@id-wispera/core 0.1.0

package/dist/types.d.ts

@@ -0,0 +1,396 @@
+/**
+ * ID Wispera Core Types
+ * The passport/visa model for AI agent credential governance
+ */
+/**
+ * Visa types define the category of authorization a credential provides
+ */
+export type VisaType = 'access' | 'privilege' | 'data' | 'compliance' | 'ecosystem' | 'custom';
+/**
+ * Human-readable descriptions for visa types
+ */
+export declare const VISA_TYPE_DESCRIPTIONS: Record<VisaType, string>;
+/**
+ * Types of credentials the system recognizes
+ */
+export type CredentialType = 'api-key' | 'oauth-token' | 'secret' | 'certificate' | 'mcp-credential' | 'jwt' | 'connection-string' | 'private-key' | 'session-keys' | 'bot-token' | 'custom';
+/**
+ * Patterns and metadata for credential types
+ */
+export interface CredentialTypeInfo {
+    type: CredentialType;
+    name: string;
+    description: string;
+    patterns?: RegExp[];
+    redactPattern?: RegExp;
+}
+/**
+ * Supported platforms where credentials can be used
+ */
+export type Platform = 'mcp' | 'openai' | 'anthropic' | 'google-a2a' | 'langchain' | 'azure-ai' | 'aws' | 'crewai' | 'openclaw' | 'github' | 'slack' | 'custom';
+/**
+ * Platform metadata
+ */
+export declare const PLATFORM_INFO: Record<Platform, {
+    name: string;
+    description: string;
+}>;
+/**
+ * Status of a passport in its lifecycle
+ */
+export type PassportStatus = 'active' | 'expiring' | 'expired' | 'revoked' | 'suspended';
+/**
+ * Number of days before expiry to mark as "expiring"
+ */
+export declare const EXPIRING_THRESHOLD_DAYS = 14;
+/**
+ * A single hop in the delegation chain
+ * Tracks how credentials flow from humans to agents and between agents
+ */
+export interface DelegationHop {
+    /** Entity name or ID that granted the delegation */
+    from: string;
+    /** Entity name or ID that received the delegation */
+    to: string;
+    /** When the delegation was granted (ISO 8601 datetime) */
+    grantedAt: string;
+    /** What scopes/permissions were delegated */
+    scope?: string[];
+    /** When this delegation expires (ISO 8601 datetime) */
+    expiresAt?: string;
+    /** Optional notes about the delegation */
+    notes?: string;
+}
+/**
+ * The core Passport interface
+ * A passport wraps a credential with identity, authorization, and lifecycle management
+ */
+export interface Passport {
+    /** Unique identifier (UUID v4) */
+    id: string;
+    /** Schema version for forward compatibility */
+    version: number;
+    /** Human-readable name (e.g., "Salesforce Data Agent") */
+    name: string;
+    /** Optional machine identifier for the agent */
+    agentId?: string;
+    /** Type of credential this passport contains */
+    credentialType: CredentialType;
+    /** The actual credential value (encrypted at rest in vault) */
+    credentialValue: string;
+    /** Category of authorization */
+    visaType: VisaType;
+    /** Who issued this credential (e.g., "Okta", "Manual", "CyberArk") */
+    issuingAuthority: string;
+    /** What operations are permitted */
+    scope: string[];
+    /** Which platforms this credential is valid for */
+    platforms: Platform[];
+    /** Current status */
+    status: PassportStatus;
+    /** When the passport was issued (ISO 8601) */
+    issuedAt: string;
+    /** When the credential becomes valid (ISO 8601) */
+    validFrom: string;
+    /** When the credential expires (ISO 8601, undefined = no expiry) */
+    validUntil?: string;
+    /** When revoked (ISO 8601) */
+    revokedAt?: string;
+    /** Who revoked it */
+    revokedBy?: string;
+    /** Why it was revoked */
+    revokedReason?: string;
+    /** Chain of delegation from original issuer to current holder */
+    delegationChain?: DelegationHop[];
+    /** The human ultimately accountable for this credential */
+    humanOwner: string;
+    /** Tags for organization and filtering */
+    tags: string[];
+    /** Free-form notes */
+    notes?: string;
+    /** When this passport record was created (ISO 8601) */
+    createdAt: string;
+    /** When this passport record was last updated (ISO 8601) */
+    updatedAt: string;
+}
+/**
+ * Current passport schema version
+ */
+export declare const PASSPORT_SCHEMA_VERSION = 1;
+/**
+ * Input for creating a new passport
+ */
+export interface CreatePassportInput {
+    name: string;
+    agentId?: string;
+    credentialType: CredentialType;
+    credentialValue: string;
+    visaType: VisaType;
+    issuingAuthority?: string;
+    scope: string[];
+    platforms: Platform[];
+    validFrom?: string;
+    validUntil?: string;
+    delegationChain?: DelegationHop[];
+    humanOwner: string;
+    tags?: string[];
+    notes?: string;
+}
+/**
+ * Filters for listing passports
+ */
+export interface PassportFilters {
+    status?: PassportStatus | PassportStatus[];
+    visaType?: VisaType | VisaType[];
+    platform?: Platform | Platform[];
+    credentialType?: CredentialType | CredentialType[];
+    humanOwner?: string;
+    tags?: string[];
+    search?: string;
+    isExpiring?: boolean;
+}
+/**
+ * Actions that can be logged in the audit trail
+ */
+export type AuditAction = 'created' | 'viewed' | 'shared' | 'modified' | 'revoked' | 'renewed' | 'accessed' | 'policy-checked' | 'detected' | 'exported' | 'imported';
+/**
+ * A single audit log entry
+ */
+export interface AuditEntry {
+    /** Unique identifier for this entry */
+    id: string;
+    /** The passport this action relates to */
+    passportId: string;
+    /** What action was performed */
+    action: AuditAction;
+    /** Who performed the action (human or agent ID) */
+    actor: string;
+    /** When the action occurred (ISO 8601) */
+    timestamp: string;
+    /** Which platform the action occurred on */
+    platform?: Platform;
+    /** Human-readable description of the action */
+    details?: string;
+    /** Additional structured metadata */
+    metadata?: Record<string, unknown>;
+}
+/**
+ * Filters for querying audit logs
+ */
+export interface AuditFilters {
+    passportId?: string;
+    action?: AuditAction | AuditAction[];
+    actor?: string;
+    platform?: Platform;
+    startDate?: string;
+    endDate?: string;
+    limit?: number;
+    offset?: number;
+}
+/**
+ * Effect of a policy rule
+ */
+export type PolicyEffect = 'allow' | 'deny' | 'require-approval';
+/**
+ * Conditions for policy evaluation
+ */
+export interface PolicyCondition {
+    /** Only apply to these visa types */
+    visaTypes?: VisaType[];
+    /** Only apply to these platforms */
+    platforms?: Platform[];
+    /** Only apply to these scopes */
+    scopes?: string[];
+    /** Maximum allowed delegation depth */
+    maxDelegationDepth?: number;
+    /** Require a human owner to be set */
+    requireHumanOwner?: boolean;
+    /** Maximum validity period in days */
+    maxValidityDays?: number;
+    /** Only apply to these credential types */
+    credentialTypes?: CredentialType[];
+    /** Only apply to passports with these tags */
+    tags?: string[];
+    /** Custom condition function (for advanced use) */
+    custom?: (passport: Passport) => boolean;
+}
+/**
+ * A policy rule for credential governance
+ */
+export interface PolicyRule {
+    /** Unique identifier for this rule */
+    id: string;
+    /** Human-readable name */
+    name: string;
+    /** Description of what this rule enforces */
+    description: string;
+    /** Conditions that trigger this rule */
+    condition: PolicyCondition;
+    /** What happens when conditions are met */
+    effect: PolicyEffect;
+    /** Priority (higher = evaluated first) */
+    priority?: number;
+    /** Whether this rule is enabled */
+    enabled?: boolean;
+}
+/**
+ * Result of policy evaluation
+ */
+export interface PolicyDecision {
+    /** Whether the action is allowed */
+    allowed: boolean;
+    /** The effect that was applied */
+    effect: PolicyEffect;
+    /** Which rules matched */
+    matchedRules: PolicyRule[];
+    /** Human-readable explanation */
+    reason: string;
+}
+/**
+ * Result of validating a passport against rules
+ */
+export interface ValidationResult {
+    /** The rule that was violated */
+    rule: PolicyRule;
+    /** Description of the violation */
+    violation: string;
+    /** Severity: warning or error */
+    severity: 'warning' | 'error';
+}
+/**
+ * Scope of what is shared
+ */
+export type ShareScope = 'full' | 'metadata-only' | 'read-only';
+/**
+ * Options for creating a share link
+ */
+export interface ShareOptions {
+    /** What level of access to grant */
+    scope: ShareScope;
+    /** When the share expires (ISO 8601) */
+    expiresAt?: string;
+    /** Maximum number of times the share can be viewed */
+    maxViews?: number;
+    /** Require verification before viewing */
+    requireVerification?: boolean;
+    /** Who this is shared with (for audit) */
+    recipient?: string;
+}
+/**
+ * Encrypted share payload
+ */
+export interface SharePayload {
+    /** Version of the share format */
+    version: number;
+    /** Encrypted passport data */
+    encrypted: string;
+    /** Share options (not encrypted) */
+    options: ShareOptions;
+    /** When created (ISO 8601) */
+    createdAt: string;
+    /** ID of the original passport */
+    passportId: string;
+    /** Number of times viewed */
+    viewCount?: number;
+}
+/**
+ * Result of detecting a credential in text
+ */
+export interface DetectionResult {
+    /** Type of credential detected */
+    type: CredentialType;
+    /** The detected value (may be partial/masked) */
+    value: string;
+    /** Start position in the original text */
+    startIndex: number;
+    /** End position in the original text */
+    endIndex: number;
+    /** Confidence score (0-1) */
+    confidence: number;
+    /** Line number (1-indexed) */
+    line?: number;
+    /** Column number (1-indexed) */
+    column?: number;
+    /** The pattern that matched */
+    pattern?: string;
+    /** Context around the match */
+    context?: string;
+}
+/**
+ * Vault configuration
+ */
+export interface VaultConfig {
+    /** Path to vault storage (file system) */
+    storagePath?: string;
+    /** Storage backend type */
+    storageType: 'filesystem' | 'memory' | 'chrome-storage' | 'custom';
+    /** Key derivation iterations (for PBKDF2 fallback) */
+    keyDerivationIterations?: number;
+}
+/**
+ * Vault state (not persisted)
+ */
+export interface VaultState {
+    /** Whether the vault is unlocked */
+    isUnlocked: boolean;
+    /** Path to the vault */
+    path: string;
+    /** Number of passports in vault */
+    passportCount: number;
+    /** When the vault was created */
+    createdAt: string;
+    /** When the vault was last accessed */
+    lastAccessedAt: string;
+}
+/**
+ * Encrypted vault data structure (persisted)
+ */
+export interface VaultData {
+    /** Vault format version */
+    version: number;
+    /** Salt for key derivation */
+    salt: string;
+    /** IV for encryption */
+    iv: string;
+    /** Encrypted passports */
+    encryptedPassports: string;
+    /** Encrypted audit log */
+    encryptedAuditLog: string;
+    /** Vault metadata (not encrypted) */
+    metadata: {
+        createdAt: string;
+        updatedAt: string;
+        passportCount: number;
+    };
+}
+/**
+ * Current vault data version
+ */
+export declare const VAULT_DATA_VERSION = 2;
+/**
+ * Base error class for ID Wispera
+ */
+export declare class WisperaError extends Error {
+    code: string;
+    details?: Record<string, unknown> | undefined;
+    constructor(message: string, code: string, details?: Record<string, unknown> | undefined);
+}
+/**
+ * Vault-specific errors
+ */
+export declare class VaultError extends WisperaError {
+    constructor(message: string, code: string, details?: Record<string, unknown>);
+}
+/**
+ * Passport-specific errors
+ */
+export declare class PassportError extends WisperaError {
+    constructor(message: string, code: string, details?: Record<string, unknown>);
+}
+/**
+ * Policy-specific errors
+ */
+export declare class PolicyError extends WisperaError {
+    constructor(message: string, code: string, details?: Record<string, unknown>);
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAMH;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,QAAQ,GAAG,WAAW,GAAG,MAAM,GAAG,YAAY,GAAG,WAAW,GAAG,QAAQ,CAAC;AAE/F;;GAEG;AACH,eAAO,MAAM,sBAAsB,EAAE,MAAM,CAAC,QAAQ,EAAE,MAAM,CAO3D,CAAC;AAMF;;GAEG;AACH,MAAM,MAAM,cAAc,GACtB,SAAS,GACT,aAAa,GACb,QAAQ,GACR,aAAa,GACb,gBAAgB,GAChB,KAAK,GACL,mBAAmB,GACnB,aAAa,GACb,cAAc,GACd,WAAW,GACX,QAAQ,CAAC;AAEb;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,IAAI,EAAE,cAAc,CAAC;IACrB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAMD;;GAEG;AACH,MAAM,MAAM,QAAQ,GAChB,KAAK,GACL,QAAQ,GACR,WAAW,GACX,YAAY,GACZ,WAAW,GACX,UAAU,GACV,KAAK,GACL,QAAQ,GACR,UAAU,GACV,QAAQ,GACR,OAAO,GACP,QAAQ,CAAC;AAEb;;GAEG;AACH,eAAO,MAAM,aAAa,EAAE,MAAM,CAAC,QAAQ,EAAE;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,WAAW,EAAE,MAAM,CAAA;CAAE,CAajF,CAAC;AAMF;;GAEG;AACH,MAAM,MAAM,cAAc,GAAG,QAAQ,GAAG,UAAU,GAAG,SAAS,GAAG,SAAS,GAAG,WAAW,CAAC;AAEzF;;GAEG;AACH,eAAO,MAAM,uBAAuB,KAAK,CAAC;AAM1C;;;GAGG;AACH,MAAM,WAAW,aAAa;IAC5B,oDAAoD;IACpD,IAAI,EAAE,MAAM,CAAC;IACb,qDAAqD;IACrD,EAAE,EAAE,MAAM,CAAC;IACX,0DAA0D;IAC1D,SAAS,EAAE,MAAM,CAAC;IAClB,6CAA6C;IAC7C,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IACjB,uDAAuD;IACvD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,0CAA0C;IAC1C,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAMD;;;GAGG;AACH,MAAM,WAAW,QAAQ;IACvB,kCAAkC;IAClC,EAAE,EAAE,MAAM,CAAC;IACX,+CAA+C;IAC/C,OAAO,EAAE,MAAM,CAAC;IAGhB,0DAA0D;IAC1D,IAAI,EAAE,MAAM,CAAC;IACb,gDAAgD;IAChD,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,gDAAgD;IAChD,cAAc,EAAE,cAAc,CAAC;IAC/B,+DAA+D;IAC/D,eAAe,EAAE,MAAM,CAAC;IAGxB,gCAAgC;IAChC,QAAQ,EAAE,QAAQ,CAAC;IACnB,sEAAsE;IACtE,gBAAgB,EAAE,MAAM,CAAC;IACzB,oCAAoC;IACpC,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,mDAAmD;IACnD,SAAS,EAAE,QAAQ,EAAE,CAAC;IAGtB,qBAAqB;IACrB,MAAM,EAAE,cAAc,CAAC;IACvB,8CAA8C;IAC9C,QAAQ,EAAE,MAAM,CAAC;IACjB,mDAAmD;IACnD,SAAS,EAAE,MAAM,CAAC;IAClB,oEAAoE;IACpE,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,8BAA8B;IAC9B,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,qBAAqB;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,yBAAyB;IACzB,aAAa,CAAC,EAAE,MAAM,CAAC;IAGvB,iEAAiE;IACjE,eAAe,CAAC,EAAE,aAAa,EAAE,CAAC;IAClC,2DAA2D;IAC3D,UAAU,EAAE,MAAM,CAAC;IAGnB,0CAA0C;IAC1C,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,sBAAsB;IACtB,KAAK,CAAC,EAAE,MAAM,CAAC;IAGf,uDAAuD;IACvD,SAAS,EAAE,MAAM,CAAC;IAClB,4DAA4D;IAC5D,SAAS,EAAE,MAAM,CAAC;CACnB;AAED;;GAEG;AACH,eAAO,MAAM,uBAAuB,IAAI,CAAC;AAMzC;;GAEG;AACH,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,MAAM,CAAC;IACb,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,cAAc,EAAE,cAAc,CAAC;IAC/B,eAAe,EAAE,MAAM,CAAC;IACxB,QAAQ,EAAE,QAAQ,CAAC;IACnB,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,SAAS,EAAE,QAAQ,EAAE,CAAC;IACtB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,eAAe,CAAC,EAAE,aAAa,EAAE,CAAC;IAClC,UAAU,EAAE,MAAM,CAAC;IACnB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,KAAK,CAAC,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,MAAM,CAAC,EAAE,cAAc,GAAG,cAAc,EAAE,CAAC;IAC3C,QAAQ,CAAC,EAAE,QAAQ,GAAG,QAAQ,EAAE,CAAC;IACjC,QAAQ,CAAC,EAAE,QAAQ,GAAG,QAAQ,EAAE,CAAC;IACjC,cAAc,CAAC,EAAE,cAAc,GAAG,cAAc,EAAE,CAAC;IACnD,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,UAAU,CAAC,EAAE,OAAO,CAAC;CACtB;AAMD;;GAEG;AACH,MAAM,MAAM,WAAW,GACnB,SAAS,GACT,QAAQ,GACR,QAAQ,GACR,UAAU,GACV,SAAS,GACT,SAAS,GACT,UAAU,GACV,gBAAgB,GAChB,UAAU,GACV,UAAU,GACV,UAAU,CAAC;AAEf;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,uCAAuC;IACvC,EAAE,EAAE,MAAM,CAAC;IACX,0CAA0C;IAC1C,UAAU,EAAE,MAAM,CAAC;IACnB,gCAAgC;IAChC,MAAM,EAAE,WAAW,CAAC;IACpB,mDAAmD;IACnD,KAAK,EAAE,MAAM,CAAC;IACd,0CAA0C;IAC1C,SAAS,EAAE,MAAM,CAAC;IAClB,4CAA4C;IAC5C,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,+CAA+C;IAC/C,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,qCAAqC;IACrC,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CACpC;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,CAAC,EAAE,WAAW,GAAG,WAAW,EAAE,CAAC;IACrC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,QAAQ,CAAC,EAAE,QAAQ,CAAC;IACpB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC;CACjB;AAMD;;GAEG;AACH,MAAM,MAAM,YAAY,GAAG,OAAO,GAAG,MAAM,GAAG,kBAAkB,CAAC;AAEjE;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,qCAAqC;IACrC,SAAS,CAAC,EAAE,QAAQ,EAAE,CAAC;IACvB,oCAAoC;IACpC,SAAS,CAAC,EAAE,QAAQ,EAAE,CAAC;IACvB,iCAAiC;IACjC,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,uCAAuC;IACvC,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,sCAAsC;IACtC,iBAAiB,CAAC,EAAE,OAAO,CAAC;IAC5B,sCAAsC;IACtC,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,2CAA2C;IAC3C,eAAe,CAAC,EAAE,cAAc,EAAE,CAAC;IACnC,8CAA8C;IAC9C,IAAI,CAAC,EAAE,MAAM,EAAE,CAAC;IAChB,mDAAmD;IACnD,MAAM,CAAC,EAAE,CAAC,QAAQ,EAAE,QAAQ,KAAK,OAAO,CAAC;CAC1C;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,sCAAsC;IACtC,EAAE,EAAE,MAAM,CAAC;IACX,0BAA0B;IAC1B,IAAI,EAAE,MAAM,CAAC;IACb,6CAA6C;IAC7C,WAAW,EAAE,MAAM,CAAC;IACpB,wCAAwC;IACxC,SAAS,EAAE,eAAe,CAAC;IAC3B,2CAA2C;IAC3C,MAAM,EAAE,YAAY,CAAC;IACrB,0CAA0C;IAC1C,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,mCAAmC;IACnC,OAAO,CAAC,EAAE,OAAO,CAAC;CACnB;AAED;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,oCAAoC;IACpC,OAAO,EAAE,OAAO,CAAC;IACjB,kCAAkC;IAClC,MAAM,EAAE,YAAY,CAAC;IACrB,0BAA0B;IAC1B,YAAY,EAAE,UAAU,EAAE,CAAC;IAC3B,iCAAiC;IACjC,MAAM,EAAE,MAAM,CAAC;CAChB;AAED;;GAEG;AACH,MAAM,WAAW,gBAAgB;IAC/B,iCAAiC;IACjC,IAAI,EAAE,UAAU,CAAC;IACjB,mCAAmC;IACnC,SAAS,EAAE,MAAM,CAAC;IAClB,iCAAiC;IACjC,QAAQ,EAAE,SAAS,GAAG,OAAO,CAAC;CAC/B;AAMD;;GAEG;AACH,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,eAAe,GAAG,WAAW,CAAC;AAEhE;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,oCAAoC;IACpC,KAAK,EAAE,UAAU,CAAC;IAClB,wCAAwC;IACxC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,sDAAsD;IACtD,QAAQ,CAAC,EAAE,MAAM,CAAC;IAClB,0CAA0C;IAC1C,mBAAmB,CAAC,EAAE,OAAO,CAAC;IAC9B,0CAA0C;IAC1C,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED;;GAEG;AACH,MAAM,WAAW,YAAY;IAC3B,kCAAkC;IAClC,OAAO,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,oCAAoC;IACpC,OAAO,EAAE,YAAY,CAAC;IACtB,8BAA8B;IAC9B,SAAS,EAAE,MAAM,CAAC;IAClB,kCAAkC;IAClC,UAAU,EAAE,MAAM,CAAC;IACnB,6BAA6B;IAC7B,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAMD;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,kCAAkC;IAClC,IAAI,EAAE,cAAc,CAAC;IACrB,iDAAiD;IACjD,KAAK,EAAE,MAAM,CAAC;IACd,0CAA0C;IAC1C,UAAU,EAAE,MAAM,CAAC;IACnB,wCAAwC;IACxC,QAAQ,EAAE,MAAM,CAAC;IACjB,6BAA6B;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,8BAA8B;IAC9B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,gCAAgC;IAChC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,+BAA+B;IAC/B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,+BAA+B;IAC/B,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAMD;;GAEG;AACH,MAAM,WAAW,WAAW;IAC1B,0CAA0C;IAC1C,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,2BAA2B;IAC3B,WAAW,EAAE,YAAY,GAAG,QAAQ,GAAG,gBAAgB,GAAG,QAAQ,CAAC;IACnE,sDAAsD;IACtD,uBAAuB,CAAC,EAAE,MAAM,CAAC;CAClC;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,oCAAoC;IACpC,UAAU,EAAE,OAAO,CAAC;IACpB,wBAAwB;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,mCAAmC;IACnC,aAAa,EAAE,MAAM,CAAC;IACtB,iCAAiC;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,uCAAuC;IACvC,cAAc,EAAE,MAAM,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,SAAS;IACxB,2BAA2B;IAC3B,OAAO,EAAE,MAAM,CAAC;IAChB,8BAA8B;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,wBAAwB;IACxB,EAAE,EAAE,MAAM,CAAC;IACX,0BAA0B;IAC1B,kBAAkB,EAAE,MAAM,CAAC;IAC3B,0BAA0B;IAC1B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,qCAAqC;IACrC,QAAQ,EAAE;QACR,SAAS,EAAE,MAAM,CAAC;QAClB,SAAS,EAAE,MAAM,CAAC;QAClB,aAAa,EAAE,MAAM,CAAC;KACvB,CAAC;CACH;AAED;;GAEG;AACH,eAAO,MAAM,kBAAkB,IAAI,CAAC;AAMpC;;GAEG;AACH,qBAAa,YAAa,SAAQ,KAAK;IAG5B,IAAI,EAAE,MAAM;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;gBAFxC,OAAO,EAAE,MAAM,EACR,IAAI,EAAE,MAAM,EACZ,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,YAAA;CAK3C;AAED;;GAEG;AACH,qBAAa,UAAW,SAAQ,YAAY;gBAC9B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;CAI7E;AAED;;GAEG;AACH,qBAAa,aAAc,SAAQ,YAAY;gBACjC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;CAI7E;AAED;;GAEG;AACH,qBAAa,WAAY,SAAQ,YAAY;gBAC/B,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC;CAI7E"}

package/dist/types.js

@@ -0,0 +1,88 @@
+/**
+ * ID Wispera Core Types
+ * The passport/visa model for AI agent credential governance
+ */
+/**
+ * Human-readable descriptions for visa types
+ */
+export const VISA_TYPE_DESCRIPTIONS = {
+    access: 'Basic platform access - standard API operations',
+    privilege: 'Elevated permissions - administrative or write operations',
+    data: 'Data access rights - database or storage credentials',
+    compliance: 'Regulatory scope - credentials with compliance requirements',
+    ecosystem: 'Cross-platform - multi-service integration tokens',
+    custom: 'Custom authorization - business-defined access policies',
+};
+/**
+ * Platform metadata
+ */
+export const PLATFORM_INFO = {
+    mcp: { name: 'Model Context Protocol', description: 'MCP-compatible tools and servers' },
+    openai: { name: 'OpenAI', description: 'OpenAI API services' },
+    anthropic: { name: 'Anthropic', description: 'Anthropic Claude API' },
+    'google-a2a': { name: 'Google Agent-to-Agent', description: 'Google A2A protocol' },
+    langchain: { name: 'LangChain', description: 'LangChain framework' },
+    'azure-ai': { name: 'Azure AI', description: 'Microsoft Azure AI services' },
+    aws: { name: 'AWS', description: 'Amazon Web Services' },
+    crewai: { name: 'CrewAI', description: 'CrewAI multi-agent framework' },
+    openclaw: { name: 'OpenClaw', description: 'OpenClaw agent framework' },
+    github: { name: 'GitHub', description: 'GitHub API and services' },
+    slack: { name: 'Slack', description: 'Slack messaging platform' },
+    custom: { name: 'Custom', description: 'Custom platform integration' },
+};
+/**
+ * Number of days before expiry to mark as "expiring"
+ */
+export const EXPIRING_THRESHOLD_DAYS = 14;
+/**
+ * Current passport schema version
+ */
+export const PASSPORT_SCHEMA_VERSION = 1;
+/**
+ * Current vault data version
+ */
+export const VAULT_DATA_VERSION = 2;
+// ============================================================================
+// Errors
+// ============================================================================
+/**
+ * Base error class for ID Wispera
+ */
+export class WisperaError extends Error {
+    code;
+    details;
+    constructor(message, code, details) {
+        super(message);
+        this.code = code;
+        this.details = details;
+        this.name = 'WisperaError';
+    }
+}
+/**
+ * Vault-specific errors
+ */
+export class VaultError extends WisperaError {
+    constructor(message, code, details) {
+        super(message, code, details);
+        this.name = 'VaultError';
+    }
+}
+/**
+ * Passport-specific errors
+ */
+export class PassportError extends WisperaError {
+    constructor(message, code, details) {
+        super(message, code, details);
+        this.name = 'PassportError';
+    }
+}
+/**
+ * Policy-specific errors
+ */
+export class PolicyError extends WisperaError {
+    constructor(message, code, details) {
+        super(message, code, details);
+        this.name = 'PolicyError';
+    }
+}
+//# sourceMappingURL=types.js.map

package/dist/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../src/types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAWH;;GAEG;AACH,MAAM,CAAC,MAAM,sBAAsB,GAA6B;IAC9D,MAAM,EAAE,iDAAiD;IACzD,SAAS,EAAE,2DAA2D;IACtE,IAAI,EAAE,sDAAsD;IAC5D,UAAU,EAAE,6DAA6D;IACzE,SAAS,EAAE,mDAAmD;IAC9D,MAAM,EAAE,yDAAyD;CAClE,CAAC;AAsDF;;GAEG;AACH,MAAM,CAAC,MAAM,aAAa,GAA4D;IACpF,GAAG,EAAE,EAAE,IAAI,EAAE,wBAAwB,EAAE,WAAW,EAAE,kCAAkC,EAAE;IACxF,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,qBAAqB,EAAE;IAC9D,SAAS,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,WAAW,EAAE,sBAAsB,EAAE;IACrE,YAAY,EAAE,EAAE,IAAI,EAAE,uBAAuB,EAAE,WAAW,EAAE,qBAAqB,EAAE;IACnF,SAAS,EAAE,EAAE,IAAI,EAAE,WAAW,EAAE,WAAW,EAAE,qBAAqB,EAAE;IACpE,UAAU,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,WAAW,EAAE,6BAA6B,EAAE;IAC5E,GAAG,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,WAAW,EAAE,qBAAqB,EAAE;IACxD,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,8BAA8B,EAAE;IACvE,QAAQ,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,WAAW,EAAE,0BAA0B,EAAE;IACvE,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,yBAAyB,EAAE;IAClE,KAAK,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,WAAW,EAAE,0BAA0B,EAAE;IACjE,MAAM,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,WAAW,EAAE,6BAA6B,EAAE;CACvE,CAAC;AAWF;;GAEG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,EAAE,CAAC;AA8F1C;;GAEG;AACH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CAAC,CAAC;AA4SzC;;GAEG;AACH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,CAAC;AAEpC,+EAA+E;AAC/E,SAAS;AACT,+EAA+E;AAE/E;;GAEG;AACH,MAAM,OAAO,YAAa,SAAQ,KAAK;IAG5B;IACA;IAHT,YACE,OAAe,EACR,IAAY,EACZ,OAAiC;QAExC,KAAK,CAAC,OAAO,CAAC,CAAC;QAHR,SAAI,GAAJ,IAAI,CAAQ;QACZ,YAAO,GAAP,OAAO,CAA0B;QAGxC,IAAI,CAAC,IAAI,GAAG,cAAc,CAAC;IAC7B,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,UAAW,SAAQ,YAAY;IAC1C,YAAY,OAAe,EAAE,IAAY,EAAE,OAAiC;QAC1E,KAAK,CAAC,OAAO,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QAC9B,IAAI,CAAC,IAAI,GAAG,YAAY,CAAC;IAC3B,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,aAAc,SAAQ,YAAY;IAC7C,YAAY,OAAe,EAAE,IAAY,EAAE,OAAiC;QAC1E,KAAK,CAAC,OAAO,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QAC9B,IAAI,CAAC,IAAI,GAAG,eAAe,CAAC;IAC9B,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,WAAY,SAAQ,YAAY;IAC3C,YAAY,OAAe,EAAE,IAAY,EAAE,OAAiC;QAC1E,KAAK,CAAC,OAAO,EAAE,IAAI,EAAE,OAAO,CAAC,CAAC;QAC9B,IAAI,CAAC,IAAI,GAAG,aAAa,CAAC;IAC5B,CAAC;CACF"}

package/dist/utils.d.ts

@@ -0,0 +1,45 @@
+/**
+ * ID Wispera Shared Utilities
+ * Common helpers used across core modules to eliminate code duplication
+ */
+/** Milliseconds in one day */
+export declare const MS_PER_DAY = 86400000;
+/**
+ * Mask a credential value for safe display
+ * Shows first and last `visibleChars` characters with asterisks in between
+ */
+export declare function maskValue(value: string, visibleChars?: number): string;
+/**
+ * Capitalize the first character of a string
+ */
+export declare function capitalizeFirst(str: string): string;
+/**
+ * Generate a preview of a token (first N chars + ... + last M chars)
+ */
+export declare function previewToken(token: string, prefixLen?: number, suffixLen?: number): string;
+/**
+ * Normalize a value to an array (wraps single values in an array)
+ */
+export declare function toArray<T>(value: T | T[]): T[];
+/**
+ * Extract error message from an unknown error value
+ */
+export declare function getErrorMessage(err: unknown, fallback?: string): string;
+/**
+ * Check if a path exists (async, works in Node.js)
+ */
+export declare function pathExists(path: string): Promise<boolean>;
+/**
+ * Generate cryptographically secure random bytes
+ * Works in both browser (Web Crypto) and Node.js environments
+ */
+export declare function getRandomBytes(length: number): Uint8Array;
+/**
+ * Get the SubtleCrypto instance (works in both browser and Node.js)
+ */
+export declare function getCryptoSubtle(): Promise<SubtleCrypto>;
+/**
+ * Helper to convert Uint8Array to BufferSource for Web Crypto API
+ */
+export declare function toBufferSource(bytes: Uint8Array): BufferSource;
+//# sourceMappingURL=utils.d.ts.map

package/dist/utils.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAMH,8BAA8B;AAC9B,eAAO,MAAM,UAAU,WAAa,CAAC;AAMrC;;;GAGG;AACH,wBAAgB,SAAS,CAAC,KAAK,EAAE,MAAM,EAAE,YAAY,GAAE,MAAU,GAAG,MAAM,CAQzE;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAEnD;AAED;;GAEG;AACH,wBAAgB,YAAY,CAAC,KAAK,EAAE,MAAM,EAAE,SAAS,SAAK,EAAE,SAAS,SAAI,GAAG,MAAM,CAKjF;AAMD;;GAEG;AACH,wBAAgB,OAAO,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,GAAG,CAAC,EAAE,GAAG,CAAC,EAAE,CAE9C;AAMD;;GAEG;AACH,wBAAgB,eAAe,CAAC,GAAG,EAAE,OAAO,EAAE,QAAQ,SAAkB,GAAG,MAAM,CAEhF;AAMD;;GAEG;AACH,wBAAsB,UAAU,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAAC,OAAO,CAAC,CAQ/D;AAMD;;;GAGG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,MAAM,GAAG,UAAU,CAUzD;AAED;;GAEG;AACH,wBAAsB,eAAe,IAAI,OAAO,CAAC,YAAY,CAAC,CAM7D;AAED;;GAEG;AACH,wBAAgB,cAAc,CAAC,KAAK,EAAE,UAAU,GAAG,YAAY,CAE9D"}

package/dist/utils.js

@@ -0,0 +1,110 @@
+/**
+ * ID Wispera Shared Utilities
+ * Common helpers used across core modules to eliminate code duplication
+ */
+// ============================================================================
+// Constants
+// ============================================================================
+/** Milliseconds in one day */
+export const MS_PER_DAY = 86_400_000;
+// ============================================================================
+// String Utilities
+// ============================================================================
+/**
+ * Mask a credential value for safe display
+ * Shows first and last `visibleChars` characters with asterisks in between
+ */
+export function maskValue(value, visibleChars = 4) {
+    if (value.length <= visibleChars * 2) {
+        return '*'.repeat(value.length);
+    }
+    const start = value.substring(0, visibleChars);
+    const end = value.substring(value.length - visibleChars);
+    const middle = '*'.repeat(Math.min(value.length - visibleChars * 2, 20));
+    return `${start}${middle}${end}`;
+}
+/**
+ * Capitalize the first character of a string
+ */
+export function capitalizeFirst(str) {
+    return str.charAt(0).toUpperCase() + str.slice(1);
+}
+/**
+ * Generate a preview of a token (first N chars + ... + last M chars)
+ */
+export function previewToken(token, prefixLen = 10, suffixLen = 4) {
+    if (token.length <= prefixLen + suffixLen + 3) {
+        return maskValue(token);
+    }
+    return `${token.substring(0, prefixLen)}...${token.substring(token.length - suffixLen)}`;
+}
+// ============================================================================
+// Array Utilities
+// ============================================================================
+/**
+ * Normalize a value to an array (wraps single values in an array)
+ */
+export function toArray(value) {
+    return Array.isArray(value) ? value : [value];
+}
+// ============================================================================
+// Error Utilities
+// ============================================================================
+/**
+ * Extract error message from an unknown error value
+ */
+export function getErrorMessage(err, fallback = 'Unknown error') {
+    return err instanceof Error ? err.message : fallback;
+}
+// ============================================================================
+// Filesystem Utilities
+// ============================================================================
+/**
+ * Check if a path exists (async, works in Node.js)
+ */
+export async function pathExists(path) {
+    const fs = await import('fs/promises');
+    try {
+        await fs.access(path);
+        return true;
+    }
+    catch {
+        return false;
+    }
+}
+// ============================================================================
+// Crypto Utilities
+// ============================================================================
+/**
+ * Generate cryptographically secure random bytes
+ * Works in both browser (Web Crypto) and Node.js environments
+ */
+export function getRandomBytes(length) {
+    const bytes = new Uint8Array(length);
+    if (typeof globalThis.crypto !== 'undefined' && globalThis.crypto.getRandomValues) {
+        globalThis.crypto.getRandomValues(bytes);
+    }
+    else {
+        const { randomBytes } = require('crypto');
+        const nodeBytes = randomBytes(length);
+        bytes.set(nodeBytes);
+    }
+    return bytes;
+}
+/**
+ * Get the SubtleCrypto instance (works in both browser and Node.js)
+ */
+export async function getCryptoSubtle() {
+    if (globalThis.crypto?.subtle) {
+        return globalThis.crypto.subtle;
+    }
+    const nodeCrypto = await import('crypto');
+    return nodeCrypto.webcrypto.subtle;
+}
+/**
+ * Helper to convert Uint8Array to BufferSource for Web Crypto API
+ */
+export function toBufferSource(bytes) {
+    return bytes;
+}
+//# sourceMappingURL=utils.js.map

package/dist/utils.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"utils.js","sourceRoot":"","sources":["../src/utils.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,+EAA+E;AAC/E,YAAY;AACZ,+EAA+E;AAE/E,8BAA8B;AAC9B,MAAM,CAAC,MAAM,UAAU,GAAG,UAAU,CAAC;AAErC,+EAA+E;AAC/E,mBAAmB;AACnB,+EAA+E;AAE/E;;;GAGG;AACH,MAAM,UAAU,SAAS,CAAC,KAAa,EAAE,eAAuB,CAAC;IAC/D,IAAI,KAAK,CAAC,MAAM,IAAI,YAAY,GAAG,CAAC,EAAE,CAAC;QACrC,OAAO,GAAG,CAAC,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;IAClC,CAAC;IACD,MAAM,KAAK,GAAG,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,YAAY,CAAC,CAAC;IAC/C,MAAM,GAAG,GAAG,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,MAAM,GAAG,YAAY,CAAC,CAAC;IACzD,MAAM,MAAM,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,GAAG,YAAY,GAAG,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;IACzE,OAAO,GAAG,KAAK,GAAG,MAAM,GAAG,GAAG,EAAE,CAAC;AACnC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,GAAW;IACzC,OAAO,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,WAAW,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;AACpD,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,YAAY,CAAC,KAAa,EAAE,SAAS,GAAG,EAAE,EAAE,SAAS,GAAG,CAAC;IACvE,IAAI,KAAK,CAAC,MAAM,IAAI,SAAS,GAAG,SAAS,GAAG,CAAC,EAAE,CAAC;QAC9C,OAAO,SAAS,CAAC,KAAK,CAAC,CAAC;IAC1B,CAAC;IACD,OAAO,GAAG,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,SAAS,CAAC,MAAM,KAAK,CAAC,SAAS,CAAC,KAAK,CAAC,MAAM,GAAG,SAAS,CAAC,EAAE,CAAC;AAC3F,CAAC;AAED,+EAA+E;AAC/E,kBAAkB;AAClB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,OAAO,CAAI,KAAc;IACvC,OAAO,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC;AAChD,CAAC;AAED,+EAA+E;AAC/E,kBAAkB;AAClB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,GAAY,EAAE,QAAQ,GAAG,eAAe;IACtE,OAAO,GAAG,YAAY,KAAK,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,QAAQ,CAAC;AACvD,CAAC;AAED,+EAA+E;AAC/E,uBAAuB;AACvB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,UAAU,CAAC,IAAY;IAC3C,MAAM,EAAE,GAAG,MAAM,MAAM,CAAC,aAAa,CAAC,CAAC;IACvC,IAAI,CAAC;QACH,MAAM,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;QACtB,OAAO,IAAI,CAAC;IACd,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,+EAA+E;AAC/E,mBAAmB;AACnB,+EAA+E;AAE/E;;;GAGG;AACH,MAAM,UAAU,cAAc,CAAC,MAAc;IAC3C,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,OAAO,UAAU,CAAC,MAAM,KAAK,WAAW,IAAI,UAAU,CAAC,MAAM,CAAC,eAAe,EAAE,CAAC;QAClF,UAAU,CAAC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;IAC3C,CAAC;SAAM,CAAC;QACN,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC;QAC1C,MAAM,SAAS,GAAG,WAAW,CAAC,MAAM,CAAC,CAAC;QACtC,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IACvB,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe;IACnC,IAAI,UAAU,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC;QAC9B,OAAO,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC;IAClC,CAAC;IACD,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC;IAC1C,OAAQ,UAAkB,CAAC,SAAS,CAAC,MAAM,CAAC;AAC9C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,KAAiB;IAC9C,OAAO,KAAgC,CAAC;AAC1C,CAAC"}