAAA,EAGA,MAAM,IAAI,kBAAA,EAAoD;AAC5D,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA,CAAI,sBAAsB,eAAA,CAAgB,kBAAkB,CAAC,CAAA,CAAE,CAAA;AAAA,EAClF;AAAA;AAAA,EAGA,MAAM,YAAY,MAAA,EAAsD;AACtE,IAAA,MAAM,IAAA,GAAO,QAAQ,IAAA,GACjB,CAAA,wBAAA,EAA2B,mBAAmB,MAAA,CAAO,IAAI,CAAC,CAAA,CAAA,GAC1D,oBAAA;AACJ,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,GAAA,CAAI,IAAI,CAAA;AAAA,EAC3B;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,MAAM,SAAS,MAAA,EAAwD;AACrE,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,6BAAA,EAA+B,MAAM,CAAA;AAAA,EAC7D;AAAA;AAAA,EAGA,MAAM,kBAAkB,kBAAA,EAA6D;AACnF,IAAA,OAAO,KAAK,IAAA,CAAK,GAAA;AAAA,MACf,CAAA,mBAAA,EAAsB,eAAA,CAAgB,kBAAkB,CAAC,CAAA,SAAA;AAAA,KAC3D;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,UAAU,kBAAA,EAA4D;AAC1E,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,mBAAA,EAAsB,eAAA,CAAgB,kBAAkB,CAAC,CAAA,UAAA,CAAA;AAAA,MACzD;AAAC,KACH;AAAA,EACF;AACF;;;AC7BA,SAAS,oBAAoB,GAAA,EAA0B;AACrD,EAAA,MAAM,CAAA,GAAI,GAAA;AACV,EAAA,MAAM,QAAA,GAAW,MAAA,CAAO,CAAA,CAAE,QAAA,IAAY,EAAE,CAAA;AACxC,EAAA,MAAM,UAAA,GAAc,EAAE,UAAA,IAA6B,SAAA;AACnD,EAAA,MAAM,WAAA,GAAc,MAAA,CAAO,CAAA,CAAE,WAAA,IAAe,EAAE,CAAA;AAC9C,EAAA,MAAM,OAAA,GAAW,CAAA,CAAE,OAAA,IAAW,EAAC;AAC/B,EAAA,MAAM,aAAA,GAAiB,CAAA,CAAE,aAAA,IAAiB,EAAC;AAC3C,EAAA,MAAM,SAAA,GAAY,MAAA,CAAO,CAAA,CAAE,SAAA,IAAa,EAAE,CAAA;AAE1C,EAAA,IAAI,KAAA,GAAoB,CAAA,CAAE,KAAA,IAAuB,OAAA,CAAQ,KAAA;AACzD,EAAA,IAAI,CAAC,KAAA,EAAO;AACV,IAAA,MAAM,UAAA,GAAa,MAAA,CAAO,IAAA,CAAK,aAAa,EAAE,CAAC,CAAA;AAC/C,IAAA,KAAA,GAAS,UAAA,IAA4B,QAAA;AAAA,EACvC;AAEA,EAAA,MAAM,aAAa,CAAA,CAAE,OAAA;AACrB,EAAA,MAAM,UAAU,UAAA,IAAc,QAAA;AAE9B,EAAA,OAAO;AAAA,IACL,QAAA;AAAA,IACA,IAAA,EAAM,UAAA;AAAA,IACN,UAAA;AAAA,IACA,KAAA,EAAO,WAAA;AAAA,IACP,WAAA;AAAA,IACA,KAAA;AAAA,IACA,OAAA;AAAA,IACA,aAAA;AAAA,IACA,SAAA;AAAA,IACA;AAAA,GACF;AACF;AAMA,SAAS,8BACP,GAAA,EACsB;AACtB,EAAA,MAAM,CAAA,GAAI,GAAA;AACV,EAAA,OAAO;AAAA,IACL,GAAG,CAAA;AAAA,IACH,OAAA,EAAS,CAAA,CAAE,OAAA,IAAW,CAAA,CAAE;AAAA,GAC1B;AACF;AA0EO,IAAM,cAAA,GAAN,MAAM,eAAA,CAA0C;AAAA,EACrD,YAA6B,IAAA,EAAkB;AAAlB,IAAA,IAAA,CAAA,IAAA,GAAA,IAAA;AAAA,EAAmB;AAAA,EAAnB,IAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAgB7B,OAAwB,yBAAA,mBACtB,IAAI,GAAA,CAAe;AAAA,IACjB,QAAA;AAAA,IACA,SAAA;AAAA,IACA,QAAA;AAAA,IACA,UAAA;AAAA,IACA,MAAA;AAAA,IACA;AAAA,GACD,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYH,MAAM,mBACJ,GAAA,EACiC;AACjC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,UAAA,EAAY,OAAA;AAAA,MACZ,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,mBAAmB,GAAA,EAYS;AAChC,IAAA,MAAM,EAAE,UAAA,EAAY,iBAAA,EAAmB,GAAG,MAAK,GAAI,GAAA;AACnD,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,KAAK,sCAAA,EAAwC;AAAA,MAC1E,GAAG,IAAA;AAAA,MACH,GAAI,UAAA,KAAe,MAAA,GAAY,EAAE,UAAA,KAAe,EAAC;AAAA,MACjD,GAAI,iBAAA,KAAsB,MAAA,GAAY,EAAE,iBAAA,KAAsB,EAAC;AAAA,MAC/D,UAAA,EAAY;AAAA,KACb,CAAA;AACD,IAAA,OAAO,8BAA8B,MAAM,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAoBA,MAAM,YAAY,GAAA,EAAwD;AACxE,IAAA,IAAI,eAAA,CAAe,yBAAA,CAA0B,GAAA,CAAI,GAAA,CAAI,KAAK,CAAA,EAAG;AAC3D,MAAA,MAAM,EAAE,QAAA,EAAU,GAAG,OAAA,EAAQ,GAAI,GAAA;AACjC,MAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,kBAAA,CAAmB,OAAO,CAAA;AAClD,MAAA,IAAI,CAAC,QAAA,EAAU;AACb,QAAA,MAAM,IAAI,KAAA;AAAA,UACR,CAAA,YAAA,EAAe,IAAI,KAAK,CAAA,6GAAA;AAAA,SAC1B;AAAA,MACF;AAIA,MAAA,MAAM,MAAA,GAAS,MAAM,QAAA,CAAS,IAAA,CAAK,QAAA,EAAU;AAAA,QAC3C,SAAS,IAAA,CAAK,OAAA;AAAA,QACd,oBAAoB,IAAA,CAAK;AAAA,OAC1B,CAAA;AAMD,MAAA,OAAO,KAAK,kBAAA,CAAmB;AAAA,QAC7B,UAAU,IAAA,CAAK,QAAA;AAAA,QACf,OAAO,GAAA,CAAI,KAAA;AAAA,QACX,cAAc,GAAA,CAAI,YAAA;AAAA,QAClB,iBAAA,EAAmB,gBAAe,yBAAA,CAA0B,GAAA,CAAI,IAAI,KAAK,CAAA,GACrE,QAAQ,iBAAA,GACR,MAAA;AAAA,QACJ,UAAA,EACE,IAAI,KAAA,KAAU,QAAA,GAAW,KAAK,QAAA,GAAW,CAAC,GAAG,aAAA,GAAgB;AAAA,OAChE,CAAA;AAAA,IACH;AAGA,IAAA,MAAM;AAAA,MACJ,QAAA,EAAU,gBAAA;AAAA,MACV,cAAA,EAAgB,aAAA;AAAA,MAChB,YAAA,EAAc,oBAAA;AAAA,MACd,GAAG;AAAA,KACL,GAAI,GAAA;AACJ,IAAA,MAAM,SAAS,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qCAAqC,SAAS,CAAA;AAClF,IAAA,OAAO,8BAA8B,MAAM,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,qBACJ,GAAA,EACiC;AACjC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,UAAA,EAAY,SAAA;AAAA,MACZ,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAiBA,MAAM,qBAAqB,GAAA,EAOO;AAOhC,IAAA,MAAM,EAAE,UAAA,EAAY,GAAG,IAAA,EAAK,GAAI,GAAA;AAChC,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,KAAK,sCAAA,EAAwC;AAAA,MAC1E,GAAG,IAAA;AAAA,MACH,GAAI,UAAA,KAAe,MAAA,GAAY,EAAE,UAAA,KAAe;AAAC,KAClD,CAAA;AACD,IAAA,OAAO,8BAA8B,MAAM,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAoBA,OAAwB,0BAAA,mBACtB,IAAI,GAAA,CAAe;AAAA,IACjB,MAAA;AAAA,IACA,SAAA;AAAA,IACA,SAAA;AAAA,IACA,UAAA;AAAA,IACA,QAAA;AAAA,IACA,QAAA;AAAA,IACA;AAAA,GACD,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWH,OAAwB,yBAAA,mBACtB,IAAI,IAAe,CAAC,MAAA,EAAQ,SAAS,CAAC,CAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAuBxC,MAAM,cAAc,GAAA,EAA0D;AAC5E,IAAA,IAAI,eAAA,CAAe,0BAAA,CAA2B,GAAA,CAAI,GAAA,CAAI,KAAK,CAAA,EAAG;AAE5D,MAAA,MAAM,EAAE,QAAA,EAAU,GAAG,OAAA,EAAQ,GAAI,GAAA;AACjC,MAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,oBAAA,CAAqB,OAAO,CAAA;AACpD,MAAA,IAAI,CAAC,QAAA,EAAU;AACb,QAAA,MAAM,IAAI,KAAA;AAAA,UACR,CAAA,cAAA,EAAiB,IAAI,KAAK,CAAA,kHAAA;AAAA,SAC5B;AAAA,MACF;AACA,MAAA,MAAM,MAAA,GAAS,MAAM,QAAA,CAAS,IAAA,CAAK,QAAA,EAAU;AAAA,QAC3C,SAAS,IAAA,CAAK,OAAA;AAAA,QACd,oBAAoB,IAAA,CAAK;AAAA,OAC1B,CAAA;AAaD,MAAA,OAAO,KAAK,oBAAA,CAAqB;AAAA,QAC/B,UAAU,IAAA,CAAK,QAAA;AAAA,QACf,OAAO,GAAA,CAAI,KAAA;AAAA,QACX,cAAc,GAAA,CAAI,YAAA;AAAA,QAClB,iBAAA,EAAmB,gBAAe,yBAAA,CAA0B,GAAA,CAAI,IAAI,KAAK,CAAA,GACrE,QAAQ,iBAAA,GACR,MAAA;AAAA,QACJ,UAAA,EACE,IAAI,KAAA,KAAU,QAAA,GAAW,KAAK,QAAA,GAAW,CAAC,GAAG,aAAA,GAAgB;AAAA,OAChE,CAAA;AAAA,IACH;AAGA,IAAA,MAAM;AAAA,MACJ,QAAA,EAAU,gBAAA;AAAA,MACV,cAAA,EAAgB,aAAA;AAAA,MAChB,YAAA,EAAc,oBAAA;AAAA,MACd,GAAG;AAAA,KACL,GAAI,GAAA;AACJ,IAAA,MAAM,SAAS,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,uCAAuC,SAAS,CAAA;AACpF,IAAA,OAAO,8BAA8B,MAAM,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,mBACJ,GAAA,EACiC;AACjC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,UAAA,EAAY,OAAA;AAAA,MACZ,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAM,mBAAmB,GAAA,EAKS;AAChC,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,KAAK,sCAAA,EAAwC;AAAA,MAC1E,GAAG,GAAA;AAAA,MACH,UAAA,EAAY;AAAA,KACb,CAAA;AACD,IAAA,OAAO,8BAA8B,MAAM,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,YAAY,GAAA,EAAwD;AACxE,IAAA,IAAI,GAAA,CAAI,UAAU,QAAA,EAAU;AAC1B,MAAA,MAAM,EAAE,QAAA,EAAU,GAAG,OAAA,EAAQ,GAAI,GAAA;AACjC,MAAA,MAAM,IAAA,GAAO,MAAM,IAAA,CAAK,kBAAA,CAAmB,OAAO,CAAA;AAClD,MAAA,IAAI,CAAC,QAAA,EAAU;AACb,QAAA,MAAM,IAAI,KAAA;AAAA,UACR;AAAA,SACF;AAAA,MACF;AAGA,MAAA,MAAM,QAAA,CAAS,KAAK,QAAA,EAAU;AAAA,QAC5B,SAAS,IAAA,CAAK,OAAA;AAAA,QACd,oBAAoB,IAAA,CAAK;AAAA,OAC1B,CAAA;AACD,MAAA,MAAM,UAAA,GAAa,IAAA,CAAK,QAAA,GAAW,CAAC,CAAA,EAAG,aAAA;AACvC,MAAA,IAAI,CAAC,UAAA,EAAY;AACf,QAAA,MAAM,IAAI,KAAA;AAAA,UACR;AAAA,SACF;AAAA,MACF;AACA,MAAA,OAAO,KAAK,kBAAA,CAAmB;AAAA,QAC7B,UAAU,IAAA,CAAK,QAAA;AAAA,QACf,OAAO,GAAA,CAAI,KAAA;AAAA,QACX,UAAA;AAAA,QACA,cAAc,GAAA,CAAI;AAAA,OACnB,CAAA;AAAA,IACH;AAEA,IAAA,MAAM;AAAA,MACJ,QAAA,EAAU,gBAAA;AAAA,MACV,cAAA,EAAgB,aAAA;AAAA,MAChB,YAAA,EAAc,oBAAA;AAAA,MACd,GAAG;AAAA,KACL,GAAI,GAAA;AACJ,IAAA,MAAM,SAAS,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qCAAqC,SAAS,CAAA;AAClF,IAAA,OAAO,8BAA8B,MAAM,CAAA;AAAA,EAC7C;AAAA;AAAA,EAGA,MAAM,YAAY,GAAA,EAAwD;AACxE,IAAA,MAAM,SAAS,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,qCAAqC,GAAG,CAAA;AAC5E,IAAA,OAAO,8BAA8B,MAAM,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,mBACJ,GAAA,EACiC;AACjC,IAAA,MAAM,EAAE,YAAA,EAAc,GAAG,IAAA,EAAK,GAAI,GAAA;AAClC,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,sCAAA,EAAwC;AAAA,MAC5D,UAAA,EAAY,OAAA;AAAA,MACZ,KAAA,EAAO,YAAA;AAAA,MACP,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,MAAM,mBAAmB,GAAA,EAOS;AAIhC,IAAA,MAAM,EAAE,UAAA,EAAY,iBAAA,EAAmB,GAAG,MAAK,GAAI,GAAA;AACnD,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,KAAK,sCAAA,EAAwC;AAAA,MAC1E,GAAG,IAAA;AAAA,MACH,GAAI,UAAA,KAAe,MAAA,GAAY,EAAE,UAAA,KAAe,EAAC;AAAA,MACjD,GAAI,iBAAA,KAAsB,MAAA,GAAY,EAAE,iBAAA,KAAsB,EAAC;AAAA,MAC/D,UAAA,EAAY;AAAA,KACb,CAAA;AACD,IAAA,OAAO,8BAA8B,MAAM,CAAA;AAAA,EAC7C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,UAAU,GAAA,EAA6D;AAC3E,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,iCAAA,EAAmC,GAAG,CAAA;AAAA,EAC9D;AAAA;AAAA,EAGA,MAAM,IAAI,QAAA,EAAuC;AAC/C,IAAA,MAAM,GAAA,GAAM,MAAM,IAAA,CAAK,IAAA,CAAK,IAAI,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,CAAE,CAAA;AACpF,IAAA,OAAO,oBAAoB,GAAG,CAAA;AAAA,EAChC;AAAA;AAAA,EAGA,MAAM,YAAY,MAAA,EAA4D;AAC5E,IAAA,MAAM,IAAA,GAAO,QAAQ,IAAA,GACjB,CAAA,2BAAA,EAA8B,mBAAmB,MAAA,CAAO,IAAI,CAAC,CAAA,CAAA,GAC7D,uBAAA;AACJ,IAAA,MAAM,GAAA,GAAM,MAAM,IAAA,CAAK,IAAA,CAAK,IAAI,IAAI,CAAA;AACpC,IAAA,MAAM,QAAA,GAAW,GAAA;AACjB,IAAA,OAAO;AAAA,MACL,GAAG,QAAA;AAAA,MACH,UAAU,QAAA,CAAS,QAAA,EAAU,GAAA,CAAI,mBAAmB,KAAK;AAAC,KAC5D;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAuBA,MAAM,QAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,SAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,QAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,SAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,IAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,KAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,IAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,KAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,WAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,SAAA,CACJ,QAAA,EACA,IAAA,EACA,IAAA,EAC0C;AAC1C,IAAA,OAAO,KAAK,IAAA,CAAK,IAAA;AAAA,MACf,CAAA,sBAAA,EAAyB,eAAA,CAAgB,QAAQ,CAAC,CAAA,UAAA,CAAA;AAAA,MAClD,IAAA;AAAA,MACA;AAAA,KACF;AAAA,EACF;AACF;;;ACvmBO,IAAM,UAAA,GAAN,MAAM,WAAA,CAAkC;AAAA,EAC5B,OAAA;AAAA,EACA,UAAA;AAAA,EACT,KAAA;AAAA,EACS,OAAA;AAAA,EACA,aAAA;AAAA,EACA,IAAA;AAAA;AAAA,EAET,aAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,WAAA;AAAA;AAAA;AAAA,EAKQ,EAAA;AAAA;AAAA,EAEA,OAAA;AAAA;AAAA,EAEA,SAAA;AAAA;AAAA,EAEA,SAAA;AAAA;AAAA,EAEA,UAAA;AAAA;AAAA,EAEA,MAAA;AAAA;AAAA,EAEA,eAAA;AAAA;AAAA,EAEA,KAAA;AAAA;AAAA,EAEA,QAAA;AAAA,EAEhB,YAAY,MAAA,EAA0B;AACpC,IAAA,IAAA,CAAK,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAC7C,IAAA,IAAA,CAAK,OAAA,GAAUC,YAAAA,CAAY,MAAA,CAAO,OAAA,EAAS,KAAK,aAAa,CAAA;AAC7D,IAAA,IAAA,CAAK,QAAQ,MAAA,CAAO,KAAA;AACpB,IAAA,IAAA,CAAK,OAAA,GAAU,OAAO,OAAA,IAAW,GAAA;AAGjC,IAAA,MAAM,UAAU,MAAA,CAAO,UAAA,IAAc,EAAA,EAAI,OAAA,CAAQ,OAAO,EAAE,CAAA;AAC1D,IAAA,IAAA,CAAK,UAAA,GAAa,SAAU,MAAA,CAAO,UAAA,CAAW,GAAG,CAAA,GAAI,MAAA,GAAS,CAAA,CAAA,EAAI,MAAM,CAAA,CAAA,GAAM,EAAA;AAC9E,IAAA,MAAM,iBAAA,GAAoB,IAAA,CAAK,UAAA,GAC3B,IAAA,CAAK,OAAA,CAAQ,OAAA,CAAQ,KAAA,EAAO,EAAE,CAAA,GAAI,IAAA,CAAK,UAAA,GACvC,IAAA,CAAK,OAAA;AAIT,IAAA,IAAA,CAAK,OAAO,gBAAA,CAAiB;AAAA,MAC3B,OAAA,EAAS,iBAAA;AAAA,MACT,SAAS,IAAA,CAAK,OAAA;AAAA;AAAA;AAAA;AAAA,MAId,cAAA,EAAgB,MAAM,IAAA,CAAK,cAAA;AAAe,KAC3C,CAAA;AAGD,IAAA,MAAM,QAAA,GAAW,MAAM,IAAA,CAAK,YAAA,EAAa;AAGzC,IAAA,IAAA,CAAK,EAAA,GAAK,IAAI,cAAA,CAAe,IAAA,CAAK,MAAM,QAAQ,CAAA;AAChD,IAAA,IAAA,CAAK,OAAA,GAAU,IAAI,aAAA,CAAc,IAAA,CAAK,MAAM,QAAQ,CAAA;AACpD,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,MAAM,QAAQ,CAAA;AACxD,IAAA,IAAA,CAAK,SAAA,GAAY,IAAI,eAAA,CAAgB,IAAA,CAAK,MAAM,QAAQ,CAAA;AACxD,IAAA,IAAA,CAAK,UAAA,GAAa,IAAI,gBAAA,CAAiB,IAAA,CAAK,IAAI,CAAA;AAChD,IAAA,IAAA,CAAK,MAAA,GAAS,IAAI,YAAA,CAAa,IAAA,CAAK,IAAI,CAAA;AACxC,IAAA,IAAA,CAAK,eAAA,GAAkB,IAAI,qBAAA,CAAsB,iBAAA,EAAmB,KAAK,OAAO,CAAA;AAChF,IAAA,IAAA,CAAK,KAAA,GAAQ,IAAI,WAAA,CAAY,IAAA,CAAK,IAAI,CAAA;AACtC,IAAA,IAAA,CAAK,QAAA,GAAW,IAAI,cAAA,CAAe,IAAA,CAAK,IAAI,CAAA;AAAA,EAC9C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAyCA,aAAa,iBAAiB,MAAA,EAAyD;AACrF,IAAA,MAAM,aAAA,GAAgB,OAAO,aAAA,IAAiB,KAAA;AAE9C,IAAA,MAAM,QAAA,GAAW,MAAM,sBAAA,CAAuB;AAAA,MAC5C,WAAW,MAAA,CAAO,SAAA;AAAA,MAClB,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,aAAA;AAAA,MACA,aAAa,MAAA,CAAO;AAAA,KACrB,CAAA;AAED,IAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,MAAA,IAAI,QAAA,CAAS,WAAW,UAAA,EAAY;AAClC,QAAA,MAAM,IAAI,SAAA;AAAA,UACR,0FAAA;AAAA,UACA;AAAA,SACF;AAAA,MACF;AACA,MAAA,MAAM,IAAI,SAAA;AAAA,QACR,iGAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AAEA,IAAA,MAAM,UAAU,QAAA,CAAS,OAAA;AACzB,IAAA,OAAO,IAAI,WAAA,CAAW;AAAA,MACpB,OAAA,EAAS,QAAQ,SAAA,CAAU,UAAA;AAAA,MAC3B,OAAO,MAAA,CAAO,KAAA;AAAA,MACd,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,SAAS,MAAA,CAAO,OAAA;AAAA,MAChB,aAAA;AAAA;AAAA;AAAA,MAGA,UAAA,EAAY,OAAO,UAAA,IAAc;AAAA,KAClC,CAAA;AAAA,EACH;AAAA;AAAA,EAGA,SAAS,KAAA,EAAqB;AAC5B,IAAA,IAAA,CAAK,KAAA,GAAQ,KAAA;AAAA,EACf;AAAA;AAAA,EAGA,eAAA,GAA2B;AACzB,IAAA,OAAO,IAAA,CAAK,IAAA,CAAK,YAAA,EAAa,KAAM,MAAA;AAAA,EACtC;AAAA;AAAA,EAGA,QAAA,GAA+B;AAC7B,IAAA,OAAO,IAAA,CAAK,KAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,UAAA,GAAqB;AACnB,IAAA,OAAO,IAAA,CAAK,OAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA,EAMA,aAAA,GAA+E;AAI7E,IAAA,OAAO;AAAA,MACL,OAAA,EAAS,IAAA;AAAA,MACT,WAAW,IAAA,CAAK;AAAA,KAClB;AAAA,EACF;AAAA,EAEQ,YAAA,GAAuB;AAC7B,IAAA,IAAI,CAAC,KAAK,KAAA,EAAO;AACf,MAAA,MAAM,IAAI,SAAA;AAAA,QACR,sFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,IAAA,CAAK,KAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,aAAa,OAAA,EAAuD;AACxE,IAAA,MAAM,EAAE,KAAA,EAAO,aAAA,EAAe,SAAA,EAAW,QAAO,GAAI,OAAA;AAEpD,IAAA,IAAA,CAAK,WAAA,GAAc,OAAA;AAKnB,IAAA,IAAI,SAAA;AACJ,IAAA,IAAI;AACF,MAAA,SAAA,GAAY,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAA4B,6BAAA,EAA+B;AAAA,QACrF,KAAA;AAAA,QACA,aAAA;AAAA,QACA,OAAO,IAAA,CAAK;AAAA,OACb,CAAA;AAAA,IACH,SAAS,GAAA,EAAK;AACZ,MAAA,MAAM,YAAY,GAAG,CAAA;AAAA,IACvB;AAGA,IAAA,MAAM,SAAA,GAAY,MAAM,MAAA,CAAO,SAAA,CAAU,OAAO,CAAA;AAGhD,IAAA,IAAI,MAAA;AACJ,IAAA,IAAI;AACF,MAAA,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAAqB,0BAAA,EAA4B;AAAA,QACxE,aAAa,SAAA,CAAU,WAAA;AAAA,QACvB,SAAA;AAAA,QACA;AAAA,OACD,CAAA;AAAA,IACH,SAAS,GAAA,EAAK;AACZ,MAAA,MAAM,YAAY,GAAG,CAAA;AAAA,IACvB;AAIA,IAAA,IAAA,CAAK,IAAA,CAAK,YAAA,CAAa,MAAA,CAAO,KAAK,CAAA;AAEnC,IAAA,OAAO,MAAA;AAAA,EACT;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,MAAc,cAAA,GAAgC;AAC5C,IAAA,MAAM,MAAM,IAAA,CAAK,WAAA;AACjB,IAAA,IAAI,CAAC,GAAA,EAAK;AACV,IAAA,MAAM,SAAA,GAAY,MAAM,IAAA,CAAK,IAAA,CAAK,KAA4B,6BAAA,EAA+B;AAAA,MAC3F,OAAO,GAAA,CAAI,KAAA;AAAA,MACX,eAAe,GAAA,CAAI,aAAA;AAAA,MACnB,OAAO,IAAA,CAAK;AAAA,KACb,CAAA;AACD,IAAA,MAAM,SAAA,GAAY,MAAM,GAAA,CAAI,MAAA,CAAO,UAAU,OAAO,CAAA;AACpD,IAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,IAAA,CAAK,KAAqB,0BAAA,EAA4B;AAAA,MAC9E,aAAa,SAAA,CAAU,WAAA;AAAA,MACvB,SAAA;AAAA,MACA,WAAW,GAAA,CAAI;AAAA,KAChB,CAAA;AACD,IAAA,IAAA,CAAK,IAAA,CAAK,YAAA,CAAa,MAAA,CAAO,KAAK,CAAA;AAAA,EACrC;AAAA;AAAA,EAGA,MAAM,eAAA,GAA4C;AAChD,IAAA,IAAA,CAAK,WAAA,EAAY;AACjB,IAAA,IAAI;AACF,MAAA,OAAO,MAAM,IAAA,CAAK,IAAA,CAAK,GAAA,CAAqB,2BAA2B,CAAA;AAAA,IACzE,SAAS,GAAA,EAAK;AACZ,MAAA,MAAM,YAAY,GAAG,CAAA;AAAA,IACvB;AAAA,EACF;AAAA;AAAA,EAGA,MAAM,MAAA,GAAwB;AAC5B,IAAA,IAAI,IAAA,CAAK,IAAA,CAAK,YAAA,EAAa,EAAG;AAC5B,MAAA,IAAI;AACF,QAAA,MAAM,IAAA,CAAK,IAAA,CAAK,IAAA,CAAK,0BAAA,EAA4B,EAAE,CAAA;AAAA,MACrD,CAAA,CAAA,MAAQ;AAAA,MAER;AAAA,IACF;AACA,IAAA,IAAA,CAAK,IAAA,CAAK,aAAa,MAAS,CAAA;AAAA,EAClC;AAAA;AAAA,EAIQ,WAAA,GAAoB;AAC1B,IAAA,IAAI,CAAC,IAAA,CAAK,IAAA,CAAK,YAAA,EAAa,EAAG;AAC7B,MAAA,MAAM,IAAI,SAAA,CAAU,qDAAA,EAAuD,GAAG,CAAA;AAAA,IAChF;AAAA,EACF;AACF;AAKO,IAAM,SAAA,GAAN,cAAwB,KAAA,CAAM;AAAA,EACnC,WAAA,CACE,OAAA,EACgB,UAAA,EACA,OAAA,EAChB;AACA,IAAA,KAAA,CAAM,OAAO,CAAA;AAHG,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AACA,IAAA,IAAA,CAAA,OAAA,GAAA,OAAA;AAGhB,IAAA,IAAA,CAAK,IAAA,GAAO,WAAA;AAAA,EACd;AAAA,EALkB,UAAA;AAAA,EACA,OAAA;AAKpB,CAAA;AAQA,SAAS,YAAY,GAAA,EAAyB;AAC5C,EAAA,IAAI,GAAA,YAAe,WAAW,OAAO,GAAA;AACrC,EAAA,IAAI,eAAe,YAAA,EAAc;AAC/B,IAAA,MAAM,OAAA,GAAW,IAAI,OAAA,IAAW,MAAA;AAChC,IAAA,OAAO,IAAI,SAAA,CAAU,GAAA,CAAI,OAAA,EAAS,GAAA,CAAI,YAAY,OAAO,CAAA;AAAA,EAC3D;AACA,EAAA,MAAM,CAAA,GAAI,GAAA;AACV,EAAA,OAAO,IAAI,UAAU,CAAA,eAAA,EAAkB,CAAA,EAAG,WAAW,MAAA,CAAO,GAAG,CAAC,CAAA,CAAA,EAAI,CAAA,EAAG;AAAA,IACrE,aAAA,EAAe,CAAA,EAAG,OAAA,IAAW,MAAA,CAAO,GAAG;AAAA,GACxC,CAAA;AACH;AAEA,SAASA,YAAAA,CAAY,GAAA,EAAa,aAAA,GAAgB,KAAA,EAAe;AAC/D,EAAA,IAAI;AACF,IAAA,MAAM,MAAA,GAAS,IAAI,GAAA,CAAI,GAAG,CAAA;AAC1B,IAAA,IAAI,CAAC,CAAC,OAAA,EAAS,QAAQ,EAAE,QAAA,CAAS,MAAA,CAAO,QAAQ,CAAA,EAAG;AAClD,MAAA,MAAM,IAAI,SAAA,CAAU,CAAA,kBAAA,EAAqB,MAAA,CAAO,QAAQ,IAAI,GAAG,CAAA;AAAA,IACjE;AACA,IAAA,IAAI,CAAC,aAAA,IAAiB,MAAA,CAAO,QAAA,KAAa,QAAA,EAAU;AAClD,MAAA,MAAM,IAAI,SAAA;AAAA,QACR,yFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,MAAA,CAAO,MAAA;AAAA,EAChB,SAAS,KAAA,EAAO;AACd,IAAA,IAAI,KAAA,YAAiB,WAAW,MAAM,KAAA;AACtC,IAAA,MAAM,IAAI,SAAA,CAAU,CAAA,aAAA,EAAgB,GAAG,IAAI,GAAG,CAAA;AAAA,EAChD;AACF;;;AC1eO,IAAM,mBAAA,GAAsB;AAO5B,IAAM,eAAA,GAAkB;AAMxB,IAAM,YAAA,GAAe;AAMrB,IAAM,eAAA,GAAkB;AA6DlBC,6BAAN,wBAAA,CAAkE;AAAA,EAQvE,YAGmB,MAAA,EACjB;AADiB,IAAA,IAAA,CAAA,MAAA,GAAA,MAAA;AAAA,EAChB;AAAA,EADgB,MAAA;AAAA,EAVF,MAAA,GAAS,IAAIC,aAAA,CAAOD,0BAAA,CAAmB,IAAI,CAAA;AAAA,EACpD,MAAA,GAAmC,IAAA;AAAA,EACnC,UAAA,GAAgC,IAAA;AAAA,EAChC,SAAA,GAAY,KAAA;AAAA,EACZ,cAAA,GAAwC,IAAA;AAAA,EACxC,iBAAA,GAAoB,CAAA;AAAA;AAAA;AAAA;AAAA,EAW5B,MAAM,YAAA,GAA8B;AAClC,IAAA,IAAI,CAAC,KAAK,MAAA,EAAQ;AAChB,MAAA,IAAA,CAAK,MAAA,CAAO,IAAA;AAAA,QACV;AAAA,OACF;AACA,MAAA;AAAA,IACF;AAEA,IAAA,MAAM,IAAA,CAAK,UAAA,CAAW,IAAA,CAAK,MAAM,CAAA;AAAA,EACnC;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,eAAA,GAAiC;AACrC,IAAA,MAAM,KAAK,QAAA,EAAS;AAAA,EACtB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,MAAM,WAAW,MAAA,EAAiD;AAChE,IAAA,IAAA,CAAK,MAAA,CAAO,GAAA,CAAI,CAAA,oCAAA,EAAuC,MAAA,CAAO,gBAAgB,CAAA,CAAE,CAAA;AAEhF,IAAA,IAAI;AACF,MAAA,IAAA,CAAK,MAAA,GAAS,IAAI,iBAAA,CAAkB;AAAA;AAAA;AAAA,QAGlC,kBAAkB,MAAA,CAAO,gBAAA;AAAA,QACzB,QAAQ,MAAA,CAAO,MAAA;AAAA,QACf,WAAW,MAAA,CAAO,SAAA;AAAA,QAClB,SAAS,MAAA,CAAO,OAAA;AAAA,QAChB,eAAe,MAAA,CAAO;AAAA,OACvB,CAAA;AAGD,MAAA,IAAA,CAAK,UAAA,GAAa,IAAA,CAAK,gBAAA,CAAiB,IAAA,CAAK,MAAM,CAAA;AAGnD,MAAA,IAAI,MAAA,CAAO,mBAAmB,KAAA,EAAO;AACnC,QAAA,MAAM,KAAK,cAAA,EAAe;AAAA,MAC5B;AAEA,MAAA,IAAA,CAAK,SAAA,GAAY,IAAA;AACjB,MAAA,IAAA,CAAK,iBAAA,GAAoB,CAAA;AACzB,MAAA,IAAA,CAAK,MAAA,CAAO,IAAI,6CAA6C,CAAA;AAAA,IAC/D,SAAS,KAAA,EAAO;AACd,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAA,CAAK,MAAA,CAAO,KAAA,CAAM,CAAA,yCAAA,EAA4C,GAAA,CAAI,OAAO,CAAA,CAAE,CAAA;AAE3E,MAAA,IAAI,OAAO,aAAA,EAAe;AACxB,QAAA,IAAA,CAAK,kBAAkB,MAAM,CAAA;AAAA,MAC/B,CAAA,MAAO;AACL,QAAA,MAAM,KAAA;AAAA,MACR;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,QAAA,GAA0B;AAC9B,IAAA,IAAA,CAAK,MAAA,CAAO,IAAI,kCAAkC,CAAA;AAGlD,IAAA,IAAI,KAAK,cAAA,EAAgB;AACvB,MAAA,YAAA,CAAa,KAAK,cAAc,CAAA;AAChC,MAAA,IAAA,CAAK,cAAA,GAAiB,IAAA;AAAA,IACxB;AAGA,IAAA,IAAA,CAAK,MAAA,GAAS,IAAA;AACd,IAAA,IAAA,CAAK,UAAA,GAAa,IAAA;AAClB,IAAA,IAAA,CAAK,SAAA,GAAY,KAAA;AAEjB,IAAA,IAAA,CAAK,MAAA,CAAO,IAAI,sCAAsC,CAAA;AAAA,EACxD;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOA,SAAA,GAA+B;AAC7B,IAAA,IAAI,CAAC,KAAK,MAAA,EAAQ;AAChB,MAAA,MAAM,IAAI,gBAAA;AAAA,QACR,sFAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,IAAA,CAAK,MAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAUA,aAAA,GAA4B;AAC1B,IAAA,IAAI,CAAC,KAAK,UAAA,EAAY;AACpB,MAAA,MAAM,IAAI,gBAAA;AAAA,QACR,+EAAA;AAAA,QACA;AAAA,OACF;AAAA,IACF;AACA,IAAA,OAAO,IAAA,CAAK,UAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA,EAKA,WAAA,GAAuB;AACrB,IAAA,OAAO,IAAA,CAAK,SAAA;AAAA,EACd;AAAA;AAAA;AAAA;AAAA,EAKA,MAAM,cAAA,GAAmC;AACvC,IAAA,IAAI,CAAC,KAAK,MAAA,EAAQ;AAChB,MAAA,OAAO,KAAA;AAAA,IACT;AAEA,IAAA,IAAI;AACF,MAAA,MAAM,MAAA,GAAS,MAAM,IAAA,CAAK,MAAA,CAAO,SAAA,EAAU;AAC3C,MAAA,IAAA,CAAK,SAAA,GAAY,MAAA,CAAO,MAAA,KAAW,SAAA,IAAa,OAAO,MAAA,KAAW,IAAA;AAClE,MAAA,OAAO,IAAA,CAAK,SAAA;AAAA,IACd,SAAS,KAAA,EAAO;AACd,MAAA,MAAM,GAAA,GAAM,KAAA;AACZ,MAAA,IAAA,CAAK,MAAA,CAAO,IAAA,CAAK,CAAA,wBAAA,EAA2B,GAAA,CAAI,OAAO,CAAA,CAAE,CAAA;AACzD,MAAA,IAAA,CAAK,SAAA,GAAY,KAAA;AACjB,MAAA,OAAO,KAAA;AAAA,IACT;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,SAAA,GAKE;AACA,IAAA,OAAO;AAAA,MACL,WAAW,IAAA,CAAK,SAAA;AAAA,MAChB,OAAA,EAAS,IAAA,CAAK,MAAA,EAAQ,UAAA,EAAW,IAAK,IAAA;AAAA,MACtC,aAAA,EAAe,IAAA,CAAK,MAAA,EAAQ,eAAA,EAAgB,IAAK,KAAA;AAAA,MACjD,mBAAmB,IAAA,CAAK;AAAA,KAC1B;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,oBAAoB,MAAA,EAMG;AACrB,IAAA,OAAO,IAAI,mBAAmB,MAAM,CAAA;AAAA,EACtC;AAAA;AAAA;AAAA;AAAA,EAKA,iBAAiB,MAAA,EAKC;AAChB,IAAA,OAAO,IAAI,WAAc,MAAM,CAAA;AAAA,EACjC;AAAA;AAAA;AAAA;AAAA,EAKQ,iBAAiB,MAAA,EAAuC;AAC9D,IAAA,OAAO;AAAA,MACL,MAAA;AAAA,MACA,WAAW,YAAY;AACrB,QAAA,IAAI;AACF,UAAA,MAAM,MAAA,GAAS,MAAM,MAAA,CAAO,SAAA,EAAU;AACtC,UAAA,OAAO,MAAA,CAAO,MAAA,KAAW,SAAA,IAAa,MAAA,CAAO,MAAA,KAAW,IAAA;AAAA,QAC1D,CAAA,CAAA,MAAQ;AACN,UAAA,OAAO,KAAA;AAAA,QACT;AAAA,MACF,CAAA;AAAA,MACA,UAAA,EAAY,MAAM,MAAA,CAAO,UAAA;AAAW,KACtC;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKQ,kBAAkB,MAAA,EAAwC;AAChE,IAAA,MAAM,WAAA,GAAc,OAAO,oBAAA,IAAwB,CAAA;AACnD,IAAA,MAAM,QAAA,GAAW,OAAO,iBAAA,IAAqB,GAAA;AAE7C,IAAA,IAAI,WAAA,GAAc,CAAA,IAAK,IAAA,CAAK,iBAAA,IAAqB,WAAA,EAAa;AAC5D,MAAA,IAAA,CAAK,MAAA,CAAO,KAAA,CAAM,CAAA,2BAAA,EAA8B,WAAW,CAAA,qBAAA,CAAuB,CAAA;AAClF,MAAA;AAAA,IACF;AAEA,IAAA,IAAA,CAAK,iBAAA,EAAA;AACL,IAAA,IAAA,CAAK,OAAO,GAAA,CAAI,CAAA,gCAAA,EAAmC,KAAK,iBAAiB,CAAA,IAAA,EAAO,QAAQ,CAAA,EAAA,CAAI,CAAA;AAE5F,IAAA,IAAA,CAAK,cAAA,GAAiB,WAAW,YAAY;AAC3C,MAAA,IAAI;AACF,QAAA,MAAM,IAAA,CAAK,WAAW,MAAM,CAAA;AAAA,MAC9B,CAAA,CAAA,MAAQ;AAAA,MAER;AAAA,IACF,GAAG,QAAQ,CAAA;AAAA,EACb;AACF;AAhPaA,0BAAA,GAAN,eAAA,CAAA;AAAA,EADNE,iBAAA,EAAW;AAAA,EAUP,eAAA,CAAA,CAAA,EAAAC,eAAA,EAAS,CAAA;AAAA,EACT,iCAAO,mBAAmB,CAAA;AAAA,CAAA,EAVlBH,0BAAA,CAAA;;;ACFAI,4BAAN,uBAAA,CAAwB;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAS7B,OAAO,OAAA,CAAQ,MAAA,EAAkC,QAAA,GAAW,IAAA,EAAqB;AAC/E,IAAA,OAAO;AAAA,MACL,MAAA,EAAQA,yBAAA;AAAA,MACR,MAAA,EAAQ,QAAA;AAAA,MACR,SAAA,EAAW;AAAA,QACT;AAAA,UACE,OAAA,EAAS,mBAAA;AAAA,UACT,QAAA,EAAU;AAAA,SACZ;AAAA,QACAJ,0BAAA;AAAA,QACA,GAAG,KAAK,mBAAA;AAAoB,OAC9B;AAAA,MACA,OAAA,EAAS;AAAA,QACPA,0BAAA;AAAA,QACA,eAAA;AAAA,QACA,YAAA;AAAA,QACA;AAAA;AACF,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAaA,OAAO,aAAa,OAAA,EAAuD;AACzE,IAAA,MAAM,cAAA,GAAiB,IAAA,CAAK,oBAAA,CAAqB,OAAO,CAAA;AAExD,IAAA,OAAO;AAAA,MACL,MAAA,EAAQI,yBAAA;AAAA,MACR,MAAA,EAAQ,QAAQ,QAAA,IAAY,IAAA;AAAA,MAC5B,OAAA,EAAS,OAAA,CAAQ,OAAA,IAAW,EAAC;AAAA,MAC7B,SAAA,EAAW;AAAA,QACT,GAAG,cAAA;AAAA,QACHJ,0BAAA;AAAA,QACA,GAAG,KAAK,mBAAA;AAAoB,OAC9B;AAAA,MACA,OAAA,EAAS;AAAA,QACPA,0BAAA;AAAA,QACA,eAAA;AAAA,QACA,YAAA;AAAA,QACA;AAAA;AACF,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,OAAe,mBAAA,GAAkC;AAC/C,IAAA,OAAO;AAAA,MACL;AAAA,QACE,OAAA,EAAS,eAAA;AAAA,QACT,UAAA,EAAY,CAAC,MAAA,KACX,IAAI,UAAA,CAAc;AAAA;AAAA;AAAA;AAAA,UAIhB,SAAS,MAAA,CAAO,gBAAA;AAAA,UAChB,SAAS,MAAA,CAAO,OAAA;AAAA,UAChB,eAAe,MAAA,CAAO;AAAA,SACvB,CAAA;AAAA,QACH,MAAA,EAAQ,CAAC,mBAAmB;AAAA,OAC9B;AAAA,MACA;AAAA,QACE,OAAA,EAAS,YAAA;AAAA,QACT,UAAA,EAAY,CAAC,IAAA,KAAwB,IAAA,CAAK,KAAA;AAAA,QAC1C,MAAA,EAAQ,CAAC,eAAe;AAAA,OAC1B;AAAA,MACA;AAAA,QACE,OAAA,EAAS,eAAA;AAAA,QACT,UAAA,EAAY,CAAC,IAAA,KAAwB,IAAA,CAAK,QAAA;AAAA,QAC1C,MAAA,EAAQ,CAAC,eAAe;AAAA;AAC1B,KACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA,EAKA,OAAe,qBAAqB,OAAA,EAAoD;AACtF,IAAA,IAAI,QAAQ,UAAA,EAAY;AACtB,MAAA,OAAO;AAAA,QACL;AAAA,UACE,OAAA,EAAS,mBAAA;AAAA,UACT,YAAY,OAAA,CAAQ,UAAA;AAAA,UACpB,MAAA,EAAQ,OAAA,CAAQ,MAAA,IAAU;AAAC;AAC7B,OACF;AAAA,IACF;AAEA,IAAA,IAAI,QAAQ,QAAA,EAAU;AACpB,MAAA,OAAO;AAAA,QACL;AAAA,UACE,SAAS,OAAA,CAAQ,QAAA;AAAA,UACjB,UAAU,OAAA,CAAQ;AAAA,SACpB;AAAA,QACA;AAAA,UACE,OAAA,EAAS,mBAAA;AAAA,UACT,UAAA,EAAY,OAAO,cAAA,KACjB,cAAA,CAAe,wBAAA,EAAyB;AAAA,UAC1C,MAAA,EAAQ,CAAC,OAAA,CAAQ,QAAQ;AAAA;AAC3B,OACF;AAAA,IACF;AAEA,IAAA,IAAI,QAAQ,WAAA,EAAa;AACvB,MAAA,OAAO;AAAA,QACL;AAAA,UACE,OAAA,EAAS,mBAAA;AAAA,UACT,UAAA,EAAY,OAAO,cAAA,KACjB,cAAA,CAAe,wBAAA,EAAyB;AAAA,UAC1C,MAAA,EAAQ,CAAC,OAAA,CAAQ,WAAW;AAAA;AAC9B,OACF;AAAA,IACF;AAEA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR;AAAA,KACF;AAAA,EACF;AACF;AA5IaI,yBAAA,GAAN,eAAA,CAAA;AAAA,EADNC,aAAA,CAAO,EAAE;AAAA,CAAA,EACGD,yBAAA,CAAA","file":"index.js","sourcesContent":["import { z } from 'zod';\n\n/**\n * Supported blockchain types\n */\nexport const ChainTypeSchema = z.enum([\n 'hedera',\n 'xrpl',\n 'polkadot',\n 'solana',\n 'stellar',\n 'ethereum',\n 'polygon',\n 'bitcoin',\n 'cardano',\n]);\n\nexport type ChainType = z.infer<typeof ChainTypeSchema>;\n\n/**\n * Network environment types\n */\nexport const NetworkTypeSchema = z.enum(['mainnet', 'testnet', 'devnet', 'local']);\n\nexport type NetworkType = z.infer<typeof NetworkTypeSchema>;\n\n/**\n * Chain metadata schema\n */\nexport const ChainMetadataSchema = z.object({\n chain: ChainTypeSchema,\n network: NetworkTypeSchema,\n nativeCurrency: z.object({\n name: z.string(),\n symbol: z.string(),\n decimals: z.number().int().min(0),\n }),\n blockTime: z.number().optional(),\n rpcEndpoint: z.string().url().optional(),\n});\n\nexport type ChainMetadata = z.infer<typeof ChainMetadataSchema>;\n","/**\n * Token Capabilities Schema\n *\n * Defines universal token capabilities that are chain-agnostic.\n * Each capability maps to chain-specific implementations.\n */\nimport { z } from 'zod';\n\n/**\n * Token Capabilities Schema\n *\n * These capabilities define what operations a token supports.\n * The validator layer translates these to chain-specific implementations.\n */\nexport const TokenCapabilitiesSchema = z.object({\n /**\n * Pause all token operations globally\n * - Hedera: Adds pauseKey to token\n * - XRPL: Enables GlobalFreeze flag on issuer account\n */\n pausable: z.boolean().default(false),\n\n /**\n * Freeze/restrict specific accounts from transacting\n * - Hedera: Adds freezeKey to token\n * - XRPL: Enables trust line freeze capability\n */\n restrictable: z.boolean().default(false),\n\n /**\n * KYC/compliance controls for accounts\n * - Hedera: Adds kycKey to token\n * - XRPL: Requires authorized trust lines (RequireAuth)\n */\n compliant: z.boolean().default(false),\n\n /**\n * Force remove tokens from accounts (compliance wipe)\n * - Hedera: Adds wipeKey to token\n * - XRPL: Enables clawback (lsfAllowTrustLineClawback)\n */\n wipeable: z.boolean().default(false),\n\n /**\n * Mint additional supply after creation\n * - Hedera: Adds supplyKey to token\n * - XRPL: Issuer can always issue more via Payment\n */\n mintable: z.boolean().default(true),\n\n /**\n * Burn tokens (reduce supply)\n * - Hedera: Requires supplyKey\n * - XRPL: Send back to issuer (reduces supply)\n */\n burnable: z.boolean().default(true),\n\n /**\n * Allow transfers between accounts\n * - All chains: Generally always supported\n */\n transferable: z.boolean().default(true),\n});\n\nexport type TokenCapabilities = z.infer<typeof TokenCapabilitiesSchema>;\n\n/**\n * Capability names as a type\n */\nexport type CapabilityName = keyof TokenCapabilities;\n\n/**\n * List of all capability names\n */\nexport const CAPABILITY_NAMES: CapabilityName[] = [\n 'pausable',\n 'restrictable',\n 'compliant',\n 'wipeable',\n 'mintable',\n 'burnable',\n 'transferable',\n];\n","import { z } from 'zod';\nimport { ChainTypeSchema } from './chain.schema';\n\n/**\n * Account identifier schema - generic string that works across chains\n */\nexport const AccountIdSchema = z.string().min(1);\n\n// Note: Export as AccountIdString to avoid collision with AccountId value object\nexport type AccountIdString = z.infer<typeof AccountIdSchema>;\n\n/**\n * Account information schema\n */\nexport const AccountInfoSchema = z.object({\n accountId: AccountIdSchema,\n balance: z.string(), // String to handle large numbers and decimals\n chain: ChainTypeSchema,\n publicKey: z.string().optional(),\n metadata: z.record(z.any()).optional(),\n createdAt: z.date().optional(),\n updatedAt: z.date().optional(),\n});\n\nexport type AccountInfo = z.infer<typeof AccountInfoSchema>;\n\n/**\n * Account balance schema with token details\n */\nexport const AccountBalanceSchema = z.object({\n accountId: AccountIdSchema,\n chain: ChainTypeSchema,\n nativeBalance: z.string(),\n tokens: z\n .array(\n z.object({\n tokenId: z.string(),\n balance: z.string(),\n decimals: z.number().int().min(0),\n symbol: z.string().optional(),\n })\n )\n .optional(),\n timestamp: z.date(),\n});\n\nexport type AccountBalance = z.infer<typeof AccountBalanceSchema>;\n","import { z } from 'zod';\n\n/**\n * Sovereignty mode for entity creation.\n * - 'partial': user + validator both sign; on-chain = nested KeyList/SignerList\n * - 'full': validator-only signs; on-chain = validator multisig alone\n *\n * \"partial\" is product-facing \"mixed\".\n *\n * The schema accepts only 'partial' and 'full'. There is no owner-only mode\n * (no validator in the signing path); any payload carrying an unrecognized\n * `securityMode` fails safeParse at the schema boundary.\n */\nexport const SecurityModeSchema = z.enum(['partial', 'full']);\nexport type SecurityMode = z.infer<typeof SecurityModeSchema>;\n\n/**\n * Single source of truth for the sovereignty field invariant.\n *\n * - partial: requires BOTH entityId and appOwnerPublicKey\n * - full: requires entityId (appOwnerPublicKey is ignored, not an error)\n *\n * Exported so merged schemas in api.schema.ts can delegate here\n * instead of duplicating the predicate logic.\n */\nexport const sovereigntyRefinePredicate = (v: {\n securityMode: SecurityMode;\n entityId?: string;\n appOwnerPublicKey?: string;\n}): boolean => {\n if (v.securityMode === 'partial') {\n return !!v.entityId && !!v.appOwnerPublicKey;\n }\n // 'full': requires entityId\n return !!v.entityId;\n};\n\nexport const SOVEREIGNTY_REFINE_MESSAGE =\n \"securityMode='partial' requires entityId+appOwnerPublicKey; 'full' requires entityId\";\n\n/**\n * Shared fragment for every entity-creation prepare schema.\n *\n * Invariants enforced via refine:\n * - partial mode requires BOTH entityId and appOwnerPublicKey\n * - full mode requires entityId (appOwnerPublicKey ignored)\n */\n// Internal: the raw object so callers can `.merge()` it without needing\n// Zod-version-specific `.innerType()` unwrapping (v3 vs v4 API drift).\nexport const SovereigntyFieldsRawSchema = z.object({\n securityMode: SecurityModeSchema.default('full'),\n entityId: z.string().optional(),\n appOwnerPublicKey: z.string().optional(),\n});\n\nexport const SovereigntyFieldsSchema = SovereigntyFieldsRawSchema\n .refine(sovereigntyRefinePredicate, { message: SOVEREIGNTY_REFINE_MESSAGE });\n\nexport type SovereigntyFields = z.infer<typeof SovereigntyFieldsSchema>;\n\n/**\n * ---------------------------------------------------------------------------\n * Response-side metadata: the `sovereignty` block on PreparedTransaction\n * ---------------------------------------------------------------------------\n *\n * Every `PreparedTransactionResponse` carries a `sovereignty` block so smart-\n * apps and tests can inspect the on-chain authorization topology the\n * validator is building, without decoding raw chain-native bytes.\n *\n * - `mode: 'partial'|'full'` carries the entity id, the raw BLS hex pubkeys\n * from the entity's DKG binding, and a chain-native authorization-set\n * descriptor (KeyList for Hedera, SignerList for XRPL, weighted signer set\n * for Stellar).\n */\n\n/**\n * Recursive JSON shape for a Hedera authorization key.\n *\n * A Hedera `adminKey` / `supplyKey` / capability-key value is either a single\n * ed25519 public key or a threshold KeyList whose members are themselves\n * keys. Kept JSON-serializable (ed25519 keys as hex strings) so callers can\n * walk the structure without a `@hashgraph/sdk` dep.\n */\nexport type HederaKeyShape =\n | { type: 'ed25519'; key: string }\n | { type: 'keyList'; threshold: number; keys: HederaKeyShape[] };\n\nexport const HederaKeyShapeSchema: z.ZodType<HederaKeyShape> = z.lazy(() =>\n z.union([\n z.object({ type: z.literal('ed25519'), key: z.string() }),\n z.object({\n type: z.literal('keyList'),\n threshold: z.number().int().nonnegative(),\n keys: z.array(HederaKeyShapeSchema),\n }),\n ]),\n);\n\nexport const HederaAuthorizationSetShapeSchema = z.object({\n chain: z.literal('hedera'),\n adminKey: HederaKeyShapeSchema,\n supplyKey: HederaKeyShapeSchema.optional(),\n freezeKey: HederaKeyShapeSchema.optional(),\n wipeKey: HederaKeyShapeSchema.optional(),\n pauseKey: HederaKeyShapeSchema.optional(),\n kycKey: HederaKeyShapeSchema.optional(),\n});\n\nexport const XrplAuthorizationSetShapeSchema = z.object({\n chain: z.literal('xrpl'),\n signerEntries: z.array(\n z.object({\n account: z.string(),\n weight: z.number().int().nonnegative(),\n }),\n ),\n signerQuorum: z.number().int().nonnegative(),\n masterDisabled: z.boolean(),\n});\n\nexport const StellarAuthorizationSetShapeSchema = z.object({\n chain: z.literal('stellar'),\n signers: z.array(\n z.object({\n key: z.string(),\n weight: z.number().int().nonnegative(),\n }),\n ),\n thresholds: z.object({\n low: z.number().int().nonnegative(),\n med: z.number().int().nonnegative(),\n high: z.number().int().nonnegative(),\n }),\n masterWeight: z.number().int().nonnegative(),\n});\n\n/**\n * Recursive JSON shape for a Polkadot authorization signatory.\n *\n * A Polkadot sovereignty set resolves to a single on-chain controlling\n * `address`. That address is either a native `pallet_multisig` address\n * whose signatories may themselves be multisig accounts (`'full'` = flat\n * validator multisig; `'partial'` = nested outer multisig\n * `[userAddress, innerValidatorMultisig]`).\n *\n * Kept JSON-serializable (SS58 addresses as strings) so callers can walk the\n * structure without a `@polkadot/*` dep.\n */\nexport type PolkadotSignatoryShape =\n | { type: 'account'; address: string }\n | {\n type: 'multisig';\n address: string;\n threshold: number;\n signatories: PolkadotSignatoryShape[];\n };\n\nexport const PolkadotSignatoryShapeSchema: z.ZodType<PolkadotSignatoryShape> = z.lazy(() =>\n z.union([\n z.object({ type: z.literal('account'), address: z.string() }),\n z.object({\n type: z.literal('multisig'),\n address: z.string(),\n threshold: z.number().int().positive(),\n signatories: z.array(PolkadotSignatoryShapeSchema),\n }),\n ]),\n);\n\nexport const PolkadotAuthorizationSetShapeSchema = z.object({\n chain: z.literal('polkadot'),\n address: z.string(),\n signatory: PolkadotSignatoryShapeSchema,\n ss58Format: z.number().int().nonnegative(),\n});\n\nexport const PreparedTransactionAuthorizationSetSchema = z.discriminatedUnion('chain', [\n HederaAuthorizationSetShapeSchema,\n XrplAuthorizationSetShapeSchema,\n StellarAuthorizationSetShapeSchema,\n PolkadotAuthorizationSetShapeSchema,\n]);\n\nexport type HederaAuthorizationSetShape = z.infer<typeof HederaAuthorizationSetShapeSchema>;\nexport type XrplAuthorizationSetShape = z.infer<typeof XrplAuthorizationSetShapeSchema>;\nexport type StellarAuthorizationSetShape = z.infer<typeof StellarAuthorizationSetShapeSchema>;\nexport type PolkadotAuthorizationSetShape = z.infer<typeof PolkadotAuthorizationSetShapeSchema>;\nexport type PreparedTransactionAuthorizationSet = z.infer<\n typeof PreparedTransactionAuthorizationSetSchema\n>;\n\n/**\n * `authorizationSet` is REQUIRED for prepare endpoints that build the on-chain\n * authorization at create time (token create, account create, account setup)\n * and OPTIONAL for prepare endpoints that invoke an already-configured\n * authorization (mint, burn, transfer, payment). In the latter case the\n * authorization set lives on-chain from a prior create and smart-apps already\n * have its shape from the original create response.\n *\n * The union has two arms: `'partial'` and `'full'`. There is no owner-only\n * `'none'` arm.\n */\nexport const PreparedTransactionSovereigntySchema = z.discriminatedUnion('mode', [\n z.object({\n mode: z.literal('partial'),\n entityId: z.string(),\n validatorPublicKeys: z.array(z.string()),\n authorizationSet: PreparedTransactionAuthorizationSetSchema.optional(),\n }),\n z.object({\n mode: z.literal('full'),\n entityId: z.string(),\n validatorPublicKeys: z.array(z.string()),\n authorizationSet: PreparedTransactionAuthorizationSetSchema.optional(),\n }),\n]);\n\nexport type PreparedTransactionSovereignty = z.infer<typeof PreparedTransactionSovereigntySchema>;\n","import { z } from 'zod';\nimport { ChainTypeSchema } from './chain.schema';\nimport { AccountIdSchema } from './account.schema';\nimport { TokenCapabilitiesSchema } from './capabilities.schema';\nimport {\n SovereigntyFieldsRawSchema,\n sovereigntyRefinePredicate,\n SOVEREIGNTY_REFINE_MESSAGE,\n PreparedTransactionSovereigntySchema,\n} from './sovereignty.schema';\n\n/**\n * Vendored mirror of `RuleRefSchema` from\n * `libs/shared/src/schemas/api.schema.ts`. An HCS pointer to a published\n * `ValidatorRules`: the chain whose HCS carries it, the topic id, and the\n * rule message's consensus timestamp. Supplied on a create request so the\n * chain adapter stamps the IMMUTABLE creation-tx rule anchor\n * (`rule:<topicId>@<consensusTimestamp>:<entityType>`) instead of the degraded\n * `rule:bootstrap:<entityType>` marker (RFC 2026-06-15-onchain-rule-anchor §6.1).\n * Keep byte-identical with the shared definition when that schema changes.\n */\nexport const RuleRefSchema = z.object({\n /** Chain whose HCS the rule was published on (canonically 'hedera'). */\n chain: ChainTypeSchema,\n /** HCS topic ID the rule message was published to. */\n topicId: z.string().min(1),\n /** HCS consensus timestamp of the rule message. */\n consensusTimestamp: z.string().min(1),\n});\n\nexport type RuleRefInput = z.infer<typeof RuleRefSchema>;\n\n/**\n * Create account request schema\n *\n * @important validatorTimestamp is REQUIRED - all entities must be bound to a validator.\n * The validator rules are stored on HCS and referenced by consensus timestamp.\n */\nexport const CreateAccountRequestSchema = z.object({\n chain: ChainTypeSchema,\n initialBalance: z.string(),\n publicKey: z.string().optional(),\n memo: z.string().optional(),\n /**\n * Who pays the chain fee for this transaction. Resolution happens in the\n * controller layer (`resolvePayerAccountId`): explicit `payerAccountId`\n * wins, else the JWT-authenticated smart-app's wallet address, else the\n * request is rejected with 400. The validator **never** silently falls\n * back to its own operator account.\n */\n payerAccountId: z.string().optional(),\n /**\n * HCS consensus timestamp of the validator rules (REQUIRED).\n * Format: \"1766490325.123456789\"\n */\n validatorTimestamp: z.string().min(1, 'validatorTimestamp is required'),\n /**\n * HCS topic ID where validator rules are stored (REQUIRED).\n */\n validatorTopicId: z.string().min(1, 'validatorTopicId is required'),\n /**\n * Whether to remove admin key after creation (makes entity immutable).\n * Default: true for production-grade immutability.\n */\n immutable: z.boolean().default(true),\n /**\n * Smart node security mode for the account key structure.\n * - 'partial': threshold(2, [appOwnerKey, tssKeyList]) — co-control\n * - 'full': TSS KeyList only — full validator network control\n * @defaultValue 'full'\n */\n securityMode: z.enum(['partial', 'full']).default('full'),\n /**\n * App owner's public key (required for 'partial' security mode).\n * The owner key + TSS network key form a threshold-2 multi-sig.\n */\n appOwnerPublicKey: z.string().optional(),\n /**\n * The entity's canonical `ruleRef` (HCS pointer to its `ValidatorRules`). When\n * present, the chain adapter stamps the IMMUTABLE creation-tx rule anchor\n * (`rule:<topicId>@<consensusTimestamp>:<entityType>`) — distinct from the\n * mutable validator-binding memo — so the sign-gate resolves the rule on-chain\n * (kind:'ref') rather than trusting the replicated binding\n * (RFC 2026-06-15-onchain-rule-anchor §6.1). Absent ⇒ the degraded\n * `rule:bootstrap:<entityType>` marker when `entityType` is supplied.\n */\n ruleRef: RuleRefSchema.optional(),\n /**\n * Entity-type tag stamped into the rule anchor (e.g. 'wallet', 'account').\n * Supply it to enable the on-chain anchor; omit for the prior memo-less\n * (legacy) behaviour.\n */\n entityType: z.string().min(1).optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type ValidatorCreateAccountRequest = z.infer<typeof CreateAccountRequestSchema>;\n\n/**\n * Create account response schema\n */\nexport const CreateAccountResponseSchema = z.object({\n accountId: AccountIdSchema,\n publicKey: z.string().optional(),\n privateKey: z.string().optional(), // Only returned on creation, store securely!\n transactionId: z.string(),\n chain: ChainTypeSchema,\n timestamp: z.date().optional(),\n});\n\nexport type CreateAccountResponse = z.infer<typeof CreateAccountResponseSchema>;\n\n/**\n * Transfer request schema\n */\nexport const TransferRequestSchema = z.object({\n chain: ChainTypeSchema,\n from: AccountIdSchema,\n to: AccountIdSchema,\n amount: z.string(),\n tokenId: z.string().optional(), // undefined = native token\n memo: z.string().optional(),\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type TransferRequest = z.infer<typeof TransferRequestSchema>;\n\n/**\n * Transfer response schema\n */\nexport const TransferResponseSchema = z.object({\n transactionId: z.string(),\n status: z.enum(['pending', 'success', 'failed']),\n chain: ChainTypeSchema,\n fee: z.string().optional(),\n timestamp: z.date().optional(),\n});\n\nexport type TransferResponse = z.infer<typeof TransferResponseSchema>;\n\n/**\n * Query balance request schema\n */\nexport const QueryBalanceRequestSchema = z.object({\n chain: ChainTypeSchema,\n accountId: AccountIdSchema,\n});\n\nexport type QueryBalanceRequest = z.infer<typeof QueryBalanceRequestSchema>;\n\n/**\n * Query transaction request schema\n */\nexport const QueryTransactionRequestSchema = z.object({\n chain: ChainTypeSchema,\n transactionId: z.string(),\n});\n\nexport type QueryTransactionRequest = z.infer<typeof QueryTransactionRequestSchema>;\n\n/**\n * Create token request schema (v2 with capabilities)\n *\n * Supports universal token capabilities that are validated against chain support.\n * If a capability is requested but not supported on the target chain, an error is thrown.\n */\nexport const CreateTokenRequestSchema = z.object({\n chain: ChainTypeSchema,\n name: z.string().min(1).max(100),\n symbol: z.string().min(1).max(10),\n decimals: z.number().int().min(0).max(18),\n initialSupply: z.string(),\n type: z.enum(['fungible', 'nft']),\n treasury: AccountIdSchema.optional(),\n /**\n * Token capabilities define what operations the token supports.\n * These are validated against chain support and translated to native implementations.\n *\n * @example\n * ```typescript\n * capabilities: {\n * pausable: true, // Hedera: pauseKey, XRPL: GlobalFreeze\n * restrictable: true, // Hedera: freezeKey, XRPL: TrustLineFreeze\n * compliant: true, // Hedera: kycKey, XRPL: RequireAuth\n * wipeable: true, // Hedera: wipeKey, XRPL: Clawback\n * mintable: true, // Allow additional minting\n * burnable: true, // Allow burning\n * }\n * ```\n */\n capabilities: TokenCapabilitiesSchema.optional().default({\n pausable: false,\n restrictable: false,\n compliant: false,\n wipeable: false,\n mintable: true,\n burnable: true,\n transferable: true,\n }),\n /**\n * HCS consensus timestamp of the validator rules (REQUIRED).\n * Format: \"1766490325.123456789\"\n */\n validatorTimestamp: z.string().min(1, 'validatorTimestamp is required'),\n /**\n * HCS topic ID where validator rules are stored (REQUIRED).\n */\n validatorTopicId: z.string().min(1, 'validatorTopicId is required'),\n /**\n * Whether to remove admin key after creation (makes entity immutable).\n * Default: true for production-grade immutability.\n */\n immutable: z.boolean().default(true),\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n /**\n * The entity's canonical `ruleRef` (HCS pointer to its `ValidatorRules`). When\n * present, the chain adapter stamps the IMMUTABLE creation-tx rule anchor\n * (`rule:<topicId>@<consensusTimestamp>:<entityType>`) — distinct from the\n * mutable validator-binding token memo — so the sign-gate resolves the rule\n * on-chain (kind:'ref') rather than trusting the replicated binding\n * (RFC 2026-06-15-onchain-rule-anchor §6.1). Absent ⇒ the degraded\n * `rule:bootstrap:<entityType>` marker when `entityType` is supplied.\n */\n ruleRef: RuleRefSchema.optional(),\n /**\n * Entity-type tag stamped into the rule anchor (e.g. 'token'). Supply it to\n * enable the on-chain anchor; omit for the prior memo-less behaviour.\n */\n entityType: z.string().min(1).optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type ValidatorCreateTokenRequest = z.infer<typeof CreateTokenRequestSchema>;\n\n/**\n * Create token response schema\n */\nexport const CreateTokenResponseSchema = z.object({\n tokenId: z.string(),\n transactionId: z.string(),\n chain: ChainTypeSchema,\n timestamp: z.date().optional(),\n});\n\nexport type CreateTokenResponse = z.infer<typeof CreateTokenResponseSchema>;\n\n/**\n * Mint token request schema\n */\n/**\n * Mint token request schema\n *\n * Supports both fungible and non-fungible token minting:\n * - Fungible: requires `amount` (e.g. \"1000\")\n * - NFT: requires `nftMetadata` (array of byte-encodable entries, one per NFT to mint)\n *\n * The chain adapter determines the appropriate native operation based on the token type.\n */\nexport const MintTokenRequestSchema = z.object({\n chain: ChainTypeSchema,\n tokenId: z.string(),\n\n /** Amount to mint (fungible tokens). Ignored for NFTs. */\n amount: z.string().optional(),\n\n /** Recipient account (fungible: transfer after mint; NFT: Hedera mints to treasury). */\n recipient: AccountIdSchema.optional(),\n\n /**\n * NFT metadata entries — one per NFT to mint.\n * Each entry becomes on-chain metadata (e.g. IPFS CID, encoded memo).\n * On Hedera: passed to TokenMintTransaction.setMetadata().\n * On XRPL: used as URI in NFTokenMint.\n */\n nftMetadata: z.array(z.string()).optional(),\n\n /** Additional chain-specific options. */\n metadata: z.record(z.any()).optional(),\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n});\n\nexport type MintTokenRequest = z.infer<typeof MintTokenRequestSchema>;\n\n/**\n * Burn token request schema\n */\nexport const BurnTokenRequestSchema = z.object({\n chain: ChainTypeSchema,\n tokenId: z.string(),\n amount: z.string(),\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type BurnTokenRequest = z.infer<typeof BurnTokenRequestSchema>;\n\n/**\n * Token action request schema (for pause, restrict, etc.)\n */\nexport const TokenActionRequestSchema = z.object({\n chain: ChainTypeSchema,\n tokenId: z.string(),\n accountId: AccountIdSchema.optional(), // Required for account-specific actions\n amount: z.string().optional(), // Required for wipe action\n /** See CreateAccountRequestSchema.payerAccountId — same resolution rules. */\n payerAccountId: z.string().optional(),\n metadata: z.record(z.any()).optional(),\n});\n\nexport type TokenActionRequest = z.infer<typeof TokenActionRequestSchema>;\n\n/**\n * Action result schema - unified response for all token actions\n */\nexport const ActionResultSchema = z.object({\n success: z.boolean(),\n transactionId: z.string(),\n chain: ChainTypeSchema,\n /** The native chain operation that was executed */\n chainOperation: z.string(),\n /** Additional context or notes about the operation */\n notes: z.array(z.string()).optional(),\n /** Timestamp of the operation */\n timestamp: z.date().optional(),\n});\n\nexport type ActionResult = z.infer<typeof ActionResultSchema>;\n\n/**\n * Create token result schema - extends ActionResult with token info\n */\nexport const CreateTokenResultSchema = ActionResultSchema.extend({\n tokenId: z.string(),\n /** The capabilities that were enabled for this token */\n enabledCapabilities: z.array(z.string()),\n});\n\nexport type CreateTokenResult = z.infer<typeof CreateTokenResultSchema>;\n\n// =============================================================================\n// PREPARED TRANSACTION RESPONSE TYPES (v3 API - Transaction Sovereignty)\n// =============================================================================\n\n/**\n * Validator signature for a prepared transaction\n */\nexport const ValidatorSignatureSchema = z.object({\n /** Validator's node ID */\n validatorId: z.string(),\n /** Validator's public key (hex-encoded) */\n publicKey: z.string(),\n /** Signature over the transaction bytes (hex-encoded) */\n signature: z.string(),\n /** When this signature was created */\n signedAt: z.date(),\n /** Signature algorithm used */\n algorithm: z.enum(['ed25519', 'ecdsa-secp256k1', 'bls12-381']).optional(),\n});\n\nexport type ValidatorSignature = z.infer<typeof ValidatorSignatureSchema>;\n\n/**\n * Hedera-specific metadata for prepared transactions\n */\nexport const HederaPreparedMetadataSchema = z.object({\n /** Hedera node account IDs that will process this transaction */\n nodeAccountIds: z.array(z.string()).optional(),\n /** Maximum transaction fee in tinybars */\n maxTransactionFee: z.string().optional(),\n /** Transaction memo */\n memo: z.string().optional(),\n /** Schedule info if this is a scheduled transaction */\n scheduleInfo: z\n .object({\n scheduleId: z.string(),\n adminKey: z.string().optional(),\n })\n .optional(),\n});\n\nexport type HederaPreparedMetadata = z.infer<typeof HederaPreparedMetadataSchema>;\n\n/**\n * XRPL-specific metadata for prepared transactions\n */\nexport const XRPLPreparedMetadataSchema = z.object({\n /** Sequence number for this transaction */\n sequence: z.number().optional(),\n /** Last ledger sequence for expiration */\n lastLedgerSequence: z.number().optional(),\n /** Signer list info for multi-sig */\n signerList: z\n .array(\n z.object({\n account: z.string(),\n signerWeight: z.number(),\n })\n )\n .optional(),\n /** Quorum weight required */\n signerQuorum: z.number().optional(),\n});\n\nexport type XRPLPreparedMetadata = z.infer<typeof XRPLPreparedMetadataSchema>;\n\n/**\n * Solana-specific metadata for prepared transactions\n */\nexport const SolanaPreparedMetadataSchema = z.object({\n /** Recent blockhash for transaction validity */\n recentBlockhash: z.string().optional(),\n /** Fee payer account */\n feePayer: z.string().optional(),\n /** Program IDs involved */\n programIds: z.array(z.string()).optional(),\n /** Squads v4 multisig PDA address (partial/full modes) */\n squadsMultisigPda: z.string().optional(),\n /** Squads v4 vault PDA address (partial/full modes) */\n squadsVaultPda: z.string().optional(),\n /** Index of the vault transaction proposal */\n squadsTransactionIndex: z.number().optional(),\n /** Proposal PDA address */\n squadsProposalAddress: z.string().optional(),\n /** Whether the multisig was created in this call (vs already existed) */\n multisigCreated: z.boolean().optional(),\n /** Security mode used to prepare this transaction */\n securityMode: z.enum(['partial', 'full']).optional(),\n /** SPL Token mint address (token-create and all SPL operations) */\n splMint: z.string().optional(),\n});\n\nexport type SolanaPreparedMetadata = z.infer<typeof SolanaPreparedMetadataSchema>;\n\n/**\n * Polkadot-specific metadata for prepared transactions\n */\nexport const PolkadotPreparedMetadataSchema = z.object({\n /** Era for transaction mortality */\n era: z.string().optional(),\n /** Nonce for the sender */\n nonce: z.number().optional(),\n /** Tip for priority */\n tip: z.string().optional(),\n /** Spec version for runtime */\n specVersion: z.number().optional(),\n});\n\nexport type PolkadotPreparedMetadata = z.infer<typeof PolkadotPreparedMetadataSchema>;\n\n/**\n * Union of all chain-specific metadata types\n */\nexport const ChainPreparedMetadataSchema = z.union([\n HederaPreparedMetadataSchema,\n XRPLPreparedMetadataSchema,\n SolanaPreparedMetadataSchema,\n PolkadotPreparedMetadataSchema,\n z.record(z.any()), // Allow extension for future chains\n]);\n\nexport type ChainPreparedMetadata = z.infer<typeof ChainPreparedMetadataSchema>;\n\n/**\n * Prepared transaction response - the core type for v3 API\n *\n * IMPORTANT: This is the unified response type for all transaction operations.\n * The transaction is frozen/prepared but NOT submitted. The caller is responsible\n * for submitting the transaction to the network.\n *\n * SECURITY PRINCIPLES:\n * 1. Validators NEVER pay fees - caller provides payerAccountId\n * 2. Validators NEVER submit transactions - they return signed bytes\n * 3. All operations use multi-sig - no single-key fallbacks\n * 4. Transaction ID is pre-assigned for deterministic tracking\n */\nexport const PreparedTransactionResponseSchema = z.object({\n /** The blockchain this transaction is for */\n chain: ChainTypeSchema,\n /** Type of transaction (e.g., 'TokenCreate', 'Payment', 'NFTMint') */\n transactionType: z.string(),\n /** Pre-assigned transaction ID for tracking */\n transactionId: z.string(),\n /** Base64-encoded frozen transaction bytes ready for submission */\n transactionBytes: z.string(),\n /** When this prepared transaction expires */\n expiresAt: z.date(),\n /** Validator signatures collected for this transaction */\n validatorSignatures: z.array(ValidatorSignatureSchema),\n /** Required payer account ID (caller must fund this account) */\n payerAccountId: z.string().optional(),\n /** Estimated network fee */\n estimatedFee: z.string().optional(),\n /** Number of signatures required for submission */\n requiredSignatures: z.number().optional(),\n /** Whether the transaction has enough signatures to submit */\n readyToSubmit: z.boolean().default(false),\n /** Chain-specific metadata */\n metadata: ChainPreparedMetadataSchema.optional(),\n /**\n * Sovereignty metadata: the mode and (for partial/full) the on-chain\n * authorization set the validator is binding to. Lets smart-apps and tests\n * inspect the authorization topology without decoding chain-native bytes.\n */\n sovereignty: PreparedTransactionSovereigntySchema.optional(),\n});\n\nexport type PreparedTransactionResponse = z.infer<typeof PreparedTransactionResponseSchema>;\n\n/**\n * Generic prepared transaction response with typed metadata\n */\nexport type PreparedTransactionResponseWithMetadata<T extends ChainPreparedMetadata> = Omit<\n PreparedTransactionResponse,\n 'metadata'\n> & {\n metadata?: T;\n};\n\n/**\n * Type-safe prepared transaction responses for each chain\n */\nexport type HederaPreparedTransaction =\n PreparedTransactionResponseWithMetadata<HederaPreparedMetadata>;\n/**\n * XRPL prepared transaction response.\n *\n * Includes `transactionJson` alongside `transactionBytes` so xrpl.js-native\n * clients can sign the autofilled transaction object directly without having\n * to decode the binary blob. See Transaction Sovereignty Parity Part A.4.\n *\n * `transactionJson` is typed as the structural minimum — the fields every\n * autofilled XRPL tx carries — so `@hsuite/smart-engines-shared` stays\n * decoupled from the xrpl.js package. Callers that need the full\n * `SubmittableTransaction` union (see xrpl.js) should consume the stronger\n * local type exported from `@hsuite/smart-engines-chain-xrpl`, which is\n * typed against xrpl.js directly.\n */\nexport type XRPLPreparedTransactionJson = {\n TransactionType: string;\n Account: string;\n Fee?: string;\n Sequence?: number;\n LastLedgerSequence?: number;\n [extra: string]: unknown;\n};\n\nexport type XRPLPreparedTransaction = PreparedTransactionResponseWithMetadata<XRPLPreparedMetadata> & {\n /** Autofilled XRPL transaction object (post-autofill, pre-sign) for xrpl.js-native callers */\n transactionJson: XRPLPreparedTransactionJson;\n};\nexport type SolanaPreparedTransaction =\n PreparedTransactionResponseWithMetadata<SolanaPreparedMetadata>;\nexport type PolkadotPreparedTransaction =\n PreparedTransactionResponseWithMetadata<PolkadotPreparedMetadata>;\n\n/**\n * Submission result after caller submits the prepared transaction\n */\nexport const TransactionSubmissionResultSchema = z.object({\n /** The original transaction ID */\n transactionId: z.string(),\n /** The blockchain */\n chain: ChainTypeSchema,\n /** Whether submission was successful */\n success: z.boolean(),\n /** Consensus timestamp (Hedera) or ledger/block info */\n consensusTimestamp: z.string().optional(),\n /** Block or ledger number */\n blockNumber: z.number().optional(),\n /** Actual fee paid */\n actualFee: z.string().optional(),\n /** Receipt or confirmation data */\n receipt: z.record(z.any()).optional(),\n /** Error message if submission failed */\n error: z.string().optional(),\n});\n\nexport type TransactionSubmissionResult = z.infer<typeof TransactionSubmissionResultSchema>;\n\n// =============================================================================\n// PREPARE REQUEST SCHEMAS (v3 API - Transaction Sovereignty Mixed Layer)\n// =============================================================================\n\n/**\n * Prepare token-create request schema (Hedera HTS).\n *\n * Merges SovereigntyFieldsSchema so securityMode, entityId, and\n * appOwnerPublicKey carry the same cross-chain invariants.\n */\nexport const PrepareTokenCreateRequestSchema = z\n .object({\n chain: z.literal('hedera'),\n payerAccountId: z.string().optional(),\n name: z.string().min(1).max(100),\n symbol: z.string().min(1).max(10),\n decimals: z.number().int().min(0).max(18),\n initialSupply: z.string(),\n treasuryAccountId: z.string().min(1, 'treasuryAccountId is required'),\n memo: z.string().optional(),\n tokenType: z.enum(['FUNGIBLE_COMMON', 'NON_FUNGIBLE_UNIQUE']).default('FUNGIBLE_COMMON'),\n supplyKey: z.string().optional(),\n adminKey: z.string().optional(),\n pauseKey: z.string().optional(),\n freezeKey: z.string().optional(),\n kycKey: z.string().optional(),\n wipeKey: z.string().optional(),\n validatorTimestamp: z.string().min(1),\n validatorTopicId: z.string().min(1),\n })\n // SovereigntyFieldsRawSchema is the unrefined object (no .refine wrapping)\n // the sovereignty invariant is re-applied by the .refine() below.\n .merge(SovereigntyFieldsRawSchema)\n .refine(sovereigntyRefinePredicate, { message: SOVEREIGNTY_REFINE_MESSAGE });\n\nexport type PrepareTokenCreateRequest = z.infer<typeof PrepareTokenCreateRequestSchema>;\n\n/**\n * Prepare XRPL account-setup request schema.\n *\n * Used to configure the authorization (signer list / AccountSet flags) on an\n * existing XRPL account as part of the sovereignty key setup.\n */\nexport const PrepareXrplAccountSetupRequestSchema = z\n .object({\n chain: z.literal('xrpl'),\n payerAccountId: z.string().optional(),\n // User's XRPL account whose authorization we're configuring.\n accountAddress: z.string().min(25).max(34),\n validatorTimestamp: z.string().min(1),\n validatorTopicId: z.string().min(1),\n })\n .merge(SovereigntyFieldsRawSchema)\n .refine(sovereigntyRefinePredicate, { message: SOVEREIGNTY_REFINE_MESSAGE });\n\nexport type PrepareXrplAccountSetupRequest = z.infer<typeof PrepareXrplAccountSetupRequestSchema>;\n\n/**\n * Prepare Stellar account-create request schema.\n *\n * Creates a new Stellar account and optionally configures sovereignty signers.\n */\nexport const PrepareStellarAccountCreateRequestSchema = z\n .object({\n chain: z.literal('stellar'),\n payerAccountId: z.string().optional(),\n // The master public key of the new Stellar account.\n publicKey: z.string().min(56).max(56),\n startingBalance: z.string().regex(/^\\d+(\\.\\d+)?$/),\n validatorTimestamp: z.string().min(1),\n validatorTopicId: z.string().min(1),\n })\n .merge(SovereigntyFieldsRawSchema)\n // Stellar's partial mode uses the new account's OWN master key as the\n // \"user\" signer (via SetOptions(masterWeight=2)) — there is NO separate\n // appOwnerPublicKey because Stellar allows the master key to satisfy\n // authorization directly. Only entityId is required for partial/full.\n .refine(\n (v) => !!v.entityId,\n { message: \"securityMode='partial'/'full' requires entityId\" },\n );\n\nexport type PrepareStellarAccountCreateRequest = z.infer<\n typeof PrepareStellarAccountCreateRequestSchema\n>;\n","/**\n * Hedera Mirror Node Client\n *\n * Lightweight client for querying Hedera mirror node REST API.\n * Used for validator discovery by reading HCS topic messages.\n */\n\n/**\n * Mirror node configuration\n */\nexport interface MirrorNodeConfig {\n /** Mirror node base URL (e.g., https://testnet.mirrornode.hedera.com) */\n baseUrl: string;\n /** Request timeout in milliseconds */\n timeout?: number;\n /** Allow HTTP (insecure) connections - default false */\n allowInsecure?: boolean;\n}\n\n/**\n * Validate and sanitize a URL\n * Prevents SSRF and ensures HTTPS for security\n */\nfunction validateUrl(url: string, allowInsecure = false): URL {\n try {\n const parsed = new URL(url);\n\n // Only allow http/https protocols\n if (!['http:', 'https:'].includes(parsed.protocol)) {\n throw new Error(`Invalid protocol: ${parsed.protocol}`);\n }\n\n // Enforce HTTPS unless explicitly allowed\n if (!allowInsecure && parsed.protocol !== 'https:') {\n throw new Error(\n 'HTTPS is required for secure connections. Set allowInsecure=true to override.'\n );\n }\n\n // Block private/internal IP ranges to prevent SSRF\n const hostname = parsed.hostname.toLowerCase();\n const blockedPatterns = [\n /^localhost$/i,\n /^127\\./,\n /^10\\./,\n /^172\\.(1[6-9]|2[0-9]|3[01])\\./,\n /^192\\.168\\./,\n /^169\\.254\\./,\n /^::1$/,\n /^fe80:/i,\n /^fc00:/i,\n /^fd00:/i,\n ];\n\n // Allow localhost only in development with explicit flag\n const isPrivate = blockedPatterns.some((pattern) => pattern.test(hostname));\n if (isPrivate && !allowInsecure) {\n throw new Error(\n 'Private/internal URLs are blocked. Set allowInsecure=true for local development.'\n );\n }\n\n return parsed;\n } catch (error) {\n if (error instanceof Error && error.message.includes('Invalid URL')) {\n throw new MirrorNodeError(`Invalid URL format: ${url}`, 400);\n }\n throw error;\n }\n}\n\n/**\n * Validate Hedera topic ID format\n */\nfunction validateTopicId(topicId: string): void {\n // Format: shard.realm.num (e.g., 0.0.123456)\n if (!/^\\d+\\.\\d+\\.\\d+$/.test(topicId)) {\n throw new MirrorNodeError(\n `Invalid topic ID format: ${topicId}. Expected format: 0.0.123456`,\n 400\n );\n }\n}\n\n/**\n * HCS topic message from mirror node API\n */\nexport interface TopicMessage {\n /** Consensus timestamp */\n consensus_timestamp: string;\n /** Message content (base64 encoded) */\n message: string;\n /** Payer account ID */\n payer_account_id: string;\n /** Running hash */\n running_hash: string;\n /** Running hash version */\n running_hash_version: number;\n /** Sequence number */\n sequence_number: number;\n /** Topic ID */\n topic_id: string;\n}\n\n/**\n * Mirror node API response for topic messages\n */\nexport interface TopicMessagesResponse {\n messages: TopicMessage[];\n links: {\n next?: string;\n };\n}\n\n/**\n * Default mirror node URLs by network\n */\nexport const MIRROR_NODE_URLS: Record<string, string> = {\n mainnet: 'https://mainnet-public.mirrornode.hedera.com',\n testnet: 'https://testnet.mirrornode.hedera.com',\n previewnet: 'https://previewnet.mirrornode.hedera.com',\n};\n\n/**\n * Hedera Mirror Node Client\n *\n * Query HCS topic messages via REST API for validator discovery.\n */\nexport class MirrorNodeClient {\n private readonly baseUrl: string;\n private readonly timeout: number;\n private readonly allowInsecure: boolean;\n\n constructor(config: MirrorNodeConfig) {\n this.allowInsecure = config.allowInsecure ?? false;\n\n // Validate the base URL\n const validatedUrl = validateUrl(config.baseUrl, this.allowInsecure);\n this.baseUrl = validatedUrl.origin;\n this.timeout = config.timeout || 30000;\n }\n\n /**\n * Create client for a specific network\n */\n static forNetwork(network: 'mainnet' | 'testnet' | 'previewnet'): MirrorNodeClient {\n const baseUrl = MIRROR_NODE_URLS[network];\n if (!baseUrl) {\n throw new Error(`Unknown network: ${network}`);\n }\n return new MirrorNodeClient({ baseUrl });\n }\n\n /**\n * Get topic messages from mirror node\n *\n * @param topicId - HCS topic ID (e.g., '0.0.123456')\n * @param options - Query options\n * @returns Topic messages\n */\n async getTopicMessages(\n topicId: string,\n options?: {\n /** Limit number of messages */\n limit?: number;\n /** Order (asc or desc) */\n order?: 'asc' | 'desc';\n /** Timestamp to start from */\n timestampStart?: string;\n /** Timestamp to end at */\n timestampEnd?: string;\n /** Sequence number to start from */\n sequenceNumberStart?: number;\n }\n ): Promise<TopicMessage[]> {\n // Validate topic ID format to prevent injection\n validateTopicId(topicId);\n\n const params = new URLSearchParams();\n\n if (options?.limit) {\n params.set('limit', options.limit.toString());\n }\n if (options?.order) {\n params.set('order', options.order);\n }\n if (options?.timestampStart) {\n params.set('timestamp', `gte:${options.timestampStart}`);\n }\n if (options?.timestampEnd) {\n params.set('timestamp', `lte:${options.timestampEnd}`);\n }\n if (options?.sequenceNumberStart) {\n params.set('sequencenumber', `gte:${options.sequenceNumberStart}`);\n }\n\n const url = `${this.baseUrl}/api/v1/topics/${topicId}/messages?${params.toString()}`;\n\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: {\n Accept: 'application/json',\n },\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n throw new MirrorNodeError(\n `Mirror node error: ${response.status} ${response.statusText}`,\n response.status\n );\n }\n\n const data = (await response.json()) as TopicMessagesResponse;\n return data.messages;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof MirrorNodeError) {\n throw error;\n }\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new MirrorNodeError('Mirror node request timeout', 408);\n }\n throw new MirrorNodeError(`Mirror node network error: ${err.message}`, 0);\n }\n }\n\n /**\n * Get all topic messages with pagination\n *\n * @param topicId - HCS topic ID\n * @param maxMessages - Maximum messages to fetch (default: 1000)\n * @returns All topic messages\n */\n async getAllTopicMessages(topicId: string, maxMessages: number = 1000): Promise<TopicMessage[]> {\n // Validate topic ID format\n validateTopicId(topicId);\n\n // Enforce reasonable limits to prevent DoS\n const safeMaxMessages = Math.min(maxMessages, 10000);\n\n const allMessages: TopicMessage[] = [];\n let nextPath: string | undefined = `/api/v1/topics/${topicId}/messages?limit=100&order=desc`;\n\n while (nextPath && allMessages.length < safeMaxMessages) {\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n // Construct full URL safely - only use path from pagination\n const fullUrl = `${this.baseUrl}${nextPath}`;\n\n const response = await fetch(fullUrl, {\n method: 'GET',\n headers: { Accept: 'application/json' },\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n throw new MirrorNodeError(\n `Mirror node error: ${response.status} ${response.statusText}`,\n response.status\n );\n }\n\n const data = (await response.json()) as TopicMessagesResponse;\n allMessages.push(...data.messages);\n\n // Validate and sanitize pagination link\n // Only accept relative paths starting with /api/v1/\n if (data.links.next) {\n const nextLink = data.links.next;\n if (nextLink.startsWith('/api/v1/topics/')) {\n nextPath = nextLink;\n } else {\n // Invalid pagination link - stop pagination\n nextPath = undefined;\n }\n } else {\n nextPath = undefined;\n }\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof MirrorNodeError) {\n throw error;\n }\n const err = error as Error;\n throw new MirrorNodeError(`Mirror node error: ${err.message}`, 0);\n }\n }\n\n return allMessages.slice(0, safeMaxMessages);\n }\n\n /**\n * Decode base64 message content\n */\n static decodeMessage(base64Message: string): string {\n if (typeof Buffer !== 'undefined') {\n return Buffer.from(base64Message, 'base64').toString('utf-8');\n }\n // Browser environment\n return atob(base64Message);\n }\n}\n\n/**\n * Mirror node error\n */\nexport class MirrorNodeError extends Error {\n constructor(\n message: string,\n public statusCode: number\n ) {\n super(message);\n this.name = 'MirrorNodeError';\n }\n}\n","/**\n * Validator Discovery Client\n *\n * Discover smart-engine validators by reading the HCS validator registry topic.\n * Provides methods to list validators and select random validators for connection.\n */\n\nimport { MirrorNodeClient, MIRROR_NODE_URLS } from './mirror-node';\n\n/**\n * Network endpoints for validator connectivity\n */\nexport interface ValidatorNetworkEndpoints {\n /** HTTP API endpoint (e.g., https://validator.example.com:3000) */\n apiEndpoint: string;\n /** NATS endpoint for peer-to-peer messaging */\n natsEndpoint?: string;\n /** Public IP for NAT traversal */\n publicIp?: string;\n /** NATS port if different from default */\n natsPort?: number;\n}\n\n/**\n * Validator metadata\n */\nexport interface ValidatorMetadata {\n /** Human-readable description */\n description?: string;\n /** Version string */\n version?: string;\n /** Tags for categorization */\n tags?: string[];\n /** Author/operator name */\n author?: string;\n}\n\n/**\n * Validator registry entry parsed from HCS\n */\nexport interface ValidatorInfo {\n /** Validator consensus timestamp (unique ID) */\n validatorTimestamp: string;\n /** Node ID (e.g., validator-1) */\n nodeId: string;\n /** Validator type */\n type: 'consensus' | 'tokens' | 'accounts' | 'network';\n /** Network endpoints for connectivity */\n networkEndpoints?: ValidatorNetworkEndpoints;\n /** Public key for peer authentication (Ed25519 hex) */\n publicKey?: string;\n /** Membership NFT serial number */\n membershipNftSerial?: number;\n /** Supported blockchain capabilities */\n capabilities?: string[];\n /** Validator metadata */\n metadata: ValidatorMetadata;\n /** When registered */\n registeredAt: string;\n /** Message type */\n messageType?: 'validator.join' | 'validator.leave' | 'validator.update';\n}\n\n/**\n * Validator discovery configuration\n */\nexport interface ValidatorDiscoveryConfig {\n /** Hedera network (mainnet, testnet, previewnet) */\n network: 'mainnet' | 'testnet' | 'previewnet';\n /** HCS topic ID for validator registry */\n registryTopicId: string;\n /** Cache TTL in milliseconds (default: 60000 = 1 minute) */\n cacheTtlMs?: number;\n /** Custom mirror node URL (optional) */\n mirrorNodeUrl?: string;\n /** Allow HTTP (insecure) connections - only for local development */\n allowInsecure?: boolean;\n}\n\n/**\n * Cached validators data\n */\ninterface ValidatorCache {\n validators: ValidatorInfo[];\n lastUpdated: number;\n}\n\n/**\n * Validator Discovery Client\n *\n * Discovers validators by reading the HCS validator registry topic\n * via Hedera mirror node API.\n *\n * @example\n * ```typescript\n * const discovery = new ValidatorDiscoveryClient({\n * network: 'testnet',\n * registryTopicId: '0.0.123456',\n * });\n *\n * const validators = await discovery.getValidators();\n * const randomValidator = await discovery.getRandomValidator();\n * ```\n */\nexport class ValidatorDiscoveryClient {\n private readonly mirrorNode: MirrorNodeClient;\n private readonly registryTopicId: string;\n private readonly cacheTtlMs: number;\n private cache: ValidatorCache | null = null;\n\n constructor(config: ValidatorDiscoveryConfig) {\n const mirrorNodeUrl = config.mirrorNodeUrl || MIRROR_NODE_URLS[config.network];\n if (!mirrorNodeUrl) {\n throw new Error(`Unknown network: ${config.network}`);\n }\n\n this.mirrorNode = new MirrorNodeClient({\n baseUrl: mirrorNodeUrl,\n allowInsecure: config.allowInsecure,\n });\n this.registryTopicId = config.registryTopicId;\n this.cacheTtlMs = config.cacheTtlMs ?? 60000; // 1 minute default\n }\n\n /**\n * Get all active validators from the registry\n *\n * Results are cached for efficiency. Use `forceRefresh` to bypass cache.\n *\n * @param forceRefresh - Force refresh from mirror node\n * @returns List of active validators\n */\n async getValidators(forceRefresh = false): Promise<ValidatorInfo[]> {\n // Return cached data if valid\n if (!forceRefresh && this.cache && this.isCacheValid()) {\n return this.cache.validators;\n }\n\n // Fetch from mirror node\n const messages = await this.mirrorNode.getAllTopicMessages(\n this.registryTopicId,\n 500 // Max messages to fetch\n );\n\n // Parse and deduplicate validators\n const validatorMap = new Map<string, ValidatorInfo>();\n const leftValidators = new Set<string>();\n\n // Process messages (newest first since we fetch desc order)\n for (const msg of messages) {\n try {\n const content = MirrorNodeClient.decodeMessage(msg.message);\n const raw = JSON.parse(content) as Record<string, unknown>;\n const entry = normalizeRegistryEntry(raw);\n if (!entry) continue;\n\n // Track leave events\n if (entry.messageType === 'validator.leave') {\n leftValidators.add(entry.nodeId);\n continue;\n }\n\n // Skip if validator has left\n if (leftValidators.has(entry.nodeId)) {\n continue;\n }\n\n // Keep only the latest entry per nodeId\n if (!validatorMap.has(entry.nodeId)) {\n validatorMap.set(entry.nodeId, entry);\n }\n } catch {\n // Skip unparseable messages\n continue;\n }\n }\n\n const validators = Array.from(validatorMap.values());\n\n // Update cache\n this.cache = {\n validators,\n lastUpdated: Date.now(),\n };\n\n return validators;\n }\n\n /**\n * Get validators with API endpoints available\n *\n * @param forceRefresh - Force refresh from mirror node\n * @returns Validators with apiEndpoint configured\n */\n async getValidatorsWithEndpoints(forceRefresh = false): Promise<ValidatorInfo[]> {\n const validators = await this.getValidators(forceRefresh);\n return validators.filter((v) => v.networkEndpoints?.apiEndpoint);\n }\n\n /**\n * Get a random validator from the registry\n *\n * @param forceRefresh - Force refresh from mirror node\n * @returns Random validator info or null if none available\n */\n async getRandomValidator(forceRefresh = false): Promise<ValidatorInfo | null> {\n const validators = await this.getValidatorsWithEndpoints(forceRefresh);\n\n if (validators.length === 0) {\n return null;\n }\n\n // Use crypto.getRandomValues for cryptographically secure random selection\n const randomBytes = new Uint32Array(1);\n crypto.getRandomValues(randomBytes);\n const randomIndex = randomBytes[0] % validators.length;\n return validators[randomIndex];\n }\n\n /**\n * Get a random validator API endpoint URL\n *\n * @param forceRefresh - Force refresh from mirror node\n * @returns Random validator API URL or null if none available\n */\n async getRandomValidatorUrl(forceRefresh = false): Promise<string | null> {\n const validator = await this.getRandomValidator(forceRefresh);\n return validator?.networkEndpoints?.apiEndpoint ?? null;\n }\n\n /**\n * Get validator by node ID\n *\n * @param nodeId - Validator node ID (e.g., 'validator-1')\n * @param forceRefresh - Force refresh from mirror node\n * @returns Validator info or null if not found\n */\n async getValidatorByNodeId(nodeId: string, forceRefresh = false): Promise<ValidatorInfo | null> {\n const validators = await this.getValidators(forceRefresh);\n return validators.find((v) => v.nodeId === nodeId) ?? null;\n }\n\n /**\n * Get validators by capability\n *\n * @param capability - Required capability (e.g., 'hedera', 'xrpl', 'dkg')\n * @param forceRefresh - Force refresh from mirror node\n * @returns Validators with the specified capability\n */\n async getValidatorsByCapability(\n capability: string,\n forceRefresh = false\n ): Promise<ValidatorInfo[]> {\n const validators = await this.getValidatorsWithEndpoints(forceRefresh);\n return validators.filter((v) => v.capabilities?.includes(capability));\n }\n\n /**\n * Clear the validator cache\n */\n clearCache(): void {\n this.cache = null;\n }\n\n /**\n * Check if cache is still valid\n */\n private isCacheValid(): boolean {\n if (!this.cache) return false;\n return Date.now() - this.cache.lastUpdated < this.cacheTtlMs;\n }\n}\n\n/**\n * Normalize a raw registry message into a ValidatorInfo.\n *\n * Accepts two shapes observed on real HCS registry topics:\n *\n * 1. Canonical (emitted by chain-hedera ValidatorRegistryService):\n * { messageType: 'validator.join'|'validator.leave'|'validator.update',\n * nodeId, networkEndpoints: { apiEndpoint, ... }, ... }\n *\n * 2. Legacy / multisig-consensus (emitted by ops / genesis scripts):\n * { type: 'validator.register', validatorId, endpoint, capabilities,\n * publicKey, accountId, network, ... }\n *\n * Token-scoped validator registrations (validatorType === 'token') are ignored\n * — those are DAO token validators, not node validators. Returns null when the\n * entry doesn't represent a node validator.\n */\nfunction normalizeRegistryEntry(raw: Record<string, unknown>): ValidatorInfo | null {\n // Canonical shape: already a ValidatorInfo\n if (raw.messageType && typeof raw.nodeId === 'string') {\n return raw as unknown as ValidatorInfo;\n }\n\n // Legacy shape: { type: 'validator.register', validatorId, endpoint, ... }\n if (raw.type === 'validator.register') {\n // Skip token validator registrations - they aren't nodes\n if (raw.validatorType && raw.validatorType !== undefined && raw.validatorType !== null) {\n if (typeof raw.validatorType === 'string' && raw.validatorType !== 'node') {\n return null;\n }\n }\n\n const nodeId =\n (typeof raw.validatorId === 'string' && raw.validatorId) ||\n (typeof raw.nodeId === 'string' && raw.nodeId) ||\n null;\n if (!nodeId) return null;\n\n const endpoint = typeof raw.endpoint === 'string' ? raw.endpoint : undefined;\n if (!endpoint) return null;\n\n const capabilities = Array.isArray(raw.capabilities)\n ? (raw.capabilities as unknown[]).filter((c): c is string => typeof c === 'string')\n : undefined;\n\n return {\n validatorTimestamp: typeof raw.timestamp === 'string' ? raw.timestamp : '',\n nodeId,\n type: 'consensus',\n networkEndpoints: { apiEndpoint: endpoint },\n publicKey: typeof raw.publicKey === 'string' ? raw.publicKey : undefined,\n capabilities,\n metadata: {},\n registeredAt: typeof raw.timestamp === 'string' ? raw.timestamp : '',\n messageType: 'validator.join',\n };\n }\n\n // Unknown / unrelated message type (e.g., token validator registrations)\n return null;\n}\n","/**\n * Cluster Discovery Client.\n *\n * SDK-side consumer of the service-registry distribution layer\n * (validator `GET /api/v3/discovery/clusters`). Instead of pinning one\n * baseUrl, the caller supplies a bootstrap-seed list and the client\n * random-picks an active cluster per request, so SDK consumers automatically\n * follow permissionless cluster join/leave without code edits.\n *\n * Resolution chain:\n * 1. HTTP fetch of `/api/v3/discovery/clusters` from each bootstrap seed\n * in order; take the first successful response.\n * 2. (Optional) HCS trust-anchor membership cross-check — verify that\n * every returned nodeId appears in the HCS validator registry and\n * that the publicKey matches. A bootstrap seed cannot inject a rogue\n * cluster whose nodeIds aren't on-chain.\n * 3. Random-pick over the verified set.\n *\n * The {@link ValidatorDiscoveryClient} (HCS mirror-node read, per-validator\n * granularity) stays available as the HCS-direct fallback / trust anchor —\n * it is the only path that doesn't require any HTTP-reachable cluster.\n */\n\nimport { ValidatorDiscoveryClient, type ValidatorDiscoveryConfig } from './validator-discovery';\n\n/**\n * Cluster-level endpoint metadata as exposed by the validator's\n * `/api/v3/discovery/clusters` HTTP endpoint. Mirrors the on-wire shape\n * defined server-side by the service-registry cluster-endpoints payload.\n */\nexport interface ClusterEndpointsView {\n clusterId: string;\n gatewayUrl: string;\n harborUrl?: string;\n natsUrl?: string;\n publicIp?: string;\n region?: string;\n}\n\n/**\n * Cluster info as returned by `getClusters()`. `nodeIds` are the validator\n * nodeIds whose announcements contributed to this cluster's record —\n * useful for HCS trust-anchor cross-checking.\n */\nexport interface ClusterInfo {\n clusterId: string;\n endpoints: ClusterEndpointsView;\n nodeIds: string[];\n}\n\nexport interface ClusterDiscoveryConfig {\n /**\n * Bootstrap seeds — fully-qualified URLs that respond to\n * `GET /api/v3/discovery/clusters`. The SDK tries them in order on each\n * refresh; the first success wins. **Order is the operator's\n * preference signal** (e.g., list a Cloudflare-fronted hostname first,\n * then individual cluster ingress IPs as backstops).\n */\n bootstrap: string[];\n\n /** Cache TTL in milliseconds (default: 60_000 — same as HCS path). */\n cacheTtlMs?: number;\n\n /**\n * Per-bootstrap fetch timeout in milliseconds (default: 5_000). Keep\n * tight: when the first seed is unreachable, we want to fall through\n * to the next without blocking the SDK call for long.\n */\n fetchTimeoutMs?: number;\n\n /**\n * Optional HCS trust anchor. When supplied, the SDK lazily loads the\n * on-chain validator-registry set and verifies that:\n *\n * - every cluster's `nodeIds` appears in the HCS registry, and\n * - the on-chain `publicKey` for each nodeId matches the HTTP\n * response (when the discovery endpoint exposes it).\n *\n * Clusters that fail the cross-check are dropped silently. A logged\n * warning would normally accompany this, but the SDK is environment-\n * agnostic (browser, Node, edge) — surfacing via the returned set is\n * the conservative contract.\n *\n * The anchor performs membership cross-checking only; cryptographic\n * per-record signature verification of the DKG-signed payload is not\n * performed here.\n */\n trustAnchor?: ValidatorDiscoveryConfig;\n\n /** Allow HTTP (insecure) connections — only for local development. */\n allowInsecure?: boolean;\n}\n\ninterface ClusterCache {\n clusters: ClusterInfo[];\n lastUpdated: number;\n}\n\n/**\n * Cluster Discovery Client — HTTP-driven, random-pick across an active\n * cluster set with optional on-chain trust anchor.\n */\nexport class ClusterDiscoveryClient {\n private readonly bootstrap: string[];\n private readonly cacheTtlMs: number;\n private readonly fetchTimeoutMs: number;\n private readonly allowInsecure: boolean;\n private readonly trustAnchorClient: ValidatorDiscoveryClient | null;\n private cache: ClusterCache | null = null;\n\n constructor(config: ClusterDiscoveryConfig) {\n if (!config.bootstrap || config.bootstrap.length === 0) {\n throw new Error('ClusterDiscoveryClient: bootstrap must list at least one seed URL');\n }\n if (!config.allowInsecure) {\n for (const seed of config.bootstrap) {\n if (!seed.startsWith('https://')) {\n throw new Error(\n `ClusterDiscoveryClient: bootstrap seed \"${seed}\" is not HTTPS. ` +\n `Set allowInsecure=true for local development only.`,\n );\n }\n }\n }\n this.bootstrap = config.bootstrap;\n this.cacheTtlMs = config.cacheTtlMs ?? 60_000;\n this.fetchTimeoutMs = config.fetchTimeoutMs ?? 5_000;\n this.allowInsecure = config.allowInsecure ?? false;\n this.trustAnchorClient = config.trustAnchor\n ? new ValidatorDiscoveryClient(config.trustAnchor)\n : null;\n }\n\n /**\n * Fetch the active-cluster set, with caching.\n *\n * Tries each bootstrap seed in order until one returns HTTP 200 with a\n * parseable cluster list. If all seeds fail, throws — callers can\n * handle by falling back to a previously-cached value if they want,\n * or by initializing with multiple seeds.\n */\n async getClusters(forceRefresh = false): Promise<ClusterInfo[]> {\n if (!forceRefresh && this.cache && this.isCacheValid()) {\n return this.cache.clusters;\n }\n\n const fetched = await this.fetchFromFirstAvailableSeed();\n const verified = this.trustAnchorClient ? await this.verifyAgainstTrustAnchor(fetched) : fetched;\n\n this.cache = { clusters: verified, lastUpdated: Date.now() };\n return verified;\n }\n\n /**\n * Random pick over the active-cluster set. Returns `null` when no\n * cluster passes verification (empty registry / all-rejected anchor).\n *\n * Uses `crypto.getRandomValues` when available (browsers, Deno, modern\n * Node) for cryptographic-strength randomness; `Math.random` is a\n * fallback for older runtimes where `globalThis.crypto` is undefined.\n * Discovery isn't cryptographically sensitive — load distribution is\n * the goal here.\n */\n async getRandomCluster(forceRefresh = false): Promise<ClusterInfo | null> {\n const clusters = await this.getClusters(forceRefresh);\n if (clusters.length === 0) return null;\n return clusters[this.pickRandomIndex(clusters.length)];\n }\n\n /**\n * Convenience wrapper returning just the gateway URL of a random\n * active cluster. Feed this to `BaasClient` (the host BaaS tier) — e.g.\n * `new BaasClient({ hostUrl, pathPrefix: '/host' })` or\n * `BaasClient.connectToCluster({ network })`. Do NOT feed it to\n * `SmartEngineClient`: that client's raw `/api/v3/*` tier is un-ingressed at\n * the gateway and will 404 (it requires an explicit `validatorBaseUrl`).\n */\n async getRandomGatewayUrl(forceRefresh = false): Promise<string | null> {\n const cluster = await this.getRandomCluster(forceRefresh);\n return cluster?.endpoints.gatewayUrl ?? null;\n }\n\n /** Per-clusterId lookup, useful for \"stick the SDK to cluster X\" flows. */\n async getClusterById(clusterId: string, forceRefresh = false): Promise<ClusterInfo | null> {\n const clusters = await this.getClusters(forceRefresh);\n return clusters.find((c) => c.clusterId === clusterId) ?? null;\n }\n\n clearCache(): void {\n this.cache = null;\n }\n\n private isCacheValid(): boolean {\n if (!this.cache) return false;\n return Date.now() - this.cache.lastUpdated < this.cacheTtlMs;\n }\n\n private async fetchFromFirstAvailableSeed(): Promise<ClusterInfo[]> {\n const errors: string[] = [];\n for (const seed of this.bootstrap) {\n try {\n return await this.fetchClustersFromSeed(seed);\n } catch (err) {\n errors.push(`${seed}: ${(err as Error).message}`);\n }\n }\n throw new Error(\n `ClusterDiscoveryClient: no bootstrap seed reachable. Attempts:\\n ${errors.join('\\n ')}`,\n );\n }\n\n private async fetchClustersFromSeed(seed: string): Promise<ClusterInfo[]> {\n const url = `${seed.replace(/\\/$/, '')}/api/v3/discovery/clusters`;\n const ctrl = new AbortController();\n const timer = setTimeout(() => ctrl.abort(), this.fetchTimeoutMs);\n try {\n const res = await fetch(url, { signal: ctrl.signal });\n if (!res.ok) {\n throw new Error(`HTTP ${res.status}`);\n }\n const body = (await res.json()) as {\n clusters?: Array<{\n clusterId?: unknown;\n endpoints?: Record<string, unknown>;\n nodeIds?: unknown;\n }>;\n };\n if (!Array.isArray(body.clusters)) {\n throw new Error('response missing clusters[]');\n }\n return body.clusters\n .map((c) => this.normalizeClusterEntry(c))\n .filter((c): c is ClusterInfo => c !== null);\n } finally {\n clearTimeout(timer);\n }\n }\n\n private normalizeClusterEntry(raw: {\n clusterId?: unknown;\n endpoints?: Record<string, unknown>;\n nodeIds?: unknown;\n }): ClusterInfo | null {\n if (typeof raw.clusterId !== 'string' || !raw.clusterId) return null;\n if (!raw.endpoints || typeof raw.endpoints !== 'object') return null;\n const ep = raw.endpoints as Record<string, unknown>;\n if (typeof ep.gatewayUrl !== 'string' || !ep.gatewayUrl) return null;\n if (!this.allowInsecure && !ep.gatewayUrl.startsWith('https://')) {\n // Drop non-HTTPS gateways in secure mode — never silently accept\n // a downgrade attack via a poisoned bootstrap response.\n return null;\n }\n const nodeIds = Array.isArray(raw.nodeIds)\n ? raw.nodeIds.filter((n): n is string => typeof n === 'string')\n : [];\n return {\n clusterId: raw.clusterId,\n endpoints: {\n clusterId: raw.clusterId,\n gatewayUrl: ep.gatewayUrl,\n harborUrl: typeof ep.harborUrl === 'string' ? ep.harborUrl : undefined,\n natsUrl: typeof ep.natsUrl === 'string' ? ep.natsUrl : undefined,\n publicIp: typeof ep.publicIp === 'string' ? ep.publicIp : undefined,\n region: typeof ep.region === 'string' ? ep.region : undefined,\n },\n nodeIds,\n };\n }\n\n /**\n * Cross-check the HTTP-fetched cluster set against the HCS validator\n * registry. Clusters whose nodeIds are not on-chain are dropped.\n *\n * Two failure modes are deliberately silent here:\n * - the HCS read itself throws → original list is returned\n * un-verified. Trust-anchor is advisory; a network partition\n * between SDK and Hedera mirror shouldn't strand the SDK.\n * - the HCS read returns empty (mirror node lag, wrong topicId)\n * → original list is returned. Better to keep working off\n * possibly-stale-but-real data than reject every cluster.\n *\n * Both behaviors are why this is called \"trust *anchor*\", not\n * \"trust gate\". Crypto-strong gating is a follow-up.\n */\n private async verifyAgainstTrustAnchor(clusters: ClusterInfo[]): Promise<ClusterInfo[]> {\n if (!this.trustAnchorClient || clusters.length === 0) return clusters;\n let onChainNodeIds: Set<string>;\n try {\n const validators = await this.trustAnchorClient.getValidators();\n if (validators.length === 0) return clusters;\n onChainNodeIds = new Set(validators.map((v) => v.nodeId));\n } catch {\n return clusters;\n }\n return clusters.filter((c) => {\n if (c.nodeIds.length === 0) {\n // The discovery endpoint surfaces nodeIds for verifiability.\n // An entry with none was either (a) emitted by an older\n // validator, or (b) crafted to evade the check. Either way,\n // drop it to keep the contract sharp.\n return false;\n }\n return c.nodeIds.some((id) => onChainNodeIds.has(id));\n });\n }\n\n private pickRandomIndex(n: number): number {\n if (n <= 1) return 0;\n const g = (globalThis as { crypto?: { getRandomValues?: (a: Uint32Array) => Uint32Array } }).crypto;\n if (g?.getRandomValues) {\n const buf = new Uint32Array(1);\n g.getRandomValues(buf);\n return buf[0] % n;\n }\n return Math.floor(Math.random() * n);\n }\n}\n","/**\n * Shared HTTP Client\n *\n * Unified HTTP layer used by all SDK clients (SmartEngineClient, SmartGatewayClient, BaasClient).\n * Handles authentication headers, timeouts, error handling, and multipart uploads.\n */\n\n/**\n * Per-call request options. Lets a single request carry extra context the\n * client-wide config can't express.\n *\n * The motivating case is multi-tenant BaaS: an app-as-proxy holds its OWN\n * Bearer auth (set once on the client), but each downstream request acts on\n * behalf of a specific END USER whose session token must reach the host for\n * per-user metering/quota. That token is per-call, not per-client — so it\n * rides here as `customerToken` and is attached as `X-Customer-Session-Token`\n * for this request only.\n */\nexport type HttpCallOptions = {\n /**\n * End-user customer-session token, forwarded to the host as\n * `X-Customer-Session-Token` for this request only. Used by app-as-proxy\n * flows so the host meters the end user, not the app.\n */\n customerToken?: string;\n /**\n * Act ON BEHALF OF an end user for OWNER-GATED routes (e.g. agents\n * fund/withdraw/execute). The value is that user's Mode-1 customer-session\n * JWT (the `token` from `baas.customerSession.verify()`). It is forwarded\n * verbatim as BOTH `Authorization: Bearer <jwt>` (so the host pins the caller\n * to that user) AND `X-Customer-Session-Claim` (the host's claim-resolution\n * header). No client-side signing: owner routes accept only this Mode-1 JWT —\n * the Mode-2 BLS claim is minted host-side and is rejected on owner routes.\n * Distinct from {@link customerToken} (metering-only `X-Customer-Session-Token`).\n */\n onBehalfOf?: string;\n /** Extra per-call headers (escape hatch); merged last, wins on conflict. */\n headers?: Record<string, string>;\n};\n\n/**\n * HTTP client interface consumed by all sub-clients.\n * Sub-clients only depend on this interface, never on fetch directly.\n *\n * Every method takes an optional trailing {@link HttpCallOptions} so a single\n * request can carry an end-user `customerToken` without mutating client state.\n */\nexport type HttpClient = {\n post<T = any>(path: string, body: unknown, opts?: HttpCallOptions): Promise<T>;\n get<T = any>(path: string, opts?: HttpCallOptions): Promise<T>;\n put<T = any>(path: string, body: unknown, opts?: HttpCallOptions): Promise<T>;\n patch<T = any>(path: string, body: unknown, opts?: HttpCallOptions): Promise<T>;\n delete<T = any>(path: string, opts?: HttpCallOptions): Promise<T>;\n /**\n * GET a non-JSON body. Returns the raw response text without attempting\n * to parse it. Required for endpoints that emit Prometheus exposition,\n * plain logs, or any other `text/*` content-type — the default\n * {@link HttpClient.get} eagerly `JSON.parse`s and would corrupt those\n * payloads.\n */\n getText(path: string, opts?: HttpCallOptions): Promise<string>;\n /**\n * GET a binary body as raw bytes. Returns a {@link Uint8Array} without any\n * decoding — required for file downloads and any non-text content where the\n * default {@link HttpClient.get}'s `JSON.parse` would corrupt the payload.\n */\n getBinary(path: string, opts?: HttpCallOptions): Promise<Uint8Array>;\n /**\n * GET a binary body WITH its response metadata — the bytes plus the\n * `content-type` and (parsed) `content-disposition` filename. {@link getBinary}\n * discards the headers; this variant is for download endpoints whose caller\n * must echo the content-type back (the host derives it from the stored file's\n * metadata, so a bytes-only download can't recover it).\n */\n getBinaryWithMeta(\n path: string,\n opts?: HttpCallOptions,\n ): Promise<{ bytes: Uint8Array; contentType?: string; filename?: string }>;\n /**\n * Upload a file with `multipart/form-data`.\n *\n * `fieldName` defaults to `'file'` for back-compat; callers whose\n * server-side handler uses a different multer field name (e.g.\n * `'bundle'` for SPA tarball uploads) MUST override.\n */\n upload<T = any>(\n path: string,\n file: Blob | Buffer,\n filename: string,\n metadata?: Record<string, string>,\n fieldName?: string,\n opts?: HttpCallOptions,\n ): Promise<T>;\n /**\n * Update the Bearer auth token used on subsequent requests. Pass\n * `undefined` to clear the Authorization header (e.g. on logout).\n *\n * Typed accessor — replaces the previous `(client as any).authToken`\n * peek that scattered across the SDK.\n */\n setAuthToken(token: string | undefined): void;\n /**\n * Return the currently configured Bearer auth token, or `undefined`\n * when no token is set.\n */\n getAuthToken(): string | undefined;\n};\n\n/**\n * Configuration for creating an HttpClient instance\n */\nexport type HttpClientConfig = {\n /** Base URL for all requests (e.g. https://validator.example.com/api/v3) */\n baseUrl: string;\n /** Bearer token for Authorization header */\n authToken?: string;\n /** API key for X-API-Key header */\n apiKey?: string;\n /** Request timeout in milliseconds (default: 30000) */\n timeout?: number;\n /**\n * Optional hook invoked when a request returns 401 Unauthorized. Lets the\n * client owner refresh the session (e.g. re-run the web3 challenge-response\n * and call {@link HttpClient.setAuthToken}); the failed request is then\n * retried once with the new token. Calls to `/api/v3/{,baas/}auth/*` are excluded so the\n * refresh flow itself can never recurse, and concurrent 401s share a single\n * in-flight refresh. Without this hook a 401 propagates unchanged.\n */\n onUnauthorized?: () => Promise<void>;\n};\n\n/**\n * SDK-level error class used across all clients\n */\nexport class SdkHttpError extends Error {\n constructor(\n message: string,\n public readonly statusCode: number,\n public readonly details?: any\n ) {\n super(message);\n this.name = 'SdkHttpError';\n }\n\n /**\n * True for transient failures worth retrying: a 5xx, a 429 (rate limit), a 408\n * (timeout), or a 0 (network/abort). Deterministic 4xx client errors are not.\n */\n get isRetryable(): boolean {\n return (\n this.statusCode === 0 ||\n this.statusCode === 408 ||\n this.statusCode === 429 ||\n this.statusCode >= 500\n );\n }\n}\n\n/**\n * Create a concrete HttpClient from config.\n * This is the single place where `fetch` is called in the entire SDK.\n */\nexport function createHttpClient(config: HttpClientConfig): HttpClient {\n const timeout = config.timeout ?? 30000;\n\n function getHeaders(contentType?: string, opts?: HttpCallOptions): Record<string, string> {\n const headers: Record<string, string> = {};\n if (contentType) {\n headers['Content-Type'] = contentType;\n }\n if (config.authToken) {\n headers['Authorization'] = `Bearer ${config.authToken}`;\n }\n if (config.apiKey) {\n headers['X-API-Key'] = config.apiKey;\n }\n // Per-call end-user token for app-as-proxy metering. Distinct from the\n // app's own Authorization above — both can ride the same request.\n if (opts?.customerToken) {\n headers['X-Customer-Session-Token'] = opts.customerToken;\n }\n // Owner-acting: forward the end user's Mode-1 JWT as the Authorization\n // bearer (overriding the app token for this request) AND the host's\n // claim-resolution header. Verbatim pass-through — no signing.\n if (opts?.onBehalfOf) {\n headers['Authorization'] = `Bearer ${opts.onBehalfOf}`;\n headers['X-Customer-Session-Claim'] = opts.onBehalfOf;\n }\n if (opts?.headers) {\n Object.assign(headers, opts.headers);\n }\n return headers;\n }\n\n /** Update auth token (e.g. after authentication flow) */\n function setAuthToken(token: string | undefined): void {\n config.authToken = token;\n }\n\n /** Read the current auth token (or undefined when none is set). */\n function getAuthToken(): string | undefined {\n return config.authToken;\n }\n\n async function request<T>(method: string, path: string, body?: unknown, opts?: HttpCallOptions): Promise<T> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), timeout);\n\n try {\n const init: RequestInit = {\n method,\n headers: getHeaders('application/json', opts),\n signal: controller.signal,\n };\n\n if (body !== undefined) {\n init.body = JSON.stringify(body);\n }\n\n const response = await fetch(url, init);\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const errorData = await response.json().catch(() => ({})) as Record<string, unknown>;\n throw new SdkHttpError(\n (errorData.message as string) || `API error: ${response.status} ${response.statusText}`,\n response.status,\n errorData\n );\n }\n\n // Handle empty responses (204 No Content)\n const text = await response.text();\n if (!text) return undefined as T;\n return JSON.parse(text) as T;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Request timeout', 408);\n }\n throw new SdkHttpError(`Network error: ${err.message}`, 0, error);\n }\n }\n\n async function getText(path: string, opts?: HttpCallOptions): Promise<string> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: getHeaders(undefined, opts),\n signal: controller.signal,\n });\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n // The error path still tries JSON — server-side error responses\n // are JSON even when the success path is text/plain (e.g.\n // Prometheus metrics). Fall back to text if that fails.\n const errBody = (await response.json().catch(() => ({}))) as Record<string, unknown>;\n throw new SdkHttpError(\n (errBody.message as string) || `API error: ${response.status} ${response.statusText}`,\n response.status,\n errBody,\n );\n }\n\n return await response.text();\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Request timeout', 408);\n }\n throw new SdkHttpError(`Network error: ${err.message}`, 0, error);\n }\n }\n\n async function getBinary(path: string, opts?: HttpCallOptions): Promise<Uint8Array> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: getHeaders(undefined, opts),\n signal: controller.signal,\n });\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n // Error bodies stay JSON even when the success body is binary.\n const errBody = (await response.json().catch(() => ({}))) as Record<string, unknown>;\n throw new SdkHttpError(\n (errBody.message as string) || `API error: ${response.status} ${response.statusText}`,\n response.status,\n errBody,\n );\n }\n\n // Raw bytes — never JSON.parse / text-decode, which would corrupt a file.\n return new Uint8Array(await response.arrayBuffer());\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Request timeout', 408);\n }\n throw new SdkHttpError(`Network error: ${err.message}`, 0, error);\n }\n }\n\n async function getBinaryWithMeta(\n path: string,\n opts?: HttpCallOptions,\n ): Promise<{ bytes: Uint8Array; contentType?: string; filename?: string }> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: getHeaders(undefined, opts),\n signal: controller.signal,\n });\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const errBody = (await response.json().catch(() => ({}))) as Record<string, unknown>;\n throw new SdkHttpError(\n (errBody.message as string) || `API error: ${response.status} ${response.statusText}`,\n response.status,\n errBody,\n );\n }\n\n const bytes = new Uint8Array(await response.arrayBuffer());\n const contentType = response.headers.get('content-type') ?? undefined;\n // Pull `filename` out of content-disposition (filename* RFC 5987 or plain).\n const disposition = response.headers.get('content-disposition') ?? '';\n const match = /filename\\*?=(?:UTF-8'')?\"?([^\"\\n;]+)\"?/i.exec(disposition);\n const filename = match ? decodeURIComponent(match[1].trim()) : undefined;\n return { bytes, contentType, filename };\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Request timeout', 408);\n }\n throw new SdkHttpError(`Network error: ${err.message}`, 0, error);\n }\n }\n\n async function upload<T>(\n path: string,\n file: Blob | Buffer,\n filename: string,\n metadata?: Record<string, string>,\n fieldName: string = 'file',\n opts?: HttpCallOptions,\n ): Promise<T> {\n const url = `${config.baseUrl}${path}`;\n const controller = new AbortController();\n // Uploads get 2x timeout\n const timeoutId = setTimeout(() => controller.abort(), timeout * 2);\n\n try {\n const formData = new FormData();\n const blob = file instanceof Blob ? file : new Blob([new Uint8Array(file as Buffer)]);\n formData.append(fieldName, blob, filename);\n\n if (metadata) {\n for (const [key, value] of Object.entries(metadata)) {\n formData.append(key, value);\n }\n }\n\n // Don't set Content-Type — browser/node will set multipart boundary\n const headers: Record<string, string> = {};\n if (config.authToken) {\n headers['Authorization'] = `Bearer ${config.authToken}`;\n }\n if (config.apiKey) {\n headers['X-API-Key'] = config.apiKey;\n }\n if (opts?.customerToken) {\n headers['X-Customer-Session-Token'] = opts.customerToken;\n }\n if (opts?.onBehalfOf) {\n headers['Authorization'] = `Bearer ${opts.onBehalfOf}`;\n headers['X-Customer-Session-Claim'] = opts.onBehalfOf;\n }\n if (opts?.headers) {\n Object.assign(headers, opts.headers);\n }\n\n const response = await fetch(url, {\n method: 'POST',\n headers,\n body: formData,\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const errorData = await response.json().catch(() => ({})) as Record<string, unknown>;\n throw new SdkHttpError(\n (errorData.message as string) || `Upload error: ${response.status} ${response.statusText}`,\n response.status,\n errorData\n );\n }\n\n return response.json() as Promise<T>;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof SdkHttpError) throw error;\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new SdkHttpError('Upload timeout', 408);\n }\n throw new SdkHttpError(`Upload error: ${err.message}`, 0, error);\n }\n }\n\n // Transparent session refresh: when a request 401s, invoke `onUnauthorized`\n // (which re-authenticates and updates the token) and retry the request once.\n // Concurrent 401s share a single in-flight refresh; `/api/v3/{,baas/}auth/*` is excluded\n // so the refresh's own challenge/verify can never trigger another refresh.\n let reauthInFlight: Promise<void> | null = null;\n async function withAuthRetry<T>(path: string, op: () => Promise<T>): Promise<T> {\n try {\n return await op();\n } catch (error) {\n const refreshable =\n !!config.onUnauthorized &&\n !path.startsWith('/api/v3/baas/auth/') &&\n !path.startsWith('/api/v3/auth/') &&\n error instanceof SdkHttpError &&\n error.statusCode === 401;\n if (!refreshable) throw error;\n if (!reauthInFlight) {\n reauthInFlight = Promise.resolve(config.onUnauthorized!()).finally(() => {\n reauthInFlight = null;\n });\n }\n try {\n await reauthInFlight;\n } catch {\n throw error; // refresh failed → surface the original 401\n }\n return await op(); // retry once with the refreshed token\n }\n }\n\n const client: HttpClient = {\n post: <T>(path: string, body: unknown, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('POST', path, body, opts)),\n get: <T>(path: string, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('GET', path, undefined, opts)),\n put: <T>(path: string, body: unknown, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('PUT', path, body, opts)),\n patch: <T>(path: string, body: unknown, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('PATCH', path, body, opts)),\n delete: <T>(path: string, opts?: HttpCallOptions) => withAuthRetry(path, () => request<T>('DELETE', path, undefined, opts)),\n getText: (path: string, opts?: HttpCallOptions) => withAuthRetry(path, () => getText(path, opts)),\n getBinary: (path: string, opts?: HttpCallOptions) => withAuthRetry(path, () => getBinary(path, opts)),\n getBinaryWithMeta: (path: string, opts?: HttpCallOptions) =>\n withAuthRetry(path, () => getBinaryWithMeta(path, opts)),\n upload: ((path: string, file: Blob | Buffer, filename: string, metadata?: Record<string, string>, fieldName?: string, opts?: HttpCallOptions) =>\n withAuthRetry(path, () => upload(path, file, filename, metadata, fieldName, opts))) as HttpClient['upload'],\n setAuthToken,\n getAuthToken,\n };\n\n return client;\n}\n\n/**\n * Encode a path parameter to prevent injection attacks.\n * Removes path traversal attempts and encodes special characters.\n */\nexport function encodePathParam(param: string): string {\n return encodeURIComponent(param).replace(/%2F/gi, '');\n}\n\n/**\n * Body shape of an HTTP 403 `rule_rejected` envelope raised by the validator's\n * rule-enforcement hooks (e.g. the NFT-transfer hook):\n *\n * ```json\n * { \"error\": \"rule_rejected\", \"reason\": \"<atom-reason>\", \"ruleAtoms\": [\"SoulboundNftAtom\"] }\n * ```\n */\nexport interface RuleRejectedDetails {\n /** Literal discriminator — always 'rule_rejected'. */\n error: 'rule_rejected';\n /** Atom-supplied reason string, e.g. 'soulbound_transfer_rejected'. */\n reason: string;\n /** Names of the rule atoms that fired the rejection. */\n ruleAtoms: string[];\n}\n\n/**\n * Type predicate: narrows an unknown error to a 403 `rule_rejected` envelope.\n *\n * Use in smart-app code to branch on rules-engine rejections without\n * inspecting raw HTTP details:\n *\n * ```typescript\n * try {\n * await sdk.transactions.prepareNftTransfer({ chain: 'hedera', ... });\n * } catch (err) {\n * if (isRuleRejected(err)) {\n * console.log(`Blocked by ${err.details.ruleAtoms.join(', ')}: ${err.details.reason}`);\n * return;\n * }\n * throw err;\n * }\n * ```\n *\n * Status-code AND shape are both checked — non-403 errors and 403s without\n * the rule_rejected envelope (e.g. plain auth failures) return false.\n *\n * @public SDK-SOULBOUND-1\n */\nexport function isRuleRejected(\n err: unknown,\n): err is SdkHttpError & { details: RuleRejectedDetails } {\n if (!(err instanceof SdkHttpError)) return false;\n if (err.statusCode !== 403) return false;\n const d = err.details as unknown;\n if (d === null || typeof d !== 'object') return false;\n const obj = d as Record<string, unknown>;\n if (obj.error !== 'rule_rejected') return false;\n if (typeof obj.reason !== 'string') return false;\n if (!Array.isArray(obj.ruleAtoms)) return false;\n return obj.ruleAtoms.every((a) => typeof a === 'string');\n}\n\n/**\n * Type predicate: narrows an unknown error to the SDK's {@link SdkHttpError}.\n * Lets consumers branch on SDK HTTP failures without importing the class purely\n * for an `instanceof` check.\n */\nexport function isSmartEngineSdkError(err: unknown): err is SdkHttpError {\n return err instanceof SdkHttpError;\n}\n\n/**\n * Normalize any thrown value into an HTTP-shaped record a server (e.g. a NestJS\n * exception filter) can re-emit. An {@link SdkHttpError} maps verbatim; a sub-400\n * status (0 network / unexpected) is clamped to 502 Bad Gateway (a failed\n * upstream call is a gateway error, not a success); a non-SDK error becomes 500.\n * `isRetryable` follows {@link SdkHttpError.isRetryable}.\n */\nexport function toHttpError(err: unknown): {\n statusCode: number;\n code: string;\n message: string;\n isRetryable: boolean;\n details?: unknown;\n} {\n if (isSmartEngineSdkError(err)) {\n return {\n statusCode: err.statusCode >= 400 ? err.statusCode : 502,\n code: 'SDK_HTTP_ERROR',\n message: err.message,\n isRetryable: err.isRetryable,\n details: err.details,\n };\n }\n const message = err instanceof Error ? err.message : 'Unknown error';\n return { statusCode: 500, code: 'INTERNAL_ERROR', message, isRetryable: false };\n}\n","/**\n * Discovery Sub-Client — `client.discovery.*`\n *\n * Thin typed wrapper over the validator's `/api/v3/discovery/*` HTTP\n * surface. Backs the cluster-registry browser endpoints (active set,\n * all-nodes debug view, per-nodeId lookup) **and** the platform-image\n * manifest discovery endpoints (list, per-image versions, single-version\n * fetch, verify gate, signed envelopes).\n *\n * Trust model — discovery endpoints are intentionally `@Public`\n * server-side:\n *\n * - Cluster registry rows are signed cluster-internal data; the\n * advertised `publicKey` is the SDK's verification anchor.\n * - Platform-image manifests are DKG-threshold signed at publish time;\n * pulling them by SHA-256 digest + content-addressed verification\n * keeps the read surface authentication-free.\n *\n * The {@link ClusterDiscoveryClient} in this same module already wraps\n * the active-set endpoint for the bootstrap → random-pick connect flow.\n * This client exists for callers that want the **typed** endpoints\n * directly (operator dashboards, supply-chain auditors, smart-apps\n * inspecting validator membership).\n *\n * Mounted at `client.discovery` over the `/api/v3`-rooted shared\n * `HttpClient` — every method here resolves to `/api/v3/discovery/...`.\n */\n\nimport { encodePathParam, type HttpClient } from '../http';\n\n/**\n * Cluster endpoints payload, mirrored from the server-side\n * `ClusterEndpointsPayload` shape.\n *\n * Re-declared here (not imported from `./cluster-discovery`) so this\n * client stays compileable in environments that tree-shake the\n * mirror-node / HCS path out.\n */\nexport type DiscoveryClusterEndpoints = {\n clusterId: string;\n gatewayUrl: string;\n harborUrl?: string;\n natsUrl?: string;\n publicIp?: string;\n region?: string;\n};\n\n/**\n * Active-set cluster row returned by `GET /api/v3/discovery/clusters`.\n *\n * `nodeIds` is the validator-pod identity set whose announcements\n * contributed to this cluster's record — the HCS trust-anchor uses\n * these for cross-checking against the on-chain validator registry.\n */\nexport type DiscoveryClusterRecord = {\n clusterId: string;\n endpoints: DiscoveryClusterEndpoints;\n nodeIds: string[];\n};\n\n/**\n * Per-node registry row returned by `GET /api/v3/discovery/clusters/all`\n * and `GET /api/v3/discovery/clusters/:nodeId`. Carries the publish-time\n * `publicKey` (SDK's verification anchor), the cluster-internal `status`,\n * and the content-addressed envelope CID.\n */\nexport type DiscoveryNodeRecord = {\n nodeId: string;\n publicKey?: string;\n status?: string;\n endpoints: DiscoveryClusterEndpoints;\n endpointsCid: string;\n /** ISO-8601 timestamp of the last cluster-registry event for this node. */\n lastEventTs: string;\n};\n\n/**\n * Platform image manifest — content-addressed kubelet-pull payload.\n * Mirrors `PlatformImageManifest` from `service-registry.events.ts`.\n * Re-declared as an `unknown`-leaning structural type so the SDK does\n * not pull the full server-side schema package into customer bundles.\n */\nexport type DiscoveryPlatformImageManifest = {\n imageName: string;\n version: string;\n sha256digest: string;\n publishedAt: string;\n publisherNodeId?: string;\n metadata?: Record<string, unknown>;\n};\n\n/**\n * Signed platform-image envelope — manifest + DKG-threshold signature +\n * the cluster's aggregated public key. Used by external re-verifiers\n * that want to independently confirm authenticity without trusting\n * the discovery endpoint.\n */\nexport type DiscoveryPlatformImageEnvelope = {\n manifest: DiscoveryPlatformImageManifest;\n signature: string;\n publicKey: string;\n};\n\n/**\n * Result of the `/verify` gate — whether the supplied `sha256digest`\n * matches the on-record manifest for `(imageName, version)`. The\n * server returns a structured `{ verified, reason? }` object even on\n * mismatch so callers don't have to disambiguate HTTP 200 + 404 + 400.\n */\nexport type DiscoveryVerifyResult = {\n verified: boolean;\n reason?: string;\n};\n\n/**\n * Top-level discovery client.\n *\n * Exposes two namespaces via the `client.discovery` surface:\n *\n * - `clusters` (default — flat methods on this instance):\n * `listClusters` / `listAllClusters` / `getClusterByNode`.\n * - `platformImages` (sub-object): manifest browsing, per-version\n * fetch, content-addressed verify, signed envelope retrieval.\n *\n * The two namespaces share the underlying `/api/v3/discovery` URL\n * prefix; splitting them at the SDK boundary mirrors the server-side\n * controller split (`ServiceRegistryController` + `ImageManifestController`)\n * and keeps the API discoverable in IDE autocomplete.\n *\n * @example List active clusters + drill into platform images\n * ```ts\n * const { clusters } = await client.discovery.listClusters();\n * console.log(`${clusters.length} active clusters in this validator's registry view`);\n *\n * const manifests = await client.discovery.platformImages.list();\n * ```\n */\nexport class DiscoveryClient {\n /** Platform-image manifest discovery endpoints. */\n public readonly platformImages: PlatformImagesClient;\n\n constructor(private readonly http: HttpClient) {\n this.platformImages = new PlatformImagesClient(http);\n }\n\n /**\n * `GET /api/v3/discovery/clusters` — active-set cluster registry,\n * grouped by `clusterId`. This is the same data the bootstrap-seed\n * flow consumes for random-pick connect.\n */\n async listClusters(): Promise<{ clusters: DiscoveryClusterRecord[] }> {\n return this.http.get('/discovery/clusters');\n }\n\n /**\n * `GET /api/v3/discovery/clusters/all` — every node-level record\n * (debug / audit view). Includes nodes that the active-set filter\n * dropped (e.g. recently-departed validators still in the registry's\n * eventual-consistency window).\n */\n async listAllClusters(): Promise<{ records: DiscoveryNodeRecord[] }> {\n return this.http.get('/discovery/clusters/all');\n }\n\n /**\n * `GET /api/v3/discovery/clusters/:nodeId` — per-nodeId registry row.\n * Returns `{ record: null }` (not 404) when the nodeId is unknown to\n * this validator's registry view, so callers can branch without\n * try/catch.\n */\n async getClusterByNode(nodeId: string): Promise<{ record: DiscoveryNodeRecord | null }> {\n return this.http.get(`/discovery/clusters/${encodePathParam(nodeId)}`);\n }\n}\n\n/**\n * Platform-image manifest browser. Mounted under\n * `client.discovery.platformImages`.\n *\n * The kubelet pulls platform images by their `sha256digest` (per-image\n * content-addressed pinning at the deploy boundary); this client lets\n * smart-app builders inspect WHICH digests the cluster has DKG-signed\n * as canonical for `(imageName, version)` pairs.\n */\nexport class PlatformImagesClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * `GET /api/v3/discovery/platform-images` — every signed manifest the\n * cluster has on record. One row per `(imageName, version)` pair.\n */\n async list(): Promise<{ manifests: DiscoveryPlatformImageManifest[] }> {\n return this.http.get('/discovery/platform-images');\n }\n\n /**\n * `GET /api/v3/discovery/platform-images/envelopes` — full signed\n * envelopes (manifest + signature + publicKey). Heavier payload than\n * {@link list}; for external re-verifiers that want to independently\n * confirm authenticity.\n */\n async listEnvelopes(): Promise<{ envelopes: DiscoveryPlatformImageEnvelope[] }> {\n return this.http.get('/discovery/platform-images/envelopes');\n }\n\n /**\n * `GET /api/v3/discovery/platform-images/:imageName` — every version\n * of a single image. Useful for \"which tags has the cluster\n * authorized?\" queries.\n */\n async get(imageName: string): Promise<{\n imageName: string;\n manifests: DiscoveryPlatformImageManifest[];\n }> {\n return this.http.get(`/discovery/platform-images/${encodePathParam(imageName)}`);\n }\n\n /**\n * `GET /api/v3/discovery/platform-images/:imageName/:version` —\n * single signed manifest. Returns `{ manifest: null }` when the\n * `(imageName, version)` pair is unknown.\n */\n async getVersion(\n imageName: string,\n version: string,\n ): Promise<{ manifest: DiscoveryPlatformImageManifest | null }> {\n return this.http.get(\n `/discovery/platform-images/${encodePathParam(imageName)}/${encodePathParam(version)}`,\n );\n }\n\n /**\n * `GET /api/v3/discovery/platform-images/:imageName/:version/verify?digest=...`\n * — content-addressed verify gate. Returns `{ verified: true }` only\n * when the supplied SHA-256 digest matches the on-record manifest.\n *\n * Use before pulling an image off a registry to make sure you're\n * about to run cluster-signed bits and not whatever drifted into\n * the registry namespace.\n */\n async verify(\n imageName: string,\n version: string,\n digest: string,\n ): Promise<DiscoveryVerifyResult> {\n return this.http.get(\n `/discovery/platform-images/${encodePathParam(imageName)}/${encodePathParam(\n version,\n )}/verify?digest=${encodeURIComponent(digest)}`,\n );\n }\n}\n","/**\n * Network presets for the Smart Engines SDK.\n *\n * Built so SDK consumers don't have to hand-roll a gateway URL or remember\n * which HCS topic ID is the validator-registry trust anchor. The \"zero-\n * config\" entrypoint flow:\n *\n * ```ts\n * const baas = await BaasClient.connectToCluster({\n * network: 'testnet',\n * appId: 'app_abc',\n * });\n * ```\n *\n * ↓ the SDK internally:\n * 1. Resolves `KNOWN_NETWORKS['testnet'].bootstrap` to the canonical\n * `https://gateway.<network>.hsuite.network` entrypoint.\n * 2. Fetches `GET /api/v3/discovery/clusters` from that gateway.\n * 3. Random-picks an active cluster's gatewayUrl.\n * 4. Returns a `BaasClient`/`SmartEngineClient` pointed at that cluster.\n *\n * The on-chain trust-anchor (validator-registry HCS topic) is **per\n * deployment** — the testnet that ships today, a customer-run private\n * testnet, or future mainnet all have different topic IDs. We deliberately\n * do NOT bake a registryTopicId in here; callers who want anchored discovery\n * pass `trustAnchor` explicitly. Callers who don't get the same security\n * guarantees as a plain HTTPS fetch of a public endpoint, which is the same\n * trust model as every other \"talk to gateway.testnet.X\" SDK in the wild.\n */\n\n/** Network identifiers the SDK knows about by name. */\nexport type NetworkName = 'testnet' | 'mainnet';\n\n/** Resolved network preset — what the SDK needs to bootstrap discovery. */\nexport interface NetworkPreset {\n /**\n * Bootstrap seeds for `ClusterDiscoveryClient`. Ordered: first reachable\n * wins. Operators can append fallback URLs locally; the SDK only ships\n * the canonical Cloudflare-fronted gateway here.\n */\n readonly bootstrap: readonly string[];\n}\n\n/**\n * Canonical entrypoints for each supported HSuite network.\n *\n * Update this map (and ship a SDK minor bump) when DNS for a network changes\n * or when a new network goes live. Customers who run their own validators\n * should NOT extend this map — they should pass `bootstrap: [...]` directly.\n */\nexport const KNOWN_NETWORKS: Readonly<Record<NetworkName, NetworkPreset>> = {\n testnet: {\n bootstrap: ['https://gateway.testnet.hsuite.network'],\n },\n mainnet: {\n // Mainnet entrypoint reserved. The SDK still resolves the name so\n // upgrade-by-flipping-NETWORK works; the bootstrap URL is the\n // pre-allocated DNS we own. If mainnet isn't deployed yet, the discovery\n // fetch will fail at runtime with the same \"no seed reachable\" error\n // any unreachable URL produces — the caller learns the network is not\n // live, rather than getting a baffling \"unknown network\" TypeScript\n // error at compile time.\n bootstrap: ['https://gateway.hsuite.network'],\n },\n} as const;\n\n/**\n * Resolve a network name to its preset. Throws on unknown name — this is the\n * one place a stringly-typed call (e.g. from a config file) gets validated.\n *\n * Callers passing a `NetworkName`-typed value compile-time-guarantee this\n * never throws.\n */\nexport function resolveNetwork(name: NetworkName): NetworkPreset {\n const preset = KNOWN_NETWORKS[name];\n if (!preset) {\n // Defensive guard for the runtime string case. NetworkName is a closed\n // union, but JS callers can pass anything.\n throw new Error(\n `Unknown network: \"${name}\". Known networks: ${Object.keys(KNOWN_NETWORKS).join(', ')}`,\n );\n }\n return preset;\n}\n\n/**\n * Type guard for `NetworkName`. Useful when accepting input from configs,\n * env vars, or CLI flags.\n */\nexport function isKnownNetwork(name: string): name is NetworkName {\n return Object.prototype.hasOwnProperty.call(KNOWN_NETWORKS, name);\n}\n","/**\n * Shared bootstrap → cluster resolution helper.\n *\n * `BaasClient.connectToCluster` (and, before SDK 4.0, the now-removed\n * `SmartEngineClient.connectToCluster`) had ~25 lines of identical scaffolding\n * (resolve `bootstrap | network` → `ClusterDiscoveryClient` → `getRandomCluster`\n * → throw if null). This helper collapses that duplication; the factory delegates\n * here and wraps the null-case in its own error class.\n */\n\nimport { ClusterDiscoveryClient, type ClusterInfo } from './cluster-discovery';\nimport { resolveNetwork, type NetworkName } from '../network-presets';\n\n/**\n * Discovery-seed half of every `connectToCluster` config — must supply\n * exactly one of `bootstrap` or `network` (the call-sites encode the\n * exactly-one constraint via a discriminated union; this type intersects\n * with the auth / config half).\n */\nexport type ResolveClusterSeed = {\n /** Bootstrap seeds: URLs that serve `GET /api/v3/discovery/clusters`. */\n bootstrap?: string[];\n /** Named network — resolves the canonical gateway entrypoint. */\n network?: NetworkName;\n};\n\n/**\n * Optional HCS trust-anchor (cross-checks the bootstrap response against\n * the on-chain validator-registry topic so a compromised bootstrap seed\n * can't inject rogue clusters).\n */\nexport type ResolveClusterTrustAnchor = {\n network: 'mainnet' | 'testnet' | 'previewnet';\n registryTopicId: string;\n mirrorNodeUrl?: string;\n};\n\n/**\n * Common config inputs for {@link resolveClusterEndpoint}.\n */\nexport type ResolveClusterConfig = ResolveClusterSeed & {\n allowInsecure?: boolean;\n trustAnchor?: ResolveClusterTrustAnchor;\n};\n\n/**\n * Outcomes from {@link resolveClusterEndpoint}.\n *\n * - `'no-seeds'` — neither a `bootstrap` list nor a known `network` was\n * supplied (caller passed an empty list explicitly, or the network\n * preset has no seeds).\n * - `'no-clusters'` — discovery completed but found no active cluster\n * via any seed (network reachability / bootstrap URLs are likely off).\n */\nexport type ResolveClusterFailure = 'no-seeds' | 'no-clusters';\n\nexport type ResolveClusterResult =\n | { ok: true; cluster: ClusterInfo }\n | { ok: false; reason: ResolveClusterFailure };\n\n/**\n * Resolve a cluster endpoint via bootstrap seeds or a named network.\n *\n * `BaasClient.connectToCluster` calls this. The factory handles wrapping\n * the failure cases in its error class (so callers keep getting `BaasError`\n * rather than a leaked helper-side type).\n */\nexport async function resolveClusterEndpoint(\n config: ResolveClusterConfig,\n): Promise<ResolveClusterResult> {\n const allowInsecure = config.allowInsecure ?? false;\n\n // Resolve the seed half. `bootstrap` wins when both are set under\n // `any`-cast usage; the call-site types prevent that under normal TS.\n const bootstrap: string[] = config.bootstrap\n ? [...config.bootstrap]\n : config.network\n ? [...resolveNetwork(config.network).bootstrap]\n : [];\n\n if (bootstrap.length === 0) {\n return { ok: false, reason: 'no-seeds' };\n }\n\n const discovery = new ClusterDiscoveryClient({\n bootstrap,\n allowInsecure,\n trustAnchor: config.trustAnchor\n ? {\n network: config.trustAnchor.network,\n registryTopicId: config.trustAnchor.registryTopicId,\n mirrorNodeUrl: config.trustAnchor.mirrorNodeUrl,\n allowInsecure,\n }\n : undefined,\n });\n\n const cluster = await discovery.getRandomCluster();\n if (!cluster) {\n return { ok: false, reason: 'no-clusters' };\n }\n\n return { ok: true, cluster };\n}\n","/**\n * Validator Authentication Client\n *\n * Web3-style authentication for connecting to smart-engine validators.\n * Supports challenge-response authentication with Hedera, XRPL, Polkadot,\n * Stellar, or Solana wallets.\n */\n\n/**\n * Supported blockchain types for authentication.\n *\n * All five are verified end-to-end server-side by {@link Web3AuthService}\n * (Hedera ed25519, XRPL secp256k1/ed25519, Polkadot sr25519/ed25519,\n * Stellar ed25519, Solana ed25519). The partial-mode prepare guards\n * enforce `session.chain === request.chain`, so a caller who wants to\n * prepare sovereignty on chain X must authenticate with chain X's wallet.\n */\nexport type AuthChain = 'hedera' | 'xrpl' | 'polkadot' | 'stellar' | 'solana';\n\nconst SUPPORTED_AUTH_CHAINS: readonly AuthChain[] = [\n 'hedera',\n 'xrpl',\n 'polkadot',\n 'stellar',\n 'solana',\n];\n\n/**\n * Security configuration for auth client\n */\nexport interface SecurityConfig {\n /** Allow HTTP (insecure) connections - default false, use only for local development */\n allowInsecure?: boolean;\n}\n\n/**\n * Structural type of a Hedera-style signer — matches the `PrivateKey`\n * surface in `@hashgraph/sdk` without importing it. Accepts any of the\n * three return shapes the SDK has historically used: a raw `Uint8Array`,\n * a Node `Buffer`, or an object with `toBytes()`.\n *\n * Defined here rather than imported to keep `@hashgraph/sdk` out of the\n * SDK's runtime — it stays a peer/optional dep of the consumer.\n */\nexport type HederaSigner = {\n sign(message: Uint8Array): Uint8Array | Buffer | { toBytes(): Uint8Array };\n};\n\n/**\n * Structural type of an XRPL-style signer — matches the `Wallet.sign`\n * surface in the `xrpl` library without importing it. Returns either a\n * bare hex/base58 string or a `{ signedTransaction }` envelope.\n */\nexport type XrplSigner = {\n sign(message: string): string | { signedTransaction: string };\n};\n\n/**\n * Normalize the three Hedera-signer return shapes into a `Uint8Array`.\n */\nfunction toBytes(value: Uint8Array | Buffer | { toBytes(): Uint8Array }): Uint8Array {\n // Buffer extends Uint8Array, so this branch catches both.\n if (value instanceof Uint8Array) return value;\n return value.toBytes();\n}\n\n/**\n * Validate and sanitize a validator URL\n */\nfunction validateValidatorUrl(url: string, allowInsecure = false): string {\n try {\n const parsed = new URL(url);\n\n // Only allow http/https protocols\n if (!['http:', 'https:'].includes(parsed.protocol)) {\n throw new ValidatorAuthError(`Invalid protocol: ${parsed.protocol}`, 400);\n }\n\n // Enforce HTTPS unless explicitly allowed for development\n if (!allowInsecure && parsed.protocol !== 'https:') {\n throw new ValidatorAuthError(\n 'HTTPS is required for validator connections. Set allowInsecure=true for local development.',\n 400\n );\n }\n\n // Block private IP ranges in production to prevent SSRF\n const hostname = parsed.hostname.toLowerCase();\n const isLocalhost = hostname === 'localhost' || hostname === '127.0.0.1' || hostname === '::1';\n\n if (isLocalhost && !allowInsecure) {\n throw new ValidatorAuthError(\n 'Localhost connections blocked in secure mode. Set allowInsecure=true for local development.',\n 400\n );\n }\n\n return parsed.origin;\n } catch (error) {\n if (error instanceof ValidatorAuthError) {\n throw error;\n }\n throw new ValidatorAuthError(`Invalid validator URL: ${url}`, 400);\n }\n}\n\n/**\n * Sanitize input to prevent injection attacks\n */\nfunction sanitizeInput(input: string, fieldName: string, maxLength = 256): string {\n if (typeof input !== 'string') {\n throw new ValidatorAuthError(`${fieldName} must be a string`, 400);\n }\n\n if (input.length > maxLength) {\n throw new ValidatorAuthError(`${fieldName} exceeds maximum length of ${maxLength}`, 400);\n }\n\n // Remove any control characters\n return input.replace(/[\\x00-\\x1F\\x7F]/g, '');\n}\n\n/**\n * Challenge response from validator\n */\nexport interface ChallengeResponse {\n /** Whether the request was successful */\n success: boolean;\n /** Challenge string to sign */\n challenge: string;\n /** Informational message */\n message: string;\n /** Challenge expiration time */\n expiresIn: string;\n}\n\n/**\n * Authentication request payload\n */\nexport interface AuthenticateRequest {\n /** Blockchain type */\n chain: AuthChain;\n /** Wallet address (account ID for Hedera, address for XRPL) */\n address: string;\n /** Public key (hex encoded) */\n publicKey: string;\n /** Signed challenge (hex encoded signature) */\n signature: string;\n /** Original challenge string */\n challenge: string;\n /** Optional metadata */\n metadata?: {\n nodeId?: string;\n endpoint?: string;\n capabilities?: string[];\n appId?: string;\n appName?: string;\n };\n}\n\n/**\n * Authentication response with session token\n */\nexport interface AuthenticateResponse {\n /** JWT session token */\n token: string;\n /** Session ID */\n sessionId: string;\n /** Assigned validator ID */\n validatorId: string;\n /** Token expiration timestamp */\n expiresAt: string;\n /** Informational message */\n message: string;\n}\n\n/**\n * Session information\n */\nexport interface SessionInfo {\n /** Session ID */\n sessionId: string;\n /** Validator ID */\n validatorId: string;\n /** Wallet address */\n address: string;\n /** Blockchain type */\n chain: AuthChain;\n /** Session creation time */\n createdAt: string;\n /** Session expiration time */\n expiresAt: string;\n /** Whether session is valid */\n isValid: boolean;\n}\n\n/**\n * Validator auth configuration\n */\nexport interface ValidatorAuthConfig {\n /** Request timeout in milliseconds */\n timeout?: number;\n /** Security configuration */\n security?: SecurityConfig;\n}\n\n/**\n * Validator Authentication Client\n *\n * Implements Web3-style challenge-response authentication:\n * 1. Request challenge from validator\n * 2. Sign challenge with wallet private key\n * 3. Authenticate with signed challenge to get session token\n *\n * @example\n * ```typescript\n * const auth = new ValidatorAuthClient();\n *\n * // Request challenge\n * const challenge = await auth.requestChallenge(\n * 'https://validator.example.com',\n * 'hedera',\n * '0.0.123456'\n * );\n *\n * // Sign challenge (using @hashgraph/sdk)\n * const signature = auth.signChallengeHedera(challenge.challenge, privateKey);\n *\n * // Authenticate\n * const session = await auth.authenticate('https://validator.example.com', {\n * chain: 'hedera',\n * address: '0.0.123456',\n * publicKey: publicKeyHex,\n * signature,\n * challenge: challenge.challenge,\n * });\n *\n * console.log('Token:', session.token);\n * ```\n */\nexport class ValidatorAuthClient {\n private readonly timeout: number;\n private readonly allowInsecure: boolean;\n\n constructor(config?: ValidatorAuthConfig) {\n this.timeout = config?.timeout ?? 30000;\n this.allowInsecure = config?.security?.allowInsecure ?? false;\n }\n\n /**\n * Request authentication challenge from validator\n *\n * @param validatorUrl - Validator API base URL\n * @param chain - Blockchain type\n * @param address - Wallet address\n * @returns Challenge to sign\n */\n async requestChallenge(\n validatorUrl: string,\n chain: AuthChain,\n address: string\n ): Promise<ChallengeResponse> {\n // Validate and sanitize inputs\n const safeUrl = validateValidatorUrl(validatorUrl, this.allowInsecure);\n const safeAddress = sanitizeInput(address, 'address', 128);\n\n if (!SUPPORTED_AUTH_CHAINS.includes(chain)) {\n throw new ValidatorAuthError(`Invalid chain type: ${chain}`, 400);\n }\n\n const url = `${safeUrl}/auth/validator/challenge`;\n\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n const response = await fetch(url, {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({ chain, address: safeAddress }),\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const error = await response.json().catch(() => ({}));\n throw new ValidatorAuthError(\n `Challenge request failed: ${response.status} ${response.statusText}`,\n response.status,\n error\n );\n }\n\n return (await response.json()) as ChallengeResponse;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof ValidatorAuthError) {\n throw error;\n }\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new ValidatorAuthError('Challenge request timeout', 408);\n }\n throw new ValidatorAuthError(`Challenge request failed: ${err.message}`, 0);\n }\n }\n\n /**\n * Authenticate with signed challenge\n *\n * @param validatorUrl - Validator API base URL\n * @param request - Authentication request with signature\n * @returns Session token and info\n */\n async authenticate(\n validatorUrl: string,\n request: AuthenticateRequest\n ): Promise<AuthenticateResponse> {\n // Validate URL\n const safeUrl = validateValidatorUrl(validatorUrl, this.allowInsecure);\n\n // Validate and sanitize request fields\n const sanitizedRequest: AuthenticateRequest = {\n chain: request.chain,\n address: sanitizeInput(request.address, 'address', 128),\n publicKey: sanitizeInput(request.publicKey, 'publicKey', 512),\n signature: sanitizeInput(request.signature, 'signature', 1024),\n challenge: sanitizeInput(request.challenge, 'challenge', 512),\n metadata: request.metadata\n ? {\n nodeId: request.metadata.nodeId\n ? sanitizeInput(request.metadata.nodeId, 'nodeId', 64)\n : undefined,\n endpoint: request.metadata.endpoint\n ? sanitizeInput(request.metadata.endpoint, 'endpoint', 256)\n : undefined,\n capabilities: request.metadata.capabilities,\n appId: request.metadata.appId\n ? sanitizeInput(request.metadata.appId, 'appId', 64)\n : undefined,\n appName: request.metadata.appName\n ? sanitizeInput(request.metadata.appName, 'appName', 128)\n : undefined,\n }\n : undefined,\n };\n\n if (!SUPPORTED_AUTH_CHAINS.includes(sanitizedRequest.chain)) {\n throw new ValidatorAuthError(`Invalid chain type: ${sanitizedRequest.chain}`, 400);\n }\n\n // Validate signature is hex\n if (!/^[0-9a-fA-F]+$/.test(sanitizedRequest.signature.replace(/_.*$/, ''))) {\n throw new ValidatorAuthError('Invalid signature format: must be hex encoded', 400);\n }\n\n const url = `${safeUrl}/auth/validator/authenticate`;\n\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n const response = await fetch(url, {\n method: 'POST',\n headers: {\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify(sanitizedRequest),\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const error = await response.json().catch(() => ({}));\n throw new ValidatorAuthError(\n `Authentication failed: ${response.status} ${response.statusText}`,\n response.status,\n error\n );\n }\n\n return (await response.json()) as AuthenticateResponse;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof ValidatorAuthError) {\n throw error;\n }\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new ValidatorAuthError('Authentication request timeout', 408);\n }\n throw new ValidatorAuthError(`Authentication failed: ${err.message}`, 0);\n }\n }\n\n /**\n * Get current session info\n *\n * @param validatorUrl - Validator API base URL\n * @param token - Session token\n * @returns Session information\n */\n async getSession(validatorUrl: string, token: string): Promise<SessionInfo> {\n // Validate URL and token\n const safeUrl = validateValidatorUrl(validatorUrl, this.allowInsecure);\n const safeToken = sanitizeInput(token, 'token', 2048);\n\n const url = `${safeUrl}/auth/validator/session`;\n\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeout);\n\n try {\n const response = await fetch(url, {\n method: 'GET',\n headers: {\n Authorization: `Bearer ${safeToken}`,\n },\n signal: controller.signal,\n });\n\n clearTimeout(timeoutId);\n\n if (!response.ok) {\n const error = await response.json().catch(() => ({}));\n throw new ValidatorAuthError(\n `Session request failed: ${response.status} ${response.statusText}`,\n response.status,\n error\n );\n }\n\n return (await response.json()) as SessionInfo;\n } catch (error) {\n clearTimeout(timeoutId);\n if (error instanceof ValidatorAuthError) {\n throw error;\n }\n const err = error as Error;\n if (err.name === 'AbortError') {\n throw new ValidatorAuthError('Session request timeout', 408);\n }\n throw new ValidatorAuthError(`Session request failed: ${err.message}`, 0);\n }\n }\n\n /**\n * Sign challenge with Hedera private key.\n *\n * Structurally typed against the surface of `@hashgraph/sdk`'s\n * `PrivateKey`. We don't `import` the SDK directly — pulling it into\n * the smart-engine SDK's runtime would bloat browser bundles and bring\n * peer-dep churn — but any object with a compatible `sign(...)` method\n * works.\n *\n * @param challenge - Challenge string from validator\n * @param privateKey - Hedera PrivateKey instance (or compatible signer)\n * @returns Hex-encoded signature\n */\n signChallengeHedera(challenge: string, privateKey: HederaSigner): string {\n const messageBytes = new Uint8Array(Buffer.from(challenge, 'utf-8'));\n const signature = privateKey.sign(messageBytes);\n return Buffer.from(toBytes(signature)).toString('hex');\n }\n\n /**\n * Sign challenge with XRPL wallet.\n *\n * Structurally typed against the surface of xrpl's `Wallet` — see the\n * comment on {@link HederaSigner} for the \"no direct import\" rationale.\n * Accepts both the `{ signedTransaction }` envelope and the bare-string\n * return shapes that xrpl signer libraries expose.\n *\n * @param challenge - Challenge string from validator\n * @param wallet - XRPL Wallet instance (or compatible signer)\n * @returns Hex-encoded signature\n */\n signChallengeXRPL(challenge: string, wallet: XrplSigner): string {\n const signature = wallet.sign(challenge);\n // XRPL libs expose two return shapes: a bare hex/base58 string, or a\n // `{ signedTransaction }` envelope. Normalize to hex.\n if (typeof signature === 'string') {\n if (/^[0-9A-Fa-f]+$/.test(signature)) return signature;\n return Buffer.from(signature).toString('hex');\n }\n return signature.signedTransaction;\n }\n\n /**\n * Complete authentication flow in one call\n *\n * @param validatorUrl - Validator API base URL\n * @param chain - Blockchain type\n * @param address - Wallet address\n * @param publicKey - Public key (hex)\n * @param signFn - Function to sign the challenge\n * @param metadata - Optional metadata\n * @returns Session token and info\n */\n async authenticateWithSigner(\n validatorUrl: string,\n chain: AuthChain,\n address: string,\n publicKey: string,\n signFn: (challenge: string) => string | Promise<string>,\n metadata?: AuthenticateRequest['metadata']\n ): Promise<AuthenticateResponse> {\n // Step 1: Request challenge\n const challengeResponse = await this.requestChallenge(validatorUrl, chain, address);\n\n // Step 2: Sign challenge\n const signature = await signFn(challengeResponse.challenge);\n\n // Step 3: Authenticate\n return this.authenticate(validatorUrl, {\n chain,\n address,\n publicKey,\n signature,\n challenge: challengeResponse.challenge,\n metadata,\n });\n }\n}\n\n/**\n * Authentication error\n */\nexport class ValidatorAuthError extends Error {\n constructor(\n message: string,\n public statusCode: number,\n public details?: any\n ) {\n super(message);\n this.name = 'ValidatorAuthError';\n }\n}\n","/**\n * Subscription Sub-Client\n *\n * Manages application subscriptions for using the validator network.\n */\n\n/**\n * Subscription tier names.\n *\n * The ladder is `builder → growth → scale → enterprise`. Every tier is paid;\n * the previous free_testnet/starter/professional names were retired.\n *\n * - builder: Entry-level paid tier\n * - growth: Mid-tier with usage analytics\n * - scale: High-volume tier with advanced features\n * - enterprise: Full-featured enterprise tier (custom / unlimited)\n *\n * BREAKING: this union changed from `free_testnet | starter | professional |\n * enterprise`. Consumers pinning the old names must migrate.\n */\nexport type SubscriptionTierName = 'builder' | 'growth' | 'scale' | 'enterprise';\n\n/**\n * Subscription statuses.\n *\n * NOTE: `'deposit_confirmed'` is the mint-ready status — the validator's\n * `activateSubscription` refuses to mint the subscription NFT unless the\n * subscription is in `deposit_confirmed` (there is no `'pending_mint'` status).\n * After a successful mint the status advances to `'active'`.\n */\nexport type SubscriptionStatus =\n | 'pending_deposit'\n | 'deposit_confirmed'\n | 'active'\n | 'expired'\n | 'cancelled';\n\n/**\n * Deposit wallet statuses\n */\nexport type DepositWalletStatus = 'pending' | 'locked' | 'expired' | 'slashed' | 'released';\n\n/**\n * Subscription tier information for API responses\n */\nexport type SubscriptionTierInfo = {\n /** Tier name identifier */\n name: SubscriptionTierName;\n /** Display name for UI */\n displayName: string;\n /** Tier description */\n description: string;\n /** Monthly price in USD */\n priceUsd: number;\n /** Deposit amount in HSUITE tokens */\n depositAmount: string;\n /** API calls per day limit */\n apiCallsPerDay: number;\n /** Supported networks for this tier */\n supportedNetworks: ('hedera' | 'xrpl')[];\n /** Additional features included in this tier */\n features: string[];\n};\n\n/**\n * Subscription request\n */\nexport type SubscriptionRequest = {\n /** Application ID */\n appId: string;\n /** Application name */\n appName: string;\n /** Developer's account ID on the chosen chain */\n developerAccountId: string;\n /** Chain for deposit */\n chain: 'hedera' | 'xrpl';\n /** Selected subscription tier */\n selectedTier: SubscriptionTierName;\n /** Selected networks to support */\n selectedNetworks: ('hedera' | 'xrpl')[];\n /** App logo URL (optional) */\n logoUrl?: string;\n /** App description (optional) */\n appDescription?: string;\n /** Additional metadata (optional) */\n metadata?: Record<string, unknown>;\n};\n\n/**\n * Subscription response\n */\nexport type SubscriptionResponse = {\n success: boolean;\n subscriptionId?: string;\n status?: SubscriptionStatus;\n depositInstructions?: {\n walletAddress: string;\n tokenId: string;\n amount: string;\n chain: string;\n };\n message: string;\n};\n\n/**\n * Subscription status response\n */\nexport type SubscriptionStatusResponse = {\n appId: string;\n hasSubscription: boolean;\n subscriptionId?: string;\n appName?: string;\n status: SubscriptionStatus | 'not_found';\n depositWallet?: {\n walletAddress: string;\n chain: string;\n depositAmount: string;\n actualDepositAmount?: string;\n status: DepositWalletStatus;\n lockedUntil?: string;\n };\n subscriptionNftSerial?: number;\n /**\n * Per-chain minted-NFT coordinates exposed by the validator once the\n * subscription NFT is minted. For XRPL this carries the NFTokenID, the\n * issuing account (the cluster SignerList issuer), and the brokered\n * sell-offer tx id — enough for a client to resolve + accept the sell offer\n * so the NFT lands on the developer wallet (`NFTokenAcceptOffer`).\n */\n chainNfts?: {\n xrpl?: {\n nftId?: string;\n issuerAddress?: string;\n offerTxId?: string;\n };\n } & Record<string, unknown>;\n expiresAt?: string;\n remainingBalance?: string;\n createdAt?: string;\n /** Current subscription tier */\n tier?: SubscriptionTierName;\n /** Networks selected for this subscription */\n selectedNetworks?: string[];\n /** API calls made today */\n apiCallsToday?: number;\n /** Daily API call limit based on tier */\n apiCallsLimit?: number;\n};\n\n/**\n * Mint NFT response\n */\nexport type MintNftResponse = {\n success: boolean;\n subscriptionId?: string;\n appId?: string;\n expiresAt?: string;\n message: string;\n};\n\n/**\n * Subscription renewal request\n */\nexport type SubscriptionRenewalRequest = {\n appId: string;\n additionalDays?: number;\n};\n\n/**\n * Subscription renewal response\n */\nexport type SubscriptionRenewalResponse = {\n success: boolean;\n appId: string;\n status?: string;\n newExpiresAt?: string;\n message: string;\n};\n\n/**\n * Subscription configuration\n */\nexport type SubscriptionConfig = {\n subscriptionDepositAmount: string;\n lockDurationDays: number;\n renewalWindowDays: number;\n hsuiteTokenIds: Record<string, string>;\n /** Available subscription tiers */\n availableTiers: SubscriptionTierInfo[];\n};\n\n/**\n * Subscription list response\n */\nexport type SubscriptionListResponse = {\n count: number;\n subscriptions: Array<{\n subscriptionId: string;\n appId: string;\n appName: string;\n status: SubscriptionStatus;\n expiresAt?: string;\n createdAt: string;\n }>;\n};\n\n/**\n * Pending tier change envelope returned by downgrade/upgrade endpoints.\n * The validator records the change without applying it until the next\n * renewal (downgrade) or until the on-chain top-up is confirmed (upgrade).\n */\nexport type PendingTierChange = {\n fromTier?: SubscriptionTierName;\n toTier?: SubscriptionTierName;\n direction?: 'upgrade' | 'downgrade';\n effectiveAt?: string;\n /** Top-up deposit (upgrade only). */\n depositInstructions?: {\n walletAddress: string;\n tokenId: string;\n amount: string;\n chain: string;\n };\n};\n\n/** Response shape for `POST /subscription/downgrade`. */\nexport type DowngradeSubscriptionRequest = {\n appId: string;\n toTier: SubscriptionTierName;\n};\n\nexport type DowngradeSubscriptionResponse = {\n success: boolean;\n appId: string;\n pendingTierChange?: PendingTierChange;\n message: string;\n};\n\n/** Response shape for `POST /subscription/upgrade`. */\nexport type UpgradeSubscriptionRequest = {\n appId: string;\n toTier: SubscriptionTierName;\n};\n\nexport type UpgradeSubscriptionResponse = {\n success: boolean;\n appId: string;\n pendingTierChange?: PendingTierChange;\n /** Top-up deposit instructions; flip activates once on-chain. */\n depositInstructions?: {\n walletAddress: string;\n tokenId: string;\n amount: string;\n chain: string;\n };\n message: string;\n};\n\nexport type CancelTierChangeRequest = {\n appId: string;\n};\n\nexport type CancelTierChangeResponse = {\n success: boolean;\n appId: string;\n message: string;\n};\n\n/**\n * Response shape for `GET /subscription/active-for/:walletAddress`.\n *\n * **Internal-by-design.** Server-side this is allowlisted under\n * `ApiKeyGuard.INTERNAL_SERVICE_MESH_ROUTES` — smart-host pods call it via\n * `X-API-Key`. Smart-app callers SHOULD NOT use this endpoint; it is\n * exposed for completeness and for in-cluster tooling.\n */\nexport type ActiveSubscriptionForWalletResponse = {\n active: boolean;\n};\n\n/**\n * Response shape for `GET /subscription/usage/:appId`. Mirrors the\n * server-side `UsageBreakdown` projection.\n */\nexport type SubscriptionUsageSummaryResponse = {\n appId: string;\n total: number;\n byCategory: {\n database: number;\n functions: number;\n messaging: number;\n storage: number;\n ipfs: number;\n snapshots: number;\n other: number;\n };\n recordCount: number;\n lastUpdated: string;\n};\n\n/** Response shape for `GET /subscription/usage/status/:appId`. */\nexport type SubscriptionUsageStatusResponse = {\n appId: string;\n usagePercent: number;\n currentUsage: number;\n dailyLimit: number;\n overagePercent: number;\n inGracePeriod: boolean;\n graceExpiresAt: string | null;\n blocked: boolean;\n suggestUpgrade: boolean;\n nextTier: {\n tier: SubscriptionTierName;\n name: string;\n apiCallsPerDay: number;\n monthlyPriceHsuite: number;\n } | null;\n projectedDaysUntilLimit: number | null;\n};\n\n/** Response shape for `GET /subscription/billing/:appId`. */\nexport type SubscriptionBillingLedgerEntry = {\n id: string;\n subscriptionId: string;\n operation: string;\n amount: string;\n balanceAfter: string;\n timestamp: string;\n metadata?: Record<string, unknown>;\n};\n\nexport type SubscriptionBillingResponse = {\n appId: string;\n entries: SubscriptionBillingLedgerEntry[];\n total: number;\n hasMore: boolean;\n};\n\nexport type GetBillingOptions = {\n limit?: number;\n offset?: number;\n /** ISO-8601 lower bound. */\n from?: string;\n /** ISO-8601 upper bound. */\n to?: string;\n};\n\n/** Response shape for `POST /subscription/customer/mint`. */\nexport type MintCustomerSubscriptionRequest = {\n appId: string;\n customerAddress: string;\n /** v1 is XRPL-only — Hedera/Solana/Polkadot not supported server-side. */\n customerChain: 'xrpl';\n metadataCid: string;\n};\n\nexport type MintCustomerSubscriptionResponse = {\n success: true;\n nftSerial: number;\n txHash: string;\n};\n\n/**\n * Balance response\n */\nexport type BalanceResponse = {\n appId: string;\n subscriptionId: string;\n status: SubscriptionStatus;\n remainingBalance: string;\n expiresAt?: string;\n};\n\nimport { encodePathParam, type HttpClient } from '../http';\n\n/**\n * Subscription Sub-Client\n *\n * Manages application subscriptions including:\n * - Subscription requests with deposit wallets\n * - Deposit verification and NFT minting\n * - Subscription renewal\n * - Balance checking\n */\nexport class SubscriptionClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Request a new subscription.\n * Creates a deposit wallet and returns deposit instructions.\n */\n async request(request: SubscriptionRequest): Promise<SubscriptionResponse> {\n return this.http.post('/subscription/request', request);\n }\n\n /**\n * Get subscription status by app ID\n */\n async getStatus(appId: string): Promise<SubscriptionStatusResponse> {\n return this.http.get(`/subscription/status/${encodePathParam(appId)}`);\n }\n\n /**\n * Mint subscription NFT after deposit is confirmed\n */\n async mintNft(appId: string): Promise<MintNftResponse> {\n return this.http.post(`/subscription/mint/${encodePathParam(appId)}`, {});\n }\n\n /**\n * Renew subscription by extending period\n */\n async renew(request: SubscriptionRenewalRequest): Promise<SubscriptionRenewalResponse> {\n return this.http.post('/subscription/renew', request);\n }\n\n /**\n * Fetch available subscription tiers from the network.\n *\n * Use this instead of hard-coding tier names -- the validator returns the\n * canonical list of tiers together with pricing, limits, and features.\n *\n * @returns Array of {@link SubscriptionTierInfo} objects.\n *\n * @example\n * ```typescript\n * const tiers = await subscription.getTiers();\n * console.log(tiers.map(t => `${t.name}: $${t.priceUsd}/mo`));\n * ```\n */\n async getTiers(): Promise<SubscriptionTierInfo[]> {\n try {\n return await this.http.get<SubscriptionTierInfo[]>('/subscription/tiers');\n } catch (err) {\n // Backwards compatibility: older validator builds don't have the\n // dedicated /tiers endpoint yet. Fall back to /config, which\n // returns the same tiers under `availableTiers` (though in the\n // raw pricing-core shape rather than SubscriptionTierInfo).\n const isNotFound =\n err != null &&\n typeof err === 'object' &&\n 'statusCode' in err &&\n (err as { statusCode?: number }).statusCode === 404;\n if (!isNotFound) throw err;\n const cfg = await this.http.get<{\n availableTiers: Array<Record<string, unknown>>;\n }>('/subscription/config');\n // Normalize: pricing-core's SubscriptionTierConfig uses\n // { tier, name, monthlyPriceHsuite, allowedNetworks, ... } — map\n // to the SDK contract so callers see a stable shape across\n // server versions.\n return (cfg.availableTiers || []).map((raw) => {\n const tier = (raw.tier ?? raw.name) as SubscriptionTierName;\n const displayName = (raw.name ?? raw.displayName ?? String(tier)) as string;\n const monthlyPriceHsuite = Number(\n raw.monthlyPriceHsuite ?? raw.depositAmount ?? 0\n );\n const apiCallsPerDay = Number(raw.apiCallsPerDay ?? 0);\n const rawNetworks = (raw.allowedNetworks ?? raw.supportedNetworks ?? []) as string[];\n const supportedNetworks: ('hedera' | 'xrpl')[] = rawNetworks.some(\n (n) => n === 'mainnet'\n )\n ? ['hedera', 'xrpl']\n : ['hedera'];\n return {\n name: tier,\n displayName,\n description:\n (raw.description as string | undefined) ??\n `${displayName} tier`,\n priceUsd: Number(raw.priceUsd ?? 0),\n depositAmount: String(monthlyPriceHsuite),\n apiCallsPerDay: Number.isFinite(apiCallsPerDay)\n ? apiCallsPerDay\n : Number.MAX_SAFE_INTEGER,\n supportedNetworks,\n features: (raw.features as string[]) ?? [],\n };\n });\n }\n }\n\n /**\n * Get subscription configuration\n */\n async getConfig(): Promise<SubscriptionConfig> {\n return this.http.get('/subscription/config');\n }\n\n /**\n * List all subscriptions\n */\n async list(): Promise<SubscriptionListResponse> {\n return this.http.get('/subscription/list');\n }\n\n /**\n * List subscriptions by status\n */\n async listByStatus(status: SubscriptionStatus): Promise<SubscriptionListResponse> {\n return this.http.get(`/subscription/list/status/${encodePathParam(status)}`);\n }\n\n /**\n * Get subscription balance\n */\n async getBalance(appId: string): Promise<BalanceResponse> {\n return this.http.get(`/subscription/balance/${encodePathParam(appId)}`);\n }\n\n // ─── Tier-Change Endpoints ────────────────────────────────────────────────\n\n /**\n * Schedule a tier downgrade. The downgrade takes effect at the next\n * renewal — the deposit is NOT partially refunded mid-lock. Excess\n * collateral returns on eventual cancel.\n */\n async downgrade(\n request: DowngradeSubscriptionRequest,\n ): Promise<DowngradeSubscriptionResponse> {\n return this.http.post('/subscription/downgrade', request);\n }\n\n /**\n * Request a tier upgrade. The server records the upgrade and returns\n * top-up deposit instructions for the price delta. The new tier flips\n * only once the on-chain top-up is confirmed by the deposit monitor.\n */\n async upgrade(\n request: UpgradeSubscriptionRequest,\n ): Promise<UpgradeSubscriptionResponse> {\n return this.http.post('/subscription/upgrade', request);\n }\n\n /** Cancel a pending (not-yet-applied) tier change. */\n async cancelTierChange(\n request: CancelTierChangeRequest,\n ): Promise<CancelTierChangeResponse> {\n return this.http.post('/subscription/tier-change/cancel', request);\n }\n\n // ─── Internal / Usage / Billing ───────────────────────────────────────────\n\n /**\n * Check whether a developer wallet has any active subscription. Used by\n * smart-host's deploy gate via the cluster-internal API-key path; smart-app\n * callers should not rely on this endpoint (server-side it requires the\n * `INTERNAL_SERVICE_MESH_ROUTES` allowlist + an `X-API-Key` header).\n */\n async getActiveFor(walletAddress: string): Promise<ActiveSubscriptionForWalletResponse> {\n return this.http.get(\n `/subscription/active-for/${encodePathParam(walletAddress)}`,\n );\n }\n\n /** Today's consumption breakdown by category for an app. Owner-only. */\n async getUsage(appId: string): Promise<SubscriptionUsageSummaryResponse> {\n return this.http.get(`/subscription/usage/${encodePathParam(appId)}`);\n }\n\n /**\n * Current usage with overage info: usage percent, grace status,\n * upgrade suggestion, projected days until limit. Owner-only.\n */\n async getUsageStatus(appId: string): Promise<SubscriptionUsageStatusResponse> {\n return this.http.get(`/subscription/usage/status/${encodePathParam(appId)}`);\n }\n\n /**\n * Subscription balance deduction history. Pagination + ISO-8601 range\n * filtering supported. Owner-only.\n */\n async getBilling(\n appId: string,\n options?: GetBillingOptions,\n ): Promise<SubscriptionBillingResponse> {\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.append('limit', String(options.limit));\n if (options?.offset !== undefined) params.append('offset', String(options.offset));\n if (options?.from) params.append('from', options.from);\n if (options?.to) params.append('to', options.to);\n const qs = params.toString();\n return this.http.get(\n `/subscription/billing/${encodePathParam(appId)}${qs ? `?${qs}` : ''}`,\n );\n }\n\n /**\n * Mint a customer-subscription NFT on behalf of a smart-app.\n *\n * Distinct from `mintNft(appId)`, which mints the smart-app's own\n * developer-level subscription NFT. This endpoint mints a *customer*\n * NFT held by an end-user wallet — used by smart-host's\n * `XrplCustomerNftIssuerAdapter` when an app calls\n * `SubscriptionService.issueCustomerSubscription()` from the sandbox.\n *\n * v1 is XRPL-only (the `customerChain` field is a literal `'xrpl'`).\n * Internal-by-design — server-side gated by `X-API-Key`.\n */\n async mintCustomer(\n request: MintCustomerSubscriptionRequest,\n ): Promise<MintCustomerSubscriptionResponse> {\n return this.http.post('/subscription/customer/mint', request);\n }\n}\n","/**\n * Faucet Sub-Client\n *\n * Public bootstrap surface for dispensing testnet HSUITE (HST) to a recipient\n * address via a challenge/response signature flow.\n */\n\nimport { type HttpClient } from '../http';\n\n/**\n * Challenge envelope returned by `POST /faucet/hsuite/challenge`.\n *\n * The caller signs `message` with the key controlling `recipientAddress` and\n * echoes the `challengeId` back on the dispense call.\n */\nexport type FaucetChallenge = {\n /** Opaque challenge identifier; echo on the dispense call. */\n challengeId: string;\n /** The exact string to sign with the recipient's key. */\n message: string;\n /** Seconds until the challenge expires and must be re-requested. */\n expiresInSeconds: number;\n};\n\n/**\n * Request body for `POST /faucet/hsuite`.\n */\nexport type FaucetDispenseRequest = {\n /** Chain the recipient address lives on (e.g. `'xrpl'`). */\n chain: string;\n /** Address to receive the dispensed HST. */\n recipientAddress: string;\n /** `challengeId` from the prior {@link FaucetChallenge}. */\n challengeId: string;\n /** Signature over the challenge `message`, hex-encoded. */\n signature: string;\n /** Public key (hex) that produced `signature`; optional when derivable. */\n publicKey?: string;\n};\n\n/**\n * Successful dispense — HST was sent on-chain.\n */\nexport type FaucetDispensed = {\n status: 'dispensed';\n /** Amount of HST dispensed. */\n amount: string;\n /** On-chain transaction hash of the dispense. */\n txHash: string;\n /** Remaining HST the recipient may still claim today. */\n remainingDailyAllowance: string;\n};\n\n/**\n * The recipient must establish a trust line for the HST issued-currency\n * before it can receive any. Set the returned trust line, then re-dispense\n * with a fresh challenge.\n */\nexport type FaucetTrustlineRequired = {\n status: 'trustline_required';\n /** Trust line the recipient must set before re-dispensing. */\n trustLine: {\n /** Issued-currency code (e.g. `'HST'`). */\n currency: string;\n /** Issuer address of the currency. */\n issuer: string;\n /** Trust line limit to set. */\n limit: string;\n };\n};\n\n/**\n * The recipient hit the daily rate limit; retry after the given delay.\n */\nexport type FaucetRateLimited = {\n status: 'rate_limited';\n /** Seconds to wait before the next dispense attempt is allowed. */\n retryAfterSeconds: number;\n};\n\n/**\n * Discriminated union over `status` returned by `POST /faucet/hsuite`.\n */\nexport type FaucetDispenseResult =\n | FaucetDispensed\n | FaucetTrustlineRequired\n | FaucetRateLimited;\n\n/**\n * Response shape for `GET /faucet/hsuite/status`.\n */\nexport type FaucetStatusResponse = {\n /** HST already dispensed to the recipient today. */\n dispensedToday: string;\n /** Forward-compatible: server may add allowance/reset fields. */\n [key: string]: unknown;\n};\n\n/**\n * Faucet Sub-Client\n *\n * Dispenses testnet HSUITE (HST) through a Web3-style challenge/response.\n * These are `@Public` bootstrap routes — no bearer token is required (a token\n * on the shared HTTP client is harmless).\n *\n * Lifecycle:\n * 1. {@link FaucetClient.requestChallenge} — get a {@link FaucetChallenge}.\n * 2. Sign `challenge.message` with the key controlling `recipientAddress`.\n * 3. {@link FaucetClient.dispense} — submit `{challengeId, signature, publicKey?}`.\n * 4. If the result is `status: 'trustline_required'`, the signer MUST set the\n * returned `trustLine` on `recipientAddress`, then request a NEW challenge\n * and re-dispense (the consumed challenge can't be reused).\n * 5. If the result is `status: 'rate_limited'`, wait `retryAfterSeconds` and retry.\n * 6. On `status: 'dispensed'`, the HST `txHash` confirms the on-chain transfer.\n *\n * @example\n * ```typescript\n * const challenge = await faucet.requestChallenge('xrpl', wallet.address);\n * const signature = await sign(challenge.message);\n * let result = await faucet.dispense({\n * chain: 'xrpl',\n * recipientAddress: wallet.address,\n * challengeId: challenge.challengeId,\n * signature,\n * publicKey: wallet.publicKey,\n * });\n * if (result.status === 'trustline_required') {\n * await setTrustLine(result.trustLine); // set on recipientAddress, then retry\n * }\n * ```\n */\nexport class FaucetClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Request a signing challenge for a recipient address. The returned\n * `message` must be signed by the key controlling `recipientAddress`.\n */\n async requestChallenge(\n chain: string,\n recipientAddress: string,\n ): Promise<FaucetChallenge> {\n return this.http.post('/faucet/hsuite/challenge', { chain, recipientAddress });\n }\n\n /**\n * Submit a signed challenge to dispense HST. The result is a discriminated\n * union on `status` — branch on `'dispensed' | 'trustline_required' |\n * 'rate_limited'`. On `'trustline_required'`, set the returned trust line on\n * the recipient and re-dispense with a fresh challenge.\n */\n async dispense(req: FaucetDispenseRequest): Promise<FaucetDispenseResult> {\n return this.http.post('/faucet/hsuite', req);\n }\n\n /**\n * Get today's dispense status for a recipient (e.g. amount already\n * dispensed today).\n */\n async getStatus(\n chain: string,\n recipientAddress: string,\n ): Promise<FaucetStatusResponse> {\n const params = new URLSearchParams();\n params.append('chain', chain);\n params.append('recipientAddress', recipientAddress);\n return this.http.get(`/faucet/hsuite/status?${params.toString()}`);\n }\n}\n","/**\n * TSS (Threshold Signature Scheme) Sub-Client\n *\n * Provides access to TSS/MPC operations for multi-sig entity management.\n * All operations are chain-agnostic — pass `chain` as a parameter.\n */\nimport type {\n EntityCreationOptions,\n EntityCreationResponse,\n ReshareRequest,\n ReshareResponse,\n EntityDetails,\n MPCSigningRequest,\n MPCSigningResponse,\n ValidatorListResponse,\n TSSStats,\n EntityListResponse,\n TSSHealthResponse,\n CeremonyListResponse,\n MultiSigStatusResponse,\n TssJobAccepted,\n TssJobResponse,\n SignForAppRequest,\n SignForAppResponse,\n} from './types';\nimport { encodePathParam, type HttpClient } from '../http';\n\nexport * from './types';\n\n/**\n * TSS Sub-Client\n *\n * Manages Threshold Signature Scheme operations including:\n * - Multi-sig entity creation (chain-agnostic)\n * - Key resharing for membership changes\n * - MPC transaction signing for any supported chain\n * - DKG ceremony monitoring\n *\n * @example\n * ```typescript\n * // Sign a transaction on any chain\n * const result = await client.tss.signMPC({\n * chain: 'hedera',\n * entityId: 'entity-123',\n * transactionBytes: '0x...',\n * });\n * ```\n */\nexport class TSSClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Create a multi-sig entity via a synchronous DKG ceremony.\n *\n * @param options Entity-creation parameters (chain, threshold, participants).\n * @returns The created entity's identity (ids + group public keys).\n */\n async createEntity(options: EntityCreationOptions): Promise<EntityCreationResponse> {\n return this.http.post('/tss/entity/create', options);\n }\n\n /**\n * Reshare keys when cluster membership changes. Redistributes secret shares\n * WITHOUT changing public keys.\n *\n * @param request The new membership / threshold to reshare to.\n * @returns The reshare outcome.\n */\n async reshareCluster(request: ReshareRequest): Promise<ReshareResponse> {\n return this.http.post('/tss/cluster/reshare', request);\n }\n\n /**\n * Get entity details by id.\n *\n * @param entityId The entity id to look up.\n * @returns The entity's details.\n */\n async getEntity(entityId: string): Promise<EntityDetails> {\n return this.http.get(`/tss/entity/${encodePathParam(entityId)}`);\n }\n\n /**\n * Sign a transaction using MPC.\n *\n * Routes to `POST /api/v3/tss/hedera/sign-mpc`. Only `'hedera'` is wired\n * server-side; other chain signing paths run via their own controllers (XRPL\n * multisig, Polkadot MPC) and are not exposed through this sub-client. The\n * `chain` field is carried into the request body so the validator can log +\n * route, but any non-`'hedera'` value will 404.\n *\n * @param request The MPC signing request; `chain` is forced to `'hedera'`.\n * @returns The MPC signing result.\n */\n async signMPC(\n request: MPCSigningRequest & { chain?: 'hedera' },\n ): Promise<MPCSigningResponse> {\n const chain = 'hedera' as const;\n return this.http.post(`/tss/${chain}/sign-mpc`, { ...request, chain });\n }\n\n /**\n * Get known validators and their public keys.\n *\n * @returns The validator list with public keys.\n */\n async getValidators(): Promise<ValidatorListResponse> {\n return this.http.get('/tss/validators');\n }\n\n /**\n * Force announcement of this node's public key.\n *\n * @returns Whether the announcement was accepted, plus a status message.\n */\n async announceKey(): Promise<{ success: boolean; message: string }> {\n return this.http.post('/tss/announce', {});\n }\n\n /**\n * Get TSS statistics.\n *\n * @returns Aggregate TSS statistics.\n */\n async getStats(): Promise<TSSStats> {\n return this.http.get('/tss/stats');\n }\n\n /**\n * List all TSS entities.\n *\n * @returns The full entity list.\n */\n async listEntities(): Promise<EntityListResponse> {\n return this.http.get('/tss/entities');\n }\n\n /**\n * TSS health check.\n *\n * @returns The TSS subsystem health report.\n */\n async getHealth(): Promise<TSSHealthResponse> {\n return this.http.get('/tss/health');\n }\n\n /**\n * List DKG ceremonies and their statistics.\n *\n * @returns The ceremony list.\n */\n async listCeremonies(): Promise<CeremonyListResponse> {\n return this.http.get('/tss/multisig/ceremonies');\n }\n\n /**\n * Get multi-sig transaction status by transaction id.\n *\n * @param txId The multi-sig transaction id.\n * @returns The current status of that transaction.\n */\n async getMultiSigStatus(txId: string): Promise<MultiSigStatusResponse> {\n return this.http.get(`/tss/multisig/transactions/${encodePathParam(txId)}`);\n }\n\n /**\n * Async-job variant of {@link createEntity}.\n *\n * Server returns 202 + `{ jobId, statusUrl, status: 'pending' }` immediately;\n * the DKG ceremony runs in the background. Poll {@link getJob} until the\n * status reaches `'success'` or `'failed'`.\n *\n * @param options Entity-creation parameters.\n * @returns A job descriptor (`jobId`, `statusUrl`, initial status).\n */\n async createEntityAsync(options: EntityCreationOptions): Promise<TssJobAccepted> {\n return this.http.post('/tss/entity/create/async', options);\n }\n\n /**\n * Async-job variant of {@link reshareCluster}. Returns 202 + a polling\n * descriptor; resharing runs in the background.\n *\n * @param request The new membership / threshold to reshare to.\n * @returns A job descriptor to poll via {@link getJob}.\n */\n async reshareClusterAsync(request: ReshareRequest): Promise<TssJobAccepted> {\n return this.http.post('/tss/cluster/reshare/async', request);\n }\n\n /**\n * Poll the status of an async TSS-ceremony job kicked off via\n * {@link createEntityAsync} or {@link reshareClusterAsync}.\n *\n * @param jobId The job id returned by the async kickoff call.\n * @returns The job's current status (and result once terminal).\n */\n async getJob(jobId: string): Promise<TssJobResponse> {\n return this.http.get(`/tss/jobs/${encodePathParam(jobId)}`);\n }\n\n /**\n * Sign a hex payload as smart-app entity `appId` via the cluster's TSS\n * quorum. Used by smart-deployer for per-entity BLS12-381 signatures over\n * deployment-context payloads (trustless APP_TOKEN replacement).\n *\n * Payload constraints (enforced server-side):\n * - even-length lowercase hex\n * - ≥32 bytes, ≤8KB\n *\n * @param appId The smart-app entity id to sign as.\n * @param request The hex payload to sign.\n * @returns The aggregate signature over the payload.\n */\n async signForApp(appId: string, request: SignForAppRequest): Promise<SignForAppResponse> {\n return this.http.post(`/tss/entity/${encodePathParam(appId)}/sign`, request);\n }\n}\n","/**\n * IPFS Sub-Client\n *\n * Provides access to IPFS operations for decentralized file storage.\n *\n * @example\n * ```typescript\n * // Upload a file\n * const result = await client.ipfs.upload(fileBuffer, 'document.pdf');\n *\n * // Pin content\n * await client.ipfs.pin(result.cid);\n *\n * // Get file\n * const file = await client.ipfs.getFile(result.cid);\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n IpfsUploadResult,\n IpfsPinResult,\n IpfsFileMetadata,\n IpfsPinListResponse,\n IpfsStatusResponse,\n IpfsStorageUsageResponse,\n} from './types';\n\nexport * from './types';\n\n/**\n * IPFS Sub-Client\n *\n * Manages IPFS operations including:\n * - File upload and retrieval\n * - Content pinning and unpinning\n * - Metadata queries\n * - Storage usage monitoring\n */\nexport class IPFSClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Upload a file to IPFS\n *\n * @param file - File data as Blob or Buffer\n * @param filename - Name of the file\n * @param metadata - Optional metadata key-value pairs\n * @returns Upload result with CID\n */\n async upload(\n file: Blob | Buffer,\n filename: string,\n metadata?: Record<string, string>\n ): Promise<IpfsUploadResult> {\n return this.http.upload('/ipfs/upload', file, filename, metadata);\n }\n\n /**\n * Pin content by CID to ensure it persists\n */\n async pin(cid: string): Promise<IpfsPinResult> {\n return this.http.post(`/ipfs/pin/${encodePathParam(cid)}`, {});\n }\n\n /**\n * Unpin content by CID\n */\n async unpin(cid: string): Promise<IpfsPinResult> {\n return this.http.delete(`/ipfs/unpin/${encodePathParam(cid)}`);\n }\n\n /**\n * Get a file by CID\n */\n async getFile(cid: string): Promise<any> {\n return this.http.get(`/ipfs/file/${encodePathParam(cid)}`);\n }\n\n /**\n * Get raw content by CID\n */\n async getContent(cid: string): Promise<any> {\n return this.http.get(`/ipfs/${encodePathParam(cid)}`);\n }\n\n /**\n * Get file metadata by CID\n */\n async getMetadata(cid: string): Promise<IpfsFileMetadata> {\n return this.http.get(`/ipfs/metadata/${encodePathParam(cid)}`);\n }\n\n /**\n * List all pinned content\n */\n async listPins(): Promise<IpfsPinListResponse> {\n return this.http.get('/ipfs/pins');\n }\n\n /**\n * Get IPFS node status\n */\n async getStatus(): Promise<IpfsStatusResponse> {\n return this.http.get('/ipfs/status');\n }\n\n /**\n * Get storage usage information\n */\n async getStorageUsage(): Promise<IpfsStorageUsageResponse> {\n return this.http.get('/ipfs/storage');\n }\n}\n","/**\n * Hedera TSS Sub-Client\n *\n * Server-side controller: the server\n * (route prefix `/api/v3/hedera/tss`).\n *\n * These endpoints are **TSS-signed immediate-execute** — the cluster signs AND\n * submits in one call, distinct from:\n * - `client.hedera.*` (prepare-only, the caller signs + submits)\n * - `client.tss.signMPC(...)` (signs an externally-built tx, doesn't submit)\n *\n * Mounted on the main client as `client.hedera.tss`.\n *\n * Wire format: every request goes to `/api/v3/hedera/tss/<op>`. The injected\n * `HttpClient` must be rooted at `${baseUrl}/api/v3` (the same one\n * `TSSClient`/`SubscriptionClient`/etc. use).\n */\n\nimport type { HttpClient } from '../http';\n\n/** Sovereignty security mode for TSS-controlled Hedera accounts. */\nexport type HederaTssSecurityMode = 'full' | 'partial';\n\n/** Common validator-binding fields required to anchor an op to on-chain rules. */\ntype ValidatorBoundRequest = {\n /** TSS entity id (already created via `client.tss.createEntity*`). */\n entityId: string;\n /** HCS timestamp of the rules message (`SECONDS.NANOS`). */\n validatorTimestamp: string;\n /** HCS topic that holds the rules message. */\n validatorTopicId: string;\n /** Payer for the on-chain fee. Validator operator pays when omitted. */\n payerAccountId?: string;\n};\n\n/** POST `/api/v3/hedera/tss/create-account` request body. */\nexport type CreateHederaAccountRequest = ValidatorBoundRequest & {\n /** Initial HBAR balance for the new account. */\n initialBalance?: number;\n /** Defaults to `full` server-side. `partial` requires `appOwnerPublicKey`. */\n securityMode?: HederaTssSecurityMode;\n /** Required when `securityMode === 'partial'`. */\n appOwnerPublicKey?: string;\n};\n\n/** POST `/api/v3/hedera/tss/create-account` response body. */\nexport type CreateHederaAccountResponse = {\n success: boolean;\n accountId: string;\n transactionId: string;\n hashscanUrl: string;\n securityMode: HederaTssSecurityMode;\n validatorBinding: {\n timestamp: string;\n topicId: string;\n memo: string;\n rulesUrl: string;\n };\n};\n\n/** POST `/api/v3/hedera/tss/update-memo` request body. */\nexport type UpdateHederaMemoRequest = {\n entityId: string;\n accountId: string;\n newMemo: string;\n payerAccountId?: string;\n};\n\n/** POST `/api/v3/hedera/tss/update-memo` response body. */\nexport type UpdateHederaMemoResponse = {\n success: boolean;\n transactionId: string;\n hashscanUrl: string;\n status: string;\n};\n\n/** POST `/api/v3/hedera/tss/create-topic` request body. */\nexport type CreateHederaTopicRequest = ValidatorBoundRequest;\n\n/** POST `/api/v3/hedera/tss/create-topic` response body. */\nexport type CreateHederaTopicResponse = {\n success: boolean;\n topicId: string;\n transactionId: string;\n hashscanUrl: string;\n validatorBinding: {\n timestamp: string;\n topicId: string;\n memo: string;\n rulesUrl: string;\n };\n};\n\n/** POST `/api/v3/hedera/tss/submit-message` request body. */\nexport type SubmitHederaMessageRequest = {\n entityId: string;\n topicId: string;\n message: string;\n payerAccountId?: string;\n};\n\n/** POST `/api/v3/hedera/tss/submit-message` response body. */\nexport type SubmitHederaMessageResponse = {\n success: boolean;\n sequenceNumber: string | number;\n transactionId: string;\n hashscanUrl: string;\n};\n\n/** POST `/api/v3/hedera/tss/create-token` request body. */\nexport type CreateHederaTokenRequest = ValidatorBoundRequest & {\n name: string;\n symbol: string;\n decimals: number;\n initialSupply: number;\n maxSupply?: number;\n treasuryAccountId: string;\n enableAdminKey?: boolean;\n enableSupplyKey?: boolean;\n enableFreezeKey?: boolean;\n enablePauseKey?: boolean;\n enableWipeKey?: boolean;\n};\n\n/** POST `/api/v3/hedera/tss/create-token` response body. */\nexport type CreateHederaTokenResponse = {\n success: boolean;\n tokenId: string;\n transactionId: string;\n hashscanUrl: string;\n tokenUrl: string;\n keys: Record<string, string>;\n validatorBinding: {\n timestamp: string;\n topicId: string;\n memo: string;\n rulesUrl: string;\n };\n};\n\n/**\n * POST `/api/v3/hedera/tss/mint-token` request body.\n *\n * `validatorTopicId` is OPTIONAL here (unlike the create-* ops) — when\n * supplied + the validator has TokenValidationService wired, the cluster\n * enforces the rules-message mint policy. When omitted, mint runs unchecked.\n */\nexport type MintHederaTokenRequest = {\n entityId: string;\n tokenId: string;\n amount: number;\n decimals?: number;\n validatorTopicId?: string;\n payerAccountId?: string;\n};\n\n/** POST `/api/v3/hedera/tss/mint-token` response body. */\nexport type MintHederaTokenResponse = {\n success: boolean;\n transactionId: string;\n hashscanUrl: string;\n newTotalSupply: string;\n mintedAmount: string | number;\n tokenId: string;\n decimals: number;\n};\n\n/**\n * Hedera TSS sub-client — immediate-execute paths where the cluster's TSS\n * quorum signs AND submits the transaction in one HTTP call.\n *\n * Distinct from `client.hedera` (prepare-only) and from\n * `client.tss.signMPC(...)` (sign-only, no submission).\n *\n * @example Mint an HTS token created by the TSS cluster\n * ```ts\n * const minted = await client.hedera.tss.mintToken({\n * entityId: 'tss-entity-1',\n * validatorTimestamp: '1700000000.000000001',\n * validatorTopicId: '0.0.98765',\n * tokenId: '0.0.123456',\n * amount: '1000',\n * });\n * console.log(`Minted tx ${minted.transactionId}, new supply ${minted.newTotalSupply}`);\n * ```\n */\nexport class HederaTssClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Create a Hedera account whose keys are controlled by the TSS cluster. */\n async createAccount(request: CreateHederaAccountRequest): Promise<CreateHederaAccountResponse> {\n return this.http.post('/hedera/tss/create-account', request);\n }\n\n /** Update an existing account's memo via TSS-signed transaction. */\n async updateMemo(request: UpdateHederaMemoRequest): Promise<UpdateHederaMemoResponse> {\n return this.http.post('/hedera/tss/update-memo', request);\n }\n\n /** Create a TSS-controlled HCS topic. */\n async createTopic(request: CreateHederaTopicRequest): Promise<CreateHederaTopicResponse> {\n return this.http.post('/hedera/tss/create-topic', request);\n }\n\n /** Submit a message to an HCS topic via TSS signing. */\n async submitMessage(request: SubmitHederaMessageRequest): Promise<SubmitHederaMessageResponse> {\n return this.http.post('/hedera/tss/submit-message', request);\n }\n\n /** Create an HTS token with TSS-controlled admin/supply/freeze/pause/wipe keys. */\n async createToken(request: CreateHederaTokenRequest): Promise<CreateHederaTokenResponse> {\n return this.http.post('/hedera/tss/create-token', request);\n }\n\n /** Mint tokens via TSS signing — optionally rule-validated via `validatorTopicId`. */\n async mintToken(request: MintHederaTokenRequest): Promise<MintHederaTokenResponse> {\n return this.http.post('/hedera/tss/mint-token', request);\n }\n}\n","/**\n * Hedera-Specific Transaction Preparation Sub-Client\n *\n * Hedera-only escape hatches that have no multi-chain analog.\n *\n * Available via: `client.hedera.*`\n *\n * Operations exposed here:\n * - HCS topic create + topic message (Hedera Consensus Service — no analog on\n * other chains. Most app developers will not need these.)\n * - HTS compliance enable/disable (KYC grant/revoke — server hard-dispatches\n * to the Hedera capability; even though the request schema accepts other\n * chains, the handler always treats it as Hedera).\n * - HTS wipe (force-remove tokens from an account — Hedera-only by schema).\n *\n * For multi-chain operations (createToken, transfer, mint, burn, pause,\n * restrict, etc.), use the chain-agnostic top-level `client.transactions.*`\n * or top-level `client.*` methods.\n */\n\nimport type { HttpClient } from '../../http';\nimport type { PreparedTransaction, SecurityMode } from '../types';\nimport { HederaTssClient } from '../../hedera-tss';\n\n/** Topic creation preparation request (Hedera HCS only). */\nexport type PrepareTopicCreateRequest = {\n payerAccountId?: string;\n memo?: string;\n adminKeyRequired?: boolean;\n submitKeyRequired?: boolean;\n entityId: string;\n};\n\n/** Topic message preparation request (Hedera HCS only). */\nexport type PrepareTopicMessageRequest = {\n payerAccountId?: string;\n topicId: string;\n message: string | Record<string, unknown>;\n entityId: string;\n};\n\n/** Token compliance-enable (grant KYC) — Hedera-only by handler dispatch. */\nexport type PrepareTokenComplianceEnableRequest = {\n payerAccountId?: string;\n tokenId: string;\n accountId: string;\n entityId: string;\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n memo?: string;\n};\n\n/** Token compliance-disable (revoke KYC) — Hedera-only by handler dispatch. */\nexport type PrepareTokenComplianceDisableRequest = PrepareTokenComplianceEnableRequest;\n\n/** Token wipe — Hedera-only (literal schema). Force-removes tokens from an account. */\nexport type PrepareTokenWipeRequest = {\n payerAccountId?: string;\n tokenId: string;\n accountId: string;\n amount: string;\n entityId: string;\n memo?: string;\n};\n\n/**\n * Hedera-specific transaction preparation sub-client.\n *\n * Wire format: every request body is augmented with `chain: 'hedera'` before\n * POSTing — callers never write the chain literal themselves.\n *\n * Nested sub-client:\n * - `client.hedera.tss` — TSS-signed immediate-execute paths\n * (HCS topic + HTS token, account create + memo update, all submitted by\n * the cluster in one round-trip). Routes under `/api/v3/hedera/tss/*` —\n * distinct base path from the prepare-only routes on this class.\n */\nexport class HederaTransactionsClient {\n /**\n * TSS-signed Hedera operations (`/api/v3/hedera/tss/*`).\n *\n * Distinct from the prepare-only routes on this class:\n * - `client.hedera.prepareTopicCreate(...)` returns bytes for local sign+submit.\n * - `client.hedera.tss.createTopic(...)` makes the cluster sign+submit in one call.\n *\n * `tssHttp` is the validator's `/api/v3`-rooted HTTP client (different from\n * the `/api/v3/transactions` one this class uses for prepare paths). Both\n * clients are required — the previous single-arg fallback to `http` was\n * unreachable through `SmartEngineClient` (the only call site always\n * passes both).\n */\n public readonly tss: HederaTssClient;\n\n constructor(private readonly http: HttpClient, tssHttp: HttpClient) {\n this.tss = new HederaTssClient(tssHttp);\n }\n\n /** Prepare an HCS topic creation transaction. */\n async prepareTopicCreate(request: PrepareTopicCreateRequest): Promise<PreparedTransaction> {\n return this.http.post('/topic/create/prepare', { ...request, chain: 'hedera' });\n }\n\n /** Prepare an HCS topic message submission. */\n async prepareTopicMessage(request: PrepareTopicMessageRequest): Promise<PreparedTransaction> {\n return this.http.post('/topic/message/prepare', { ...request, chain: 'hedera' });\n }\n\n /** Prepare a token compliance-enable (KYC grant) transaction. */\n async prepareTokenComplianceEnable(\n request: PrepareTokenComplianceEnableRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/compliance/enable/prepare', { ...request, chain: 'hedera' });\n }\n\n /** Prepare a token compliance-disable (KYC revoke) transaction. */\n async prepareTokenComplianceDisable(\n request: PrepareTokenComplianceDisableRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/compliance/disable/prepare', { ...request, chain: 'hedera' });\n }\n\n /** Prepare a token wipe transaction (force-remove tokens from an account). */\n async prepareTokenWipe(request: PrepareTokenWipeRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/wipe/prepare', { ...request, chain: 'hedera' });\n }\n}\n","/**\n * XRPL-Specific Transaction Preparation Sub-Client\n *\n * XRPL-only escape hatches that have no multi-chain analog.\n *\n * Available via: `client.xrpl.*`\n *\n * Operations exposed here:\n * - Trust line setup (XRPL TrustSet — XRPL's account-to-issuer authorization\n * for an issued currency. The chain-agnostic analog `associateToken` does\n * not yet exist on the validator; once added, callers should prefer that.)\n *\n * For multi-chain operations (transfer, mint, burn, NFT ops), use the\n * chain-agnostic top-level `client.transactions.*` or top-level `client.*`\n * methods with `chain: 'xrpl'`.\n */\n\nimport type { HttpClient } from '../../http';\nimport type { PreparedTransaction, SecurityMode } from '../types';\n\n/** Trust line preparation request (XRPL TrustSet). */\nexport type PrepareTrustLineRequest = {\n /**\n * XRPL account authorising the trust line. Falls back to `payerAccountId`\n * and ultimately the authenticated session wallet.\n */\n accountAddress?: string;\n payerAccountId?: string;\n /** ISO-4217-like currency code (e.g. \"USD\") or 40-char hex. */\n currency: string;\n /** Classic-address of the issuer. */\n issuerAddress: string;\n /** Decimal-string trust-line limit. Defaults to validator policy when omitted. */\n limit?: string;\n entityId: string;\n};\n\n/**\n * XRPL account-setup preparation request (SignerList + DisableMaster).\n *\n * Builds the ordered transaction set required to flip an XRPL account into\n * sovereignty mode: install the validator-derived SignerList, then disable\n * the master key. Two-step response — caller signs + submits in order.\n *\n * Server schema (the server):\n * - `accountAddress` 25–34 chars (XRPL classic address).\n * - `validatorTimestamp` + `validatorTopicId` required for rule anchoring.\n * - `securityMode='partial'` requires `appOwnerPublicKey` + `entityId`.\n */\nexport type PrepareXrplAccountSetupRequest = {\n payerAccountId?: string;\n /** XRPL classic address whose authorization we're configuring. */\n accountAddress: string;\n validatorTimestamp: string;\n validatorTopicId: string;\n /** Sovereignty mode — `partial` requires `appOwnerPublicKey`. */\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n /** Required in `partial`/`full` modes to identify the TSS entity. */\n entityId?: string;\n};\n\n/**\n * Sovereignty descriptor attached to a prepared XRPL account-setup response.\n * Field shape mirrors the server's `PreparedTransactionSovereignty`.\n */\nexport type PreparedTransactionSovereignty = {\n mode: SecurityMode | 'none';\n appOwnerPublicKey?: string;\n signerListEntries?: Array<{ account: string; weight: number }>;\n signerQuorum?: number;\n};\n\n/**\n * Two-step response from `POST /xrpl/account-setup/prepare`. The caller must\n * sign + submit each step in order — step 0 installs the SignerList, step 1\n * disables the master key.\n */\nexport type XrplAccountSetupSteps = {\n steps: Array<{\n step: number;\n description?: string;\n transactionBytes: string;\n transactionId?: string;\n [k: string]: unknown;\n }>;\n sovereignty: PreparedTransactionSovereignty;\n};\n\n/**\n * XRPL-specific transaction preparation sub-client.\n *\n * Wire format: every request body is augmented with `chain: 'xrpl'` before\n * POSTing — callers never write the chain literal themselves.\n */\nexport class XrplTransactionsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Prepare an XRPL TrustSet (trust line) transaction. */\n async prepareTrustLine(request: PrepareTrustLineRequest): Promise<PreparedTransaction> {\n return this.http.post('/trustline/prepare', { ...request, chain: 'xrpl' });\n }\n\n /**\n * Prepare the ordered XRPL account-setup transaction set\n * (SignerListSet + AccountSet DisableMaster) for sovereignty mode.\n *\n * Returns `{ steps, sovereignty }`. Caller signs + submits each step in\n * order; the master key remains usable until the final AccountSet lands.\n */\n async prepareAccountSetup(\n request: PrepareXrplAccountSetupRequest,\n ): Promise<XrplAccountSetupSteps> {\n return this.http.post('/xrpl/account-setup/prepare', { ...request, chain: 'xrpl' });\n }\n}\n","/**\n * Solana-Specific Transaction Preparation Sub-Client\n *\n * Solana-only escape hatches that have no multi-chain analog.\n *\n * Available via: `client.solana.*`\n *\n * Operations exposed here:\n * - Token close-account (SPL Token CloseAccount — closes an empty ATA and\n * recovers the SOL rent. No analog on Hedera/XRPL/Polkadot/Cardano.)\n *\n * For multi-chain operations (createToken, transfer, mint, burn, pause,\n * restrict, NFT ops), use the chain-agnostic top-level `client.transactions.*`\n * or top-level `client.*` methods with `chain: 'solana'`.\n */\n\nimport type { HttpClient } from '../../http';\nimport type { PreparedTransaction, SecurityMode } from '../types';\n\n/** Token close-account preparation request (Solana SPL Token). */\nexport type PrepareTokenCloseAccountRequest = {\n payerAccountId?: string;\n /** ATA address to close. Must have zero token balance. */\n account: string;\n /** Recipient of recovered SOL rent lamports. */\n destination: string;\n /** ATA owner — required when not using TSS multisig; vault PDA used for partial/full. */\n owner?: string;\n entityId?: string;\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n memo?: string;\n};\n\n/**\n * Solana-specific transaction preparation sub-client.\n *\n * Wire format: every request body is augmented with `chain: 'solana'` before\n * POSTing — callers never write the chain literal themselves.\n */\nexport class SolanaTransactionsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Prepare an SPL Token close-account transaction. */\n async prepareTokenCloseAccount(\n request: PrepareTokenCloseAccountRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/close-account/prepare', { ...request, chain: 'solana' });\n }\n}\n","/**\n * Polkadot-Specific Transaction Preparation Sub-Client\n *\n * Polkadot Asset Hub-only escape hatches that have no multi-chain analog.\n *\n * Available via: `client.polkadot.*`\n *\n * Operations exposed here:\n * - assets.setTeam — transfer issuer/admin/freezer roles of a pallet-assets\n * asset to new SS58 addresses. No analog on Hedera/XRPL.\n * - assets.setMetadata — update on-chain name/symbol/decimals of a pallet-\n * assets asset post-creation.\n *\n * For multi-chain operations (createToken, transfer, mint, burn, pause,\n * restrict, NFT ops), use the chain-agnostic top-level `client.transactions.*`\n * or top-level `client.*` methods with `chain: 'polkadot'`.\n */\n\nimport type { HttpClient } from '../../http';\nimport type { PreparedTransaction, SecurityMode } from '../types';\n\n/** Asset setTeam preparation request (Polkadot Asset Hub). */\nexport type PrepareAssetSetTeamRequest = {\n payerAccountId?: string;\n /** pallet-assets asset id (u32). */\n assetId: number;\n /** SS58 address — new issuer. */\n issuer: string;\n /** SS58 address — new admin. */\n admin: string;\n /** SS58 address — new freezer. */\n freezer: string;\n entityId?: string;\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n ss58Format?: number;\n};\n\n/** Asset setMetadata preparation request (Polkadot Asset Hub). */\nexport type PrepareAssetSetMetadataRequest = {\n payerAccountId?: string;\n /** pallet-assets asset id (u32). */\n assetId: number;\n /** Human-readable asset name (max 64 chars). */\n name: string;\n /** Asset symbol (max 16 chars). */\n symbol: string;\n /** Decimal precision (0..18). */\n decimals: number;\n entityId?: string;\n securityMode?: SecurityMode;\n appOwnerPublicKey?: string;\n ss58Format?: number;\n};\n\n/**\n * Polkadot-specific transaction preparation sub-client.\n *\n * Wire format: every request body is augmented with `chain: 'polkadot'`\n * before POSTing — callers never write the chain literal themselves.\n */\nexport class PolkadotTransactionsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Prepare a pallet-assets.setTeam transaction. */\n async prepareAssetSetTeam(request: PrepareAssetSetTeamRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/set-team/prepare', { ...request, chain: 'polkadot' });\n }\n\n /** Prepare a pallet-assets.setMetadata transaction. */\n async prepareAssetSetMetadata(\n request: PrepareAssetSetMetadataRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/set-metadata/prepare', { ...request, chain: 'polkadot' });\n }\n}\n","/**\n * Transactions Sub-Client — Chain-Agnostic\n *\n * Provides transaction preparation for the sovereignty model:\n * transactions are prepared on the validator but signed locally by the user.\n *\n * **Every method here accepts the `ChainType` union — never a chain literal.**\n * Chain-specific escape hatches (Hedera HCS topics, XRPL trust lines, Solana\n * close-account, Polkadot setTeam/setMetadata) are exposed via namespaced\n * sub-clients on the main client: `client.hedera`, `client.xrpl`,\n * `client.solana`, `client.polkadot`.\n *\n * @example\n * ```typescript\n * // Multi-chain transfer\n * const prepared = await client.transactions.prepareTransfer({\n * chain: 'xrpl',\n * from: 'rXXX',\n * to: 'rYYY',\n * amount: '100',\n * });\n *\n * // Multi-chain token mint\n * const prepared = await client.transactions.prepareTokenMint({\n * chain: 'solana',\n * tokenId: '<mint-pubkey>',\n * amount: '1000',\n * });\n * ```\n */\n\nimport type { HttpClient } from '../http';\nimport type {\n PreparedTransaction,\n PrepareTransferRequest,\n PrepareNftMintRequest,\n PrepareNftBurnRequest,\n PrepareNftTransferRequest,\n PrepareNftCollectionCreateRequest,\n PrepareNftSetMetadataRequest,\n PrepareNftCollectionSetMetadataRequest,\n PrepareNftCollectionLockRequest,\n PrepareTokenCreateRequest,\n PrepareTokenMintRequest,\n PrepareTokenBurnRequest,\n PrepareTokenAssociateRequest,\n PrepareTokenPauseRequest,\n PrepareTokenUnpauseRequest,\n PrepareTokenRestrictRequest,\n PrepareTokenUnrestrictRequest,\n TransactionInfoResponse,\n} from './types';\n\nexport * from './types';\nexport * from './chains';\n\n/**\n * Chain-agnostic transactions sub-client.\n *\n * NOTE: This client targets `/api/v3/transactions`.\n * The injected `HttpClient` must be configured with that base URL.\n */\nexport class TransactionsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Get transaction preparation service info. */\n async getInfo(): Promise<TransactionInfoResponse> {\n return this.http.get('/info');\n }\n\n /** Prepare a transfer transaction (any supported chain). */\n async prepareTransfer(request: PrepareTransferRequest): Promise<PreparedTransaction> {\n return this.http.post('/transfer/prepare', request);\n }\n\n /** Prepare an NFT mint transaction (any supported chain). */\n async prepareNftMint(request: PrepareNftMintRequest): Promise<PreparedTransaction> {\n return this.http.post('/nft/mint/prepare', request);\n }\n\n /** Prepare an NFT burn transaction (any supported chain). */\n async prepareNftBurn(request: PrepareNftBurnRequest): Promise<PreparedTransaction> {\n return this.http.post('/nft/burn/prepare', request);\n }\n\n /** Prepare an NFT transfer transaction (any supported chain). */\n async prepareNftTransfer(request: PrepareNftTransferRequest): Promise<PreparedTransaction> {\n return this.http.post('/nft/transfer/prepare', request);\n }\n\n /**\n * Prepare an NFT collection-create transaction (Polkadot pallet-nfts /\n * Solana Metaplex master-edition).\n */\n async prepareNftCollectionCreate(\n request: PrepareNftCollectionCreateRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/nft/collection/create/prepare', request);\n }\n\n /** Prepare an NFT item set-metadata transaction (Polkadot pallet-nfts/uniques). */\n async prepareNftSetMetadata(\n request: PrepareNftSetMetadataRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/nft/set-metadata/prepare', request);\n }\n\n /** Prepare an NFT collection set-metadata transaction (Polkadot pallet-nfts/uniques). */\n async prepareNftCollectionSetMetadata(\n request: PrepareNftCollectionSetMetadataRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/nft/collection/set-metadata/prepare', request);\n }\n\n /**\n * Prepare an NFT collection-lock transaction (Polkadot pallet-nfts only).\n * Asset Hub runtimes on pallet-uniques fallback will reject with a 4xx.\n */\n async prepareNftCollectionLock(\n request: PrepareNftCollectionLockRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/nft/collection/lock/prepare', request);\n }\n\n /** Prepare a token creation transaction (Hedera, Solana, Polkadot, Cardano). */\n async prepareTokenCreate(request: PrepareTokenCreateRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/create/prepare', request);\n }\n\n /** Prepare a token mint transaction (any supported chain). */\n async prepareTokenMint(request: PrepareTokenMintRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/mint/prepare', request);\n }\n\n /**\n * Prepare a fungible token burn transaction (Hedera, Solana, Polkadot,\n * Cardano). For NFT burn use `prepareNftBurn` with a `serialNumber`.\n */\n async prepareTokenBurn(request: PrepareTokenBurnRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/burn/prepare', request);\n }\n\n /**\n * Prepare a token association transaction (Hedera HTS associate / Solana\n * ATA create). On chains that don't need explicit association (XRPL uses\n * trustlines — see `client.xrpl.prepareTrustLine`), the server returns 400.\n */\n async prepareTokenAssociate(\n request: PrepareTokenAssociateRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/associate/prepare', request);\n }\n\n /** Prepare a token pause transaction (Hedera, Polkadot, Solana). */\n async prepareTokenPause(request: PrepareTokenPauseRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/pause/prepare', request);\n }\n\n /** Prepare a token unpause transaction (Hedera, Polkadot, Solana). */\n async prepareTokenUnpause(request: PrepareTokenUnpauseRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/unpause/prepare', request);\n }\n\n /**\n * Prepare a token restrict (freeze account) transaction (Hedera, Polkadot,\n * Solana). Freezes `accountId`/`who`/`account` from transacting the token.\n */\n async prepareTokenRestrict(request: PrepareTokenRestrictRequest): Promise<PreparedTransaction> {\n return this.http.post('/token/restrict/prepare', request);\n }\n\n /** Prepare a token unrestrict (unfreeze account) transaction. */\n async prepareTokenUnrestrict(\n request: PrepareTokenUnrestrictRequest,\n ): Promise<PreparedTransaction> {\n return this.http.post('/token/unrestrict/prepare', request);\n }\n}\n","/**\n * Snapshots Sub-Client\n *\n * Provides token holder snapshot generation and retrieval.\n *\n * @example\n * ```typescript\n * // Generate a snapshot\n * const { snapshotId } = await client.snapshots.generate('0.0.12345');\n *\n * // Check status\n * const info = await client.snapshots.get(snapshotId);\n *\n * // Download when ready\n * const data = await client.snapshots.download(snapshotId, 'csv');\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n SnapshotInfo,\n SnapshotGenerateOptions,\n SnapshotGenerateResponse,\n SnapshotListResponse,\n SnapshotFormat,\n PaginationOptions,\n} from './types';\n\nexport * from './types';\n\n/**\n * Snapshots Sub-Client\n *\n * Manages token holder snapshots:\n * - Generate point-in-time snapshots of token holders\n * - Query snapshot status and metadata\n * - Download snapshot data in JSON or CSV\n */\nexport class SnapshotsClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Generate a new snapshot for a token\n *\n * @param tokenId - Token identifier\n * @param options - Generation options (format, filters)\n */\n async generate(\n tokenId: string,\n options?: SnapshotGenerateOptions\n ): Promise<SnapshotGenerateResponse> {\n return this.http.post(\n `/snapshots/generate/${encodePathParam(tokenId)}`,\n options || {}\n );\n }\n\n /**\n * Get snapshot details by ID\n */\n async get(snapshotId: string): Promise<SnapshotInfo> {\n return this.http.get(`/snapshots/${encodePathParam(snapshotId)}`);\n }\n\n /**\n * List snapshots for a token\n */\n async listByToken(\n tokenId: string,\n pagination?: PaginationOptions\n ): Promise<SnapshotListResponse> {\n const params = new URLSearchParams();\n if (pagination?.page !== undefined) params.set('page', String(pagination.page));\n if (pagination?.limit !== undefined) params.set('limit', String(pagination.limit));\n const qs = params.toString();\n return this.http.get(\n `/snapshots/token/${encodePathParam(tokenId)}${qs ? `?${qs}` : ''}`\n );\n }\n\n /**\n * Download snapshot data\n *\n * @param snapshotId - Snapshot ID\n * @param format - Output format (json or csv)\n */\n async download(snapshotId: string, format?: SnapshotFormat): Promise<any> {\n const params = format ? `?format=${encodeURIComponent(format)}` : '';\n return this.http.get(\n `/snapshots/${encodePathParam(snapshotId)}/download${params}`\n );\n }\n}\n","/**\n * HistoricalBalanceClient — thin HTTP wrapper around\n * `POST /api/v3/historical-balance/query`.\n *\n * Two construction modes:\n * 1. **Standalone (CLI):** `new HistoricalBalanceClient({ baseUrl, ... })`.\n * The client builds its own `fetch` URL + headers + timeout.\n * 2. **As a sub-client of `SmartEngineClient`:** the parent passes its\n * shared `HttpClient` via the static `HistoricalBalanceClient.fromHttp`\n * factory so that auth, timeouts, and base-URL resolution stay in one\n * place. See `client.ts`.\n *\n * Zero internal `@hsuite/*` imports — wire types are locally declared in\n * `./historical-balance-types` so the published SDK has no workspace\n * dependency.\n */\n\nimport type { HttpClient } from '../http';\nimport type {\n HistoricalBalanceClientConfig,\n HistoricalBalanceQueryParams,\n HistoricalBalanceResult,\n} from './historical-balance-types';\n\nconst DEFAULT_TIMEOUT_MS = 30_000;\nconst ENDPOINT_PATH = '/api/v3/historical-balance/query';\n\n/**\n * Error thrown by `HistoricalBalanceClient` on non-2xx responses or transport\n * failures. Surfaces `statusCode` so callers can map specific codes (400 →\n * input error / unsupported chain, 502 → upstream archive issue) without\n * string-matching messages.\n */\nexport class HistoricalBalanceClientError extends Error {\n constructor(\n message: string,\n public readonly statusCode: number,\n public readonly details?: unknown\n ) {\n super(message);\n this.name = 'HistoricalBalanceClientError';\n }\n}\n\nexport class HistoricalBalanceClient {\n // Standalone-mode fields (set when the client builds its own fetch).\n private readonly baseUrl?: string;\n private readonly authToken?: string;\n private readonly apiKey?: string;\n private readonly timeoutMs: number;\n private readonly fetchImpl?: typeof fetch;\n\n // Sub-client-mode field (set when wired via SmartEngineClient).\n private readonly http?: HttpClient;\n\n constructor(config: HistoricalBalanceClientConfig | { http: HttpClient }) {\n if ('http' in config) {\n this.http = config.http;\n this.timeoutMs = DEFAULT_TIMEOUT_MS;\n return;\n }\n if (!config.baseUrl) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient: baseUrl is required for standalone construction',\n 400\n );\n }\n this.baseUrl = config.baseUrl.replace(/\\/+$/, '');\n this.authToken = config.authToken;\n this.apiKey = config.apiKey;\n this.timeoutMs = config.timeoutMs ?? DEFAULT_TIMEOUT_MS;\n this.fetchImpl = config.fetchImpl;\n }\n\n /**\n * Factory used by `SmartEngineClient` to wire this sub-client onto the\n * parent's shared `HttpClient` (which already carries auth + baseUrl + a\n * `/api/v3` prefix). Routes through `/historical-balance/query` since the\n * parent's HttpClient is rooted at `/api/v3`.\n */\n static fromHttp(http: HttpClient): HistoricalBalanceClient {\n return new HistoricalBalanceClient({ http });\n }\n\n /**\n * Query a point-in-time balance.\n *\n * The validator returns the on-chain bigint as a base-10 decimal string.\n * Callers needing arithmetic precision should wrap the result:\n *\n * ```ts\n * const { balance } = await client.historicalBalance.getBalance({ ... });\n * const value = BigInt(balance);\n * ```\n */\n async getBalance(params: HistoricalBalanceQueryParams): Promise<HistoricalBalanceResult> {\n this.validateParams(params);\n\n if (this.http) {\n // Sub-client mode: delegate to the shared HttpClient. The path is\n // relative because the parent client roots at `/api/v3`.\n return this.http.post<HistoricalBalanceResult>('/historical-balance/query', params);\n }\n return this.standaloneFetch(params);\n }\n\n private validateParams(params: HistoricalBalanceQueryParams): void {\n if (!params || typeof params !== 'object') {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient.getBalance: params object is required',\n 400\n );\n }\n const { chain, entityId, account, atTimestamp } = params;\n if (chain !== 'hedera' && chain !== 'xrpl' && chain !== 'polkadot') {\n throw new HistoricalBalanceClientError(\n `HistoricalBalanceClient.getBalance: unsupported chain \"${String(chain)}\" (expected hedera | xrpl | polkadot)`,\n 400\n );\n }\n if (typeof entityId !== 'string' || entityId.length === 0) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient.getBalance: entityId must be a non-empty string',\n 400\n );\n }\n if (typeof account !== 'string' || account.length === 0) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient.getBalance: account must be a non-empty string',\n 400\n );\n }\n if (\n typeof atTimestamp !== 'number' ||\n !Number.isInteger(atTimestamp) ||\n atTimestamp <= 0\n ) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient.getBalance: atTimestamp must be a positive integer (unix seconds)',\n 400\n );\n }\n }\n\n private async standaloneFetch(\n params: HistoricalBalanceQueryParams\n ): Promise<HistoricalBalanceResult> {\n const url = `${this.baseUrl}${ENDPOINT_PATH}`;\n const headers: Record<string, string> = {\n 'Content-Type': 'application/json',\n Accept: 'application/json',\n };\n if (this.authToken) headers.Authorization = `Bearer ${this.authToken}`;\n if (this.apiKey) headers['X-API-Key'] = this.apiKey;\n\n const fetchFn = this.fetchImpl ?? (typeof fetch !== 'undefined' ? fetch : undefined);\n if (!fetchFn) {\n throw new HistoricalBalanceClientError(\n 'HistoricalBalanceClient: no fetch implementation available (provide fetchImpl)',\n 500\n );\n }\n\n const controller = new AbortController();\n const timer = setTimeout(() => controller.abort(), this.timeoutMs);\n\n let response: Response;\n try {\n response = await fetchFn(url, {\n method: 'POST',\n headers,\n body: JSON.stringify(params),\n signal: controller.signal,\n });\n } catch (err) {\n clearTimeout(timer);\n const message = err instanceof Error ? err.message : String(err);\n throw new HistoricalBalanceClientError(\n `HistoricalBalanceClient: transport error: ${message}`,\n 0,\n err\n );\n }\n clearTimeout(timer);\n\n let body: unknown;\n const text = await response.text();\n if (text.length > 0) {\n try {\n body = JSON.parse(text);\n } catch (err) {\n const message = err instanceof Error ? err.message : String(err);\n throw new HistoricalBalanceClientError(\n `HistoricalBalanceClient: non-JSON response (status=${response.status}): ${message}`,\n response.status,\n { raw: text }\n );\n }\n }\n\n if (!response.ok) {\n const detail =\n body && typeof body === 'object' && 'message' in (body as any)\n ? String((body as any).message)\n : `HTTP ${response.status}`;\n throw new HistoricalBalanceClientError(\n `HistoricalBalanceClient: ${detail}`,\n response.status,\n body\n );\n }\n\n return body as HistoricalBalanceResult;\n }\n}\n","/**\n * Settlement Sub-Client\n *\n * Manages cross-chain settlement operations including initiation,\n * status tracking, XRP landing confirmation, and history retrieval.\n */\n\nimport { encodePathParam, type HttpClient } from '../http';\n\nexport type {\n SettlementPurpose,\n SettlementAsset,\n SettlementInitiateRequest,\n SettlementStatusResponse,\n SettlementHistoryEntry,\n} from './types';\n\nimport type {\n SettlementInitiateRequest,\n SettlementStatusResponse,\n SettlementHistoryEntry,\n} from './types';\n\nexport class SettlementClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Initiate a new settlement operation.\n * Submits source-chain payment details and begins the conversion pipeline.\n */\n async initiate(request: SettlementInitiateRequest): Promise<SettlementStatusResponse> {\n return this.http.post('/settlement/initiate', request);\n }\n\n /**\n * Get the current status of a settlement by ID.\n */\n async getStatus(settlementId: string): Promise<SettlementStatusResponse> {\n return this.http.get(`/settlement/${encodePathParam(settlementId)}/status`);\n }\n\n /**\n * Confirm that XRP has landed on the destination address.\n * Advances the settlement to the next processing step.\n */\n async confirmXrpLanded(settlementId: string): Promise<SettlementStatusResponse> {\n return this.http.post(`/settlement/${encodePathParam(settlementId)}/confirm-xrp`, {});\n }\n\n /**\n * Get settlement history for a given entity.\n */\n async getHistory(entityId: string): Promise<SettlementHistoryEntry[]> {\n return this.http.get(`/settlement/history/${encodePathParam(entityId)}`);\n }\n}\n","/**\n * Governance Sub-Client.\n *\n * Thin HTTP wrapper around `POST /api/v3/governance/simulate`. Lets\n * smart-app authors dry-run governance-rule validation against fixture data\n * without depending on the rules-engine package.\n *\n * Zero internal-lib coupling: types are declared locally in\n * `./governance-types`; the only runtime dependency is the SDK's own\n * `HttpClient` abstraction.\n */\nimport type { HttpClient } from '../http';\nimport type {\n GovernanceSimulateRequest,\n GovernanceValidationResult,\n} from './governance-types';\n\n/**\n * Governance Sub-Client.\n *\n * Exposed as `client.governance` on `SmartEngineClient`.\n *\n * @example\n * ```typescript\n * const result = await client.governance.simulate({\n * config: { governanceTokenId: '0.0.123', proposalThreshold: '100', votingPeriodMs: 604800000 },\n * context: { callerAccountId: '0.0.111', action: 'create_proposal', tokenBalance: '500' },\n * });\n * if (!result.isValid) {\n * console.error('proposal rejected:', result.reason);\n * }\n * ```\n */\nexport class GovernanceClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Dry-run a governance proposal/vote/etc. against `GovernanceMolecule.validate(...)`.\n *\n * Returns whatever `ValidationResult` the molecule produced. A `false`\n * `isValid` is **not** an error — it is a successful \"this proposal is\n * invalid\" outcome and is surfaced via the normal return value.\n *\n * HTTP errors (400 malformed body, 500 unexpected) bubble up as\n * `SdkHttpError` via the shared `HttpClient` layer.\n */\n async simulate(params: GovernanceSimulateRequest): Promise<GovernanceValidationResult> {\n return this.http.post<GovernanceValidationResult>('/governance/simulate', params);\n }\n}\n","/**\n * DAO Dashboard Sub-Client.\n *\n * Read-only rollups indexed by user wallet address — backs the smart-app\n * \"your governance\" home screen. Maps 1:1 to `dao.controller.ts`'s\n * `dashboard/*` route group.\n */\n\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n DaoActiveProposalForUser,\n DaoActivityEntry,\n DaoDashboardStats,\n DaoGovernanceImpact,\n DaoPendingAction,\n DaoVote,\n DashboardActivityOptions,\n DashboardListOptions,\n} from './types';\n\nfunction buildQuery(params: Record<string, string | number | undefined>): string {\n const search = new URLSearchParams();\n for (const [key, value] of Object.entries(params)) {\n if (value === undefined) continue;\n search.set(key, String(value));\n }\n const qs = search.toString();\n return qs ? `?${qs}` : '';\n}\n\nexport class DaoDashboardClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Aggregated dashboard counters for a user's governance home screen. */\n async getStats(userAddress: string): Promise<DaoDashboardStats> {\n return this.http.get(\n `/dao/dashboard/stats/${encodePathParam(userAddress)}`,\n );\n }\n\n /** Active proposals across every DAO the user belongs to, with vote state. */\n async getActiveProposals(\n userAddress: string,\n ): Promise<DaoActiveProposalForUser[]> {\n return this.http.get(\n `/dao/dashboard/active-proposals/${encodePathParam(userAddress)}`,\n );\n }\n\n /** Paginated vote history across DAOs. */\n async getVoteHistory(\n userAddress: string,\n opts: DashboardListOptions = {},\n ): Promise<{ count: number; votes: DaoVote[] }> {\n const qs = buildQuery({ limit: opts.limit, offset: opts.offset });\n return this.http.get(\n `/dao/dashboard/vote-history/${encodePathParam(userAddress)}${qs}`,\n );\n }\n\n /** Activity feed (proposal-created/vote-cast/etc.) across user's DAOs. */\n async getActivity(\n userAddress: string,\n opts: DashboardActivityOptions = {},\n ): Promise<DaoActivityEntry[]> {\n const qs = buildQuery({ limit: opts.limit, daoId: opts.daoId });\n return this.http.get(\n `/dao/dashboard/activity/${encodePathParam(userAddress)}${qs}`,\n );\n }\n\n /** Items the user must act on (sign prepared messages, claim NFTs, …). */\n async getPendingActions(userAddress: string): Promise<DaoPendingAction[]> {\n return this.http.get(\n `/dao/dashboard/pending-actions/${encodePathParam(userAddress)}`,\n );\n }\n\n /** Governance impact metrics — weight delivered, success rate, streak. */\n async getImpact(userAddress: string): Promise<DaoGovernanceImpact> {\n return this.http.get(\n `/dao/dashboard/impact/${encodePathParam(userAddress)}`,\n );\n }\n}\n","/**\n * DAO Sub-Client.\n *\n * Wraps every public DAO endpoint (mounted under `/api/v3/dao`).\n *\n * Why a dedicated sub-client:\n * - The controller exposes ~30 endpoints across 5 surfaces (DAOs,\n * proposals, votes, treasury, members) plus a dashboard rollup. Before\n * this client there was no SDK entrypoint at all — smart-apps were\n * hand-rolling fetch calls.\n * - Types mirror `multi-chain-core`'s `dao.types.ts` over the wire (see\n * `./types`) so smart-app bundles don't drag NestJS / Mongoose.\n */\n\nimport { encodePathParam, type HttpClient } from '../http';\nimport { DaoDashboardClient } from './dashboard-client';\nimport type {\n AddDaoMemberRequest,\n AddMemberResponse,\n CastVoteRequest,\n CastVoteResponse,\n ClaimDaoMemberNftRequest,\n ClaimNftResponse,\n CreateDaoProposalRequest,\n CreateDaoRequest,\n CreateDaoResponse,\n CreateProposalResponse,\n DaoConfig,\n DaoProposalConfig,\n DaoVote,\n DaoWithProposalsResponse,\n ExecuteProposalResponse,\n ListDaosOptions,\n ListDaosResponse,\n ListMembersOptions,\n ListMembersResponse,\n ListProposalsOptions,\n ListProposalsResponse,\n MemberNftResponse,\n PrepareDaoProposalRequest,\n PrepareProposalResponse,\n PrepareVoteRequest,\n PrepareVoteResponse,\n ProposalResultsResponse,\n RemoveMemberResponse,\n SubmitSignedProposalRequest,\n SubmitSignedProposalResponse,\n SubmitSignedVoteRequest,\n TreasuryBalancesResponse,\n TreasuryHistoryOptions,\n TreasuryHistoryResponse,\n VoteListOptions,\n VotesListResponse,\n} from './types';\n\nfunction buildQuery(params: Record<string, string | number | undefined>): string {\n const search = new URLSearchParams();\n for (const [key, value] of Object.entries(params)) {\n if (value === undefined) continue;\n search.set(key, String(value));\n }\n const qs = search.toString();\n return qs ? `?${qs}` : '';\n}\n\nfunction encodeDaoId(daoId: string): string {\n return encodePathParam(daoId);\n}\n\nfunction encodeProposalId(proposalId: string): string {\n return encodePathParam(proposalId);\n}\n\nfunction encodeAddress(address: string): string {\n return encodePathParam(address);\n}\n\n/**\n * DAO Sub-Client — exposed as `client.dao` on `SmartEngineClient`.\n *\n * @example Create a DAO and submit a proposal\n * ```typescript\n * const { dao } = await client.dao.create({\n * name: 'Foo DAO',\n * description: '...',\n * membershipModel: 'token-only',\n * governanceToken: { symbol: 'FOO', chains: [{ chain: 'xrpl', tokenId: 'FOO.rISSUER', decimals: 8 }] },\n * votingRules: { ... },\n * treasuryChains: ['xrpl'],\n * createdBy: 'rUserAddress',\n * });\n * const { proposal } = await client.dao.createProposal(dao.daoId, {\n * type: 'dao_treasury_transfer',\n * title: 'Pay grant',\n * description: '...',\n * proposer: 'rUserAddress',\n * actions: [...],\n * });\n * ```\n */\nexport class DaoClient {\n /** Per-user rollups for the smart-app's governance home screen. */\n public readonly dashboard: DaoDashboardClient;\n\n constructor(private readonly http: HttpClient) {\n this.dashboard = new DaoDashboardClient(http);\n }\n\n // ─── Lifecycle ────────────────────────────────────────────────────────────\n\n /** Create a new DAO. */\n async create(request: CreateDaoRequest): Promise<CreateDaoResponse> {\n return this.http.post('/dao/create', request);\n }\n\n /** List DAOs with optional status / creator filters. */\n async list(opts: ListDaosOptions = {}): Promise<ListDaosResponse> {\n const qs = buildQuery({ status: opts.status, createdBy: opts.createdBy });\n return this.http.get(`/dao/list${qs}`);\n }\n\n /** Fetch a single DAO by ID. */\n async get(daoId: string): Promise<DaoConfig> {\n return this.http.get(`/dao/${encodeDaoId(daoId)}`);\n }\n\n /** Fetch a DAO together with its proposals (single round-trip). */\n async getWithProposals(daoId: string): Promise<DaoWithProposalsResponse> {\n return this.http.get(`/dao/${encodeDaoId(daoId)}/with-proposals`);\n }\n\n // ─── Proposals ────────────────────────────────────────────────────────────\n\n /** List proposals for a DAO, optionally filtered by status / proposer. */\n async listProposals(\n daoId: string,\n opts: ListProposalsOptions = {},\n ): Promise<ListProposalsResponse> {\n const qs = buildQuery({ status: opts.status, proposer: opts.proposer });\n return this.http.get(`/dao/${encodeDaoId(daoId)}/proposals${qs}`);\n }\n\n /** Create a proposal (server activates the proposal immediately). */\n async createProposal(\n daoId: string,\n request: CreateDaoProposalRequest,\n ): Promise<CreateProposalResponse> {\n return this.http.post(`/dao/${encodeDaoId(daoId)}/proposals`, request);\n }\n\n /**\n * Prepare a proposal for off-chain signing (returns the message to sign).\n * Use {@link signProposal} to submit the signature once captured.\n */\n async prepareProposal(\n daoId: string,\n request: PrepareDaoProposalRequest,\n ): Promise<PrepareProposalResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/prepare`,\n request,\n );\n }\n\n /** Submit the signed prepared-proposal payload. */\n async signProposal(\n daoId: string,\n proposalId: string,\n request: SubmitSignedProposalRequest,\n ): Promise<SubmitSignedProposalResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/sign`,\n request,\n );\n }\n\n /** Prepare a vote message for off-chain signing. */\n async prepareVote(\n daoId: string,\n proposalId: string,\n request: PrepareVoteRequest,\n ): Promise<PrepareVoteResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/prepare-vote`,\n request,\n );\n }\n\n /** Submit the signed prepared-vote payload. */\n async submitVote(\n daoId: string,\n proposalId: string,\n request: SubmitSignedVoteRequest,\n ): Promise<CastVoteResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/submit-vote`,\n request,\n );\n }\n\n /**\n * Cast a vote directly (no separate prepare/sign hop — server records the\n * vote on the caller's behalf). Use {@link prepareVote} + {@link submitVote}\n * when the smart-app's signing model requires client-side signing.\n */\n async vote(\n daoId: string,\n proposalId: string,\n request: CastVoteRequest,\n ): Promise<CastVoteResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/vote`,\n request,\n );\n }\n\n /**\n * Manually execute a passed proposal via TSS. Proposals auto-execute after\n * the execution delay; this endpoint is for the governance-admin override\n * path.\n */\n async execute(\n daoId: string,\n proposalId: string,\n ): Promise<ExecuteProposalResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/execute`,\n {},\n );\n }\n\n /** Paginated vote list for a proposal. */\n async getVotes(\n daoId: string,\n proposalId: string,\n opts: VoteListOptions = {},\n ): Promise<VotesListResponse> {\n const qs = buildQuery({ limit: opts.limit, offset: opts.offset });\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/votes${qs}`,\n );\n }\n\n /** Resolved tally / quorum / pass-fail for a proposal. */\n async getResults(\n daoId: string,\n proposalId: string,\n ): Promise<ProposalResultsResponse> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/results`,\n );\n }\n\n /** Raw vote counts by option ID (no quorum / pass logic). */\n async getVoteCounts(\n daoId: string,\n proposalId: string,\n ): Promise<Record<string, number>> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/vote-counts`,\n );\n }\n\n /** Fetch a single voter's vote on a proposal. */\n async getVoterRecord(\n daoId: string,\n proposalId: string,\n voterAddress: string,\n ): Promise<DaoVote> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}/voter/${encodeAddress(voterAddress)}`,\n );\n }\n\n /** Fetch a single proposal by ID. */\n async getProposal(\n daoId: string,\n proposalId: string,\n ): Promise<DaoProposalConfig> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/proposals/${encodeProposalId(proposalId)}`,\n );\n }\n\n // ─── Treasury ─────────────────────────────────────────────────────────────\n\n /** Per-chain treasury balances for a DAO. */\n async getTreasury(\n daoId: string,\n chain?: string,\n ): Promise<TreasuryBalancesResponse> {\n const qs = buildQuery({ chain });\n return this.http.get(`/dao/${encodeDaoId(daoId)}/treasury${qs}`);\n }\n\n /** Paginated treasury transaction history (in/out/swap). */\n async getTreasuryHistory(\n daoId: string,\n opts: TreasuryHistoryOptions = {},\n ): Promise<TreasuryHistoryResponse> {\n const qs = buildQuery({\n chain: opts.chain,\n limit: opts.limit,\n offset: opts.offset,\n });\n return this.http.get(`/dao/${encodeDaoId(daoId)}/treasury/history${qs}`);\n }\n\n // ─── Members ──────────────────────────────────────────────────────────────\n\n /** List a DAO's members, optionally filtered by status. */\n async listMembers(\n daoId: string,\n opts: ListMembersOptions = {},\n ): Promise<ListMembersResponse> {\n const qs = buildQuery({ status: opts.status });\n return this.http.get(`/dao/${encodeDaoId(daoId)}/members${qs}`);\n }\n\n /** Add a member to a DAO. */\n async addMember(\n daoId: string,\n request: AddDaoMemberRequest,\n ): Promise<AddMemberResponse> {\n return this.http.post(`/dao/${encodeDaoId(daoId)}/members`, request);\n }\n\n /** Remove a member from a DAO. */\n async removeMember(\n daoId: string,\n address: string,\n ): Promise<RemoveMemberResponse> {\n return this.http.delete(\n `/dao/${encodeDaoId(daoId)}/members/${encodeAddress(address)}`,\n );\n }\n\n /** Bind a held membership NFT serial to a member record. */\n async claimMemberNft(\n daoId: string,\n address: string,\n request: ClaimDaoMemberNftRequest,\n ): Promise<ClaimNftResponse> {\n return this.http.post(\n `/dao/${encodeDaoId(daoId)}/members/${encodeAddress(address)}/claim-nft`,\n request,\n );\n }\n\n /** Fetch the NFT serials + status for a member. */\n async getMemberNft(\n daoId: string,\n address: string,\n ): Promise<MemberNftResponse> {\n return this.http.get(\n `/dao/${encodeDaoId(daoId)}/members/${encodeAddress(address)}/nft`,\n );\n }\n}\n","/**\n * Personhood Sub-Client\n *\n * Thin HTTP wrapper around `POST /api/v3/personhood/verify`. Pure HTTP —\n * never imports a server-side personhood module or the baas-core types.\n * The locally-declared types in `./personhood-types` mirror the server's\n * wire shape; see that file for the source-of-truth annotation.\n *\n * @example\n * ```typescript\n * const cert = await client.personhood.verify({\n * candidate: '0.0.12345',\n * proof: {\n * attestationMethod: 'web-of-trust',\n * payload: { vouchers: ['0.0.111', '0.0.222'] },\n * },\n * });\n * if (!cert) {\n * console.log('verification rejected');\n * return;\n * }\n * console.log('cert expires at', cert.expiresAt);\n * ```\n */\nimport type { HttpClient } from '../http';\nimport { SdkHttpError } from '../http';\nimport type {\n PersonhoodCert,\n PersonhoodVerifyParams,\n} from './personhood-types';\n\n/**\n * Error envelope emitted by the validator when the hub has no\n * `IPersonhoodVerifier` wired. Exposed as a constant so callers can\n * branch on the `error` discriminator without re-typing the string.\n */\nexport const PERSONHOOD_VERIFIER_NOT_CONFIGURED = 'personhood_verifier_not_configured' as const;\n\n/**\n * Thin HTTP client for the personhood endpoint.\n *\n * Method outcomes:\n * - HTTP 200 with a cert object → resolves to `PersonhoodCert`.\n * - HTTP 200 with `null` body → resolves to `null` (clean rejection).\n * - HTTP 400 → throws `SdkHttpError(400)`.\n * - HTTP 503 → throws `SdkHttpError(503)` whose\n * `.details.error === 'personhood_verifier_not_configured'`.\n * - HTTP 5xx → throws `SdkHttpError` with the upstream status.\n * - Network / timeout → throws `SdkHttpError(0|408)`.\n */\nexport class PersonhoodClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Verify a personhood proof for `candidate`.\n *\n * Returns the issued cert on accept, `null` on clean rejection. All\n * other failure modes (validation, transport, 5xx) propagate as\n * `SdkHttpError`.\n */\n async verify(params: PersonhoodVerifyParams): Promise<PersonhoodCert | null> {\n const result = await this.http.post<PersonhoodCert | null>(\n '/personhood/verify',\n {\n candidate: params.candidate,\n proof: params.proof,\n },\n );\n // The validator returns `null` literally on clean rejection, and the\n // HTTP layer surfaces empty `204 No Content` bodies as `undefined`.\n // Treat both as the same \"no cert\" outcome so callers only branch on\n // `=== null`.\n if (result === undefined) return null;\n return result;\n }\n}\n\nexport type { PersonhoodCert, PersonhoodVerifyParams } from './personhood-types';\n\n/**\n * Predicate: narrows an unknown error to a 503\n * `personhood_verifier_not_configured` envelope. Use in smart-app code to\n * treat unconfigured hubs as a graceful downgrade.\n */\nexport function isPersonhoodVerifierNotConfigured(\n err: unknown,\n): err is SdkHttpError & { details: { error: typeof PERSONHOOD_VERIFIER_NOT_CONFIGURED } } {\n if (!(err instanceof SdkHttpError)) return false;\n if (err.statusCode !== 503) return false;\n const d = err.details as unknown;\n if (d === null || typeof d !== 'object') return false;\n return (d as Record<string, unknown>).error === PERSONHOOD_VERIFIER_NOT_CONFIGURED;\n}\n","/**\n * Agents Sub-Client\n *\n * Manages autonomous smart agents on the host platform.\n *\n * @example\n * ```typescript\n * // Register an agent\n * const agent = await baas.agents.register({\n * name: 'Trading Bot',\n * capabilities: ['trade', 'withdraw'],\n * rules: { maxTradeAmount: '1000', allowedPairs: ['HBAR/USDC'] },\n * });\n *\n * // Fund and trade\n * await baas.agents.fund(agent.agentId, { chain: 'hedera', amount: '500' });\n * await baas.agents.trade(agent.agentId, { chain: 'hedera', pair: 'HBAR/USDC', side: 'buy', amount: '100' });\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type { PreparedTransactionResponse } from '../../_vendor';\nimport type {\n AgentRegisterRequest,\n AgentInfo,\n AgentCertification,\n AgentRules,\n AgentEvent,\n AgentBalance,\n AgentFundRequest,\n AgentTradeRequest,\n AgentWithdrawRequest,\n AgentExecuteRequest,\n AgentExecuteResponse,\n} from './types';\n\nexport * from './types';\nexport { validateAgentRules } from './types';\nexport type { PreparedTransactionResponse } from '../../_vendor';\n\n/**\n * Envelope returned by `fund` / `trade` / `withdraw` on the host. The\n * server wraps the underlying `PreparedTransactionResponse` with a\n * `success: true` flag so the caller can distinguish the\n * lifecycle-success path from a 400/404 error response.\n */\nexport type AgentPreparedTransactionResponse = PreparedTransactionResponse & {\n success: true;\n};\n\n/**\n * Envelope returned by `fund` when the requested amount trips an\n * approval-required rule: instead of prepared transaction bytes the host\n * records a pending operation and returns its id for later approve/reject.\n * Discriminate from {@link AgentPreparedTransactionResponse} with\n * {@link isAgentFundPending}.\n */\nexport type AgentPendingApprovalResponse = {\n success: true;\n pendingOpId: string;\n agentId: string;\n action: string;\n status: 'awaiting_approval';\n description: string;\n};\n\n/**\n * Type guard distinguishing the pending-approval envelope from the\n * prepared-transaction envelope returned by {@link AgentsClient.fund}.\n */\nexport function isAgentFundPending(\n r: AgentPreparedTransactionResponse | AgentPendingApprovalResponse,\n): r is AgentPendingApprovalResponse {\n return 'pendingOpId' in r;\n}\n\nexport class AgentsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Register a new agent */\n async register(request: AgentRegisterRequest, opts?: HttpCallOptions): Promise<AgentInfo> {\n return this.http.post('/api/v3/baas/agents/register', request, opts);\n }\n\n /** Get agent details */\n async get(agentId: string, opts?: HttpCallOptions): Promise<AgentInfo> {\n return this.http.get(`/api/v3/baas/agents/${encodePathParam(agentId)}`, opts);\n }\n\n /** List all agents */\n async list(opts?: HttpCallOptions): Promise<{ agents: AgentInfo[]; total: number }> {\n return this.http.get('/api/v3/baas/agents', opts);\n }\n\n /**\n * Fund agent treasury (owner-only). Normally returns a\n * `PreparedTransactionResponse` wrapped in a `success: true` envelope —\n * the caller is expected to sign and submit the prepared bytes. When the\n * amount trips an approval-required rule the host instead returns an\n * {@link AgentPendingApprovalResponse}; discriminate with\n * {@link isAgentFundPending}.\n */\n async fund(\n agentId: string,\n request: AgentFundRequest,\n opts?: HttpCallOptions,\n ): Promise<AgentPreparedTransactionResponse | AgentPendingApprovalResponse> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/fund`, request, opts);\n }\n\n /**\n * Execute a trade (agent-wallet OR owner). Returns a\n * `PreparedTransactionResponse` wrapped in a `success: true` envelope.\n */\n async trade(\n agentId: string,\n request: AgentTradeRequest,\n opts?: HttpCallOptions,\n ): Promise<AgentPreparedTransactionResponse> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/trade`, request, opts);\n }\n\n /**\n * Withdraw from agent treasury (owner-only). Returns a\n * `PreparedTransactionResponse` wrapped in a `success: true` envelope.\n */\n async withdraw(\n agentId: string,\n request: AgentWithdrawRequest,\n opts?: HttpCallOptions,\n ): Promise<AgentPreparedTransactionResponse> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/withdraw`, request, opts);\n }\n\n /**\n * Execute a generic, declared capability (agent-wallet OR owner). The\n * chain-agnostic general form of an agent action: the capability may settle\n * on-chain, act off-chain, or both. Returns the ordered step results.\n */\n async execute(\n agentId: string,\n request: AgentExecuteRequest,\n opts?: HttpCallOptions,\n ): Promise<AgentExecuteResponse & { success: true }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/execute`, request, opts);\n }\n\n /** Pause an agent */\n async pause(agentId: string, opts?: HttpCallOptions): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/pause`, {}, opts);\n }\n\n /** Resume a paused agent */\n async resume(agentId: string, opts?: HttpCallOptions): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/resume`, {}, opts);\n }\n\n /** Revoke an agent (permanent) */\n async revoke(agentId: string, opts?: HttpCallOptions): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/revoke`, {}, opts);\n }\n\n /**\n * Get an agent's certification snapshot (identity, rule refs, BLS group key,\n * and recent on-chain activity). A 404 throws `SdkHttpError` via `http.get`\n * — parity with {@link get}.\n */\n async certification(agentId: string, opts?: HttpCallOptions): Promise<AgentCertification> {\n return this.http.get(`/api/v3/baas/agents/${encodePathParam(agentId)}/certification`, opts);\n }\n\n /**\n * Update agent rules.\n *\n * Server route is PATCH `/api/v3/baas/agents/:agentId/rules`\n * (`agents.controller.ts:375`). The previous PUT variant 404'd because\n * Nest matched the dynamic `:agentId` GET/POST handlers and rejected\n * the verb mismatch.\n */\n async updateRules(agentId: string, rules: Partial<AgentRules>, opts?: HttpCallOptions): Promise<AgentInfo> {\n return this.http.patch(`/api/v3/baas/agents/${encodePathParam(agentId)}/rules`, rules, opts);\n }\n\n /** Get agent events */\n async getEvents(agentId: string, opts?: HttpCallOptions): Promise<{ events: AgentEvent[]; total: number }> {\n return this.http.get(`/api/v3/baas/agents/${encodePathParam(agentId)}/events`, opts);\n }\n\n /** Get agent balances across chains */\n async getBalances(agentId: string, opts?: HttpCallOptions): Promise<{ balances: AgentBalance[] }> {\n return this.http.get(`/api/v3/baas/agents/${encodePathParam(agentId)}/balances`, opts);\n }\n\n /** Approve a pending agent operation */\n async approve(agentId: string, operationId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/approve/${encodePathParam(operationId)}`, {}, opts);\n }\n\n /** Reject a pending agent operation */\n async reject(agentId: string, operationId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n return this.http.post(`/api/v3/baas/agents/${encodePathParam(agentId)}/reject/${encodePathParam(operationId)}`, {}, opts);\n }\n}\n","/**\n * Deployment Sub-Client — runtime orchestration.\n *\n * The four-step deploy flow:\n *\n * 1. `init` — server allocates appId + per-app Harbor project + ephemeral push robot creds.\n * 2. (out-of-band) — customer `docker login <registry.server>` then `docker push <registry.server>/<registry.repository>:<tag>`.\n * 3. `uploadFrontend` — (optional) tarball with the SPA bundle.\n * 4. `deploy` — server reconciles to k8s.\n *\n * @example\n * ```typescript\n * const init = await baas.deployment.init({ name: 'my-app', port: 3200, services: ['database'] });\n *\n * // Use the credentials returned in init.registry to push the backend image.\n * // init.registry.server → e.g. 'harbor.testnet.hsuite.network' (public round-robin)\n * // init.registry.repository → e.g. 'hsuite-customers-<appId>'\n * // init.registry.username → per-project robot account\n * // init.registry.password → per-app push secret (re-derivable, not persisted as plaintext)\n * //\n * // docker login <init.registry.server> -u <init.registry.username> -p <init.registry.password>\n * // docker push <init.registry.server>/<init.registry.repository>:v1\n *\n * await baas.deployment.deploy(init.appId, { tag: 'v1', replicas: 2 });\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n BaasInitRequest,\n BaasInitResponse,\n BaasReissuePushCredentialsResponse,\n BaasDeployRequest,\n BaasDeployResponse,\n BaasUploadFrontendResponse,\n BaasRollbackRequest,\n BaasRuntimeStatus,\n BaasAppListResponse,\n BaasSetWebhookResponse,\n BaasRotateKekResponse,\n BaasRevokeKekResponse,\n DeployedAppInfo,\n} from '../types';\n\nexport class DeploymentClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Step 1 — allocate appId + receive ephemeral push credentials for\n * the cluster's per-tenant Harbor project.\n *\n * Each app gets its own Harbor project (`hsuite-customers-<appId>`)\n * isolated by Harbor's RBAC. The push robot returned in\n * `registry.{username, password}` is scoped to that project only —\n * it cannot read or write any other tenant's images.\n *\n * **Single-use secret discipline:** `registry.password` is returned\n * exactly once and is NOT persisted server-side. Store it locally\n * for the `docker push` and discard. To rotate, call `init` again\n * (issues a new robot under the same project).\n *\n * Use the credentials to `docker login` + `docker push`, then call\n * {@link deploy} with the pushed image tag.\n */\n async init(request: BaasInitRequest): Promise<BaasInitResponse> {\n return this.http.post('/api/v3/baas/deployment/apps/init', request);\n }\n\n /**\n * Issue ephemeral Harbor push credentials for a smart-app that ALREADY\n * EXISTS — the MINT-FIRST / DEPLOY-LAST credentials-push call.\n *\n * Unlike {@link init} (which historically allocated a fresh entity), this\n * takes the developer's pre-existing `appId` — the `SUBSCRIPTION_APP_ID`\n * minted by `hsuite subscribe` (`appId == DKG entityId`) — and ONLY\n * (re)provisions the per-app Harbor project + push robot. The server creates\n * no DKG entity and no subscription; it asserts the caller owns the app and\n * that its subscription is ACTIVE (402 otherwise) first.\n *\n * Returns the same `{ appId, registry }` shape as {@link init}. Single-use\n * secret discipline applies to `registry.password` exactly as in `init`.\n *\n * This is the credentials path the mint-first `hsuite deploy` uses to obtain\n * push creds for the developer's already-minted subscription app\n * (`POST /apps/:appId/credentials/push`). The `hsuite redeploy` re-push path\n * uses {@link reissuePushCredentials} instead, which targets a dedicated\n * `credentials/reissue` route with stricter SUSPENDED-app + Harbor-failure\n * handling.\n */\n async pushCredentials(appId: string): Promise<BaasInitResponse> {\n return this.http.post(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/credentials/push`,\n {},\n );\n }\n\n /**\n * Reissue ephemeral Harbor push credentials for an EXISTING app, WITHOUT\n * allocating a new appId / entity. Unlike {@link init} — which historically\n * forked a fresh smart-app entity (and a fresh paid subscription) on every\n * call — this re-binds to an app the developer already owns: the `appId` is\n * echoed back unchanged and only a new single-use `registry.password` push\n * robot is minted. Same `{ appId, registry }` response shape as `init`.\n *\n * Owner-only + active-subscription gated server-side. This is the credential\n * path `hsuite redeploy` uses so a re-push does not cost a new entity +\n * subscription each run. Targets the dedicated\n * `POST /apps/:appId/credentials/reissue` route (distinct from\n * {@link pushCredentials}'s first-deploy `credentials/push`): the reissue\n * route additionally refuses SUSPENDED apps and surfaces Harbor failures\n * loudly rather than returning placeholder creds.\n */\n async reissuePushCredentials(\n appId: string,\n ): Promise<BaasReissuePushCredentialsResponse> {\n return this.http.post(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/credentials/reissue`,\n {},\n );\n }\n\n /**\n * Step 3 (optional) — upload the SPA tarball.\n *\n * The tarball is content-addressed (SHA-256) and mounted read-only\n * into the customer's pod alongside the backend container. Returns\n * the hash + size so the caller can verify the upload.\n */\n async uploadFrontend(\n appId: string,\n bundle: Blob | Buffer,\n filename = 'bundle.tar.gz'\n ): Promise<BaasUploadFrontendResponse> {\n // The smart-host upload handler uses `FileInterceptor('bundle', ...)` —\n // the multipart field name MUST be `bundle`, not the SDK's default\n // `'file'`. Override explicitly.\n return this.http.upload(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/frontend`,\n bundle,\n filename,\n undefined,\n 'bundle',\n );\n }\n\n /**\n * Step 4 — reconcile the runtime to k8s.\n *\n * Returns immediately with `status: 'deploying'`. Poll {@link status}\n * until `runtime.runtimeState === 'RUNNING'` for the URL to be live.\n */\n async deploy(appId: string, request: BaasDeployRequest): Promise<BaasDeployResponse> {\n return this.http.post(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/deploy`, request);\n }\n\n /**\n * Roll back to a previously-deployed image tag (must exist in\n * `runtime.deploymentHistory[]`).\n */\n async rollback(appId: string, request: BaasRollbackRequest): Promise<BaasDeployResponse> {\n return this.http.post(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/rollback`, request);\n }\n\n /**\n * Live combined lifecycle + runtime status of an app.\n */\n async status(appId: string): Promise<BaasRuntimeStatus> {\n return this.http.get(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/status`);\n }\n\n /**\n * List all deployed apps for the authenticated developer.\n */\n async list(): Promise<BaasAppListResponse> {\n return this.http.get('/api/v3/smart-apps');\n }\n\n /**\n * Get app details.\n */\n async get(appId: string): Promise<DeployedAppInfo> {\n return this.http.get(`/api/v3/smart-apps/${encodePathParam(appId)}`);\n }\n\n /**\n * Update app configuration.\n *\n * @param appId - The app to update.\n * @param updates - Partial deploy-request fields to apply.\n * @returns The updated app info.\n */\n async update(appId: string, updates: Partial<BaasDeployRequest>): Promise<DeployedAppInfo> {\n return this.http.put(`/api/v3/smart-apps/${encodePathParam(appId)}`, updates);\n }\n\n /**\n * Delete an app (runtime effect: namespace teardown).\n */\n async delete(appId: string): Promise<{ success: boolean }> {\n return this.http.delete(`/api/v3/smart-apps/${encodePathParam(appId)}`);\n }\n\n /**\n * Suspend an app (runtime effect: scale to zero).\n */\n async suspend(appId: string): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/smart-apps/${encodePathParam(appId)}/suspend`, {});\n }\n\n /**\n * Resume a suspended app (runtime effect: scale back up).\n */\n async resume(appId: string): Promise<{ success: boolean; status: string }> {\n return this.http.post(`/api/v3/smart-apps/${encodePathParam(appId)}/resume`, {});\n }\n\n /**\n * Get deployment statistics.\n */\n async getStats(): Promise<{\n totalApps: number;\n activeApps: number;\n totalOwners: number;\n }> {\n return this.http.get('/api/v3/smart-apps/stats');\n }\n\n /**\n * Register or update the developer-facing webhook URL for runtime\n * lifecycle events (`runtime.deploying` / `running` / `failed` /\n * `suspended` / `resumed` / `retired`).\n *\n * The host's `DeployWebhookDispatcher` POSTs to this URL whenever the\n * smart-deployer reconciler emits a `runtime.*` NATS event, signed with\n * the returned `webhookSecret`:\n *\n * `X-HSuite-Signature: sha256=<hmac-sha256(secret, raw-body)>`\n *\n * Store `webhookSecret` server-side and re-compute the signature over\n * the raw delivery body to verify authenticity. The secret is surfaced\n * only on PUT — re-call this method to rotate.\n *\n * Server validates: HTTPS only, no loopback / RFC1918 / link-local /\n * CGNAT / cloud metadata destinations (SSRF guard).\n */\n async setWebhook(appId: string, webhookUrl: string): Promise<BaasSetWebhookResponse> {\n return this.http.put(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/webhook`, {\n webhookUrl,\n });\n }\n\n /**\n * Per-app Prometheus metrics in the standard exposition format\n * (text/plain; version=0.0.4). The server filters smart-deployer's\n * `/metrics` to lines that mention this app's `appId` label, while\n * preserving HELP / TYPE comment lines and cluster-wide metrics.\n *\n * Returned as a raw string so callers can pipe directly into a\n * Prometheus parser (`prom-client`, `parse-prometheus-text-format`,\n * etc.) without an intermediate JSON decode that would corrupt the\n * exposition format.\n */\n async getMetrics(appId: string): Promise<string> {\n return this.http.getText(`/api/v3/baas/deployment/apps/${encodePathParam(appId)}/metrics`);\n }\n\n /**\n * Rotate the smart-app's tenant-secret KEK.\n *\n * Re-encrypts every `runtime.env` envelope at the new KEK version\n * transparently. Previous versions remain valid until explicitly\n * revoked via {@link revokeKek}. Owner-only.\n */\n async rotateKek(appId: string): Promise<BaasRotateKekResponse> {\n return this.http.post(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/credentials/rotate-kek`,\n {},\n );\n }\n\n /**\n * Revoke a tenant-secret KEK version (emergency burn).\n *\n * Envelopes at the revoked version become operationally dead —\n * decryption inside the smart-app pod fails. Owner-only and\n * **irreversible**. Returns the cumulative list of revoked versions\n * for this app.\n */\n async revokeKek(appId: string, version: number): Promise<BaasRevokeKekResponse> {\n return this.http.post(\n `/api/v3/baas/deployment/apps/${encodePathParam(appId)}/credentials/revoke-kek`,\n { version },\n );\n }\n}\n","/**\n * Bridge Sub-Client.\n *\n * Mounted on `client.bridge`. Endpoints map 1:1 to the validator bridge routes:\n *\n * - POST `/bridge/create` → `create`\n * - GET `/bridge/list` → `list` (Public)\n * - GET `/bridge/:bridgeId` → `get` (Public)\n * - POST `/bridge/:bridgeId/port` → `port`\n * - POST `/bridge/:bridgeId/return` → `return`\n * - GET `/bridge/:bridgeId/status/:claimId` → `getStatus` (Public)\n * - GET `/bridge/:bridgeId/supply` → `getSupply` (Public)\n * - GET `/bridge/:bridgeId/claims` → `listClaims` (Public)\n *\n * Operator-only routes (PATCH `/rules`, POST `/pause`, POST `/close`) are\n * intentionally not surfaced — those flip the cross-cluster state of a\n * live bridge and belong in governance tooling, not SDK callers.\n *\n * @example List bridges then port tokens through one\n * ```ts\n * const { bridges } = await client.bridge.list();\n * const port = await client.bridge.port(bridges[0].bridgeId, {\n * fromChain: 'hedera',\n * toChain: 'xrpl',\n * amount: '100',\n * recipient: 'rRecipient...',\n * });\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n CreateBridgeRequest,\n CreateBridgeResponse,\n BridgeConfig,\n ListBridgesOptions,\n ListBridgesResponse,\n PortRequest,\n ReturnRequest,\n PortResult,\n BridgeClaimRecord,\n BridgeSupply,\n ListClaimsOptions,\n ListClaimsResponse,\n} from './bridge-types';\n\nexport class BridgeClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Create a new bridge instance — triggers DKG + TSS entity creation server-side. */\n async create(request: CreateBridgeRequest): Promise<CreateBridgeResponse> {\n return this.http.post('/bridge/create', request);\n }\n\n /** List bridges. Both filters are optional. */\n async list(options?: ListBridgesOptions): Promise<ListBridgesResponse> {\n const params = new URLSearchParams();\n if (options?.status) params.append('status', options.status);\n if (options?.sourceChain) params.append('sourceChain', options.sourceChain);\n const qs = params.toString();\n return this.http.get(`/bridge/list${qs ? `?${qs}` : ''}`);\n }\n\n /** Get bridge configuration. */\n async get(bridgeId: string): Promise<BridgeConfig> {\n return this.http.get(`/bridge/${encodePathParam(bridgeId)}`);\n }\n\n /** Port tokens from source → destination. */\n async port(bridgeId: string, request: PortRequest): Promise<PortResult> {\n return this.http.post(`/bridge/${encodePathParam(bridgeId)}/port`, request);\n }\n\n /**\n * Return tokens from destination → source. Only meaningful on two-way\n * bridges; the validator rejects the call on one-way bridges with a 400.\n *\n * Method name is `return_` to avoid colliding with the reserved JS\n * keyword in some downstream codegen. Prefer `client.bridge.return(...)`\n * via the named alias below.\n */\n async return(bridgeId: string, request: ReturnRequest): Promise<PortResult> {\n return this.http.post(`/bridge/${encodePathParam(bridgeId)}/return`, request);\n }\n\n /** Get claim status by claim ID under a given bridge. */\n async getStatus(bridgeId: string, claimId: string): Promise<BridgeClaimRecord> {\n return this.http.get(\n `/bridge/${encodePathParam(bridgeId)}/status/${encodePathParam(claimId)}`,\n );\n }\n\n /** Get aggregate supply view for a bridge. */\n async getSupply(bridgeId: string): Promise<BridgeSupply> {\n return this.http.get(`/bridge/${encodePathParam(bridgeId)}/supply`);\n }\n\n /** List bridge claims with optional pagination. */\n async listClaims(\n bridgeId: string,\n options?: ListClaimsOptions,\n ): Promise<ListClaimsResponse> {\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.append('limit', String(options.limit));\n if (options?.offset !== undefined) params.append('offset', String(options.offset));\n const qs = params.toString();\n return this.http.get(\n `/bridge/${encodePathParam(bridgeId)}/claims${qs ? `?${qs}` : ''}`,\n );\n }\n}\n","/**\n * Resources Sub-Client.\n *\n * Mounted on `client.resources`. Wraps the validator resources routes:\n *\n * - GET `/resources/summary` → `getSummary`\n * - GET `/resources/consumption/:appId` → `getConsumption`\n * - GET `/resources/consumption/:appId/history` → `getHistory`\n * - GET `/resources/consumption/:appId/ledger` → `getLedger`\n * - GET `/resources/consumption/:appId/status` → `getStatus`\n * - GET `/resources/consumption/:appId/breakdown` → `getBreakdown`\n * - GET `/resources/nodes` → `listNodes`\n * - GET `/resources/nodes/:nodeId` → `getNode`\n *\n * The two resource controllers (`ResourcesController` here +\n * `ResourceController` in `monitoring/`) are kept separate because they\n * serve different audiences; this wrapper exposes the smart-app facing\n * surface only.\n *\n * @example Inspect today's consumption for a smart-app\n * ```ts\n * const summary = await client.resources.getConsumption('app_abc');\n * console.log(`${summary.requests} requests, ${summary.storageMb} MB storage today`);\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n ResourceSummaryResponse,\n ResourceConsumptionResponse,\n ResourceHistoryResponse,\n ResourceLedgerResponse,\n ResourceStatusResponse,\n ResourceBreakdownResponse,\n ResourceNodesResponse,\n ResourceNodeResponse,\n ResourceLedgerOptions,\n ResourceBreakdownOptions,\n} from './resources-types';\n\nexport class ResourcesClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Network-wide consumption summary across all nodes. */\n async getSummary(): Promise<ResourceSummaryResponse> {\n return this.http.get('/resources/summary');\n }\n\n /** Current-day consumption breakdown for an app. */\n async getConsumption(appId: string): Promise<ResourceConsumptionResponse> {\n return this.http.get(`/resources/consumption/${encodePathParam(appId)}`);\n }\n\n /** Daily usage history from the persistent store. `days` defaults to 30 server-side. */\n async getHistory(appId: string, days?: number): Promise<ResourceHistoryResponse> {\n const qs = days !== undefined ? `?days=${days}` : '';\n return this.http.get(\n `/resources/consumption/${encodePathParam(appId)}/history${qs}`,\n );\n }\n\n /** Paginated billing ledger. All filters optional. */\n async getLedger(\n appId: string,\n options?: ResourceLedgerOptions,\n ): Promise<ResourceLedgerResponse> {\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.append('limit', String(options.limit));\n if (options?.offset !== undefined) params.append('offset', String(options.offset));\n if (options?.since) params.append('since', options.since);\n if (options?.until) params.append('until', options.until);\n if (options?.category) params.append('category', options.category);\n const qs = params.toString();\n return this.http.get(\n `/resources/consumption/${encodePathParam(appId)}/ledger${qs ? `?${qs}` : ''}`,\n );\n }\n\n /**\n * Current consumption status with threshold warnings and upgrade hints.\n * `dailyLimit` overrides the per-app tier default and is rare —\n * smart-app callers should leave it unset.\n */\n async getStatus(appId: string, dailyLimit?: number): Promise<ResourceStatusResponse> {\n const qs = dailyLimit !== undefined ? `?dailyLimit=${dailyLimit}` : '';\n return this.http.get(\n `/resources/consumption/${encodePathParam(appId)}/status${qs}`,\n );\n }\n\n /** Consumption aggregated by category over the supplied window. */\n async getBreakdown(\n appId: string,\n options?: ResourceBreakdownOptions,\n ): Promise<ResourceBreakdownResponse> {\n const params = new URLSearchParams();\n if (options?.since) params.append('since', options.since);\n if (options?.until) params.append('until', options.until);\n const qs = params.toString();\n return this.http.get(\n `/resources/consumption/${encodePathParam(appId)}/breakdown${qs ? `?${qs}` : ''}`,\n );\n }\n\n /** Per-node consumption reports. */\n async listNodes(): Promise<ResourceNodesResponse> {\n return this.http.get('/resources/nodes');\n }\n\n /** Single node's report. */\n async getNode(nodeId: string): Promise<ResourceNodeResponse> {\n return this.http.get(`/resources/nodes/${encodePathParam(nodeId)}`);\n }\n}\n","/**\n * Envelope Sub-Client.\n *\n * Mounted on `client.envelope`. Wraps the validator envelope routes:\n *\n * - POST `/envelope/encrypt` → `encrypt`\n * - POST `/envelope/decrypt` → `decrypt`\n *\n * The cluster master KEK and the derived per-app KEK NEVER cross the HTTP\n * boundary. Only the envelope (ciphertext + nonce + tag + metadata) is\n * persisted client-side; the validator handles all key material.\n *\n * @example Seal a tenant secret + recover it later\n * ```ts\n * const sealed = await client.envelope.encrypt({\n * appId: 'app_abc',\n * plaintext: 'super-secret-api-key',\n * });\n *\n * const opened = await client.envelope.decrypt({\n * appId: 'app_abc',\n * envelope: sealed.envelope,\n * });\n * ```\n */\nimport type { HttpClient } from '../http';\nimport type {\n EncryptRequest,\n EncryptResponse,\n DecryptRequest,\n DecryptResponse,\n} from './envelope-types';\n\nexport class EnvelopeClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Seal `plaintext` under the per-app KEK for `appId` at `kekVersion`.\n * Returns the canonical envelope shape suitable for persistence in\n * Mongo / NATS / on the EventBus.\n */\n async encrypt(request: EncryptRequest): Promise<EncryptResponse> {\n return this.http.post('/envelope/encrypt', request);\n }\n\n /**\n * Open `envelope` for `appId`. The plaintext is returned in the response\n * body — callers MUST treat it as ephemeral (no logs, no Mongo, no\n * NATS broadcast). The validator never persists or replays it.\n */\n async decrypt(request: DecryptRequest): Promise<DecryptResponse> {\n return this.http.post('/envelope/decrypt', request);\n }\n}\n","/**\n * Tokens (Migration) Sub-Client.\n *\n * Mounted on `client.tokens`. Wraps the validator's token-migration routes:\n *\n * - POST `/tokens/migrate` → `migrate`\n * - GET `/tokens/migrations` → `listMigrations`\n * - GET `/tokens/migrations/:id` → `getMigration`\n * - GET `/tokens/:tokenId/migrations` → `getMigrationsForToken`\n *\n * For per-token details, use `client.getTokenInfo(chain, tokenId)`.\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n TokenMigrationRequest,\n TokenMigrationResponse,\n TokenMigrationStatus,\n ListMigrationsResponse,\n TokenMigrationsForTokenResponse,\n} from './tokens-types';\n\nexport class TokensClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Initiate a token migration to TSS-controlled keys. */\n async migrate(request: TokenMigrationRequest): Promise<TokenMigrationResponse> {\n return this.http.post('/tokens/migrate', request);\n }\n\n /** List all known migrations on this validator. */\n async listMigrations(): Promise<ListMigrationsResponse> {\n return this.http.get('/tokens/migrations');\n }\n\n /**\n * Get one migration's status by id. The server returns\n * `{ error: string }` (NOT a 404) when the migration is unknown, so the\n * union type makes the failure mode explicit.\n */\n async getMigration(\n migrationId: string,\n ): Promise<TokenMigrationStatus | { error: string }> {\n return this.http.get(`/tokens/migrations/${encodePathParam(migrationId)}`);\n }\n\n /** All migrations recorded against a specific token id. */\n async getMigrationsForToken(\n tokenId: string,\n ): Promise<TokenMigrationsForTokenResponse> {\n return this.http.get(`/tokens/${encodePathParam(tokenId)}/migrations`);\n }\n}\n","/**\n * Operator Funding Sub-Client.\n *\n * Mounted on `client.operator`. Wraps the validator operator-funding routes:\n *\n * - GET `/operator/balance/:chain/:accountId` → `getBalance`\n * - GET `/operator/topup/:chain/:accountId` → `getTopup`\n *\n * Both endpoints are `@Public()` server-side — no auth required.\n *\n * @example Check operator funding before submitting a chain op\n * ```ts\n * const balance = await client.operator.getBalance('hedera', '0.0.12345');\n * const topup = await client.operator.getTopup('hedera', '0.0.12345');\n * if (topup.status !== 'healthy') {\n * console.warn(`Operator needs top-up: recommended=${topup.recommendedBalance}`);\n * }\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../http';\nimport type {\n OperatorChain,\n OperatorBalanceResponse,\n OperatorTopUpResponse,\n} from './operator-types';\n\nexport class OperatorClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Get the on-chain HBAR + token balance of an operator account. */\n async getBalance(\n chain: OperatorChain,\n accountId: string,\n ): Promise<OperatorBalanceResponse> {\n return this.http.get(\n `/operator/balance/${encodePathParam(chain)}/${encodePathParam(accountId)}`,\n );\n }\n\n /** Get top-up guidance for an operator account (recommended balance + status). */\n async getTopup(\n chain: OperatorChain,\n accountId: string,\n ): Promise<OperatorTopUpResponse> {\n return this.http.get(\n `/operator/topup/${encodePathParam(chain)}/${encodePathParam(accountId)}`,\n );\n }\n}\n","import {\n CreateAccountRequestSchema,\n ValidatorCreateAccountRequest,\n CreateAccountResponse,\n TransferRequestSchema,\n TransferRequest,\n TransferResponse,\n CreateTokenRequestSchema,\n ValidatorCreateTokenRequest,\n CreateTokenResponse,\n MintTokenRequestSchema,\n MintTokenRequest,\n BurnTokenRequestSchema,\n BurnTokenRequest,\n TokenActionRequestSchema,\n TokenActionRequest,\n ActionResult,\n AccountBalance,\n AccountInfo,\n Transaction,\n TokenInfo,\n ChainType,\n} from './_vendor';\nimport { type CircuitBreakerSnapshot } from './_vendor';\nimport {\n ValidatorDiscoveryClient,\n ValidatorInfo,\n DiscoveryClient,\n} from './discovery';\nimport { ValidatorAuthClient, AuthChain, AuthenticateResponse } from './auth';\nimport { createHttpClient, encodePathParam, type HttpClient } from './http';\n\n// Sub-client imports — public API only (for third-party smart-app developers)\nimport { SubscriptionClient } from './subscription';\nimport { FaucetClient } from './faucet';\nimport { TSSClient } from './tss';\nimport { IPFSClient } from './ipfs';\nimport {\n TransactionsClient,\n HederaTransactionsClient,\n XrplTransactionsClient,\n SolanaTransactionsClient,\n PolkadotTransactionsClient,\n} from './transactions';\nimport { SnapshotsClient } from './snapshots';\nimport { HistoricalBalanceClient } from './historical-balance';\nimport { SettlementClient } from './settlement';\nimport { GovernanceClient } from './governance';\nimport { DaoClient } from './dao';\nimport { PersonhoodClient } from './personhood';\nimport { AgentsClient } from './baas/agents';\nimport { DeploymentClient } from './baas/deployment';\nimport { BridgeClient } from './bridge';\nimport { ResourcesClient } from './resources';\nimport { EnvelopeClient } from './envelope';\nimport { TokensClient } from './tokens';\nimport { OperatorClient } from './operator';\n\n/**\n * Smart Engine Client Configuration.\n *\n * TYPE-FENCE (SDK 4.0): `SmartEngineClient` is the IN-CLUSTER / VALIDATOR-DIRECT\n * profile. It targets the validator's RAW tier (`/api/v3/{transactions,tss,\n * faucet,tokens,...}`), which is un-ingressed at the public gateway — calling it\n * with a gateway origin 404s. To make that footgun structurally impossible the\n * config requires an EXPLICIT `validatorBaseUrl` (not a generic `baseUrl`): the\n * caller must consciously hand over a validator origin, never a gateway URL that\n * happened to flow out of cluster discovery. App-as-proxy / external consumers\n * must use {@link BaasClient} instead (host BaaS tier).\n */\nexport interface SmartEngineClientConfig {\n /**\n * VALIDATOR API base URL (the in-cluster validator origin — NOT a gateway).\n * The raw `/api/v3/*` tier is reachable only here; a gateway URL will 404.\n */\n validatorBaseUrl: string;\n /** API key for authenticated requests */\n apiKey?: string;\n /** Session token from validator auth */\n authToken?: string;\n /** Request timeout in milliseconds */\n timeout?: number;\n /** Allow HTTP (insecure) connections - only for local development */\n allowInsecure?: boolean;\n}\n\n/**\n * Network connection configuration for auto-discovery\n */\nexport interface NetworkConnectionConfig {\n /** Hedera network (mainnet, testnet, previewnet) */\n network: 'mainnet' | 'testnet' | 'previewnet';\n /** HCS topic ID for validator registry */\n registryTopicId: string;\n /** Blockchain type for authentication */\n chain: AuthChain;\n /** Wallet address for authentication */\n address: string;\n /** Public key (hex encoded) */\n publicKey: string;\n /** Function to sign the challenge */\n signFn: (challenge: string) => string | Promise<string>;\n /** Optional metadata for authentication */\n metadata?: {\n appId?: string;\n appName?: string;\n };\n /** Custom mirror node URL */\n mirrorNodeUrl?: string;\n /** Allow HTTP (insecure) connections - only for local development */\n allowInsecure?: boolean;\n}\n\n/**\n * Connection result from connectToNetwork\n */\nexport interface NetworkConnectionResult {\n /** Configured client ready to use */\n client: SmartEngineClient;\n /** Validator that was connected to */\n validator: ValidatorInfo;\n /** Authentication session */\n session: AuthenticateResponse;\n}\n\n/**\n * Smart Engine Client — IN-CLUSTER / VALIDATOR-DIRECT profile.\n *\n * Unified, type-safe client for interacting with Smart Engines validators over\n * the RAW tier (`/api/v3/{transactions,tss,faucet,tokens,...}`).\n *\n * **TYPE-FENCE (SDK 4.0):** this client is constructible ONLY with an explicit\n * validator origin ({@link SmartEngineClientConfig.validatorBaseUrl}). The raw\n * `/api/v3/*` tier is un-ingressed at the public gateway, so pointing this\n * client at a gateway URL 404s — that footgun is removed by requiring a\n * conscious validator origin and by NOT shipping a gateway-discovery factory on\n * this client. External / app-as-proxy consumers must use `BaasClient` (the\n * host BaaS tier at `{gateway}/host/api/v3/baas/*`) instead. The only\n * auto-discovery path here ({@link connectToNetwork}) resolves a real validator\n * `apiEndpoint` from the HCS registry, never a gateway URL.\n *\n * Supports direct connection or HCS-registry auto-discovery.\n *\n * Sub-clients for third-party app developers:\n * - `client.subscription` — Application subscription management\n * - `client.tss` — Threshold Signature Scheme (chain-agnostic MPC)\n * - `client.ipfs` — Decentralized file storage\n * - `client.transactions` — Transaction sovereignty (prepare-sign-submit) — **chain-agnostic**\n *\n * Chain-namespaced advanced sub-clients (escape hatches with no multi-chain analog):\n * - `client.hedera` — HCS topics, KYC compliance, HTS wipe\n * - `client.xrpl` — Trust lines\n * - `client.solana` — Token close-account\n * - `client.polkadot` — Asset setTeam/setMetadata\n *\n * @example Direct connection (explicit validator origin)\n * ```typescript\n * const client = new SmartEngineClient({\n * validatorBaseUrl: 'https://validator.example.com', // a VALIDATOR origin, never a gateway\n * apiKey: 'your-api-key',\n * });\n * ```\n *\n * @example Auto-discovery with authentication\n * ```typescript\n * const { client, validator, session } = await SmartEngineClient.connectToNetwork({\n * network: 'testnet',\n * registryTopicId: '0.0.123456',\n * chain: 'hedera',\n * address: '0.0.789',\n * publicKey: 'your-public-key-hex',\n * signFn: (challenge) => privateKey.sign(Buffer.from(challenge)).toString('hex'),\n * });\n *\n * // Use sub-clients\n * const result = await client.tss.signMPC({\n * chain: 'hedera',\n * entityId: 'entity-123',\n * transactionBytes: '0x...',\n * });\n * ```\n */\nexport class SmartEngineClient {\n private baseUrl: string;\n private allowInsecure: boolean;\n private readonly http: HttpClient;\n /** Separate HTTP client for /api/v3/transactions */\n private readonly txHttp: HttpClient;\n /** Last HTTP error (for getHttpHealth) */\n private lastHttpError?: Error;\n\n // ========== Sub-Clients ==========\n\n /** Application subscription management */\n public readonly subscription: SubscriptionClient;\n /** Testnet HST faucet (challenge -> sign -> dispense) */\n public readonly faucet: FaucetClient;\n /** Threshold Signature Scheme — chain-agnostic MPC operations */\n public readonly tss: TSSClient;\n /** IPFS decentralized file storage */\n public readonly ipfs: IPFSClient;\n /** Transaction preparation for local signing (sovereignty model) — chain-agnostic */\n public readonly transactions: TransactionsClient;\n /** Hedera-specific transaction preparation (HCS topics, KYC, wipe) */\n public readonly hedera: HederaTransactionsClient;\n /** XRPL-specific transaction preparation (trust lines) */\n public readonly xrpl: XrplTransactionsClient;\n /** Solana-specific transaction preparation (close-account) */\n public readonly solana: SolanaTransactionsClient;\n /** Polkadot-specific transaction preparation (asset setTeam/setMetadata) */\n public readonly polkadot: PolkadotTransactionsClient;\n /** Token holder snapshot generation and retrieval */\n public readonly snapshots: SnapshotsClient;\n /** Historical balance archive reads (chain-native bigint, returned as decimal string) */\n public readonly historicalBalance: HistoricalBalanceClient;\n /** Cross-chain settlement operations */\n public readonly settlement: SettlementClient;\n /** Governance proposal dry-run (simulate-only) */\n public readonly governance: GovernanceClient;\n /** DAO governance — DAOs, proposals, votes, treasury, members, dashboard */\n public readonly dao: DaoClient;\n /** Personhood verification (HPP one-human-one-member) */\n public readonly personhood: PersonhoodClient;\n /** BaaS smart-agent lifecycle (register/fund/trade/withdraw/pause/resume/revoke/...) */\n public readonly agents: AgentsClient;\n /** BaaS smart-app deployment lifecycle (init/uploadFrontend/deploy/rollback/status/...) */\n public readonly deployments: DeploymentClient;\n /** Universal Token Bridge — port/return/claim across chains */\n public readonly bridge: BridgeClient;\n /** Network + per-app resource consumption (summary, history, ledger, nodes) */\n public readonly resources: ResourcesClient;\n /** AES-256-GCM envelope encrypt/decrypt under the TSS-backed master KEK */\n public readonly envelope: EnvelopeClient;\n /** Token migration — move existing tokens to TSS-controlled keys */\n public readonly tokens: TokensClient;\n /** Operator account funding helpers (balance + top-up guidance) */\n public readonly operator: OperatorClient;\n /** Discovery endpoints — cluster registry + platform-image manifests */\n public readonly discovery: DiscoveryClient;\n\n constructor(config: SmartEngineClientConfig) {\n this.allowInsecure = config.allowInsecure ?? false;\n this.baseUrl = validateClientUrl(config.validatorBaseUrl, this.allowInsecure);\n\n // Create shared HTTP client for /api/v3 endpoints\n this.http = createHttpClient({\n baseUrl: `${this.baseUrl}/api/v3`,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n });\n\n // Create separate HTTP client for /api/v3/transactions\n this.txHttp = createHttpClient({\n baseUrl: `${this.baseUrl}/api/v3/transactions`,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n });\n\n // Initialize sub-clients\n this.subscription = new SubscriptionClient(this.http);\n this.faucet = new FaucetClient(this.http);\n this.tss = new TSSClient(this.http);\n this.ipfs = new IPFSClient(this.http);\n this.transactions = new TransactionsClient(this.txHttp);\n // Pass `this.http` (rooted at `/api/v3`) as the second arg so\n // `client.hedera.tss.*` reaches `/api/v3/hedera/tss/*` — the prepare paths\n // continue to use `this.txHttp` (rooted at `/api/v3/transactions`).\n this.hedera = new HederaTransactionsClient(this.txHttp, this.http);\n this.xrpl = new XrplTransactionsClient(this.txHttp);\n this.solana = new SolanaTransactionsClient(this.txHttp);\n this.polkadot = new PolkadotTransactionsClient(this.txHttp);\n this.snapshots = new SnapshotsClient(this.http);\n this.historicalBalance = HistoricalBalanceClient.fromHttp(this.http);\n this.settlement = new SettlementClient(this.http);\n this.governance = new GovernanceClient(this.http);\n this.dao = new DaoClient(this.http);\n this.personhood = new PersonhoodClient(this.http);\n // BaaS sub-clients — they call fully-qualified `/api/v3/baas/<x>` (host) and\n // `/api/v3/smart-apps/<x>` (validator) paths directly, so they need an HTTP\n // client rooted at the bare `baseUrl` (NO `/api/v3` suffix — the suffix is\n // already baked into each method's path). Reuse of `txHttp` is wrong because\n // its base is `${baseUrl}/api/v3/transactions`. Build a fresh, root-scoped\n // client just for these.\n const rootHttp = createHttpClient({\n baseUrl: this.baseUrl,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n });\n this.agents = new AgentsClient(rootHttp);\n this.deployments = new DeploymentClient(rootHttp);\n this.bridge = new BridgeClient(this.http);\n this.resources = new ResourcesClient(this.http);\n this.envelope = new EnvelopeClient(this.http);\n this.tokens = new TokensClient(this.http);\n this.operator = new OperatorClient(this.http);\n this.discovery = new DiscoveryClient(this.http);\n }\n\n /**\n * Build a `SmartEngineClient` from a plain env object. Reads:\n * - `VALIDATOR_URL` (required) — gateway/validator base URL\n * - `VALIDATOR_API_KEY` (optional) — API key for authenticated calls\n * - `APP_TOKEN` (optional) — session JWT from prior auth\n * - `ALLOW_INSECURE` (optional, `'true'`) — only for local dev\n * - `REQUEST_TIMEOUT` (optional, ms)\n *\n * Throws if `VALIDATOR_URL` is missing or invalid. Designed for BaaS\n * scheduled functions: `const client = SmartEngineClient.fromEnv(ctx.env)`.\n */\n static fromEnv(env: Record<string, string | undefined>): SmartEngineClient {\n const baseUrl = env['VALIDATOR_URL'];\n if (!baseUrl) {\n throw new SmartEngineError('VALIDATOR_URL is required to build a SmartEngineClient', 500);\n }\n const timeoutRaw = env['REQUEST_TIMEOUT'];\n const timeout = timeoutRaw ? Number.parseInt(timeoutRaw, 10) : undefined;\n return new SmartEngineClient({\n validatorBaseUrl: baseUrl,\n apiKey: env['VALIDATOR_API_KEY'],\n authToken: env['APP_TOKEN'],\n allowInsecure: env['ALLOW_INSECURE'] === 'true',\n timeout: Number.isFinite(timeout) ? timeout : undefined,\n });\n }\n\n /**\n * Connect to the smart-engines network with auto-discovery and authentication.\n *\n * Steps:\n * 1. Discovers validators via the HCS registry topic.\n * 2. Selects a random validator with an API endpoint.\n * 3. Authenticates with Web3-style challenge-response.\n * 4. Returns a configured client ready to use.\n *\n * @param config - Network, registry topic, and auth signer config.\n * @returns The configured client, the chosen validator, and the auth session.\n * @throws SmartEngineError 503 if no validator with an API endpoint is found.\n */\n static async connectToNetwork(config: NetworkConnectionConfig): Promise<NetworkConnectionResult> {\n const allowInsecure = config.allowInsecure ?? false;\n\n // Step 1: Discover validators\n const discovery = new ValidatorDiscoveryClient({\n network: config.network,\n registryTopicId: config.registryTopicId,\n mirrorNodeUrl: config.mirrorNodeUrl,\n });\n\n const validator = await discovery.getRandomValidator();\n\n if (!validator || !validator.networkEndpoints?.apiEndpoint) {\n throw new SmartEngineError(\n 'No validators available. Check registry topic and network configuration.',\n 503\n );\n }\n\n const validatorUrl = validator.networkEndpoints.apiEndpoint;\n validateClientUrl(validatorUrl, allowInsecure);\n\n // Step 2: Authenticate\n const auth = new ValidatorAuthClient({\n security: { allowInsecure },\n });\n const session = await auth.authenticateWithSigner(\n validatorUrl,\n config.chain,\n config.address,\n config.publicKey,\n config.signFn,\n config.metadata\n );\n\n // Step 3: Create client with auth token. `validatorUrl` is the validator's\n // own `apiEndpoint` resolved from the HCS registry — a validator origin, NOT\n // a gateway URL — so it satisfies the validator-origin type-fence.\n const client = new SmartEngineClient({\n validatorBaseUrl: validatorUrl,\n authToken: session.token,\n allowInsecure,\n });\n\n return { client, validator, session };\n }\n\n // NOTE (SDK 4.0 type-fence): the former `SmartEngineClient.connectToCluster`\n // was REMOVED. It resolved a cluster's `gatewayUrl` and fed it into\n // `new SmartEngineClient({ baseUrl: gatewayUrl })` — a gateway-pointed\n // validator-direct client whose raw `/api/v3/*` calls 404 (the raw tier is\n // un-ingressed at the gateway). That was the footgun. To reach web3 through a\n // cluster use `BaasClient.connectToCluster({ network })` (the host BaaS tier);\n // for an explicit in-cluster validator origin use `new SmartEngineClient({\n // validatorBaseUrl })` or `connectToNetwork` (which resolves a real validator\n // `apiEndpoint` from the HCS registry, never a gateway URL).\n\n /** Get the current validator URL */\n getBaseUrl(): string {\n return this.baseUrl;\n }\n\n /** Check if client has an auth token */\n isAuthenticated(): boolean {\n return this.http.getAuthToken() !== undefined;\n }\n\n /**\n * Get HTTP resilience health information\n * @returns Object with circuit breaker state and last error (if any)\n */\n getHttpHealth(): { breaker: CircuitBreakerSnapshot | null; lastError?: Error } {\n // Note: In a real implementation, we would get the circuit breaker state\n // from the resilient HTTP layer. For now, return null since the base\n // HTTP client doesn't expose it yet.\n return {\n breaker: null,\n lastError: this.lastHttpError,\n };\n }\n\n // ========== Health & Info ==========\n\n /** Get health status of the validator */\n async getHealth(): Promise<{ status: string; timestamp: string; chains: any[] }> {\n return this.http.get('/health');\n }\n\n /** Get list of supported chains */\n async getSupportedChains(): Promise<{ chains: string[] }> {\n return this.http.get('/chains');\n }\n\n // ========== Account Operations ==========\n\n /** Create a new account on the specified chain */\n async createAccount(request: ValidatorCreateAccountRequest): Promise<CreateAccountResponse> {\n const validated = CreateAccountRequestSchema.parse(request);\n return this.http.post('/accounts', validated);\n }\n\n /** Get account information */\n async getAccountInfo(chain: string, accountId: string): Promise<AccountInfo> {\n return this.http.get(`/accounts/${encodePathParam(chain)}/${encodePathParam(accountId)}`);\n }\n\n /** Get account balance */\n async getBalance(chain: string, accountId: string): Promise<AccountBalance> {\n return this.http.get(`/accounts/${encodePathParam(chain)}/${encodePathParam(accountId)}/balance`);\n }\n\n // ========== Transaction Operations ==========\n\n /** Execute a transfer transaction */\n async transfer(request: TransferRequest): Promise<TransferResponse> {\n const validated = TransferRequestSchema.parse(request);\n return this.http.post('/transfer', validated);\n }\n\n /** Get transaction details */\n async getTransaction(chain: string, txId: string): Promise<Transaction> {\n return this.http.get(`/transactions/${encodePathParam(chain)}/${encodePathParam(txId)}`);\n }\n\n /** Get transaction receipt */\n async getTransactionReceipt(chain: string, txId: string): Promise<any> {\n return this.http.get(`/transactions/${encodePathParam(chain)}/${encodePathParam(txId)}/receipt`);\n }\n\n // ========== Token Operations ==========\n\n /** Create a new token */\n async createToken(request: ValidatorCreateTokenRequest): Promise<CreateTokenResponse> {\n const validated = CreateTokenRequestSchema.parse(request);\n return this.http.post('/tokens', validated);\n }\n\n /** Mint tokens */\n async mintToken(request: MintTokenRequest): Promise<any> {\n const validated = MintTokenRequestSchema.parse(request);\n return this.http.post('/tokens/mint', validated);\n }\n\n /**\n * Get token information for a token on the given chain.\n *\n * @param chain - Chain identifier (e.g. `'hedera'`, `'xrpl'`).\n * @param tokenId - Chain-native token identifier.\n * @returns Token metadata and supply information.\n */\n async getTokenInfo(chain: string, tokenId: string): Promise<TokenInfo> {\n return this.http.get(`/tokens/${encodePathParam(chain)}/${encodePathParam(tokenId)}`);\n }\n\n /** Burn tokens to reduce supply */\n async burnToken(request: BurnTokenRequest): Promise<ActionResult> {\n const validated = BurnTokenRequestSchema.parse(request);\n return this.http.post('/tokens/burn', validated);\n }\n\n /** Pause all token operations globally */\n async pauseToken(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n return this.http.post('/tokens/pause', validated);\n }\n\n /** Unpause token operations */\n async unpauseToken(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n return this.http.post('/tokens/unpause', validated);\n }\n\n /** Freeze/restrict an account from transacting the token */\n async restrictAccount(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for restrictAccount', 400);\n }\n return this.http.post('/tokens/restrict', validated);\n }\n\n /** Unfreeze an account */\n async unrestrictAccount(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for unrestrictAccount', 400);\n }\n return this.http.post('/tokens/unrestrict', validated);\n }\n\n /** Grant KYC/compliance approval to an account */\n async enableCompliance(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for enableCompliance', 400);\n }\n return this.http.post('/tokens/compliance/enable', validated);\n }\n\n /** Revoke KYC/compliance approval from an account */\n async disableCompliance(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for disableCompliance', 400);\n }\n return this.http.post('/tokens/compliance/disable', validated);\n }\n\n /** Force remove tokens from an account (compliance action) */\n async wipeFromAccount(request: TokenActionRequest): Promise<ActionResult> {\n const validated = TokenActionRequestSchema.parse(request);\n if (!validated.accountId) {\n throw new SmartEngineError('accountId is required for wipeFromAccount', 400);\n }\n if (!validated.amount) {\n throw new SmartEngineError('amount is required for wipeFromAccount', 400);\n }\n return this.http.post('/tokens/wipe', validated);\n }\n\n // ========== Capabilities Discovery ==========\n\n /** Get capability support matrix for all chains */\n async getAllCapabilities(): Promise<any> {\n return this.http.get('/capabilities');\n }\n\n /** Get capability support for a specific chain */\n async getChainCapabilities(chain: ChainType): Promise<any> {\n return this.http.get(`/capabilities/${encodePathParam(chain)}`);\n }\n\n /** Get comprehensive system status */\n async getSystemStatus(): Promise<any> {\n return this.http.get('/status');\n }\n\n // ========== Messaging Operations ==========\n\n /**\n * Submit a message to consensus.\n *\n * @deprecated Operator-funded message submission is RETIRED on the validator\n * under transaction sovereignty — `POST /api/v3/messages/:chain/:topicId`\n * now returns `403 Forbidden` (the operator must never front the chain fee\n * for a customer-supplied message). Use the payer-funded prepare path\n * instead: prepare a topic-message transaction via\n * `POST /api/transactions/topic/message/prepare`, then have the payer sign\n * and submit the returned bytes.\n */\n async submitMessage(chain: string, topicId: string, message: string): Promise<any> {\n if (message.length > 1024 * 1024) {\n throw new SmartEngineError('Message too large (max 1MB)', 400);\n }\n return this.http.post(`/messages/${encodePathParam(chain)}/${encodePathParam(topicId)}`, {\n message,\n });\n }\n\n // ========== Cluster Operations ==========\n\n /** Get cluster health status */\n async getClusterHealth(): Promise<{\n status: string;\n nodes: number;\n healthy: number;\n unhealthy: number;\n }> {\n return this.http.get('/cluster/health');\n }\n\n /** Get cluster status including node details */\n async getClusterStatus(): Promise<{\n status: string;\n nodeId: string;\n nodes: Array<{\n nodeId: string;\n endpoint: string;\n status: string;\n lastSeen?: string;\n }>;\n quorum: {\n required: number;\n current: number;\n reached: boolean;\n };\n }> {\n return this.http.get('/cluster/status');\n }\n\n // ========== Metrics & Monitoring ==========\n\n /** Get Prometheus-format metrics */\n async getMetrics(): Promise<string> {\n return this.http.get('/metrics');\n }\n\n /** Get queue statistics for monitoring */\n async getQueueStats(): Promise<{\n queues: Record<\n string,\n { pending: number; processing: number; completed: number; failed: number }\n >;\n timestamp: string;\n }> {\n return this.http.get('/monitoring/queue');\n }\n\n /** Get circuit breaker status for all services */\n async getCircuitBreakerStatus(): Promise<{\n breakers: Record<\n string,\n {\n state: 'closed' | 'open' | 'half-open';\n failures: number;\n successes: number;\n lastFailure?: string;\n nextRetry?: string;\n }\n >;\n timestamp: string;\n }> {\n return this.http.get('/monitoring/circuit-breakers');\n }\n\n // ========== Signature Verification ==========\n\n /** Verify an arbitrary signature */\n async verifySignature(request: {\n chain: ChainType;\n message: string;\n signature: string;\n publicKey: string;\n }): Promise<{ valid: boolean; chain: ChainType }> {\n return this.http.post('/auth/verify-signature', request);\n }\n}\n\n/**\n * Custom error class for Smart Engine client\n */\nexport class SmartEngineError extends Error {\n constructor(\n message: string,\n public statusCode: number,\n public details?: any\n ) {\n super(message);\n this.name = 'SmartEngineError';\n }\n}\n\n/**\n * Validate URL and enforce security requirements\n */\nfunction validateClientUrl(url: string, allowInsecure = false): string {\n try {\n const parsed = new URL(url);\n if (!['http:', 'https:'].includes(parsed.protocol)) {\n throw new SmartEngineError(`Invalid protocol: ${parsed.protocol}`, 400);\n }\n if (!allowInsecure && parsed.protocol !== 'https:') {\n throw new SmartEngineError(\n 'HTTPS is required for secure connections. Set allowInsecure=true for local development.',\n 400\n );\n }\n return parsed.origin;\n } catch (error) {\n if (error instanceof SmartEngineError) throw error;\n throw new SmartEngineError(`Invalid URL: ${url}`, 400);\n }\n}\n","/**\n * Routing Sub-Client\n *\n * Manages host registration, routing configuration, and request proxying.\n * Wire shapes mirror the server.\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n RegisterHostRequest,\n RegisterHostResponse,\n HostInfo,\n HostListResponse,\n RoutingConfig,\n ProxyRequest,\n ProxyResponse,\n RoutingStatsResponse,\n MapDomainToAppResponse,\n} from '../types';\n\n/**\n * Routing Sub-Client\n *\n * @example\n * ```typescript\n * await gateway.routing.registerHost({\n * appId: 'my-app',\n * address: '10.0.0.5',\n * port: 3000,\n * });\n *\n * const stats = await gateway.routing.getStats();\n * ```\n */\nexport class RoutingClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Register a new host. The server validates the payload via Zod (appId\n * pattern, IP/hostname format, port range) and kicks off async\n * verification. Response includes the registered host plus a status\n * message about verification.\n */\n async registerHost(request: RegisterHostRequest): Promise<RegisterHostResponse> {\n return this.http.post('/routing/hosts', request);\n }\n\n /** Unregister a host. */\n async unregisterHost(hostId: string): Promise<{ success: boolean; message: string }> {\n return this.http.delete(`/routing/hosts/${encodePathParam(hostId)}`);\n }\n\n /** Get all registered hosts. */\n async getAllHosts(): Promise<HostListResponse> {\n return this.http.get('/routing/hosts');\n }\n\n /** Get only verified hosts. */\n async getVerifiedHosts(): Promise<HostListResponse> {\n return this.http.get('/routing/hosts/verified');\n }\n\n /** Get a specific host by ID. */\n async getHost(hostId: string): Promise<HostInfo> {\n return this.http.get(`/routing/hosts/${encodePathParam(hostId)}`);\n }\n\n /** Trigger host re-verification. */\n async verifyHost(\n hostId: string,\n ): Promise<{\n success: boolean;\n hostId: string;\n verified: boolean;\n attestationScore?: number;\n message: string;\n }> {\n return this.http.post(`/routing/hosts/${encodePathParam(hostId)}/verify`, {});\n }\n\n /** Set routing configuration for an app. */\n async setRoutingConfig(\n appId: string,\n config: RoutingConfig,\n ): Promise<{ success: boolean; appId: string; message: string }> {\n return this.http.put(`/routing/config/${encodePathParam(appId)}`, config);\n }\n\n /** Get routing configuration for an app. */\n async getRoutingConfig(appId: string): Promise<RoutingConfig> {\n return this.http.get(`/routing/config/${encodePathParam(appId)}`);\n }\n\n /** Proxy a request through the gateway. */\n async proxyRequest(request: ProxyRequest): Promise<ProxyResponse> {\n return this.http.post('/routing/proxy', request);\n }\n\n /** Get routing statistics. */\n async getStats(): Promise<RoutingStatsResponse> {\n return this.http.get('/routing/stats');\n }\n\n /**\n * Map a domain/subdomain to an application for hostname-based routing.\n * The server returns `{ domain, appId, message }` — there is no `success`\n * field; treat `appId` as the success signal.\n */\n async mapDomainToApp(domain: string, appId: string): Promise<MapDomainToAppResponse> {\n return this.http.post(`/routing/domains/${encodePathParam(domain)}/map`, { appId });\n }\n}\n","/**\n * Domains Sub-Client\n *\n * Manages domain registration, verification, DNS configuration, and transfers.\n * Wire shapes mirror the server.\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n DomainRegistrationRequest,\n DomainInfo,\n DomainListResponse,\n DomainAvailabilityResponse,\n VerificationMethod,\n VerificationTokenResponse,\n VerificationResult,\n DnsRecord,\n DomainTransferRequest,\n} from '../types';\n\n/**\n * Domains Sub-Client\n *\n * @example\n * ```typescript\n * const domain = await gateway.domains.register({ domain: 'myapp.example.com', owner: '0.0.123' });\n *\n * const token = await gateway.domains.generateVerificationToken('myapp.example.com', 'dns-txt');\n * const result = await gateway.domains.verifyOwnership('myapp.example.com', token.token);\n * ```\n */\nexport class DomainsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Register a new domain */\n async register(request: DomainRegistrationRequest): Promise<DomainInfo> {\n return this.http.post('/domains', request);\n }\n\n /** Check domain availability */\n async checkAvailability(domain: string): Promise<DomainAvailabilityResponse> {\n return this.http.get(`/domains/check/${encodePathParam(domain)}`);\n }\n\n /** Get domain information */\n async getInfo(domain: string): Promise<DomainInfo> {\n return this.http.get(`/domains/${encodePathParam(domain)}`);\n }\n\n /** List domains, optionally filtered by owner */\n async list(owner?: string): Promise<DomainListResponse> {\n const params = owner ? `?owner=${encodeURIComponent(owner)}` : '';\n return this.http.get(`/domains${params}`);\n }\n\n /**\n * Generate a verification token. Server accepts one of `dns-txt`,\n * `dns-cname`, `http-file`, `email`.\n */\n async generateVerificationToken(\n domain: string,\n method: VerificationMethod,\n ): Promise<VerificationTokenResponse> {\n return this.http.post(`/domains/${encodePathParam(domain)}/verification`, { method });\n }\n\n /** Verify domain ownership */\n async verifyOwnership(domain: string, token: string): Promise<VerificationResult> {\n return this.http.post(`/domains/${encodePathParam(domain)}/verify`, { token });\n }\n\n /** Configure DNS records for a domain */\n async configureDns(\n domain: string,\n records: DnsRecord[],\n ): Promise<{ success: boolean; records: DnsRecord[] }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/dns`, { records });\n }\n\n /** Enable DNSSEC for a domain */\n async enableDnssec(domain: string): Promise<{ success: boolean; message: string }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/dnssec/enable`, {});\n }\n\n /** Disable DNSSEC for a domain */\n async disableDnssec(domain: string): Promise<{ success: boolean; message: string }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/dnssec/disable`, {});\n }\n\n /** Renew a domain */\n async renew(domain: string, years?: number): Promise<DomainInfo> {\n return this.http.post(`/domains/${encodePathParam(domain)}/renew`, { years: years ?? 1 });\n }\n\n /** Initiate a domain transfer */\n async transfer(\n domain: string,\n request: DomainTransferRequest,\n ): Promise<{ success: boolean; message: string }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/transfer`, request);\n }\n\n /** Approve a pending domain transfer */\n async approveTransfer(domain: string): Promise<{ success: boolean }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/transfer/approve`, {});\n }\n\n /** Reject a pending domain transfer */\n async rejectTransfer(domain: string): Promise<{ success: boolean }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/transfer/reject`, {});\n }\n\n /** Suspend a domain */\n async suspend(domain: string, reason: string): Promise<{ success: boolean }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/suspend`, { reason });\n }\n\n /** Unsuspend a domain */\n async unsuspend(domain: string): Promise<{ success: boolean }> {\n return this.http.post(`/domains/${encodePathParam(domain)}/unsuspend`, {});\n }\n}\n","/**\n * DNS Sub-Client\n *\n * Manages DNS resolution, zone management, and DNSSEC.\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n DnsResolveResponse,\n DnsBatchQuery,\n DnsBatchResolveResponse,\n DnsZone,\n DnsZoneListResponse,\n DnsRecord,\n DnsRecordInfo,\n DnssecKey,\n DnssecDsRecord,\n} from '../types';\n\n/**\n * DNS Sub-Client\n *\n * @example\n * ```typescript\n * // Resolve a name\n * const result = await gateway.dns.resolve('myapp.example.com', 'A');\n *\n * // Manage zones\n * const zones = await gateway.dns.listZones();\n * ```\n */\nexport class DnsClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Resolve a DNS name */\n async resolve(name: string, type?: string, dnssec?: boolean): Promise<DnsResolveResponse> {\n const params = new URLSearchParams({ name });\n if (type) params.set('type', type);\n if (dnssec !== undefined) params.set('dnssec', String(dnssec));\n return this.http.get(`/dns/resolve?${params.toString()}`);\n }\n\n /** Batch resolve multiple DNS queries */\n async resolveBatch(queries: DnsBatchQuery[]): Promise<DnsBatchResolveResponse> {\n return this.http.post('/dns/resolve/batch', { queries });\n }\n\n /** List all DNS zones */\n async listZones(): Promise<DnsZoneListResponse> {\n return this.http.get('/dns/zones');\n }\n\n /** Get a specific zone */\n async getZone(zoneName: string): Promise<DnsZone & { records: DnsRecordInfo[] }> {\n return this.http.get(`/dns/zones/${encodePathParam(zoneName)}`);\n }\n\n /** Create a new DNS zone */\n async createZone(request: { zoneName: string; description?: string }): Promise<DnsZone> {\n return this.http.post('/dns/zones', request);\n }\n\n /** Delete a DNS zone */\n async deleteZone(zoneName: string): Promise<{ success: boolean }> {\n return this.http.delete(`/dns/zones/${encodePathParam(zoneName)}`);\n }\n\n /** Add a record to a zone */\n async addRecord(zoneName: string, record: DnsRecord): Promise<DnsRecordInfo> {\n return this.http.post(`/dns/zones/${encodePathParam(zoneName)}/records`, record);\n }\n\n /** Update a record in a zone */\n async updateRecord(\n zoneName: string,\n recordId: string,\n updates: Partial<DnsRecord>\n ): Promise<DnsRecordInfo> {\n return this.http.put(\n `/dns/zones/${encodePathParam(zoneName)}/records/${encodePathParam(recordId)}`,\n updates\n );\n }\n\n /** Delete a record from a zone */\n async deleteRecord(zoneName: string, recordId: string): Promise<{ success: boolean }> {\n return this.http.delete(\n `/dns/zones/${encodePathParam(zoneName)}/records/${encodePathParam(recordId)}`\n );\n }\n\n /** Generate DNSSEC keys for a zone */\n async generateDnssecKeys(\n zoneName: string,\n algorithm?: string\n ): Promise<{ keys: DnssecKey[] }> {\n return this.http.post(`/dns/zones/${encodePathParam(zoneName)}/dnssec/keys`, {\n algorithm,\n });\n }\n\n /** Get DNSSEC keys for a zone */\n async getDnssecKeys(zoneName: string): Promise<{ keys: DnssecKey[] }> {\n return this.http.get(`/dns/zones/${encodePathParam(zoneName)}/dnssec/keys`);\n }\n\n /** Get DS record for a zone (for registrar configuration) */\n async getDsRecord(zoneName: string): Promise<DnssecDsRecord> {\n return this.http.get(`/dns/zones/${encodePathParam(zoneName)}/dnssec/ds`);\n }\n\n /** Clear DNS cache */\n async clearCache(): Promise<{ success: boolean; entriesCleared: number }> {\n return this.http.post('/dns/cache/clear', {});\n }\n}\n","/**\n * Health Sub-Client\n *\n * Wraps the gateway's health endpoints, including the per-cluster\n * `GET /cluster/health` aggregate that merges local validator + host +\n * genesis state (used by the cross-cluster metrics aggregator and any SDK\n * caller probing a single cluster). All endpoints are `@Public()` on the\n * server — no auth required.\n */\nimport type { HttpClient } from '../../http';\nimport type { ClusterHealthAggregate } from '../types';\n\nexport class HealthClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Per-cluster aggregate health probe. Wraps `GET /api/v3/cluster/health`.\n * Returns local validator + host + genesis state in a single payload.\n */\n async getCluster(): Promise<ClusterHealthAggregate> {\n return this.http.get('/cluster/health');\n }\n}\n","/**\n * Smart Gateway Client\n *\n * Top-level client for interacting with Smart Engines Gateway.\n * Manages host routing, domain registration, and DNS resolution.\n *\n * @example\n * ```typescript\n * import { SmartGatewayClient } from '@hsuite/smart-engines-sdk';\n *\n * const gateway = new SmartGatewayClient({\n * baseUrl: 'https://gateway.smartengines.io',\n * apiKey: 'your-api-key',\n * });\n *\n * // Routing\n * const hosts = await gateway.routing.getAllHosts();\n *\n * // Domains\n * const available = await gateway.domains.checkAvailability('myapp.example.com');\n *\n * // DNS\n * const resolved = await gateway.dns.resolve('myapp.example.com', 'A');\n *\n * // Health\n * const health = await gateway.getHealth();\n * const cluster = await gateway.health.getCluster();\n * ```\n */\nimport { createHttpClient, SdkHttpError, type HttpClient } from '../http';\nimport { RoutingClient } from './routing';\nimport { DomainsClient } from './domains';\nimport { DnsClient } from './dns';\nimport { HealthClient } from './health';\nimport type {\n GatewayHealthResponse,\n GatewayStatusResponse,\n GatewayReadinessResponse,\n GatewayLivenessResponse,\n GatewayMetricsResponse,\n GatewayMetricsSummaryResponse,\n} from './types';\n\n/**\n * Configuration for SmartGatewayClient\n */\nexport type SmartGatewayClientConfig = {\n /** Gateway API base URL */\n baseUrl: string;\n /** API key for authenticated requests */\n apiKey?: string;\n /** Bearer token from authentication */\n authToken?: string;\n /** Request timeout in milliseconds (default: 30000) */\n timeout?: number;\n /** Allow HTTP connections (only for local development) */\n allowInsecure?: boolean;\n};\n\n/**\n * Smart Gateway Client\n *\n * Primary client for gateway operations: routing, domains, DNS, and\n * cluster-aggregate health.\n */\nexport class SmartGatewayClient {\n private readonly http: HttpClient;\n\n /** Host routing and proxy management */\n public readonly routing: RoutingClient;\n /** Domain registration and management */\n public readonly domains: DomainsClient;\n /** DNS resolution and zone management */\n public readonly dns: DnsClient;\n /** Per-cluster aggregate health probe (validator + host + genesis state) */\n public readonly health: HealthClient;\n\n constructor(config: SmartGatewayClientConfig) {\n const baseUrl = config.baseUrl.replace(/\\/+$/, '');\n\n this.http = createHttpClient({\n baseUrl: `${baseUrl}/api/v3`,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n });\n\n this.routing = new RoutingClient(this.http);\n this.domains = new DomainsClient(this.http);\n this.dns = new DnsClient(this.http);\n this.health = new HealthClient(this.http);\n }\n\n // ========== Health & Metrics ==========\n\n /** Get gateway-only health status (binary `status: 'ok'` snapshot). */\n async getHealth(): Promise<GatewayHealthResponse> {\n return this.http.get('/health');\n }\n\n /**\n * Get detailed gateway status — `subsystems` tree (dns/routing/verification)\n * plus the operating `mode` snapshot. Aggregated counts live on `getMetrics()`.\n */\n async getStatus(): Promise<GatewayStatusResponse> {\n return this.http.get('/status');\n }\n\n /**\n * Check gateway readiness. Resolves to either `{ status: 'ready', ... }`\n * with a verified host count or `{ status: 'not_ready', reason, ... }`.\n *\n * NOTE: `/api/v3/ready` returns **HTTP 503** when not ready (so load\n * balancers / k8s probes drain the origin). This method unwraps that 503's\n * body and still RESOLVES to a `GatewayReadinessResponse` — it does not\n * throw for a not-ready gateway. Genuine errors (non-readiness 503s, 5xx,\n * network) still throw.\n */\n async getReadiness(): Promise<GatewayReadinessResponse> {\n try {\n return await this.http.get<GatewayReadinessResponse>('/ready');\n } catch (err) {\n // The not-ready 503 carries the `{status:'not_ready', ...}` body. The\n // gateway's global exception filter wraps it as\n // {statusCode,error,message,context:{...}} — payload under `context` —\n // while a non-filtered server would return it top-level. Accept either\n // and surface the inner body instead of throwing.\n if (err instanceof SdkHttpError && err.statusCode === 503) {\n const d = err.details as\n | { status?: string; context?: GatewayReadinessResponse }\n | undefined;\n const body = (d?.context ?? d) as\n | (GatewayReadinessResponse & { status?: string })\n | undefined;\n if (body?.status === 'not_ready') {\n return body as GatewayReadinessResponse;\n }\n }\n throw err;\n }\n }\n\n /** Check gateway liveness. */\n async getLiveness(): Promise<GatewayLivenessResponse> {\n return this.http.get('/live');\n }\n\n /**\n * Get aggregated network metrics across all clusters — per-cluster health,\n * chain connectivity, gateway counts, and genesis state. Server caches the\n * payload (default 30s); pass `refresh=true` to force a fresh fetch.\n */\n async getMetrics(refresh?: boolean): Promise<GatewayMetricsResponse> {\n const params = refresh ? '?refresh=true' : '';\n return this.http.get(`/metrics${params}`);\n }\n\n /** Get lightweight network summary (status-badge-friendly). */\n async getMetricsSummary(): Promise<GatewayMetricsSummaryResponse> {\n return this.http.get('/metrics/summary');\n }\n}\n","/**\n * Database Sub-Client\n *\n * Trustless database with state proofs and Merkle verification.\n *\n * @example\n * ```typescript\n * // CRUD operations\n * const result = await baas.db.insert('users', { name: 'Alice' });\n * const users = await baas.db.find('users', { name: 'Alice' });\n *\n * // State proofs\n * const root = await baas.db.getStateRoot();\n * const proof = await baas.db.getDocumentProof('doc-123');\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type {\n BaasInsertResult,\n BaasUpdateResult,\n BaasDeleteResult,\n BaasFindResult,\n BaasQueryOptions,\n BaasMerkleProof,\n BaasStateTransition,\n} from '../types';\n\n/** State root response */\nexport type StateRootResponse = {\n appId: string;\n stateRoot: string;\n blockHeight: number;\n timestamp: string;\n};\n\n/** Document proof response */\nexport type DocumentProofResponse = {\n documentId: string;\n exists: boolean;\n proof: BaasMerkleProof;\n stateRoot: string;\n};\n\n/** State transitions response */\nexport type StateTransitionsResponse = {\n transitions: BaasStateTransition[];\n total: number;\n fromBlock: number;\n toBlock: number;\n};\n\n/** Database stats response */\nexport type DatabaseStatsResponse = {\n collections: number;\n documents: number;\n storageSize: number;\n stateRoot: string;\n blockHeight: number;\n};\n\nexport class DatabaseClient {\n constructor(\n private readonly http: HttpClient,\n private readonly getAppId: () => string\n ) {}\n\n /**\n * Insert a document into a collection\n */\n async insert(collection: string, document: Record<string, unknown>): Promise<BaasInsertResult> {\n const appId = this.getAppId();\n return this.http.post(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(collection)}`,\n document\n );\n }\n\n /**\n * Find documents in a collection\n */\n async find(\n collection: string,\n query?: Record<string, unknown>,\n options?: BaasQueryOptions\n ): Promise<BaasFindResult> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (query && Object.keys(query).length > 0) {\n params.set('query', JSON.stringify(query));\n }\n if (options?.limit !== undefined) params.set('limit', String(options.limit));\n if (options?.skip !== undefined) params.set('skip', String(options.skip));\n if (options?.sort) params.set('sort', options.sort);\n const qs = params.toString();\n return this.http.get(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(collection)}${qs ? `?${qs}` : ''}`\n );\n }\n\n /**\n * Update a document in a collection\n */\n async update(\n collection: string,\n documentId: string,\n updates: Record<string, unknown>\n ): Promise<BaasUpdateResult> {\n const appId = this.getAppId();\n return this.http.put(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(collection)}/${encodePathParam(documentId)}`,\n updates\n );\n }\n\n /**\n * Delete a document from a collection\n */\n async delete(collection: string, documentId: string): Promise<BaasDeleteResult> {\n const appId = this.getAppId();\n return this.http.delete(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(collection)}/${encodePathParam(documentId)}`\n );\n }\n\n /**\n * List collections for the app.\n *\n * Server route is `/api/v3/baas/db/:appId/collections`\n * (`database.controller.ts:106`). The previous bare-`:appId` GET 404'd\n * — Nest reserves that pattern for the document-find router below.\n */\n async listCollections(): Promise<{ collections: string[] }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/db/${encodePathParam(appId)}/collections`);\n }\n\n /**\n * Create a new collection in the database.\n *\n * Server returns `{ success: true; collection: string }`\n * (`database.controller.ts:96`).\n */\n async createCollection(name: string): Promise<{ success: boolean; collection: string }> {\n const appId = this.getAppId();\n return this.http.post(`/api/v3/baas/db/${encodePathParam(appId)}/collections`, { name });\n }\n\n /**\n * Drop a collection and all its documents.\n *\n * Server returns `{ success: true }`\n * (`database.controller.ts:133`).\n */\n async dropCollection(name: string): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(\n `/api/v3/baas/db/${encodePathParam(appId)}/collections/${encodePathParam(name)}`\n );\n }\n\n // ========== State Proofs ==========\n\n /**\n * Get the current state root for the app\n */\n async getStateRoot(): Promise<StateRootResponse> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/db/${encodePathParam(appId)}/state/root`);\n }\n\n /**\n * Get a Merkle proof for a specific document\n */\n async getDocumentProof(documentId: string): Promise<DocumentProofResponse> {\n const appId = this.getAppId();\n return this.http.get(\n `/api/v3/baas/db/${encodePathParam(appId)}/${encodePathParam(documentId)}/proof`\n );\n }\n\n /**\n * Get state transitions (audit log)\n */\n async getStateTransitions(options?: {\n fromBlock?: number;\n toBlock?: number;\n limit?: number;\n }): Promise<StateTransitionsResponse> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (options?.fromBlock !== undefined) params.set('fromBlock', String(options.fromBlock));\n if (options?.toBlock !== undefined) params.set('toBlock', String(options.toBlock));\n if (options?.limit !== undefined) params.set('limit', String(options.limit));\n const qs = params.toString();\n return this.http.get(\n `/api/v3/baas/db/${encodePathParam(appId)}/state/transitions${qs ? `?${qs}` : ''}`\n );\n }\n\n /**\n * Get database statistics\n */\n async getDbStats(): Promise<DatabaseStatsResponse> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/db/${encodePathParam(appId)}/stats`);\n }\n}\n","/**\n * Storage Sub-Client\n *\n * Manages decentralized file storage on the host.\n *\n * @example\n * ```typescript\n * const result = await baas.storage.upload(fileBuffer, 'report.pdf');\n * const exists = await baas.storage.exists(result.cid);\n * const file = await baas.storage.download(result.cid);\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type {\n BaasUploadResult,\n BaasFileInfo,\n BaasFileMetadata,\n BaasStorageUsage,\n} from '../types';\n\nexport class StorageClient {\n constructor(\n private readonly http: HttpClient,\n private readonly getAppId: () => string\n ) {}\n\n /**\n * Upload a file to storage\n */\n async upload(\n file: Blob | Buffer,\n filename: string,\n metadata?: Record<string, string>,\n opts?: HttpCallOptions\n ): Promise<BaasUploadResult> {\n const appId = this.getAppId();\n return this.http.upload(`/api/v3/baas/storage/${encodePathParam(appId)}/upload`, file, filename, metadata, undefined, opts);\n }\n\n /**\n * Download a file by CID. Returns the raw file bytes as a `Uint8Array`\n * (binary-safe — never JSON-parsed or text-decoded).\n */\n async download(cid: string, opts?: HttpCallOptions): Promise<Uint8Array> {\n const appId = this.getAppId();\n return this.http.getBinary(`/api/v3/baas/storage/${encodePathParam(appId)}/download/${encodePathParam(cid)}`, opts);\n }\n\n /**\n * Download a file by CID WITH its response metadata — the raw bytes plus the\n * host-supplied `contentType` (derived from the stored file's metadata) and,\n * when present, the `filename`. Use this instead of {@link download} when the\n * caller must echo the content-type back to its own client; a bytes-only\n * download cannot recover it.\n */\n async downloadWithMeta(\n cid: string,\n opts?: HttpCallOptions,\n ): Promise<{ bytes: Uint8Array; contentType?: string; filename?: string }> {\n const appId = this.getAppId();\n return this.http.getBinaryWithMeta(\n `/api/v3/baas/storage/${encodePathParam(appId)}/download/${encodePathParam(cid)}`,\n opts,\n );\n }\n\n /**\n * Get file metadata\n */\n async getMetadata(cid: string, opts?: HttpCallOptions): Promise<BaasFileMetadata> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/storage/${encodePathParam(appId)}/metadata/${encodePathParam(cid)}`, opts);\n }\n\n /**\n * Delete a file\n */\n async delete(cid: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(`/api/v3/baas/storage/${encodePathParam(appId)}/${encodePathParam(cid)}`, opts);\n }\n\n /**\n * List all files for the app.\n *\n * @param pagination - Optional `limit` and `offset` (the server reads\n * `offset` for pagination).\n * @returns The file list and total count.\n */\n async listFiles(pagination?: { limit?: number; offset?: number }, opts?: HttpCallOptions): Promise<{ files: BaasFileInfo[]; total: number }> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (pagination?.limit !== undefined) params.set('limit', String(pagination.limit));\n if (pagination?.offset !== undefined) params.set('offset', String(pagination.offset));\n const qs = params.toString();\n return this.http.get(`/api/v3/baas/storage/${encodePathParam(appId)}/files${qs ? `?${qs}` : ''}`, opts);\n }\n\n /**\n * Get storage usage for the current app\n */\n async getUsage(opts?: HttpCallOptions): Promise<BaasStorageUsage> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/storage/${encodePathParam(appId)}/usage`, opts);\n }\n\n /**\n * Check if a file exists\n */\n async exists(cid: string, opts?: HttpCallOptions): Promise<{ exists: boolean; cid: string }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/storage/${encodePathParam(appId)}/exists/${encodePathParam(cid)}`, opts);\n }\n}\n","/**\n * Functions Sub-Client\n *\n * Manages serverless function deployment, invocation, and monitoring.\n *\n * @example\n * ```typescript\n * // Deploy a function\n * const fn = await baas.functions.deploy({\n * name: 'process-order',\n * runtime: 'nodejs18',\n * handler: 'index.handler',\n * code: functionCode,\n * });\n *\n * // Invoke it\n * const result = await baas.functions.invoke(fn.functionId, { orderId: '123' });\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type {\n BaasFunctionDeployRequest,\n BaasFunctionEvalRequest,\n BaasFunctionDeployResult,\n BaasFunctionResult,\n BaasFunctionInfo,\n BaasFunctionCode,\n BaasFunctionLog,\n BaasFunctionLogOptions,\n BaasSignedCode,\n} from '../types';\n\nexport class FunctionsClient {\n constructor(\n private readonly http: HttpClient,\n private readonly getAppId: () => string\n ) {}\n\n /**\n * Build the Ed25519 signed-code envelope the host mandates for every deploy\n * and eval. A fresh ephemeral keypair is generated per call, so no long-lived\n * signing key is held anywhere — each artifact carries its own signature.\n *\n * Scheme (must match the host verifier): `hash = sha256(code)` (hex),\n * `message = \"<hash>:<timestamp>\"`, signed Ed25519; `publicKey` is SPKI-DER\n * (base64). `crypto` is imported lazily so this never pulls Node built-ins\n * into a browser bundle that doesn't sign code.\n */\n async signCode(code: string): Promise<BaasSignedCode> {\n const { generateKeyPairSync, createHash, sign } = await import('crypto');\n const { publicKey, privateKey } = generateKeyPairSync('ed25519');\n const hash = createHash('sha256').update(code, 'utf8').digest('hex');\n const timestamp = new Date().toISOString();\n const signature = sign(null, Buffer.from(`${hash}:${timestamp}`, 'utf8'), privateKey).toString('base64');\n const publicKeyDer = publicKey.export({ format: 'der', type: 'spki' }).toString('base64');\n return { code, hash, timestamp, signature, publicKey: publicKeyDer };\n }\n\n /**\n * Deploy a new function. If `signedCode` is omitted it is auto-built from\n * `request.code` via {@link signCode} — the host requires it, so the default\n * is to sign rather than 400. Pass your own envelope to override.\n */\n async deploy(request: BaasFunctionDeployRequest, opts?: HttpCallOptions): Promise<BaasFunctionDeployResult> {\n const appId = this.getAppId();\n const signedCode = request.signedCode ?? (await this.signCode(request.code));\n return this.http.post(`/api/v3/baas/functions/${encodePathParam(appId)}`, { ...request, signedCode }, opts);\n }\n\n /**\n * Invoke a function\n */\n async invoke(functionId: string, payload?: unknown, opts?: HttpCallOptions): Promise<BaasFunctionResult> {\n const appId = this.getAppId();\n return this.http.post(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}/invoke`,\n payload ?? {},\n opts\n );\n }\n\n /**\n * Evaluate signed code once (ephemeral) — no persistent deploy.\n *\n * For throwaway / AI-generated snippets. The host runs it in the same hardened\n * isolate and discards it; metered + quota'd like a normal invocation. As with\n * {@link deploy}, `signedCode` is auto-built from `request.code` when omitted.\n */\n async eval(request: BaasFunctionEvalRequest, opts?: HttpCallOptions): Promise<BaasFunctionResult> {\n const appId = this.getAppId();\n const signedCode = request.signedCode ?? (await this.signCode(request.code));\n return this.http.post(`/api/v3/baas/functions/${encodePathParam(appId)}/eval`, { ...request, signedCode }, opts);\n }\n\n /**\n * List all functions for the current app\n */\n async list(opts?: HttpCallOptions): Promise<{ functions: BaasFunctionInfo[]; total: number }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/functions/${encodePathParam(appId)}`, opts);\n }\n\n /**\n * Get function details\n */\n async get(functionId: string, opts?: HttpCallOptions): Promise<BaasFunctionInfo> {\n const appId = this.getAppId();\n return this.http.get(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}`,\n opts\n );\n }\n\n /**\n * Get a function's source code\n */\n async getCode(functionId: string, opts?: HttpCallOptions): Promise<BaasFunctionCode> {\n const appId = this.getAppId();\n return this.http.get(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}/code`,\n opts\n );\n }\n\n /**\n * Update a function\n */\n async update(functionId: string, updates: Partial<BaasFunctionDeployRequest>, opts?: HttpCallOptions): Promise<BaasFunctionInfo> {\n const appId = this.getAppId();\n return this.http.put(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}`,\n updates,\n opts\n );\n }\n\n /**\n * Delete a function\n */\n async delete(functionId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}`,\n opts\n );\n }\n\n /**\n * Get function execution logs\n */\n async getLogs(functionId: string, options?: BaasFunctionLogOptions, opts?: HttpCallOptions): Promise<{ logs: BaasFunctionLog[]; total: number }> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.set('limit', String(options.limit));\n if (options?.startTime) params.set('startTime', options.startTime);\n if (options?.level) params.set('level', options.level);\n const qs = params.toString();\n return this.http.get(\n `/api/v3/baas/functions/${encodePathParam(appId)}/${encodePathParam(functionId)}/logs${qs ? `?${qs}` : ''}`,\n opts\n );\n }\n\n /**\n * Get function statistics for an app\n */\n async getStats(opts?: HttpCallOptions): Promise<any> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/functions/${encodePathParam(appId)}/stats`, opts);\n }\n}\n","/**\n * Messaging Sub-Client\n *\n * Full pub/sub messaging with channels, history, and presence.\n *\n * @example\n * ```typescript\n * // Create a channel\n * await baas.messaging.createChannel({ name: 'events', persistent: true });\n *\n * // Publish a message\n * await baas.messaging.publish('events', { type: 'order.created', orderId: '123' });\n *\n * // Get history\n * const history = await baas.messaging.getHistory('events', { limit: 50 });\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type {\n BaasChannelConfig,\n BaasPublishResult,\n BaasPresenceMember,\n BaasPresenceInfo,\n BaasHistoryOptions,\n BaasMessage,\n} from '../types';\n\nexport class MessagingClient {\n constructor(\n private readonly http: HttpClient,\n private readonly getAppId: () => string\n ) {}\n\n /**\n * Create a new channel\n */\n async createChannel(config: BaasChannelConfig, opts?: HttpCallOptions): Promise<BaasChannelConfig & { channelId: string }> {\n const appId = this.getAppId();\n return this.http.post(`/api/v3/baas/messaging/${encodePathParam(appId)}/channels`, config, opts);\n }\n\n /**\n * Delete a channel\n */\n async deleteChannel(channelId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(`/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channelId)}`, opts);\n }\n\n /**\n * Get a channel by ID\n */\n async getChannel(channelId: string, opts?: HttpCallOptions): Promise<BaasChannelConfig & { channelId: string; messageCount: number }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channelId)}`, opts);\n }\n\n /**\n * List all channels for the app\n */\n async listChannels(opts?: HttpCallOptions): Promise<{ channels: Array<BaasChannelConfig & { channelId: string }>; total: number }> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/messaging/${encodePathParam(appId)}/channels`, opts);\n }\n\n /**\n * Publish a message to a channel\n */\n async publish(\n channel: string,\n message: Record<string, unknown>,\n metadata?: Record<string, unknown>,\n opts?: HttpCallOptions\n ): Promise<BaasPublishResult> {\n const appId = this.getAppId();\n return this.http.post(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/publish`,\n { data: message, metadata },\n opts\n );\n }\n\n /**\n * Get message history for a channel\n */\n async getHistory(\n channel: string,\n options?: BaasHistoryOptions,\n opts?: HttpCallOptions\n ): Promise<{ messages: BaasMessage[]; total: number; hasMore: boolean }> {\n const appId = this.getAppId();\n const params = new URLSearchParams();\n if (options?.limit !== undefined) params.set('limit', String(options.limit));\n if (options?.before) params.set('before', options.before);\n if (options?.after) params.set('after', options.after);\n const qs = params.toString();\n return this.http.get(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/history${qs ? `?${qs}` : ''}`,\n opts\n );\n }\n\n /**\n * Set presence for a member in a channel.\n *\n * BREAKING CHANGE (SDK 3.3.0): presence is channel-scoped on the server\n * (`messaging.controller.ts:312`). Previous signature\n * `setPresence(member)` hit a non-existent appId-scoped route and 404'd\n * in production. The channel is now the first argument.\n */\n async setPresence(channel: string, member: BaasPresenceMember, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.post(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/presence`,\n member,\n opts\n );\n }\n\n /**\n * Remove a member's presence from a channel.\n *\n * BREAKING CHANGE (SDK 3.3.0): server route is\n * `/api/v3/baas/messaging/:appId/channels/:channel/presence/:clientId`\n * (`messaging.controller.ts:352`). `channel` is now the first arg and\n * `clientId` (not `memberId`) the second — they're the same identifier\n * but renamed to match the server param.\n */\n async removePresence(channel: string, clientId: string, opts?: HttpCallOptions): Promise<{ success: boolean }> {\n const appId = this.getAppId();\n return this.http.delete(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/presence/${encodePathParam(clientId)}`,\n opts\n );\n }\n\n /**\n * Get presence info for a channel\n */\n async getPresence(channel: string, opts?: HttpCallOptions): Promise<BaasPresenceInfo> {\n const appId = this.getAppId();\n return this.http.get(\n `/api/v3/baas/messaging/${encodePathParam(appId)}/channels/${encodePathParam(channel)}/presence`,\n opts\n );\n }\n\n /**\n * Get messaging statistics\n */\n async getStats(opts?: HttpCallOptions): Promise<any> {\n const appId = this.getAppId();\n return this.http.get(`/api/v3/baas/messaging/${encodePathParam(appId)}/stats`, opts);\n }\n}\n","/**\n * Customer-Session Sub-Client (TokenGate Face B).\n *\n * Wraps the smart-host's customer→smart-app session bridge:\n * POST /api/v3/baas/customer-session/challenge (public)\n * POST /api/v3/baas/customer-session/verify (public)\n * GET /api/v3/baas/customer-session/validate (Bearer)\n * POST /api/v3/baas/customer-session/end (Bearer)\n *\n * Used by smart-apps to authenticate their customers without API keys: the\n * customer signs a chain-X challenge with their wallet, the host verifies the\n * signature against the chosen chain (and optionally a TokenGate NFT for\n * paid tiers), and returns a short-lived JWT (≤15 min by default).\n *\n * Free_testnet smart-apps gracefully skip the NFT step — customers only need\n * to prove wallet ownership via signature.\n */\n\nexport type CustomerSessionChallenge = {\n challenge: string;\n};\n\nexport type CustomerSessionVerifyRequest = {\n appId: string;\n chain: string;\n address: string;\n /** Public key (chain-dependent, e.g. ED25519 for Hedera, secp256k1 for XRPL). */\n publicKey?: string;\n signature: string;\n challenge: string;\n};\n\nexport type CustomerSessionToken = {\n /** Short-lived JWT to attach as `Authorization: Bearer ...` on subsequent calls. */\n token: string;\n sessionId: string;\n validatorId: string;\n expiresAt: string;\n sessionSecret: string;\n};\n\nexport type CustomerSessionInfo = {\n sessionId: string;\n appId: string;\n customerChain: string;\n customerAddress: string;\n /** Optional — present only when the customer holds a TokenGate-recognised NFT. */\n subscriptionContext?: {\n nftSerial: number;\n // Subscription tier ladder: builder | growth | scale | enterprise.\n tier: 'builder' | 'growth' | 'scale' | 'enterprise';\n expiresAt: string;\n allowedAutomations?: string[];\n };\n createdAt: string;\n expiresAt: string;\n lastActivityAt: string;\n};\n\nexport class CustomerSessionClient {\n constructor(\n private readonly baseUrl: string,\n private readonly timeoutMs: number = 30_000,\n ) {}\n\n /**\n * Step 1: ask the host to issue a fresh challenge for the customer to sign.\n */\n async challenge(input: { chain: string; address: string }): Promise<CustomerSessionChallenge> {\n return this.fetch<CustomerSessionChallenge>('POST', '/api/v3/baas/customer-session/challenge', input);\n }\n\n /**\n * Step 2: submit the customer's signed challenge. On success returns a\n * short-lived bearer JWT scoped to {appId, chain, address}.\n */\n async verify(req: CustomerSessionVerifyRequest): Promise<CustomerSessionToken> {\n return this.fetch<CustomerSessionToken>('POST', '/api/v3/baas/customer-session/verify', req);\n }\n\n /**\n * Validate a customer bearer + return the decoded session info. Used by\n * smart-app backends to authorise incoming customer requests.\n */\n async validate(bearer: string): Promise<CustomerSessionInfo> {\n return this.fetch<CustomerSessionInfo>('GET', '/api/v3/baas/customer-session/validate', undefined, bearer);\n }\n\n /**\n * Revoke a customer session. Idempotent.\n */\n async end(bearer: string): Promise<{ revoked: boolean; sessionId: string }> {\n return this.fetch<{ revoked: boolean; sessionId: string }>(\n 'POST',\n '/api/v3/baas/customer-session/end',\n undefined,\n bearer,\n );\n }\n\n private async fetch<T>(\n method: 'GET' | 'POST',\n path: string,\n body?: unknown,\n bearer?: string,\n ): Promise<T> {\n const url = `${this.baseUrl}${path}`;\n const controller = new AbortController();\n const timeoutId = setTimeout(() => controller.abort(), this.timeoutMs);\n try {\n const headers: Record<string, string> = { 'Content-Type': 'application/json' };\n if (bearer) headers['Authorization'] = `Bearer ${bearer}`;\n const init: RequestInit = { method, headers, signal: controller.signal };\n if (body !== undefined) init.body = JSON.stringify(body);\n const response = await fetch(url, init);\n clearTimeout(timeoutId);\n if (!response.ok) {\n const errBody = (await response.json().catch(() => ({}))) as { message?: string };\n const err = new Error(\n errBody.message ?? `customer-session ${path} failed: ${response.status} ${response.statusText}`,\n ) as Error & { status: number };\n err.status = response.status;\n throw err;\n }\n const text = await response.text();\n if (!text) return undefined as T;\n return JSON.parse(text) as T;\n } catch (error) {\n clearTimeout(timeoutId);\n const e = error as Error;\n if (e.name === 'AbortError') {\n throw new Error(`customer-session ${path} timeout`);\n }\n throw error;\n }\n }\n}\n","/**\n * Rules Sub-Client\n *\n * Smart-app authoring surface for canonical validator rules: publish a\n * `ValidatorRules` document to HCS, fetch a published rule by consensus\n * timestamp, list rules owned by the authenticated entity, simulate\n * cluster-side evaluation, and walk version history.\n *\n * @example\n * ```typescript\n * import { Rules } from '@hsuite/smart-engines-sdk';\n *\n * const rule = Rules.forToken()\n * .withSecurity('full')\n * .withOperations({ mint: { enabled: true, limits: { dailyLimit: '1000000' } } })\n * .build();\n *\n * const { ruleRef } = await baas.rules.publish(rule);\n * const sim = await baas.rules.simulate({ ruleRef, action: 'mint', context: { amount: '500' } });\n * ```\n */\nimport { encodePathParam, type HttpClient } from '../../http';\nimport type { PublishedRule, RuleRef, ValidatorRules } from '../../rules';\nimport type {\n DeprecateRuleResponse,\n ListRulesFilter,\n ListRulesResponse,\n PublishRuleResponse,\n SimulateRuleRequest,\n ValidationResult,\n VersionHistoryResponse,\n} from './types';\n\n/** Public surface of {@link RulesClient}. */\nexport interface IRulesClient {\n publish(rule: ValidatorRules): Promise<PublishRuleResponse>;\n get(consensusTimestamp: string): Promise<PublishedRule>;\n listByOwner(filter?: ListRulesFilter): Promise<ListRulesResponse>;\n simulate(params: SimulateRuleRequest): Promise<ValidationResult>;\n getVersionHistory(consensusTimestamp: string): Promise<VersionHistoryResponse>;\n deprecate(consensusTimestamp: string): Promise<DeprecateRuleResponse>;\n}\n\nexport class RulesClient implements IRulesClient {\n constructor(private readonly http: HttpClient) {}\n\n /** Publish a canonical ValidatorRules document to HCS. */\n async publish(rule: ValidatorRules): Promise<PublishRuleResponse> {\n return this.http.post('/api/v3/baas/rules/publish', rule);\n }\n\n /** Fetch a published rule by its HCS consensus timestamp. */\n async get(consensusTimestamp: string): Promise<PublishedRule> {\n return this.http.get(`/api/v3/baas/rules/${encodePathParam(consensusTimestamp)}`);\n }\n\n /** List rules owned by the authenticated entity, optionally filtered by type. */\n async listByOwner(filter?: ListRulesFilter): Promise<ListRulesResponse> {\n const path = filter?.type\n ? `/api/v3/baas/rules?type=${encodeURIComponent(filter.type)}`\n : '/api/v3/baas/rules';\n return this.http.get(path);\n }\n\n /**\n * Simulate cluster-side evaluation of an action against a rule. Either\n * `ruleRef` (published) or `rule` (inline) must be supplied by the caller.\n */\n async simulate(params: SimulateRuleRequest): Promise<ValidationResult> {\n return this.http.post('/api/v3/baas/rules/simulate', params);\n }\n\n /** Walk the version history of a published rule. */\n async getVersionHistory(consensusTimestamp: string): Promise<VersionHistoryResponse> {\n return this.http.get(\n `/api/v3/baas/rules/${encodePathParam(consensusTimestamp)}/versions`,\n );\n }\n\n /** Deprecate a published rule (owner-only). */\n async deprecate(consensusTimestamp: string): Promise<DeprecateRuleResponse> {\n return this.http.post(\n `/api/v3/baas/rules/${encodePathParam(consensusTimestamp)}/deprecate`,\n {},\n );\n }\n}\n\nexport type { RuleRef };\n","/**\n * Entities Sub-Client\n *\n * Smart-app authoring surface for canonical chain-bound entities. Each entity\n * arm (token / account / topic / agent) has a per-arm typed creator that\n * requires a published `ruleRef` — the cluster resolves the rule and stamps\n * it on the entity binding. A `launchpad(...)` mega-helper publishes a token\n * rule with an attached launchpad ModuleEntry and creates the token in one\n * call.\n *\n * @example\n * ```typescript\n * import { Rules } from '@hsuite/smart-engines-sdk';\n *\n * const rule = Rules.forToken().withSecurity('full').build();\n * const { ruleRef } = await baas.rules.publish(rule);\n *\n * const token = await baas.entities.createToken({\n * chain: 'hedera',\n * name: 'My Token',\n * symbol: 'MYT',\n * decimals: 6,\n * ruleRef,\n * });\n * ```\n */\nimport { encodePathParam, type HttpClient, type HttpCallOptions } from '../../http';\nimport type { ChainType, RuleRef } from '../..';\nimport type {\n BurnEntityRequest,\n ComplianceEntityRequest,\n CreateAccountRequest,\n CreateAgentRequest,\n CreateTokenRequest,\n CreateTopicRequest,\n EntityCreationResult,\n EntityInfo,\n EntitySecurityMode,\n EntityType,\n LaunchpadEntityRequest,\n LaunchpadEntityResult,\n ListEntitiesFilter,\n ListEntitiesResponse,\n MintEntityRequest,\n PreparedEntityCreation,\n PreparedEntityTransactionResult,\n TransferEntityRequest,\n TrustlineEntityRequest,\n WithdrawEntityRequest,\n} from './types';\n\n/**\n * Normalize a raw `EntityInfo` response from the cluster into the stable\n * SDK shape. The cluster historically returns `entityType`/`ownerWallet` and\n * sometimes omits `chain`; this helper adds `type`, `owner`, `chain`, and a\n * stable `agentId` so consumers don't need their own mapping logic.\n */\nfunction normalizeEntityInfo(raw: unknown): EntityInfo {\n const r = raw as Record<string, unknown>;\n const entityId = String(r.entityId ?? '');\n const entityType = (r.entityType as EntityType) ?? 'account';\n const ownerWallet = String(r.ownerWallet ?? '');\n const ruleRef = (r.ruleRef ?? {}) as RuleRef;\n const chainAccounts = (r.chainAccounts ?? {}) as Record<string, string>;\n const createdAt = String(r.createdAt ?? '');\n\n let chain: ChainType = (r.chain as ChainType) ?? ruleRef.chain;\n if (!chain) {\n const firstChain = Object.keys(chainAccounts)[0];\n chain = (firstChain as ChainType) ?? 'hedera';\n }\n\n const rawAgentId = r.agentId as string | undefined;\n const agentId = rawAgentId ?? entityId;\n\n return {\n entityId,\n type: entityType,\n entityType,\n owner: ownerWallet,\n ownerWallet,\n chain,\n ruleRef,\n chainAccounts,\n createdAt,\n agentId,\n };\n}\n\n/**\n * Guarantee a non-null `agentId` on every entity creation result by backfilling\n * `entityId` when the host omits it.\n */\nfunction normalizeEntityCreationResult(\n raw: unknown,\n): EntityCreationResult {\n const r = raw as EntityCreationResult;\n return {\n ...r,\n agentId: r.agentId ?? r.entityId,\n };\n}\n\n/** Public surface of {@link EntitiesClient}. */\nexport interface IEntitiesClient {\n prepareCreateToken(req: Omit<CreateTokenRequest, 'fundWith'>): Promise<PreparedEntityCreation>;\n executeCreateToken(req: {\n entityId: string;\n chain: ChainType;\n securityMode?: EntitySecurityMode;\n createTxId?: string;\n signedFundingBlob?: string;\n }): Promise<EntityCreationResult>;\n createToken(req: CreateTokenRequest): Promise<EntityCreationResult>;\n prepareCreateAccount(req: Omit<CreateAccountRequest, 'fundWith'>): Promise<PreparedEntityCreation>;\n executeCreateAccount(req: {\n entityId: string;\n chain: ChainType;\n securityMode?: EntitySecurityMode;\n signedFundingBlob?: string;\n createTxId?: string;\n }): Promise<EntityCreationResult>;\n createAccount(req: CreateAccountRequest): Promise<EntityCreationResult>;\n prepareCreateTopic(req: Omit<CreateTopicRequest, 'fundWith'>): Promise<PreparedEntityCreation>;\n executeCreateTopic(req: {\n entityId: string;\n chain: ChainType;\n createTxId: string;\n securityMode?: EntitySecurityMode;\n }): Promise<EntityCreationResult>;\n createTopic(req: CreateTopicRequest): Promise<EntityCreationResult>;\n createAgent(req: CreateAgentRequest): Promise<EntityCreationResult>;\n prepareCreateAgent(req: Omit<CreateAgentRequest, 'fundWith'>): Promise<PreparedEntityCreation>;\n executeCreateAgent(req: {\n entityId: string;\n chain: ChainType;\n securityMode?: EntitySecurityMode;\n signedFundingBlob?: string;\n createTxId?: string;\n }): Promise<EntityCreationResult>;\n launchpad(req: LaunchpadEntityRequest): Promise<LaunchpadEntityResult>;\n get(entityId: string): Promise<EntityInfo>;\n listByOwner(filter?: ListEntitiesFilter): Promise<ListEntitiesResponse>;\n transfer(\n entityId: string,\n body: TransferEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult>;\n withdraw(\n entityId: string,\n body: WithdrawEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult>;\n mint(\n entityId: string,\n body: MintEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult>;\n burn(\n entityId: string,\n body: BurnEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult>;\n compliance(\n entityId: string,\n body: ComplianceEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult>;\n trustline(\n entityId: string,\n body: TrustlineEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult>;\n}\n\nexport class EntitiesClient implements IEntitiesClient {\n constructor(private readonly http: HttpClient) {}\n\n /**\n * Chains whose token-create routes through the payer-funded 3-step (prepare →\n * fund → execute), mirroring `createAccount`. Hedera = real HTS TokenCreate\n * (admin/supply = the per-entity DKG slot-pubkey KeyList; treasury = the\n * entity's own account; `0.0.X` token id is network-assigned, resolved from the\n * receipt via the threaded `createTxId`). Cardano/Solana/Polkadot = the\n * AUTHORITY entity (the entity IS the policy/mint/Assets-admin multisig — same\n * address as an account; the asset MINT itself is a later operate-tab payer\n * call). XRPL/Stellar token = an ISSUER ACCOUNT (reuses the account preparer) +\n * issuer flags set at finalize: XRPL relays the funding Payment then finalizes\n * (issuer-flag AccountSets + SignerListSet + disable-master); Stellar relays the\n * CreateAccount then finalizes (SetOptions install incl. issuer setFlags +\n * master lock). Every OTHER chain (EVM) stays on the legacy synchronous path.\n */\n private static readonly PAYER_FUNDED_TOKEN_CHAINS: ReadonlySet<ChainType> =\n new Set<ChainType>([\n 'hedera',\n 'cardano',\n 'solana',\n 'polkadot',\n 'xrpl',\n 'stellar',\n ]);\n\n /**\n * PREPARE half of the payer-funded token-create flow.\n *\n * POSTs `/api/v3/baas/entities/prepare-create` with `entityType: 'token'`. The cluster\n * runs the per-entity DKG, builds the payer-funded create (Hedera: TokenCreate\n * keyed by the slot-pubkey KeyList with the entity account as treasury;\n * Cardano/Solana/Polkadot: funds/provisions the authority multisig), and returns\n * the prepared blob. The prepared `transactionId` is the `createTxId` for\n * execute (Hedera).\n */\n async prepareCreateToken(\n req: Omit<CreateTokenRequest, 'fundWith'>,\n ): Promise<PreparedEntityCreation> {\n return this.http.post('/api/v3/baas/entities/prepare-create', {\n entityType: 'token',\n ...req,\n });\n }\n\n /**\n * EXECUTE half of the payer-funded token-create flow.\n *\n * POSTs `/api/v3/baas/entities/execute-create` with `entityType: 'token'`. For Hedera,\n * pass `createTxId` (the prepared create's `transactionId`) so the validator\n * resolves the network-assigned `0.0.X` token id from the receipt and stamps\n * `chainAccounts.hedera`. For the authority-entity chains (cardano/solana/\n * polkadot) execute just verifies the binding and echoes the stamped authority\n * address (no `createTxId` needed).\n */\n async executeCreateToken(req: {\n entityId: string;\n chain: ChainType;\n securityMode?: EntitySecurityMode;\n /** Hedera only: the prepared create's TransactionId (resolves the token id from the receipt). */\n createTxId?: string;\n /**\n * XRPL/Stellar issuer-account only: the payer's signed funding blob for the\n * validator to submit before finalizing the issuer-flag install. Omitted for\n * the other chains (their execute-create rejects a non-undefined blob).\n */\n signedFundingBlob?: string;\n }): Promise<EntityCreationResult> {\n const { createTxId, signedFundingBlob, ...rest } = req;\n const result = await this.http.post('/api/v3/baas/entities/execute-create', {\n ...rest,\n ...(createTxId !== undefined ? { createTxId } : {}),\n ...(signedFundingBlob !== undefined ? { signedFundingBlob } : {}),\n entityType: 'token',\n });\n return normalizeEntityCreationResult(result);\n }\n\n /**\n * Create a canonical token entity bound to a published rule.\n *\n * Dispatches by `chain` (mirrors `createAccount`):\n * - **Hedera / Cardano / Solana / Polkadot** = payer-funded 3-step (prepare →\n * caller funds via `fundWith` → execute). Hedera resolves the network-assigned\n * `0.0.X` token id from the receipt (threads `createTxId`); the authority-\n * entity chains verify/echo the stamped authority address. `fundWith` is\n * REQUIRED; to drive the steps manually call `prepareCreateToken` /\n * `executeCreateToken` directly.\n * - **XRPL / Stellar** = payer-funded too (account-model issuer): `fundWith`\n * REQUIRED; the caller's signed funding blob is RELAYED to the validator,\n * which submits it then finalizes the issuer multisig (master-locked). NO\n * issuer flags are set at create — issuer auth flags / DefaultRipple / clawback\n * are an operate-tab, rules-validated concern.\n * - **EVM / other** = legacy synchronous `POST /api/v3/baas/entities/createToken`\n * (payer-funded-only fields ignored) until it migrates.\n */\n async createToken(req: CreateTokenRequest): Promise<EntityCreationResult> {\n if (EntitiesClient.PAYER_FUNDED_TOKEN_CHAINS.has(req.chain)) {\n const { fundWith, ...prepReq } = req;\n const prep = await this.prepareCreateToken(prepReq);\n if (!fundWith) {\n throw new Error(\n `createToken(${req.chain}): pass fundWith (sign+submit the prepared create tx), or call prepareCreateToken/executeCreateToken directly`,\n );\n }\n // The caller signs the fee + submits the create tx with their OWN wallet.\n // XRPL/Stellar issuer accounts return a signed funding blob for the validator\n // to RELAY (then finalize on-chain); the other chains submit directly.\n const funded = await fundWith(prep.prepared, {\n address: prep.address,\n reserveRequirement: prep.reserveRequirement,\n });\n // Hedera threads the prepared create's TransactionId (network-assigned token\n // id is resolved from the receipt at execute); the authority-entity chains\n // need no createTxId (their address is deterministic / already stamped).\n // XRPL/Stellar (account-model issuer) RELAY the signed funding blob so the\n // validator submits it before finalizing the issuer-flag install.\n return this.executeCreateToken({\n entityId: prep.entityId,\n chain: req.chain,\n securityMode: req.securityMode,\n signedFundingBlob: EntitiesClient.FUNDING_BLOB_RELAY_CHAINS.has(req.chain)\n ? funded?.signedFundingBlob\n : undefined,\n createTxId:\n req.chain === 'hedera' ? prep.prepared?.[0]?.transactionId : undefined,\n });\n }\n // legacy synchronous create (unchanged) — only EVM remains on this path until\n // it migrates to the payer-funded flow.\n const {\n fundWith: _ignoredFundWith,\n payerAccountId: _ignoredPayer,\n securityMode: _ignoredSecurityMode,\n ...legacyReq\n } = req;\n const result = await this.http.post('/api/v3/baas/entities/createToken', legacyReq);\n return normalizeEntityCreationResult(result);\n }\n\n /**\n * PREPARE half of the payer-funded account-create flow.\n *\n * POSTs `/api/v3/baas/entities/prepare-create`. The cluster runs the per-entity DKG\n * (persists the binding, submits nothing on-chain) and returns the unsigned\n * payer-funding `Payment`(s) the caller signs + submits with their own wallet.\n */\n async prepareCreateAccount(\n req: Omit<CreateAccountRequest, 'fundWith'>,\n ): Promise<PreparedEntityCreation> {\n return this.http.post('/api/v3/baas/entities/prepare-create', {\n entityType: 'account',\n ...req,\n });\n }\n\n /**\n * EXECUTE half of the payer-funded account-create flow.\n *\n * POSTs `/api/v3/baas/entities/execute-create`. The entity already exists (its DKG\n * ran during prepare); pass `signedFundingBlob` for the validator to submit\n * the payer's signed funding `Payment` (XRPL only), or omit it when the caller\n * already submitted the funding tx themselves (then execute just finalizes /\n * verifies).\n *\n * `createTxId` is the HEDERA thread: a Hedera AccountCreate gets its\n * network-assigned `0.0.X` id only from the on-chain receipt after the payer\n * submits. The caller threads the prepared create's `transactionId` (from\n * `prepared[0].transactionId`) back here so the validator resolves the id from\n * the receipt server-side. Ignored for non-Hedera chains.\n */\n async executeCreateAccount(req: {\n entityId: string;\n chain: ChainType;\n securityMode?: EntitySecurityMode;\n signedFundingBlob?: string;\n /** Hedera only: the prepared create's TransactionId (resolves the id from the receipt). */\n createTxId?: string;\n }): Promise<EntityCreationResult> {\n // Build a clean body: `createTxId` is the Hedera-only receipt thread, so it\n // is included ONLY when actually defined — non-Hedera bodies stay\n // `{ entityId, chain, securityMode?, signedFundingBlob? }` with no spurious\n // `createTxId: undefined`. `entityType` is omitted for accounts: the\n // execute-create DTO defaults a missing `entityType` to `account`, so the\n // receipt resolver reads `accountId` without the field being relayed.\n const { createTxId, ...rest } = req;\n const result = await this.http.post('/api/v3/baas/entities/execute-create', {\n ...rest,\n ...(createTxId !== undefined ? { createTxId } : {}),\n });\n return normalizeEntityCreationResult(result);\n }\n\n /**\n * Chains whose account-create routes through the payer-funded 3-step\n * (prepare → fund → execute). All are ledgers where the validators never pay:\n * XRPL funds a reserve; Bitcoin funds a P2WSH UTXO; Cardano funds a\n * native-script enterprise address above min-UTXO; Polkadot funds a\n * pallet_multisig SS58 above the existential deposit; Solana funds a Squads\n * multisig PDA (deterministic from the createKey) via a payer-paid\n * `multisigCreateV2` — the payer's submission IS the create (no separate\n * finalizer). Hedera is create-WITH-KEY: the payer submits an AccountCreate\n * whose controlling key is the per-entity DKG slot-pubkey KeyList, so the\n * payer's submit IS the create; its `0.0.X` id is network-assigned (resolved\n * from the receipt at execute-create via the threaded `createTxId`). Stellar is\n * account-MODEL (like XRPL): the payer funds the entity's slot-0 `G...` master\n * via a CreateAccount, the validator RELAYS the signed funding blob, then\n * execute-create finalizes on-chain (threshold-signs a SetOptions installing\n * the validator chain-key multisig + locking the master). EVM stays on the\n * legacy synchronous create until it migrates.\n */\n private static readonly PAYER_FUNDED_CREATE_CHAINS: ReadonlySet<ChainType> =\n new Set<ChainType>([\n 'xrpl',\n 'bitcoin',\n 'cardano',\n 'polkadot',\n 'solana',\n 'hedera',\n 'stellar',\n ]);\n\n /**\n * Chains whose execute-create RELAYS the payer's signed funding blob for the\n * validator to submit (then finalizes on-chain). Both are account-model ledgers\n * with a validator-side finalize step: XRPL (SignerListSet + disable-master),\n * Stellar (SetOptions install + master lock). Every OTHER payer-funded chain\n * has the PAYER submit the funding tx directly with their own wallet — their\n * execute-create REJECTS a non-undefined `signedFundingBlob` (400), so the blob\n * is omitted for them.\n */\n private static readonly FUNDING_BLOB_RELAY_CHAINS: ReadonlySet<ChainType> =\n new Set<ChainType>(['xrpl', 'stellar']);\n\n /**\n * Create a canonical account entity bound to a published rule.\n *\n * Dispatches by `chain`:\n * - **XRPL / Stellar / Bitcoin / Cardano / Polkadot / Solana / Hedera** =\n * payer-funded 3-step (prepare → fund → execute). The cluster runs the\n * per-entity DKG and returns the unsigned payer-funding tx(s); the\n * caller-supplied `fundWith` callback signs + submits (or just signs) the\n * funding tx with their OWN wallet — the SDK never holds the customer's chain\n * key nor opens a network connection — then `executeCreateAccount` finalizes\n * (XRPL + Stellar finalize on-chain after relaying the funding blob; the\n * deterministic ledgers + Solana verify/stamp the binding; Hedera resolves\n * the network-assigned id from the receipt). `fundWith` is REQUIRED on these\n * chains; to drive the steps manually call `prepareCreateAccount` /\n * `executeCreateAccount` directly.\n * - **other chains** (EVM) = legacy synchronous create — a single\n * `POST /api/v3/baas/entities/createAccount`, unchanged from pre-3.9.0. These chains\n * migrate to the payer-funded flow in a later phase; until then the\n * payer-funded-only fields (`fundWith` / `payerAccountId` / `securityMode`)\n * are ignored.\n */\n async createAccount(req: CreateAccountRequest): Promise<EntityCreationResult> {\n if (EntitiesClient.PAYER_FUNDED_CREATE_CHAINS.has(req.chain)) {\n // payer-funded 3-step (the 3.9.0 logic, now multi-chain) — requires fundWith\n const { fundWith, ...prepReq } = req;\n const prep = await this.prepareCreateAccount(prepReq);\n if (!fundWith) {\n throw new Error(\n `createAccount(${req.chain}): pass fundWith (sign+submit the prepared funding tx), or call prepareCreateAccount/executeCreateAccount directly`,\n );\n }\n const funded = await fundWith(prep.prepared, {\n address: prep.address,\n reserveRequirement: prep.reserveRequirement,\n });\n // Only the account-model finalize chains (XRPL, Stellar) relay the payer's\n // signed blob for the validator to submit (their execute-create finalizes\n // on-chain after the funding lands). The deterministic ledgers\n // (bitcoin/cardano/polkadot), Solana AND Hedera have the PAYER submit the tx\n // directly with their own wallet; their execute-create REJECTS a\n // non-undefined `signedFundingBlob` with a 400 (the payer is the submitter,\n // not the validator). So omit the blob for every non-relay chain.\n //\n // Hedera additionally threads `createTxId`: its create-with-key id is\n // network-assigned, so execute-create needs the prepared create's\n // TransactionId (on prepared[0].transactionId, the same tx the payer just\n // submitted via fundWith) to resolve the 0.0.X id from the receipt.\n return this.executeCreateAccount({\n entityId: prep.entityId,\n chain: req.chain,\n securityMode: req.securityMode,\n signedFundingBlob: EntitiesClient.FUNDING_BLOB_RELAY_CHAINS.has(req.chain)\n ? funded?.signedFundingBlob\n : undefined,\n createTxId:\n req.chain === 'hedera' ? prep.prepared?.[0]?.transactionId : undefined,\n });\n }\n // legacy synchronous create (unchanged from pre-3.9.0) — only EVM remains on\n // this path; it migrates to payer-funded in a later phase.\n const {\n fundWith: _ignoredFundWith,\n payerAccountId: _ignoredPayer,\n securityMode: _ignoredSecurityMode,\n ...legacyReq\n } = req;\n const result = await this.http.post('/api/v3/baas/entities/createAccount', legacyReq);\n return normalizeEntityCreationResult(result);\n }\n\n /**\n * PREPARE half of the payer-funded topic-create flow (Hedera).\n *\n * POSTs `/api/v3/baas/entities/prepare-create` with `entityType: 'topic'`. The cluster\n * runs the per-entity DKG (persists the binding), builds the payer-funded\n * TopicCreate keyed by the slot-pubkey KeyList, attaches the validator admin\n * threshold sig, and returns the prepared blob for the caller to add the fee\n * sig + submit. The prepared `transactionId` is the `createTxId` for execute.\n */\n async prepareCreateTopic(\n req: Omit<CreateTopicRequest, 'fundWith'>,\n ): Promise<PreparedEntityCreation> {\n return this.http.post('/api/v3/baas/entities/prepare-create', {\n entityType: 'topic',\n ...req,\n });\n }\n\n /**\n * EXECUTE half of the payer-funded topic-create flow (Hedera).\n *\n * POSTs `/api/v3/baas/entities/execute-create` with `entityType: 'topic'`. The topic\n * already exists once the payer submitted the create tx; pass `createTxId` (the\n * prepared create's `transactionId`) so the validator resolves the network-\n * assigned `0.0.X` topic id from the receipt and stamps `chainAccounts.hedera`.\n */\n async executeCreateTopic(req: {\n entityId: string;\n chain: ChainType;\n createTxId: string;\n securityMode?: EntitySecurityMode;\n }): Promise<EntityCreationResult> {\n const result = await this.http.post('/api/v3/baas/entities/execute-create', {\n ...req,\n entityType: 'topic',\n });\n return normalizeEntityCreationResult(result);\n }\n\n /**\n * Create a canonical topic entity bound to a published rule.\n *\n * Dispatches by `chain`:\n * - **Hedera** = payer-funded 3-step (prepare → caller submits the TopicCreate\n * via `fundWith` → execute resolves the `0.0.X` topic id from the receipt).\n * `fundWith` is REQUIRED; to drive the steps manually call\n * `prepareCreateTopic` / `executeCreateTopic` directly.\n * - **other chains** = legacy synchronous `POST /api/v3/baas/entities/createTopic`\n * (topics are a Hedera primitive; the legacy path is unchanged).\n */\n async createTopic(req: CreateTopicRequest): Promise<EntityCreationResult> {\n if (req.chain === 'hedera') {\n const { fundWith, ...prepReq } = req;\n const prep = await this.prepareCreateTopic(prepReq);\n if (!fundWith) {\n throw new Error(\n 'createTopic(hedera): pass fundWith (sign+submit the prepared TopicCreate), or call prepareCreateTopic/executeCreateTopic directly',\n );\n }\n // The caller signs the fee + submits the create tx with their OWN wallet.\n // Hedera topics have no reserve/address at prepare (the id is receipt-only).\n await fundWith(prep.prepared, {\n address: prep.address,\n reserveRequirement: prep.reserveRequirement,\n });\n const createTxId = prep.prepared?.[0]?.transactionId;\n if (!createTxId) {\n throw new Error(\n 'createTopic(hedera): prepared TopicCreate carries no transactionId — cannot resolve the topic id from the receipt',\n );\n }\n return this.executeCreateTopic({\n entityId: prep.entityId,\n chain: req.chain,\n createTxId,\n securityMode: req.securityMode,\n });\n }\n // legacy synchronous create (unchanged) — topics are a Hedera primitive.\n const {\n fundWith: _ignoredFundWith,\n payerAccountId: _ignoredPayer,\n securityMode: _ignoredSecurityMode,\n ...legacyReq\n } = req;\n const result = await this.http.post('/api/v3/baas/entities/createTopic', legacyReq);\n return normalizeEntityCreationResult(result);\n }\n\n /** Create a canonical agent entity bound to a published rule. */\n async createAgent(req: CreateAgentRequest): Promise<EntityCreationResult> {\n const result = await this.http.post('/api/v3/baas/entities/createAgent', req);\n return normalizeEntityCreationResult(result);\n }\n\n /**\n * PREPARE half of the payer-funded agent-create flow.\n *\n * POSTs `/api/v3/baas/entities/prepare-create` with `entityType: 'agent'`. The cluster\n * runs the per-entity DKG (persists the binding, submits nothing on-chain) and\n * returns the unsigned payer-funding `Payment`(s) the caller signs + submits with\n * their own wallet — mirroring `prepareCreateAccount`. The agent's primary chain\n * is relayed as `chain` (the generic prepare/execute DTO key) so the host's\n * chain-bound preparer runs; `name` / `agentType` / `ruleRef` ride along.\n */\n async prepareCreateAgent(\n req: Omit<CreateAgentRequest, 'fundWith'>,\n ): Promise<PreparedEntityCreation> {\n const { primaryChain, ...rest } = req;\n return this.http.post('/api/v3/baas/entities/prepare-create', {\n entityType: 'agent',\n chain: primaryChain,\n ...rest,\n });\n }\n\n /**\n * EXECUTE half of the payer-funded agent-create flow.\n *\n * POSTs `/api/v3/baas/entities/execute-create` with `entityType: 'agent'`. The entity\n * already exists (its DKG ran during prepare); pass `signedFundingBlob` for the\n * validator to submit the payer's signed funding tx (XRPL/Stellar account-model\n * relay), or omit it when the caller already submitted the funding tx themselves.\n * `createTxId` is the Hedera receipt thread (the prepared create's\n * `transactionId`); ignored for non-Hedera chains. Mirrors\n * `executeCreateAccount` but tags `entityType: 'agent'`.\n */\n async executeCreateAgent(req: {\n entityId: string;\n chain: ChainType;\n securityMode?: EntitySecurityMode;\n signedFundingBlob?: string;\n /** Hedera only: the prepared create's TransactionId (resolves the id from the receipt). */\n createTxId?: string;\n }): Promise<EntityCreationResult> {\n // Build a clean body: `createTxId` / `signedFundingBlob` are included ONLY when\n // actually defined (mirrors executeCreateAccount), so non-relay / non-Hedera\n // bodies stay `{ entityId, chain, securityMode?, entityType: 'agent' }`.\n const { createTxId, signedFundingBlob, ...rest } = req;\n const result = await this.http.post('/api/v3/baas/entities/execute-create', {\n ...rest,\n ...(createTxId !== undefined ? { createTxId } : {}),\n ...(signedFundingBlob !== undefined ? { signedFundingBlob } : {}),\n entityType: 'agent',\n });\n return normalizeEntityCreationResult(result);\n }\n\n /**\n * Mega-helper: build a token rule with a launchpad ModuleEntry attached,\n * publish it, create the token, and return the combined result in one HTTP\n * round-trip.\n */\n async launchpad(req: LaunchpadEntityRequest): Promise<LaunchpadEntityResult> {\n return this.http.post('/api/v3/baas/entities/launchpad', req);\n }\n\n /** Fetch an entity by its canonical `entityId`. */\n async get(entityId: string): Promise<EntityInfo> {\n const raw = await this.http.get(`/api/v3/baas/entities/${encodePathParam(entityId)}`);\n return normalizeEntityInfo(raw);\n }\n\n /** List entities owned by the authenticated wallet, optionally filtered by type. */\n async listByOwner(filter?: ListEntitiesFilter): Promise<ListEntitiesResponse> {\n const path = filter?.type\n ? `/api/v3/baas/entities?type=${encodeURIComponent(filter.type)}`\n : '/api/v3/baas/entities';\n const raw = await this.http.get(path);\n const response = raw as ListEntitiesResponse;\n return {\n ...response,\n entities: response.entities?.map(normalizeEntityInfo) ?? [],\n };\n }\n\n // ─── Value-movement (prepare-bytes only) ──────────────────────────────────\n //\n // Each method POSTs the host's entity-scoped value-movement route. The entity\n // is the source / treasury / authority + fee-payer (resolved server-side from\n // the entity record — never the body), so a caller can never name a foreign\n // payer or drain another account. The host authorises the call (session\n // caller identity + `loadOwnedEntity` ownership), delegates to the validator\n // preparer, and returns prepared bytes for the caller to sign + submit; the\n // host never submits and never pays. A rule-deny surfaces as an HTTP 403\n // `rule_rejected` (use `isRuleRejected`), never as signed bytes.\n //\n // `opts` threads {@link HttpCallOptions} (`onBehalfOf` / `customerToken` /\n // `headers`) so an app-as-proxy can act on behalf of an owner — the owner's\n // Mode-1 customer-session JWT rides as both `Authorization: Bearer` and\n // `X-Customer-Session-Claim`, exactly as `agents.execute` does.\n\n /**\n * Prepare a native or token transfer FROM an account entity.\n *\n * `POST /api/v3/baas/entities/:entityId/transfer`.\n */\n async transfer(\n entityId: string,\n body: TransferEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/transfer`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare a withdrawal FROM an account entity to a destination.\n *\n * `POST /api/v3/baas/entities/:entityId/withdraw`.\n */\n async withdraw(\n entityId: string,\n body: WithdrawEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/withdraw`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare a token/NFT mint whose supply authority is the account entity.\n *\n * `POST /api/v3/baas/entities/:entityId/mint`.\n */\n async mint(\n entityId: string,\n body: MintEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/mint`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare a token/NFT burn from the account entity's treasury.\n *\n * `POST /api/v3/baas/entities/:entityId/burn`.\n */\n async burn(\n entityId: string,\n body: BurnEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/burn`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare a compliance action (pause / restrict / wipe) on a token whose\n * compliance authority is the account entity. The body `account` is the\n * per-account subject for restrict/wipe — never the payer.\n *\n * `POST /api/v3/baas/entities/:entityId/compliance`.\n */\n async compliance(\n entityId: string,\n body: ComplianceEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/compliance`,\n body,\n opts,\n );\n }\n\n /**\n * Prepare an XRPL TrustSet authorising the account entity to hold a currency\n * from an issuer.\n *\n * `POST /api/v3/baas/entities/:entityId/trustline`.\n */\n async trustline(\n entityId: string,\n body: TrustlineEntityRequest,\n opts?: HttpCallOptions,\n ): Promise<PreparedEntityTransactionResult> {\n return this.http.post(\n `/api/v3/baas/entities/${encodePathParam(entityId)}/trustline`,\n body,\n opts,\n );\n }\n}\n","/**\n * BaaS Client\n *\n * SDK client for interacting with Smart Engines Backend-as-a-Service.\n *\n * Provides:\n * - Wallet-based authentication (challenge-response)\n * - App registration and management\n * - Trustless database operations with state transitions and Merkle proofs\n * - Decentralized file storage\n * - Serverless function deployment and invocation\n * - Real-time pub/sub messaging with channels, history, and presence\n * - App deployment lifecycle management\n * - Autonomous smart agent management\n *\n * @example\n * ```typescript\n * import { BaasClient } from '@hsuite/smart-engines-sdk';\n *\n * const baas = new BaasClient({\n * hostUrl: 'https://host.smartengines.io',\n * appId: 'my-app',\n * });\n *\n * await baas.authenticate({\n * chain: 'hedera',\n * walletAddress: '0.0.12345',\n * publicKey: 'your-public-key',\n * signFn: async (message) => wallet.sign(message),\n * });\n *\n * // Database with state proofs\n * const result = await baas.db.insert('users', { name: 'Alice' });\n * const proof = await baas.db.getDocumentProof(result.document._id);\n *\n * // File storage\n * const upload = await baas.storage.upload(fileBuffer, 'document.pdf');\n *\n * // Messaging\n * await baas.messaging.publish('events', { type: 'user.created' });\n *\n * // Functions\n * const fn = await baas.functions.deploy({ name: 'handler', runtime: 'nodejs20', code: '...', codeType: 'inline' });\n *\n * // Agents\n * const agent = await baas.agents.register({ name: 'Bot', capabilities: ['trade'], rules: {} });\n * ```\n */\n\nimport type {\n BaasClientConfig,\n BaasSupportedChain,\n BaasChallengeResponse,\n BaasAuthResult,\n BaasSessionInfo,\n BaasErrorDetails,\n} from './types';\nimport { type CircuitBreakerSnapshot } from '../_vendor';\nimport { createHttpClient, SdkHttpError, type HttpClient } from '../http';\nimport { resolveClusterEndpoint } from '../discovery';\nimport { type NetworkName } from '../network-presets';\nimport { DatabaseClient } from './database';\nimport { StorageClient } from './storage';\nimport { FunctionsClient } from './functions';\nimport { MessagingClient } from './messaging';\nimport { DeploymentClient } from './deployment';\nimport { AgentsClient } from './agents';\nimport { CustomerSessionClient } from './customer-session';\nimport { RulesClient } from './rules';\nimport { EntitiesClient } from './entities';\n\n/**\n * Authentication options for wallet-based auth\n */\nexport type AuthenticateOptions = {\n /** Blockchain chain */\n chain: BaasSupportedChain;\n /** Wallet address on the chain */\n walletAddress: string;\n /** Public key (hex encoded) */\n publicKey: string;\n /** Function to sign the challenge message */\n signFn: (message: string) => string | Promise<string>;\n};\n\n/**\n * Fields shared across both arms of {@link BaasConnectToClusterConfig}.\n * Pulled out so the discriminated-union arms below stay focused on the\n * \"where to discover from\" decision.\n */\ninterface BaasConnectToClusterShared {\n /** Application ID (for existing apps) */\n appId?: string;\n /** Application name (for registration) */\n appName?: string;\n /** Request timeout in milliseconds */\n timeout?: number;\n /** Allow HTTP connections (for local development only) */\n allowInsecure?: boolean;\n /**\n * Path prefix prepended to every request to the chosen host. Defaults to\n * `/host` because cluster discovery returns the gateway URL, and the\n * gateway routes BaaS traffic at `/host/*`. Override to `''` if you are\n * pointing the SDK directly at a host that doesn't sit behind the\n * gateway path rewrite.\n */\n pathPrefix?: string;\n /**\n * Optional HCS trust anchor — cross-checks the bootstrap response\n * against the on-chain validator-registry topic so a compromised\n * bootstrap seed can't inject rogue clusters. Per deployment.\n */\n trustAnchor?: {\n network: 'mainnet' | 'testnet' | 'previewnet';\n registryTopicId: string;\n mirrorNodeUrl?: string;\n };\n}\n\n/**\n * Config for {@link BaasClient.connectToCluster}. Exactly ONE of\n * `network` or `bootstrap` must be supplied — encoded as a discriminated\n * union so passing both is a compile-time error.\n *\n * `network` is the recommended default for smart-app callers; the SDK\n * resolves the canonical gateway entrypoint from {@link KNOWN_NETWORKS}.\n * `bootstrap` is the manual escape hatch for private deployments.\n */\nexport type BaasConnectToClusterConfig =\n | ({\n /** Named network — SDK resolves the canonical gateway entrypoint. */\n network: NetworkName;\n bootstrap?: never;\n } & BaasConnectToClusterShared)\n | ({\n /** Bootstrap seeds: URLs that serve `GET /api/v3/discovery/clusters`. */\n bootstrap: string[];\n network?: never;\n } & BaasConnectToClusterShared);\n\n/** Public instance surface of {@link BaasClient}. */\nexport interface IBaasClient {\n readonly db: DatabaseClient;\n readonly storage: StorageClient;\n readonly functions: FunctionsClient;\n readonly messaging: MessagingClient;\n readonly deployment: DeploymentClient;\n readonly agents: AgentsClient;\n readonly customerSession: CustomerSessionClient;\n readonly rules: RulesClient;\n readonly entities: EntitiesClient;\n authenticate(options: AuthenticateOptions): Promise<BaasAuthResult>;\n validateSession(): Promise<BaasSessionInfo>;\n logout(): Promise<void>;\n isAuthenticated(): boolean;\n getAppId(): string | undefined;\n setAppId(appId: string): void;\n getHostUrl(): string;\n getHttpHealth(): { breaker: CircuitBreakerSnapshot | null; lastError?: Error };\n}\n\nexport class BaasClient implements IBaasClient {\n private readonly hostUrl: string;\n private readonly pathPrefix: string;\n private appId: string | undefined;\n private readonly timeout: number;\n private readonly allowInsecure: boolean;\n private readonly http: HttpClient;\n /** Last HTTP error (for getHttpHealth) */\n private lastHttpError?: Error;\n /**\n * Auth options from the last {@link authenticate} call, retained so the\n * client can transparently re-authenticate when the session token expires\n * (the http client invokes {@link reauthenticate} on a 401). Undefined until\n * the first successful authenticate.\n */\n private authContext?: AuthenticateOptions;\n\n // ========== Sub-Clients ==========\n\n /** Trustless database with state proofs and Merkle verification */\n public readonly db: DatabaseClient;\n /** Decentralized file storage */\n public readonly storage: StorageClient;\n /** Serverless function deployment and invocation */\n public readonly functions: FunctionsClient;\n /** Real-time pub/sub messaging with channels, history, and presence */\n public readonly messaging: MessagingClient;\n /** App deployment lifecycle management */\n public readonly deployment: DeploymentClient;\n /** Autonomous smart agent management */\n public readonly agents: AgentsClient;\n /** Customer→smart-app session bridge (TokenGate Face B). */\n public readonly customerSession: CustomerSessionClient;\n /** Canonical validator-rules authoring surface (publish/get/list/simulate). */\n public readonly rules: RulesClient;\n /** Canonical entity authoring surface (token/account/topic/agent + launchpad). */\n public readonly entities: EntitiesClient;\n\n constructor(config: BaasClientConfig) {\n this.allowInsecure = config.allowInsecure ?? false;\n this.hostUrl = validateUrl(config.hostUrl, this.allowInsecure);\n this.appId = config.appId;\n this.timeout = config.timeout ?? 30000;\n\n // Strip trailing slash from pathPrefix and ensure leading slash; empty if none.\n const prefix = (config.pathPrefix ?? '').replace(/\\/$/, '');\n this.pathPrefix = prefix ? (prefix.startsWith('/') ? prefix : `/${prefix}`) : '';\n const baseUrlWithPrefix = this.pathPrefix\n ? this.hostUrl.replace(/\\/$/, '') + this.pathPrefix\n : this.hostUrl;\n\n // Create shared HTTP client. baseUrl includes optional pathPrefix so all\n // /api/v3/baas/* paths get routed to the host even when consumed via a gateway.\n this.http = createHttpClient({\n baseUrl: baseUrlWithPrefix,\n timeout: this.timeout,\n // Transparent session refresh: on a 401, re-run the challenge-response\n // with the retained signer and retry once. No-op until authenticate() has\n // been called (authContext set). Excludes /api/v3/{,baas/}auth/* (see http client).\n onUnauthorized: () => this.reauthenticate(),\n });\n\n // Helper to get appId with validation\n const getAppId = () => this.requireAppId();\n\n // Initialize sub-clients\n this.db = new DatabaseClient(this.http, getAppId);\n this.storage = new StorageClient(this.http, getAppId);\n this.functions = new FunctionsClient(this.http, getAppId);\n this.messaging = new MessagingClient(this.http, getAppId);\n this.deployment = new DeploymentClient(this.http);\n this.agents = new AgentsClient(this.http);\n this.customerSession = new CustomerSessionClient(baseUrlWithPrefix, this.timeout);\n this.rules = new RulesClient(this.http);\n this.entities = new EntitiesClient(this.http);\n }\n\n /**\n * Connect to the Smart Engines BaaS via cluster auto-discovery.\n *\n * Zero-config entrypoint flow:\n *\n * 1. Resolves the bootstrap seed list:\n * - `network: 'testnet' | 'mainnet'` → canonical Cloudflare-fronted\n * gateway via {@link KNOWN_NETWORKS}.\n * - `bootstrap: string[]` → explicit seed list (private deployments).\n * 2. Fetches `GET /api/v3/discovery/clusters` from the first reachable\n * seed; the response carries every active cluster's gateway URL.\n * 3. Random-picks one active cluster.\n * 4. Returns a `BaasClient` pointed at that cluster's gatewayUrl, with\n * `pathPrefix: '/host'` so all BaaS sub-clients (db / storage /\n * functions / messaging / agents / rules / entities) route through\n * the gateway's `/host/*` rewrite.\n *\n * @example Zero-config (recommended)\n * ```ts\n * const baas = await BaasClient.connectToCluster({\n * network: 'testnet',\n * appId: 'app_abc',\n * });\n *\n * await baas.db.insert('users', { name: 'Alice' });\n * ```\n *\n * @example Custom seeds (private deployments)\n * ```ts\n * const baas = await BaasClient.connectToCluster({\n * bootstrap: ['https://gateway.my-private-net.example'],\n * appId: 'app_abc',\n * });\n * ```\n *\n * @throws {BaasError} `503` when no cluster is reachable via any seed.\n * @throws {BaasError} `400` when bootstrap resolution yields an empty list\n * (only possible when the caller passes an empty array explicitly).\n */\n static async connectToCluster(config: BaasConnectToClusterConfig): Promise<BaasClient> {\n const allowInsecure = config.allowInsecure ?? false;\n\n const resolved = await resolveClusterEndpoint({\n bootstrap: config.bootstrap,\n network: config.network,\n allowInsecure,\n trustAnchor: config.trustAnchor,\n });\n\n if (!resolved.ok) {\n if (resolved.reason === 'no-seeds') {\n throw new BaasError(\n 'connectToCluster requires either a non-empty `bootstrap` list or a known `network` name.',\n 400,\n );\n }\n throw new BaasError(\n 'No active clusters available via bootstrap seeds. Check network reachability or bootstrap URLs.',\n 503,\n );\n }\n\n const cluster = resolved.cluster;\n return new BaasClient({\n hostUrl: cluster.endpoints.gatewayUrl,\n appId: config.appId,\n appName: config.appName,\n timeout: config.timeout,\n allowInsecure,\n // BaaS traffic is gateway-routed at `/host/*` by default. Callers\n // pointing at a bare host can override with `pathPrefix: ''`.\n pathPrefix: config.pathPrefix ?? '/host',\n });\n }\n\n /** Set the app ID (for newly registered apps) */\n setAppId(appId: string): void {\n this.appId = appId;\n }\n\n /** Check if the client is authenticated */\n isAuthenticated(): boolean {\n return this.http.getAuthToken() !== undefined;\n }\n\n /** Get the current app ID */\n getAppId(): string | undefined {\n return this.appId;\n }\n\n /**\n * Get the configured host URL. After\n * {@link BaasClient.connectToCluster} this is the gateway URL of the\n * cluster the SDK landed on after random-pick — useful for logging,\n * \"behind the curtain\" UIs, or debugging which cluster is serving a\n * given request.\n */\n getHostUrl(): string {\n return this.hostUrl;\n }\n\n /**\n * Get HTTP resilience health information\n * @returns Object with circuit breaker state and last error (if any)\n */\n getHttpHealth(): { breaker: CircuitBreakerSnapshot | null; lastError?: Error } {\n // Note: In a real implementation, we would get the circuit breaker state\n // from the resilient HTTP layer. For now, return null since the base\n // HTTP client doesn't expose it yet.\n return {\n breaker: null,\n lastError: this.lastHttpError,\n };\n }\n\n private requireAppId(): string {\n if (!this.appId) {\n throw new BaasError(\n 'App ID required. Provide appId in config (e.g. from a prior deployment.init() call).',\n 400\n );\n }\n return this.appId;\n }\n\n // ========== Authentication ==========\n\n /**\n * Authenticate with the BaaS host using wallet challenge-response\n *\n * 1. Requests a challenge message from the host\n * 2. Signs the challenge with the provided signing function\n * 3. Submits the signature for verification\n * 4. Stores the JWT token for subsequent requests\n */\n async authenticate(options: AuthenticateOptions): Promise<BaasAuthResult> {\n const { chain, walletAddress, publicKey, signFn } = options;\n // Retain for transparent re-authentication when the token later expires.\n this.authContext = options;\n\n // Step 1: Request challenge — `this.http` already includes the\n // pathPrefix in its baseUrl, so we use the same /api/v3/baas/* path the\n // server route exposes.\n let challenge: BaasChallengeResponse;\n try {\n challenge = await this.http.post<BaasChallengeResponse>('/api/v3/baas/auth/challenge', {\n chain,\n walletAddress,\n appId: this.appId,\n });\n } catch (err) {\n throw asBaasError(err);\n }\n\n // Step 2: Sign the challenge\n const signature = await signFn(challenge.message);\n\n // Step 3: Verify and get token\n let result: BaasAuthResult;\n try {\n result = await this.http.post<BaasAuthResult>('/api/v3/baas/auth/verify', {\n challengeId: challenge.challengeId,\n signature,\n publicKey,\n });\n } catch (err) {\n throw asBaasError(err);\n }\n\n // Persist the token on the shared HTTP client so every subsequent\n // sub-client request automatically carries Authorization: Bearer ...\n this.http.setAuthToken(result.token);\n\n return result;\n }\n\n /**\n * Re-run the challenge-response with the retained signer to mint a fresh\n * session token. Invoked by the http client's `onUnauthorized` hook when a\n * request 401s because the token expired — so long-lived clients keep working\n * without the caller re-implementing refresh. No-op if {@link authenticate}\n * was never called. The `/api/v3/baas/auth/*` calls below are excluded from the http\n * client's 401-retry path, so this can never recurse.\n */\n private async reauthenticate(): Promise<void> {\n const ctx = this.authContext;\n if (!ctx) return; // never authenticated — nothing to refresh\n const challenge = await this.http.post<BaasChallengeResponse>('/api/v3/baas/auth/challenge', {\n chain: ctx.chain,\n walletAddress: ctx.walletAddress,\n appId: this.appId,\n });\n const signature = await ctx.signFn(challenge.message);\n const result = await this.http.post<BaasAuthResult>('/api/v3/baas/auth/verify', {\n challengeId: challenge.challengeId,\n signature,\n publicKey: ctx.publicKey,\n });\n this.http.setAuthToken(result.token);\n }\n\n /** Validate the current session */\n async validateSession(): Promise<BaasSessionInfo> {\n this.requireAuth();\n try {\n return await this.http.get<BaasSessionInfo>('/api/v3/baas/auth/session');\n } catch (err) {\n throw asBaasError(err);\n }\n }\n\n /** Destroy the current session on server and clear local token */\n async logout(): Promise<void> {\n if (this.http.getAuthToken()) {\n try {\n await this.http.post('/api/v3/baas/auth/logout', {});\n } catch {\n // Best effort — clear locally even if server request fails\n }\n }\n this.http.setAuthToken(undefined);\n }\n\n // ========== HTTP Helpers ==========\n\n private requireAuth(): void {\n if (!this.http.getAuthToken()) {\n throw new BaasError('Authentication required. Call authenticate() first.', 401);\n }\n }\n}\n\n/**\n * BaaS Error\n */\nexport class BaasError extends Error {\n constructor(\n message: string,\n public readonly statusCode: number,\n public readonly details?: BaasErrorDetails\n ) {\n super(message);\n this.name = 'BaasError';\n }\n}\n\n/**\n * Convert a thrown `SdkHttpError` (raised by the shared HTTP client) into\n * a `BaasError` so BaaS callers continue to see the historically expected\n * error type, with a uniform `statusCode` field and the raw server-side\n * `details` payload preserved.\n */\nfunction asBaasError(err: unknown): BaasError {\n if (err instanceof BaasError) return err;\n if (err instanceof SdkHttpError) {\n const details = (err.details ?? undefined) as BaasErrorDetails | undefined;\n return new BaasError(err.message, err.statusCode, details);\n }\n const e = err as Error;\n return new BaasError(`Network error: ${e?.message ?? String(err)}`, 0, {\n originalError: e?.message ?? String(err),\n });\n}\n\nfunction validateUrl(url: string, allowInsecure = false): string {\n try {\n const parsed = new URL(url);\n if (!['http:', 'https:'].includes(parsed.protocol)) {\n throw new BaasError(`Invalid protocol: ${parsed.protocol}`, 400);\n }\n if (!allowInsecure && parsed.protocol !== 'https:') {\n throw new BaasError(\n 'HTTPS is required for secure connections. Set allowInsecure=true for local development.',\n 400\n );\n }\n return parsed.origin;\n } catch (error) {\n if (error instanceof BaasError) throw error;\n throw new BaasError(`Invalid URL: ${url}`, 400);\n }\n}\n","import {\n Injectable,\n Logger,\n OnModuleInit,\n OnModuleDestroy,\n Inject,\n Optional,\n} from '@nestjs/common';\nimport { SmartEngineClient, SmartEngineClientConfig, SmartEngineError } from '../client';\nimport { SmartGatewayClient } from '../gateway';\nimport { BaasClient as SdkBaasClient } from '../baas';\n\n/**\n * Configuration for SmartEngineService\n */\nexport interface SmartEngineServiceConfig extends SmartEngineClientConfig {\n /** Enable automatic connection test on module init */\n testConnection?: boolean;\n /** Enable auto-reconnect on connection failure */\n autoReconnect?: boolean;\n /** Reconnection interval in milliseconds */\n reconnectInterval?: number;\n /** Maximum reconnection attempts (0 = infinite) */\n maxReconnectAttempts?: number;\n}\n\n/**\n * Configuration token for dependency injection\n */\nexport const SMART_ENGINE_CONFIG = 'SMART_ENGINE_CONFIG';\n\n/**\n * Injection token for the full SDK `BaasClient` (with `.rules`, `.entities`,\n * `.db`, `.storage`, etc. as sub-clients). Use this when a consumer wants the\n * parent BaaS surface.\n */\nexport const SDK_BAAS_CLIENT = 'SDK_BAAS_CLIENT';\n\n/**\n * Injection token for the BaaS `RulesClient` sub-client (publish/get/list/\n * simulate/deprecate canonical validator rules).\n */\nexport const RULES_CLIENT = 'RULES_CLIENT';\n\n/**\n * Injection token for the BaaS `EntitiesClient` sub-client (create\n * token/account/topic/agent + launchpad).\n */\nexport const ENTITIES_CLIENT = 'ENTITIES_CLIENT';\n\n/**\n * BaaS (Blockchain-as-a-Service) client interface\n *\n * Provides simplified access to blockchain operations for BaaS scenarios\n * where applications need managed blockchain infrastructure without\n * direct validator management.\n */\nexport interface BaasClient {\n /** The underlying SmartEngineClient */\n readonly client: SmartEngineClient;\n /** Check if the client is connected and healthy */\n isHealthy(): Promise<boolean>;\n /** Get the validator base URL */\n getBaseUrl(): string;\n}\n\n/**\n * SmartEngineService - NestJS injectable service for Smart Engines SDK\n *\n * Provides lifecycle-managed access to SmartEngineClient with:\n * - Automatic connection testing on module init\n * - Graceful shutdown on module destroy\n * - BaaS client wrapper for simplified access\n * - Optional auto-reconnect functionality\n *\n * @example Module configuration with forRoot\n * ```typescript\n * import { Module } from '@nestjs/common';\n * import { SmartEngineModule } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Module({\n * imports: [\n * SmartEngineModule.forRoot({\n * validatorBaseUrl: 'https://validator.example.com',\n * apiKey: process.env.SMART_ENGINE_API_KEY,\n * testConnection: true,\n * }),\n * ],\n * })\n * export class AppModule {}\n * ```\n *\n * @example Direct service injection\n * ```typescript\n * import { Injectable } from '@nestjs/common';\n * import { SmartEngineService } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Injectable()\n * export class MyService {\n * constructor(private readonly smartEngine: SmartEngineService) {}\n *\n * async doSomething() {\n * const client = this.smartEngine.getClient();\n * const health = await client.getHealth();\n * }\n * }\n * ```\n */\n@Injectable()\nexport class SmartEngineService implements OnModuleInit, OnModuleDestroy {\n private readonly logger = new Logger(SmartEngineService.name);\n private client: SmartEngineClient | null = null;\n private baasClient: BaasClient | null = null;\n private connected = false;\n private reconnectTimer: NodeJS.Timeout | null = null;\n private reconnectAttempts = 0;\n\n constructor(\n @Optional()\n @Inject(SMART_ENGINE_CONFIG)\n private readonly config?: SmartEngineServiceConfig\n ) {}\n\n /**\n * Initialize the service when the module starts\n */\n async onModuleInit(): Promise<void> {\n if (!this.config) {\n this.logger.warn(\n 'SmartEngineService initialized without configuration. Call configure() before using.'\n );\n return;\n }\n\n await this.initialize(this.config);\n }\n\n /**\n * Clean up resources when the module is destroyed\n */\n async onModuleDestroy(): Promise<void> {\n await this.shutdown();\n }\n\n /**\n * Initialize the service with configuration\n *\n * Can be called manually if not using DI configuration\n */\n async initialize(config: SmartEngineServiceConfig): Promise<void> {\n this.logger.log(`Initializing SmartEngineService for ${config.validatorBaseUrl}`);\n\n try {\n this.client = new SmartEngineClient({\n // SDK 4.0 validator-origin type-fence: the service config extends\n // SmartEngineClientConfig, so it carries `validatorBaseUrl` directly.\n validatorBaseUrl: config.validatorBaseUrl,\n apiKey: config.apiKey,\n authToken: config.authToken,\n timeout: config.timeout,\n allowInsecure: config.allowInsecure,\n });\n\n // Create BaaS client wrapper\n this.baasClient = this.createBaasClient(this.client);\n\n // Test connection if enabled\n if (config.testConnection !== false) {\n await this.testConnection();\n }\n\n this.connected = true;\n this.reconnectAttempts = 0;\n this.logger.log('SmartEngineService initialized successfully');\n } catch (error) {\n const err = error as Error;\n this.logger.error(`Failed to initialize SmartEngineService: ${err.message}`);\n\n if (config.autoReconnect) {\n this.scheduleReconnect(config);\n } else {\n throw error;\n }\n }\n }\n\n /**\n * Gracefully shutdown the service\n */\n async shutdown(): Promise<void> {\n this.logger.log('Shutting down SmartEngineService');\n\n // Clear reconnect timer\n if (this.reconnectTimer) {\n clearTimeout(this.reconnectTimer);\n this.reconnectTimer = null;\n }\n\n // Clear client references\n this.client = null;\n this.baasClient = null;\n this.connected = false;\n\n this.logger.log('SmartEngineService shutdown complete');\n }\n\n /**\n * Get the SmartEngineClient instance\n *\n * @throws SmartEngineError if client is not initialized\n */\n getClient(): SmartEngineClient {\n if (!this.client) {\n throw new SmartEngineError(\n 'SmartEngineClient not initialized. Ensure SmartEngineService is configured properly.',\n 500\n );\n }\n return this.client;\n }\n\n /**\n * Get the BaaS client for simplified blockchain access\n *\n * The BaaS client provides a simplified interface for applications\n * that need managed blockchain infrastructure access.\n *\n * @throws SmartEngineError if client is not initialized\n */\n getBaasClient(): BaasClient {\n if (!this.baasClient) {\n throw new SmartEngineError(\n 'BaasClient not initialized. Ensure SmartEngineService is configured properly.',\n 500\n );\n }\n return this.baasClient;\n }\n\n /**\n * Check if the service is connected and healthy\n */\n isConnected(): boolean {\n return this.connected;\n }\n\n /**\n * Test the connection to the validator\n */\n async testConnection(): Promise<boolean> {\n if (!this.client) {\n return false;\n }\n\n try {\n const health = await this.client.getHealth();\n this.connected = health.status === 'healthy' || health.status === 'ok';\n return this.connected;\n } catch (error) {\n const err = error as Error;\n this.logger.warn(`Connection test failed: ${err.message}`);\n this.connected = false;\n return false;\n }\n }\n\n /**\n * Get the current connection status\n */\n getStatus(): {\n connected: boolean;\n baseUrl: string | null;\n authenticated: boolean;\n reconnectAttempts: number;\n } {\n return {\n connected: this.connected,\n baseUrl: this.client?.getBaseUrl() ?? null,\n authenticated: this.client?.isAuthenticated() ?? false,\n reconnectAttempts: this.reconnectAttempts,\n };\n }\n\n /**\n * Create a SmartGatewayClient for gateway operations\n */\n createGatewayClient(config: {\n baseUrl: string;\n apiKey?: string;\n authToken?: string;\n timeout?: number;\n allowInsecure?: boolean;\n }): SmartGatewayClient {\n return new SmartGatewayClient(config);\n }\n\n /**\n * Create a BaaS client for host operations\n */\n createHostClient(config: {\n hostUrl: string;\n appId?: string;\n timeout?: number;\n allowInsecure?: boolean;\n }): SdkBaasClient {\n return new SdkBaasClient(config);\n }\n\n /**\n * Create a BaaS client wrapper around the SmartEngineClient\n */\n private createBaasClient(client: SmartEngineClient): BaasClient {\n return {\n client,\n isHealthy: async () => {\n try {\n const health = await client.getHealth();\n return health.status === 'healthy' || health.status === 'ok';\n } catch {\n return false;\n }\n },\n getBaseUrl: () => client.getBaseUrl(),\n };\n }\n\n /**\n * Schedule a reconnection attempt\n */\n private scheduleReconnect(config: SmartEngineServiceConfig): void {\n const maxAttempts = config.maxReconnectAttempts ?? 0;\n const interval = config.reconnectInterval ?? 5000;\n\n if (maxAttempts > 0 && this.reconnectAttempts >= maxAttempts) {\n this.logger.error(`Max reconnection attempts (${maxAttempts}) reached. Giving up.`);\n return;\n }\n\n this.reconnectAttempts++;\n this.logger.log(`Scheduling reconnection attempt ${this.reconnectAttempts} in ${interval}ms`);\n\n this.reconnectTimer = setTimeout(async () => {\n try {\n await this.initialize(config);\n } catch {\n // Error already logged in initialize\n }\n }, interval);\n }\n}\n","import { DynamicModule, Module, Provider, Type } from '@nestjs/common';\nimport {\n SmartEngineService,\n SmartEngineServiceConfig,\n SMART_ENGINE_CONFIG,\n SDK_BAAS_CLIENT,\n RULES_CLIENT,\n ENTITIES_CLIENT,\n} from './smart-engine.service';\nimport { BaasClient as SdkBaasClient } from '../baas';\n\n/**\n * Options for async module configuration\n */\nexport interface SmartEngineModuleAsyncOptions {\n /** Imports required for the factory */\n imports?: any[];\n /** Factory function to create configuration */\n useFactory?: (...args: any[]) => Promise<SmartEngineServiceConfig> | SmartEngineServiceConfig;\n /** Dependencies to inject into the factory */\n inject?: any[];\n /** Class to use for configuration */\n useClass?: Type<SmartEngineOptionsFactory>;\n /** Existing provider to use for configuration */\n useExisting?: Type<SmartEngineOptionsFactory>;\n /** Make the module global */\n isGlobal?: boolean;\n}\n\n/**\n * Factory interface for creating SmartEngine configuration\n */\nexport interface SmartEngineOptionsFactory {\n createSmartEngineOptions(): Promise<SmartEngineServiceConfig> | SmartEngineServiceConfig;\n}\n\n/**\n * SmartEngineModule - NestJS module for Smart Engines SDK integration\n *\n * Provides dependency injection for SmartEngineService with support for\n * both synchronous and asynchronous configuration.\n *\n * @example Synchronous configuration with forRoot\n * ```typescript\n * import { Module } from '@nestjs/common';\n * import { SmartEngineModule } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Module({\n * imports: [\n * SmartEngineModule.forRoot({\n * validatorBaseUrl: 'https://validator.example.com',\n * apiKey: 'your-api-key',\n * testConnection: true,\n * }),\n * ],\n * })\n * export class AppModule {}\n * ```\n *\n * @example Async configuration with forRootAsync\n * ```typescript\n * import { Module } from '@nestjs/common';\n * import { ConfigService, ConfigModule } from '@nestjs/config';\n * import { SmartEngineModule } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Module({\n * imports: [\n * SmartEngineModule.forRootAsync({\n * imports: [ConfigModule],\n * useFactory: (configService: ConfigService) => ({\n * validatorBaseUrl: configService.get('SMART_ENGINE_URL'),\n * apiKey: configService.get('SMART_ENGINE_API_KEY'),\n * testConnection: true,\n * }),\n * inject: [ConfigService],\n * }),\n * ],\n * })\n * export class AppModule {}\n * ```\n *\n * @example Using a configuration class\n * ```typescript\n * import { Injectable } from '@nestjs/common';\n * import { SmartEngineModule, SmartEngineOptionsFactory } from '@hsuite/smart-engines-sdk/nestjs';\n *\n * @Injectable()\n * class SmartEngineConfigService implements SmartEngineOptionsFactory {\n * createSmartEngineOptions() {\n * return {\n * validatorBaseUrl: process.env.SMART_ENGINE_URL,\n * apiKey: process.env.SMART_ENGINE_API_KEY,\n * };\n * }\n * }\n *\n * @Module({\n * imports: [\n * SmartEngineModule.forRootAsync({\n * useClass: SmartEngineConfigService,\n * }),\n * ],\n * })\n * export class AppModule {}\n * ```\n */\n@Module({})\nexport class SmartEngineModule {\n /**\n * Configure the module with static configuration.\n *\n * @param config - SmartEngine service configuration.\n * @param isGlobal - Whether to make the module global. @defaultValue true\n * @returns A `DynamicModule` exporting {@link SmartEngineService} plus the\n * BaaS / rules / entities clients.\n */\n static forRoot(config: SmartEngineServiceConfig, isGlobal = true): DynamicModule {\n return {\n module: SmartEngineModule,\n global: isGlobal,\n providers: [\n {\n provide: SMART_ENGINE_CONFIG,\n useValue: config,\n },\n SmartEngineService,\n ...this.createBaasProviders(),\n ],\n exports: [\n SmartEngineService,\n SDK_BAAS_CLIENT,\n RULES_CLIENT,\n ENTITIES_CLIENT,\n ],\n };\n }\n\n /**\n * Configure the module with async configuration.\n *\n * Supports factory functions, configuration classes, and existing providers.\n *\n * @param options - Async configuration options.\n * @returns A `DynamicModule` exporting {@link SmartEngineService} plus the\n * BaaS / rules / entities clients.\n * @throws Error if `options` provides none of `useFactory`, `useClass`, or\n * `useExisting`.\n */\n static forRootAsync(options: SmartEngineModuleAsyncOptions): DynamicModule {\n const asyncProviders = this.createAsyncProviders(options);\n\n return {\n module: SmartEngineModule,\n global: options.isGlobal ?? true,\n imports: options.imports || [],\n providers: [\n ...asyncProviders,\n SmartEngineService,\n ...this.createBaasProviders(),\n ],\n exports: [\n SmartEngineService,\n SDK_BAAS_CLIENT,\n RULES_CLIENT,\n ENTITIES_CLIENT,\n ],\n };\n }\n\n /**\n * Build the BaaS SDK providers — the full `BaasClient` and its `rules` /\n * `entities` sub-clients — all bound to dedicated injection tokens. Wired\n * into both `forRoot` and `forRootAsync` so consumers can\n * `@Inject(RULES_CLIENT) rules: RulesClient` directly.\n */\n private static createBaasProviders(): Provider[] {\n return [\n {\n provide: SDK_BAAS_CLIENT,\n useFactory: (config: SmartEngineServiceConfig) =>\n new SdkBaasClient({\n // SDK 4.0: the service config carries a single origin field\n // (`validatorBaseUrl`); the BaaS client uses it as its `hostUrl`,\n // preserving the prior single-URL wiring.\n hostUrl: config.validatorBaseUrl,\n timeout: config.timeout,\n allowInsecure: config.allowInsecure,\n }),\n inject: [SMART_ENGINE_CONFIG],\n },\n {\n provide: RULES_CLIENT,\n useFactory: (baas: SdkBaasClient) => baas.rules,\n inject: [SDK_BAAS_CLIENT],\n },\n {\n provide: ENTITIES_CLIENT,\n useFactory: (baas: SdkBaasClient) => baas.entities,\n inject: [SDK_BAAS_CLIENT],\n },\n ];\n }\n\n /**\n * Create async providers based on configuration options\n */\n private static createAsyncProviders(options: SmartEngineModuleAsyncOptions): Provider[] {\n if (options.useFactory) {\n return [\n {\n provide: SMART_ENGINE_CONFIG,\n useFactory: options.useFactory,\n inject: options.inject || [],\n },\n ];\n }\n\n if (options.useClass) {\n return [\n {\n provide: options.useClass,\n useClass: options.useClass,\n },\n {\n provide: SMART_ENGINE_CONFIG,\n useFactory: async (optionsFactory: SmartEngineOptionsFactory) =>\n optionsFactory.createSmartEngineOptions(),\n inject: [options.useClass],\n },\n ];\n }\n\n if (options.useExisting) {\n return [\n {\n provide: SMART_ENGINE_CONFIG,\n useFactory: async (optionsFactory: SmartEngineOptionsFactory) =>\n optionsFactory.createSmartEngineOptions(),\n inject: [options.useExisting],\n },\n ];\n }\n\n throw new Error(\n 'Invalid SmartEngineModuleAsyncOptions: must provide useFactory, useClass, or useExisting'\n );\n }\n}\n"]}