@jterrats/open-orchestra 0.1.0

package/AGENTS.md

@@ -0,0 +1,151 @@
+# Engineering Standards — Codex
+
+> Stack-agnostic guardrails for all projects. Managed by Open Orchestra.
+
+## Rule Composition
+
+- Keep root files concise. Put detailed guidance in focused `rules/*.mdc` files and reference only the operating principles here.
+- Treat specialized rule files like skills: load the smallest relevant set for the task, and load roles, collaboration, testing, security, and delivery gates for broad delivery work.
+- Detailed rules live in `rules/*.mdc`; use the root file as an index and universal baseline.
+
+## Work Intake & Sequencing
+
+- Before each work block, confirm the GitHub issue exists, is technically refined, and provides the Backlog Item ID.
+- Refine expected domain/model changes, service/integration changes, controller/entry-point changes, data flow, risks, and test evidence before coding.
+- Implement in order: models/domain first, service/integration second, controllers/entry points third, evidence and handoff last.
+- Run Security review when work touches auth, secrets, PII, file paths, shell execution, network calls, dependencies, TLS, cookies, sessions, CORS, webhooks, or infrastructure.
+
+## UX/UI Product Experience
+
+- User-facing work must be mobile-first, responsive, accessible, and designed around complete end-user flows.
+- Screens must include friendly copy, clear next steps, tooltips for unclear controls, and usable loading, empty, error, success, and recovery states.
+- Game UI must teach controls, objectives, feedback loops, and failure recovery through contextual guides or progressive prompts.
+- UI delivery should include screenshots or recordings for key responsive breakpoints when practical.
+
+## SOLID & Clean Architecture
+
+- **SRP**: One module = one reason to change. Max 300 lines/file, 30 lines/function, 5 params.
+- **OCP**: Data-driven designs over per-variant functions. Handler maps over large switch blocks (>5 cases).
+- **LSP**: Subclasses honor parent contracts. Never override to throw "not supported".
+- **ISP**: No `any`, `object`, or `Record<string, unknown>` in public APIs. Use narrow types and generics.
+- **DIP**: Import from barrel exports, not deep paths. Static imports only — no `require()` in TypeScript.
+- **Separation of Concerns**: View = layout + events. Service = orchestration. Data = I/O + queries.
+
+## DRY & Clean Code
+
+- Single Source of Truth for all data, types, and config. Never copy-paste across packages.
+- Extract a function when two blocks share >5 identical lines.
+- Names reveal intent: `validateOrderItems()` not `processData()`. Booleans: `is`/`has`/`can`/`should`.
+- No hardcoded timeouts, CLI commands, or error messages. Use named constants.
+- Never commit dead code, `console.log` debris, or lint suppressions without a linked issue.
+- Comments explain **why**, not **what**. Delete obvious comments.
+
+## Development Engineering
+
+- APIs are product contracts: define request, response, error shape, auth, pagination, rate limits, compatibility, and idempotency before implementation.
+- Data models must use domain language, explicit invariants, clear ownership, safe migrations, and indexes based on real query patterns.
+- Frontend code must separate presentation, state, data access, and domain logic while preserving accessibility and responsive behavior.
+- Performance-sensitive work needs budgets, hot-path review, caching ownership, timeouts, retries, backoff, and measurement evidence.
+- Async workflows must be idempotent, observable, retry-safe, and explicit about ordering, partial failure, and dead-letter handling.
+- Config must be typed, centralized, environment-isolated, and validated at startup; feature flags need owners, rollout, and cleanup plans.
+- AI-assisted code must be grounded in the existing codebase, scoped to the agreed plan, tested, reviewed, and treated as untrusted until verified.
+
+## DevOps Tooling & Operations
+
+- Choose DevOps tools by capability: IaC, CI/CD, GitOps/deploy, orchestration, scalability, downtime strategy, observability, alerting, SLOs, FinOps, security, secrets, backups, load testing, and synthetic monitoring.
+- Non-trivial designs must include scalability, downtime, observability, security, cost, and recovery considerations.
+- Production services need actionable dashboards and alerts for availability, latency, errors, saturation, cost/capacity, and business-critical signals.
+- Rollouts must define strategy, rollback, feature flags, migrations, ownership, RTO/RPO when relevant, and post-release monitoring.
+
+## Security — Non-Negotiable
+
+- **No shell interpolation.** Use `execFile`/`spawn` with args arrays, not `exec` with template literals.
+- **No raw innerHTML with user data.** Escape or use `textContent` + `createElement`.
+- **Validate URLs** (`https://` only before `fetch()`). Validate file paths (no traversal).
+- **Never hardcode secrets.** Use env vars or secret managers. Rotate if accidentally committed.
+- Never expose stack traces, internal paths, or DB errors to users.
+- Static analysis and secret scanning must run before commit and in CI.
+
+## Data, Infrastructure & Encryption
+
+- **Encrypt at rest**: all databases, object storage, and backups must use AES-256 or equivalent. Enable by default.
+- **Encrypt in transit**: TLS 1.2+ for all connections. No plain HTTP, no self-signed certs in production.
+- **Passwords**: never store plaintext. Use bcrypt/scrypt/argon2 with per-user salt. Never use MD5/SHA for passwords.
+- **PII & sensitive data**: classify fields at design time. Apply column-level encryption or tokenization for SSN, credit cards, health data.
+- **Secrets management**: use a vault (AWS Secrets Manager, Azure Key Vault, HashiCorp Vault). Never env vars in container images.
+- **Environment segregation**: dev/staging/prod must be isolated (separate accounts/subscriptions, separate credentials, separate networks).
+- **Infrastructure as Code**: all infra must be reproducible via IaC (Terraform, Pulumi, CloudFormation). No manual console changes in staging/prod.
+- **Least privilege**: every service, user, and CI runner gets the minimum permissions needed. Review IAM quarterly.
+- **Database migrations**: version-controlled, idempotent, reversible. Never run DDL manually in production.
+- **Backups & DR**: automated daily backups with tested restore. Define RPO/RTO per environment.
+
+## Testing
+
+- Write tests before or alongside implementation. One assertion per test. Name as specifications.
+- **Arrange → Act → Assert.** Deterministic: no clock, network, or randomness without seeding.
+- Target 90%+ coverage for business logic. Page Object pattern for E2E.
+- Every development task must include unit tests for new or changed business logic before QA handoff.
+- Prefer Playwright for browser-based E2E, smoke, and regression automation.
+
+## Error Handling
+
+- Empty `catch {}` is forbidden. Log, propagate, or convert to user-friendly message.
+- Operational errors: handle gracefully. Programmer errors: crash fast, log, fix.
+- Include context in logs: operation name, IDs, duration.
+
+## Agent Roles
+
+- Use roles to force complete thinking, not to create silos. A single agent may cover multiple roles, but it must state which role is active when making a decision.
+- Start non-trivial tasks by identifying the needed roles and the lead role. Do not activate every role by default.
+- **Product Owner**: user value, acceptance criteria, scope boundaries, release readiness.
+- **Product Manager**: product strategy, trade-offs, sequencing, success metrics.
+- **Analyst**: requirements discovery, domain modeling, workflows, edge cases.
+- **Architect**: system boundaries, integration contracts, data flow, maintainability.
+- **Developer**: implementation quality, local consistency, typed and tested code.
+- **QA**: verification strategy, regression risk, release confidence.
+- **DevOps**: deployment, CI/CD, observability, rollback, operational readiness.
+- **Security**: threat modeling, data classification, identity, secrets, dependency risk.
+- **UX/UI Designer**: user experience, accessibility, responsive behavior, UI copy, and flow clarity.
+- **SRE**: SLOs, error budgets, incident response, capacity, resilience, and production reliability.
+- **Data Engineer/Analyst**: pipelines, analytics, reporting definitions, data quality, lineage, and metric correctness.
+- **DBA**: database performance, indexes, locking, migrations, replication, backups, and restore safety.
+- **Tech Lead/Engineering Manager**: technical coordination, sequencing, ownership, integration, and delivery coherence.
+- **Release Manager**: release coordination, rollout, rollback, communication, and go/no-go checklist.
+- **Support/Customer Success**: customer impact, support readiness, known issues, FAQs, and feedback loops.
+- **Compliance/Privacy**: regulatory requirements, PII, retention, consent, auditability, and data processing risk.
+- **Content/Technical Writer**: user docs, technical docs, runbooks, release notes, API examples, and help content.
+- **Game Designer**: mechanics, progression, difficulty, economy, onboarding, feedback loops, and player engagement.
+
+## Agent Collaboration
+
+- Agents must collaborate through explicit artifacts and review checkpoints, not isolated workstreams.
+- Start with a shared task brief: goal, backlog item, constraints, assumptions, risks, and definition of done.
+- Before implementation, discuss the proposed solution and architecture with the user: scope, modules, data flow, risks, trade-offs, test strategy, and expected evidence.
+- Product Owner and Analyst define acceptance criteria before Developer or QA treat the task as ready.
+- Architect and Security review designs before implementation when work touches boundaries, data, auth, infra, or external integrations.
+- UX, SRE, DBA, Release, Compliance, Technical Writer, and Game Designer review when their ownership area is impacted.
+- Every handoff must include: status, touched files/components, decisions, risks, test evidence, and remaining work.
+- Developer-to-QA handoff must include unit tests, exact test commands, known gaps, and recommended Playwright coverage.
+- Parallel work must be split by stable boundaries. Avoid duplicate edits to the same files; if overlap is unavoidable, assign one integration owner.
+- Review findings must include severity, affected artifact, expected behavior, actual risk, and a concrete recommendation.
+- Product, technical, verification, and security conflicts are resolved by Product Owner, Architect, QA, and Security respectively.
+
+## Delivery Quality Gates
+
+- Work must meet Definition of Ready before implementation and Definition of Done before release.
+- Development is complete only after developer verification, QA review, automation planning, and evidence capture.
+- Code review must verify behavior, data safety, security, reliability, tests, user impact, and evidence before style.
+- QA must produce a test plan covering acceptance criteria, regression areas, edge cases, data setup, and environment assumptions.
+- Completed delivery must include evidence: commands run, pass/fail result, logs, screenshots, traces, videos, and unresolved risks when relevant.
+- Product Owner gives go/no-go using QA results, automation status, unresolved defects, and accepted risks.
+- Important architecture choices need lightweight ADRs. Releases must include rollback, observability, and documentation updates when impacted.
+- Dependencies are treated as product risk: justify additions, pin via lockfiles, scan for CVEs, and keep updates atomic.
+
+## Git Discipline
+
+- Each commit compiles and passes tests. One logical change per commit.
+- A version-controlled pre-commit hook must run static analysis before every commit.
+- Never bypass hooks with `--no-verify` unless the user explicitly approves and a follow-up item records the reason.
+- Ask for **Backlog Item ID** first. Use Conventional Commits with backlog scope: `type(ID): short description`.
+- Mark breaking changes with `!` and a `BREAKING CHANGE:` footer.
+- Keep PRs <400 lines. Review your own diff before requesting review.

package/CLAUDE.md

@@ -0,0 +1,157 @@
+# Engineering Standards — Claude Code
+
+> Stack-agnostic guardrails for all projects. Managed by Open Orchestra.
+
+## Rule Composition
+
+- Keep root files concise. Put detailed guidance in focused `rules/*.mdc` files and reference only the operating principles here.
+- Treat specialized rule files like skills: load the smallest relevant set for the task, and load roles, collaboration, testing, security, and delivery gates for broad delivery work.
+- Detailed rules live in `rules/*.mdc`; use the root file as an index and universal baseline.
+
+## Work Intake & Sequencing
+
+- Before each work block, confirm the GitHub issue exists, is technically refined, and provides the Backlog Item ID.
+- Refine expected domain/model changes, service/integration changes, controller/entry-point changes, data flow, risks, and test evidence before coding.
+- Implement in order: models/domain first, service/integration second, controllers/entry points third, evidence and handoff last.
+- Run Security review when work touches auth, secrets, PII, file paths, shell execution, network calls, dependencies, TLS, cookies, sessions, CORS, webhooks, or infrastructure.
+
+## UX/UI Product Experience
+
+- User-facing work must be mobile-first, responsive, accessible, and designed around complete end-user flows.
+- Screens must include friendly copy, clear next steps, tooltips for unclear controls, and usable loading, empty, error, success, and recovery states.
+- Game UI must teach controls, objectives, feedback loops, and failure recovery through contextual guides or progressive prompts.
+- UI delivery should include screenshots or recordings for key responsive breakpoints when practical.
+
+## SOLID & Clean Architecture
+
+- **SRP**: One module = one reason to change. Max 300 lines/file, 30 lines/function, 5 params.
+- **OCP**: Data-driven designs over per-variant functions. Handler maps over large switch blocks (>5 cases).
+- **LSP**: Subclasses honor parent contracts. Never override to throw "not supported".
+- **ISP**: No `any`, `object`, or `Record<string, unknown>` in public APIs. Use narrow types and generics.
+- **DIP**: Import from barrel exports, not deep paths. Static imports only — no `require()` in TypeScript.
+- **Separation of Concerns**: View = layout + events. Service = orchestration. Data = I/O + queries.
+
+## DRY & Clean Code
+
+- Single Source of Truth for all data, types, and config. Never copy-paste across packages.
+- Extract a function when two blocks share >5 identical lines.
+- Names reveal intent: `validateOrderItems()` not `processData()`. Booleans: `is`/`has`/`can`/`should`.
+- No hardcoded timeouts, CLI commands, or error messages. Use named constants.
+- Never commit dead code, `console.log` debris, or lint suppressions without a linked issue.
+- Comments explain **why**, not **what**. Delete obvious comments.
+
+## Development Engineering
+
+- APIs are product contracts: define request, response, error shape, auth, pagination, rate limits, compatibility, and idempotency before implementation.
+- Data models must use domain language, explicit invariants, clear ownership, safe migrations, and indexes based on real query patterns.
+- Frontend code must separate presentation, state, data access, and domain logic while preserving accessibility and responsive behavior.
+- Performance-sensitive work needs budgets, hot-path review, caching ownership, timeouts, retries, backoff, and measurement evidence.
+- Async workflows must be idempotent, observable, retry-safe, and explicit about ordering, partial failure, and dead-letter handling.
+- Config must be typed, centralized, environment-isolated, and validated at startup; feature flags need owners, rollout, and cleanup plans.
+- AI-assisted code must be grounded in the existing codebase, scoped to the agreed plan, tested, reviewed, and treated as untrusted until verified.
+
+## DevOps Tooling & Operations
+
+- Choose DevOps tools by capability: IaC, CI/CD, GitOps/deploy, orchestration, scalability, downtime strategy, observability, alerting, SLOs, FinOps, security, secrets, backups, load testing, and synthetic monitoring.
+- Non-trivial designs must include scalability, downtime, observability, security, cost, and recovery considerations.
+- Production services need actionable dashboards and alerts for availability, latency, errors, saturation, cost/capacity, and business-critical signals.
+- Rollouts must define strategy, rollback, feature flags, migrations, ownership, RTO/RPO when relevant, and post-release monitoring.
+
+## Security — Non-Negotiable
+
+- **No shell interpolation.** Use `execFile`/`spawn` with args arrays, not `exec` with template literals.
+- **No raw innerHTML with user data.** Escape or use `textContent` + `createElement`.
+- **Validate URLs** (`https://` only before `fetch()`). Validate file paths (no traversal).
+- **Never hardcode secrets.** Use env vars or secret managers. Rotate if accidentally committed.
+- Never expose stack traces, internal paths, or DB errors to users.
+- Static analysis and secret scanning must run before commit and in CI.
+
+## Data, Infrastructure & Encryption
+
+- **Encrypt at rest**: all databases, object storage, and backups must use AES-256 or equivalent. Enable by default.
+- **Encrypt in transit**: TLS 1.2+ for all connections. No plain HTTP, no self-signed certs in production.
+- **Passwords**: never store plaintext. Use bcrypt/scrypt/argon2 with per-user salt. Never use MD5/SHA for passwords.
+- **PII & sensitive data**: classify fields at design time. Apply column-level encryption or tokenization for SSN, credit cards, health data.
+- **Secrets management**: use a vault (AWS Secrets Manager, Azure Key Vault, HashiCorp Vault). Never env vars in container images.
+- **Environment segregation**: dev/staging/prod must be isolated (separate accounts/subscriptions, separate credentials, separate networks).
+- **Infrastructure as Code**: all infra must be reproducible via IaC (Terraform, Pulumi, CloudFormation). No manual console changes in staging/prod.
+- **Least privilege**: every service, user, and CI runner gets the minimum permissions needed. Review IAM quarterly.
+- **Database migrations**: version-controlled, idempotent, reversible. Never run DDL manually in production.
+- **Backups & DR**: automated daily backups with tested restore. Define RPO/RTO per environment.
+
+## Testing
+
+- Write tests before or alongside implementation. One assertion per test. Name as specifications.
+- **Arrange → Act → Assert.** Deterministic: no clock, network, or randomness without seeding.
+- Target 90%+ coverage for business logic. Page Object pattern for E2E.
+- Every development task must include unit tests for new or changed business logic before QA handoff.
+- Prefer Playwright for browser-based E2E, smoke, and regression automation.
+
+## Error Handling
+
+- Empty `catch {}` is forbidden. Log, propagate, or convert to user-friendly message.
+- Operational errors: handle gracefully. Programmer errors: crash fast, log, fix.
+- Include context in logs: operation name, IDs, duration.
+
+## Agent Roles
+
+- Use roles to force complete thinking, not to create silos. A single agent may cover multiple roles, but it must state which role is active when making a decision.
+- Start non-trivial tasks by identifying the needed roles and the lead role. Do not activate every role by default.
+- **Product Owner**: user value, acceptance criteria, scope boundaries, release readiness.
+- **Product Manager**: product strategy, trade-offs, sequencing, success metrics.
+- **Analyst**: requirements discovery, domain modeling, workflows, edge cases.
+- **Architect**: system boundaries, integration contracts, data flow, maintainability.
+- **Developer**: implementation quality, local consistency, typed and tested code.
+- **QA**: verification strategy, regression risk, release confidence.
+- **DevOps**: deployment, CI/CD, observability, rollback, operational readiness.
+- **Security**: threat modeling, data classification, identity, secrets, dependency risk.
+- **UX/UI Designer**: user experience, accessibility, responsive behavior, UI copy, and flow clarity.
+- **SRE**: SLOs, error budgets, incident response, capacity, resilience, and production reliability.
+- **Data Engineer/Analyst**: pipelines, analytics, reporting definitions, data quality, lineage, and metric correctness.
+- **DBA**: database performance, indexes, locking, migrations, replication, backups, and restore safety.
+- **Tech Lead/Engineering Manager**: technical coordination, sequencing, ownership, integration, and delivery coherence.
+- **Release Manager**: release coordination, rollout, rollback, communication, and go/no-go checklist.
+- **Support/Customer Success**: customer impact, support readiness, known issues, FAQs, and feedback loops.
+- **Compliance/Privacy**: regulatory requirements, PII, retention, consent, auditability, and data processing risk.
+- **Content/Technical Writer**: user docs, technical docs, runbooks, release notes, API examples, and help content.
+- **Game Designer**: mechanics, progression, difficulty, economy, onboarding, feedback loops, and player engagement.
+
+## Agent Collaboration
+
+- Agents must collaborate through explicit artifacts and review checkpoints, not isolated workstreams.
+- Start with a shared task brief: goal, backlog item, constraints, assumptions, risks, and definition of done.
+- Before implementation, discuss the proposed solution and architecture with the user: scope, modules, data flow, risks, trade-offs, test strategy, and expected evidence.
+- Product Owner and Analyst define acceptance criteria before Developer or QA treat the task as ready.
+- Architect and Security review designs before implementation when work touches boundaries, data, auth, infra, or external integrations.
+- UX, SRE, DBA, Release, Compliance, Technical Writer, and Game Designer review when their ownership area is impacted.
+- Every handoff must include: status, touched files/components, decisions, risks, test evidence, and remaining work.
+- Developer-to-QA handoff must include unit tests, exact test commands, known gaps, and recommended Playwright coverage.
+- Parallel work must be split by stable boundaries. Avoid duplicate edits to the same files; if overlap is unavoidable, assign one integration owner.
+- Review findings must include severity, affected artifact, expected behavior, actual risk, and a concrete recommendation.
+- Product, technical, verification, and security conflicts are resolved by Product Owner, Architect, QA, and Security respectively.
+
+## Delivery Quality Gates
+
+- Work must meet Definition of Ready before implementation and Definition of Done before release.
+- Development is complete only after developer verification, QA review, automation planning, and evidence capture.
+- Code review must verify behavior, data safety, security, reliability, tests, user impact, and evidence before style.
+- QA must produce a test plan covering acceptance criteria, regression areas, edge cases, data setup, and environment assumptions.
+- Completed delivery must include evidence: commands run, pass/fail result, logs, screenshots, traces, videos, and unresolved risks when relevant.
+- Product Owner gives go/no-go using QA results, automation status, unresolved defects, and accepted risks.
+- Important architecture choices need lightweight ADRs. Releases must include rollback, observability, and documentation updates when impacted.
+- Dependencies are treated as product risk: justify additions, pin via lockfiles, scan for CVEs, and keep updates atomic.
+
+## Git Discipline
+
+- Each commit compiles and passes tests. One logical change per commit.
+- A version-controlled pre-commit hook must run static analysis before every commit.
+- Never bypass hooks with `--no-verify` unless the user explicitly approves and a follow-up item records the reason.
+- Ask for **Backlog Item ID** first. Use Conventional Commits with backlog scope: `type(ID): short description`.
+- Mark breaking changes with `!` and a `BREAKING CHANGE:` footer.
+- Keep PRs <400 lines. Review your own diff before requesting review.
+
+## Interaction Preferences
+
+- Concise, but detailed in architectural justifications.
+- Correct mistakes directly without apologizing.
+- **No Ninja Edits.** Summarize proposed changes and get agreement before modifying files.

package/README.md

@@ -0,0 +1,60 @@
+# Open Orchestra
+
+Open Orchestra is a local-first, provider-agnostic framework for governed multi-agent software delivery.
+
+It coordinates agents through task graphs, durable workflow files, handoffs, reviews, evidence, gates, locks, model routing, model provenance, and budget controls. The public CLI is `orchestra`.
+
+## Quick Start
+
+```bash
+npm install
+npm run build
+node bin/orchestra.js init
+node bin/orchestra.js status
+node bin/orchestra.js roles list --json
+```
+
+
+## Role Catalog
+
+Open Orchestra treats roles as capabilities and governance responsibilities, not only human job titles. Projects can keep roles inactive until risk, scope, impact area, or a workflow gate requires them.
+
+Core delivery roles remain available: Product Manager, Product Owner, Business Analyst, Architect, Developer, QA, Security, DevOps, SRE, DBA, UX/UI Designer, Release Manager, Compliance/Privacy, and Technical Writer.
+
+State-of-the-art orchestration roles are also included:
+
+- Parent Agent / Orchestrator for sequencing, handoffs, locks, escalation, and integration.
+- Planner for work breakdown, dependency mapping, and role activation rationale.
+- Reviewer / Critic for independent review before gates or handoffs.
+- Toolsmith / Integration Engineer for tools, MCPs, providers, adapters, and automation contracts.
+- Context Curator / Memory Manager for decisions, assumptions, stale context, and shared memory hygiene.
+- Policy / Governance Agent for approvals, budgets, workflow rules, and compliance gates.
+- Observability / Incident Response for telemetry, alerts, runbooks, and incident readiness.
+- Data / Privacy Officer for PII, retention, encryption, access, and data compliance.
+- Domain Expert for project-specific business or industry judgment.
+- UX Researcher / Accessibility Reviewer for mobile-first UX, accessibility, onboarding, and game/player guidance.
+- Performance Engineer for load, latency, scalability, caching, concurrency, and graceful degradation.
+- Game Designer for gameplay loops, tutorialization, player feedback, and balance risk.
+
+Each default role declares activation criteria, expected evidence, and gate participation so a parent agent can select only the roles needed for a task.
+
+## VS Code Control Center
+
+The first VS Code extension scaffold lives in `extensions/vscode-open-orchestra`. It provides an Open Orchestra activity bar view that consumes stable CLI JSON contracts for status, validation, graph plan, roles, approvals, evidence, config inspection, and Playwright evidence attachment. The CLI remains the source of truth; the extension does not parse human-readable terminal output or duplicate workflow file logic.
+
+Initial local usage:
+
+```bash
+# From this repo, build the CLI first
+npm run build
+# Open the extension folder in VS Code and run the extension host
+code extensions/vscode-open-orchestra
+```
+
+## Compatibility
+
+- Existing `.agent-workflow/` data remains valid.
+- Existing `AGENTS.md`, `CLAUDE.md`, Cursor rules, and generated instruction files remain supported.
+- `ORCHESTRA.md` is the intended future primary guide name and can coexist with current agent instruction files.
+
+See [docs/orchestra-mvp.md](docs/orchestra-mvp.md) for the current command reference.

package/bin/orchestra.js

@@ -0,0 +1,8 @@
+#!/usr/bin/env node
+import { runCli } from "../dist/cli.js";
+
+runCli(process.argv.slice(2)).catch((error) => {
+  const message = error instanceof Error ? error.message : String(error);
+  console.error(`orchestra: ${message}`);
+  process.exitCode = 1;
+});

package/dist/args.d.ts

@@ -0,0 +1,3 @@
+import type { CliOptions } from "./types.js";
+export declare function parseArgs(args: string[]): CliOptions;
+export declare function requireArg(options: CliOptions, key: string): string;

package/dist/args.js

@@ -0,0 +1,30 @@
+export function parseArgs(args) {
+    const result = { _: [] };
+    for (let index = 0; index < args.length; index += 1) {
+        const arg = args[index];
+        if (!arg) {
+            continue;
+        }
+        if (!arg.startsWith("--")) {
+            result._.push(arg);
+            continue;
+        }
+        const key = arg.slice(2);
+        const next = args[index + 1];
+        if (!next || next.startsWith("--")) {
+            result[key] = true;
+            continue;
+        }
+        result[key] = next;
+        index += 1;
+    }
+    return result;
+}
+export function requireArg(options, key) {
+    const value = options[key];
+    if (typeof value !== "string" || value.trim() === "") {
+        throw new Error(`missing required --${key}`);
+    }
+    return value;
+}
+//# sourceMappingURL=args.js.map

package/dist/args.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"args.js","sourceRoot":"","sources":["../src/args.ts"],"names":[],"mappings":"AAEA,MAAM,UAAU,SAAS,CAAC,IAAc;IACtC,MAAM,MAAM,GAAe,EAAE,CAAC,EAAE,EAAE,EAAE,CAAC;IACrC,KAAK,IAAI,KAAK,GAAG,CAAC,EAAE,KAAK,GAAG,IAAI,CAAC,MAAM,EAAE,KAAK,IAAI,CAAC,EAAE,CAAC;QACpD,MAAM,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC;QACxB,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,SAAS;QACX,CAAC;QACD,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YAC1B,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACnB,SAAS;QACX,CAAC;QACD,MAAM,GAAG,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;QACzB,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;QAC7B,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACnC,MAAM,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;YACnB,SAAS;QACX,CAAC;QACD,MAAM,CAAC,GAAG,CAAC,GAAG,IAAI,CAAC;QACnB,KAAK,IAAI,CAAC,CAAC;IACb,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,MAAM,UAAU,UAAU,CAAC,OAAmB,EAAE,GAAW;IACzD,MAAM,KAAK,GAAG,OAAO,CAAC,GAAG,CAAC,CAAC;IAC3B,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;QACrD,MAAM,IAAI,KAAK,CAAC,sBAAsB,GAAG,EAAE,CAAC,CAAC;IAC/C,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC"}

package/dist/cli.d.ts

@@ -0,0 +1,2 @@
+import type { CliIo } from "./types.js";
+export declare function runCli(argv: string[], io?: CliIo): Promise<void>;

package/dist/cli.js

@@ -0,0 +1,190 @@
+import { parseArgs } from "./args.js";
+import { approvalsApproveCommand, approvalsListCommand, approvalsRejectCommand, approvalsShowCommand, budgetCheckCommand, configShowCommand, decisionAddCommand, decisionListCommand, evidenceCommand, evidenceListCommand, gateCommand, graphPlanCommand, graphRunReadyCommand, graphRunNextCommand, handoffCommand, initCommand, lockClaimCommand, lockListCommand, lockReleaseCommand, modelProvidersCommand, modelCompleteFakeCommand, modelProvenanceAddCommand, modelProvenanceListCommand, modelSetRoleCommand, contextCommand, planCommand, runCommand, playwrightEvidenceCommand, playwrightPlanCommand, prSummaryCommand, readinessCommand, rolesListCommand, reviewCommand, reviewListCommand, statusCommand, summaryCommand, taskAddCommand, taskDepsCommand, taskListCommand, taskUpdateCommand, usageCommand, validateCommand, webCommand, } from "./commands.js";
+const help = `orchestra
+
+Commands:
+  init [--force]
+  status [--json]
+  validate [--json]
+  web [--host <localhost|127.0.0.1|::1>] [--port <port>]
+  serve [--host <localhost|127.0.0.1|::1>] [--port <port>]
+  task add --id <id> --title <title> --owner <role> [--paths <csv>]
+  task list [--json]
+  task update --id <id> [--status <status>] [--blocked-reason <text>]
+  task deps --id <id> [--json]
+  graph plan [--json]
+  graph run-next [--json]
+  graph run-ready [--json]
+  lock claim --task <id> --role <role> --path <path> --reason <text>
+  lock release --id <id>
+  lock list [--json]
+  roles list [--json]
+  summary [--json]
+  pr-summary --task <id> [--json]
+  context --task <id> [--json]
+  plan --task <id> [--json]
+  run --task <id> [--json] [--approve-budget-fallback --approver <name>] [--reject-budget-fallback]
+  readiness --task <id>
+  gate --gate <architecture> --task <id>
+  handoff --task <id> --from <role> --to <role> --changed <text> --behavior <text> --tests <text> --commands <text>
+  review --task <id> --role <role> --result <approve|block|changes> --findings <text> --recommendation <text> [--severity <level>]
+  review list [--json] [--task <id>]
+  decision add --task <id> --owner <role> --title <text> --context <text> --decision <text> --consequences <text>
+  decision list [--json] [--task <id>]
+  evidence add --task <id> --role <role> --type <type> --summary <text> [--path <file>] [--command <cmd>] [--exit-code <code>]
+  evidence list [--json] [--task <id>]
+  usage [--json] [--task <id>]
+  budget check [--json] [--task <id>]
+  config show [--json]
+  approvals list [--json] [--task <id>]
+  approvals show --id <id> [--json]
+  approvals approve --id <id> --approver <name> --rationale <text>
+  approvals reject --id <id> --approver <name> --rationale <text>
+  playwright plan --task <id> [--json]
+  playwright evidence --task <id> --kind <kind> --path <file> --summary <text> [--run-id <id>]
+  model providers [--json]
+  model set-role --role <role> --provider <provider> --model <model>
+  model complete-fake --provider <provider> --model <model> --prompt <text> [--fallbacks <csv>] [--fail-provider <csv>]
+  model provenance add --task <id> --role <role> --provider <provider> --model <model> --prompt-id <id> --response-id <id>
+  model provenance list [--json] [--task <id>]
+`;
+export async function runCli(argv, io = console) {
+    const [command, subcommand, ...rest] = argv;
+    if (!command || command === "--help" || command === "-h") {
+        io.log(help);
+        return;
+    }
+    if (command === "init") {
+        return initCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "status") {
+        return statusCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "validate") {
+        return validateCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "web" || command === "serve") {
+        return webCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "task" && subcommand === "add") {
+        return taskAddCommand(parseArgs(rest), io);
+    }
+    if (command === "task" && subcommand === "list") {
+        return taskListCommand(parseArgs(rest), io);
+    }
+    if (command === "task" && subcommand === "update") {
+        return taskUpdateCommand(parseArgs(rest), io);
+    }
+    if (command === "task" && subcommand === "deps") {
+        return taskDepsCommand(parseArgs(rest), io);
+    }
+    if (command === "graph" && subcommand === "plan") {
+        return graphPlanCommand(parseArgs(rest), io);
+    }
+    if (command === "graph" && subcommand === "run-next") {
+        return graphRunNextCommand(parseArgs(rest), io);
+    }
+    if (command === "graph" && subcommand === "run-ready") {
+        return graphRunReadyCommand(parseArgs(rest), io);
+    }
+    if (command === "lock" && subcommand === "claim") {
+        return lockClaimCommand(parseArgs(rest), io);
+    }
+    if (command === "lock" && subcommand === "release") {
+        return lockReleaseCommand(parseArgs(rest), io);
+    }
+    if (command === "lock" && subcommand === "list") {
+        return lockListCommand(parseArgs(rest), io);
+    }
+    if (command === "roles" && subcommand === "list") {
+        return rolesListCommand(parseArgs(rest), io);
+    }
+    if (command === "summary") {
+        return summaryCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "usage") {
+        return usageCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "budget" && subcommand === "check") {
+        return budgetCheckCommand(parseArgs(rest), io);
+    }
+    if (command === "config" && subcommand === "show") {
+        return configShowCommand(parseArgs(rest), io);
+    }
+    if (command === "approvals" && subcommand === "list") {
+        return approvalsListCommand(parseArgs(rest), io);
+    }
+    if (command === "approvals" && subcommand === "show") {
+        return approvalsShowCommand(parseArgs(rest), io);
+    }
+    if (command === "approvals" && subcommand === "approve") {
+        return approvalsApproveCommand(parseArgs(rest), io);
+    }
+    if (command === "approvals" && subcommand === "reject") {
+        return approvalsRejectCommand(parseArgs(rest), io);
+    }
+    if (command === "pr-summary") {
+        return prSummaryCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "context") {
+        return contextCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "plan") {
+        return planCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "run") {
+        return runCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "readiness") {
+        return readinessCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "gate") {
+        return gateCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "handoff") {
+        return handoffCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "review" && subcommand === "list") {
+        return reviewListCommand(parseArgs(rest), io);
+    }
+    if (command === "review") {
+        return reviewCommand(parseArgs(argv.slice(1)), io);
+    }
+    if (command === "decision" && subcommand === "add") {
+        return decisionAddCommand(parseArgs(rest), io);
+    }
+    if (command === "decision" && subcommand === "list") {
+        return decisionListCommand(parseArgs(rest), io);
+    }
+    if (command === "evidence" && subcommand === "add") {
+        return evidenceCommand(parseArgs(rest), io);
+    }
+    if (command === "evidence" && subcommand === "list") {
+        return evidenceListCommand(parseArgs(rest), io);
+    }
+    if (command === "playwright" && subcommand === "plan") {
+        return playwrightPlanCommand(parseArgs(rest), io);
+    }
+    if (command === "playwright" && subcommand === "evidence") {
+        return playwrightEvidenceCommand(parseArgs(rest), io);
+    }
+    if (command === "model" && subcommand === "providers") {
+        return modelProvidersCommand(parseArgs(rest), io);
+    }
+    if (command === "model" && subcommand === "set-role") {
+        return modelSetRoleCommand(parseArgs(rest), io);
+    }
+    if (command === "model" && subcommand === "complete-fake") {
+        return modelCompleteFakeCommand(parseArgs(rest), io);
+    }
+    if (command === "model" && subcommand === "provenance" && rest[0] === "add") {
+        return modelProvenanceAddCommand(parseArgs(rest.slice(1)), io);
+    }
+    if (command === "model" &&
+        subcommand === "provenance" &&
+        rest[0] === "list") {
+        return modelProvenanceListCommand(parseArgs(rest.slice(1)), io);
+    }
+    throw new Error(`unknown command: ${argv.join(" ")}`);
+}
+//# sourceMappingURL=cli.js.map

package/dist/cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cli.js","sourceRoot":"","sources":["../src/cli.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,SAAS,EAAE,MAAM,WAAW,CAAC;AACtC,OAAO,EACL,uBAAuB,EACvB,oBAAoB,EACpB,sBAAsB,EACtB,oBAAoB,EACpB,kBAAkB,EAClB,iBAAiB,EACjB,kBAAkB,EAClB,mBAAmB,EACnB,eAAe,EACf,mBAAmB,EACnB,WAAW,EACX,gBAAgB,EAChB,oBAAoB,EACpB,mBAAmB,EACnB,cAAc,EACd,WAAW,EACX,gBAAgB,EAChB,eAAe,EACf,kBAAkB,EAClB,qBAAqB,EACrB,wBAAwB,EACxB,yBAAyB,EACzB,0BAA0B,EAC1B,mBAAmB,EACnB,cAAc,EACd,WAAW,EACX,UAAU,EACV,yBAAyB,EACzB,qBAAqB,EACrB,gBAAgB,EAChB,gBAAgB,EAChB,gBAAgB,EAChB,aAAa,EACb,iBAAiB,EACjB,aAAa,EACb,cAAc,EACd,cAAc,EACd,eAAe,EACf,eAAe,EACf,iBAAiB,EACjB,YAAY,EACZ,eAAe,EACf,UAAU,GACX,MAAM,eAAe,CAAC;AAGvB,MAAM,IAAI,GAAG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CA+CZ,CAAC;AAEF,MAAM,CAAC,KAAK,UAAU,MAAM,CAC1B,IAAc,EACd,KAAY,OAAO;IAEnB,MAAM,CAAC,OAAO,EAAE,UAAU,EAAE,GAAG,IAAI,CAAC,GAAG,IAAI,CAAC;IAC5C,IAAI,CAAC,OAAO,IAAI,OAAO,KAAK,QAAQ,IAAI,OAAO,KAAK,IAAI,EAAE,CAAC;QACzD,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;QACb,OAAO;IACT,CAAC;IAED,IAAI,OAAO,KAAK,MAAM,EAAE,CAAC;QACvB,OAAO,WAAW,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACnD,CAAC;IACD,IAAI,OAAO,KAAK,QAAQ,EAAE,CAAC;QACzB,OAAO,aAAa,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACrD,CAAC;IACD,IAAI,OAAO,KAAK,UAAU,EAAE,CAAC;QAC3B,OAAO,eAAe,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACvD,CAAC;IACD,IAAI,OAAO,KAAK,KAAK,IAAI,OAAO,KAAK,OAAO,EAAE,CAAC;QAC7C,OAAO,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAClD,CAAC;IACD,IAAI,OAAO,KAAK,MAAM,IAAI,UAAU,KAAK,KAAK,EAAE,CAAC;QAC/C,OAAO,cAAc,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAC7C,CAAC;IACD,IAAI,OAAO,KAAK,MAAM,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QAChD,OAAO,eAAe,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAC9C,CAAC;IACD,IAAI,OAAO,KAAK,MAAM,IAAI,UAAU,KAAK,QAAQ,EAAE,CAAC;QAClD,OAAO,iBAAiB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAChD,CAAC;IACD,IAAI,OAAO,KAAK,MAAM,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QAChD,OAAO,eAAe,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAC9C,CAAC;IACD,IAAI,OAAO,KAAK,OAAO,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QACjD,OAAO,gBAAgB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,OAAO,KAAK,OAAO,IAAI,UAAU,KAAK,UAAU,EAAE,CAAC;QACrD,OAAO,mBAAmB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAClD,CAAC;IACD,IAAI,OAAO,KAAK,OAAO,IAAI,UAAU,KAAK,WAAW,EAAE,CAAC;QACtD,OAAO,oBAAoB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACnD,CAAC;IACD,IAAI,OAAO,KAAK,MAAM,IAAI,UAAU,KAAK,OAAO,EAAE,CAAC;QACjD,OAAO,gBAAgB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,OAAO,KAAK,MAAM,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;QACnD,OAAO,kBAAkB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACjD,CAAC;IACD,IAAI,OAAO,KAAK,MAAM,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QAChD,OAAO,eAAe,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAC9C,CAAC;IACD,IAAI,OAAO,KAAK,OAAO,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QACjD,OAAO,gBAAgB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,OAAO,cAAc,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACtD,CAAC;IACD,IAAI,OAAO,KAAK,OAAO,EAAE,CAAC;QACxB,OAAO,YAAY,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACpD,CAAC;IACD,IAAI,OAAO,KAAK,QAAQ,IAAI,UAAU,KAAK,OAAO,EAAE,CAAC;QACnD,OAAO,kBAAkB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACjD,CAAC;IACD,IAAI,OAAO,KAAK,QAAQ,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QAClD,OAAO,iBAAiB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAChD,CAAC;IACD,IAAI,OAAO,KAAK,WAAW,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QACrD,OAAO,oBAAoB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACnD,CAAC;IACD,IAAI,OAAO,KAAK,WAAW,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QACrD,OAAO,oBAAoB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACnD,CAAC;IACD,IAAI,OAAO,KAAK,WAAW,IAAI,UAAU,KAAK,SAAS,EAAE,CAAC;QACxD,OAAO,uBAAuB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACtD,CAAC;IACD,IAAI,OAAO,KAAK,WAAW,IAAI,UAAU,KAAK,QAAQ,EAAE,CAAC;QACvD,OAAO,sBAAsB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACrD,CAAC;IACD,IAAI,OAAO,KAAK,YAAY,EAAE,CAAC;QAC7B,OAAO,gBAAgB,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACxD,CAAC;IACD,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,OAAO,cAAc,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACtD,CAAC;IACD,IAAI,OAAO,KAAK,MAAM,EAAE,CAAC;QACvB,OAAO,WAAW,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACnD,CAAC;IACD,IAAI,OAAO,KAAK,KAAK,EAAE,CAAC;QACtB,OAAO,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAClD,CAAC;IACD,IAAI,OAAO,KAAK,WAAW,EAAE,CAAC;QAC5B,OAAO,gBAAgB,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACxD,CAAC;IACD,IAAI,OAAO,KAAK,MAAM,EAAE,CAAC;QACvB,OAAO,WAAW,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACnD,CAAC;IACD,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC1B,OAAO,cAAc,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACtD,CAAC;IACD,IAAI,OAAO,KAAK,QAAQ,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QAClD,OAAO,iBAAiB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAChD,CAAC;IACD,IAAI,OAAO,KAAK,QAAQ,EAAE,CAAC;QACzB,OAAO,aAAa,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACrD,CAAC;IACD,IAAI,OAAO,KAAK,UAAU,IAAI,UAAU,KAAK,KAAK,EAAE,CAAC;QACnD,OAAO,kBAAkB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACjD,CAAC;IACD,IAAI,OAAO,KAAK,UAAU,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QACpD,OAAO,mBAAmB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAClD,CAAC;IACD,IAAI,OAAO,KAAK,UAAU,IAAI,UAAU,KAAK,KAAK,EAAE,CAAC;QACnD,OAAO,eAAe,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAC9C,CAAC;IACD,IAAI,OAAO,KAAK,UAAU,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QACpD,OAAO,mBAAmB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAClD,CAAC;IACD,IAAI,OAAO,KAAK,YAAY,IAAI,UAAU,KAAK,MAAM,EAAE,CAAC;QACtD,OAAO,qBAAqB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACpD,CAAC;IACD,IAAI,OAAO,KAAK,YAAY,IAAI,UAAU,KAAK,UAAU,EAAE,CAAC;QAC1D,OAAO,yBAAyB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACxD,CAAC;IACD,IAAI,OAAO,KAAK,OAAO,IAAI,UAAU,KAAK,WAAW,EAAE,CAAC;QACtD,OAAO,qBAAqB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACpD,CAAC;IACD,IAAI,OAAO,KAAK,OAAO,IAAI,UAAU,KAAK,UAAU,EAAE,CAAC;QACrD,OAAO,mBAAmB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IAClD,CAAC;IACD,IAAI,OAAO,KAAK,OAAO,IAAI,UAAU,KAAK,eAAe,EAAE,CAAC;QAC1D,OAAO,wBAAwB,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;IACvD,CAAC;IACD,IAAI,OAAO,KAAK,OAAO,IAAI,UAAU,KAAK,YAAY,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,KAAK,EAAE,CAAC;QAC5E,OAAO,yBAAyB,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IACjE,CAAC;IACD,IACE,OAAO,KAAK,OAAO;QACnB,UAAU,KAAK,YAAY;QAC3B,IAAI,CAAC,CAAC,CAAC,KAAK,MAAM,EAClB,CAAC;QACD,OAAO,0BAA0B,CAAC,SAAS,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;IAClE,CAAC;IAED,MAAM,IAAI,KAAK,CAAC,oBAAoB,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;AACxD,CAAC"}