@kya-os/mcp-i 0.1.0-alpha.2.9 → 0.1.0-alpha.3.0

package/dist/{crypto.js → cjs/crypto.js}

@@ -113,6 +113,7 @@ async function generateNonce(length = 32) {
     const crypto = await loadCrypto();
     return crypto.randomBytes(length).toString('hex');
 }
+let cachedCrypto = null;
 function generateNonceSync(length = 32) {
     if (typeof globalThis.crypto !== 'undefined' && globalThis.crypto.getRandomValues) {
         const bytes = new Uint8Array(length);
@@ -120,10 +121,24 @@ function generateNonceSync(length = 32) {
         return Buffer.from(bytes).toString('hex');
     }
     else {
-        const crypto = require('crypto');
-        return crypto.randomBytes(length).toString('hex');
+        if (!cachedCrypto) {
+            const hex = '0123456789abcdef';
+            let output = '';
+            for (let i = 0; i < length * 2; i++) {
+                output += hex[Math.floor(Math.random() * 16)];
+            }
+            console.warn('Using Math.random for nonce generation - not cryptographically secure!');
+            return output;
+        }
+        return cachedCrypto.randomBytes(length).toString('hex');
     }
 }
+if (typeof process !== 'undefined' && process.versions && process.versions.node) {
+    loadCrypto().then(crypto => {
+        cachedCrypto = crypto;
+    }).catch(() => {
+    });
+}
 function constantTimeEqual(a, b) {
     if (a.length !== b.length) {
         return false;

package/dist/esm/auto.d.ts

@@ -0,0 +1,13 @@
+/**
+ * Auto-initialization for MCP Identity
+ *
+ * Just import this file to automatically enable MCP-I for any MCP server:
+ *
+ * ```typescript
+ * import "@kya-os/mcp-i/auto";
+ * ```
+ *
+ * That's it! Your MCP server now has identity.
+ */
+export {};
+//# sourceMappingURL=auto.d.ts.map

package/dist/esm/auto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"auto.d.ts","sourceRoot":"","sources":["../../src/auto.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG"}

package/dist/esm/auto.js

@@ -0,0 +1,30 @@
+/**
+ * Auto-initialization for MCP Identity
+ *
+ * Just import this file to automatically enable MCP-I for any MCP server:
+ *
+ * ```typescript
+ * import "@kya-os/mcp-i/auto";
+ * ```
+ *
+ * That's it! Your MCP server now has identity.
+ */
+import { enableMCPIdentity } from './index.js';
+import { getLogger } from './logger.js';
+// Auto-initialize on import
+(async () => {
+    try {
+        await enableMCPIdentity();
+    }
+    catch (error) {
+        const logger = getLogger();
+        logger.error('[MCP-I] Failed to auto-initialize:', error);
+        // More detailed error logging for debugging
+        if (error.stack) {
+            logger.debug('[MCP-I] Error stack:', error.stack);
+        }
+        // Don't throw the error - allow the server to continue running
+        // even if MCP-I initialization fails
+    }
+})();
+//# sourceMappingURL=auto.js.map

package/dist/esm/auto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"auto.js","sourceRoot":"","sources":["../../src/auto.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;GAUG;AAEH,OAAO,EAAE,iBAAiB,EAAE,MAAM,SAAS,CAAC;AAC5C,OAAO,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAErC,4BAA4B;AAC5B,CAAC,KAAK,IAAI,EAAE;IACV,IAAI,CAAC;QACH,MAAM,iBAAiB,EAAE,CAAC;IAC5B,CAAC;IAAC,OAAO,KAAU,EAAE,CAAC;QACpB,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;QAC3B,MAAM,CAAC,KAAK,CAAC,oCAAoC,EAAE,KAAK,CAAC,CAAC;QAE1D,4CAA4C;QAC5C,IAAI,KAAK,CAAC,KAAK,EAAE,CAAC;YAChB,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC;QACpD,CAAC;QAED,+DAA+D;QAC/D,qCAAqC;IACvC,CAAC;AACH,CAAC,CAAC,EAAE,CAAC"}

package/dist/esm/crypto.d.ts

@@ -0,0 +1,51 @@
+/**
+ * Optimized cryptographic utilities for MCP-I with lazy loading
+ * Implements Ed25519 signing and verification with caching
+ */
+/**
+ * Precomputed key pair with cached base64 strings
+ */
+export interface PrecomputedKeyPair {
+    publicKey: string;
+    privateKey: string;
+    publicKeyBytes?: Uint8Array;
+    privateKeyBytes?: Uint8Array;
+}
+/**
+ * Generate a new Ed25519 key pair with precomputed values
+ */
+export declare function generateKeyPair(): Promise<PrecomputedKeyPair>;
+/**
+ * Sign a message with Ed25519 (with caching)
+ */
+export declare function sign(message: string | Buffer, privateKeyBase64: string): Promise<string>;
+/**
+ * Verify an Ed25519 signature
+ */
+export declare function verify(message: string | Buffer, signatureBase64: string, publicKeyBase64: string): Promise<boolean>;
+/**
+ * Generate a cryptographically secure nonce
+ */
+export declare function generateNonce(length?: number): Promise<string>;
+export declare function generateNonceSync(length?: number): string;
+/**
+ * Constant-time string comparison to prevent timing attacks
+ */
+export declare function constantTimeEqual(a: string, b: string): boolean;
+/**
+ * Convert Ed25519 public key to did:key format
+ */
+export declare function publicKeyToDid(publicKeyBase64: string): string;
+/**
+ * Encrypt data using AES-256-GCM (for key storage)
+ */
+export declare function encrypt(data: string, password: string): Promise<string>;
+/**
+ * Decrypt data using AES-256-GCM
+ */
+export declare function decrypt(encryptedData: string, password: string): Promise<string>;
+/**
+ * Clear signature cache (useful for testing or memory management)
+ */
+export declare function clearCache(): void;
+//# sourceMappingURL=crypto.d.ts.map

package/dist/esm/crypto.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto.d.ts","sourceRoot":"","sources":["../../src/crypto.ts"],"names":[],"mappings":"AAAA;;;GAGG;AA2BH;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,cAAc,CAAC,EAAE,UAAU,CAAC;IAC5B,eAAe,CAAC,EAAE,UAAU,CAAC;CAC9B;AAED;;GAEG;AACH,wBAAsB,eAAe,IAAI,OAAO,CAAC,kBAAkB,CAAC,CAgBnE;AAED;;GAEG;AACH,wBAAsB,IAAI,CACxB,OAAO,EAAE,MAAM,GAAG,MAAM,EACxB,gBAAgB,EAAE,MAAM,GACvB,OAAO,CAAC,MAAM,CAAC,CAgCjB;AAED;;GAEG;AACH,wBAAsB,MAAM,CAC1B,OAAO,EAAE,MAAM,GAAG,MAAM,EACxB,eAAe,EAAE,MAAM,EACvB,eAAe,EAAE,MAAM,GACtB,OAAO,CAAC,OAAO,CAAC,CAclB;AAED;;GAEG;AACH,wBAAsB,aAAa,CAAC,MAAM,GAAE,MAAW,GAAG,OAAO,CAAC,MAAM,CAAC,CAGxE;AAQD,wBAAgB,iBAAiB,CAAC,MAAM,GAAE,MAAW,GAAG,MAAM,CAqB7D;AAWD;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,OAAO,CAW/D;AAED;;GAEG;AACH,wBAAgB,cAAc,CAAC,eAAe,EAAE,MAAM,GAAG,MAAM,CAQ9D;AAED;;GAEG;AACH,wBAAsB,OAAO,CAAC,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CA2C7E;AAED;;GAEG;AACH,wBAAsB,OAAO,CAAC,aAAa,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC,CA6DtF;AAED;;GAEG;AACH,wBAAgB,UAAU,IAAI,IAAI,CAEjC"}

package/dist/esm/crypto.js

@@ -0,0 +1,230 @@
+/**
+ * Optimized cryptographic utilities for MCP-I with lazy loading
+ * Implements Ed25519 signing and verification with caching
+ */
+// Lazy-loaded modules
+let ed25519 = null;
+let cryptoModule = null;
+// Cache for computed values
+const signatureCache = new Map();
+const MAX_CACHE_SIZE = 100;
+/**
+ * Lazy load crypto dependencies
+ */
+async function loadEd25519() {
+    if (!ed25519) {
+        ed25519 = await import('@noble/ed25519');
+    }
+    return ed25519;
+}
+async function loadCrypto() {
+    if (!cryptoModule) {
+        cryptoModule = await import('crypto');
+    }
+    return cryptoModule;
+}
+/**
+ * Generate a new Ed25519 key pair with precomputed values
+ */
+export async function generateKeyPair() {
+    const ed = await loadEd25519();
+    const privateKeyBytes = ed.utils.randomPrivateKey();
+    const publicKeyBytes = await ed.getPublicKeyAsync(privateKeyBytes);
+    // Precompute base64 strings
+    const publicKey = Buffer.from(publicKeyBytes).toString('base64');
+    const privateKey = Buffer.from(privateKeyBytes).toString('base64');
+    return {
+        publicKey,
+        privateKey,
+        publicKeyBytes,
+        privateKeyBytes
+    };
+}
+/**
+ * Sign a message with Ed25519 (with caching)
+ */
+export async function sign(message, privateKeyBase64) {
+    // Create cache key
+    const messageStr = typeof message === 'string' ? message : message.toString('base64');
+    const cacheKey = `${privateKeyBase64}:${messageStr}`;
+    // Check cache
+    const cached = signatureCache.get(cacheKey);
+    if (cached) {
+        return cached;
+    }
+    // Perform signing
+    const ed = await loadEd25519();
+    const messageBuffer = typeof message === 'string'
+        ? Buffer.from(message, 'utf-8')
+        : message;
+    const privateKey = Buffer.from(privateKeyBase64, 'base64');
+    const signature = await ed.signAsync(messageBuffer, privateKey);
+    const signatureBase64 = Buffer.from(signature).toString('base64');
+    // Cache result (with size limit)
+    if (signatureCache.size >= MAX_CACHE_SIZE) {
+        // Remove oldest entry
+        const firstKey = signatureCache.keys().next().value;
+        if (firstKey) {
+            signatureCache.delete(firstKey);
+        }
+    }
+    signatureCache.set(cacheKey, signatureBase64);
+    return signatureBase64;
+}
+/**
+ * Verify an Ed25519 signature
+ */
+export async function verify(message, signatureBase64, publicKeyBase64) {
+    try {
+        const ed = await loadEd25519();
+        const messageBuffer = typeof message === 'string'
+            ? Buffer.from(message, 'utf-8')
+            : message;
+        const signature = Buffer.from(signatureBase64, 'base64');
+        const publicKey = Buffer.from(publicKeyBase64, 'base64');
+        return await ed.verifyAsync(signature, messageBuffer, publicKey);
+    }
+    catch {
+        return false;
+    }
+}
+/**
+ * Generate a cryptographically secure nonce
+ */
+export async function generateNonce(length = 32) {
+    const crypto = await loadCrypto();
+    return crypto.randomBytes(length).toString('hex');
+}
+/**
+ * Generate nonce synchronously (for performance-critical paths)
+ * Uses cached crypto module if available
+ */
+let cachedCrypto = null;
+export function generateNonceSync(length = 32) {
+    if (typeof globalThis.crypto !== 'undefined' && globalThis.crypto.getRandomValues) {
+        // Use Web Crypto API if available
+        const bytes = new Uint8Array(length);
+        globalThis.crypto.getRandomValues(bytes);
+        return Buffer.from(bytes).toString('hex');
+    }
+    else {
+        // Try to use cached crypto module
+        if (!cachedCrypto) {
+            // In Node.js environment, we should have already loaded crypto module
+            // This is a fallback for edge cases
+            const hex = '0123456789abcdef';
+            let output = '';
+            for (let i = 0; i < length * 2; i++) {
+                output += hex[Math.floor(Math.random() * 16)];
+            }
+            console.warn('Using Math.random for nonce generation - not cryptographically secure!');
+            return output;
+        }
+        return cachedCrypto.randomBytes(length).toString('hex');
+    }
+}
+// Initialize crypto module cache on load (for Node.js environments)
+if (typeof process !== 'undefined' && process.versions && process.versions.node) {
+    loadCrypto().then(crypto => {
+        cachedCrypto = crypto;
+    }).catch(() => {
+        // Ignore errors - will fallback to other methods
+    });
+}
+/**
+ * Constant-time string comparison to prevent timing attacks
+ */
+export function constantTimeEqual(a, b) {
+    if (a.length !== b.length) {
+        return false;
+    }
+    let result = 0;
+    for (let i = 0; i < a.length; i++) {
+        result |= a.charCodeAt(i) ^ b.charCodeAt(i);
+    }
+    return result === 0;
+}
+/**
+ * Convert Ed25519 public key to did:key format
+ */
+export function publicKeyToDid(publicKeyBase64) {
+    const publicKey = Buffer.from(publicKeyBase64, 'base64');
+    // Multicodec ed25519-pub header (0xed 0x01)
+    const multicodec = Buffer.from([0xed, 0x01]);
+    const multikey = Buffer.concat([multicodec, publicKey]);
+    // Base58 encode (simplified - in production use a proper base58 library)
+    return `did:key:z${multikey.toString('base64').replace(/\+/g, '-').replace(/\//g, '_').replace(/=/g, '')}`;
+}
+/**
+ * Encrypt data using AES-256-GCM (for key storage)
+ */
+export async function encrypt(data, password) {
+    const encoder = new TextEncoder();
+    const salt = new Uint8Array(16);
+    globalThis.crypto.getRandomValues(salt);
+    // Derive key from password
+    const keyMaterial = await globalThis.crypto.subtle.importKey('raw', encoder.encode(password), 'PBKDF2', false, ['deriveKey']);
+    const key = await globalThis.crypto.subtle.deriveKey({
+        name: 'PBKDF2',
+        salt,
+        iterations: 100000,
+        hash: 'SHA-256'
+    }, keyMaterial, { name: 'AES-GCM', length: 256 }, false, ['encrypt']);
+    const iv = new Uint8Array(12);
+    globalThis.crypto.getRandomValues(iv);
+    const encrypted = await globalThis.crypto.subtle.encrypt({ name: 'AES-GCM', iv }, key, encoder.encode(data));
+    // Combine salt + iv + encrypted data
+    const combined = new Uint8Array(salt.length + iv.length + encrypted.byteLength);
+    combined.set(salt);
+    combined.set(iv, salt.length);
+    combined.set(new Uint8Array(encrypted), salt.length + iv.length);
+    return 'enc:' + Buffer.from(combined).toString('base64');
+}
+/**
+ * Decrypt data using AES-256-GCM
+ */
+export async function decrypt(encryptedData, password) {
+    // Handle enc: prefix
+    let dataToDecrypt = encryptedData;
+    if (encryptedData.startsWith('enc:')) {
+        dataToDecrypt = encryptedData.slice(4);
+    }
+    // If data doesn't look like base64 encrypted data, return as-is
+    if (!dataToDecrypt || dataToDecrypt.length < 44) {
+        return encryptedData;
+    }
+    const encoder = new TextEncoder();
+    const decoder = new TextDecoder();
+    try {
+        const combined = Buffer.from(dataToDecrypt, 'base64');
+        // Check minimum size for encrypted data (salt + iv + auth tag + at least 1 byte)
+        if (combined.length < 29) {
+            return encryptedData;
+        }
+        // Extract salt, iv, and encrypted data
+        const salt = combined.slice(0, 16);
+        const iv = combined.slice(16, 28);
+        const encrypted = combined.slice(28);
+        // Derive key from password
+        const keyMaterial = await globalThis.crypto.subtle.importKey('raw', encoder.encode(password), 'PBKDF2', false, ['deriveKey']);
+        const key = await globalThis.crypto.subtle.deriveKey({
+            name: 'PBKDF2',
+            salt: new Uint8Array(salt),
+            iterations: 100000,
+            hash: 'SHA-256'
+        }, keyMaterial, { name: 'AES-GCM', length: 256 }, false, ['decrypt']);
+        const decrypted = await globalThis.crypto.subtle.decrypt({ name: 'AES-GCM', iv: new Uint8Array(iv) }, key, new Uint8Array(encrypted));
+        return decoder.decode(decrypted);
+    }
+    catch (error) {
+        // If decryption fails, throw error
+        throw new Error('Failed to decrypt data: invalid password or corrupted data');
+    }
+}
+/**
+ * Clear signature cache (useful for testing or memory management)
+ */
+export function clearCache() {
+    signatureCache.clear();
+}
+//# sourceMappingURL=crypto.js.map

package/dist/esm/crypto.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"crypto.js","sourceRoot":"","sources":["../../src/crypto.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,sBAAsB;AACtB,IAAI,OAAO,GAA2C,IAAI,CAAC;AAC3D,IAAI,YAAY,GAAmC,IAAI,CAAC;AAExD,4BAA4B;AAC5B,MAAM,cAAc,GAAG,IAAI,GAAG,EAAkB,CAAC;AACjD,MAAM,cAAc,GAAG,GAAG,CAAC;AAE3B;;GAEG;AACH,KAAK,UAAU,WAAW;IACxB,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,OAAO,GAAG,MAAM,MAAM,CAAC,gBAAgB,CAAC,CAAC;IAC3C,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC;AAED,KAAK,UAAU,UAAU;IACvB,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,YAAY,GAAG,MAAM,MAAM,CAAC,QAAQ,CAAC,CAAC;IACxC,CAAC;IACD,OAAO,YAAY,CAAC;AACtB,CAAC;AAYD;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe;IACnC,MAAM,EAAE,GAAG,MAAM,WAAW,EAAE,CAAC;IAE/B,MAAM,eAAe,GAAG,EAAE,CAAC,KAAK,CAAC,gBAAgB,EAAE,CAAC;IACpD,MAAM,cAAc,GAAG,MAAM,EAAE,CAAC,iBAAiB,CAAC,eAAe,CAAC,CAAC;IAEnE,4BAA4B;IAC5B,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACjE,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAEnE,OAAO;QACL,SAAS;QACT,UAAU;QACV,cAAc;QACd,eAAe;KAChB,CAAC;AACJ,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,IAAI,CACxB,OAAwB,EACxB,gBAAwB;IAExB,mBAAmB;IACnB,MAAM,UAAU,GAAG,OAAO,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IACtF,MAAM,QAAQ,GAAG,GAAG,gBAAgB,IAAI,UAAU,EAAE,CAAC;IAErD,cAAc;IACd,MAAM,MAAM,GAAG,cAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;IAC5C,IAAI,MAAM,EAAE,CAAC;QACX,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,kBAAkB;IAClB,MAAM,EAAE,GAAG,MAAM,WAAW,EAAE,CAAC;IAC/B,MAAM,aAAa,GAAG,OAAO,OAAO,KAAK,QAAQ;QAC/C,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC;QAC/B,CAAC,CAAC,OAAO,CAAC;IAEZ,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,gBAAgB,EAAE,QAAQ,CAAC,CAAC;IAC3D,MAAM,SAAS,GAAG,MAAM,EAAE,CAAC,SAAS,CAAC,aAAa,EAAE,UAAU,CAAC,CAAC;IAChE,MAAM,eAAe,GAAG,MAAM,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;IAElE,iCAAiC;IACjC,IAAI,cAAc,CAAC,IAAI,IAAI,cAAc,EAAE,CAAC;QAC1C,sBAAsB;QACtB,MAAM,QAAQ,GAAG,cAAc,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC;QACpD,IAAI,QAAQ,EAAE,CAAC;YACb,cAAc,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QAClC,CAAC;IACH,CAAC;IACD,cAAc,CAAC,GAAG,CAAC,QAAQ,EAAE,eAAe,CAAC,CAAC;IAE9C,OAAO,eAAe,CAAC;AACzB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,MAAM,CAC1B,OAAwB,EACxB,eAAuB,EACvB,eAAuB;IAEvB,IAAI,CAAC;QACH,MAAM,EAAE,GAAG,MAAM,WAAW,EAAE,CAAC;QAC/B,MAAM,aAAa,GAAG,OAAO,OAAO,KAAK,QAAQ;YAC/C,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC;YAC/B,CAAC,CAAC,OAAO,CAAC;QAEZ,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,QAAQ,CAAC,CAAC;QACzD,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,QAAQ,CAAC,CAAC;QAEzD,OAAO,MAAM,EAAE,CAAC,WAAW,CAAC,SAAS,EAAE,aAAa,EAAE,SAAS,CAAC,CAAC;IACnE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,aAAa,CAAC,SAAiB,EAAE;IACrD,MAAM,MAAM,GAAG,MAAM,UAAU,EAAE,CAAC;IAClC,OAAO,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;AACpD,CAAC;AAED;;;GAGG;AACH,IAAI,YAAY,GAAQ,IAAI,CAAC;AAE7B,MAAM,UAAU,iBAAiB,CAAC,SAAiB,EAAE;IACnD,IAAI,OAAO,UAAU,CAAC,MAAM,KAAK,WAAW,IAAI,UAAU,CAAC,MAAM,CAAC,eAAe,EAAE,CAAC;QAClF,kCAAkC;QAClC,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC;QACrC,UAAU,CAAC,MAAM,CAAC,eAAe,CAAC,KAAK,CAAC,CAAC;QACzC,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC5C,CAAC;SAAM,CAAC;QACN,kCAAkC;QAClC,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,sEAAsE;YACtE,oCAAoC;YACpC,MAAM,GAAG,GAAG,kBAAkB,CAAC;YAC/B,IAAI,MAAM,GAAG,EAAE,CAAC;YAChB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,GAAG,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;gBACpC,MAAM,IAAI,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE,GAAG,EAAE,CAAC,CAAC,CAAC;YAChD,CAAC;YACD,OAAO,CAAC,IAAI,CAAC,wEAAwE,CAAC,CAAC;YACvF,OAAO,MAAM,CAAC;QAChB,CAAC;QACD,OAAO,YAAY,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC1D,CAAC;AACH,CAAC;AAED,oEAAoE;AACpE,IAAI,OAAO,OAAO,KAAK,WAAW,IAAI,OAAO,CAAC,QAAQ,IAAI,OAAO,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;IAChF,UAAU,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE;QACzB,YAAY,GAAG,MAAM,CAAC;IACxB,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE;QACZ,iDAAiD;IACnD,CAAC,CAAC,CAAC;AACL,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,iBAAiB,CAAC,CAAS,EAAE,CAAS;IACpD,IAAI,CAAC,CAAC,MAAM,KAAK,CAAC,CAAC,MAAM,EAAE,CAAC;QAC1B,OAAO,KAAK,CAAC;IACf,CAAC;IAED,IAAI,MAAM,GAAG,CAAC,CAAC;IACf,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAClC,MAAM,IAAI,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC;IAC9C,CAAC;IAED,OAAO,MAAM,KAAK,CAAC,CAAC;AACtB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,eAAuB;IACpD,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,eAAe,EAAE,QAAQ,CAAC,CAAC;IACzD,4CAA4C;IAC5C,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC,CAAC;IAC7C,MAAM,QAAQ,GAAG,MAAM,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,SAAS,CAAC,CAAC,CAAC;IAExD,yEAAyE;IACzE,OAAO,YAAY,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC,EAAE,CAAC;AAC7G,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,IAAY,EAAE,QAAgB;IAC1D,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAClC,MAAM,IAAI,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;IAChC,UAAU,CAAC,MAAM,CAAC,eAAe,CAAC,IAAI,CAAC,CAAC;IAExC,2BAA2B;IAC3B,MAAM,WAAW,GAAG,MAAM,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAC1D,KAAK,EACL,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,EACxB,QAAQ,EACR,KAAK,EACL,CAAC,WAAW,CAAC,CACd,CAAC;IAEF,MAAM,GAAG,GAAG,MAAM,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAClD;QACE,IAAI,EAAE,QAAQ;QACd,IAAI;QACJ,UAAU,EAAE,MAAM;QAClB,IAAI,EAAE,SAAS;KAChB,EACD,WAAW,EACX,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,EAChC,KAAK,EACL,CAAC,SAAS,CAAC,CACZ,CAAC;IAEF,MAAM,EAAE,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;IAC9B,UAAU,CAAC,MAAM,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC;IAEtC,MAAM,SAAS,GAAG,MAAM,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,CACtD,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,EAAE,EACvB,GAAG,EACH,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,CACrB,CAAC;IAEF,qCAAqC;IACrC,MAAM,QAAQ,GAAG,IAAI,UAAU,CAAC,IAAI,CAAC,MAAM,GAAG,EAAE,CAAC,MAAM,GAAG,SAAS,CAAC,UAAU,CAAC,CAAC;IAChF,QAAQ,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;IACnB,QAAQ,CAAC,GAAG,CAAC,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;IAC9B,QAAQ,CAAC,GAAG,CAAC,IAAI,UAAU,CAAC,SAAS,CAAC,EAAE,IAAI,CAAC,MAAM,GAAG,EAAE,CAAC,MAAM,CAAC,CAAC;IAEjE,OAAO,MAAM,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;AAC3D,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,OAAO,CAAC,aAAqB,EAAE,QAAgB;IACnE,qBAAqB;IACrB,IAAI,aAAa,GAAG,aAAa,CAAC;IAClC,IAAI,aAAa,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;QACrC,aAAa,GAAG,aAAa,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IACzC,CAAC;IAED,gEAAgE;IAChE,IAAI,CAAC,aAAa,IAAI,aAAa,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;QAChD,OAAO,aAAa,CAAC;IACvB,CAAC;IAED,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAClC,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAElC,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,MAAM,CAAC,IAAI,CAAC,aAAa,EAAE,QAAQ,CAAC,CAAC;QAEtD,iFAAiF;QACjF,IAAI,QAAQ,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;YACzB,OAAO,aAAa,CAAC;QACvB,CAAC;QAED,uCAAuC;QACvC,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;QACnC,MAAM,EAAE,GAAG,QAAQ,CAAC,KAAK,CAAC,EAAE,EAAE,EAAE,CAAC,CAAC;QAClC,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAErC,2BAA2B;QAC3B,MAAM,WAAW,GAAG,MAAM,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAC1D,KAAK,EACL,OAAO,CAAC,MAAM,CAAC,QAAQ,CAAC,EACxB,QAAQ,EACR,KAAK,EACL,CAAC,WAAW,CAAC,CACd,CAAC;QAEF,MAAM,GAAG,GAAG,MAAM,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,CAClD;YACE,IAAI,EAAE,QAAQ;YACd,IAAI,EAAE,IAAI,UAAU,CAAC,IAAI,CAAC;YAC1B,UAAU,EAAE,MAAM;YAClB,IAAI,EAAE,SAAS;SAChB,EACD,WAAW,EACX,EAAE,IAAI,EAAE,SAAS,EAAE,MAAM,EAAE,GAAG,EAAE,EAChC,KAAK,EACL,CAAC,SAAS,CAAC,CACZ,CAAC;QAEF,MAAM,SAAS,GAAG,MAAM,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,CACtD,EAAE,IAAI,EAAE,SAAS,EAAE,EAAE,EAAE,IAAI,UAAU,CAAC,EAAE,CAAC,EAAE,EAC3C,GAAG,EACH,IAAI,UAAU,CAAC,SAAS,CAAC,CAC1B,CAAC;QAEF,OAAO,OAAO,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;IACnC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,mCAAmC;QACnC,MAAM,IAAI,KAAK,CAAC,4DAA4D,CAAC,CAAC;IAChF,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,UAAU;IACxB,cAAc,CAAC,KAAK,EAAE,CAAC;AACzB,CAAC"}

package/dist/esm/dev-helper.d.ts

@@ -0,0 +1,15 @@
+/**
+ * Development Helper for MCP-I Package
+ *
+ * Provides additional developer experience improvements for local development
+ */
+import { MCPIdentity } from './index';
+/**
+ * Enhanced development experience with helpful logging and tips
+ */
+export declare function initWithDevExperience(options?: any): Promise<MCPIdentity>;
+/**
+ * Quick agent status check for debugging
+ */
+export declare function showAgentStatus(identity: MCPIdentity): void;
+//# sourceMappingURL=dev-helper.d.ts.map

package/dist/esm/dev-helper.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"dev-helper.d.ts","sourceRoot":"","sources":["../../src/dev-helper.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AAGtC;;GAEG;AACH,wBAAsB,qBAAqB,CAAC,OAAO,GAAE,GAAQ,GAAG,OAAO,CAAC,WAAW,CAAC,CAoCnF;AAED;;GAEG;AACH,wBAAgB,eAAe,CAAC,QAAQ,EAAE,WAAW,GAAG,IAAI,CAmB3D"}

package/dist/esm/dev-helper.js

@@ -0,0 +1,63 @@
+/**
+ * Development Helper for MCP-I Package
+ *
+ * Provides additional developer experience improvements for local development
+ */
+import { MCPIdentity } from './index.js';
+import { getLogger } from './logger.js';
+/**
+ * Enhanced development experience with helpful logging and tips
+ */
+export async function initWithDevExperience(options = {}) {
+    const logger = getLogger();
+    // Add development mode if not specified
+    if (process.env.NODE_ENV === 'development' && !options.mode) {
+        options.mode = 'development';
+        logger.info('🔧 Development mode detected - agents will be created as drafts');
+    }
+    // Auto-detect MCP server name from package.json
+    if (!options.name && !process.env.MCP_SERVER_NAME) {
+        // In Next.js and other bundled environments, we can't dynamically require package.json
+        // Users should provide the name explicitly
+        options.name = 'Development MCP Server';
+        logger.info('💡 Tip: Provide a name in options for better agent identification');
+    }
+    // Performance tips
+    if (!options.storage) {
+        logger.info('💡 Tip: Use storage: "file" for persistent identity across restarts');
+    }
+    const identity = await MCPIdentity.init(options);
+    // Show useful development information
+    logger.info('✨ MCP Identity initialized successfully!');
+    logger.info(`🆔 DID: ${identity.did}`);
+    // Show claim URL in development
+    const { claimUrl } = await identity.requestEditAccess();
+    logger.info(`🔗 Claim your agent: ${claimUrl}`);
+    // Show integration tip
+    logger.info('💡 Your MCP server responses are now automatically signed with your agent identity');
+    return identity;
+}
+/**
+ * Quick agent status check for debugging
+ */
+export function showAgentStatus(identity) {
+    const logger = getLogger();
+    const capabilities = identity.getCapabilities();
+    logger.info('📊 Agent Status:');
+    logger.info(`   DID: ${identity.did}`);
+    logger.info(`   Conformance Level: ${capabilities.conformanceLevel}`);
+    logger.info(`   Registry: ${capabilities.registry || 'knowthat.ai'}`);
+    logger.info(`   Handshake Supported: ${capabilities.handshakeSupported}`);
+    // Show directory preferences
+    const directories = identity.getDirectories();
+    if (directories === 'none') {
+        logger.info('📋 Directories: Not listing on any directories');
+    }
+    else if (directories === 'verified') {
+        logger.info('📋 Directories: Listing on all verified directories');
+    }
+    else if (Array.isArray(directories)) {
+        logger.info(`📋 Directories: ${directories.join(', ')}`);
+    }
+}
+//# sourceMappingURL=dev-helper.js.map

package/dist/esm/dev-helper.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"dev-helper.js","sourceRoot":"","sources":["../../src/dev-helper.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC;AACtC,OAAO,EAAE,SAAS,EAAE,MAAM,UAAU,CAAC;AAErC;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CAAC,UAAe,EAAE;IAC3D,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;IAE3B,wCAAwC;IACxC,IAAI,OAAO,CAAC,GAAG,CAAC,QAAQ,KAAK,aAAa,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAC5D,OAAO,CAAC,IAAI,GAAG,aAAa,CAAC;QAC7B,MAAM,CAAC,IAAI,CAAC,iEAAiE,CAAC,CAAC;IACjF,CAAC;IAED,gDAAgD;IAChD,IAAI,CAAC,OAAO,CAAC,IAAI,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,eAAe,EAAE,CAAC;QAClD,uFAAuF;QACvF,2CAA2C;QAC3C,OAAO,CAAC,IAAI,GAAG,wBAAwB,CAAC;QACxC,MAAM,CAAC,IAAI,CAAC,mEAAmE,CAAC,CAAC;IACnF,CAAC;IAED,mBAAmB;IACnB,IAAI,CAAC,OAAO,CAAC,OAAO,EAAE,CAAC;QACrB,MAAM,CAAC,IAAI,CAAC,qEAAqE,CAAC,CAAC;IACrF,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,WAAW,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAEjD,sCAAsC;IACtC,MAAM,CAAC,IAAI,CAAC,0CAA0C,CAAC,CAAC;IACxD,MAAM,CAAC,IAAI,CAAC,WAAW,QAAQ,CAAC,GAAG,EAAE,CAAC,CAAC;IAEvC,gCAAgC;IAChC,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,QAAQ,CAAC,iBAAiB,EAAE,CAAC;IACxD,MAAM,CAAC,IAAI,CAAC,wBAAwB,QAAQ,EAAE,CAAC,CAAC;IAEhD,uBAAuB;IACvB,MAAM,CAAC,IAAI,CAAC,oFAAoF,CAAC,CAAC;IAElG,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,eAAe,CAAC,QAAqB;IACnD,MAAM,MAAM,GAAG,SAAS,EAAE,CAAC;IAC3B,MAAM,YAAY,GAAG,QAAQ,CAAC,eAAe,EAAE,CAAC;IAEhD,MAAM,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC;IAChC,MAAM,CAAC,IAAI,CAAC,WAAW,QAAQ,CAAC,GAAG,EAAE,CAAC,CAAC;IACvC,MAAM,CAAC,IAAI,CAAC,yBAAyB,YAAY,CAAC,gBAAgB,EAAE,CAAC,CAAC;IACtE,MAAM,CAAC,IAAI,CAAC,gBAAgB,YAAY,CAAC,QAAQ,IAAI,aAAa,EAAE,CAAC,CAAC;IACtE,MAAM,CAAC,IAAI,CAAC,2BAA2B,YAAY,CAAC,kBAAkB,EAAE,CAAC,CAAC;IAE1E,6BAA6B;IAC7B,MAAM,WAAW,GAAG,QAAQ,CAAC,cAAc,EAAE,CAAC;IAC9C,IAAI,WAAW,KAAK,MAAM,EAAE,CAAC;QAC3B,MAAM,CAAC,IAAI,CAAC,gDAAgD,CAAC,CAAC;IAChE,CAAC;SAAM,IAAI,WAAW,KAAK,UAAU,EAAE,CAAC;QACtC,MAAM,CAAC,IAAI,CAAC,qDAAqD,CAAC,CAAC;IACrE,CAAC;SAAM,IAAI,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,EAAE,CAAC;QACtC,MAAM,CAAC,IAAI,CAAC,mBAAmB,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC3D,CAAC;AACH,CAAC"}

package/dist/esm/encrypted-storage.d.ts

@@ -0,0 +1,19 @@
+/**
+ * Encrypted storage wrapper for MCP-I identity
+ * Adds encryption layer on top of any storage provider
+ */
+import { StorageProvider } from './storage';
+import { PersistedIdentity } from './types';
+export declare class EncryptedStorage implements StorageProvider {
+    private baseStorage;
+    private password;
+    constructor(baseStorage: StorageProvider, password: string);
+    load(): Promise<PersistedIdentity | null>;
+    save(identity: PersistedIdentity): Promise<void>;
+    exists(): Promise<boolean>;
+}
+/**
+ * Create encrypted storage wrapper
+ */
+export declare function createEncryptedStorage(baseStorage: StorageProvider, password: string): StorageProvider;
+//# sourceMappingURL=encrypted-storage.d.ts.map

package/dist/esm/encrypted-storage.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"encrypted-storage.d.ts","sourceRoot":"","sources":["../../src/encrypted-storage.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,eAAe,EAAE,MAAM,WAAW,CAAC;AAC5C,OAAO,EAAE,iBAAiB,EAAE,MAAM,SAAS,CAAC;AAG5C,qBAAa,gBAAiB,YAAW,eAAe;IAEpD,OAAO,CAAC,WAAW;IACnB,OAAO,CAAC,QAAQ;gBADR,WAAW,EAAE,eAAe,EAC5B,QAAQ,EAAE,MAAM;IAGpB,IAAI,IAAI,OAAO,CAAC,iBAAiB,GAAG,IAAI,CAAC;IAkBzC,IAAI,CAAC,QAAQ,EAAE,iBAAiB,GAAG,OAAO,CAAC,IAAI,CAAC;IAehD,MAAM,IAAI,OAAO,CAAC,OAAO,CAAC;CAGjC;AAED;;GAEG;AACH,wBAAgB,sBAAsB,CACpC,WAAW,EAAE,eAAe,EAC5B,QAAQ,EAAE,MAAM,GACf,eAAe,CAEjB"}

package/dist/esm/encrypted-storage.js

@@ -0,0 +1,48 @@
+/**
+ * Encrypted storage wrapper for MCP-I identity
+ * Adds encryption layer on top of any storage provider
+ */
+import * as crypto from './crypto.js';
+export class EncryptedStorage {
+    baseStorage;
+    password;
+    constructor(baseStorage, password) {
+        this.baseStorage = baseStorage;
+        this.password = password;
+    }
+    async load() {
+        const identity = await this.baseStorage.load();
+        if (!identity) {
+            return null;
+        }
+        // Decrypt private key if encrypted
+        if (identity.privateKey.startsWith('enc:')) {
+            try {
+                identity.privateKey = await crypto.decrypt(identity.privateKey, this.password);
+            }
+            catch (error) {
+                throw new Error('Failed to decrypt stored identity - invalid password');
+            }
+        }
+        return identity;
+    }
+    async save(identity) {
+        // Create a copy to avoid modifying the original
+        const encryptedIdentity = { ...identity };
+        // Encrypt private key before saving
+        if (!encryptedIdentity.privateKey.startsWith('enc:')) {
+            encryptedIdentity.privateKey = await crypto.encrypt(encryptedIdentity.privateKey, this.password);
+        }
+        await this.baseStorage.save(encryptedIdentity);
+    }
+    async exists() {
+        return this.baseStorage.exists();
+    }
+}
+/**
+ * Create encrypted storage wrapper
+ */
+export function createEncryptedStorage(baseStorage, password) {
+    return new EncryptedStorage(baseStorage, password);
+}
+//# sourceMappingURL=encrypted-storage.js.map

package/dist/esm/encrypted-storage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"encrypted-storage.js","sourceRoot":"","sources":["../../src/encrypted-storage.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAIH,OAAO,KAAK,MAAM,MAAM,UAAU,CAAC;AAEnC,MAAM,OAAO,gBAAgB;IAEjB;IACA;IAFV,YACU,WAA4B,EAC5B,QAAgB;QADhB,gBAAW,GAAX,WAAW,CAAiB;QAC5B,aAAQ,GAAR,QAAQ,CAAQ;IACvB,CAAC;IAEJ,KAAK,CAAC,IAAI;QACR,MAAM,QAAQ,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC;QAC/C,IAAI,CAAC,QAAQ,EAAE,CAAC;YACd,OAAO,IAAI,CAAC;QACd,CAAC;QAED,mCAAmC;QACnC,IAAI,QAAQ,CAAC,UAAU,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;YAC3C,IAAI,CAAC;gBACH,QAAQ,CAAC,UAAU,GAAG,MAAM,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,UAAU,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;YACjF,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;YAC1E,CAAC;QACH,CAAC;QAED,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,KAAK,CAAC,IAAI,CAAC,QAA2B;QACpC,gDAAgD;QAChD,MAAM,iBAAiB,GAAG,EAAE,GAAG,QAAQ,EAAE,CAAC;QAE1C,oCAAoC;QACpC,IAAI,CAAC,iBAAiB,CAAC,UAAU,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;YACrD,iBAAiB,CAAC,UAAU,GAAG,MAAM,MAAM,CAAC,OAAO,CACjD,iBAAiB,CAAC,UAAU,EAC5B,IAAI,CAAC,QAAQ,CACd,CAAC;QACJ,CAAC;QAED,MAAM,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;IACjD,CAAC;IAED,KAAK,CAAC,MAAM;QACV,OAAO,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,CAAC;IACnC,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,sBAAsB,CACpC,WAA4B,EAC5B,QAAgB;IAEhB,OAAO,IAAI,gBAAgB,CAAC,WAAW,EAAE,QAAQ,CAAC,CAAC;AACrD,CAAC"}