@jmruthers/pace-core 0.2.4

package/dist/utils.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../src/utils/index.ts","../src/utils/validation.ts","../src/utils/validationUtils.ts","../src/utils/sanitization.ts","../src/utils/security.ts","../src/constants/performance.ts","../src/utils/performanceBenchmark.ts","../src/utils/bundleAnalysis.ts","../src/utils/dynamicUtils.ts","../src/utils/lazyLoad.tsx","../src/utils/permissionUtils.ts","../src/utils/permissionTypes.ts","../src/utils/schemaUtils.ts","../src/utils/securityMonitor.ts","../src/utils/sessionTracking.ts","../src/utils/audit.ts","../src/utils/deviceFingerprint.ts","../src/utils/formatting.ts"],"sourcesContent":["/**\n * @file Utility functions exports\n * @package @jmruthers/pace-core\n * @module Utils\n * @since 0.1.0\n */\n\n// Core utilities\nexport { cn } from './cn';\nexport { DebugLogger } from './debugLogger';\n\n// App configuration utilities\nexport * from './appNameResolver';\nexport * from './appConfig';\n\n// Validation and sanitization\nexport * from './validation';\nexport * from './validationUtils';\nexport * from './sanitization';\n\n// Security utilities\nexport { \n  getSecurityHeaders, \n  validateSecurityHeaders\n} from './security';\n\n// Note: Accessibility testing utilities are only available in test environments\n// They are not exported in production builds to avoid including test dependencies\n\n// Performance utilities\nexport { useComponentPerformance } from '../hooks/useComponentPerformance';\nexport { PERFORMANCE_THRESHOLDS } from '../constants/performance';\nexport { createPerformanceBenchmark, measureRenderPerformance } from './performanceBenchmark';\nexport type { PerformanceMetrics } from './performanceBenchmark';\n\n// Bundle analysis utilities\nexport { \n  bundleAnalyzer, \n  validateImportPattern, \n  trackDynamicImport \n} from './bundleAnalysis';\n\n// Dynamic utility loaders\nexport { \n  loadLodash, \n  loadDateUtils, \n  loadChartUtils,\n  loadFormUtils,\n  loadCSVUtils,\n  createLazyUtility,\n  lazyLodash,\n  lazyDateUtils,\n  lazyChartUtils,\n  lazyFormUtils,\n  lazyCSVUtils\n} from './dynamicUtils';\n\n// Performance budget utilities\nexport { \n  performanceBudgetMonitor, \n  PERFORMANCE_BUDGETS \n} from './performanceBudgets';\n\n// Lazy loading utilities\nexport { createLazyComponent, LazyDataTable } from './lazyLoad';\n\n// App configuration utilities\nexport { \n  setAppConfig, \n  getAppConfig, \n  getCurrentAppName, \n  getCurrentAppId \n} from './appConfig';\nexport type { AppConfig } from './appConfig';\n\n// Permission utilities\nexport { \n  transformPermissionMapToBoolean, \n  hasPermission, \n  hasAnyPermission, \n  hasAllPermissions \n} from './permissionUtils';\n\n// Permission types\nexport { \n  PermissionType, \n  parsePermission \n} from './permissionTypes';\n\n// Schema utilities\nexport { \n  pickSchema, \n  combineSchemas \n} from './schemaUtils';\n\n// Security monitoring utilities\nexport { \n  securityMonitor \n} from './securityMonitor';\nexport type { SecureDataAccess } from './secureDataAccess';\n\n// Session tracking utilities\nexport { \n  useSessionTracking \n} from './sessionTracking';\n\n// Audit utilities\nexport { \n  auditLogger, \n  auditLog,\n  logAuthEvent,\n  logPermissionEvent,\n  logSecurityEvent,\n  logAuditEvent\n} from './audit';\n\n// Device fingerprinting utilities\nexport { \n  generateDeviceFingerprint, \n  validateDeviceFingerprint \n} from './deviceFingerprint';\n\n\n// Formatting utilities\nexport { \n  formatDate, \n  formatCurrency, \n  formatNumber,\n  formatPercent,\n  formatCompactNumber,\n  formatFileSize\n} from './formatting';\n\n// Organisation context utilities\nexport { \n  setOrganisationContext, \n  clearOrganisationContext, \n  getOrganisationContext, \n  isOrganisationContextAvailable \n} from './organisationContext';\n\n// Re-export types for convenience\nexport type { \n  SecurityEvent\n} from './security';\n","/**\n * @file Internal utilities for validation module\n * @internal This file contains implementation details that should not be used directly\n */\n\n/**\n * Utility functions for validating data in the application\n */\n\n/**\n * Check if a string is a valid email\n */\nexport function isValidEmail(email: string): boolean {\n  const emailPattern = /^[^\\s@]+@[^\\s@]+\\.[^\\s@]+$/;\n  return emailPattern.test(email);\n}\n\n/**\n * Check if a string is empty (either null, undefined, or just whitespace)\n */\nexport function isEmpty(value: string | null | undefined): boolean {\n  return value === null || value === undefined || value.trim() === '';\n}\n\n/**\n * Check if a password meets minimum requirements\n */\nexport function isStrongPassword(password: string): boolean {\n  // Minimum 8 characters, at least one uppercase, one lowercase, one number\n  const passwordPattern = /^(?=.*[a-z])(?=.*[A-Z])(?=.*\\d).{8,}$/;\n  return passwordPattern.test(password);\n}\n\n/**\n * Check if a URL is valid\n */\nexport function isValidUrl(url: string): boolean {\n  try {\n    new URL(url);\n    return true;\n  } catch {\n    return false;\n  }\n}\n\n/**\n * Check if a date string is valid\n */\nexport function isValidDate(dateStr: string): boolean {\n  const date = new Date(dateStr);\n  return !isNaN(date.getTime());\n}\n\n/**\n * Check if a value is within a range\n */\nexport function isWithinRange(value: number, min: number, max: number): boolean {\n  return value >= min && value <= max;\n}\n\n/**\n * Check if a value matches a specific pattern\n */\nexport function matchesPattern(value: string, pattern: RegExp): boolean {\n  return pattern.test(value);\n}\n\n/**\n * Utility function to deep merge objects for schema combination\n * @internal\n */\nexport function deepMerge<T extends Record<string, unknown>>(\n  target: T, \n  source: Record<string, unknown>\n): T {\n  const output = { ...target };\n  \n  if (isObject(target) && isObject(source)) {\n    Object.keys(source).forEach(key => {\n      if (isObject(source[key])) {\n        if (!(key in target)) {\n          Object.assign(output, { [key]: source[key] });\n        } else {\n          // Use a type assertion to safely handle the indexing\n          const targetKey = key as keyof typeof target;\n          const targetValue = target[targetKey];\n          \n          if (isObject(targetValue)) {\n            // Safe cast using type assertion\n            output[targetKey] = deepMerge(\n              targetValue as Record<string, unknown>,\n              source[key] as Record<string, unknown>\n            ) as unknown as T[keyof T];\n          }\n        }\n      } else {\n        Object.assign(output, { [key]: source[key] });\n      }\n    });\n  }\n  \n  return output as T;\n}\n\n/**\n * Type guard to check if a value is a plain object\n * @internal\n */\nexport function isObject(item: unknown): item is Record<string, unknown> {\n  return item !== null && typeof item === 'object' && !Array.isArray(item);\n}\n","\n/**\n * @file Validation utilities\n * \n * Shared validation utilities with enhanced security\n */\n\nimport { z } from 'zod';\nimport { sanitizeUserInput, sanitizeFormData, type SanitizationOptions } from './sanitization';\n\n/**\n * Validates user input against a schema with automatic sanitization\n */\nexport function validateUserInput<T>(\n  schema: z.ZodSchema<T>, \n  data: unknown,\n  sanitizationRules?: Record<string, SanitizationOptions>\n): { success: boolean; data?: T; error?: string } {\n  return sanitizeFormData(data, schema, sanitizationRules);\n}\n\n/**\n * Sanitizes user input by removing potentially dangerous characters\n * @deprecated Use sanitizeUserInput from lib/sanitization instead\n */\nexport function sanitizeUserInput_deprecated(input: string): string {\n  // Log deprecation warning\n  console.warn('sanitizeUserInput is deprecated. Use sanitizeUserInput from lib/sanitization instead.');\n  return sanitizeUserInput(input);\n}\n\n/**\n * Enhanced email validation with sanitization\n */\nexport const emailSchema = z.string()\n  .transform(email => email.toLowerCase().trim())\n  .pipe(z.string().min(1, 'Email is required').email('Invalid email format').max(254, 'Email too long'));\n\n/**\n * Enhanced password validation\n */\nexport const passwordSchema = z.string()\n  .min(8, 'Password must be at least 8 characters')\n  .max(128, 'Password too long')\n  .regex(/[A-Z]/, 'Password must contain at least one uppercase letter')\n  .regex(/[a-z]/, 'Password must contain at least one lowercase letter')\n  .regex(/[0-9]/, 'Password must contain at least one number')\n  .regex(/[^A-Za-z0-9]/, 'Password must contain at least one special character');\n\n/**\n * Username validation with sanitization\n */\nexport const usernameSchema = z.string()\n  .transform(username => username.toLowerCase().trim())\n  .pipe(z.string().min(3, 'Username must be at least 3 characters').max(30, 'Username too long').regex(/^[a-zA-Z0-9_-]+$/, 'Username can only contain letters, numbers, hyphens, and underscores'));\n\n/**\n * Name validation with sanitization\n */\nexport const nameSchema = z.string()\n  .min(1, 'Name is required')\n  .max(100, 'Name too long')\n  .refine(name => {\n    // Check for XSS attempts and other invalid patterns\n    const dangerousPatterns = [\n      /<script/i,\n      /<img/i,\n      /on\\w+\\s*=/i,\n      /javascript:/i,\n      /data:/i,\n      /vbscript:/i\n    ];\n    \n    return !dangerousPatterns.some(pattern => pattern.test(name));\n  }, 'Name contains invalid characters')\n  .transform(name => sanitizeUserInput(name, { \n    allowHtml: false, \n    maxLength: 100, \n    trim: true \n  }));\n\n/**\n * Phone number validation with sanitization\n */\nexport const phoneSchema = z.string()\n  .min(10, 'Phone number must be at least 10 digits')\n  .max(20, 'Phone number too long')\n  .regex(/^[\\+]?[0-9\\s\\-\\(\\)\\.]+$/, 'Invalid phone number format')\n  .refine(phone => {\n    // Remove all non-digit characters and check length\n    const digitsOnly = phone.replace(/\\D/g, '');\n    return digitsOnly.length >= 10 && digitsOnly.length <= 15;\n  }, 'Phone number must be between 10 and 15 digits');\n\n/**\n * URL validation with sanitization\n */\nexport const urlSchema = z.string()\n  .min(1, 'URL is required')\n  .max(2048, 'URL too long')\n  .refine(url => {\n    try {\n      const parsed = new URL(url);\n      return ['http:', 'https:'].includes(parsed.protocol);\n    } catch {\n      return false;\n    }\n  }, 'Invalid URL format')\n  .refine(url => {\n    // Additional security checks\n    const dangerousPatterns = [\n      /javascript:/i,\n      /data:/i,\n      /vbscript:/i,\n      /file:/i,\n      /mailto:/i\n    ];\n    \n    return !dangerousPatterns.some(pattern => pattern.test(url));\n  }, 'URL contains invalid protocol');\n","\n/**\n * @file Input Sanitization Layer\n * @package @jmruthers/pace-core\n * @module Security\n * @since 0.1.0\n * \n * Comprehensive input sanitization utilities to prevent XSS, injection attacks,\n * and other security vulnerabilities.\n */\n\nimport { z } from 'zod';\n\n/**\n * Sanitization options for different contexts\n */\nexport interface SanitizationOptions {\n  allowHtml?: boolean;\n  allowedTags?: string[];\n  maxLength?: number;\n  trim?: boolean;\n  removeScripts?: boolean;\n  removeEvents?: boolean;\n}\n\n/**\n * Default sanitization options\n */\nconst DEFAULT_OPTIONS: SanitizationOptions = {\n  allowHtml: false,\n  allowedTags: [],\n  maxLength: 1000,\n  trim: true,\n  removeScripts: true,\n  removeEvents: true\n};\n\n/**\n * Sanitizes user input by removing potentially dangerous characters and patterns\n */\nexport function sanitizeUserInput(input: string, options: SanitizationOptions = {}): string {\n  if (typeof input !== 'string') {\n    return '';\n  }\n\n  const opts = { ...DEFAULT_OPTIONS, ...options };\n  let sanitized = input;\n\n  // Trim whitespace if requested\n  if (opts.trim) {\n    sanitized = sanitized.trim();\n  }\n\n  // Enforce maximum length\n  if (opts.maxLength && sanitized.length > opts.maxLength) {\n    sanitized = sanitized.substring(0, opts.maxLength);\n  }\n\n  // Remove or escape HTML if not allowed\n  if (!opts.allowHtml) {\n    sanitized = sanitized\n      .replace(/</g, '&lt;')\n      .replace(/>/g, '&gt;')\n      .replace(/\"/g, '&quot;')\n      .replace(/'/g, '&#x27;')\n      .replace(/\\//g, '&#x2F;');\n  } else if (opts.allowedTags && opts.allowedTags.length > 0) {\n    // If HTML is allowed, only permit specific tags\n    const allowedTagsRegex = new RegExp(`<(?!\\/?(?:${opts.allowedTags.join('|')})\\s*\\/?>)[^>]+>`, 'gi');\n    sanitized = sanitized.replace(allowedTagsRegex, '');\n  }\n\n  // Remove script tags and javascript: protocols\n  if (opts.removeScripts) {\n    sanitized = sanitized\n      .replace(/<script[^>]*>.*?<\\/script>/gi, '')\n      .replace(/javascript:/gi, '')\n      .replace(/vbscript:/gi, '')\n      .replace(/data:/gi, '');\n  }\n\n  // Remove event handlers\n  if (opts.removeEvents) {\n    sanitized = sanitized.replace(/on\\w+\\s*=/gi, '');\n  }\n\n  return sanitized;\n}\n\n/**\n * Sanitizes email addresses\n */\nexport function sanitizeEmail(email: string): string {\n  if (typeof email !== 'string') {\n    return '';\n  }\n\n  return email\n    .trim()\n    .toLowerCase()\n    .replace(/[^\\w@.-]/g, ''); // Only allow word characters, @, ., and -\n}\n\n/**\n * Sanitizes phone numbers\n */\nexport function sanitizePhoneNumber(phone: string): string {\n  if (typeof phone !== 'string') {\n    return '';\n  }\n\n  return phone.replace(/[^\\d+\\-\\s()]/g, '').trim();\n}\n\n/**\n * Sanitizes URLs\n */\nexport function sanitizeUrl(url: string): string {\n  if (typeof url !== 'string') {\n    return '';\n  }\n\n  const sanitized = url.trim();\n  \n  // Only allow http(s) and ftp protocols\n  if (!/^https?:\\/\\/|^ftp:\\/\\//i.test(sanitized)) {\n    return '';\n  }\n\n  // Remove javascript: and other dangerous protocols\n  if (/javascript:|data:|vbscript:/i.test(sanitized)) {\n    return '';\n  }\n\n  return sanitized;\n}\n\n/**\n * Sanitizes file names\n */\nexport function sanitizeFileName(fileName: string): string {\n  if (typeof fileName !== 'string') {\n    return '';\n  }\n\n  return fileName\n    .trim()\n    .replace(/[<>:\"/\\\\|?*]/g, '') // Remove invalid file name characters\n    .replace(/\\.\\./g, '') // Remove directory traversal attempts\n    .substring(0, 255); // Limit length\n}\n\n/**\n * Sanitizes SQL input to prevent injection\n */\nexport function sanitizeSqlInput(input: string): string {\n  if (typeof input !== 'string') {\n    return '';\n  }\n\n  return input\n    .replace(/['\";\\\\]/g, '') // Remove SQL special characters\n    .replace(/--.*$/gm, '') // Remove SQL comments\n    .replace(/\\/\\*.*?\\*\\//g, '') // Remove SQL block comments\n    .trim();\n}\n\n/**\n * Validates and sanitizes form data using Zod schemas\n */\nexport function sanitizeFormData<T>(\n  data: unknown,\n  schema: z.ZodSchema<T>,\n  sanitizationRules?: Record<string, SanitizationOptions>\n): { success: boolean; data?: T; error?: string } {\n  try {\n    // First, sanitize string fields if rules are provided\n    if (sanitizationRules && typeof data === 'object' && data !== null) {\n      const sanitizedData = { ...data } as Record<string, unknown>;\n      \n      Object.entries(sanitizationRules).forEach(([field, options]) => {\n        if (typeof sanitizedData[field] === 'string') {\n          sanitizedData[field] = sanitizeUserInput(sanitizedData[field] as string, options);\n        }\n      });\n      \n      data = sanitizedData;\n    }\n\n    // Then validate with Zod schema\n    const result = schema.parse(data);\n    return { success: true, data: result };\n  } catch (error) {\n    if (error instanceof z.ZodError) {\n      return { \n        success: false, \n        error: error.errors.map(e => e.message).join(', ') \n      };\n    }\n    return { \n      success: false, \n      error: 'Validation failed' \n    };\n  }\n}\n\n/**\n * Content Security Policy (CSP) utilities\n */\nexport const CSP_DIRECTIVES = {\n  default: \"default-src 'self'\",\n  script: \"script-src 'self' 'unsafe-inline'\",\n  style: \"style-src 'self' 'unsafe-inline'\",\n  img: \"img-src 'self' data: https:\",\n  font: \"font-src 'self'\",\n  connect: \"connect-src 'self'\",\n  frame: \"frame-src 'none'\"\n};\n\nexport function generateCSPHeader(customDirectives?: Partial<typeof CSP_DIRECTIVES>): string {\n  const directives = { ...CSP_DIRECTIVES, ...customDirectives };\n  return Object.values(directives).join('; ');\n}\n\n/**\n * Rate limiting utilities\n */\nexport class RateLimiter {\n  private attempts: Map<string, { count: number; resetTime: number }> = new Map();\n\n  constructor(\n    private maxAttempts: number = 5,\n    private windowMs: number = 15 * 60 * 1000 // 15 minutes\n  ) {}\n\n  isAllowed(identifier: string): boolean {\n    const now = Date.now();\n    const record = this.attempts.get(identifier);\n\n    if (!record || now > record.resetTime) {\n      this.attempts.set(identifier, { count: 1, resetTime: now + this.windowMs });\n      return true;\n    }\n\n    if (record.count >= this.maxAttempts) {\n      return false;\n    }\n\n    record.count++;\n    return true;\n  }\n\n  getRemainingAttempts(identifier: string): number {\n    const record = this.attempts.get(identifier);\n    if (!record || Date.now() > record.resetTime) {\n      return this.maxAttempts;\n    }\n    return Math.max(0, this.maxAttempts - record.count);\n  }\n\n  reset(identifier: string): void {\n    this.attempts.delete(identifier);\n  }\n}\n","\nimport type { SupabaseClient } from '@supabase/supabase-js';\n\nexport interface SecurityEvent {\n  type: string;\n  timestamp: Date;\n  userId?: string;\n  details: Record<string, unknown>;\n}\n\nexport function logSecurityEvent(event: SecurityEvent): void {\n  // In production, this should log to your security monitoring system\n  // For now, we'll log to console.warn for testing purposes\n  console.warn('[SECURITY EVENT]', {\n    ...event,\n    timestamp: event.timestamp.toISOString()\n  });\n}\n\nexport function validateUserSession(userId: string, sessionToken?: string): Promise<boolean> {\n  // Mock implementation - replace with actual session validation\n  if (!userId || typeof userId !== 'string') {\n    logSecurityEvent({\n      type: 'invalid_session_validation',\n      timestamp: new Date(),\n      details: { reason: 'Invalid userId provided' }\n    });\n    return Promise.resolve(false);\n  }\n  \n  if (sessionToken && sessionToken.length < 10) {\n    logSecurityEvent({\n      type: 'suspicious_session_token',\n      timestamp: new Date(),\n      userId,\n      details: { reason: 'Session token too short' }\n    });\n    return Promise.resolve(false);\n  }\n  \n  return Promise.resolve(true);\n}\n\nexport function createSecureSession(\n  _supabaseClient: SupabaseClient,\n  sessionData: { userId: string; deviceFingerprint?: string }\n): Promise<string> {\n  // Mock implementation - in production, create actual secure session\n  const sessionId = `sess_${Date.now()}_${Math.random().toString(36).substr(2, 9)}`;\n  \n  logSecurityEvent({\n    type: 'session_created',\n    timestamp: new Date(),\n    userId: sessionData.userId,\n    details: { \n      sessionId,\n      hasDeviceFingerprint: !!sessionData.deviceFingerprint\n    }\n  });\n  \n  return Promise.resolve(sessionId);\n}\n\nexport function invalidateSession(\n  _supabaseClient: SupabaseClient,\n  sessionId: string\n): Promise<void> {\n  // Mock implementation - in production, invalidate actual session\n  logSecurityEvent({\n    type: 'session_invalidated',\n    timestamp: new Date(),\n    details: { sessionId }\n  });\n  \n  return Promise.resolve();\n}\n\nexport function getSecurityHeaders(): Record<string, string> {\n  return {\n    'X-Content-Type-Options': 'nosniff',\n    'X-Frame-Options': 'DENY',\n    'X-XSS-Protection': '1; mode=block',\n    'Referrer-Policy': 'strict-origin-when-cross-origin',\n    'Strict-Transport-Security': 'max-age=31536000; includeSubDomains'\n  };\n}\n\nexport function validateSecurityHeaders(headers: Record<string, string>): boolean {\n  const requiredHeaders = ['X-Content-Type-Options', 'X-Frame-Options'];\n  const missingHeaders = requiredHeaders.filter(header => !headers[header]);\n  \n  if (missingHeaders.length > 0) {\n    logSecurityEvent({\n      type: 'missing_security_headers',\n      timestamp: new Date(),\n      details: { missingHeaders }\n    });\n    return false;\n  }\n  \n  return true;\n}\n\nexport function generateDeviceFingerprint(): string {\n  // Basic device fingerprinting - in production, use more sophisticated methods\n  const canvas = document.createElement('canvas');\n  const ctx = canvas.getContext('2d');\n  if (ctx) {\n    ctx.textBaseline = 'top';\n    ctx.font = '14px Arial';\n    ctx.fillText('Device fingerprint', 2, 2);\n  }\n  \n  const fingerprint = [\n    navigator.userAgent,\n    navigator.language,\n    screen.width + 'x' + screen.height,\n    new Date().getTimezoneOffset(),\n    canvas.toDataURL()\n  ].join('|');\n  \n  // Simple hash function for demonstration\n  let hash = 0;\n  for (let i = 0; i < fingerprint.length; i++) {\n    const char = fingerprint.charCodeAt(i);\n    hash = ((hash << 5) - hash) + char;\n    hash = hash & hash; // Convert to 32-bit integer\n  }\n  \n  return Math.abs(hash).toString(16);\n}\n\nexport function validateDeviceFingerprint(fingerprint: string, expectedFingerprint?: string): boolean {\n  if (!fingerprint || typeof fingerprint !== 'string') {\n    logSecurityEvent({\n      type: 'invalid_device_fingerprint',\n      timestamp: new Date(),\n      details: { reason: 'Invalid fingerprint format' }\n    });\n    return false;\n  }\n  \n  if (expectedFingerprint && fingerprint !== expectedFingerprint) {\n    logSecurityEvent({\n      type: 'device_fingerprint_mismatch',\n      timestamp: new Date(),\n      details: { \n        provided: fingerprint,\n        expected: expectedFingerprint\n      }\n    });\n    return false;\n  }\n  \n  return true;\n}\n","/**\n * Performance thresholds and constants\n */\n\nexport const PERFORMANCE_THRESHOLDS = {\n  RENDER_TIME: 16, // 60fps target\n  INTERACTION_TIME: 100, // 100ms for interactions\n  ANIMATION_TIME: 300, // 300ms for animations\n  LOAD_TIME: 1000, // 1 second for initial load\n  MEMORY_USAGE: 50 * 1024 * 1024, // 50MB memory limit\n  BUNDLE_SIZE: 250 * 1024, // 250KB bundle size limit\n} as const;\n\nexport type PerformanceThreshold = keyof typeof PERFORMANCE_THRESHOLDS; ","/**\n * Performance benchmarking utilities\n */\n\nexport interface PerformanceMetrics {\n  renderTime: number;\n  interactionTime: number;\n  memoryUsage: number;\n  bundleSize: number;\n}\n\nexport function createPerformanceBenchmark(name: string) {\n  const startTime = performance.now();\n  const startMemory = (performance as any).memory?.usedJSHeapSize || 0;\n\n  return {\n    end: () => {\n      const endTime = performance.now();\n      const endMemory = (performance as any).memory?.usedJSHeapSize || 0;\n      \n      const metrics: PerformanceMetrics = {\n        renderTime: endTime - startTime,\n        interactionTime: 0, // Would be measured separately\n        memoryUsage: endMemory - startMemory,\n        bundleSize: 0, // Would be measured at build time\n      };\n\n      // TODO: Replace with proper logging service integration\n      // For now, we'll use a no-op to prevent console pollution\n      const _unused = { \n        benchmark: `Performance Benchmark [${name}]`, \n        metrics \n      };\n      \n      return metrics;\n    }\n  };\n}\n\nexport function measureRenderPerformance(componentName: string, renderFn: () => void): PerformanceMetrics {\n  const startTime = performance.now();\n  const startMemory = (performance as any).memory?.usedJSHeapSize || 0;\n  \n  renderFn();\n  \n  const endTime = performance.now();\n  const endMemory = (performance as any).memory?.usedJSHeapSize || 0;\n  \n  const metrics: PerformanceMetrics = {\n    renderTime: endTime - startTime,\n    interactionTime: 0,\n    memoryUsage: endMemory - startMemory,\n    bundleSize: 0,\n  };\n  \n  // TODO: Replace with proper logging service integration\n  // For now, we'll use a no-op to prevent console pollution\n  const _unused = { \n    benchmark: `Render Performance [${componentName}]`, \n    metrics \n  };\n  \n  return metrics;\n} ","\ninterface BundleStats {\n  totalSize: number;\n  gzippedSize: number;\n  chunks: ChunkInfo[];\n  treeshakingEffectiveness: number;\n}\n\ninterface ChunkInfo {\n  name: string;\n  size: number;\n  modules: string[];\n  dynamicallyImported: boolean;\n}\n\nclass BundleAnalyzer {\n  private enabled = process.env.NODE_ENV === 'development';\n\n  analyzeBundle(): BundleStats | null {\n    if (!this.enabled) return null;\n\n    // In a real implementation, this would integrate with webpack-bundle-analyzer\n    // or similar tools. For now, we'll simulate analysis\n    \n    // TODO: Replace with proper logging service integration\n    // For now, we'll log to console for testing purposes\n    console.log('Bundle analysis would run here in development');\n    console.log('To enable real bundle analysis:');\n    console.log('1. Install webpack-bundle-analyzer');\n    console.log('2. Add bundle analysis to build scripts');\n    console.log('3. Integrate with performance budgets');\n\n    return {\n      totalSize: 0,\n      gzippedSize: 0,\n      chunks: [],\n      treeshakingEffectiveness: 0\n    };\n  }\n\n  checkTreeshaking(): void {\n    if (!this.enabled) return;\n\n    const potentialIssues = [\n      'Check for unused exports in index files',\n      'Verify side-effect free modules in package.json',\n      'Ensure proper ES module syntax',\n      'Check for circular dependencies'\n    ];\n\n    // TODO: Replace with proper logging service integration\n    // For now, we'll log to console for testing purposes\n    console.group('Tree-shaking Analysis');\n    potentialIssues.forEach(issue => console.log('- ' + issue));\n    console.groupEnd();\n  }\n\n  validateExports(): void {\n    if (!this.enabled) return;\n\n    // TODO: Replace with proper logging service integration\n    // For now, we'll log to console for testing purposes\n    console.group('Export Validation');\n    console.log('Checking for optimal export patterns...');\n    console.log('- Prefer named exports over default exports');\n    console.log('- Avoid barrel exports for large modules');\n    console.log('- Use dynamic imports for large dependencies');\n    console.groupEnd();\n  }\n\n  generateReport(): string {\n    const report = `\n# Bundle Analysis Report\n\n## Recommendations for @jmruthers/pace-core\n\n### 1. Code Splitting Opportunities\n- ✅ DataTable virtualization is lazy-loaded\n- ⚠️  Consider splitting auth providers by use case\n- ⚠️  Lazy load heavy UI components (charts, complex forms)\n\n### 2. Tree-shaking Optimization\n- ✅ Using ES modules throughout\n- ✅ Proper sideEffects configuration\n- ⚠️  Check for unused utility functions\n\n### 3. Bundle Size Targets\n- Core components: < 50KB gzipped\n- Auth module: < 30KB gzipped  \n- Utilities: < 20KB gzipped\n- Total package: < 150KB gzipped\n\n### 4. Performance Monitoring\n- Monitor component render times\n- Track bundle size changes\n- Validate tree-shaking effectiveness\n    `;\n\n    return report.trim();\n  }\n}\n\nexport const bundleAnalyzer = new BundleAnalyzer();\n\n// Helper to check if imports are optimized\nexport function validateImportPattern(moduleId: string, importedItems: string[]): void {\n  if (process.env.NODE_ENV !== 'development') return;\n\n  const largeModules = ['lodash', 'moment', 'rxjs'];\n  const isLargeModule = largeModules.some(mod => moduleId.includes(mod));\n  \n  if (isLargeModule && importedItems.length > 5) {\n    // TODO: Replace with proper logging service integration\n    // For now, we'll log to console for testing purposes\n    console.warn(\n      'Large import detected: importing ' + importedItems.length + ' items from ' + moduleId + '. ' +\n      'Consider splitting imports or using more specific imports.'\n    );\n  }\n}\n\n// Monitor dynamic imports\nexport function trackDynamicImport(moduleName: string): void {\n  if (process.env.NODE_ENV !== 'development') return;\n  \n  // TODO: Replace with proper logging service integration\n  // For now, we'll log to console for testing purposes\n  console.log('Dynamic import: ' + moduleName + ' - Good for code splitting!');\n}\n","\n/**\n * Dynamic utility loader to reduce initial bundle size\n * Heavy utilities are loaded on-demand\n */\n\n// Type definitions for dynamic imports\ntype DebounceFunction = <T extends (...args: unknown[]) => unknown>(\n  func: T,\n  wait?: number,\n  options?: { leading?: boolean; maxWait?: number; trailing?: boolean }\n) => T & { cancel(): void; flush(): void };\n\ntype ThrottleFunction = <T extends (...args: unknown[]) => unknown>(\n  func: T,\n  wait?: number,\n  options?: { leading?: boolean; trailing?: boolean }\n) => T & { cancel(): void; flush(): void };\n\n// Dynamic lodash utilities\nexport const loadLodash = async (): Promise<{\n  debounce: DebounceFunction;\n  throttle: ThrottleFunction;\n}> => {\n  const [debounceModule, throttleModule] = await Promise.all([\n    import('lodash.debounce' as any),\n    import('lodash.throttle' as any)\n  ]);\n  \n  return {\n    debounce: (debounceModule.default || debounceModule) as DebounceFunction,\n    throttle: (throttleModule.default || throttleModule) as ThrottleFunction\n  };\n};\n\n// Dynamic date utilities\nexport const loadDateUtils = async (): Promise<typeof import('date-fns')> => {\n  const dateFns = await import('date-fns');\n  return dateFns;\n};\n\n// Dynamic chart utilities - using unknown type to avoid Recharts type issues\nexport const loadChartUtils = async (): Promise<unknown> => {\n  const recharts = await import('recharts');\n  return recharts;\n};\n\n// Dynamic form utilities\nexport const loadFormUtils = async (): Promise<{\n  useForm: unknown;\n  useController: unknown;\n  Controller: unknown;\n  FormProvider: unknown;\n  useFormContext: unknown;\n  useWatch: unknown;\n  useFormState: unknown;\n  useFieldArray: unknown;\n  zodResolver: unknown;\n}> => {\n  const [reactHookForm, zodResolvers] = await Promise.all([\n    import('react-hook-form'),\n    import('@hookform/resolvers/zod')\n  ]);\n  \n  return {\n    ...reactHookForm,\n    zodResolver: zodResolvers.zodResolver\n  };\n};\n\n// Dynamic CSV utilities\nexport const loadCSVUtils = async (): Promise<unknown> => {\n  const papaparse = await import('papaparse');\n  return papaparse.default;\n};\n\n// Utility function to create lazy utility hooks\nexport function createLazyUtility<T>(loader: () => Promise<T>) {\n  let cached: T | null = null;\n  let loading: Promise<T> | null = null;\n\n  return {\n    load: async (): Promise<T> => {\n      if (cached) return cached;\n      if (loading) return loading;\n\n      loading = loader().then(result => {\n        cached = result;\n        loading = null;\n        return result;\n      });\n\n      return loading;\n    },\n    getCached: (): T | null => cached,\n    isLoaded: (): boolean => cached !== null\n  };\n}\n\n// Pre-configured lazy utilities with explicit types\nexport const lazyLodash: ReturnType<typeof createLazyUtility<Awaited<ReturnType<typeof loadLodash>>>> = createLazyUtility(loadLodash);\nexport const lazyDateUtils: ReturnType<typeof createLazyUtility<Awaited<ReturnType<typeof loadDateUtils>>>> = createLazyUtility(loadDateUtils);\nexport const lazyChartUtils: ReturnType<typeof createLazyUtility<unknown>> = createLazyUtility(loadChartUtils);\nexport const lazyFormUtils: ReturnType<typeof createLazyUtility<Awaited<ReturnType<typeof loadFormUtils>>>> = createLazyUtility(loadFormUtils);\nexport const lazyCSVUtils: ReturnType<typeof createLazyUtility<unknown>> = createLazyUtility(loadCSVUtils);\n","import React, { Suspense, ComponentType, lazy } from 'react';\nimport { LoadingSpinner } from '../components/LoadingSpinner/LoadingSpinner';\n\ninterface LazyLoadOptions {\n  fallback?: React.ReactNode;\n  errorBoundary?: ComponentType<{ children: React.ReactNode }>;\n}\n\n/**\n * Create a lazy-loaded component with error boundary and loading fallback\n */\nexport function createLazyComponent<T extends ComponentType<any>>(\n  importFn: () => Promise<{ default: T }>,\n  componentName: string,\n  options: LazyLoadOptions = {}\n): T {\n  const LazyComponent = lazy(importFn);\n  \n  const WrappedComponent = (props: any) => {\n    const content = (\n      <Suspense fallback={options.fallback || <LoadingSpinner />}>\n        <LazyComponent {...props} />\n      </Suspense>\n    );\n\n    if (options.errorBoundary) {\n      const ErrorBoundary = options.errorBoundary;\n      return <ErrorBoundary>{content}</ErrorBoundary>;\n    }\n\n    return content;\n  };\n  \n  WrappedComponent.displayName = `Lazy${componentName}`;\n  return WrappedComponent as T;\n}\n\n/**\n * Lazy-loaded DataTable component\n */\nexport const LazyDataTable = createLazyComponent(\n  () => import('../components/DataTable').then(module => ({ default: module.DataTable })),\n  'DataTable'\n);\n","\n/**\n * Permission utilities for transforming and managing permissions\n */\n\nexport function transformPermissionMapToBoolean(permissions: Record<string, unknown>): Record<string, boolean> {\n  const result: Record<string, boolean> = {};\n  \n  Object.entries(permissions).forEach(([key, value]) => {\n    if (typeof value === 'string') {\n      // Handle string values - 'false' should be false, empty strings are false, other non-empty strings are true\n      result[key] = value !== '' && value.toLowerCase() !== 'false';\n    } else {\n      result[key] = Boolean(value);\n    }\n  });\n  \n  return result;\n}\n\nexport function hasPermission(permissions: Record<string, boolean>, permission: string): boolean {\n  return Boolean(permissions[permission]);\n}\n\nexport function hasAnyPermission(permissions: Record<string, boolean>, permissionList: string[]): boolean {\n  return permissionList.some(permission => hasPermission(permissions, permission));\n}\n\nexport function hasAllPermissions(permissions: Record<string, boolean>, permissionList: string[]): boolean {\n  return permissionList.every(permission => hasPermission(permissions, permission));\n}\n","\n/**\n * @file Permission type definitions and utilities\n */\n\nexport enum PermissionType {\n  READ = 'read',\n  WRITE = 'write',\n  DELETE = 'delete',\n  ADMIN = 'admin'\n}\n\n/**\n * Parse a permission string into components\n */\nexport function parsePermission(permission: string): { resource: string; action: string } | null {\n  if (!permission || typeof permission !== 'string') {\n    return null;\n  }\n  \n  const parts = permission.split(':');\n  if (parts.length !== 2) {\n    return null;\n  }\n  \n  const [action, resource] = parts;\n  \n  // Check that both action and resource exist and are not empty\n  if (action === undefined || resource === undefined || action === '' || resource === '') {\n    return null;\n  }\n  \n  return {\n    resource,\n    action\n  };\n}\n","import { z } from 'zod';\n\n/**\n * Creates a subset schema from a larger schema\n * \n * @param schema - Original Zod schema\n * @param keys - Array of keys to pick from the schema\n * @returns New schema with only the selected fields\n */\nexport function pickSchema<T extends z.ZodObject<any, any, any>, K extends keyof z.infer<T>>(\n  schema: T,\n  keys: K[]\n): z.ZodObject<any> {\n  const shape = Object.entries(schema.shape)\n    .filter(([key]) => keys.includes(key as K))\n    .reduce((acc, [key, value]) => {\n      acc[key] = value as z.ZodTypeAny;\n      return acc;\n    }, {} as Record<string, z.ZodTypeAny>);\n\n  return z.object(shape);\n}\n\n/**\n * Combines multiple Zod schemas into one\n * \n * @param schemas - Array of Zod schemas to combine\n * @returns Combined schema\n */\nexport function combineSchemas<T extends z.ZodObject<any, any, any>[]>(\n  schemas: T\n): z.ZodObject<any> {\n  return schemas.reduce(\n    (merged, schema) => merged.merge(schema),\n    z.object({})\n  );\n} ","\ninterface SecurityEvent {\n  id?: string;\n  action: string;\n  details: Record<string, any>;\n  timestamp?: number;\n}\n\ninterface SecurityAlert {\n  id: string;\n  type: string;\n  message: string;\n  timestamp: Date;\n}\n\nclass SecurityMonitor {\n  private events: SecurityEvent[] = [];\n\n  logEvent(event: SecurityEvent) {\n    const eventWithId = {\n      ...event,\n      id: Math.random().toString(36).substr(2, 9),\n      timestamp: Date.now()\n    };\n    this.events.push(eventWithId);\n  }\n\n  getEvents(): SecurityEvent[] {\n    return [...this.events];\n  }\n\n  clearEvents() {\n    this.events = [];\n  }\n\n  createAlert(alert: Omit<SecurityAlert, 'id' | 'timestamp'>): SecurityAlert {\n    return {\n      ...alert,\n      id: Math.random().toString(36).substr(2, 9),\n      timestamp: new Date()\n    };\n  }\n}\n\nexport const securityMonitor = new SecurityMonitor();\n","import type { SupabaseClient } from '@supabase/supabase-js';\n\n// Define the tracking parameters locally since old RBAC types are removed\ninterface TrackUserSessionParams {\n  p_session_type: 'login' | 'logout' | 'event_switch' | 'session_expired';\n  p_event_id?: string;\n  p_app_id?: string;\n}\n\n/**\n * Hook for tracking user sessions and event interactions using the new RBAC system\n * @param supabaseClient - Supabase client instance\n * @param appName - Optional application name for tracking\n * @returns Object containing tracking functions\n */\nexport function useSessionTracking(supabaseClient: SupabaseClient, appName?: string) {\n  // Resolve app name to app_id\n  const resolveAppId = async (): Promise<string | undefined> => {\n    if (!appName) return undefined;\n    \n    try {\n      const { data, error } = await supabaseClient\n        .from('rbac_apps')\n        .select('id')\n        .eq('name', appName)\n        .eq('is_active', true)\n        .single();\n      \n      if (error || !data) {\n        console.warn('App not found or inactive:', appName);\n        return undefined;\n      }\n      \n      return data.id;\n    } catch (error) {\n      console.error('Failed to resolve app ID:', error);\n      return undefined;\n    }\n  };\n  /**\n   * Track a user login event\n   * @param eventId - Optional event ID to associate with the login\n   */\n  const trackLogin = async (eventId?: string) => {\n    try {\n      const { data: { user } } = await supabaseClient.auth.getUser();\n      if (!user) {\n        console.warn('No authenticated user found for session tracking');\n        return;\n      }\n\n      const appId = await resolveAppId();\n\n      const params: TrackUserSessionParams = {\n        p_session_type: 'login',\n        p_event_id: eventId,\n        p_app_id: appId\n      };\n\n      const { error } = await supabaseClient.rpc('track_user_session', params);\n      \n      if (error) {\n        console.error('Failed to track login session:', error);\n      } else {\n        console.log('Login session tracked successfully');\n      }\n    } catch (error) {\n      console.error('Failed to track login:', error);\n    }\n  };\n\n  /**\n   * Track an event switch\n   * @param eventId - ID of the event being switched to\n   */\n  const trackEventSwitch = async (eventId: string) => {\n    try {\n      const { data: { user } } = await supabaseClient.auth.getUser();\n      if (!user) {\n        console.warn('No authenticated user found for session tracking');\n        return;\n      }\n\n      const appId = await resolveAppId();\n\n      const params: TrackUserSessionParams = {\n        p_session_type: 'event_switch',\n        p_event_id: eventId,\n        p_app_id: appId\n      };\n\n      const { error } = await supabaseClient.rpc('track_user_session', params);\n      \n      if (error) {\n        console.error('Failed to track event switch session:', error);\n      } else {\n        console.log('Event switch session tracked successfully');\n      }\n    } catch (error) {\n      console.error('Failed to track event switch:', error);\n    }\n  };\n\n  /**\n   * Track a user logout event\n   */\n  const trackLogout = async () => {\n    try {\n      const { data: { user } } = await supabaseClient.auth.getUser();\n      if (!user) {\n        console.warn('No authenticated user found for session tracking');\n        return;\n      }\n\n      const appId = await resolveAppId();\n\n      const params: TrackUserSessionParams = {\n        p_session_type: 'logout',\n        p_app_id: appId\n      };\n\n      const { error } = await supabaseClient.rpc('track_user_session', params);\n      \n      if (error) {\n        console.error('Failed to track logout session:', error);\n      } else {\n        console.log('Logout session tracked successfully');\n      }\n    } catch (error) {\n      console.error('Failed to track logout:', error);\n    }\n  };\n\n  /**\n   * Track a session expiration\n   */\n  const trackSessionExpired = async () => {\n    try {\n      const { data: { user } } = await supabaseClient.auth.getUser();\n      if (!user) {\n        console.warn('No authenticated user found for session tracking');\n        return;\n      }\n\n      const appId = await resolveAppId();\n\n      const params: TrackUserSessionParams = {\n        p_session_type: 'session_expired',\n        p_app_id: appId\n      };\n\n      const { error } = await supabaseClient.rpc('track_user_session', params);\n      \n      if (error) {\n        console.error('Failed to track session expiration:', error);\n      } else {\n        console.log('Session expiration tracked successfully');\n      }\n    } catch (error) {\n      console.error('Failed to track session expiration:', error);\n    }\n  };\n\n  return {\n    trackLogin,\n    trackEventSwitch,\n    trackLogout,\n    trackSessionExpired\n  };\n} ","\n/**\n * @file Audit Logger - General Utility\n * \n * Moved from shared/auditLogger to lib for better organization\n */\n\nexport interface AuditEvent {\n  type: 'auth' | 'permission' | 'security';\n  action?: string;\n  event?: string;\n  user?: string;\n  userId?: string;\n  details?: Record<string, unknown>;\n  data?: Record<string, unknown>;\n  timestamp?: number;\n  severity?: 'low' | 'medium' | 'high' | 'critical';\n  source?: string;\n}\n\nclass AuditLogger {\n  private events: AuditEvent[] = [];\n\n  log(event: AuditEvent): void {\n    const eventWithTimestamp = {\n      ...event,\n      timestamp: Date.now(),\n    };\n    \n    this.events.push(eventWithTimestamp);\n    // TODO: In production, this should send to a proper logging service\n    // Console logging removed for production\n  }\n\n  async logPermissionEvent(event: {\n    event: string;\n    userId: string;\n    data?: Record<string, unknown>;\n  }): Promise<void> {\n    this.log({\n      type: 'permission',\n      event: event.event,\n      userId: event.userId,\n      data: event.data,\n    });\n  }\n\n  async logSecurityEvent(event: {\n    event: string;\n    data?: Record<string, unknown>;\n  }): Promise<void> {\n    this.log({\n      type: 'security',\n      event: event.event,\n      data: event.data,\n    });\n  }\n\n  async logAuthEvent(event: {\n    event: string;\n    userId?: string;\n    data?: Record<string, unknown>;\n  }): Promise<void> {\n    this.log({\n      type: 'auth',\n      event: event.event,\n      userId: event.userId,\n      data: event.data,\n    });\n  }\n\n  async getSecurityEvents(): Promise<AuditEvent[]> {\n    return this.events.filter(event => event.type === 'security');\n  }\n\n  getEvents(): AuditEvent[] {\n    return [...this.events];\n  }\n\n  clearEvents(): void {\n    this.events = [];\n  }\n}\n\nexport const auditLogger = new AuditLogger();\n\n// Alias for backward compatibility\nexport const auditLog = auditLogger;\n\nexport function logAuthEvent(action: string, user?: string, details?: Record<string, unknown>): void {\n  auditLogger.log({\n    type: 'auth',\n    action,\n    user,\n    details,\n  });\n  // Console logging removed for production\n}\n\nexport function logPermissionEvent(action: string, user?: string, details?: Record<string, unknown>): void {\n  auditLogger.log({\n    type: 'permission',\n    action,\n    user,\n    details,\n  });\n  // Console logging removed for production\n}\n\nexport function logSecurityEvent(action: string, user?: string, details?: Record<string, unknown>): void {\n  auditLogger.log({\n    type: 'security',\n    action,\n    user,\n    details,\n  });\n  // Console logging removed for production\n}\n\nexport function logAuditEvent(action: string, user?: string, details?: Record<string, unknown>): void {\n  auditLogger.log({\n    type: 'auth', // Default to auth type for general audit events\n    action,\n    user,\n    details,\n  });\n}\n","/**\n * @file Secure Device Fingerprinting\n * @description Enhanced device fingerprinting with encryption and security measures\n */\n\nimport { secureStorage } from './secureStorage';\n\nexport interface DeviceFingerprint {\n  hash: string;\n  timestamp: number;\n  components: {\n    userAgent: string;\n    language: string;\n    platform: string;\n    screen: string;\n    timezone: string;\n    canvas?: string;\n    webgl?: string;\n  };\n  entropy: number;\n}\n\n/**\n * Generate a secure device fingerprint (synchronous)\n */\nexport function generateDeviceFingerprint(): DeviceFingerprint {\n  try {\n    const components = {\n      userAgent: getHashedUserAgent(),\n      language: navigator.language || 'unknown',\n      platform: navigator.platform || 'unknown',\n      screen: `${screen.width}x${screen.height}x${screen.colorDepth}`,\n      timezone: Intl.DateTimeFormat().resolvedOptions().timeZone || 'unknown',\n      canvas: getCanvasFingerprint(),\n      webgl: getWebGLFingerprint(),\n    };\n\n    // Calculate entropy (uniqueness score)\n    const entropy = calculateEntropy(components);\n    \n    // Create a hash from all components\n    const fingerprintData = JSON.stringify(components);\n    const hash = hashStringSync(fingerprintData);\n\n    const fingerprint: DeviceFingerprint = {\n      hash,\n      timestamp: Date.now(),\n      components,\n      entropy,\n    };\n\n    // Store fingerprint asynchronously\n    secureStorage.setItem('device_fingerprint', JSON.stringify(fingerprint));\n    \n    return fingerprint;\n  } catch (error) {\n    return generateFallbackFingerprint();\n  }\n}\n\n/**\n * Validate device fingerprint with security checks\n */\nexport function validateDeviceFingerprint(\n  storedFingerprint: DeviceFingerprint,\n  currentFingerprint: DeviceFingerprint\n): {\n  isValid: boolean;\n  confidence: number;\n  reasons: string[];\n} {\n  const reasons: string[] = [];\n  let matchingComponents = 0;\n  const totalComponents = Object.keys(storedFingerprint.components).length;\n\n  // Check each component\n  Object.entries(storedFingerprint.components).forEach(([key, value]) => {\n    if (currentFingerprint.components[key as keyof typeof currentFingerprint.components] === value) {\n      matchingComponents++;\n    } else {\n      reasons.push(`Component mismatch: ${key}`);\n    }\n  });\n\n  // Calculate confidence score\n  const confidence = (matchingComponents / totalComponents) * 100;\n\n  // Security thresholds\n  const isValid = confidence >= 80; // Require 80% match\n  \n  // Additional security checks\n  const timeDiff = currentFingerprint.timestamp - storedFingerprint.timestamp;\n  const maxAge = 30 * 24 * 60 * 60 * 1000; // 30 days\n  \n  if (timeDiff > maxAge) {\n    reasons.push('Fingerprint too old');\n    return { isValid: false, confidence, reasons };\n  }\n\n  if (confidence < 60) {\n    reasons.push('Device signature changed significantly');\n  }\n\n  return { isValid, confidence, reasons };\n}\n\n/**\n * Generate canvas fingerprint for enhanced uniqueness\n */\nfunction getCanvasFingerprint(): string {\n  try {\n    const canvas = document.createElement('canvas');\n    const ctx = canvas.getContext('2d');\n    \n    if (!ctx) return 'canvas-unavailable';\n\n    // Draw complex pattern for fingerprinting\n    ctx.textBaseline = 'top';\n    ctx.font = '14px Arial';\n    ctx.fillStyle = '#f60';\n    ctx.fillRect(125, 1, 62, 20);\n    ctx.fillStyle = '#069';\n    ctx.fillText('Device fingerprint 🔒', 2, 15);\n    ctx.fillStyle = 'rgba(102, 204, 0, 0.2)';\n    ctx.fillText('Device fingerprint 🔒', 4, 17);\n\n    const dataURL = canvas.toDataURL();\n    return hashStringSync(dataURL);\n  } catch (error) {\n    return 'canvas-error';\n  }\n}\n\n/**\n * Get WebGL fingerprint\n */\nfunction getWebGLFingerprint(): string {\n  try {\n    const canvas = document.createElement('canvas');\n    const gl = canvas.getContext('webgl') || canvas.getContext('experimental-webgl') as WebGLRenderingContext | null;\n    \n    if (!gl) return 'webgl-unavailable';\n\n    const debugInfo = gl.getExtension('WEBGL_debug_renderer_info');\n    if (!debugInfo) return 'webgl-no-debug';\n\n    const vendor = gl.getParameter(debugInfo.UNMASKED_VENDOR_WEBGL);\n    const renderer = gl.getParameter(debugInfo.UNMASKED_RENDERER_WEBGL);\n    \n    return `${vendor}|${renderer}`;\n  } catch (error) {\n    return 'webgl-error';\n  }\n}\n\n/**\n * Hash user agent to prevent direct exposure\n */\nfunction getHashedUserAgent(): string {\n  const ua = navigator.userAgent;\n  return hashStringSync(ua).substring(0, 16); // Shorter hash for storage\n}\n\n/**\n * Calculate entropy of fingerprint components\n */\nfunction calculateEntropy(components: Record<string, string>): number {\n  const values = Object.values(components).join('');\n  const charCounts = new Map<string, number>();\n  \n  for (const char of values) {\n    charCounts.set(char, (charCounts.get(char) || 0) + 1);\n  }\n  \n  let entropy = 0;\n  for (const count of charCounts.values()) {\n    const probability = count / values.length;\n    entropy -= probability * Math.log2(probability);\n  }\n  \n  return entropy;\n}\n\n/**\n * Synchronous hash function for device fingerprinting\n */\nfunction hashStringSync(str: string): string {\n  let hash = 0;\n  for (let i = 0; i < str.length; i++) {\n    const char = str.charCodeAt(i);\n    hash = ((hash << 5) - hash) + char;\n    hash = hash & hash;\n  }\n  return Math.abs(hash).toString(36);\n}\n\n/**\n * Generate fallback fingerprint for error cases\n */\nfunction generateFallbackFingerprint(): DeviceFingerprint {\n  const components = {\n    userAgent: 'fallback',\n    language: 'unknown',\n    platform: 'unknown',\n    screen: 'unknown',\n    timezone: 'unknown',\n  };\n\n  return {\n    hash: `fallback_${Date.now()}_${Math.random().toString(36)}`,\n    timestamp: Date.now(),\n    components,\n    entropy: 1, // Low entropy for fallback\n  };\n}\n","/**\n * Utility functions for formatting data in the application\n */\n\n/**\n * Format a date as a readable string\n */\nexport function formatDate(date: Date | string | number): string {\n  const dateObj = typeof date === 'string' || typeof date === 'number' \n    ? new Date(date) \n    : date;\n  \n  return dateObj.toLocaleDateString(undefined, {\n    year: 'numeric',\n    month: 'short',\n    day: 'numeric'\n  });\n}\n\n/**\n * Format a number as a currency\n */\nexport function formatCurrency(value: number, currencyCode = 'USD', locale = 'en-US'): string {\n  return new Intl.NumberFormat(locale, {\n    style: 'currency',\n    currency: currencyCode,\n  }).format(value);\n}\n\n/**\n * Format a number with custom options\n */\nexport function formatNumber(\n  value: number,\n  options: Intl.NumberFormatOptions = {},\n  locale = 'en-US'\n): string {\n  return new Intl.NumberFormat(locale, options).format(value);\n}\n\n/**\n * Format a number as a percentage\n */\nexport function formatPercent(\n  value: number,\n  locale: string = 'en-US',\n  decimals: number = 1\n): string {\n  return new Intl.NumberFormat(locale, {\n    style: 'percent',\n    minimumFractionDigits: decimals,\n    maximumFractionDigits: decimals,\n  }).format(value / 100);\n}\n\n/**\n * Format a large number with abbreviations (K, M, B)\n */\nexport function formatCompactNumber(value: number, locale = 'en-US'): string {\n  return new Intl.NumberFormat(locale, {\n    notation: 'compact',\n    compactDisplay: 'short'\n  }).format(value);\n}\n\n/**\n * Format a file size in bytes to a human-readable string\n */\nexport function formatFileSize(bytes: number): string {\n  if (bytes === 0) return '0 Bytes';\n  \n  const k = 1024;\n  const sizes = ['Bytes', 'KB', 'MB', 'GB', 'TB', 'PB'];\n  const i = Math.floor(Math.log(bytes) / Math.log(k));\n  \n  return parseFloat((bytes / Math.pow(k, i)).toFixed(2)) + ' ' + sizes[i];\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAQA;AACA;AAGA;;;ACAO,SAAS,aAAa,OAAwB;AACnD,QAAM,eAAe;AACrB,SAAO,aAAa,KAAK,KAAK;AAChC;AAKO,SAAS,QAAQ,OAA2C;AACjE,SAAO,UAAU,QAAQ,UAAU,UAAa,MAAM,KAAK,MAAM;AACnE;AAKO,SAAS,iBAAiB,UAA2B;AAE1D,QAAM,kBAAkB;AACxB,SAAO,gBAAgB,KAAK,QAAQ;AACtC;AAKO,SAAS,WAAW,KAAsB;AAC/C,MAAI;AACF,QAAI,IAAI,GAAG;AACX,WAAO;AAAA,EACT,QAAQ;AACN,WAAO;AAAA,EACT;AACF;AAKO,SAAS,YAAY,SAA0B;AACpD,QAAM,OAAO,IAAI,KAAK,OAAO;AAC7B,SAAO,CAAC,MAAM,KAAK,QAAQ,CAAC;AAC9B;AAKO,SAAS,cAAc,OAAe,KAAa,KAAsB;AAC9E,SAAO,SAAS,OAAO,SAAS;AAClC;AAKO,SAAS,eAAe,OAAe,SAA0B;AACtE,SAAO,QAAQ,KAAK,KAAK;AAC3B;AAMO,SAAS,UACd,QACA,QACG;AACH,QAAM,SAAS,EAAE,GAAG,OAAO;AAE3B,MAAI,SAAS,MAAM,KAAK,SAAS,MAAM,GAAG;AACxC,WAAO,KAAK,MAAM,EAAE,QAAQ,SAAO;AACjC,UAAI,SAAS,OAAO,GAAG,CAAC,GAAG;AACzB,YAAI,EAAE,OAAO,SAAS;AACpB,iBAAO,OAAO,QAAQ,EAAE,CAAC,GAAG,GAAG,OAAO,GAAG,EAAE,CAAC;AAAA,QAC9C,OAAO;AAEL,gBAAM,YAAY;AAClB,gBAAM,cAAc,OAAO,SAAS;AAEpC,cAAI,SAAS,WAAW,GAAG;AAEzB,mBAAO,SAAS,IAAI;AAAA,cAClB;AAAA,cACA,OAAO,GAAG;AAAA,YACZ;AAAA,UACF;AAAA,QACF;AAAA,MACF,OAAO;AACL,eAAO,OAAO,QAAQ,EAAE,CAAC,GAAG,GAAG,OAAO,GAAG,EAAE,CAAC;AAAA,MAC9C;AAAA,IACF,CAAC;AAAA,EACH;AAEA,SAAO;AACT;AAMO,SAAS,SAAS,MAAgD;AACvE,SAAO,SAAS,QAAQ,OAAO,SAAS,YAAY,CAAC,MAAM,QAAQ,IAAI;AACzE;;;ACvGA,SAAS,KAAAA,UAAS;;;ACIlB,SAAS,SAAS;AAiBlB,IAAM,kBAAuC;AAAA,EAC3C,WAAW;AAAA,EACX,aAAa,CAAC;AAAA,EACd,WAAW;AAAA,EACX,MAAM;AAAA,EACN,eAAe;AAAA,EACf,cAAc;AAChB;AAKO,SAAS,kBAAkB,OAAe,UAA+B,CAAC,GAAW;AAC1F,MAAI,OAAO,UAAU,UAAU;AAC7B,WAAO;AAAA,EACT;AAEA,QAAM,OAAO,EAAE,GAAG,iBAAiB,GAAG,QAAQ;AAC9C,MAAI,YAAY;AAGhB,MAAI,KAAK,MAAM;AACb,gBAAY,UAAU,KAAK;AAAA,EAC7B;AAGA,MAAI,KAAK,aAAa,UAAU,SAAS,KAAK,WAAW;AACvD,gBAAY,UAAU,UAAU,GAAG,KAAK,SAAS;AAAA,EACnD;AAGA,MAAI,CAAC,KAAK,WAAW;AACnB,gBAAY,UACT,QAAQ,MAAM,MAAM,EACpB,QAAQ,MAAM,MAAM,EACpB,QAAQ,MAAM,QAAQ,EACtB,QAAQ,MAAM,QAAQ,EACtB,QAAQ,OAAO,QAAQ;AAAA,EAC5B,WAAW,KAAK,eAAe,KAAK,YAAY,SAAS,GAAG;AAE1D,UAAM,mBAAmB,IAAI,OAAO,YAAa,KAAK,YAAY,KAAK,GAAG,CAAC,iBAAmB,IAAI;AAClG,gBAAY,UAAU,QAAQ,kBAAkB,EAAE;AAAA,EACpD;AAGA,MAAI,KAAK,eAAe;AACtB,gBAAY,UACT,QAAQ,gCAAgC,EAAE,EAC1C,QAAQ,iBAAiB,EAAE,EAC3B,QAAQ,eAAe,EAAE,EACzB,QAAQ,WAAW,EAAE;AAAA,EAC1B;AAGA,MAAI,KAAK,cAAc;AACrB,gBAAY,UAAU,QAAQ,eAAe,EAAE;AAAA,EACjD;AAEA,SAAO;AACT;AAKO,SAAS,cAAc,OAAuB;AACnD,MAAI,OAAO,UAAU,UAAU;AAC7B,WAAO;AAAA,EACT;AAEA,SAAO,MACJ,KAAK,EACL,YAAY,EACZ,QAAQ,aAAa,EAAE;AAC5B;AAKO,SAAS,oBAAoB,OAAuB;AACzD,MAAI,OAAO,UAAU,UAAU;AAC7B,WAAO;AAAA,EACT;AAEA,SAAO,MAAM,QAAQ,iBAAiB,EAAE,EAAE,KAAK;AACjD;AAKO,SAAS,YAAY,KAAqB;AAC/C,MAAI,OAAO,QAAQ,UAAU;AAC3B,WAAO;AAAA,EACT;AAEA,QAAM,YAAY,IAAI,KAAK;AAG3B,MAAI,CAAC,0BAA0B,KAAK,SAAS,GAAG;AAC9C,WAAO;AAAA,EACT;AAGA,MAAI,+BAA+B,KAAK,SAAS,GAAG;AAClD,WAAO;AAAA,EACT;AAEA,SAAO;AACT;AAKO,SAAS,iBAAiB,UAA0B;AACzD,MAAI,OAAO,aAAa,UAAU;AAChC,WAAO;AAAA,EACT;AAEA,SAAO,SACJ,KAAK,EACL,QAAQ,iBAAiB,EAAE,EAC3B,QAAQ,SAAS,EAAE,EACnB,UAAU,GAAG,GAAG;AACrB;AAKO,SAAS,iBAAiB,OAAuB;AACtD,MAAI,OAAO,UAAU,UAAU;AAC7B,WAAO;AAAA,EACT;AAEA,SAAO,MACJ,QAAQ,YAAY,EAAE,EACtB,QAAQ,WAAW,EAAE,EACrB,QAAQ,gBAAgB,EAAE,EAC1B,KAAK;AACV;AAKO,SAAS,iBACd,MACA,QACA,mBACgD;AAChD,MAAI;AAEF,QAAI,qBAAqB,OAAO,SAAS,YAAY,SAAS,MAAM;AAClE,YAAM,gBAAgB,EAAE,GAAG,KAAK;AAEhC,aAAO,QAAQ,iBAAiB,EAAE,QAAQ,CAAC,CAAC,OAAO,OAAO,MAAM;AAC9D,YAAI,OAAO,cAAc,KAAK,MAAM,UAAU;AAC5C,wBAAc,KAAK,IAAI,kBAAkB,cAAc,KAAK,GAAa,OAAO;AAAA,QAClF;AAAA,MACF,CAAC;AAED,aAAO;AAAA,IACT;AAGA,UAAM,SAAS,OAAO,MAAM,IAAI;AAChC,WAAO,EAAE,SAAS,MAAM,MAAM,OAAO;AAAA,EACvC,SAAS,OAAO;AACd,QAAI,iBAAiB,EAAE,UAAU;AAC/B,aAAO;AAAA,QACL,SAAS;AAAA,QACT,OAAO,MAAM,OAAO,IAAI,OAAK,EAAE,OAAO,EAAE,KAAK,IAAI;AAAA,MACnD;AAAA,IACF;AACA,WAAO;AAAA,MACL,SAAS;AAAA,MACT,OAAO;AAAA,IACT;AAAA,EACF;AACF;AAKO,IAAM,iBAAiB;AAAA,EAC5B,SAAS;AAAA,EACT,QAAQ;AAAA,EACR,OAAO;AAAA,EACP,KAAK;AAAA,EACL,MAAM;AAAA,EACN,SAAS;AAAA,EACT,OAAO;AACT;AAEO,SAAS,kBAAkB,kBAA2D;AAC3F,QAAM,aAAa,EAAE,GAAG,gBAAgB,GAAG,iBAAiB;AAC5D,SAAO,OAAO,OAAO,UAAU,EAAE,KAAK,IAAI;AAC5C;AAKO,IAAM,cAAN,MAAkB;AAAA,EAGvB,YACU,cAAsB,GACtB,WAAmB,KAAK,KAAK,KACrC;AAFQ;AACA;AAJV,SAAQ,WAA8D,oBAAI,IAAI;AAAA,EAK3E;AAAA,EAEH,UAAU,YAA6B;AACrC,UAAM,MAAM,KAAK,IAAI;AACrB,UAAM,SAAS,KAAK,SAAS,IAAI,UAAU;AAE3C,QAAI,CAAC,UAAU,MAAM,OAAO,WAAW;AACrC,WAAK,SAAS,IAAI,YAAY,EAAE,OAAO,GAAG,WAAW,MAAM,KAAK,SAAS,CAAC;AAC1E,aAAO;AAAA,IACT;AAEA,QAAI,OAAO,SAAS,KAAK,aAAa;AACpC,aAAO;AAAA,IACT;AAEA,WAAO;AACP,WAAO;AAAA,EACT;AAAA,EAEA,qBAAqB,YAA4B;AAC/C,UAAM,SAAS,KAAK,SAAS,IAAI,UAAU;AAC3C,QAAI,CAAC,UAAU,KAAK,IAAI,IAAI,OAAO,WAAW;AAC5C,aAAO,KAAK;AAAA,IACd;AACA,WAAO,KAAK,IAAI,GAAG,KAAK,cAAc,OAAO,KAAK;AAAA,EACpD;AAAA,EAEA,MAAM,YAA0B;AAC9B,SAAK,SAAS,OAAO,UAAU;AAAA,EACjC;AACF;;;AD1PO,SAAS,kBACd,QACA,MACA,mBACgD;AAChD,SAAO,iBAAiB,MAAM,QAAQ,iBAAiB;AACzD;AAMO,SAAS,6BAA6B,OAAuB;AAElE,UAAQ,KAAK,uFAAuF;AACpG,SAAO,kBAAkB,KAAK;AAChC;AAKO,IAAM,cAAcC,GAAE,OAAO,EACjC,UAAU,WAAS,MAAM,YAAY,EAAE,KAAK,CAAC,EAC7C,KAAKA,GAAE,OAAO,EAAE,IAAI,GAAG,mBAAmB,EAAE,MAAM,sBAAsB,EAAE,IAAI,KAAK,gBAAgB,CAAC;AAKhG,IAAM,iBAAiBA,GAAE,OAAO,EACpC,IAAI,GAAG,wCAAwC,EAC/C,IAAI,KAAK,mBAAmB,EAC5B,MAAM,SAAS,qDAAqD,EACpE,MAAM,SAAS,qDAAqD,EACpE,MAAM,SAAS,2CAA2C,EAC1D,MAAM,gBAAgB,sDAAsD;AAKxE,IAAM,iBAAiBA,GAAE,OAAO,EACpC,UAAU,cAAY,SAAS,YAAY,EAAE,KAAK,CAAC,EACnD,KAAKA,GAAE,OAAO,EAAE,IAAI,GAAG,wCAAwC,EAAE,IAAI,IAAI,mBAAmB,EAAE,MAAM,oBAAoB,sEAAsE,CAAC;AAK3L,IAAM,aAAaA,GAAE,OAAO,EAChC,IAAI,GAAG,kBAAkB,EACzB,IAAI,KAAK,eAAe,EACxB,OAAO,UAAQ;AAEd,QAAM,oBAAoB;AAAA,IACxB;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF;AAEA,SAAO,CAAC,kBAAkB,KAAK,aAAW,QAAQ,KAAK,IAAI,CAAC;AAC9D,GAAG,kCAAkC,EACpC,UAAU,UAAQ,kBAAkB,MAAM;AAAA,EACzC,WAAW;AAAA,EACX,WAAW;AAAA,EACX,MAAM;AACR,CAAC,CAAC;AAKG,IAAM,cAAcA,GAAE,OAAO,EACjC,IAAI,IAAI,yCAAyC,EACjD,IAAI,IAAI,uBAAuB,EAC/B,MAAM,2BAA2B,6BAA6B,EAC9D,OAAO,WAAS;AAEf,QAAM,aAAa,MAAM,QAAQ,OAAO,EAAE;AAC1C,SAAO,WAAW,UAAU,MAAM,WAAW,UAAU;AACzD,GAAG,+CAA+C;AAK7C,IAAM,YAAYA,GAAE,OAAO,EAC/B,IAAI,GAAG,iBAAiB,EACxB,IAAI,MAAM,cAAc,EACxB,OAAO,SAAO;AACb,MAAI;AACF,UAAM,SAAS,IAAI,IAAI,GAAG;AAC1B,WAAO,CAAC,SAAS,QAAQ,EAAE,SAAS,OAAO,QAAQ;AAAA,EACrD,QAAQ;AACN,WAAO;AAAA,EACT;AACF,GAAG,oBAAoB,EACtB,OAAO,SAAO;AAEb,QAAM,oBAAoB;AAAA,IACxB;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF;AAEA,SAAO,CAAC,kBAAkB,KAAK,aAAW,QAAQ,KAAK,GAAG,CAAC;AAC7D,GAAG,+BAA+B;;;AE7G7B,SAAS,iBAAiB,OAA4B;AAG3D,UAAQ,KAAK,oBAAoB;AAAA,IAC/B,GAAG;AAAA,IACH,WAAW,MAAM,UAAU,YAAY;AAAA,EACzC,CAAC;AACH;AA4DO,SAAS,qBAA6C;AAC3D,SAAO;AAAA,IACL,0BAA0B;AAAA,IAC1B,mBAAmB;AAAA,IACnB,oBAAoB;AAAA,IACpB,mBAAmB;AAAA,IACnB,6BAA6B;AAAA,EAC/B;AACF;AAEO,SAAS,wBAAwB,SAA0C;AAChF,QAAM,kBAAkB,CAAC,0BAA0B,iBAAiB;AACpE,QAAM,iBAAiB,gBAAgB,OAAO,YAAU,CAAC,QAAQ,MAAM,CAAC;AAExE,MAAI,eAAe,SAAS,GAAG;AAC7B,qBAAiB;AAAA,MACf,MAAM;AAAA,MACN,WAAW,oBAAI,KAAK;AAAA,MACpB,SAAS,EAAE,eAAe;AAAA,IAC5B,CAAC;AACD,WAAO;AAAA,EACT;AAEA,SAAO;AACT;;;ACjGO,IAAM,yBAAyB;AAAA,EACpC,aAAa;AAAA;AAAA,EACb,kBAAkB;AAAA;AAAA,EAClB,gBAAgB;AAAA;AAAA,EAChB,WAAW;AAAA;AAAA,EACX,cAAc,KAAK,OAAO;AAAA;AAAA,EAC1B,aAAa,MAAM;AAAA;AACrB;;;ACAO,SAAS,2BAA2B,MAAc;AACvD,QAAM,YAAY,YAAY,IAAI;AAClC,QAAM,cAAe,YAAoB,QAAQ,kBAAkB;AAEnE,SAAO;AAAA,IACL,KAAK,MAAM;AACT,YAAM,UAAU,YAAY,IAAI;AAChC,YAAM,YAAa,YAAoB,QAAQ,kBAAkB;AAEjE,YAAM,UAA8B;AAAA,QAClC,YAAY,UAAU;AAAA,QACtB,iBAAiB;AAAA;AAAA,QACjB,aAAa,YAAY;AAAA,QACzB,YAAY;AAAA;AAAA,MACd;AAIA,YAAM,UAAU;AAAA,QACd,WAAW,0BAA0B,IAAI;AAAA,QACzC;AAAA,MACF;AAEA,aAAO;AAAA,IACT;AAAA,EACF;AACF;AAEO,SAAS,yBAAyB,eAAuB,UAA0C;AACxG,QAAM,YAAY,YAAY,IAAI;AAClC,QAAM,cAAe,YAAoB,QAAQ,kBAAkB;AAEnE,WAAS;AAET,QAAM,UAAU,YAAY,IAAI;AAChC,QAAM,YAAa,YAAoB,QAAQ,kBAAkB;AAEjE,QAAM,UAA8B;AAAA,IAClC,YAAY,UAAU;AAAA,IACtB,iBAAiB;AAAA,IACjB,aAAa,YAAY;AAAA,IACzB,YAAY;AAAA,EACd;AAIA,QAAM,UAAU;AAAA,IACd,WAAW,uBAAuB,aAAa;AAAA,IAC/C;AAAA,EACF;AAEA,SAAO;AACT;;;AChDA,IAAM,iBAAN,MAAqB;AAAA,EAArB;AACE,SAAQ,UAAU;AAAA;AAAA,EAElB,gBAAoC;AAClC,QAAI,CAAC,KAAK,QAAS,QAAO;AAO1B,YAAQ,IAAI,+CAA+C;AAC3D,YAAQ,IAAI,iCAAiC;AAC7C,YAAQ,IAAI,oCAAoC;AAChD,YAAQ,IAAI,yCAAyC;AACrD,YAAQ,IAAI,uCAAuC;AAEnD,WAAO;AAAA,MACL,WAAW;AAAA,MACX,aAAa;AAAA,MACb,QAAQ,CAAC;AAAA,MACT,0BAA0B;AAAA,IAC5B;AAAA,EACF;AAAA,EAEA,mBAAyB;AACvB,QAAI,CAAC,KAAK,QAAS;AAEnB,UAAM,kBAAkB;AAAA,MACtB;AAAA,MACA;AAAA,MACA;AAAA,MACA;AAAA,IACF;AAIA,YAAQ,MAAM,uBAAuB;AACrC,oBAAgB,QAAQ,WAAS,QAAQ,IAAI,OAAO,KAAK,CAAC;AAC1D,YAAQ,SAAS;AAAA,EACnB;AAAA,EAEA,kBAAwB;AACtB,QAAI,CAAC,KAAK,QAAS;AAInB,YAAQ,MAAM,mBAAmB;AACjC,YAAQ,IAAI,yCAAyC;AACrD,YAAQ,IAAI,6CAA6C;AACzD,YAAQ,IAAI,0CAA0C;AACtD,YAAQ,IAAI,8CAA8C;AAC1D,YAAQ,SAAS;AAAA,EACnB;AAAA,EAEA,iBAAyB;AACvB,UAAM,SAAS;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AA2Bf,WAAO,OAAO,KAAK;AAAA,EACrB;AACF;AAEO,IAAM,iBAAiB,IAAI,eAAe;AAG1C,SAAS,sBAAsB,UAAkB,eAA+B;AACrF,MAAI,KAAwC;AAE5C,QAAM,eAAe,CAAC,UAAU,UAAU,MAAM;AAChD,QAAM,gBAAgB,aAAa,KAAK,SAAO,SAAS,SAAS,GAAG,CAAC;AAErE,MAAI,iBAAiB,cAAc,SAAS,GAAG;AAG7C,YAAQ;AAAA,MACN,sCAAsC,cAAc,SAAS,iBAAiB,WAAW;AAAA,IAE3F;AAAA,EACF;AACF;AAGO,SAAS,mBAAmB,YAA0B;AAC3D,MAAI,KAAwC;AAI5C,UAAQ,IAAI,qBAAqB,aAAa,6BAA6B;AAC7E;;;AC5GO,IAAM,aAAa,YAGpB;AACJ,QAAM,CAAC,gBAAgB,cAAc,IAAI,MAAM,QAAQ,IAAI;AAAA,IACzD,OAAO,iBAAwB;AAAA,IAC/B,OAAO,iBAAwB;AAAA,EACjC,CAAC;AAED,SAAO;AAAA,IACL,UAAW,eAAe,WAAW;AAAA,IACrC,UAAW,eAAe,WAAW;AAAA,EACvC;AACF;AAGO,IAAM,gBAAgB,YAAgD;AAC3E,QAAM,UAAU,MAAM,OAAO,UAAU;AACvC,SAAO;AACT;AAGO,IAAM,iBAAiB,YAA8B;AAC1D,QAAM,WAAW,MAAM,OAAO,UAAU;AACxC,SAAO;AACT;AAGO,IAAM,gBAAgB,YAUvB;AACJ,QAAM,CAAC,eAAe,YAAY,IAAI,MAAM,QAAQ,IAAI;AAAA,IACtD,OAAO,iBAAiB;AAAA,IACxB,OAAO,yBAAyB;AAAA,EAClC,CAAC;AAED,SAAO;AAAA,IACL,GAAG;AAAA,IACH,aAAa,aAAa;AAAA,EAC5B;AACF;AAGO,IAAM,eAAe,YAA8B;AACxD,QAAM,YAAY,MAAM,OAAO,WAAW;AAC1C,SAAO,UAAU;AACnB;AAGO,SAAS,kBAAqB,QAA0B;AAC7D,MAAI,SAAmB;AACvB,MAAI,UAA6B;AAEjC,SAAO;AAAA,IACL,MAAM,YAAwB;AAC5B,UAAI,OAAQ,QAAO;AACnB,UAAI,QAAS,QAAO;AAEpB,gBAAU,OAAO,EAAE,KAAK,YAAU;AAChC,iBAAS;AACT,kBAAU;AACV,eAAO;AAAA,MACT,CAAC;AAED,aAAO;AAAA,IACT;AAAA,IACA,WAAW,MAAgB;AAAA,IAC3B,UAAU,MAAe,WAAW;AAAA,EACtC;AACF;AAGO,IAAM,aAA2F,kBAAkB,UAAU;AAC7H,IAAM,gBAAiG,kBAAkB,aAAa;AACtI,IAAM,iBAAgE,kBAAkB,cAAc;AACtG,IAAM,gBAAiG,kBAAkB,aAAa;AACtI,IAAM,eAA8D,kBAAkB,YAAY;;;ACxGzG,SAAgB,UAAyB,YAAY;AAoBP;AATvC,SAAS,oBACd,UACA,eACA,UAA2B,CAAC,GACzB;AACH,QAAM,gBAAgB,KAAK,QAAQ;AAEnC,QAAM,mBAAmB,CAAC,UAAe;AACvC,UAAM,UACJ,oBAAC,YAAS,UAAU,QAAQ,YAAY,oBAAC,kBAAe,GACtD,8BAAC,iBAAe,GAAG,OAAO,GAC5B;AAGF,QAAI,QAAQ,eAAe;AACzB,YAAM,gBAAgB,QAAQ;AAC9B,aAAO,oBAAC,iBAAe,mBAAQ;AAAA,IACjC;AAEA,WAAO;AAAA,EACT;AAEA,mBAAiB,cAAc,OAAO,aAAa;AACnD,SAAO;AACT;AAKO,IAAM,gBAAgB;AAAA,EAC3B,MAAM,OAAO,yBAAyB,EAAE,KAAK,aAAW,EAAE,SAAS,OAAO,UAAU,EAAE;AAAA,EACtF;AACF;;;ACtCO,SAAS,gCAAgC,aAA+D;AAC7G,QAAM,SAAkC,CAAC;AAEzC,SAAO,QAAQ,WAAW,EAAE,QAAQ,CAAC,CAAC,KAAK,KAAK,MAAM;AACpD,QAAI,OAAO,UAAU,UAAU;AAE7B,aAAO,GAAG,IAAI,UAAU,MAAM,MAAM,YAAY,MAAM;AAAA,IACxD,OAAO;AACL,aAAO,GAAG,IAAI,QAAQ,KAAK;AAAA,IAC7B;AAAA,EACF,CAAC;AAED,SAAO;AACT;AAEO,SAAS,cAAc,aAAsC,YAA6B;AAC/F,SAAO,QAAQ,YAAY,UAAU,CAAC;AACxC;AAEO,SAAS,iBAAiB,aAAsC,gBAAmC;AACxG,SAAO,eAAe,KAAK,gBAAc,cAAc,aAAa,UAAU,CAAC;AACjF;AAEO,SAAS,kBAAkB,aAAsC,gBAAmC;AACzG,SAAO,eAAe,MAAM,gBAAc,cAAc,aAAa,UAAU,CAAC;AAClF;;;ACzBO,IAAK,iBAAL,kBAAKC,oBAAL;AACL,EAAAA,gBAAA,UAAO;AACP,EAAAA,gBAAA,WAAQ;AACR,EAAAA,gBAAA,YAAS;AACT,EAAAA,gBAAA,WAAQ;AAJE,SAAAA;AAAA,GAAA;AAUL,SAAS,gBAAgB,YAAiE;AAC/F,MAAI,CAAC,cAAc,OAAO,eAAe,UAAU;AACjD,WAAO;AAAA,EACT;AAEA,QAAM,QAAQ,WAAW,MAAM,GAAG;AAClC,MAAI,MAAM,WAAW,GAAG;AACtB,WAAO;AAAA,EACT;AAEA,QAAM,CAAC,QAAQ,QAAQ,IAAI;AAG3B,MAAI,WAAW,UAAa,aAAa,UAAa,WAAW,MAAM,aAAa,IAAI;AACtF,WAAO;AAAA,EACT;AAEA,SAAO;AAAA,IACL;AAAA,IACA;AAAA,EACF;AACF;;;ACpCA,SAAS,KAAAC,UAAS;AASX,SAAS,WACd,QACA,MACkB;AAClB,QAAM,QAAQ,OAAO,QAAQ,OAAO,KAAK,EACtC,OAAO,CAAC,CAAC,GAAG,MAAM,KAAK,SAAS,GAAQ,CAAC,EACzC,OAAO,CAAC,KAAK,CAAC,KAAK,KAAK,MAAM;AAC7B,QAAI,GAAG,IAAI;AACX,WAAO;AAAA,EACT,GAAG,CAAC,CAAiC;AAEvC,SAAOA,GAAE,OAAO,KAAK;AACvB;AAQO,SAAS,eACd,SACkB;AAClB,SAAO,QAAQ;AAAA,IACb,CAAC,QAAQ,WAAW,OAAO,MAAM,MAAM;AAAA,IACvCA,GAAE,OAAO,CAAC,CAAC;AAAA,EACb;AACF;;;ACrBA,IAAM,kBAAN,MAAsB;AAAA,EAAtB;AACE,SAAQ,SAA0B,CAAC;AAAA;AAAA,EAEnC,SAAS,OAAsB;AAC7B,UAAM,cAAc;AAAA,MAClB,GAAG;AAAA,MACH,IAAI,KAAK,OAAO,EAAE,SAAS,EAAE,EAAE,OAAO,GAAG,CAAC;AAAA,MAC1C,WAAW,KAAK,IAAI;AAAA,IACtB;AACA,SAAK,OAAO,KAAK,WAAW;AAAA,EAC9B;AAAA,EAEA,YAA6B;AAC3B,WAAO,CAAC,GAAG,KAAK,MAAM;AAAA,EACxB;AAAA,EAEA,cAAc;AACZ,SAAK,SAAS,CAAC;AAAA,EACjB;AAAA,EAEA,YAAY,OAA+D;AACzE,WAAO;AAAA,MACL,GAAG;AAAA,MACH,IAAI,KAAK,OAAO,EAAE,SAAS,EAAE,EAAE,OAAO,GAAG,CAAC;AAAA,MAC1C,WAAW,oBAAI,KAAK;AAAA,IACtB;AAAA,EACF;AACF;AAEO,IAAM,kBAAkB,IAAI,gBAAgB;;;AC7B5C,SAAS,mBAAmB,gBAAgC,SAAkB;AAEnF,QAAM,eAAe,YAAyC;AAC5D,QAAI,CAAC,QAAS,QAAO;AAErB,QAAI;AACF,YAAM,EAAE,MAAM,MAAM,IAAI,MAAM,eAC3B,KAAK,WAAW,EAChB,OAAO,IAAI,EACX,GAAG,QAAQ,OAAO,EAClB,GAAG,aAAa,IAAI,EACpB,OAAO;AAEV,UAAI,SAAS,CAAC,MAAM;AAClB,gBAAQ,KAAK,8BAA8B,OAAO;AAClD,eAAO;AAAA,MACT;AAEA,aAAO,KAAK;AAAA,IACd,SAAS,OAAO;AACd,cAAQ,MAAM,6BAA6B,KAAK;AAChD,aAAO;AAAA,IACT;AAAA,EACF;AAKA,QAAM,aAAa,OAAO,YAAqB;AAC7C,QAAI;AACF,YAAM,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,MAAM,eAAe,KAAK,QAAQ;AAC7D,UAAI,CAAC,MAAM;AACT,gBAAQ,KAAK,kDAAkD;AAC/D;AAAA,MACF;AAEA,YAAM,QAAQ,MAAM,aAAa;AAEjC,YAAM,SAAiC;AAAA,QACrC,gBAAgB;AAAA,QAChB,YAAY;AAAA,QACZ,UAAU;AAAA,MACZ;AAEA,YAAM,EAAE,MAAM,IAAI,MAAM,eAAe,IAAI,sBAAsB,MAAM;AAEvE,UAAI,OAAO;AACT,gBAAQ,MAAM,kCAAkC,KAAK;AAAA,MACvD,OAAO;AACL,gBAAQ,IAAI,oCAAoC;AAAA,MAClD;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,0BAA0B,KAAK;AAAA,IAC/C;AAAA,EACF;AAMA,QAAM,mBAAmB,OAAO,YAAoB;AAClD,QAAI;AACF,YAAM,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,MAAM,eAAe,KAAK,QAAQ;AAC7D,UAAI,CAAC,MAAM;AACT,gBAAQ,KAAK,kDAAkD;AAC/D;AAAA,MACF;AAEA,YAAM,QAAQ,MAAM,aAAa;AAEjC,YAAM,SAAiC;AAAA,QACrC,gBAAgB;AAAA,QAChB,YAAY;AAAA,QACZ,UAAU;AAAA,MACZ;AAEA,YAAM,EAAE,MAAM,IAAI,MAAM,eAAe,IAAI,sBAAsB,MAAM;AAEvE,UAAI,OAAO;AACT,gBAAQ,MAAM,yCAAyC,KAAK;AAAA,MAC9D,OAAO;AACL,gBAAQ,IAAI,2CAA2C;AAAA,MACzD;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,iCAAiC,KAAK;AAAA,IACtD;AAAA,EACF;AAKA,QAAM,cAAc,YAAY;AAC9B,QAAI;AACF,YAAM,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,MAAM,eAAe,KAAK,QAAQ;AAC7D,UAAI,CAAC,MAAM;AACT,gBAAQ,KAAK,kDAAkD;AAC/D;AAAA,MACF;AAEA,YAAM,QAAQ,MAAM,aAAa;AAEjC,YAAM,SAAiC;AAAA,QACrC,gBAAgB;AAAA,QAChB,UAAU;AAAA,MACZ;AAEA,YAAM,EAAE,MAAM,IAAI,MAAM,eAAe,IAAI,sBAAsB,MAAM;AAEvE,UAAI,OAAO;AACT,gBAAQ,MAAM,mCAAmC,KAAK;AAAA,MACxD,OAAO;AACL,gBAAQ,IAAI,qCAAqC;AAAA,MACnD;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,2BAA2B,KAAK;AAAA,IAChD;AAAA,EACF;AAKA,QAAM,sBAAsB,YAAY;AACtC,QAAI;AACF,YAAM,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,MAAM,eAAe,KAAK,QAAQ;AAC7D,UAAI,CAAC,MAAM;AACT,gBAAQ,KAAK,kDAAkD;AAC/D;AAAA,MACF;AAEA,YAAM,QAAQ,MAAM,aAAa;AAEjC,YAAM,SAAiC;AAAA,QACrC,gBAAgB;AAAA,QAChB,UAAU;AAAA,MACZ;AAEA,YAAM,EAAE,MAAM,IAAI,MAAM,eAAe,IAAI,sBAAsB,MAAM;AAEvE,UAAI,OAAO;AACT,gBAAQ,MAAM,uCAAuC,KAAK;AAAA,MAC5D,OAAO;AACL,gBAAQ,IAAI,yCAAyC;AAAA,MACvD;AAAA,IACF,SAAS,OAAO;AACd,cAAQ,MAAM,uCAAuC,KAAK;AAAA,IAC5D;AAAA,EACF;AAEA,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;;;ACrJA,IAAM,cAAN,MAAkB;AAAA,EAAlB;AACE,SAAQ,SAAuB,CAAC;AAAA;AAAA,EAEhC,IAAI,OAAyB;AAC3B,UAAM,qBAAqB;AAAA,MACzB,GAAG;AAAA,MACH,WAAW,KAAK,IAAI;AAAA,IACtB;AAEA,SAAK,OAAO,KAAK,kBAAkB;AAAA,EAGrC;AAAA,EAEA,MAAM,mBAAmB,OAIP;AAChB,SAAK,IAAI;AAAA,MACP,MAAM;AAAA,MACN,OAAO,MAAM;AAAA,MACb,QAAQ,MAAM;AAAA,MACd,MAAM,MAAM;AAAA,IACd,CAAC;AAAA,EACH;AAAA,EAEA,MAAM,iBAAiB,OAGL;AAChB,SAAK,IAAI;AAAA,MACP,MAAM;AAAA,MACN,OAAO,MAAM;AAAA,MACb,MAAM,MAAM;AAAA,IACd,CAAC;AAAA,EACH;AAAA,EAEA,MAAM,aAAa,OAID;AAChB,SAAK,IAAI;AAAA,MACP,MAAM;AAAA,MACN,OAAO,MAAM;AAAA,MACb,QAAQ,MAAM;AAAA,MACd,MAAM,MAAM;AAAA,IACd,CAAC;AAAA,EACH;AAAA,EAEA,MAAM,oBAA2C;AAC/C,WAAO,KAAK,OAAO,OAAO,WAAS,MAAM,SAAS,UAAU;AAAA,EAC9D;AAAA,EAEA,YAA0B;AACxB,WAAO,CAAC,GAAG,KAAK,MAAM;AAAA,EACxB;AAAA,EAEA,cAAoB;AAClB,SAAK,SAAS,CAAC;AAAA,EACjB;AACF;AAEO,IAAM,cAAc,IAAI,YAAY;AAGpC,IAAM,WAAW;AAEjB,SAAS,aAAa,QAAgB,MAAe,SAAyC;AACnG,cAAY,IAAI;AAAA,IACd,MAAM;AAAA,IACN;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AAEH;AAEO,SAAS,mBAAmB,QAAgB,MAAe,SAAyC;AACzG,cAAY,IAAI;AAAA,IACd,MAAM;AAAA,IACN;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AAEH;AAEO,SAASC,kBAAiB,QAAgB,MAAe,SAAyC;AACvG,cAAY,IAAI;AAAA,IACd,MAAM;AAAA,IACN;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AAEH;AAEO,SAAS,cAAc,QAAgB,MAAe,SAAyC;AACpG,cAAY,IAAI;AAAA,IACd,MAAM;AAAA;AAAA,IACN;AAAA,IACA;AAAA,IACA;AAAA,EACF,CAAC;AACH;;;ACrGO,SAAS,4BAA+C;AAC7D,MAAI;AACF,UAAM,aAAa;AAAA,MACjB,WAAW,mBAAmB;AAAA,MAC9B,UAAU,UAAU,YAAY;AAAA,MAChC,UAAU,UAAU,YAAY;AAAA,MAChC,QAAQ,GAAG,OAAO,KAAK,IAAI,OAAO,MAAM,IAAI,OAAO,UAAU;AAAA,MAC7D,UAAU,KAAK,eAAe,EAAE,gBAAgB,EAAE,YAAY;AAAA,MAC9D,QAAQ,qBAAqB;AAAA,MAC7B,OAAO,oBAAoB;AAAA,IAC7B;AAGA,UAAM,UAAU,iBAAiB,UAAU;AAG3C,UAAM,kBAAkB,KAAK,UAAU,UAAU;AACjD,UAAM,OAAO,eAAe,eAAe;AAE3C,UAAM,cAAiC;AAAA,MACrC;AAAA,MACA,WAAW,KAAK,IAAI;AAAA,MACpB;AAAA,MACA;AAAA,IACF;AAGA,kBAAc,QAAQ,sBAAsB,KAAK,UAAU,WAAW,CAAC;AAEvE,WAAO;AAAA,EACT,SAAS,OAAO;AACd,WAAO,4BAA4B;AAAA,EACrC;AACF;AAKO,SAAS,0BACd,mBACA,oBAKA;AACA,QAAM,UAAoB,CAAC;AAC3B,MAAI,qBAAqB;AACzB,QAAM,kBAAkB,OAAO,KAAK,kBAAkB,UAAU,EAAE;AAGlE,SAAO,QAAQ,kBAAkB,UAAU,EAAE,QAAQ,CAAC,CAAC,KAAK,KAAK,MAAM;AACrE,QAAI,mBAAmB,WAAW,GAAiD,MAAM,OAAO;AAC9F;AAAA,IACF,OAAO;AACL,cAAQ,KAAK,uBAAuB,GAAG,EAAE;AAAA,IAC3C;AAAA,EACF,CAAC;AAGD,QAAM,aAAc,qBAAqB,kBAAmB;AAG5D,QAAM,UAAU,cAAc;AAG9B,QAAM,WAAW,mBAAmB,YAAY,kBAAkB;AAClE,QAAM,SAAS,KAAK,KAAK,KAAK,KAAK;AAEnC,MAAI,WAAW,QAAQ;AACrB,YAAQ,KAAK,qBAAqB;AAClC,WAAO,EAAE,SAAS,OAAO,YAAY,QAAQ;AAAA,EAC/C;AAEA,MAAI,aAAa,IAAI;AACnB,YAAQ,KAAK,wCAAwC;AAAA,EACvD;AAEA,SAAO,EAAE,SAAS,YAAY,QAAQ;AACxC;AAKA,SAAS,uBAA+B;AACtC,MAAI;AACF,UAAM,SAAS,SAAS,cAAc,QAAQ;AAC9C,UAAM,MAAM,OAAO,WAAW,IAAI;AAElC,QAAI,CAAC,IAAK,QAAO;AAGjB,QAAI,eAAe;AACnB,QAAI,OAAO;AACX,QAAI,YAAY;AAChB,QAAI,SAAS,KAAK,GAAG,IAAI,EAAE;AAC3B,QAAI,YAAY;AAChB,QAAI,SAAS,gCAAyB,GAAG,EAAE;AAC3C,QAAI,YAAY;AAChB,QAAI,SAAS,gCAAyB,GAAG,EAAE;AAE3C,UAAM,UAAU,OAAO,UAAU;AACjC,WAAO,eAAe,OAAO;AAAA,EAC/B,SAAS,OAAO;AACd,WAAO;AAAA,EACT;AACF;AAKA,SAAS,sBAA8B;AACrC,MAAI;AACF,UAAM,SAAS,SAAS,cAAc,QAAQ;AAC9C,UAAM,KAAK,OAAO,WAAW,OAAO,KAAK,OAAO,WAAW,oBAAoB;AAE/E,QAAI,CAAC,GAAI,QAAO;AAEhB,UAAM,YAAY,GAAG,aAAa,2BAA2B;AAC7D,QAAI,CAAC,UAAW,QAAO;AAEvB,UAAM,SAAS,GAAG,aAAa,UAAU,qBAAqB;AAC9D,UAAM,WAAW,GAAG,aAAa,UAAU,uBAAuB;AAElE,WAAO,GAAG,MAAM,IAAI,QAAQ;AAAA,EAC9B,SAAS,OAAO;AACd,WAAO;AAAA,EACT;AACF;AAKA,SAAS,qBAA6B;AACpC,QAAM,KAAK,UAAU;AACrB,SAAO,eAAe,EAAE,EAAE,UAAU,GAAG,EAAE;AAC3C;AAKA,SAAS,iBAAiB,YAA4C;AACpE,QAAM,SAAS,OAAO,OAAO,UAAU,EAAE,KAAK,EAAE;AAChD,QAAM,aAAa,oBAAI,IAAoB;AAE3C,aAAW,QAAQ,QAAQ;AACzB,eAAW,IAAI,OAAO,WAAW,IAAI,IAAI,KAAK,KAAK,CAAC;AAAA,EACtD;AAEA,MAAI,UAAU;AACd,aAAW,SAAS,WAAW,OAAO,GAAG;AACvC,UAAM,cAAc,QAAQ,OAAO;AACnC,eAAW,cAAc,KAAK,KAAK,WAAW;AAAA,EAChD;AAEA,SAAO;AACT;AAKA,SAAS,eAAe,KAAqB;AAC3C,MAAI,OAAO;AACX,WAAS,IAAI,GAAG,IAAI,IAAI,QAAQ,KAAK;AACnC,UAAM,OAAO,IAAI,WAAW,CAAC;AAC7B,YAAS,QAAQ,KAAK,OAAQ;AAC9B,WAAO,OAAO;AAAA,EAChB;AACA,SAAO,KAAK,IAAI,IAAI,EAAE,SAAS,EAAE;AACnC;AAKA,SAAS,8BAAiD;AACxD,QAAM,aAAa;AAAA,IACjB,WAAW;AAAA,IACX,UAAU;AAAA,IACV,UAAU;AAAA,IACV,QAAQ;AAAA,IACR,UAAU;AAAA,EACZ;AAEA,SAAO;AAAA,IACL,MAAM,YAAY,KAAK,IAAI,CAAC,IAAI,KAAK,OAAO,EAAE,SAAS,EAAE,CAAC;AAAA,IAC1D,WAAW,KAAK,IAAI;AAAA,IACpB;AAAA,IACA,SAAS;AAAA;AAAA,EACX;AACF;;;AC/MO,SAAS,WAAW,MAAsC;AAC/D,QAAM,UAAU,OAAO,SAAS,YAAY,OAAO,SAAS,WACxD,IAAI,KAAK,IAAI,IACb;AAEJ,SAAO,QAAQ,mBAAmB,QAAW;AAAA,IAC3C,MAAM;AAAA,IACN,OAAO;AAAA,IACP,KAAK;AAAA,EACP,CAAC;AACH;AAKO,SAAS,eAAe,OAAe,eAAe,OAAO,SAAS,SAAiB;AAC5F,SAAO,IAAI,KAAK,aAAa,QAAQ;AAAA,IACnC,OAAO;AAAA,IACP,UAAU;AAAA,EACZ,CAAC,EAAE,OAAO,KAAK;AACjB;AAKO,SAAS,aACd,OACA,UAAoC,CAAC,GACrC,SAAS,SACD;AACR,SAAO,IAAI,KAAK,aAAa,QAAQ,OAAO,EAAE,OAAO,KAAK;AAC5D;AAKO,SAAS,cACd,OACA,SAAiB,SACjB,WAAmB,GACX;AACR,SAAO,IAAI,KAAK,aAAa,QAAQ;AAAA,IACnC,OAAO;AAAA,IACP,uBAAuB;AAAA,IACvB,uBAAuB;AAAA,EACzB,CAAC,EAAE,OAAO,QAAQ,GAAG;AACvB;AAKO,SAAS,oBAAoB,OAAe,SAAS,SAAiB;AAC3E,SAAO,IAAI,KAAK,aAAa,QAAQ;AAAA,IACnC,UAAU;AAAA,IACV,gBAAgB;AAAA,EAClB,CAAC,EAAE,OAAO,KAAK;AACjB;AAKO,SAAS,eAAe,OAAuB;AACpD,MAAI,UAAU,EAAG,QAAO;AAExB,QAAM,IAAI;AACV,QAAM,QAAQ,CAAC,SAAS,MAAM,MAAM,MAAM,MAAM,IAAI;AACpD,QAAM,IAAI,KAAK,MAAM,KAAK,IAAI,KAAK,IAAI,KAAK,IAAI,CAAC,CAAC;AAElD,SAAO,YAAY,QAAQ,KAAK,IAAI,GAAG,CAAC,GAAG,QAAQ,CAAC,CAAC,IAAI,MAAM,MAAM,CAAC;AACxE;;;AjB0DA;","names":["z","z","PermissionType","z","logSecurityEvent"]}

package/dist/validation-PM_iOaTI.d.ts

@@ -0,0 +1,159 @@
+import { z } from 'zod';
+
+/**
+ * @file Validation Types
+ * @package @jmruthers/pace-core
+ * @module Types/Validation
+ * @since 0.1.0
+ *
+ * Consolidated validation types and interfaces for the PACE Core library.
+ * This file contains all validation-related type definitions.
+ */
+
+interface ValidationError {
+    field: string;
+    message: string;
+    code: string;
+}
+interface ValidationResult<T = unknown> {
+    success: boolean;
+    data?: T;
+    errors?: ValidationError[];
+}
+declare const emailSchema: z.ZodString;
+declare const nameSchema: z.ZodString;
+declare const phoneSchema: z.ZodString;
+declare const urlSchema: z.ZodString;
+declare const dateSchema: z.ZodEffects<z.ZodString, string, string>;
+declare const passwordSchema: z.ZodString;
+declare const securePasswordSchema: z.ZodString;
+declare const loginSchema: z.ZodObject<{
+    email: z.ZodString;
+    password: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    email: string;
+    password: string;
+}, {
+    email: string;
+    password: string;
+}>;
+declare const registrationSchema: z.ZodEffects<z.ZodObject<{
+    email: z.ZodString;
+    password: z.ZodString;
+    confirmPassword: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    email: string;
+    password: string;
+    confirmPassword: string;
+}, {
+    email: string;
+    password: string;
+    confirmPassword: string;
+}>, {
+    email: string;
+    password: string;
+    confirmPassword: string;
+}, {
+    email: string;
+    password: string;
+    confirmPassword: string;
+}>;
+declare const secureLoginSchema: z.ZodObject<{
+    email: z.ZodString;
+    password: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    email: string;
+    password: string;
+}, {
+    email: string;
+    password: string;
+}>;
+declare const passwordResetSchema: z.ZodObject<{
+    email: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    email: string;
+}, {
+    email: string;
+}>;
+declare const changePasswordSchema: z.ZodEffects<z.ZodObject<{
+    currentPassword: z.ZodString;
+    newPassword: z.ZodString;
+    confirmPassword: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    confirmPassword: string;
+    currentPassword: string;
+    newPassword: string;
+}, {
+    confirmPassword: string;
+    currentPassword: string;
+    newPassword: string;
+}>, {
+    confirmPassword: string;
+    currentPassword: string;
+    newPassword: string;
+}, {
+    confirmPassword: string;
+    currentPassword: string;
+    newPassword: string;
+}>;
+declare const userProfileSchema: z.ZodObject<{
+    name: z.ZodString;
+    email: z.ZodString;
+    phone: z.ZodOptional<z.ZodString>;
+    website: z.ZodOptional<z.ZodString>;
+    bio: z.ZodOptional<z.ZodString>;
+}, "strip", z.ZodTypeAny, {
+    email: string;
+    name: string;
+    phone?: string | undefined;
+    website?: string | undefined;
+    bio?: string | undefined;
+}, {
+    email: string;
+    name: string;
+    phone?: string | undefined;
+    website?: string | undefined;
+    bio?: string | undefined;
+}>;
+declare const contactFormSchema: z.ZodObject<{
+    name: z.ZodString;
+    email: z.ZodString;
+    message: z.ZodString;
+}, "strip", z.ZodTypeAny, {
+    message: string;
+    email: string;
+    name: string;
+}, {
+    message: string;
+    email: string;
+    name: string;
+}>;
+type LoginFormValues = z.infer<typeof loginSchema>;
+type RegistrationFormValues = z.infer<typeof registrationSchema>;
+type PasswordResetFormValues = z.infer<typeof passwordResetSchema>;
+type ChangePasswordFormValues = z.infer<typeof changePasswordSchema>;
+type UserProfileFormValues = z.infer<typeof userProfileSchema>;
+type SecureLoginFormValues = {
+    email: string;
+    password: string;
+    csrfToken?: string;
+};
+type SecureRegistrationFormValues = {
+    email: string;
+    password: string;
+    confirmPassword: string;
+    csrfToken?: string;
+};
+type SecurePasswordResetFormValues = {
+    email: string;
+    csrfToken?: string;
+};
+type FormData = LoginFormData | RegistrationFormData | ProfileFormData | ContactFormData;
+type LoginFormData = z.infer<typeof loginSchema>;
+type RegistrationFormData = z.infer<typeof registrationSchema>;
+type ProfileFormData = z.infer<typeof userProfileSchema>;
+type ContactFormData = z.infer<typeof contactFormSchema>;
+declare function pickSchema<T extends z.ZodObject<any, any, any>, K extends keyof z.infer<T>>(schema: T, keys: K[]): z.ZodObject<Pick<z.infer<T>, K>>;
+declare function combineSchemas<T extends z.ZodObject<any, any, any>[]>(schemas: T): z.ZodObject<any, any, any>;
+
+export { type ChangePasswordFormValues as C, type FormData as F, type LoginFormValues as L, type PasswordResetFormValues as P, type RegistrationFormValues as R, type SecureLoginFormValues as S, type UserProfileFormValues as U, type ValidationError as V, type ValidationResult as a, passwordSchema as b, secureLoginSchema as c, dateSchema as d, emailSchema as e, passwordResetSchema as f, changePasswordSchema as g, userProfileSchema as h, contactFormSchema as i, type SecureRegistrationFormValues as j, type SecurePasswordResetFormValues as k, loginSchema as l, type LoginFormData as m, nameSchema as n, type RegistrationFormData as o, phoneSchema as p, type ProfileFormData as q, registrationSchema as r, securePasswordSchema as s, type ContactFormData as t, urlSchema as u, pickSchema as v, combineSchemas as w };

package/dist/validation.d.ts

@@ -0,0 +1,138 @@
+import { z } from 'zod';
+export { g as changePasswordSchema, w as combineSchemas, i as contactFormSchema, d as dateSchema, e as emailSchema, l as loginSchema, n as nameSchema, f as passwordResetSchema, b as passwordSchema, p as phoneSchema, v as pickSchema, r as registrationSchema, c as secureLoginSchema, s as securePasswordSchema, u as urlSchema, h as userProfileSchema } from './validation-PM_iOaTI.js';
+
+/**
+ * @file Input sanitization and validation schemas
+ * @description Enhanced validation schemas with security features
+ */
+
+/**
+ * Enhanced email schema with security checks
+ */
+declare const secureEmailSchema: z.ZodEffects<z.ZodEffects<z.ZodString, string, string>, string, string>;
+/**
+ * Sanitize email input
+ */
+declare function sanitizeEmail(email: string): string;
+/**
+ * Sanitize string input
+ */
+declare function sanitizeString(input: string): string;
+
+/**
+ * @file CSRF Protection Implementation
+ * @description Session-based CSRF token management with security enhancements
+ */
+interface CSRFTokenData {
+    token: string;
+    sessionId: string;
+    timestamp: number;
+    used: boolean;
+}
+declare class CSRFManager {
+    private tokenCache;
+    private readonly TOKEN_EXPIRY;
+    private readonly MAX_TOKENS_PER_SESSION;
+    /**
+     * Generate a new CSRF token for the current session
+     */
+    generateToken(sessionId: string): Promise<string>;
+    /**
+     * Validate and consume a CSRF token
+     */
+    validateToken(token: string, sessionId: string): Promise<boolean>;
+    /**
+     * Get current valid token for session
+     */
+    getCurrentToken(sessionId: string): Promise<string | null>;
+    /**
+     * Clean up expired and used tokens
+     */
+    private cleanupExpiredTokens;
+    /**
+     * Persist tokens to secure storage
+     */
+    private persistTokens;
+    /**
+     * Load tokens from secure storage
+     */
+    private loadTokens;
+    /**
+     * Clear all tokens for session
+     */
+    clearSession(sessionId: string): Promise<void>;
+}
+declare const csrfManager: CSRFManager;
+declare function generateCSRFToken(sessionId: string): Promise<string>;
+declare function validateCSRFToken(token: string, sessionId: string): Promise<boolean>;
+declare function getCSRFToken(sessionId: string): Promise<string | null>;
+
+/**
+ * @file SQL Injection Protection
+ * @description Utilities to prevent SQL injection attacks in dynamic queries
+ */
+
+/**
+ * Schema for validating and sanitizing search queries
+ */
+declare const searchQuerySchema: z.ZodEffects<z.ZodEffects<z.ZodString, string, string>, string, string>;
+/**
+ * Schema for validating table/column names
+ */
+declare const sqlIdentifierSchema: z.ZodEffects<z.ZodString, string, string>;
+/**
+ * Schema for validating order by clauses
+ */
+declare const orderBySchema: z.ZodString;
+/**
+ * Schema for validating limit/offset values
+ */
+declare const limitOffsetSchema: z.ZodNumber;
+/**
+ * Sanitize search query by removing dangerous characters
+ */
+declare function sanitizeSearchQuery(query: string): string;
+/**
+ * Escape special characters for LIKE queries
+ */
+declare function escapeLikeQuery(query: string): string;
+/**
+ * Validate and sanitize a dynamic filter object
+ */
+declare function sanitizeFilters(filters: Record<string, unknown>): Record<string, unknown>;
+/**
+ * Build safe query parameters for Supabase
+ */
+interface SafeQueryParams {
+    select?: string;
+    filters?: Record<string, unknown>;
+    orderBy?: string;
+    limit?: number;
+    offset?: number;
+    search?: string;
+}
+declare function buildSafeQueryParams(params: SafeQueryParams): SafeQueryParams;
+/**
+ * Detect potential SQL injection attempts
+ */
+declare function detectSQLInjection(input: string): {
+    isSuspicious: boolean;
+    patterns: string[];
+    riskLevel: 'low' | 'medium' | 'high' | 'critical';
+};
+
+/**
+ * @file Enhanced Password Schema with Security Validations
+ * @description Comprehensive password validation with security checks
+ */
+
+/**
+ * Password strength calculator
+ */
+declare function calculatePasswordStrength(password: string): {
+    score: number;
+    feedback: string[];
+    level: 'very-weak' | 'weak' | 'fair' | 'good' | 'strong';
+};
+
+export { type CSRFTokenData, type SafeQueryParams, buildSafeQueryParams, calculatePasswordStrength, csrfManager, detectSQLInjection, escapeLikeQuery, generateCSRFToken, getCSRFToken, limitOffsetSchema, orderBySchema, sanitizeEmail, sanitizeFilters, sanitizeSearchQuery, sanitizeString, searchQuerySchema, secureEmailSchema, sqlIdentifierSchema, validateCSRFToken };