@metamask-previews/phishing-controller 17.1.2-preview-e5cef32c6 → 17.1.2-preview-a96479ea9
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +0 -4
- package/dist/PhishingController-method-action-types.cjs.map +1 -1
- package/dist/PhishingController-method-action-types.d.cts +2 -3
- package/dist/PhishingController-method-action-types.d.cts.map +1 -1
- package/dist/PhishingController-method-action-types.d.mts +2 -3
- package/dist/PhishingController-method-action-types.d.mts.map +1 -1
- package/dist/PhishingController-method-action-types.mjs.map +1 -1
- package/dist/PhishingController.cjs +7 -9
- package/dist/PhishingController.cjs.map +1 -1
- package/dist/PhishingController.d.cts +2 -3
- package/dist/PhishingController.d.cts.map +1 -1
- package/dist/PhishingController.d.mts +2 -3
- package/dist/PhishingController.d.mts.map +1 -1
- package/dist/PhishingController.mjs +8 -10
- package/dist/PhishingController.mjs.map +1 -1
- package/dist/index.cjs +1 -5
- package/dist/index.cjs.map +1 -1
- package/dist/index.d.cts +0 -1
- package/dist/index.d.cts.map +1 -1
- package/dist/index.d.mts +0 -1
- package/dist/index.d.mts.map +1 -1
- package/dist/index.mjs +0 -1
- package/dist/index.mjs.map +1 -1
- package/dist/utils.cjs +1 -45
- package/dist/utils.cjs.map +1 -1
- package/dist/utils.d.cts +0 -19
- package/dist/utils.d.cts.map +1 -1
- package/dist/utils.d.mts +0 -19
- package/dist/utils.d.mts.map +1 -1
- package/dist/utils.mjs +0 -42
- package/dist/utils.mjs.map +1 -1
- package/package.json +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -7,10 +7,6 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
|
|
|
7
7
|
|
|
8
8
|
## [Unreleased]
|
|
9
9
|
|
|
10
|
-
### Added
|
|
11
|
-
|
|
12
|
-
- Support path-based phishing lists (`blocklistPaths`, `whitelistPaths`) and path-aware URL scanning for shared gateways (for example IPFS gateways and `sites.google.com`) via `getPhishingDetectionScanUrlParam`, `isPhishingDetectionPathBasedHostname`, and `PHISHING_DETECTION_PATH_BASED_ROOT_DOMAINS` ([#8662](https://github.com/MetaMask/core/pull/8662))
|
|
13
|
-
|
|
14
10
|
### Changed
|
|
15
11
|
|
|
16
12
|
- Bump `@metamask/controller-utils` from `^12.0.0` to `^12.1.0` ([#8774](https://github.com/MetaMask/core/pull/8774))
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PhishingController-method-action-types.cjs","sourceRoot":"","sources":["../src/PhishingController-method-action-types.ts"],"names":[],"mappings":";AAAA;;;GAGG","sourcesContent":["/**\n * This file is auto generated.\n * Do not edit manually.\n */\n\nimport type { PhishingController } from './PhishingController';\n\n/**\n * Conditionally update the phishing configuration.\n *\n * If the stalelist configuration is out of date, this function will call `updateStalelist`\n * to update the configuration. This will automatically grab the hotlist,\n * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n *\n */\nexport type PhishingControllerMaybeUpdateStateAction = {\n type: `PhishingController:maybeUpdateState`;\n handler: PhishingController['maybeUpdateState'];\n};\n\n/**\n * Determines if a given origin is unapproved.\n *\n * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n * by calling {@link updateStalelist} or {@link updateHotlist}.\n *\n * @param origin - Domain origin of a website.\n * @returns Whether the origin is an unapproved origin.\n */\nexport type PhishingControllerTestOriginAction = {\n type: `PhishingController:testOrigin`;\n handler: PhishingController['testOrigin'];\n};\n\n/**\n * Checks if a request URL's domain is blocked against the request blocklist.\n *\n * This method is used to determine if a specific request URL is associated with a malicious\n * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n * blocklist of known malicious domains.\n *\n * @param origin - The full request URL to be checked.\n * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n */\nexport type PhishingControllerIsBlockedRequestAction = {\n type: `PhishingController:isBlockedRequest`;\n handler: PhishingController['isBlockedRequest'];\n};\n\n/**\n * Temporarily marks a given origin as approved.\n *\n * @param origin - The origin to mark as approved.\n */\nexport type PhishingControllerBypassAction = {\n type: `PhishingController:bypass`;\n handler: PhishingController['bypass'];\n};\n\n/**\n * Scan a URL for phishing.
|
|
1
|
+
{"version":3,"file":"PhishingController-method-action-types.cjs","sourceRoot":"","sources":["../src/PhishingController-method-action-types.ts"],"names":[],"mappings":";AAAA;;;GAGG","sourcesContent":["/**\n * This file is auto generated.\n * Do not edit manually.\n */\n\nimport type { PhishingController } from './PhishingController';\n\n/**\n * Conditionally update the phishing configuration.\n *\n * If the stalelist configuration is out of date, this function will call `updateStalelist`\n * to update the configuration. This will automatically grab the hotlist,\n * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n *\n */\nexport type PhishingControllerMaybeUpdateStateAction = {\n type: `PhishingController:maybeUpdateState`;\n handler: PhishingController['maybeUpdateState'];\n};\n\n/**\n * Determines if a given origin is unapproved.\n *\n * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n * by calling {@link updateStalelist} or {@link updateHotlist}.\n *\n * @param origin - Domain origin of a website.\n * @returns Whether the origin is an unapproved origin.\n */\nexport type PhishingControllerTestOriginAction = {\n type: `PhishingController:testOrigin`;\n handler: PhishingController['testOrigin'];\n};\n\n/**\n * Checks if a request URL's domain is blocked against the request blocklist.\n *\n * This method is used to determine if a specific request URL is associated with a malicious\n * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n * blocklist of known malicious domains.\n *\n * @param origin - The full request URL to be checked.\n * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n */\nexport type PhishingControllerIsBlockedRequestAction = {\n type: `PhishingController:isBlockedRequest`;\n handler: PhishingController['isBlockedRequest'];\n};\n\n/**\n * Temporarily marks a given origin as approved.\n *\n * @param origin - The origin to mark as approved.\n */\nexport type PhishingControllerBypassAction = {\n type: `PhishingController:bypass`;\n handler: PhishingController['bypass'];\n};\n\n/**\n * Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports\n * web URLs.\n *\n * @param url - The URL to scan.\n * @returns The phishing detection scan result.\n */\nexport type PhishingControllerScanUrlAction = {\n type: `PhishingController:scanUrl`;\n handler: PhishingController['scanUrl'];\n};\n\n/**\n * Scan multiple URLs for phishing in bulk. It will only scan the hostnames of the URLs.\n * It also only supports web URLs.\n *\n * @param urls - The URLs to scan.\n * @returns A mapping of URLs to their phishing detection scan results and errors.\n */\nexport type PhishingControllerBulkScanUrlsAction = {\n type: `PhishingController:bulkScanUrls`;\n handler: PhishingController['bulkScanUrls'];\n};\n\n/**\n * Scan an address for security alerts.\n *\n * @param chainId - The chain ID in hex format (e.g., '0x1' for Ethereum).\n * @param address - The address to scan.\n * @returns The address scan result.\n */\nexport type PhishingControllerScanAddressAction = {\n type: `PhishingController:scanAddress`;\n handler: PhishingController['scanAddress'];\n};\n\n/**\n * Scan multiple tokens for malicious activity in bulk.\n *\n * @param request - The bulk scan request containing chainId and tokens.\n * @param request.chainId - The chain identifier. Accepts a hex chain ID for\n * EVM chains (e.g. `'0x1'` for Ethereum) or a chain name for non-EVM chains\n * (e.g. `'solana'`).\n * @param request.tokens - Array of token addresses to scan.\n * @returns A mapping of token addresses to their scan results. For EVM chains,\n * addresses are lowercased; for non-EVM chains, original casing is preserved.\n * Tokens that fail to scan are omitted.\n */\nexport type PhishingControllerBulkScanTokensAction = {\n type: `PhishingController:bulkScanTokens`;\n handler: PhishingController['bulkScanTokens'];\n};\n\nexport type PhishingControllerGetApprovalsAction = {\n type: `PhishingController:getApprovals`;\n handler: PhishingController['getApprovals'];\n};\n\n/**\n * Union of all PhishingController action types.\n */\nexport type PhishingControllerMethodActions =\n | PhishingControllerMaybeUpdateStateAction\n | PhishingControllerTestOriginAction\n | PhishingControllerIsBlockedRequestAction\n | PhishingControllerBypassAction\n | PhishingControllerScanUrlAction\n | PhishingControllerBulkScanUrlsAction\n | PhishingControllerScanAddressAction\n | PhishingControllerBulkScanTokensAction\n | PhishingControllerGetApprovalsAction;\n"]}
|
|
@@ -53,9 +53,8 @@ export type PhishingControllerBypassAction = {
|
|
|
53
53
|
handler: PhishingController['bypass'];
|
|
54
54
|
};
|
|
55
55
|
/**
|
|
56
|
-
* Scan a URL for phishing.
|
|
57
|
-
*
|
|
58
|
-
* Only supports web URLs (`http:` / `https:`).
|
|
56
|
+
* Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports
|
|
57
|
+
* web URLs.
|
|
59
58
|
*
|
|
60
59
|
* @param url - The URL to scan.
|
|
61
60
|
* @returns The phishing detection scan result.
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PhishingController-method-action-types.d.cts","sourceRoot":"","sources":["../src/PhishingController-method-action-types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAE,iCAA6B;AAE/D;;;;;;;GAOG;AACH,MAAM,MAAM,wCAAwC,GAAG;IACrD,IAAI,EAAE,qCAAqC,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,kCAAkC,GAAG;IAC/C,IAAI,EAAE,+BAA+B,CAAC;IACtC,OAAO,EAAE,kBAAkB,CAAC,YAAY,CAAC,CAAC;CAC3C,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,wCAAwC,GAAG;IACrD,IAAI,EAAE,qCAAqC,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF;;;;GAIG;AACH,MAAM,MAAM,8BAA8B,GAAG;IAC3C,IAAI,EAAE,2BAA2B,CAAC;IAClC,OAAO,EAAE,kBAAkB,CAAC,QAAQ,CAAC,CAAC;CACvC,CAAC;AAEF
|
|
1
|
+
{"version":3,"file":"PhishingController-method-action-types.d.cts","sourceRoot":"","sources":["../src/PhishingController-method-action-types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAE,iCAA6B;AAE/D;;;;;;;GAOG;AACH,MAAM,MAAM,wCAAwC,GAAG;IACrD,IAAI,EAAE,qCAAqC,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,kCAAkC,GAAG;IAC/C,IAAI,EAAE,+BAA+B,CAAC;IACtC,OAAO,EAAE,kBAAkB,CAAC,YAAY,CAAC,CAAC;CAC3C,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,wCAAwC,GAAG;IACrD,IAAI,EAAE,qCAAqC,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF;;;;GAIG;AACH,MAAM,MAAM,8BAA8B,GAAG;IAC3C,IAAI,EAAE,2BAA2B,CAAC;IAClC,OAAO,EAAE,kBAAkB,CAAC,QAAQ,CAAC,CAAC;CACvC,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,MAAM,+BAA+B,GAAG;IAC5C,IAAI,EAAE,4BAA4B,CAAC;IACnC,OAAO,EAAE,kBAAkB,CAAC,SAAS,CAAC,CAAC;CACxC,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,MAAM,oCAAoC,GAAG;IACjD,IAAI,EAAE,iCAAiC,CAAC;IACxC,OAAO,EAAE,kBAAkB,CAAC,cAAc,CAAC,CAAC;CAC7C,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,MAAM,mCAAmC,GAAG;IAChD,IAAI,EAAE,gCAAgC,CAAC;IACvC,OAAO,EAAE,kBAAkB,CAAC,aAAa,CAAC,CAAC;CAC5C,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,MAAM,MAAM,sCAAsC,GAAG;IACnD,IAAI,EAAE,mCAAmC,CAAC;IAC1C,OAAO,EAAE,kBAAkB,CAAC,gBAAgB,CAAC,CAAC;CAC/C,CAAC;AAEF,MAAM,MAAM,oCAAoC,GAAG;IACjD,IAAI,EAAE,iCAAiC,CAAC;IACxC,OAAO,EAAE,kBAAkB,CAAC,cAAc,CAAC,CAAC;CAC7C,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,+BAA+B,GACvC,wCAAwC,GACxC,kCAAkC,GAClC,wCAAwC,GACxC,8BAA8B,GAC9B,+BAA+B,GAC/B,oCAAoC,GACpC,mCAAmC,GACnC,sCAAsC,GACtC,oCAAoC,CAAC"}
|
|
@@ -53,9 +53,8 @@ export type PhishingControllerBypassAction = {
|
|
|
53
53
|
handler: PhishingController['bypass'];
|
|
54
54
|
};
|
|
55
55
|
/**
|
|
56
|
-
* Scan a URL for phishing.
|
|
57
|
-
*
|
|
58
|
-
* Only supports web URLs (`http:` / `https:`).
|
|
56
|
+
* Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports
|
|
57
|
+
* web URLs.
|
|
59
58
|
*
|
|
60
59
|
* @param url - The URL to scan.
|
|
61
60
|
* @returns The phishing detection scan result.
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PhishingController-method-action-types.d.mts","sourceRoot":"","sources":["../src/PhishingController-method-action-types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAE,iCAA6B;AAE/D;;;;;;;GAOG;AACH,MAAM,MAAM,wCAAwC,GAAG;IACrD,IAAI,EAAE,qCAAqC,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,kCAAkC,GAAG;IAC/C,IAAI,EAAE,+BAA+B,CAAC;IACtC,OAAO,EAAE,kBAAkB,CAAC,YAAY,CAAC,CAAC;CAC3C,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,wCAAwC,GAAG;IACrD,IAAI,EAAE,qCAAqC,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF;;;;GAIG;AACH,MAAM,MAAM,8BAA8B,GAAG;IAC3C,IAAI,EAAE,2BAA2B,CAAC;IAClC,OAAO,EAAE,kBAAkB,CAAC,QAAQ,CAAC,CAAC;CACvC,CAAC;AAEF
|
|
1
|
+
{"version":3,"file":"PhishingController-method-action-types.d.mts","sourceRoot":"","sources":["../src/PhishingController-method-action-types.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,KAAK,EAAE,kBAAkB,EAAE,iCAA6B;AAE/D;;;;;;;GAOG;AACH,MAAM,MAAM,wCAAwC,GAAG;IACrD,IAAI,EAAE,qCAAqC,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,kCAAkC,GAAG;IAC/C,IAAI,EAAE,+BAA+B,CAAC;IACtC,OAAO,EAAE,kBAAkB,CAAC,YAAY,CAAC,CAAC;CAC3C,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,wCAAwC,GAAG;IACrD,IAAI,EAAE,qCAAqC,CAAC;IAC5C,OAAO,EAAE,kBAAkB,CAAC,kBAAkB,CAAC,CAAC;CACjD,CAAC;AAEF;;;;GAIG;AACH,MAAM,MAAM,8BAA8B,GAAG;IAC3C,IAAI,EAAE,2BAA2B,CAAC;IAClC,OAAO,EAAE,kBAAkB,CAAC,QAAQ,CAAC,CAAC;CACvC,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,MAAM,+BAA+B,GAAG;IAC5C,IAAI,EAAE,4BAA4B,CAAC;IACnC,OAAO,EAAE,kBAAkB,CAAC,SAAS,CAAC,CAAC;CACxC,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,MAAM,oCAAoC,GAAG;IACjD,IAAI,EAAE,iCAAiC,CAAC;IACxC,OAAO,EAAE,kBAAkB,CAAC,cAAc,CAAC,CAAC;CAC7C,CAAC;AAEF;;;;;;GAMG;AACH,MAAM,MAAM,mCAAmC,GAAG;IAChD,IAAI,EAAE,gCAAgC,CAAC;IACvC,OAAO,EAAE,kBAAkB,CAAC,aAAa,CAAC,CAAC;CAC5C,CAAC;AAEF;;;;;;;;;;;GAWG;AACH,MAAM,MAAM,sCAAsC,GAAG;IACnD,IAAI,EAAE,mCAAmC,CAAC;IAC1C,OAAO,EAAE,kBAAkB,CAAC,gBAAgB,CAAC,CAAC;CAC/C,CAAC;AAEF,MAAM,MAAM,oCAAoC,GAAG;IACjD,IAAI,EAAE,iCAAiC,CAAC;IACxC,OAAO,EAAE,kBAAkB,CAAC,cAAc,CAAC,CAAC;CAC7C,CAAC;AAEF;;GAEG;AACH,MAAM,MAAM,+BAA+B,GACvC,wCAAwC,GACxC,kCAAkC,GAClC,wCAAwC,GACxC,8BAA8B,GAC9B,+BAA+B,GAC/B,oCAAoC,GACpC,mCAAmC,GACnC,sCAAsC,GACtC,oCAAoC,CAAC"}
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PhishingController-method-action-types.mjs","sourceRoot":"","sources":["../src/PhishingController-method-action-types.ts"],"names":[],"mappings":"AAAA;;;GAGG","sourcesContent":["/**\n * This file is auto generated.\n * Do not edit manually.\n */\n\nimport type { PhishingController } from './PhishingController';\n\n/**\n * Conditionally update the phishing configuration.\n *\n * If the stalelist configuration is out of date, this function will call `updateStalelist`\n * to update the configuration. This will automatically grab the hotlist,\n * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n *\n */\nexport type PhishingControllerMaybeUpdateStateAction = {\n type: `PhishingController:maybeUpdateState`;\n handler: PhishingController['maybeUpdateState'];\n};\n\n/**\n * Determines if a given origin is unapproved.\n *\n * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n * by calling {@link updateStalelist} or {@link updateHotlist}.\n *\n * @param origin - Domain origin of a website.\n * @returns Whether the origin is an unapproved origin.\n */\nexport type PhishingControllerTestOriginAction = {\n type: `PhishingController:testOrigin`;\n handler: PhishingController['testOrigin'];\n};\n\n/**\n * Checks if a request URL's domain is blocked against the request blocklist.\n *\n * This method is used to determine if a specific request URL is associated with a malicious\n * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n * blocklist of known malicious domains.\n *\n * @param origin - The full request URL to be checked.\n * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n */\nexport type PhishingControllerIsBlockedRequestAction = {\n type: `PhishingController:isBlockedRequest`;\n handler: PhishingController['isBlockedRequest'];\n};\n\n/**\n * Temporarily marks a given origin as approved.\n *\n * @param origin - The origin to mark as approved.\n */\nexport type PhishingControllerBypassAction = {\n type: `PhishingController:bypass`;\n handler: PhishingController['bypass'];\n};\n\n/**\n * Scan a URL for phishing.
|
|
1
|
+
{"version":3,"file":"PhishingController-method-action-types.mjs","sourceRoot":"","sources":["../src/PhishingController-method-action-types.ts"],"names":[],"mappings":"AAAA;;;GAGG","sourcesContent":["/**\n * This file is auto generated.\n * Do not edit manually.\n */\n\nimport type { PhishingController } from './PhishingController';\n\n/**\n * Conditionally update the phishing configuration.\n *\n * If the stalelist configuration is out of date, this function will call `updateStalelist`\n * to update the configuration. This will automatically grab the hotlist,\n * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n *\n */\nexport type PhishingControllerMaybeUpdateStateAction = {\n type: `PhishingController:maybeUpdateState`;\n handler: PhishingController['maybeUpdateState'];\n};\n\n/**\n * Determines if a given origin is unapproved.\n *\n * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n * by calling {@link updateStalelist} or {@link updateHotlist}.\n *\n * @param origin - Domain origin of a website.\n * @returns Whether the origin is an unapproved origin.\n */\nexport type PhishingControllerTestOriginAction = {\n type: `PhishingController:testOrigin`;\n handler: PhishingController['testOrigin'];\n};\n\n/**\n * Checks if a request URL's domain is blocked against the request blocklist.\n *\n * This method is used to determine if a specific request URL is associated with a malicious\n * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n * blocklist of known malicious domains.\n *\n * @param origin - The full request URL to be checked.\n * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n */\nexport type PhishingControllerIsBlockedRequestAction = {\n type: `PhishingController:isBlockedRequest`;\n handler: PhishingController['isBlockedRequest'];\n};\n\n/**\n * Temporarily marks a given origin as approved.\n *\n * @param origin - The origin to mark as approved.\n */\nexport type PhishingControllerBypassAction = {\n type: `PhishingController:bypass`;\n handler: PhishingController['bypass'];\n};\n\n/**\n * Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports\n * web URLs.\n *\n * @param url - The URL to scan.\n * @returns The phishing detection scan result.\n */\nexport type PhishingControllerScanUrlAction = {\n type: `PhishingController:scanUrl`;\n handler: PhishingController['scanUrl'];\n};\n\n/**\n * Scan multiple URLs for phishing in bulk. It will only scan the hostnames of the URLs.\n * It also only supports web URLs.\n *\n * @param urls - The URLs to scan.\n * @returns A mapping of URLs to their phishing detection scan results and errors.\n */\nexport type PhishingControllerBulkScanUrlsAction = {\n type: `PhishingController:bulkScanUrls`;\n handler: PhishingController['bulkScanUrls'];\n};\n\n/**\n * Scan an address for security alerts.\n *\n * @param chainId - The chain ID in hex format (e.g., '0x1' for Ethereum).\n * @param address - The address to scan.\n * @returns The address scan result.\n */\nexport type PhishingControllerScanAddressAction = {\n type: `PhishingController:scanAddress`;\n handler: PhishingController['scanAddress'];\n};\n\n/**\n * Scan multiple tokens for malicious activity in bulk.\n *\n * @param request - The bulk scan request containing chainId and tokens.\n * @param request.chainId - The chain identifier. Accepts a hex chain ID for\n * EVM chains (e.g. `'0x1'` for Ethereum) or a chain name for non-EVM chains\n * (e.g. `'solana'`).\n * @param request.tokens - Array of token addresses to scan.\n * @returns A mapping of token addresses to their scan results. For EVM chains,\n * addresses are lowercased; for non-EVM chains, original casing is preserved.\n * Tokens that fail to scan are omitted.\n */\nexport type PhishingControllerBulkScanTokensAction = {\n type: `PhishingController:bulkScanTokens`;\n handler: PhishingController['bulkScanTokens'];\n};\n\nexport type PhishingControllerGetApprovalsAction = {\n type: `PhishingController:getApprovals`;\n handler: PhishingController['getApprovals'];\n};\n\n/**\n * Union of all PhishingController action types.\n */\nexport type PhishingControllerMethodActions =\n | PhishingControllerMaybeUpdateStateAction\n | PhishingControllerTestOriginAction\n | PhishingControllerIsBlockedRequestAction\n | PhishingControllerBypassAction\n | PhishingControllerScanUrlAction\n | PhishingControllerBulkScanUrlsAction\n | PhishingControllerScanAddressAction\n | PhishingControllerBulkScanTokensAction\n | PhishingControllerGetApprovalsAction;\n"]}
|
|
@@ -569,29 +569,27 @@ class PhishingController extends base_controller_1.BaseController {
|
|
|
569
569
|
}
|
|
570
570
|
}
|
|
571
571
|
/**
|
|
572
|
-
* Scan a URL for phishing.
|
|
573
|
-
*
|
|
574
|
-
* Only supports web URLs (`http:` / `https:`).
|
|
572
|
+
* Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports
|
|
573
|
+
* web URLs.
|
|
575
574
|
*
|
|
576
575
|
* @param url - The URL to scan.
|
|
577
576
|
* @returns The phishing detection scan result.
|
|
578
577
|
*/
|
|
579
578
|
async scanUrl(url) {
|
|
580
|
-
const [
|
|
581
|
-
if (!
|
|
579
|
+
const [hostname, ok] = (0, utils_1.getHostnameFromWebUrl)(url);
|
|
580
|
+
if (!ok) {
|
|
582
581
|
return {
|
|
583
582
|
hostname: '',
|
|
584
583
|
recommendedAction: types_1.RecommendedAction.None,
|
|
585
584
|
fetchError: 'url is not a valid web URL',
|
|
586
585
|
};
|
|
587
586
|
}
|
|
588
|
-
const
|
|
589
|
-
const cachedResult = __classPrivateFieldGet(this, _PhishingController_urlScanCache, "f").get(scanUrlParam);
|
|
587
|
+
const cachedResult = __classPrivateFieldGet(this, _PhishingController_urlScanCache, "f").get(hostname);
|
|
590
588
|
if (cachedResult) {
|
|
591
589
|
return cachedResult;
|
|
592
590
|
}
|
|
593
591
|
const apiResponse = await (0, controller_utils_1.safelyExecuteWithTimeout)(async () => {
|
|
594
|
-
const res = await fetch(`${exports.PHISHING_DETECTION_BASE_URL}/${exports.PHISHING_DETECTION_SCAN_ENDPOINT}?url=${encodeURIComponent(
|
|
592
|
+
const res = await fetch(`${exports.PHISHING_DETECTION_BASE_URL}/${exports.PHISHING_DETECTION_SCAN_ENDPOINT}?url=${encodeURIComponent(hostname)}`, {
|
|
595
593
|
method: 'GET',
|
|
596
594
|
headers: {
|
|
597
595
|
Accept: 'application/json',
|
|
@@ -624,7 +622,7 @@ class PhishingController extends base_controller_1.BaseController {
|
|
|
624
622
|
hostname,
|
|
625
623
|
recommendedAction: apiResponse.recommendedAction,
|
|
626
624
|
};
|
|
627
|
-
__classPrivateFieldGet(this, _PhishingController_urlScanCache, "f").set(
|
|
625
|
+
__classPrivateFieldGet(this, _PhishingController_urlScanCache, "f").set(hostname, result);
|
|
628
626
|
return result;
|
|
629
627
|
}
|
|
630
628
|
/**
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PhishingController.cjs","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,+DAA2D;AAM3D,iEAGoC;AAOpC,sDAA+C;AAE/C,qDAA8C;AAE9C,6CAAgF;AAOhF,6DAAsD;AACtD,uCAIiB;AAYjB,uCAYiB;AAEJ,QAAA,wBAAwB,GACnC,+CAA+C,CAAC;AACrC,QAAA,uBAAuB,GAAG,eAAe,CAAC;AAC1C,QAAA,0BAA0B,GAAG,gBAAgB,CAAC;AAE9C,QAAA,6BAA6B,GACxC,kDAAkD,CAAC;AACxC,QAAA,4BAA4B,GAAG,uBAAuB,CAAC;AAEvD,QAAA,2BAA2B,GACtC,0CAA0C,CAAC;AAChC,QAAA,gCAAgC,GAAG,SAAS,CAAC;AAC7C,QAAA,qCAAqC,GAAG,WAAW,CAAC;AAEpD,QAAA,wBAAwB,GACnC,4CAA4C,CAAC;AAClC,QAAA,4BAA4B,GAAG,kBAAkB,CAAC;AAClD,QAAA,qBAAqB,GAAG,mBAAmB,CAAC;AAC5C,QAAA,kBAAkB,GAAG,wBAAwB,CAAC;AAE3D,+BAA+B;AAClB,QAAA,0BAA0B,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,sBAAsB;AAC3D,QAAA,+BAA+B,GAAG,GAAG,CAAC;AACtC,QAAA,4BAA4B,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,sBAAsB;AAC7D,QAAA,iCAAiC,GAAG,IAAI,CAAC;AACzC,QAAA,8BAA8B,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,sBAAsB;AAC/D,QAAA,mCAAmC,GAAG,IAAI,CAAC;AAE3C,QAAA,oCAAoC,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACnE,QAAA,wBAAwB,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACvD,QAAA,0BAA0B,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,qBAAqB;AAErE,QAAA,sBAAsB,GAAG,GAAG,gCAAwB,GAAG,+BAAuB,EAAE,CAAC;AACjF,QAAA,yBAAyB,GAAG,GAAG,gCAAwB,GAAG,kCAA0B,EAAE,CAAC;AACvF,QAAA,uBAAuB,GAAG,GAAG,qCAA6B,GAAG,oCAA4B,EAAE,CAAC;AAkIzG;;;GAGG;AACH,IAAY,QAEX;AAFD,WAAY,QAAQ;IAClB,kEAAsD,CAAA;AACxD,CAAC,EAFW,QAAQ,wBAAR,QAAQ,QAEnB;AAED;;GAEG;AACH,IAAY,SAEX;AAFD,WAAY,SAAS;IACnB,kCAAqB,CAAA;AACvB,CAAC,EAFW,SAAS,yBAAT,SAAS,QAEpB;AAED;;;GAGG;AACH,MAAM,sBAAsB,GAAG;IAC7B,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,QAAQ,CAAC,uBAAuB;CACvD,CAAC;AAEF;;;GAGG;AACU,QAAA,sBAAsB,GAAG;IACpC,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,SAAS,CAAC,QAAQ;CACvD,CAAC;AAEF,MAAM,cAAc,GAAG,oBAAoB,CAAC;AAE5C,MAAM,QAAQ,GAA2C;IACvD,aAAa,EAAE;QACb,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,SAAS,EAAE;QACT,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,cAAc,EAAE;QACd,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,kBAAkB,EAAE;QAClB,kBAAkB,EAAE,IAAI;QACxB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,oBAAoB,EAAE;QACpB,kBAAkB,EAAE,IAAI;QACxB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,4BAA4B,EAAE;QAC5B,kBAAkB,EAAE,IAAI;QACxB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,YAAY,EAAE;QACZ,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,IAAI;KACf;IACD,cAAc,EAAE;QACd,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,IAAI;KACf;IACD,gBAAgB,EAAE;QAChB,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,IAAI;KACf;CACF,CAAC;AAEF;;;;GAIG;AACH,MAAM,eAAe,GAAG,GAA4B,EAAE;IACpD,OAAO;QACL,aAAa,EAAE,EAAE;QACjB,SAAS,EAAE,EAAE;QACb,cAAc,EAAE,EAAE;QAClB,kBAAkB,EAAE,CAAC;QACrB,oBAAoB,EAAE,CAAC;QACvB,4BAA4B,EAAE,CAAC;QAC/B,YAAY,EAAE,EAAE;QAChB,cAAc,EAAE,EAAE;QAClB,gBAAgB,EAAE,EAAE;KACrB,CAAC;AACJ,CAAC,CAAC;AAwDF,MAAM,yBAAyB,GAAG;IAChC,kBAAkB;IAClB,YAAY;IACZ,kBAAkB;IAClB,QAAQ;IACR,SAAS;IACT,cAAc;IACd,gBAAgB;IAChB,aAAa;IACb,cAAc;CACN,CAAC;AAyDX;;GAEG;AACH,MAAa,kBAAmB,SAAQ,gCAIvC;IA4BC;;;;;;;;;;;;;;;OAeG;IACH,YAAY,EACV,wBAAwB,GAAG,kCAA0B,EACrD,sBAAsB,GAAG,gCAAwB,EACjD,gCAAgC,GAAG,4CAAoC,EACvE,eAAe,GAAG,kCAA0B,EAC5C,mBAAmB,GAAG,uCAA+B,EACrD,iBAAiB,GAAG,oCAA4B,EAChD,qBAAqB,GAAG,yCAAiC,EACzD,mBAAmB,GAAG,sCAA8B,EACpD,uBAAuB,GAAG,2CAAmC,EAC7D,SAAS,EACT,KAAK,GAAG,EAAE,GACgB;QAC1B,KAAK,CAAC;YACJ,IAAI,EAAE,cAAc;YACpB,QAAQ;YACR,SAAS;YACT,KAAK,EAAE;gBACL,GAAG,eAAe,EAAE;gBACpB,GAAG,KAAK;aACT;SACF,CAAC,CAAC;;QAhEL,gCAAgC;QAChC,8DAA8D;QAC9D,+CAAe;QAEN,+DAAkC;QAElC,6DAAgC;QAEhC,uEAA0C;QAE1C,mDAAyD;QAEzD,qDAAkD;QAElD,uDAAsD;QAE/D,8DAAyC;QAEzC,gEAA2C;QAE3C,wEAAmD;QAE1C,8EAGC;QAgTV;;;;;;;;;;WAUG;QACH,SAAI,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAiSlC;;;;;;WAMG;QACM,wDAA6B,KAAK,EACzC,KAAa,EACb,MAAgB,EACsB,EAAE;YACxC,MAAM,OAAO,GAAG,IAAI,CAAC,CAAC,YAAY;YAClC,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;gBACT,MAAM,QAAQ,GAAG,MAAM,KAAK,CAC1B,GAAG,gCAAwB,GAAG,oCAA4B,EAAE,EAC5D;oBACE,MAAM,EAAE,MAAM;oBACd,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;wBAC1B,cAAc,EAAE,kBAAkB;qBACnC;oBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;wBACnB,KAAK;wBACL,MAAM;qBACP,CAAC;iBACH,CACF,CAAC;gBAEF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;oBACjB,OAAO;wBACL,KAAK,EAAE,GAAG,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE;wBAClD,MAAM,EAAE,QAAQ,CAAC,MAAM;wBACvB,UAAU,EAAE,QAAQ,CAAC,UAAU;qBAChC,CAAC;gBACJ,CAAC;gBAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;gBACnC,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,OAAO,CACR,CAAC;YAEF,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,OAAO,CAAC,KAAK,CAAC,qCAAqC,OAAO,aAAa,CAAC,CAAC;gBACzE,OAAO,IAAI,CAAC;YACd,CAAC;YAED,IACE,OAAO,IAAI,WAAW;gBACtB,QAAQ,IAAI,WAAW;gBACvB,YAAY,IAAI,WAAW,EAC3B,CAAC;gBACD,OAAO,CAAC,IAAI,CACV,mCAAmC,WAAW,CAAC,MAAM,IAAI,WAAW,CAAC,UAAU,EAAE,CAClF,CAAC;gBACF,OAAO,IAAI,CAAC;YACd,CAAC;YAED,OAAO,WAAmC,CAAC;QAC7C,CAAC,EAAC;QA6FF;;;;;;WAMG;QACH,iBAAY,GAAG,KAAK,EAClB,OAAe,EACf,OAAe,EACa,EAAE;YAC9B,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC;gBACzB,OAAO,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;YAC3B,CAAC;YAED,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;YAChD,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;YAChD,MAAM,KAAK,GAAG,IAAA,wBAAgB,EAAC,iBAAiB,CAAC,CAAC;YAElD,IAAI,CAAC,KAAK,IAAI,CAAC,IAAA,gCAAwB,EAAC,KAAK,CAAC,EAAE,CAAC;gBAC/C,OAAO,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;YAC3B,CAAC;YAED,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;gBACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,gCAAwB,GAAG,0BAAkB,EAAE,EAClD;oBACE,MAAM,EAAE,MAAM;oBACd,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;wBAC1B,cAAc,EAAE,kBAAkB;qBACnC;oBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;wBACnB,KAAK;wBACL,OAAO,EAAE,iBAAiB;qBAC3B,CAAC;iBACH,CACF,CAAC;gBACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;oBACZ,OAAO,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE,EAAE,CAAC;gBACtD,CAAC;gBACD,MAAM,IAAI,GAAsB,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;gBACjD,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;YAEF,IACE,CAAC,WAAW;gBACZ,OAAO,IAAI,WAAW;gBACtB,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,SAAS,CAAC,EACrC,CAAC;gBACD,OAAO,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;YAC3B,CAAC;YAED,OAAO,WAAW,CAAC;QACrB,CAAC,CAAC;QA6FF;;;;;WAKG;QACM,2CAAgB,KAAK,EAC5B,IAAc,EAC8B,EAAE;YAC9C,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;gBACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,mCAA2B,IAAI,6CAAqC,EAAE,EACzE;oBACE,MAAM,EAAE,MAAM;oBACd,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;wBAC1B,cAAc,EAAE,kBAAkB;qBACnC;oBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,CAAC;iBAC/B,CACF,CAAC;gBAEF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;oBACZ,OAAO;wBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;wBACxC,MAAM,EAAE,GAAG,CAAC,MAAM;wBAClB,UAAU,EAAE,GAAG,CAAC,UAAU;qBAC3B,CAAC;gBACJ,CAAC;gBAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;gBAC9B,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,KAAK,CACN,CAAC;YAEF,mCAAmC;YACnC,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,OAAO;oBACL,OAAO,EAAE,EAAE;oBACX,MAAM,EAAE;wBACN,aAAa,EAAE,CAAC,6BAA6B,CAAC;qBAC/C;iBACF,CAAC;YACJ,CAAC;YAED,8BAA8B;YAC9B,IACE,OAAO,IAAI,WAAW;gBACtB,QAAQ,IAAI,WAAW;gBACvB,YAAY,IAAI,WAAW,EAC3B,CAAC;gBACD,OAAO;oBACL,OAAO,EAAE,EAAE;oBACX,MAAM,EAAE;wBACN,SAAS,EAAE,CAAC,GAAG,WAAW,CAAC,MAAM,IAAI,WAAW,CAAC,UAAU,EAAE,CAAC;qBAC/D;iBACF,CAAC;YACJ,CAAC;YAED,OAAO,WAAgD,CAAC;QAC1D,CAAC,EAAC;QAn6BA,uBAAA,IAAI,gDAA6B,wBAAwB,MAAA,CAAC;QAC1D,uBAAA,IAAI,8CAA2B,sBAAsB,MAAA,CAAC;QACtD,uBAAA,IAAI,wDAAqC,gCAAgC,MAAA,CAAC;QAC1E,uBAAA,IAAI,+DACF,uBAAA,IAAI,6FAAoC,CAAC,IAAI,CAAC,IAAI,CAAC,MAAA,CAAC;QACtD,uBAAA,IAAI,oCAAiB,IAAI,2BAAY,CAA8B;YACjE,QAAQ,EAAE,eAAe;YACzB,YAAY,EAAE,mBAAmB;YACjC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,YAAY;YACrC,WAAW,EAAE,CAAC,KAAK,EAAE,EAAE;gBACrB,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;oBACzB,UAAU,CAAC,YAAY,GAAG,KAAK,CAAC;gBAClC,CAAC,CAAC,CAAC;YACL,CAAC;SACF,CAAC,MAAA,CAAC;QACH,uBAAA,IAAI,sCAAmB,IAAI,2BAAY,CAAqB;YAC1D,QAAQ,EAAE,iBAAiB;YAC3B,YAAY,EAAE,qBAAqB;YACnC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,cAAc;YACvC,WAAW,EAAE,CAAC,KAAK,EAAE,EAAE;gBACrB,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;oBACzB,UAAU,CAAC,cAAc,GAAG,KAAK,CAAC;gBACpC,CAAC,CAAC,CAAC;YACL,CAAC;SACF,CAAC,MAAA,CAAC;QACH,uBAAA,IAAI,wCAAqB,IAAI,2BAAY,CAAuB;YAC9D,QAAQ,EAAE,mBAAmB;YAC7B,YAAY,EAAE,uBAAuB;YACrC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,gBAAgB;YACzC,WAAW,EAAE,CAAC,KAAK,EAAE,EAAE;gBACrB,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;oBACzB,UAAU,CAAC,gBAAgB,GAAG,KAAK,CAAC;gBACtC,CAAC,CAAC,CAAC;YACL,CAAC;SACF,CAAC,MAAA,CAAC;QAEH,IAAI,CAAC,SAAS,CAAC,4BAA4B,CACzC,IAAI,EACJ,yBAAyB,CAC1B,CAAC;QAEF,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAC9B,uBAAA,IAAI,sGAA6C,MAAjD,IAAI,CAA+C,CAAC;IACtD,CAAC;IAgID;;OAEG;IACH,sBAAsB;QACpB,uBAAA,IAAI,gCAAa,IAAI,mCAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAA,CAAC;IAClE,CAAC;IAED;;;;OAIG;IACH,oBAAoB;QAClB,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,oBAAoB;YAChD,uBAAA,IAAI,oDAA0B,CAC/B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,kBAAkB;QAChB,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB;YAC9C,uBAAA,IAAI,kDAAwB,CAC7B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,4BAA4B;QAC1B,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,4BAA4B;YACxD,uBAAA,IAAI,4DAAkC,CACvC,CAAC;IACJ,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,gBAAgB;QACpB,MAAM,kBAAkB,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACvD,IAAI,kBAAkB,EAAE,CAAC;YACvB,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;YAC7B,OAAO;QACT,CAAC;QACD,MAAM,gBAAgB,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACnD,IAAI,gBAAgB,EAAE,CAAC;YACrB,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;QAC7B,CAAC;QACD,MAAM,0BAA0B,GAAG,IAAI,CAAC,4BAA4B,EAAE,CAAC;QACvE,IAAI,0BAA0B,EAAE,CAAC;YAC/B,MAAM,IAAI,CAAC,uBAAuB,EAAE,CAAC;QACvC,CAAC;IACH,CAAC;IAED;;;;;;;;;OASG;IACH,UAAU,CAAC,MAAc;QACvB,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,MAAM,iBAAiB,GAAG,QAAQ,GAAG,IAAA,0BAAkB,EAAC,MAAM,CAAC,CAAC;QAEhE,IAAI,IAAA,4BAAiB,EAAC,iBAAiB,EAAE,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,EAAE,CAAC;YACpE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC;QACjE,CAAC;QAED,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE,CAAC;YAC9D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;QAC/H,CAAC;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;IAC9C,CAAC;IAeD;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAc;QAC7B,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE,CAAC;YAC9D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;QAC/H,CAAC;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,mBAAmB,CAAC,cAAc,CAAC,CAAC;IAC5D,CAAC;IAED;;;;OAIG;IACH,MAAM,CAAC,MAAc;QACnB,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,MAAM,iBAAiB,GAAG,QAAQ,GAAG,IAAA,0BAAkB,EAAC,MAAM,CAAC,CAAC;QAChE,MAAM,EAAE,SAAS,EAAE,cAAc,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC;QACjD,MAAM,aAAa,GAAG,IAAA,4BAAiB,EAAC,iBAAiB,EAAE,cAAc,CAAC,CAAC;QAE3E,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,IAAI,aAAa,EAAE,CAAC;YACpE,OAAO;QACT,CAAC;QAED,+FAA+F;QAC/F,yDAAyD;QACzD,MAAM,YAAY,GAAG,uBAAA,IAAI,oCAAU,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QACzD,IAAI,YAAY,EAAE,CAAC;YACjB,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;gBACzB,IAAA,uBAAY,EAAC,YAAY,EAAE,UAAU,CAAC,cAAc,CAAC,CAAC;YACxD,CAAC,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,IAAI,cAAc,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,uBAAuB;QAC3B,IAAI,uBAAA,IAAI,6DAAmC,EAAE,CAAC;YAC5C,MAAM,uBAAA,IAAI,6DAAmC,CAAC;YAC9C,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,uBAAA,IAAI,yDAAsC,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,MAAA,CAAC;YAC1E,MAAM,uBAAA,IAAI,6DAAmC,CAAC;QAChD,CAAC;gBAAS,CAAC;YACT,uBAAA,IAAI,yDAAsC,SAAS,MAAA,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa;QACjB,IAAI,uBAAA,IAAI,mDAAyB,EAAE,CAAC;YAClC,MAAM,uBAAA,IAAI,mDAAyB,CAAC;YACpC,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,uBAAA,IAAI,+CAA4B,uBAAA,IAAI,wEAAe,MAAnB,IAAI,CAAiB,MAAA,CAAC;YACtD,MAAM,uBAAA,IAAI,mDAAyB,CAAC;QACtC,CAAC;gBAAS,CAAC;YACT,uBAAA,IAAI,+CAA4B,SAAS,MAAA,CAAC;QAC5C,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,eAAe;QACnB,IAAI,uBAAA,IAAI,qDAA2B,EAAE,CAAC;YACpC,MAAM,uBAAA,IAAI,qDAA2B,CAAC;YACtC,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,uBAAA,IAAI,iDAA8B,uBAAA,IAAI,0EAAiB,MAArB,IAAI,CAAmB,MAAA,CAAC;YAC1D,MAAM,uBAAA,IAAI,qDAA2B,CAAC;QACxC,CAAC;gBAAS,CAAC;YACT,uBAAA,IAAI,iDAA8B,SAAS,MAAA,CAAC;QAC9C,CAAC;IACH,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,OAAO,CAAC,GAAW;QACvB,MAAM,CAAC,YAAY,EAAE,WAAW,CAAC,GAAG,IAAA,wCAAgC,EAAC,GAAG,CAAC,CAAC;QAC1E,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,OAAO;gBACL,QAAQ,EAAE,EAAE;gBACZ,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;gBACzC,UAAU,EAAE,4BAA4B;aACzC,CAAC;QACJ,CAAC;QAED,MAAM,CAAC,QAAQ,CAAC,GAAG,IAAA,6BAAqB,EAAC,GAAG,CAAC,CAAC;QAE9C,MAAM,YAAY,GAAG,uBAAA,IAAI,wCAAc,CAAC,GAAG,CAAC,YAAY,CAAC,CAAC;QAC1D,IAAI,YAAY,EAAE,CAAC;YACjB,OAAO,YAAY,CAAC;QACtB,CAAC;QAED,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,mCAA2B,IAAI,wCAAgC,QAAQ,kBAAkB,CAAC,YAAY,CAAC,EAAE,EAC5G;gBACE,MAAM,EAAE,KAAK;gBACb,OAAO,EAAE;oBACP,MAAM,EAAE,kBAAkB;iBAC3B;aACF,CACF,CAAC;YACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,OAAO;oBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;iBACzC,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC;QACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;QAEF,0GAA0G;QAC1G,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,OAAO;gBACL,QAAQ,EAAE,EAAE;gBACZ,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;gBACzC,UAAU,EAAE,4BAA4B;aACzC,CAAC;QACJ,CAAC;aAAM,IAAI,OAAO,IAAI,WAAW,EAAE,CAAC;YAClC,OAAO;gBACL,QAAQ,EAAE,EAAE;gBACZ,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;gBACzC,UAAU,EAAE,WAAW,CAAC,KAAK;aAC9B,CAAC;QACJ,CAAC;QAED,MAAM,MAAM,GAAG;YACb,QAAQ;YACR,iBAAiB,EAAE,WAAW,CAAC,iBAAiB;SACjD,CAAC;QAEF,uBAAA,IAAI,wCAAc,CAAC,GAAG,CAAC,YAAY,EAAE,MAAM,CAAC,CAAC;QAE7C,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,YAAY,CAChB,IAAc;QAEd,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/B,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,MAAM,EAAE,EAAE;aACX,CAAC;QACJ,CAAC;QAED,wDAAwD;QACxD,MAAM,cAAc,GAAG,GAAG,CAAC;QAC3B,IAAI,IAAI,CAAC,MAAM,GAAG,cAAc,EAAE,CAAC;YACjC,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,MAAM,EAAE;oBACN,aAAa,EAAE;wBACb,cAAc,cAAc,2BAA2B;qBACxD;iBACF;aACF,CAAC;QACJ,CAAC;QAED,MAAM,cAAc,GAAG,IAAI,CAAC;QAC5B,MAAM,gBAAgB,GAAsC;YAC1D,OAAO,EAAE,EAAE;YACX,MAAM,EAAE,EAAE;SACX,CAAC;QAEF,4EAA4E;QAC5E,MAAM,eAAe,GAA2B,EAAE,CAAC;QACnD,MAAM,WAAW,GAAa,EAAE,CAAC;QAEjC,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;YACvB,IAAI,GAAG,CAAC,MAAM,GAAG,cAAc,EAAE,CAAC;gBAChC,gBAAgB,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG;oBAC7B,8BAA8B,cAAc,aAAa;iBAC1D,CAAC;gBACF,SAAS;YACX,CAAC;YAED,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,GAAG,IAAA,6BAAqB,EAAC,GAAG,CAAC,CAAC;YAClD,IAAI,CAAC,EAAE,EAAE,CAAC;gBACR,gBAAgB,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,4BAA4B,CAAC,CAAC;gBAC9D,SAAS;YACX,CAAC;YAED,sCAAsC;YACtC,MAAM,YAAY,GAAG,uBAAA,IAAI,wCAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACtD,IAAI,YAAY,EAAE,CAAC;gBACjB,oBAAoB;gBACpB,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;YAC/C,CAAC;iBAAM,CAAC;gBACN,+BAA+B;gBAC/B,eAAe,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC;gBAChC,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACxB,CAAC;QACH,CAAC;QAED,sDAAsD;QACtD,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,uEAAuE;YACvE,MAAM,kBAAkB,GAAG,EAAE,CAAC;YAC9B,MAAM,OAAO,GAAe,EAAE,CAAC;YAC/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,WAAW,CAAC,MAAM,EAAE,CAAC,IAAI,kBAAkB,EAAE,CAAC;gBAChE,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,GAAG,kBAAkB,CAAC,CAAC,CAAC;YAC7D,CAAC;YAED,iCAAiC;YACjC,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,GAAG,CACpC,OAAO,CAAC,GAAG,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,uBAAA,IAAI,wCAAc,MAAlB,IAAI,EAAe,SAAS,CAAC,CAAC,CAC1D,CAAC;YAEF,4CAA4C;YAC5C,YAAY,CAAC,OAAO,CAAC,CAAC,aAAa,EAAE,EAAE;gBACrC,iDAAiD;gBACjD,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,MAAM,CAAC,EAAE,EAAE;oBAC9D,MAAM,QAAQ,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;oBACtC,IAAI,QAAQ,EAAE,CAAC;wBACb,uBAAA,IAAI,wCAAc,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;oBAC3C,CAAC;oBACD,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC;gBACzC,CAAC,CAAC,CAAC;gBAEH,iBAAiB;gBACjB,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,QAAQ,CAAC,EAAE,EAAE;oBAC/D,gBAAgB,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG;wBAC7B,GAAG,CAAC,gBAAgB,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;wBACvC,GAAG,QAAQ;qBACZ,CAAC;gBACJ,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;QACL,CAAC;QAED,OAAO,gBAAgB,CAAC;IAC1B,CAAC;IAiED;;;;;;OAMG;IACH,KAAK,CAAC,WAAW,CACf,OAAe,EACf,OAAe;QAEf,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC;YACzB,OAAO;gBACL,WAAW,EAAE,6BAAqB,CAAC,WAAW;gBAC9C,KAAK,EAAE,EAAE;aACV,CAAC;QACJ,CAAC;QAED,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QAChD,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QAChD,MAAM,KAAK,GAAG,IAAA,wBAAgB,EAAC,iBAAiB,CAAC,CAAC;QAElD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO;gBACL,WAAW,EAAE,6BAAqB,CAAC,WAAW;gBAC9C,KAAK,EAAE,EAAE;aACV,CAAC;QACJ,CAAC;QAED,MAAM,QAAQ,GAAG,IAAA,qBAAa,EAAC,iBAAiB,EAAE,iBAAiB,CAAC,CAAC;QACrE,MAAM,YAAY,GAAG,uBAAA,IAAI,4CAAkB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAC1D,IAAI,YAAY,EAAE,CAAC;YACjB,OAAO;gBACL,WAAW,EAAE,YAAY,CAAC,WAAW;gBACrC,KAAK,EAAE,YAAY,CAAC,KAAK;aAC1B,CAAC;QACJ,CAAC;QAED,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,gCAAwB,GAAG,6BAAqB,EAAE,EACrD;gBACE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,MAAM,EAAE,kBAAkB;oBAC1B,cAAc,EAAE,kBAAkB;iBACnC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,KAAK;oBACL,OAAO,EAAE,iBAAiB;iBAC3B,CAAC;aACH,CACF,CAAC;YACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,OAAO;oBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;iBACzC,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,GAAsB,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;YACjD,OAAO,IAAI,CAAC;QACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;QAEF,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,OAAO;gBACL,WAAW,EAAE,6BAAqB,CAAC,WAAW;gBAC9C,KAAK,EAAE,EAAE;aACV,CAAC;QACJ,CAAC;aAAM,IAAI,OAAO,IAAI,WAAW,EAAE,CAAC;YAClC,OAAO;gBACL,WAAW,EAAE,6BAAqB,CAAC,WAAW;gBAC9C,KAAK,EAAE,EAAE;aACV,CAAC;QACJ,CAAC;QAED,MAAM,MAAM,GAAyB;YACnC,WAAW,EAAE,WAAW,CAAC,WAAW;YACpC,KAAK,EAAE,WAAW,CAAC,KAAK;SACzB,CAAC;QAEF,uBAAA,IAAI,4CAAkB,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAE7C,OAAO;YACL,WAAW,EAAE,WAAW,CAAC,WAAW;YACpC,KAAK,EAAE,WAAW,CAAC,KAAK;SACzB,CAAC;IACJ,CAAC;IA8DD;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,cAAc,CAClB,OAA6B;QAE7B,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC;QAEpC,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACnC,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,sBAAsB,GAAG,GAAG,CAAC;QACnC,IAAI,MAAM,CAAC,MAAM,GAAG,sBAAsB,EAAE,CAAC;YAC3C,OAAO,CAAC,IAAI,CACV,cAAc,sBAAsB,6BAA6B,CAClE,CAAC;YACF,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QAChD,MAAM,KAAK,GAAG,IAAA,wBAAgB,EAAC,iBAAiB,CAAC,CAAC;QAElD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,IAAI,CAAC,qBAAqB,OAAO,EAAE,CAAC,CAAC;YAC7C,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,qEAAqE;QACrE,yDAAyD;QACzD,MAAM,aAAa,GAAG,CAAC,iBAAiB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QAE1D,sEAAsE;QACtE,MAAM,EAAE,aAAa,EAAE,aAAa,EAAE,GAAG,IAAA,sBAAc,EACrD,uBAAA,IAAI,0CAAgB,EACpB,iBAAiB,EACjB,MAAM,EACN,aAAa,CACd,CAAC;QAEF,MAAM,OAAO,GAA0B,EAAE,GAAG,aAAa,EAAE,CAAC;QAE5D,6DAA6D;QAC7D,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7B,MAAM,WAAW,GAAG,MAAM,uBAAA,IAAI,qDAA2B,MAA/B,IAAI,EAC5B,KAAK,EACL,aAAa,CACd,CAAC;YACF,IAAI,WAAW,EAAE,OAAO,EAAE,CAAC;gBACzB,uCAAuC;gBACvC,KAAK,MAAM,YAAY,IAAI,aAAa,EAAE,CAAC;oBACzC,MAAM,iBAAiB,GAAG,aAAa;wBACrC,CAAC,CAAC,YAAY;wBACd,CAAC,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC;oBAC/B,MAAM,WAAW,GAAG,WAAW,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;oBAE3D,IAAI,WAAW,EAAE,WAAW,EAAE,CAAC;wBAC7B,MAAM,MAAM,GAAG;4BACb,WAAW,EAAE,WAAW,CAAC,WAAW;4BACpC,KAAK,EAAE,WAAW,CAAC,KAAK,IAAI,iBAAiB;4BAC7C,OAAO,EAAE,WAAW,CAAC,OAAO,IAAI,iBAAiB;yBAClD,CAAC;wBAEF,eAAe;wBACf,MAAM,QAAQ,GAAG,IAAA,qBAAa,EAC5B,iBAAiB,EACjB,iBAAiB,EACjB,aAAa,CACd,CAAC;wBACF,uBAAA,IAAI,0CAAgB,CAAC,GAAG,CAAC,QAAQ,EAAE;4BACjC,WAAW,EAAE,WAAW,CAAC,WAAW;yBACrC,CAAC,CAAC;wBAEH,OAAO,CAAC,iBAAiB,CAAC,GAAG,MAAM,CAAC;oBACtC,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;CA2PF;AApqCD,gDAoqCC;;IA/iCG,IAAI,CAAC,SAAS,CAAC,SAAS,CACtB,mCAAmC,EACnC,uBAAA,IAAI,mEAAyC,CAC9C,CAAC;AACJ,CAAC,2FAQmB,KAAY;IAC9B,MAAM,EAAE,IAAI,EAAE,GAAG,KAAK,CAAC;IACvB,OAAO,CACL,IAAI,CAAC,MAAM,KAAK,CAAC;QACjB,IAAI,CAAC,CAAC,CAAC,KAAK,cAAc;QAC1B,OAAO,IAAI,CAAC,CAAC,CAAC,KAAK,QAAQ,CAC5B,CAAC;AACJ,CAAC,iGAQsB,KAAY;IACjC,MAAM,EAAE,IAAI,EAAE,GAAG,KAAK,CAAC;IACvB,OAAO,CACL,IAAI,CAAC,MAAM,KAAK,CAAC;QACjB,IAAI,CAAC,CAAC,CAAC,KAAK,cAAc;QAC1B,OAAO,IAAI,CAAC,CAAC,CAAC,KAAK,QAAQ;QAC3B,IAAI,CAAC,CAAC,CAAC,KAAK,gBAAgB,CAC7B,CAAC;AACJ,CAAC,2HAWC,MAA2C,EAC3C,OAAgB;IAEhB,IAAI,CAAC;QACH,MAAM,aAAa,GAAG,IAAI,GAAG,EAAuB,CAAC;QAErD,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,IAAI,KAAK,CAAC,EAAE,KAAK,QAAQ,EAAE,CAAC;gBAC1B,SAAS;YACX,CAAC;YAED,sEAAsE;YACtE,IAAI,uBAAA,IAAI,6EAAoB,MAAxB,IAAI,EAAqB,KAAK,CAAC,EAAE,CAAC;gBACpC,MAAM,WAAW,GAAG,KAAK,CAAC,KAAwB,CAAC;gBACnD,uBAAA,IAAI,mFAA0B,MAA9B,IAAI,EAA2B,WAAW,EAAE,aAAa,CAAC,CAAC;YAC7D,CAAC;iBAAM,IAAI,uBAAA,IAAI,gFAAuB,MAA3B,IAAI,EAAwB,KAAK,CAAC,EAAE,CAAC;gBAC9C,MAAM,gBAAgB,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAW,CAAC;gBACjD,MAAM,WAAW,GAAG,MAAM,CAAC,YAAY,EAAE,CAAC,gBAAgB,CAAC,CAAC;gBAC5D,uBAAA,IAAI,mFAA0B,MAA9B,IAAI,EAA2B,WAAW,EAAE,aAAa,CAAC,CAAC;YAC7D,CAAC;QACH,CAAC;QAED,uBAAA,IAAI,4EAAmB,MAAvB,IAAI,EAAoB,aAAa,CAAC,CAAC;IACzC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,4CAA4C,EAAE,KAAK,CAAC,CAAC;IACrE,CAAC;AACH,CAAC,uGASC,WAA4B,EAC5B,aAAuC;IAEvC,+CAA+C;IAC/C,MAAM,cAAc,GAAG,WAAW,CAAC,cAAc,EAAE,mBAAmB,EAAE,GAAG,CACzE,CAAC,WAAW,EAAE,EAAE,CAAC,WAAW,CAAC,OAAO,CAAC,WAAW,EAAE,CACnD,CAAC;IAEF,4CAA4C;IAC5C,IAAI,cAAc,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,IAAI,WAAW,CAAC,OAAO,EAAE,CAAC;QACvE,MAAM,OAAO,GAAG,WAAW,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;QAElD,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;YAChC,aAAa,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,GAAG,EAAE,CAAC,CAAC;QACxC,CAAC;QAED,MAAM,WAAW,GAAG,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAC/C,IAAI,WAAW,EAAE,CAAC;YAChB,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;gBACrC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAC3B,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC,yFAOkB,aAAuC;IACxD,KAAK,MAAM,CAAC,OAAO,EAAE,QAAQ,CAAC,IAAI,aAAa,EAAE,CAAC;QAChD,IAAI,QAAQ,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;YACtB,MAAM,MAAM,GAAG,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACpC,IAAI,CAAC,cAAc,CAAC;gBAClB,OAAO;gBACP,MAAM;aACP,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE,CACjB,OAAO,CAAC,KAAK,CAAC,mCAAmC,OAAO,GAAG,EAAE,KAAK,CAAC,CACpE,CAAC;QACJ,CAAC;IACH,CAAC;AACH,CAAC;AA4vBD;;;;;GAKG;AACH,KAAK;IACH,IAAI,iBAAiB,GAAgD,IAAI,CAAC;IAC1E,IAAI,oBAAoB,GAAsC,IAAI,CAAC;IACnE,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IACvE,IAAI,CAAC;QACH,MAAM,gBAAgB,GAAG,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE3B,8BAAsB,CAAC,CAAC;QAE1B,MAAM,wBAAwB,GAC5B,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAAyC,+BAAuB,CAAC,CAAC;QAExE,CAAC,iBAAiB,EAAE,yBAAyB,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACjE,gBAAgB;YAChB,wBAAwB;SACzB,CAAC,CAAC;QACH,yGAAyG;QACzG,8EAA8E;QAC9E,IAAI,iBAAiB,EAAE,IAAI,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,EAAE,CAAC;YACtE,oBAAoB,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE/B,GAAG,iCAAyB,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;QAC1E,CAAC;IACH,CAAC;YAAS,CAAC;QACT,iGAAiG;QACjG,kEAAkE;QAClE,MAAM,OAAO,GAAG,IAAA,oBAAY,GAAE,CAAC;QAC/B,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,oBAAoB,GAAG,OAAO,CAAC;YAC1C,UAAU,CAAC,kBAAkB,GAAG,OAAO,CAAC;YACxC,IAAI,yBAAyB,EAAE,CAAC;gBAC9B,UAAU,CAAC,4BAA4B,GAAG,OAAO,CAAC;YACpD,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC,iBAAiB,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAChD,OAAO;IACT,CAAC;IAED,MAAM,iBAAiB,GAAsB;QAC3C,SAAS,EAAE,iBAAiB,CAAC,IAAI,CAAC,SAAS;QAC3C,SAAS,EAAE,iBAAiB,CAAC,IAAI,CAAC,SAAS;QAC3C,SAAS,EAAE,iBAAiB,CAAC,IAAI,CAAC,SAAS;QAC3C,OAAO,EAAE,iBAAiB,CAAC,IAAI,CAAC,OAAO;QACvC,WAAW,EAAE,iBAAiB,CAAC,IAAI,CAAC,WAAW;QAC/C,SAAS,EAAE,iBAAiB,CAAC,IAAI,CAAC,SAAS;QAC3C,cAAc,EAAE,IAAA,4BAAiB,EAAC,iBAAiB,CAAC,IAAI,CAAC,cAAc,CAAC;QACxE,iBAAiB,EAAE,yBAAyB;YAC1C,CAAC,CAAC,yBAAyB,CAAC,aAAa;YACzC,CAAC,CAAC,EAAE;QACN,IAAI,EAAE,8BAAsB,CAAC,0BAA0B;KACxD,CAAC;IAEF,MAAM,oBAAoB,GAAsB,IAAA,kBAAU,EACxD,iBAAiB,EACjB,oBAAoB,CAAC,IAAI,EACzB,QAAQ,CAAC,uBAAuB,CACjC,CAAC;IAEF,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,CAAC,oBAAoB,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,IAAI,eAAkD,CAAC;IAEvD,IAAI,CAAC;QACH,IAAI,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1C,OAAO;QACT,CAAC;QAED,MAAM,iBAAiB,GAAG,IAAI,CAAC,GAAG,CAChC,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC,WAAW,CAAC,CAClE,CAAC;QAEF,eAAe,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAC1B,GAAG,iCAAyB,IAAI,iBAAiB,EAAE,CACpD,CAAC;IACJ,CAAC;YAAS,CAAC;QACT,kGAAkG;QAClG,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,kBAAkB,GAAG,IAAA,oBAAY,GAAE,CAAC;QACjD,CAAC,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC,eAAe,EAAE,IAAI,EAAE,CAAC;QAC3B,OAAO;IACT,CAAC;IACD,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC;IACrC,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,IAAA,kBAAU,EAC5B,YAAY,EACZ,OAAO,EACP,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,EAAE,EACF,EAAE,CACH,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,MAAM,yBAAyB,GAC7B,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EACR,GAAG,+BAAuB,cAAc,IAAA,4BAAoB,EAC1D,IAAI,CAAC,KAAK,CAAC,4BAA4B,CACxC,EAAE,CACJ,CAAC;IAEJ,IAAI,CAAC,yBAAyB,EAAE,CAAC;QAC/B,OAAO;IACT,CAAC;IAED,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,4BAA4B,GAAG,IAAA,oBAAY,GAAE,CAAC;IAC3D,CAAC,CAAC,CAAC;IAEH,MAAM,sBAAsB,GAAG,yBAAyB,CAAC,aAAa,CAAC;IACvE,MAAM,wBAAwB,GAAG,yBAAyB,CAAC,eAAe,CAAC;IAE3E,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,IAAA,kBAAU,EAC5B,YAAY,EACZ,EAAE,EACF,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,sBAAsB,EACtB,wBAAwB,CACzB,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC,oCAED,KAAK,0CACH,KAAkB;IAElB,MAAM,QAAQ,GAAG,MAAM,IAAA,gCAAa,EAClC,GAAG,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EACzC,IAAI,CACL,CAAC;IAEF,QAAQ,QAAQ,EAAE,MAAM,EAAE,CAAC;QACzB,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,OAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAC/B,CAAC;QAED,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;AACH,CAAC;AAGH,kBAAe,kBAAkB,CAAC","sourcesContent":["import { BaseController } from '@metamask/base-controller';\nimport type {\n StateMetadata,\n ControllerGetStateAction,\n ControllerStateChangeEvent,\n} from '@metamask/base-controller';\nimport {\n safelyExecute,\n safelyExecuteWithTimeout,\n} from '@metamask/controller-utils';\nimport type { Messenger } from '@metamask/messenger';\nimport type {\n TransactionControllerStateChangeEvent,\n TransactionMeta,\n} from '@metamask/transaction-controller';\nimport type { Patch } from 'immer';\nimport { toASCII } from 'punycode/punycode.js';\n\nimport { CacheManager } from './CacheManager';\nimport type { CacheEntry } from './CacheManager';\nimport { convertListToTrie, insertToTrie, matchedPathPrefix } from './PathTrie';\nimport type { PathTrie } from './PathTrie';\nimport type {\n PhishingControllerMaybeUpdateStateAction,\n PhishingControllerMethodActions,\n PhishingControllerTestOriginAction,\n} from './PhishingController-method-action-types';\nimport { PhishingDetector } from './PhishingDetector';\nimport {\n PhishingDetectorResultType,\n RecommendedAction,\n AddressScanResultType,\n} from './types';\nimport type {\n PhishingDetectorResult,\n PhishingDetectionScanResult,\n TokenScanCacheData,\n BulkTokenScanResponse,\n BulkTokenScanRequest,\n TokenScanApiResponse,\n AddressScanCacheData,\n AddressScanResult,\n ApprovalsResponse,\n} from './types';\nimport {\n applyDiffs,\n fetchTimeNow,\n getHostnameFromUrl,\n roundToNearestMinute,\n getHostnameFromWebUrl,\n getPhishingDetectionScanUrlParam,\n buildCacheKey,\n splitCacheHits,\n resolveChainName,\n getPathnameFromUrl,\n isApprovalSupportedChain,\n} from './utils';\n\nexport const PHISHING_CONFIG_BASE_URL =\n 'https://phishing-detection.api.cx.metamask.io';\nexport const METAMASK_STALELIST_FILE = '/v1/stalelist';\nexport const METAMASK_HOTLIST_DIFF_FILE = '/v2/diffsSince';\n\nexport const CLIENT_SIDE_DETECION_BASE_URL =\n 'https://client-side-detection.api.cx.metamask.io';\nexport const C2_DOMAIN_BLOCKLIST_ENDPOINT = '/v1/request-blocklist';\n\nexport const PHISHING_DETECTION_BASE_URL =\n 'https://dapp-scanning.api.cx.metamask.io';\nexport const PHISHING_DETECTION_SCAN_ENDPOINT = 'v2/scan';\nexport const PHISHING_DETECTION_BULK_SCAN_ENDPOINT = 'bulk-scan';\n\nexport const SECURITY_ALERTS_BASE_URL =\n 'https://security-alerts.api.cx.metamask.io';\nexport const TOKEN_BULK_SCANNING_ENDPOINT = '/token/scan-bulk';\nexport const ADDRESS_SCAN_ENDPOINT = '/address/evm/scan';\nexport const APPROVALS_ENDPOINT = '/address/evm/approvals';\n\n// Cache configuration defaults\nexport const DEFAULT_URL_SCAN_CACHE_TTL = 1 * 60; // 1 minute in seconds\nexport const DEFAULT_URL_SCAN_CACHE_MAX_SIZE = 250;\nexport const DEFAULT_TOKEN_SCAN_CACHE_TTL = 1 * 60; // 1 minute in seconds\nexport const DEFAULT_TOKEN_SCAN_CACHE_MAX_SIZE = 1000;\nexport const DEFAULT_ADDRESS_SCAN_CACHE_TTL = 1 * 60; // 1 minute in seconds\nexport const DEFAULT_ADDRESS_SCAN_CACHE_MAX_SIZE = 1000;\n\nexport const C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const HOTLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const STALELIST_REFRESH_INTERVAL = 30 * 24 * 60 * 60; // 30 days in seconds\n\nexport const METAMASK_STALELIST_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_STALELIST_FILE}`;\nexport const METAMASK_HOTLIST_DIFF_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_HOTLIST_DIFF_FILE}`;\nexport const C2_DOMAIN_BLOCKLIST_URL = `${CLIENT_SIDE_DETECION_BASE_URL}${C2_DOMAIN_BLOCKLIST_ENDPOINT}`;\n\n/**\n * @type ListTypes\n *\n * Type outlining the types of lists provided by aggregating different source lists\n */\nexport type ListTypes =\n | 'fuzzylist'\n | 'blocklist'\n | 'blocklistPaths'\n | 'allowlist'\n | 'c2DomainBlocklist';\n\n/**\n * @type EthPhishingResponse\n *\n * Configuration response from the eth-phishing-detect package\n * consisting of approved and unapproved website origins\n *\n * @property blacklist - List of unapproved origins\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property version - Version number of this configuration\n * @property whitelist - List of approved origins\n */\nexport type EthPhishingResponse = {\n blacklist: string[];\n fuzzylist: string[];\n tolerance: number;\n version: number;\n whitelist: string[];\n};\n\n/**\n * @type C2DomainBlocklistResponse\n *\n * Response for blocklist update requests\n *\n * @property recentlyAdded - List of c2 domains recently added to the blocklist\n * @property recentlyRemoved - List of c2 domains recently removed from the blocklist\n * @property lastFetchedAt - Timestamp of the last fetch request\n */\nexport type C2DomainBlocklistResponse = {\n recentlyAdded: string[];\n recentlyRemoved: string[];\n lastFetchedAt: string;\n};\n\n/**\n * PhishingStalelist defines the expected type of the stalelist from the API.\n *\n * allowlist - List of approved origins.\n * blocklist - List of unapproved origins (hostname-only entries).\n * blocklistPaths - Trie of unapproved origins with paths (hostname + path entries).\n * fuzzylist - List of fuzzy-matched unapproved origins.\n * tolerance - Fuzzy match tolerance level\n * lastUpdated - Timestamp of last update.\n * version - Stalelist data structure iteration.\n */\nexport type PhishingStalelist = {\n allowlist: string[];\n blocklist: string[];\n blocklistPaths: string[];\n fuzzylist: string[];\n tolerance: number;\n version: number;\n lastUpdated: number;\n};\n\n/**\n * @type PhishingListState\n *\n * type defining the persisted list state. This is the persisted state that is updated frequently with `this.maybeUpdateState()`.\n *\n * @property allowlist - List of approved origins (legacy naming \"whitelist\")\n * @property blocklist - List of unapproved origins (legacy naming \"blacklist\")\n * @property blocklistPaths - Trie of unapproved origins with paths (hostname + path, no query params).\n * @property c2DomainBlocklist - List of hashed hostnames that C2 requests are blocked against.\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Version of the phishing list state.\n * @property name - Name of the list. Used for attribution.\n */\nexport type PhishingListState = {\n allowlist: string[];\n blocklist: string[];\n blocklistPaths: PathTrie;\n c2DomainBlocklist: string[];\n fuzzylist: string[];\n tolerance: number;\n version: number;\n lastUpdated: number;\n name: ListNames;\n};\n\n/**\n * @type HotlistDiff\n *\n * type defining the expected type of the diffs in hotlist.json file.\n *\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type HotlistDiff = {\n url: string;\n timestamp: number;\n targetList: `${ListKeys}.${ListTypes}`;\n isRemoval?: boolean;\n};\n\nexport type DataResultWrapper<T> = {\n data: T;\n};\n\n/**\n * @type Hotlist\n *\n * Type defining expected hotlist.json file.\n *\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type Hotlist = HotlistDiff[];\n\n/**\n * Enum containing upstream data provider source list keys.\n * These are the keys denoting lists consumed by the upstream data provider.\n */\nexport enum ListKeys {\n EthPhishingDetectConfig = 'eth_phishing_detect_config',\n}\n\n/**\n * Enum containing downstream client attribution names.\n */\nexport enum ListNames {\n MetaMask = 'MetaMask',\n}\n\n/**\n * Maps from downstream client attribution name\n * to list key sourced from upstream data provider.\n */\nconst phishingListNameKeyMap = {\n [ListNames.MetaMask]: ListKeys.EthPhishingDetectConfig,\n};\n\n/**\n * Maps from list key sourced from upstream data\n * provider to downstream client attribution name.\n */\nexport const phishingListKeyNameMap = {\n [ListKeys.EthPhishingDetectConfig]: ListNames.MetaMask,\n};\n\nconst controllerName = 'PhishingController';\n\nconst metadata: StateMetadata<PhishingControllerState> = {\n phishingLists: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n whitelist: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n whitelistPaths: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n hotlistLastFetched: {\n includeInStateLogs: true,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n stalelistLastFetched: {\n includeInStateLogs: true,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n c2DomainBlocklistLastFetched: {\n includeInStateLogs: true,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n urlScanCache: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: true,\n },\n tokenScanCache: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: true,\n },\n addressScanCache: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: true,\n },\n};\n\n/**\n * Get a default empty state for the controller.\n *\n * @returns The default empty state.\n */\nconst getDefaultState = (): PhishingControllerState => {\n return {\n phishingLists: [],\n whitelist: [],\n whitelistPaths: {},\n hotlistLastFetched: 0,\n stalelistLastFetched: 0,\n c2DomainBlocklistLastFetched: 0,\n urlScanCache: {},\n tokenScanCache: {},\n addressScanCache: {},\n };\n};\n\n/**\n * @type PhishingControllerState\n *\n * Phishing controller state\n * phishingLists - array of phishing lists\n * whitelist - origins that bypass the phishing detector\n * whitelistPaths - origins with paths that bypass the phishing detector\n * hotlistLastFetched - timestamp of the last hotlist fetch\n * stalelistLastFetched - timestamp of the last stalelist fetch\n * c2DomainBlocklistLastFetched - timestamp of the last c2 domain blocklist fetch\n * urlScanCache - cache of URL scan results\n * tokenScanCache - cache of token scan results\n * addressScanCache - cache of address scan results\n */\nexport type PhishingControllerState = {\n phishingLists: PhishingListState[];\n whitelist: string[];\n whitelistPaths: PathTrie;\n hotlistLastFetched: number;\n stalelistLastFetched: number;\n c2DomainBlocklistLastFetched: number;\n urlScanCache: Record<string, CacheEntry<PhishingDetectionScanResult>>;\n tokenScanCache: Record<string, CacheEntry<TokenScanCacheData>>;\n addressScanCache: Record<string, CacheEntry<AddressScanCacheData>>;\n};\n\n/**\n * PhishingControllerOptions\n *\n * Phishing controller options\n * stalelistRefreshInterval - Polling interval used to fetch stale list.\n * hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n * c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n * urlScanCacheTTL - Time to live in seconds for cached scan results.\n * urlScanCacheMaxSize - Maximum number of entries in the scan cache.\n * tokenScanCacheTTL - Time to live in seconds for cached token scan results.\n * tokenScanCacheMaxSize - Maximum number of entries in the token scan cache.\n * addressScanCacheTTL - Time to live in seconds for cached address scan results.\n * addressScanCacheMaxSize - Maximum number of entries in the address scan cache.\n */\nexport type PhishingControllerOptions = {\n stalelistRefreshInterval?: number;\n hotlistRefreshInterval?: number;\n c2DomainBlocklistRefreshInterval?: number;\n urlScanCacheTTL?: number;\n urlScanCacheMaxSize?: number;\n tokenScanCacheTTL?: number;\n tokenScanCacheMaxSize?: number;\n addressScanCacheTTL?: number;\n addressScanCacheMaxSize?: number;\n messenger: PhishingControllerMessenger;\n state?: Partial<PhishingControllerState>;\n};\n\nconst MESSENGER_EXPOSED_METHODS = [\n 'maybeUpdateState',\n 'testOrigin',\n 'isBlockedRequest',\n 'bypass',\n 'scanUrl',\n 'bulkScanUrls',\n 'bulkScanTokens',\n 'scanAddress',\n 'getApprovals',\n] as const;\n\n/**\n * @deprecated Use `PhishingControllerTestOriginAction` instead.\n */\nexport type TestOrigin = PhishingControllerTestOriginAction;\n\n/**\n * @deprecated Use `PhishingControllerMaybeUpdateStateAction` instead.\n */\nexport type MaybeUpdateState = PhishingControllerMaybeUpdateStateAction;\n\nexport type PhishingControllerGetStateAction = ControllerGetStateAction<\n typeof controllerName,\n PhishingControllerState\n>;\n\nexport type PhishingControllerActions =\n | PhishingControllerGetStateAction\n | PhishingControllerMethodActions;\n\nexport type PhishingControllerStateChangeEvent = ControllerStateChangeEvent<\n typeof controllerName,\n PhishingControllerState\n>;\n\nexport type PhishingControllerEvents = PhishingControllerStateChangeEvent;\n\n/**\n * The external actions available to the PhishingController.\n */\ntype AllowedActions = never;\n\n/**\n * The external events available to the PhishingController.\n */\nexport type AllowedEvents = TransactionControllerStateChangeEvent;\n\nexport type PhishingControllerMessenger = Messenger<\n typeof controllerName,\n PhishingControllerActions | AllowedActions,\n PhishingControllerEvents | AllowedEvents\n>;\n\n/**\n * BulkPhishingDetectionScanResponse\n *\n * Response for bulk phishing detection scan requests\n * results - Record of domain names and their corresponding phishing detection scan results\n *\n * errors - Record of domain names and their corresponding errors\n */\nexport type BulkPhishingDetectionScanResponse = {\n results: Record<string, PhishingDetectionScanResult>;\n errors: Record<string, string[]>;\n};\n\n/**\n * Controller that manages community-maintained lists of approved and unapproved website origins.\n */\nexport class PhishingController extends BaseController<\n typeof controllerName,\n PhishingControllerState,\n PhishingControllerMessenger\n> {\n // TODO: Replace `any` with type\n // eslint-disable-next-line @typescript-eslint/no-explicit-any\n #detector: any;\n\n readonly #stalelistRefreshInterval: number;\n\n readonly #hotlistRefreshInterval: number;\n\n readonly #c2DomainBlocklistRefreshInterval: number;\n\n readonly #urlScanCache: CacheManager<PhishingDetectionScanResult>;\n\n readonly #tokenScanCache: CacheManager<TokenScanCacheData>;\n\n readonly #addressScanCache: CacheManager<AddressScanCacheData>;\n\n #inProgressHotlistUpdate?: Promise<void>;\n\n #inProgressStalelistUpdate?: Promise<void>;\n\n #isProgressC2DomainBlocklistUpdate?: Promise<void>;\n\n readonly #transactionControllerStateChangeHandler: (\n state: { transactions: TransactionMeta[] },\n patches: Patch[],\n ) => void;\n\n /**\n * Construct a Phishing Controller.\n *\n * @param config - Initial options used to configure this controller.\n * @param config.stalelistRefreshInterval - Polling interval used to fetch stale list.\n * @param config.hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n * @param config.c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n * @param config.urlScanCacheTTL - Time to live in seconds for cached scan results.\n * @param config.urlScanCacheMaxSize - Maximum number of entries in the scan cache.\n * @param config.tokenScanCacheTTL - Time to live in seconds for cached token scan results.\n * @param config.tokenScanCacheMaxSize - Maximum number of entries in the token scan cache.\n * @param config.addressScanCacheTTL - Time to live in seconds for cached address scan results.\n * @param config.addressScanCacheMaxSize - Maximum number of entries in the address scan cache.\n * @param config.messenger - The controller restricted messenger.\n * @param config.state - Initial state to set on this controller.\n */\n constructor({\n stalelistRefreshInterval = STALELIST_REFRESH_INTERVAL,\n hotlistRefreshInterval = HOTLIST_REFRESH_INTERVAL,\n c2DomainBlocklistRefreshInterval = C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL,\n urlScanCacheTTL = DEFAULT_URL_SCAN_CACHE_TTL,\n urlScanCacheMaxSize = DEFAULT_URL_SCAN_CACHE_MAX_SIZE,\n tokenScanCacheTTL = DEFAULT_TOKEN_SCAN_CACHE_TTL,\n tokenScanCacheMaxSize = DEFAULT_TOKEN_SCAN_CACHE_MAX_SIZE,\n addressScanCacheTTL = DEFAULT_ADDRESS_SCAN_CACHE_TTL,\n addressScanCacheMaxSize = DEFAULT_ADDRESS_SCAN_CACHE_MAX_SIZE,\n messenger,\n state = {},\n }: PhishingControllerOptions) {\n super({\n name: controllerName,\n metadata,\n messenger,\n state: {\n ...getDefaultState(),\n ...state,\n },\n });\n\n this.#stalelistRefreshInterval = stalelistRefreshInterval;\n this.#hotlistRefreshInterval = hotlistRefreshInterval;\n this.#c2DomainBlocklistRefreshInterval = c2DomainBlocklistRefreshInterval;\n this.#transactionControllerStateChangeHandler =\n this.#onTransactionControllerStateChange.bind(this);\n this.#urlScanCache = new CacheManager<PhishingDetectionScanResult>({\n cacheTTL: urlScanCacheTTL,\n maxCacheSize: urlScanCacheMaxSize,\n initialCache: this.state.urlScanCache,\n updateState: (cache) => {\n this.update((draftState) => {\n draftState.urlScanCache = cache;\n });\n },\n });\n this.#tokenScanCache = new CacheManager<TokenScanCacheData>({\n cacheTTL: tokenScanCacheTTL,\n maxCacheSize: tokenScanCacheMaxSize,\n initialCache: this.state.tokenScanCache,\n updateState: (cache) => {\n this.update((draftState) => {\n draftState.tokenScanCache = cache;\n });\n },\n });\n this.#addressScanCache = new CacheManager<AddressScanCacheData>({\n cacheTTL: addressScanCacheTTL,\n maxCacheSize: addressScanCacheMaxSize,\n initialCache: this.state.addressScanCache,\n updateState: (cache) => {\n this.update((draftState) => {\n draftState.addressScanCache = cache;\n });\n },\n });\n\n this.messenger.registerMethodActionHandlers(\n this,\n MESSENGER_EXPOSED_METHODS,\n );\n\n this.updatePhishingDetector();\n this.#subscribeToTransactionControllerStateChange();\n }\n\n #subscribeToTransactionControllerStateChange() {\n this.messenger.subscribe(\n 'TransactionController:stateChange',\n this.#transactionControllerStateChangeHandler,\n );\n }\n\n /**\n * Checks if a patch represents a transaction-level change or nested transaction property change\n *\n * @param patch - Immer patch to check\n * @returns True if patch affects a transaction or its nested properties\n */\n #isTransactionPatch(patch: Patch): boolean {\n const { path } = patch;\n return (\n path.length === 2 &&\n path[0] === 'transactions' &&\n typeof path[1] === 'number'\n );\n }\n\n /**\n * Checks if a patch represents a simulation data change\n *\n * @param patch - Immer patch to check\n * @returns True if patch represents a simulation data change\n */\n #isSimulationDataPatch(patch: Patch): boolean {\n const { path } = patch;\n return (\n path.length === 3 &&\n path[0] === 'transactions' &&\n typeof path[1] === 'number' &&\n path[2] === 'simulationData'\n );\n }\n\n /**\n * Handle transaction controller state changes using Immer patches\n * Extracts token addresses from simulation data and groups them by chain for bulk scanning\n *\n * @param _state - The current transaction controller state\n * @param _state.transactions - Array of transaction metadata\n * @param patches - Array of Immer patches only for transaction-level changes\n */\n #onTransactionControllerStateChange(\n _state: { transactions: TransactionMeta[] },\n patches: Patch[],\n ) {\n try {\n const tokensByChain = new Map<string, Set<string>>();\n\n for (const patch of patches) {\n if (patch.op === 'remove') {\n continue;\n }\n\n // Handle transaction-level patches (includes simulation data updates)\n if (this.#isTransactionPatch(patch)) {\n const transaction = patch.value as TransactionMeta;\n this.#getTokensFromTransaction(transaction, tokensByChain);\n } else if (this.#isSimulationDataPatch(patch)) {\n const transactionIndex = patch.path[1] as number;\n const transaction = _state.transactions?.[transactionIndex];\n this.#getTokensFromTransaction(transaction, tokensByChain);\n }\n }\n\n this.#scanTokensByChain(tokensByChain);\n } catch (error) {\n console.error('Error processing transaction state change:', error);\n }\n }\n\n /**\n * Collect token addresses from a transaction and group them by chain\n *\n * @param transaction - Transaction metadata to extract tokens from\n * @param tokensByChain - Map to collect tokens grouped by chainId\n */\n #getTokensFromTransaction(\n transaction: TransactionMeta,\n tokensByChain: Map<string, Set<string>>,\n ) {\n // extract token addresses from simulation data\n const tokenAddresses = transaction.simulationData?.tokenBalanceChanges?.map(\n (tokenChange) => tokenChange.address.toLowerCase(),\n );\n\n // add token addresses to the map by chainId\n if (tokenAddresses && tokenAddresses.length > 0 && transaction.chainId) {\n const chainId = transaction.chainId.toLowerCase();\n\n if (!tokensByChain.has(chainId)) {\n tokensByChain.set(chainId, new Set());\n }\n\n const chainTokens = tokensByChain.get(chainId);\n if (chainTokens) {\n for (const address of tokenAddresses) {\n chainTokens.add(address);\n }\n }\n }\n }\n\n /**\n * Scan tokens grouped by chain ID\n *\n * @param tokensByChain - Map of chainId to token addresses\n */\n #scanTokensByChain(tokensByChain: Map<string, Set<string>>) {\n for (const [chainId, tokenSet] of tokensByChain) {\n if (tokenSet.size > 0) {\n const tokens = Array.from(tokenSet);\n this.bulkScanTokens({\n chainId,\n tokens,\n }).catch((error) =>\n console.error(`Error scanning tokens for chain ${chainId}:`, error),\n );\n }\n }\n }\n\n /**\n * Updates this.detector with an instance of PhishingDetector using the current state.\n */\n updatePhishingDetector() {\n this.#detector = new PhishingDetector(this.state.phishingLists);\n }\n\n /**\n * Determine if an update to the stalelist configuration is needed.\n *\n * @returns Whether an update is needed\n */\n isStalelistOutOfDate() {\n return (\n fetchTimeNow() - this.state.stalelistLastFetched >=\n this.#stalelistRefreshInterval\n );\n }\n\n /**\n * Determine if an update to the hotlist configuration is needed.\n *\n * @returns Whether an update is needed\n */\n isHotlistOutOfDate() {\n return (\n fetchTimeNow() - this.state.hotlistLastFetched >=\n this.#hotlistRefreshInterval\n );\n }\n\n /**\n * Determine if an update to the C2 domain blocklist is needed.\n *\n * @returns Whether an update is needed\n */\n isC2DomainBlocklistOutOfDate() {\n return (\n fetchTimeNow() - this.state.c2DomainBlocklistLastFetched >=\n this.#c2DomainBlocklistRefreshInterval\n );\n }\n\n /**\n * Conditionally update the phishing configuration.\n *\n * If the stalelist configuration is out of date, this function will call `updateStalelist`\n * to update the configuration. This will automatically grab the hotlist,\n * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n *\n */\n async maybeUpdateState() {\n const staleListOutOfDate = this.isStalelistOutOfDate();\n if (staleListOutOfDate) {\n await this.updateStalelist();\n return;\n }\n const hotlistOutOfDate = this.isHotlistOutOfDate();\n if (hotlistOutOfDate) {\n await this.updateHotlist();\n }\n const c2DomainBlocklistOutOfDate = this.isC2DomainBlocklistOutOfDate();\n if (c2DomainBlocklistOutOfDate) {\n await this.updateC2DomainBlocklist();\n }\n }\n\n /**\n * Determines if a given origin is unapproved.\n *\n * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n * by calling {@link updateStalelist} or {@link updateHotlist}.\n *\n * @param origin - Domain origin of a website.\n * @returns Whether the origin is an unapproved origin.\n */\n testOrigin(origin: string): PhishingDetectorResult {\n const punycodeOrigin = toASCII(origin);\n const hostname = getHostnameFromUrl(punycodeOrigin);\n const hostnameWithPaths = hostname + getPathnameFromUrl(origin);\n\n if (matchedPathPrefix(hostnameWithPaths, this.state.whitelistPaths)) {\n return { result: false, type: PhishingDetectorResultType.All };\n }\n\n if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n }\n return this.#detector.check(punycodeOrigin);\n }\n\n /**\n * Determines if a given origin is unapproved.\n *\n * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n * by calling {@link updateStalelist} or {@link updateHotlist}.\n *\n * @param origin - Domain origin of a website.\n * @returns Whether the origin is an unapproved origin.\n * @deprecated Use {@link testOrigin} instead. This method is exposed for backward compatibility and will be removed in a future release.\n */\n test = this.testOrigin.bind(this);\n\n /**\n * Checks if a request URL's domain is blocked against the request blocklist.\n *\n * This method is used to determine if a specific request URL is associated with a malicious\n * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n * blocklist of known malicious domains.\n *\n * @param origin - The full request URL to be checked.\n * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n */\n isBlockedRequest(origin: string): PhishingDetectorResult {\n const punycodeOrigin = toASCII(origin);\n const hostname = getHostnameFromUrl(punycodeOrigin);\n if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n }\n return this.#detector.isMaliciousC2Domain(punycodeOrigin);\n }\n\n /**\n * Temporarily marks a given origin as approved.\n *\n * @param origin - The origin to mark as approved.\n */\n bypass(origin: string) {\n const punycodeOrigin = toASCII(origin);\n const hostname = getHostnameFromUrl(punycodeOrigin);\n const hostnameWithPaths = hostname + getPathnameFromUrl(origin);\n const { whitelist, whitelistPaths } = this.state;\n const whitelistPath = matchedPathPrefix(hostnameWithPaths, whitelistPaths);\n\n if (whitelist.includes(hostname || punycodeOrigin) || whitelistPath) {\n return;\n }\n\n // If the origin was blocked by a path, then we only want to add it to the whitelistPaths since\n // other paths with the same hostname may not be blocked.\n const blockingPath = this.#detector.blockingPath(origin);\n if (blockingPath) {\n this.update((draftState) => {\n insertToTrie(blockingPath, draftState.whitelistPaths);\n });\n return;\n }\n\n this.update((draftState) => {\n draftState.whitelist.push(hostname || punycodeOrigin);\n });\n }\n\n /**\n * Update the C2 domain blocklist.\n *\n * If an update is in progress, no additional update will be made. Instead this will wait until\n * the in-progress update has finished.\n */\n async updateC2DomainBlocklist() {\n if (this.#isProgressC2DomainBlocklistUpdate) {\n await this.#isProgressC2DomainBlocklistUpdate;\n return;\n }\n\n try {\n this.#isProgressC2DomainBlocklistUpdate = this.#updateC2DomainBlocklist();\n await this.#isProgressC2DomainBlocklistUpdate;\n } finally {\n this.#isProgressC2DomainBlocklistUpdate = undefined;\n }\n }\n\n /**\n * Update the hotlist.\n *\n * If an update is in progress, no additional update will be made. Instead this will wait until\n * the in-progress update has finished.\n */\n async updateHotlist() {\n if (this.#inProgressHotlistUpdate) {\n await this.#inProgressHotlistUpdate;\n return;\n }\n\n try {\n this.#inProgressHotlistUpdate = this.#updateHotlist();\n await this.#inProgressHotlistUpdate;\n } finally {\n this.#inProgressHotlistUpdate = undefined;\n }\n }\n\n /**\n * Update the stalelist.\n *\n * If an update is in progress, no additional update will be made. Instead this will wait until\n * the in-progress update has finished.\n */\n async updateStalelist() {\n if (this.#inProgressStalelistUpdate) {\n await this.#inProgressStalelistUpdate;\n return;\n }\n\n try {\n this.#inProgressStalelistUpdate = this.#updateStalelist();\n await this.#inProgressStalelistUpdate;\n } finally {\n this.#inProgressStalelistUpdate = undefined;\n }\n }\n\n /**\n * Scan a URL for phishing. For most hosts only the hostname is sent to the API; for known\n * shared gateways the pathname is included (see `PHISHING_DETECTION_PATH_BASED_ROOT_DOMAINS`).\n * Only supports web URLs (`http:` / `https:`).\n *\n * @param url - The URL to scan.\n * @returns The phishing detection scan result.\n */\n async scanUrl(url: string): Promise<PhishingDetectionScanResult> {\n const [scanUrlParam, scanParamOk] = getPhishingDetectionScanUrlParam(url);\n if (!scanParamOk) {\n return {\n hostname: '',\n recommendedAction: RecommendedAction.None,\n fetchError: 'url is not a valid web URL',\n };\n }\n\n const [hostname] = getHostnameFromWebUrl(url);\n\n const cachedResult = this.#urlScanCache.get(scanUrlParam);\n if (cachedResult) {\n return cachedResult;\n }\n\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const res = await fetch(\n `${PHISHING_DETECTION_BASE_URL}/${PHISHING_DETECTION_SCAN_ENDPOINT}?url=${encodeURIComponent(scanUrlParam)}`,\n {\n method: 'GET',\n headers: {\n Accept: 'application/json',\n },\n },\n );\n if (!res.ok) {\n return {\n error: `${res.status} ${res.statusText}`,\n };\n }\n const data = await res.json();\n return data;\n },\n true,\n 8000,\n );\n\n // Need to do it this way because safelyExecuteWithTimeout returns undefined for both timeouts and errors.\n if (!apiResponse) {\n return {\n hostname: '',\n recommendedAction: RecommendedAction.None,\n fetchError: 'timeout of 8000ms exceeded',\n };\n } else if ('error' in apiResponse) {\n return {\n hostname: '',\n recommendedAction: RecommendedAction.None,\n fetchError: apiResponse.error,\n };\n }\n\n const result = {\n hostname,\n recommendedAction: apiResponse.recommendedAction,\n };\n\n this.#urlScanCache.set(scanUrlParam, result);\n\n return result;\n }\n\n /**\n * Scan multiple URLs for phishing in bulk. It will only scan the hostnames of the URLs.\n * It also only supports web URLs.\n *\n * @param urls - The URLs to scan.\n * @returns A mapping of URLs to their phishing detection scan results and errors.\n */\n async bulkScanUrls(\n urls: string[],\n ): Promise<BulkPhishingDetectionScanResponse> {\n if (!urls || urls.length === 0) {\n return {\n results: {},\n errors: {},\n };\n }\n\n // we are arbitrarily limiting the number of URLs to 250\n const MAX_TOTAL_URLS = 250;\n if (urls.length > MAX_TOTAL_URLS) {\n return {\n results: {},\n errors: {\n too_many_urls: [\n `Maximum of ${MAX_TOTAL_URLS} URLs allowed per request`,\n ],\n },\n };\n }\n\n const MAX_URL_LENGTH = 2048;\n const combinedResponse: BulkPhishingDetectionScanResponse = {\n results: {},\n errors: {},\n };\n\n // Extract hostnames from URLs and check for validity and length constraints\n const urlsToHostnames: Record<string, string> = {};\n const urlsToFetch: string[] = [];\n\n for (const url of urls) {\n if (url.length > MAX_URL_LENGTH) {\n combinedResponse.errors[url] = [\n `URL length must not exceed ${MAX_URL_LENGTH} characters`,\n ];\n continue;\n }\n\n const [hostname, ok] = getHostnameFromWebUrl(url);\n if (!ok) {\n combinedResponse.errors[url] = ['url is not a valid web URL'];\n continue;\n }\n\n // Check if result is already in cache\n const cachedResult = this.#urlScanCache.get(hostname);\n if (cachedResult) {\n // Use cached result\n combinedResponse.results[url] = cachedResult;\n } else {\n // Add to list of URLs to fetch\n urlsToHostnames[url] = hostname;\n urlsToFetch.push(url);\n }\n }\n\n // If there are URLs to fetch, process them in batches\n if (urlsToFetch.length > 0) {\n // The API has a limit of 50 URLs per request, so we batch the requests\n const MAX_URLS_PER_BATCH = 50;\n const batches: string[][] = [];\n for (let i = 0; i < urlsToFetch.length; i += MAX_URLS_PER_BATCH) {\n batches.push(urlsToFetch.slice(i, i + MAX_URLS_PER_BATCH));\n }\n\n // Process each batch in parallel\n const batchResults = await Promise.all(\n batches.map((batchUrls) => this.#processBatch(batchUrls)),\n );\n\n // Merge results and errors from all batches\n batchResults.forEach((batchResponse) => {\n // Add results to cache and combine with response\n Object.entries(batchResponse.results).forEach(([url, result]) => {\n const hostname = urlsToHostnames[url];\n if (hostname) {\n this.#urlScanCache.set(hostname, result);\n }\n combinedResponse.results[url] = result;\n });\n\n // Combine errors\n Object.entries(batchResponse.errors).forEach(([key, messages]) => {\n combinedResponse.errors[key] = [\n ...(combinedResponse.errors[key] || []),\n ...messages,\n ];\n });\n });\n }\n\n return combinedResponse;\n }\n\n /**\n * Fetch bulk token scan results from the security alerts API.\n *\n * @param chain - The chain name.\n * @param tokens - Array of token addresses to scan.\n * @returns The API response or null if there was an error.\n */\n readonly #fetchTokenScanBulkResults = async (\n chain: string,\n tokens: string[],\n ): Promise<TokenScanApiResponse | null> => {\n const timeout = 8000; // 8 seconds\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const response = await fetch(\n `${SECURITY_ALERTS_BASE_URL}${TOKEN_BULK_SCANNING_ENDPOINT}`,\n {\n method: 'POST',\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n chain,\n tokens,\n }),\n },\n );\n\n if (!response.ok) {\n return {\n error: `${response.status} ${response.statusText}`,\n status: response.status,\n statusText: response.statusText,\n };\n }\n\n const data = await response.json();\n return data;\n },\n true,\n timeout,\n );\n\n if (!apiResponse) {\n console.error(`Error scanning tokens: timeout of ${timeout}ms exceeded`);\n return null;\n }\n\n if (\n 'error' in apiResponse &&\n 'status' in apiResponse &&\n 'statusText' in apiResponse\n ) {\n console.warn(\n `Token bulk screening API error: ${apiResponse.status} ${apiResponse.statusText}`,\n );\n return null;\n }\n\n return apiResponse as TokenScanApiResponse;\n };\n\n /**\n * Scan an address for security alerts.\n *\n * @param chainId - The chain ID in hex format (e.g., '0x1' for Ethereum).\n * @param address - The address to scan.\n * @returns The address scan result.\n */\n async scanAddress(\n chainId: string,\n address: string,\n ): Promise<AddressScanResult> {\n if (!address || !chainId) {\n return {\n result_type: AddressScanResultType.ErrorResult,\n label: '',\n };\n }\n\n const normalizedChainId = chainId.toLowerCase();\n const normalizedAddress = address.toLowerCase();\n const chain = resolveChainName(normalizedChainId);\n\n if (!chain) {\n return {\n result_type: AddressScanResultType.ErrorResult,\n label: '',\n };\n }\n\n const cacheKey = buildCacheKey(normalizedChainId, normalizedAddress);\n const cachedResult = this.#addressScanCache.get(cacheKey);\n if (cachedResult) {\n return {\n result_type: cachedResult.result_type,\n label: cachedResult.label,\n };\n }\n\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const res = await fetch(\n `${SECURITY_ALERTS_BASE_URL}${ADDRESS_SCAN_ENDPOINT}`,\n {\n method: 'POST',\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n chain,\n address: normalizedAddress,\n }),\n },\n );\n if (!res.ok) {\n return {\n error: `${res.status} ${res.statusText}`,\n };\n }\n const data: AddressScanResult = await res.json();\n return data;\n },\n true,\n 5000,\n );\n\n if (!apiResponse) {\n return {\n result_type: AddressScanResultType.ErrorResult,\n label: '',\n };\n } else if ('error' in apiResponse) {\n return {\n result_type: AddressScanResultType.ErrorResult,\n label: '',\n };\n }\n\n const result: AddressScanCacheData = {\n result_type: apiResponse.result_type,\n label: apiResponse.label,\n };\n\n this.#addressScanCache.set(cacheKey, result);\n\n return {\n result_type: apiResponse.result_type,\n label: apiResponse.label,\n };\n }\n\n /**\n * Get token approvals for an EVM address with security enrichments.\n *\n * @param chainId - The chain ID in hex format (e.g., '0x1' for Ethereum).\n * @param address - The address to get approvals for.\n * @returns The approvals response containing approval data, or empty approvals on error.\n */\n getApprovals = async (\n chainId: string,\n address: string,\n ): Promise<ApprovalsResponse> => {\n if (!address || !chainId) {\n return { approvals: [] };\n }\n\n const normalizedChainId = chainId.toLowerCase();\n const normalizedAddress = address.toLowerCase();\n const chain = resolveChainName(normalizedChainId);\n\n if (!chain || !isApprovalSupportedChain(chain)) {\n return { approvals: [] };\n }\n\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const res = await fetch(\n `${SECURITY_ALERTS_BASE_URL}${APPROVALS_ENDPOINT}`,\n {\n method: 'POST',\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n chain,\n address: normalizedAddress,\n }),\n },\n );\n if (!res.ok) {\n return { error: `${res.status} ${res.statusText}` };\n }\n const data: ApprovalsResponse = await res.json();\n return data;\n },\n true,\n 5000,\n );\n\n if (\n !apiResponse ||\n 'error' in apiResponse ||\n !Array.isArray(apiResponse.approvals)\n ) {\n return { approvals: [] };\n }\n\n return apiResponse;\n };\n\n /**\n * Scan multiple tokens for malicious activity in bulk.\n *\n * @param request - The bulk scan request containing chainId and tokens.\n * @param request.chainId - The chain identifier. Accepts a hex chain ID for\n * EVM chains (e.g. `'0x1'` for Ethereum) or a chain name for non-EVM chains\n * (e.g. `'solana'`).\n * @param request.tokens - Array of token addresses to scan.\n * @returns A mapping of token addresses to their scan results. For EVM chains,\n * addresses are lowercased; for non-EVM chains, original casing is preserved.\n * Tokens that fail to scan are omitted.\n */\n async bulkScanTokens(\n request: BulkTokenScanRequest,\n ): Promise<BulkTokenScanResponse> {\n const { chainId, tokens } = request;\n\n if (!tokens || tokens.length === 0) {\n return {};\n }\n\n const MAX_TOKENS_PER_REQUEST = 100;\n if (tokens.length > MAX_TOKENS_PER_REQUEST) {\n console.warn(\n `Maximum of ${MAX_TOKENS_PER_REQUEST} tokens allowed per request`,\n );\n return {};\n }\n\n const normalizedChainId = chainId.toLowerCase();\n const chain = resolveChainName(normalizedChainId);\n\n if (!chain) {\n console.warn(`Unknown chain ID: ${chainId}`);\n return {};\n }\n\n // EVM addresses are case-insensitive; non-EVM addresses (e.g. Solana\n // base58) are case-sensitive and must not be lowercased.\n const caseSensitive = !normalizedChainId.startsWith('0x');\n\n // Split tokens into cached results and tokens that need to be fetched\n const { cachedResults, tokensToFetch } = splitCacheHits(\n this.#tokenScanCache,\n normalizedChainId,\n tokens,\n caseSensitive,\n );\n\n const results: BulkTokenScanResponse = { ...cachedResults };\n\n // If there are tokens to fetch, call the bulk token scan API\n if (tokensToFetch.length > 0) {\n const apiResponse = await this.#fetchTokenScanBulkResults(\n chain,\n tokensToFetch,\n );\n if (apiResponse?.results) {\n // Process API results and update cache\n for (const tokenAddress of tokensToFetch) {\n const normalizedAddress = caseSensitive\n ? tokenAddress\n : tokenAddress.toLowerCase();\n const tokenResult = apiResponse.results[normalizedAddress];\n\n if (tokenResult?.result_type) {\n const result = {\n result_type: tokenResult.result_type,\n chain: tokenResult.chain || normalizedChainId,\n address: tokenResult.address || normalizedAddress,\n };\n\n // Update cache\n const cacheKey = buildCacheKey(\n normalizedChainId,\n normalizedAddress,\n caseSensitive,\n );\n this.#tokenScanCache.set(cacheKey, {\n result_type: tokenResult.result_type,\n });\n\n results[normalizedAddress] = result;\n }\n }\n }\n }\n\n return results;\n }\n\n /**\n * Process a batch of URLs (up to 50) for phishing detection.\n *\n * @param urls - A batch of URLs to scan.\n * @returns The scan results and errors for this batch.\n */\n readonly #processBatch = async (\n urls: string[],\n ): Promise<BulkPhishingDetectionScanResponse> => {\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const res = await fetch(\n `${PHISHING_DETECTION_BASE_URL}/${PHISHING_DETECTION_BULK_SCAN_ENDPOINT}`,\n {\n method: 'POST',\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({ urls }),\n },\n );\n\n if (!res.ok) {\n return {\n error: `${res.status} ${res.statusText}`,\n status: res.status,\n statusText: res.statusText,\n };\n }\n\n const data = await res.json();\n return data;\n },\n true,\n 15000,\n );\n\n // Handle timeout or network errors\n if (!apiResponse) {\n return {\n results: {},\n errors: {\n network_error: ['timeout of 15000ms exceeded'],\n },\n };\n }\n\n // Handle HTTP error responses\n if (\n 'error' in apiResponse &&\n 'status' in apiResponse &&\n 'statusText' in apiResponse\n ) {\n return {\n results: {},\n errors: {\n api_error: [`${apiResponse.status} ${apiResponse.statusText}`],\n },\n };\n }\n\n return apiResponse as BulkPhishingDetectionScanResponse;\n };\n\n /**\n * Update the stalelist configuration.\n *\n * This should only be called from the `updateStalelist` function, which is a wrapper around\n * this function that prevents redundant configuration updates.\n */\n async #updateStalelist() {\n let stalelistResponse: DataResultWrapper<PhishingStalelist> | null = null;\n let hotlistDiffsResponse: DataResultWrapper<Hotlist> | null = null;\n let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n try {\n const stalelistPromise = this.#queryConfig<\n DataResultWrapper<PhishingStalelist>\n >(METAMASK_STALELIST_URL);\n\n const c2DomainBlocklistPromise =\n this.#queryConfig<C2DomainBlocklistResponse>(C2_DOMAIN_BLOCKLIST_URL);\n\n [stalelistResponse, c2DomainBlocklistResponse] = await Promise.all([\n stalelistPromise,\n c2DomainBlocklistPromise,\n ]);\n // Fetching hotlist diffs relies on having a lastUpdated timestamp to do `GET /v1/diffsSince/:timestamp`,\n // so it doesn't make sense to call if there is not a timestamp to begin with.\n if (stalelistResponse?.data && stalelistResponse.data.lastUpdated > 0) {\n hotlistDiffsResponse = await this.#queryConfig<\n DataResultWrapper<Hotlist>\n >(`${METAMASK_HOTLIST_DIFF_URL}/${stalelistResponse.data.lastUpdated}`);\n }\n } finally {\n // Set `stalelistLastFetched` and `hotlistLastFetched` even for failed requests to prevent server\n // from being overwhelmed with traffic after a network disruption.\n const timeNow = fetchTimeNow();\n this.update((draftState) => {\n draftState.stalelistLastFetched = timeNow;\n draftState.hotlistLastFetched = timeNow;\n if (c2DomainBlocklistResponse) {\n draftState.c2DomainBlocklistLastFetched = timeNow;\n }\n });\n }\n\n if (!stalelistResponse || !hotlistDiffsResponse) {\n return;\n }\n\n const metamaskListState: PhishingListState = {\n allowlist: stalelistResponse.data.allowlist,\n fuzzylist: stalelistResponse.data.fuzzylist,\n tolerance: stalelistResponse.data.tolerance,\n version: stalelistResponse.data.version,\n lastUpdated: stalelistResponse.data.lastUpdated,\n blocklist: stalelistResponse.data.blocklist,\n blocklistPaths: convertListToTrie(stalelistResponse.data.blocklistPaths),\n c2DomainBlocklist: c2DomainBlocklistResponse\n ? c2DomainBlocklistResponse.recentlyAdded\n : [],\n name: phishingListKeyNameMap.eth_phishing_detect_config,\n };\n\n const newMetaMaskListState: PhishingListState = applyDiffs(\n metamaskListState,\n hotlistDiffsResponse.data,\n ListKeys.EthPhishingDetectConfig,\n );\n\n this.update((draftState) => {\n draftState.phishingLists = [newMetaMaskListState];\n });\n this.updatePhishingDetector();\n }\n\n /**\n * Update the stalelist configuration.\n *\n * This should only be called from the `updateStalelist` function, which is a wrapper around\n * this function that prevents redundant configuration updates.\n */\n async #updateHotlist() {\n let hotlistResponse: DataResultWrapper<Hotlist> | null;\n\n try {\n if (this.state.phishingLists.length === 0) {\n return;\n }\n\n const lastDiffTimestamp = Math.max(\n ...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated),\n );\n\n hotlistResponse = await this.#queryConfig<DataResultWrapper<Hotlist>>(\n `${METAMASK_HOTLIST_DIFF_URL}/${lastDiffTimestamp}`,\n );\n } finally {\n // Set `hotlistLastFetched` even for failed requests to prevent server from being overwhelmed with\n // traffic after a network disruption.\n this.update((draftState) => {\n draftState.hotlistLastFetched = fetchTimeNow();\n });\n }\n\n if (!hotlistResponse?.data) {\n return;\n }\n const hotlist = hotlistResponse.data;\n const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n const updatedList = applyDiffs(\n phishingList,\n hotlist,\n phishingListNameKeyMap[phishingList.name],\n [],\n [],\n );\n\n return updatedList;\n });\n\n this.update((draftState) => {\n draftState.phishingLists = newPhishingLists;\n });\n this.updatePhishingDetector();\n }\n\n /**\n * Update the C2 domain blocklist.\n *\n * This should only be called from the `updateC2DomainBlocklist` function, which is a wrapper around\n * this function that prevents redundant configuration updates.\n */\n async #updateC2DomainBlocklist() {\n const c2DomainBlocklistResponse =\n await this.#queryConfig<C2DomainBlocklistResponse>(\n `${C2_DOMAIN_BLOCKLIST_URL}?timestamp=${roundToNearestMinute(\n this.state.c2DomainBlocklistLastFetched,\n )}`,\n );\n\n if (!c2DomainBlocklistResponse) {\n return;\n }\n\n this.update((draftState) => {\n draftState.c2DomainBlocklistLastFetched = fetchTimeNow();\n });\n\n const recentlyAddedC2Domains = c2DomainBlocklistResponse.recentlyAdded;\n const recentlyRemovedC2Domains = c2DomainBlocklistResponse.recentlyRemoved;\n\n const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n const updatedList = applyDiffs(\n phishingList,\n [],\n phishingListNameKeyMap[phishingList.name],\n recentlyAddedC2Domains,\n recentlyRemovedC2Domains,\n );\n\n return updatedList;\n });\n\n this.update((draftState) => {\n draftState.phishingLists = newPhishingLists;\n });\n this.updatePhishingDetector();\n }\n\n async #queryConfig<ResponseType>(\n input: RequestInfo,\n ): Promise<ResponseType | null> {\n const response = await safelyExecute(\n () => fetch(input, { cache: 'no-cache' }),\n true,\n );\n\n switch (response?.status) {\n case 200: {\n return await response.json();\n }\n\n default: {\n return null;\n }\n }\n }\n}\n\nexport default PhishingController;\n\nexport type { PhishingDetectorResult };\n"]}
|
|
1
|
+
{"version":3,"file":"PhishingController.cjs","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,+DAA2D;AAM3D,iEAGoC;AAOpC,sDAA+C;AAE/C,qDAA8C;AAE9C,6CAAgF;AAOhF,6DAAsD;AACtD,uCAIiB;AAYjB,uCAWiB;AAEJ,QAAA,wBAAwB,GACnC,+CAA+C,CAAC;AACrC,QAAA,uBAAuB,GAAG,eAAe,CAAC;AAC1C,QAAA,0BAA0B,GAAG,gBAAgB,CAAC;AAE9C,QAAA,6BAA6B,GACxC,kDAAkD,CAAC;AACxC,QAAA,4BAA4B,GAAG,uBAAuB,CAAC;AAEvD,QAAA,2BAA2B,GACtC,0CAA0C,CAAC;AAChC,QAAA,gCAAgC,GAAG,SAAS,CAAC;AAC7C,QAAA,qCAAqC,GAAG,WAAW,CAAC;AAEpD,QAAA,wBAAwB,GACnC,4CAA4C,CAAC;AAClC,QAAA,4BAA4B,GAAG,kBAAkB,CAAC;AAClD,QAAA,qBAAqB,GAAG,mBAAmB,CAAC;AAC5C,QAAA,kBAAkB,GAAG,wBAAwB,CAAC;AAE3D,+BAA+B;AAClB,QAAA,0BAA0B,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,sBAAsB;AAC3D,QAAA,+BAA+B,GAAG,GAAG,CAAC;AACtC,QAAA,4BAA4B,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,sBAAsB;AAC7D,QAAA,iCAAiC,GAAG,IAAI,CAAC;AACzC,QAAA,8BAA8B,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,sBAAsB;AAC/D,QAAA,mCAAmC,GAAG,IAAI,CAAC;AAE3C,QAAA,oCAAoC,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACnE,QAAA,wBAAwB,GAAG,CAAC,GAAG,EAAE,CAAC,CAAC,oBAAoB;AACvD,QAAA,0BAA0B,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,CAAC,CAAC,qBAAqB;AAErE,QAAA,sBAAsB,GAAG,GAAG,gCAAwB,GAAG,+BAAuB,EAAE,CAAC;AACjF,QAAA,yBAAyB,GAAG,GAAG,gCAAwB,GAAG,kCAA0B,EAAE,CAAC;AACvF,QAAA,uBAAuB,GAAG,GAAG,qCAA6B,GAAG,oCAA4B,EAAE,CAAC;AAkIzG;;;GAGG;AACH,IAAY,QAEX;AAFD,WAAY,QAAQ;IAClB,kEAAsD,CAAA;AACxD,CAAC,EAFW,QAAQ,wBAAR,QAAQ,QAEnB;AAED;;GAEG;AACH,IAAY,SAEX;AAFD,WAAY,SAAS;IACnB,kCAAqB,CAAA;AACvB,CAAC,EAFW,SAAS,yBAAT,SAAS,QAEpB;AAED;;;GAGG;AACH,MAAM,sBAAsB,GAAG;IAC7B,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,QAAQ,CAAC,uBAAuB;CACvD,CAAC;AAEF;;;GAGG;AACU,QAAA,sBAAsB,GAAG;IACpC,CAAC,QAAQ,CAAC,uBAAuB,CAAC,EAAE,SAAS,CAAC,QAAQ;CACvD,CAAC;AAEF,MAAM,cAAc,GAAG,oBAAoB,CAAC;AAE5C,MAAM,QAAQ,GAA2C;IACvD,aAAa,EAAE;QACb,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,SAAS,EAAE;QACT,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,cAAc,EAAE;QACd,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,kBAAkB,EAAE;QAClB,kBAAkB,EAAE,IAAI;QACxB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,oBAAoB,EAAE;QACpB,kBAAkB,EAAE,IAAI;QACxB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,4BAA4B,EAAE;QAC5B,kBAAkB,EAAE,IAAI;QACxB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,KAAK;KAChB;IACD,YAAY,EAAE;QACZ,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,IAAI;KACf;IACD,cAAc,EAAE;QACd,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,IAAI;KACf;IACD,gBAAgB,EAAE;QAChB,kBAAkB,EAAE,KAAK;QACzB,OAAO,EAAE,IAAI;QACb,sBAAsB,EAAE,KAAK;QAC7B,QAAQ,EAAE,IAAI;KACf;CACF,CAAC;AAEF;;;;GAIG;AACH,MAAM,eAAe,GAAG,GAA4B,EAAE;IACpD,OAAO;QACL,aAAa,EAAE,EAAE;QACjB,SAAS,EAAE,EAAE;QACb,cAAc,EAAE,EAAE;QAClB,kBAAkB,EAAE,CAAC;QACrB,oBAAoB,EAAE,CAAC;QACvB,4BAA4B,EAAE,CAAC;QAC/B,YAAY,EAAE,EAAE;QAChB,cAAc,EAAE,EAAE;QAClB,gBAAgB,EAAE,EAAE;KACrB,CAAC;AACJ,CAAC,CAAC;AAwDF,MAAM,yBAAyB,GAAG;IAChC,kBAAkB;IAClB,YAAY;IACZ,kBAAkB;IAClB,QAAQ;IACR,SAAS;IACT,cAAc;IACd,gBAAgB;IAChB,aAAa;IACb,cAAc;CACN,CAAC;AAyDX;;GAEG;AACH,MAAa,kBAAmB,SAAQ,gCAIvC;IA4BC;;;;;;;;;;;;;;;OAeG;IACH,YAAY,EACV,wBAAwB,GAAG,kCAA0B,EACrD,sBAAsB,GAAG,gCAAwB,EACjD,gCAAgC,GAAG,4CAAoC,EACvE,eAAe,GAAG,kCAA0B,EAC5C,mBAAmB,GAAG,uCAA+B,EACrD,iBAAiB,GAAG,oCAA4B,EAChD,qBAAqB,GAAG,yCAAiC,EACzD,mBAAmB,GAAG,sCAA8B,EACpD,uBAAuB,GAAG,2CAAmC,EAC7D,SAAS,EACT,KAAK,GAAG,EAAE,GACgB;QAC1B,KAAK,CAAC;YACJ,IAAI,EAAE,cAAc;YACpB,QAAQ;YACR,SAAS;YACT,KAAK,EAAE;gBACL,GAAG,eAAe,EAAE;gBACpB,GAAG,KAAK;aACT;SACF,CAAC,CAAC;;QAhEL,gCAAgC;QAChC,8DAA8D;QAC9D,+CAAe;QAEN,+DAAkC;QAElC,6DAAgC;QAEhC,uEAA0C;QAE1C,mDAAyD;QAEzD,qDAAkD;QAElD,uDAAsD;QAE/D,8DAAyC;QAEzC,gEAA2C;QAE3C,wEAAmD;QAE1C,8EAGC;QAgTV;;;;;;;;;;WAUG;QACH,SAAI,GAAG,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QA8RlC;;;;;;WAMG;QACM,wDAA6B,KAAK,EACzC,KAAa,EACb,MAAgB,EACsB,EAAE;YACxC,MAAM,OAAO,GAAG,IAAI,CAAC,CAAC,YAAY;YAClC,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;gBACT,MAAM,QAAQ,GAAG,MAAM,KAAK,CAC1B,GAAG,gCAAwB,GAAG,oCAA4B,EAAE,EAC5D;oBACE,MAAM,EAAE,MAAM;oBACd,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;wBAC1B,cAAc,EAAE,kBAAkB;qBACnC;oBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;wBACnB,KAAK;wBACL,MAAM;qBACP,CAAC;iBACH,CACF,CAAC;gBAEF,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;oBACjB,OAAO;wBACL,KAAK,EAAE,GAAG,QAAQ,CAAC,MAAM,IAAI,QAAQ,CAAC,UAAU,EAAE;wBAClD,MAAM,EAAE,QAAQ,CAAC,MAAM;wBACvB,UAAU,EAAE,QAAQ,CAAC,UAAU;qBAChC,CAAC;gBACJ,CAAC;gBAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;gBACnC,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,OAAO,CACR,CAAC;YAEF,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,OAAO,CAAC,KAAK,CAAC,qCAAqC,OAAO,aAAa,CAAC,CAAC;gBACzE,OAAO,IAAI,CAAC;YACd,CAAC;YAED,IACE,OAAO,IAAI,WAAW;gBACtB,QAAQ,IAAI,WAAW;gBACvB,YAAY,IAAI,WAAW,EAC3B,CAAC;gBACD,OAAO,CAAC,IAAI,CACV,mCAAmC,WAAW,CAAC,MAAM,IAAI,WAAW,CAAC,UAAU,EAAE,CAClF,CAAC;gBACF,OAAO,IAAI,CAAC;YACd,CAAC;YAED,OAAO,WAAmC,CAAC;QAC7C,CAAC,EAAC;QA6FF;;;;;;WAMG;QACH,iBAAY,GAAG,KAAK,EAClB,OAAe,EACf,OAAe,EACa,EAAE;YAC9B,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC;gBACzB,OAAO,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;YAC3B,CAAC;YAED,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;YAChD,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;YAChD,MAAM,KAAK,GAAG,IAAA,wBAAgB,EAAC,iBAAiB,CAAC,CAAC;YAElD,IAAI,CAAC,KAAK,IAAI,CAAC,IAAA,gCAAwB,EAAC,KAAK,CAAC,EAAE,CAAC;gBAC/C,OAAO,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;YAC3B,CAAC;YAED,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;gBACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,gCAAwB,GAAG,0BAAkB,EAAE,EAClD;oBACE,MAAM,EAAE,MAAM;oBACd,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;wBAC1B,cAAc,EAAE,kBAAkB;qBACnC;oBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;wBACnB,KAAK;wBACL,OAAO,EAAE,iBAAiB;qBAC3B,CAAC;iBACH,CACF,CAAC;gBACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;oBACZ,OAAO,EAAE,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE,EAAE,CAAC;gBACtD,CAAC;gBACD,MAAM,IAAI,GAAsB,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;gBACjD,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;YAEF,IACE,CAAC,WAAW;gBACZ,OAAO,IAAI,WAAW;gBACtB,CAAC,KAAK,CAAC,OAAO,CAAC,WAAW,CAAC,SAAS,CAAC,EACrC,CAAC;gBACD,OAAO,EAAE,SAAS,EAAE,EAAE,EAAE,CAAC;YAC3B,CAAC;YAED,OAAO,WAAW,CAAC;QACrB,CAAC,CAAC;QA6FF;;;;;WAKG;QACM,2CAAgB,KAAK,EAC5B,IAAc,EAC8B,EAAE;YAC9C,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;gBACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,mCAA2B,IAAI,6CAAqC,EAAE,EACzE;oBACE,MAAM,EAAE,MAAM;oBACd,OAAO,EAAE;wBACP,MAAM,EAAE,kBAAkB;wBAC1B,cAAc,EAAE,kBAAkB;qBACnC;oBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,IAAI,EAAE,CAAC;iBAC/B,CACF,CAAC;gBAEF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;oBACZ,OAAO;wBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;wBACxC,MAAM,EAAE,GAAG,CAAC,MAAM;wBAClB,UAAU,EAAE,GAAG,CAAC,UAAU;qBAC3B,CAAC;gBACJ,CAAC;gBAED,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;gBAC9B,OAAO,IAAI,CAAC;YACd,CAAC,EACD,IAAI,EACJ,KAAK,CACN,CAAC;YAEF,mCAAmC;YACnC,IAAI,CAAC,WAAW,EAAE,CAAC;gBACjB,OAAO;oBACL,OAAO,EAAE,EAAE;oBACX,MAAM,EAAE;wBACN,aAAa,EAAE,CAAC,6BAA6B,CAAC;qBAC/C;iBACF,CAAC;YACJ,CAAC;YAED,8BAA8B;YAC9B,IACE,OAAO,IAAI,WAAW;gBACtB,QAAQ,IAAI,WAAW;gBACvB,YAAY,IAAI,WAAW,EAC3B,CAAC;gBACD,OAAO;oBACL,OAAO,EAAE,EAAE;oBACX,MAAM,EAAE;wBACN,SAAS,EAAE,CAAC,GAAG,WAAW,CAAC,MAAM,IAAI,WAAW,CAAC,UAAU,EAAE,CAAC;qBAC/D;iBACF,CAAC;YACJ,CAAC;YAED,OAAO,WAAgD,CAAC;QAC1D,CAAC,EAAC;QAh6BA,uBAAA,IAAI,gDAA6B,wBAAwB,MAAA,CAAC;QAC1D,uBAAA,IAAI,8CAA2B,sBAAsB,MAAA,CAAC;QACtD,uBAAA,IAAI,wDAAqC,gCAAgC,MAAA,CAAC;QAC1E,uBAAA,IAAI,+DACF,uBAAA,IAAI,6FAAoC,CAAC,IAAI,CAAC,IAAI,CAAC,MAAA,CAAC;QACtD,uBAAA,IAAI,oCAAiB,IAAI,2BAAY,CAA8B;YACjE,QAAQ,EAAE,eAAe;YACzB,YAAY,EAAE,mBAAmB;YACjC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,YAAY;YACrC,WAAW,EAAE,CAAC,KAAK,EAAE,EAAE;gBACrB,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;oBACzB,UAAU,CAAC,YAAY,GAAG,KAAK,CAAC;gBAClC,CAAC,CAAC,CAAC;YACL,CAAC;SACF,CAAC,MAAA,CAAC;QACH,uBAAA,IAAI,sCAAmB,IAAI,2BAAY,CAAqB;YAC1D,QAAQ,EAAE,iBAAiB;YAC3B,YAAY,EAAE,qBAAqB;YACnC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,cAAc;YACvC,WAAW,EAAE,CAAC,KAAK,EAAE,EAAE;gBACrB,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;oBACzB,UAAU,CAAC,cAAc,GAAG,KAAK,CAAC;gBACpC,CAAC,CAAC,CAAC;YACL,CAAC;SACF,CAAC,MAAA,CAAC;QACH,uBAAA,IAAI,wCAAqB,IAAI,2BAAY,CAAuB;YAC9D,QAAQ,EAAE,mBAAmB;YAC7B,YAAY,EAAE,uBAAuB;YACrC,YAAY,EAAE,IAAI,CAAC,KAAK,CAAC,gBAAgB;YACzC,WAAW,EAAE,CAAC,KAAK,EAAE,EAAE;gBACrB,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;oBACzB,UAAU,CAAC,gBAAgB,GAAG,KAAK,CAAC;gBACtC,CAAC,CAAC,CAAC;YACL,CAAC;SACF,CAAC,MAAA,CAAC;QAEH,IAAI,CAAC,SAAS,CAAC,4BAA4B,CACzC,IAAI,EACJ,yBAAyB,CAC1B,CAAC;QAEF,IAAI,CAAC,sBAAsB,EAAE,CAAC;QAC9B,uBAAA,IAAI,sGAA6C,MAAjD,IAAI,CAA+C,CAAC;IACtD,CAAC;IAgID;;OAEG;IACH,sBAAsB;QACpB,uBAAA,IAAI,gCAAa,IAAI,mCAAgB,CAAC,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAA,CAAC;IAClE,CAAC;IAED;;;;OAIG;IACH,oBAAoB;QAClB,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,oBAAoB;YAChD,uBAAA,IAAI,oDAA0B,CAC/B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,kBAAkB;QAChB,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,kBAAkB;YAC9C,uBAAA,IAAI,kDAAwB,CAC7B,CAAC;IACJ,CAAC;IAED;;;;OAIG;IACH,4BAA4B;QAC1B,OAAO,CACL,IAAA,oBAAY,GAAE,GAAG,IAAI,CAAC,KAAK,CAAC,4BAA4B;YACxD,uBAAA,IAAI,4DAAkC,CACvC,CAAC;IACJ,CAAC;IAED;;;;;;;OAOG;IACH,KAAK,CAAC,gBAAgB;QACpB,MAAM,kBAAkB,GAAG,IAAI,CAAC,oBAAoB,EAAE,CAAC;QACvD,IAAI,kBAAkB,EAAE,CAAC;YACvB,MAAM,IAAI,CAAC,eAAe,EAAE,CAAC;YAC7B,OAAO;QACT,CAAC;QACD,MAAM,gBAAgB,GAAG,IAAI,CAAC,kBAAkB,EAAE,CAAC;QACnD,IAAI,gBAAgB,EAAE,CAAC;YACrB,MAAM,IAAI,CAAC,aAAa,EAAE,CAAC;QAC7B,CAAC;QACD,MAAM,0BAA0B,GAAG,IAAI,CAAC,4BAA4B,EAAE,CAAC;QACvE,IAAI,0BAA0B,EAAE,CAAC;YAC/B,MAAM,IAAI,CAAC,uBAAuB,EAAE,CAAC;QACvC,CAAC;IACH,CAAC;IAED;;;;;;;;;OASG;IACH,UAAU,CAAC,MAAc;QACvB,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,MAAM,iBAAiB,GAAG,QAAQ,GAAG,IAAA,0BAAkB,EAAC,MAAM,CAAC,CAAC;QAEhE,IAAI,IAAA,4BAAiB,EAAC,iBAAiB,EAAE,IAAI,CAAC,KAAK,CAAC,cAAc,CAAC,EAAE,CAAC;YACpE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC;QACjE,CAAC;QAED,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE,CAAC;YAC9D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;QAC/H,CAAC;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC;IAC9C,CAAC;IAeD;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAc;QAC7B,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,IAAI,IAAI,CAAC,KAAK,CAAC,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,EAAE,CAAC;YAC9D,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,kCAA0B,CAAC,GAAG,EAAE,CAAC,CAAC,6DAA6D;QAC/H,CAAC;QACD,OAAO,uBAAA,IAAI,oCAAU,CAAC,mBAAmB,CAAC,cAAc,CAAC,CAAC;IAC5D,CAAC;IAED;;;;OAIG;IACH,MAAM,CAAC,MAAc;QACnB,MAAM,cAAc,GAAG,IAAA,qBAAO,EAAC,MAAM,CAAC,CAAC;QACvC,MAAM,QAAQ,GAAG,IAAA,0BAAkB,EAAC,cAAc,CAAC,CAAC;QACpD,MAAM,iBAAiB,GAAG,QAAQ,GAAG,IAAA,0BAAkB,EAAC,MAAM,CAAC,CAAC;QAChE,MAAM,EAAE,SAAS,EAAE,cAAc,EAAE,GAAG,IAAI,CAAC,KAAK,CAAC;QACjD,MAAM,aAAa,GAAG,IAAA,4BAAiB,EAAC,iBAAiB,EAAE,cAAc,CAAC,CAAC;QAE3E,IAAI,SAAS,CAAC,QAAQ,CAAC,QAAQ,IAAI,cAAc,CAAC,IAAI,aAAa,EAAE,CAAC;YACpE,OAAO;QACT,CAAC;QAED,+FAA+F;QAC/F,yDAAyD;QACzD,MAAM,YAAY,GAAG,uBAAA,IAAI,oCAAU,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC;QACzD,IAAI,YAAY,EAAE,CAAC;YACjB,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;gBACzB,IAAA,uBAAY,EAAC,YAAY,EAAE,UAAU,CAAC,cAAc,CAAC,CAAC;YACxD,CAAC,CAAC,CAAC;YACH,OAAO;QACT,CAAC;QAED,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,SAAS,CAAC,IAAI,CAAC,QAAQ,IAAI,cAAc,CAAC,CAAC;QACxD,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,uBAAuB;QAC3B,IAAI,uBAAA,IAAI,6DAAmC,EAAE,CAAC;YAC5C,MAAM,uBAAA,IAAI,6DAAmC,CAAC;YAC9C,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,uBAAA,IAAI,yDAAsC,uBAAA,IAAI,kFAAyB,MAA7B,IAAI,CAA2B,MAAA,CAAC;YAC1E,MAAM,uBAAA,IAAI,6DAAmC,CAAC;QAChD,CAAC;gBAAS,CAAC;YACT,uBAAA,IAAI,yDAAsC,SAAS,MAAA,CAAC;QACtD,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,aAAa;QACjB,IAAI,uBAAA,IAAI,mDAAyB,EAAE,CAAC;YAClC,MAAM,uBAAA,IAAI,mDAAyB,CAAC;YACpC,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,uBAAA,IAAI,+CAA4B,uBAAA,IAAI,wEAAe,MAAnB,IAAI,CAAiB,MAAA,CAAC;YACtD,MAAM,uBAAA,IAAI,mDAAyB,CAAC;QACtC,CAAC;gBAAS,CAAC;YACT,uBAAA,IAAI,+CAA4B,SAAS,MAAA,CAAC;QAC5C,CAAC;IACH,CAAC;IAED;;;;;OAKG;IACH,KAAK,CAAC,eAAe;QACnB,IAAI,uBAAA,IAAI,qDAA2B,EAAE,CAAC;YACpC,MAAM,uBAAA,IAAI,qDAA2B,CAAC;YACtC,OAAO;QACT,CAAC;QAED,IAAI,CAAC;YACH,uBAAA,IAAI,iDAA8B,uBAAA,IAAI,0EAAiB,MAArB,IAAI,CAAmB,MAAA,CAAC;YAC1D,MAAM,uBAAA,IAAI,qDAA2B,CAAC;QACxC,CAAC;gBAAS,CAAC;YACT,uBAAA,IAAI,iDAA8B,SAAS,MAAA,CAAC;QAC9C,CAAC;IACH,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,OAAO,CAAC,GAAW;QACvB,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,GAAG,IAAA,6BAAqB,EAAC,GAAG,CAAC,CAAC;QAClD,IAAI,CAAC,EAAE,EAAE,CAAC;YACR,OAAO;gBACL,QAAQ,EAAE,EAAE;gBACZ,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;gBACzC,UAAU,EAAE,4BAA4B;aACzC,CAAC;QACJ,CAAC;QAED,MAAM,YAAY,GAAG,uBAAA,IAAI,wCAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QACtD,IAAI,YAAY,EAAE,CAAC;YACjB,OAAO,YAAY,CAAC;QACtB,CAAC;QAED,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,mCAA2B,IAAI,wCAAgC,QAAQ,kBAAkB,CAAC,QAAQ,CAAC,EAAE,EACxG;gBACE,MAAM,EAAE,KAAK;gBACb,OAAO,EAAE;oBACP,MAAM,EAAE,kBAAkB;iBAC3B;aACF,CACF,CAAC;YACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,OAAO;oBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;iBACzC,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,GAAG,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;YAC9B,OAAO,IAAI,CAAC;QACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;QAEF,0GAA0G;QAC1G,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,OAAO;gBACL,QAAQ,EAAE,EAAE;gBACZ,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;gBACzC,UAAU,EAAE,4BAA4B;aACzC,CAAC;QACJ,CAAC;aAAM,IAAI,OAAO,IAAI,WAAW,EAAE,CAAC;YAClC,OAAO;gBACL,QAAQ,EAAE,EAAE;gBACZ,iBAAiB,EAAE,yBAAiB,CAAC,IAAI;gBACzC,UAAU,EAAE,WAAW,CAAC,KAAK;aAC9B,CAAC;QACJ,CAAC;QAED,MAAM,MAAM,GAAG;YACb,QAAQ;YACR,iBAAiB,EAAE,WAAW,CAAC,iBAAiB;SACjD,CAAC;QAEF,uBAAA,IAAI,wCAAc,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAEzC,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;;;;;OAMG;IACH,KAAK,CAAC,YAAY,CAChB,IAAc;QAEd,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/B,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,MAAM,EAAE,EAAE;aACX,CAAC;QACJ,CAAC;QAED,wDAAwD;QACxD,MAAM,cAAc,GAAG,GAAG,CAAC;QAC3B,IAAI,IAAI,CAAC,MAAM,GAAG,cAAc,EAAE,CAAC;YACjC,OAAO;gBACL,OAAO,EAAE,EAAE;gBACX,MAAM,EAAE;oBACN,aAAa,EAAE;wBACb,cAAc,cAAc,2BAA2B;qBACxD;iBACF;aACF,CAAC;QACJ,CAAC;QAED,MAAM,cAAc,GAAG,IAAI,CAAC;QAC5B,MAAM,gBAAgB,GAAsC;YAC1D,OAAO,EAAE,EAAE;YACX,MAAM,EAAE,EAAE;SACX,CAAC;QAEF,4EAA4E;QAC5E,MAAM,eAAe,GAA2B,EAAE,CAAC;QACnD,MAAM,WAAW,GAAa,EAAE,CAAC;QAEjC,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;YACvB,IAAI,GAAG,CAAC,MAAM,GAAG,cAAc,EAAE,CAAC;gBAChC,gBAAgB,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG;oBAC7B,8BAA8B,cAAc,aAAa;iBAC1D,CAAC;gBACF,SAAS;YACX,CAAC;YAED,MAAM,CAAC,QAAQ,EAAE,EAAE,CAAC,GAAG,IAAA,6BAAqB,EAAC,GAAG,CAAC,CAAC;YAClD,IAAI,CAAC,EAAE,EAAE,CAAC;gBACR,gBAAgB,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG,CAAC,4BAA4B,CAAC,CAAC;gBAC9D,SAAS;YACX,CAAC;YAED,sCAAsC;YACtC,MAAM,YAAY,GAAG,uBAAA,IAAI,wCAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YACtD,IAAI,YAAY,EAAE,CAAC;gBACjB,oBAAoB;gBACpB,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,YAAY,CAAC;YAC/C,CAAC;iBAAM,CAAC;gBACN,+BAA+B;gBAC/B,eAAe,CAAC,GAAG,CAAC,GAAG,QAAQ,CAAC;gBAChC,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACxB,CAAC;QACH,CAAC;QAED,sDAAsD;QACtD,IAAI,WAAW,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC3B,uEAAuE;YACvE,MAAM,kBAAkB,GAAG,EAAE,CAAC;YAC9B,MAAM,OAAO,GAAe,EAAE,CAAC;YAC/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,WAAW,CAAC,MAAM,EAAE,CAAC,IAAI,kBAAkB,EAAE,CAAC;gBAChE,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,GAAG,kBAAkB,CAAC,CAAC,CAAC;YAC7D,CAAC;YAED,iCAAiC;YACjC,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,GAAG,CACpC,OAAO,CAAC,GAAG,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,uBAAA,IAAI,wCAAc,MAAlB,IAAI,EAAe,SAAS,CAAC,CAAC,CAC1D,CAAC;YAEF,4CAA4C;YAC5C,YAAY,CAAC,OAAO,CAAC,CAAC,aAAa,EAAE,EAAE;gBACrC,iDAAiD;gBACjD,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,MAAM,CAAC,EAAE,EAAE;oBAC9D,MAAM,QAAQ,GAAG,eAAe,CAAC,GAAG,CAAC,CAAC;oBACtC,IAAI,QAAQ,EAAE,CAAC;wBACb,uBAAA,IAAI,wCAAc,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;oBAC3C,CAAC;oBACD,gBAAgB,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,MAAM,CAAC;gBACzC,CAAC,CAAC,CAAC;gBAEH,iBAAiB;gBACjB,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,GAAG,EAAE,QAAQ,CAAC,EAAE,EAAE;oBAC/D,gBAAgB,CAAC,MAAM,CAAC,GAAG,CAAC,GAAG;wBAC7B,GAAG,CAAC,gBAAgB,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;wBACvC,GAAG,QAAQ;qBACZ,CAAC;gBACJ,CAAC,CAAC,CAAC;YACL,CAAC,CAAC,CAAC;QACL,CAAC;QAED,OAAO,gBAAgB,CAAC;IAC1B,CAAC;IAiED;;;;;;OAMG;IACH,KAAK,CAAC,WAAW,CACf,OAAe,EACf,OAAe;QAEf,IAAI,CAAC,OAAO,IAAI,CAAC,OAAO,EAAE,CAAC;YACzB,OAAO;gBACL,WAAW,EAAE,6BAAqB,CAAC,WAAW;gBAC9C,KAAK,EAAE,EAAE;aACV,CAAC;QACJ,CAAC;QAED,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QAChD,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QAChD,MAAM,KAAK,GAAG,IAAA,wBAAgB,EAAC,iBAAiB,CAAC,CAAC;QAElD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO;gBACL,WAAW,EAAE,6BAAqB,CAAC,WAAW;gBAC9C,KAAK,EAAE,EAAE;aACV,CAAC;QACJ,CAAC;QAED,MAAM,QAAQ,GAAG,IAAA,qBAAa,EAAC,iBAAiB,EAAE,iBAAiB,CAAC,CAAC;QACrE,MAAM,YAAY,GAAG,uBAAA,IAAI,4CAAkB,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAC1D,IAAI,YAAY,EAAE,CAAC;YACjB,OAAO;gBACL,WAAW,EAAE,YAAY,CAAC,WAAW;gBACrC,KAAK,EAAE,YAAY,CAAC,KAAK;aAC1B,CAAC;QACJ,CAAC;QAED,MAAM,WAAW,GAAG,MAAM,IAAA,2CAAwB,EAChD,KAAK,IAAI,EAAE;YACT,MAAM,GAAG,GAAG,MAAM,KAAK,CACrB,GAAG,gCAAwB,GAAG,6BAAqB,EAAE,EACrD;gBACE,MAAM,EAAE,MAAM;gBACd,OAAO,EAAE;oBACP,MAAM,EAAE,kBAAkB;oBAC1B,cAAc,EAAE,kBAAkB;iBACnC;gBACD,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC;oBACnB,KAAK;oBACL,OAAO,EAAE,iBAAiB;iBAC3B,CAAC;aACH,CACF,CAAC;YACF,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,CAAC;gBACZ,OAAO;oBACL,KAAK,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,GAAG,CAAC,UAAU,EAAE;iBACzC,CAAC;YACJ,CAAC;YACD,MAAM,IAAI,GAAsB,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC;YACjD,OAAO,IAAI,CAAC;QACd,CAAC,EACD,IAAI,EACJ,IAAI,CACL,CAAC;QAEF,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,OAAO;gBACL,WAAW,EAAE,6BAAqB,CAAC,WAAW;gBAC9C,KAAK,EAAE,EAAE;aACV,CAAC;QACJ,CAAC;aAAM,IAAI,OAAO,IAAI,WAAW,EAAE,CAAC;YAClC,OAAO;gBACL,WAAW,EAAE,6BAAqB,CAAC,WAAW;gBAC9C,KAAK,EAAE,EAAE;aACV,CAAC;QACJ,CAAC;QAED,MAAM,MAAM,GAAyB;YACnC,WAAW,EAAE,WAAW,CAAC,WAAW;YACpC,KAAK,EAAE,WAAW,CAAC,KAAK;SACzB,CAAC;QAEF,uBAAA,IAAI,4CAAkB,CAAC,GAAG,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;QAE7C,OAAO;YACL,WAAW,EAAE,WAAW,CAAC,WAAW;YACpC,KAAK,EAAE,WAAW,CAAC,KAAK;SACzB,CAAC;IACJ,CAAC;IA8DD;;;;;;;;;;;OAWG;IACH,KAAK,CAAC,cAAc,CAClB,OAA6B;QAE7B,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC;QAEpC,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACnC,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,sBAAsB,GAAG,GAAG,CAAC;QACnC,IAAI,MAAM,CAAC,MAAM,GAAG,sBAAsB,EAAE,CAAC;YAC3C,OAAO,CAAC,IAAI,CACV,cAAc,sBAAsB,6BAA6B,CAClE,CAAC;YACF,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,MAAM,iBAAiB,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;QAChD,MAAM,KAAK,GAAG,IAAA,wBAAgB,EAAC,iBAAiB,CAAC,CAAC;QAElD,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,CAAC,IAAI,CAAC,qBAAqB,OAAO,EAAE,CAAC,CAAC;YAC7C,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,qEAAqE;QACrE,yDAAyD;QACzD,MAAM,aAAa,GAAG,CAAC,iBAAiB,CAAC,UAAU,CAAC,IAAI,CAAC,CAAC;QAE1D,sEAAsE;QACtE,MAAM,EAAE,aAAa,EAAE,aAAa,EAAE,GAAG,IAAA,sBAAc,EACrD,uBAAA,IAAI,0CAAgB,EACpB,iBAAiB,EACjB,MAAM,EACN,aAAa,CACd,CAAC;QAEF,MAAM,OAAO,GAA0B,EAAE,GAAG,aAAa,EAAE,CAAC;QAE5D,6DAA6D;QAC7D,IAAI,aAAa,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YAC7B,MAAM,WAAW,GAAG,MAAM,uBAAA,IAAI,qDAA2B,MAA/B,IAAI,EAC5B,KAAK,EACL,aAAa,CACd,CAAC;YACF,IAAI,WAAW,EAAE,OAAO,EAAE,CAAC;gBACzB,uCAAuC;gBACvC,KAAK,MAAM,YAAY,IAAI,aAAa,EAAE,CAAC;oBACzC,MAAM,iBAAiB,GAAG,aAAa;wBACrC,CAAC,CAAC,YAAY;wBACd,CAAC,CAAC,YAAY,CAAC,WAAW,EAAE,CAAC;oBAC/B,MAAM,WAAW,GAAG,WAAW,CAAC,OAAO,CAAC,iBAAiB,CAAC,CAAC;oBAE3D,IAAI,WAAW,EAAE,WAAW,EAAE,CAAC;wBAC7B,MAAM,MAAM,GAAG;4BACb,WAAW,EAAE,WAAW,CAAC,WAAW;4BACpC,KAAK,EAAE,WAAW,CAAC,KAAK,IAAI,iBAAiB;4BAC7C,OAAO,EAAE,WAAW,CAAC,OAAO,IAAI,iBAAiB;yBAClD,CAAC;wBAEF,eAAe;wBACf,MAAM,QAAQ,GAAG,IAAA,qBAAa,EAC5B,iBAAiB,EACjB,iBAAiB,EACjB,aAAa,CACd,CAAC;wBACF,uBAAA,IAAI,0CAAgB,CAAC,GAAG,CAAC,QAAQ,EAAE;4BACjC,WAAW,EAAE,WAAW,CAAC,WAAW;yBACrC,CAAC,CAAC;wBAEH,OAAO,CAAC,iBAAiB,CAAC,GAAG,MAAM,CAAC;oBACtC,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;CA2PF;AAjqCD,gDAiqCC;;IA5iCG,IAAI,CAAC,SAAS,CAAC,SAAS,CACtB,mCAAmC,EACnC,uBAAA,IAAI,mEAAyC,CAC9C,CAAC;AACJ,CAAC,2FAQmB,KAAY;IAC9B,MAAM,EAAE,IAAI,EAAE,GAAG,KAAK,CAAC;IACvB,OAAO,CACL,IAAI,CAAC,MAAM,KAAK,CAAC;QACjB,IAAI,CAAC,CAAC,CAAC,KAAK,cAAc;QAC1B,OAAO,IAAI,CAAC,CAAC,CAAC,KAAK,QAAQ,CAC5B,CAAC;AACJ,CAAC,iGAQsB,KAAY;IACjC,MAAM,EAAE,IAAI,EAAE,GAAG,KAAK,CAAC;IACvB,OAAO,CACL,IAAI,CAAC,MAAM,KAAK,CAAC;QACjB,IAAI,CAAC,CAAC,CAAC,KAAK,cAAc;QAC1B,OAAO,IAAI,CAAC,CAAC,CAAC,KAAK,QAAQ;QAC3B,IAAI,CAAC,CAAC,CAAC,KAAK,gBAAgB,CAC7B,CAAC;AACJ,CAAC,2HAWC,MAA2C,EAC3C,OAAgB;IAEhB,IAAI,CAAC;QACH,MAAM,aAAa,GAAG,IAAI,GAAG,EAAuB,CAAC;QAErD,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,IAAI,KAAK,CAAC,EAAE,KAAK,QAAQ,EAAE,CAAC;gBAC1B,SAAS;YACX,CAAC;YAED,sEAAsE;YACtE,IAAI,uBAAA,IAAI,6EAAoB,MAAxB,IAAI,EAAqB,KAAK,CAAC,EAAE,CAAC;gBACpC,MAAM,WAAW,GAAG,KAAK,CAAC,KAAwB,CAAC;gBACnD,uBAAA,IAAI,mFAA0B,MAA9B,IAAI,EAA2B,WAAW,EAAE,aAAa,CAAC,CAAC;YAC7D,CAAC;iBAAM,IAAI,uBAAA,IAAI,gFAAuB,MAA3B,IAAI,EAAwB,KAAK,CAAC,EAAE,CAAC;gBAC9C,MAAM,gBAAgB,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAW,CAAC;gBACjD,MAAM,WAAW,GAAG,MAAM,CAAC,YAAY,EAAE,CAAC,gBAAgB,CAAC,CAAC;gBAC5D,uBAAA,IAAI,mFAA0B,MAA9B,IAAI,EAA2B,WAAW,EAAE,aAAa,CAAC,CAAC;YAC7D,CAAC;QACH,CAAC;QAED,uBAAA,IAAI,4EAAmB,MAAvB,IAAI,EAAoB,aAAa,CAAC,CAAC;IACzC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,OAAO,CAAC,KAAK,CAAC,4CAA4C,EAAE,KAAK,CAAC,CAAC;IACrE,CAAC;AACH,CAAC,uGASC,WAA4B,EAC5B,aAAuC;IAEvC,+CAA+C;IAC/C,MAAM,cAAc,GAAG,WAAW,CAAC,cAAc,EAAE,mBAAmB,EAAE,GAAG,CACzE,CAAC,WAAW,EAAE,EAAE,CAAC,WAAW,CAAC,OAAO,CAAC,WAAW,EAAE,CACnD,CAAC;IAEF,4CAA4C;IAC5C,IAAI,cAAc,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,IAAI,WAAW,CAAC,OAAO,EAAE,CAAC;QACvE,MAAM,OAAO,GAAG,WAAW,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;QAElD,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;YAChC,aAAa,CAAC,GAAG,CAAC,OAAO,EAAE,IAAI,GAAG,EAAE,CAAC,CAAC;QACxC,CAAC;QAED,MAAM,WAAW,GAAG,aAAa,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QAC/C,IAAI,WAAW,EAAE,CAAC;YAChB,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;gBACrC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;YAC3B,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC,yFAOkB,aAAuC;IACxD,KAAK,MAAM,CAAC,OAAO,EAAE,QAAQ,CAAC,IAAI,aAAa,EAAE,CAAC;QAChD,IAAI,QAAQ,CAAC,IAAI,GAAG,CAAC,EAAE,CAAC;YACtB,MAAM,MAAM,GAAG,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;YACpC,IAAI,CAAC,cAAc,CAAC;gBAClB,OAAO;gBACP,MAAM;aACP,CAAC,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE,CACjB,OAAO,CAAC,KAAK,CAAC,mCAAmC,OAAO,GAAG,EAAE,KAAK,CAAC,CACpE,CAAC;QACJ,CAAC;IACH,CAAC;AACH,CAAC;AAyvBD;;;;;GAKG;AACH,KAAK;IACH,IAAI,iBAAiB,GAAgD,IAAI,CAAC;IAC1E,IAAI,oBAAoB,GAAsC,IAAI,CAAC;IACnE,IAAI,yBAAyB,GAAqC,IAAI,CAAC;IACvE,IAAI,CAAC;QACH,MAAM,gBAAgB,GAAG,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE3B,8BAAsB,CAAC,CAAC;QAE1B,MAAM,wBAAwB,GAC5B,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAAyC,+BAAuB,CAAC,CAAC;QAExE,CAAC,iBAAiB,EAAE,yBAAyB,CAAC,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC;YACjE,gBAAgB;YAChB,wBAAwB;SACzB,CAAC,CAAC;QACH,yGAAyG;QACzG,8EAA8E;QAC9E,IAAI,iBAAiB,EAAE,IAAI,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,GAAG,CAAC,EAAE,CAAC;YACtE,oBAAoB,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAE/B,GAAG,iCAAyB,IAAI,iBAAiB,CAAC,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;QAC1E,CAAC;IACH,CAAC;YAAS,CAAC;QACT,iGAAiG;QACjG,kEAAkE;QAClE,MAAM,OAAO,GAAG,IAAA,oBAAY,GAAE,CAAC;QAC/B,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,oBAAoB,GAAG,OAAO,CAAC;YAC1C,UAAU,CAAC,kBAAkB,GAAG,OAAO,CAAC;YACxC,IAAI,yBAAyB,EAAE,CAAC;gBAC9B,UAAU,CAAC,4BAA4B,GAAG,OAAO,CAAC;YACpD,CAAC;QACH,CAAC,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC,iBAAiB,IAAI,CAAC,oBAAoB,EAAE,CAAC;QAChD,OAAO;IACT,CAAC;IAED,MAAM,iBAAiB,GAAsB;QAC3C,SAAS,EAAE,iBAAiB,CAAC,IAAI,CAAC,SAAS;QAC3C,SAAS,EAAE,iBAAiB,CAAC,IAAI,CAAC,SAAS;QAC3C,SAAS,EAAE,iBAAiB,CAAC,IAAI,CAAC,SAAS;QAC3C,OAAO,EAAE,iBAAiB,CAAC,IAAI,CAAC,OAAO;QACvC,WAAW,EAAE,iBAAiB,CAAC,IAAI,CAAC,WAAW;QAC/C,SAAS,EAAE,iBAAiB,CAAC,IAAI,CAAC,SAAS;QAC3C,cAAc,EAAE,IAAA,4BAAiB,EAAC,iBAAiB,CAAC,IAAI,CAAC,cAAc,CAAC;QACxE,iBAAiB,EAAE,yBAAyB;YAC1C,CAAC,CAAC,yBAAyB,CAAC,aAAa;YACzC,CAAC,CAAC,EAAE;QACN,IAAI,EAAE,8BAAsB,CAAC,0BAA0B;KACxD,CAAC;IAEF,MAAM,oBAAoB,GAAsB,IAAA,kBAAU,EACxD,iBAAiB,EACjB,oBAAoB,CAAC,IAAI,EACzB,QAAQ,CAAC,uBAAuB,CACjC,CAAC;IAEF,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,CAAC,oBAAoB,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,IAAI,eAAkD,CAAC;IAEvD,IAAI,CAAC;QACH,IAAI,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC1C,OAAO;QACT,CAAC;QAED,MAAM,iBAAiB,GAAG,IAAI,CAAC,GAAG,CAChC,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC,WAAW,CAAC,CAClE,CAAC;QAEF,eAAe,GAAG,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EAC1B,GAAG,iCAAyB,IAAI,iBAAiB,EAAE,CACpD,CAAC;IACJ,CAAC;YAAS,CAAC;QACT,kGAAkG;QAClG,sCAAsC;QACtC,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;YACzB,UAAU,CAAC,kBAAkB,GAAG,IAAA,oBAAY,GAAE,CAAC;QACjD,CAAC,CAAC,CAAC;IACL,CAAC;IAED,IAAI,CAAC,eAAe,EAAE,IAAI,EAAE,CAAC;QAC3B,OAAO;IACT,CAAC;IACD,MAAM,OAAO,GAAG,eAAe,CAAC,IAAI,CAAC;IACrC,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,IAAA,kBAAU,EAC5B,YAAY,EACZ,OAAO,EACP,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,EAAE,EACF,EAAE,CACH,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC;AAED;;;;;GAKG;AACH,KAAK;IACH,MAAM,yBAAyB,GAC7B,MAAM,uBAAA,IAAI,sEAAa,MAAjB,IAAI,EACR,GAAG,+BAAuB,cAAc,IAAA,4BAAoB,EAC1D,IAAI,CAAC,KAAK,CAAC,4BAA4B,CACxC,EAAE,CACJ,CAAC;IAEJ,IAAI,CAAC,yBAAyB,EAAE,CAAC;QAC/B,OAAO;IACT,CAAC;IAED,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,4BAA4B,GAAG,IAAA,oBAAY,GAAE,CAAC;IAC3D,CAAC,CAAC,CAAC;IAEH,MAAM,sBAAsB,GAAG,yBAAyB,CAAC,aAAa,CAAC;IACvE,MAAM,wBAAwB,GAAG,yBAAyB,CAAC,eAAe,CAAC;IAE3E,MAAM,gBAAgB,GAAG,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC,GAAG,CAAC,CAAC,YAAY,EAAE,EAAE;QACrE,MAAM,WAAW,GAAG,IAAA,kBAAU,EAC5B,YAAY,EACZ,EAAE,EACF,sBAAsB,CAAC,YAAY,CAAC,IAAI,CAAC,EACzC,sBAAsB,EACtB,wBAAwB,CACzB,CAAC;QAEF,OAAO,WAAW,CAAC;IACrB,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,MAAM,CAAC,CAAC,UAAU,EAAE,EAAE;QACzB,UAAU,CAAC,aAAa,GAAG,gBAAgB,CAAC;IAC9C,CAAC,CAAC,CAAC;IACH,IAAI,CAAC,sBAAsB,EAAE,CAAC;AAChC,CAAC,oCAED,KAAK,0CACH,KAAkB;IAElB,MAAM,QAAQ,GAAG,MAAM,IAAA,gCAAa,EAClC,GAAG,EAAE,CAAC,KAAK,CAAC,KAAK,EAAE,EAAE,KAAK,EAAE,UAAU,EAAE,CAAC,EACzC,IAAI,CACL,CAAC;IAEF,QAAQ,QAAQ,EAAE,MAAM,EAAE,CAAC;QACzB,KAAK,GAAG,CAAC,CAAC,CAAC;YACT,OAAO,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;QAC/B,CAAC;QAED,OAAO,CAAC,CAAC,CAAC;YACR,OAAO,IAAI,CAAC;QACd,CAAC;IACH,CAAC;AACH,CAAC;AAGH,kBAAe,kBAAkB,CAAC","sourcesContent":["import { BaseController } from '@metamask/base-controller';\nimport type {\n StateMetadata,\n ControllerGetStateAction,\n ControllerStateChangeEvent,\n} from '@metamask/base-controller';\nimport {\n safelyExecute,\n safelyExecuteWithTimeout,\n} from '@metamask/controller-utils';\nimport type { Messenger } from '@metamask/messenger';\nimport type {\n TransactionControllerStateChangeEvent,\n TransactionMeta,\n} from '@metamask/transaction-controller';\nimport type { Patch } from 'immer';\nimport { toASCII } from 'punycode/punycode.js';\n\nimport { CacheManager } from './CacheManager';\nimport type { CacheEntry } from './CacheManager';\nimport { convertListToTrie, insertToTrie, matchedPathPrefix } from './PathTrie';\nimport type { PathTrie } from './PathTrie';\nimport type {\n PhishingControllerMaybeUpdateStateAction,\n PhishingControllerMethodActions,\n PhishingControllerTestOriginAction,\n} from './PhishingController-method-action-types';\nimport { PhishingDetector } from './PhishingDetector';\nimport {\n PhishingDetectorResultType,\n RecommendedAction,\n AddressScanResultType,\n} from './types';\nimport type {\n PhishingDetectorResult,\n PhishingDetectionScanResult,\n TokenScanCacheData,\n BulkTokenScanResponse,\n BulkTokenScanRequest,\n TokenScanApiResponse,\n AddressScanCacheData,\n AddressScanResult,\n ApprovalsResponse,\n} from './types';\nimport {\n applyDiffs,\n fetchTimeNow,\n getHostnameFromUrl,\n roundToNearestMinute,\n getHostnameFromWebUrl,\n buildCacheKey,\n splitCacheHits,\n resolveChainName,\n getPathnameFromUrl,\n isApprovalSupportedChain,\n} from './utils';\n\nexport const PHISHING_CONFIG_BASE_URL =\n 'https://phishing-detection.api.cx.metamask.io';\nexport const METAMASK_STALELIST_FILE = '/v1/stalelist';\nexport const METAMASK_HOTLIST_DIFF_FILE = '/v2/diffsSince';\n\nexport const CLIENT_SIDE_DETECION_BASE_URL =\n 'https://client-side-detection.api.cx.metamask.io';\nexport const C2_DOMAIN_BLOCKLIST_ENDPOINT = '/v1/request-blocklist';\n\nexport const PHISHING_DETECTION_BASE_URL =\n 'https://dapp-scanning.api.cx.metamask.io';\nexport const PHISHING_DETECTION_SCAN_ENDPOINT = 'v2/scan';\nexport const PHISHING_DETECTION_BULK_SCAN_ENDPOINT = 'bulk-scan';\n\nexport const SECURITY_ALERTS_BASE_URL =\n 'https://security-alerts.api.cx.metamask.io';\nexport const TOKEN_BULK_SCANNING_ENDPOINT = '/token/scan-bulk';\nexport const ADDRESS_SCAN_ENDPOINT = '/address/evm/scan';\nexport const APPROVALS_ENDPOINT = '/address/evm/approvals';\n\n// Cache configuration defaults\nexport const DEFAULT_URL_SCAN_CACHE_TTL = 1 * 60; // 1 minute in seconds\nexport const DEFAULT_URL_SCAN_CACHE_MAX_SIZE = 250;\nexport const DEFAULT_TOKEN_SCAN_CACHE_TTL = 1 * 60; // 1 minute in seconds\nexport const DEFAULT_TOKEN_SCAN_CACHE_MAX_SIZE = 1000;\nexport const DEFAULT_ADDRESS_SCAN_CACHE_TTL = 1 * 60; // 1 minute in seconds\nexport const DEFAULT_ADDRESS_SCAN_CACHE_MAX_SIZE = 1000;\n\nexport const C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const HOTLIST_REFRESH_INTERVAL = 5 * 60; // 5 mins in seconds\nexport const STALELIST_REFRESH_INTERVAL = 30 * 24 * 60 * 60; // 30 days in seconds\n\nexport const METAMASK_STALELIST_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_STALELIST_FILE}`;\nexport const METAMASK_HOTLIST_DIFF_URL = `${PHISHING_CONFIG_BASE_URL}${METAMASK_HOTLIST_DIFF_FILE}`;\nexport const C2_DOMAIN_BLOCKLIST_URL = `${CLIENT_SIDE_DETECION_BASE_URL}${C2_DOMAIN_BLOCKLIST_ENDPOINT}`;\n\n/**\n * @type ListTypes\n *\n * Type outlining the types of lists provided by aggregating different source lists\n */\nexport type ListTypes =\n | 'fuzzylist'\n | 'blocklist'\n | 'blocklistPaths'\n | 'allowlist'\n | 'c2DomainBlocklist';\n\n/**\n * @type EthPhishingResponse\n *\n * Configuration response from the eth-phishing-detect package\n * consisting of approved and unapproved website origins\n *\n * @property blacklist - List of unapproved origins\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property version - Version number of this configuration\n * @property whitelist - List of approved origins\n */\nexport type EthPhishingResponse = {\n blacklist: string[];\n fuzzylist: string[];\n tolerance: number;\n version: number;\n whitelist: string[];\n};\n\n/**\n * @type C2DomainBlocklistResponse\n *\n * Response for blocklist update requests\n *\n * @property recentlyAdded - List of c2 domains recently added to the blocklist\n * @property recentlyRemoved - List of c2 domains recently removed from the blocklist\n * @property lastFetchedAt - Timestamp of the last fetch request\n */\nexport type C2DomainBlocklistResponse = {\n recentlyAdded: string[];\n recentlyRemoved: string[];\n lastFetchedAt: string;\n};\n\n/**\n * PhishingStalelist defines the expected type of the stalelist from the API.\n *\n * allowlist - List of approved origins.\n * blocklist - List of unapproved origins (hostname-only entries).\n * blocklistPaths - Trie of unapproved origins with paths (hostname + path entries).\n * fuzzylist - List of fuzzy-matched unapproved origins.\n * tolerance - Fuzzy match tolerance level\n * lastUpdated - Timestamp of last update.\n * version - Stalelist data structure iteration.\n */\nexport type PhishingStalelist = {\n allowlist: string[];\n blocklist: string[];\n blocklistPaths: string[];\n fuzzylist: string[];\n tolerance: number;\n version: number;\n lastUpdated: number;\n};\n\n/**\n * @type PhishingListState\n *\n * type defining the persisted list state. This is the persisted state that is updated frequently with `this.maybeUpdateState()`.\n *\n * @property allowlist - List of approved origins (legacy naming \"whitelist\")\n * @property blocklist - List of unapproved origins (legacy naming \"blacklist\")\n * @property blocklistPaths - Trie of unapproved origins with paths (hostname + path, no query params).\n * @property c2DomainBlocklist - List of hashed hostnames that C2 requests are blocked against.\n * @property fuzzylist - List of fuzzy-matched unapproved origins\n * @property tolerance - Fuzzy match tolerance level\n * @property lastUpdated - Timestamp of last update.\n * @property version - Version of the phishing list state.\n * @property name - Name of the list. Used for attribution.\n */\nexport type PhishingListState = {\n allowlist: string[];\n blocklist: string[];\n blocklistPaths: PathTrie;\n c2DomainBlocklist: string[];\n fuzzylist: string[];\n tolerance: number;\n version: number;\n lastUpdated: number;\n name: ListNames;\n};\n\n/**\n * @type HotlistDiff\n *\n * type defining the expected type of the diffs in hotlist.json file.\n *\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type HotlistDiff = {\n url: string;\n timestamp: number;\n targetList: `${ListKeys}.${ListTypes}`;\n isRemoval?: boolean;\n};\n\nexport type DataResultWrapper<T> = {\n data: T;\n};\n\n/**\n * @type Hotlist\n *\n * Type defining expected hotlist.json file.\n *\n * @property url - Url of the diff entry.\n * @property timestamp - Timestamp at which the diff was identified.\n * @property targetList - The list name where the diff was identified.\n * @property isRemoval - Was the diff identified a removal type.\n */\nexport type Hotlist = HotlistDiff[];\n\n/**\n * Enum containing upstream data provider source list keys.\n * These are the keys denoting lists consumed by the upstream data provider.\n */\nexport enum ListKeys {\n EthPhishingDetectConfig = 'eth_phishing_detect_config',\n}\n\n/**\n * Enum containing downstream client attribution names.\n */\nexport enum ListNames {\n MetaMask = 'MetaMask',\n}\n\n/**\n * Maps from downstream client attribution name\n * to list key sourced from upstream data provider.\n */\nconst phishingListNameKeyMap = {\n [ListNames.MetaMask]: ListKeys.EthPhishingDetectConfig,\n};\n\n/**\n * Maps from list key sourced from upstream data\n * provider to downstream client attribution name.\n */\nexport const phishingListKeyNameMap = {\n [ListKeys.EthPhishingDetectConfig]: ListNames.MetaMask,\n};\n\nconst controllerName = 'PhishingController';\n\nconst metadata: StateMetadata<PhishingControllerState> = {\n phishingLists: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n whitelist: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n whitelistPaths: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n hotlistLastFetched: {\n includeInStateLogs: true,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n stalelistLastFetched: {\n includeInStateLogs: true,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n c2DomainBlocklistLastFetched: {\n includeInStateLogs: true,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: false,\n },\n urlScanCache: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: true,\n },\n tokenScanCache: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: true,\n },\n addressScanCache: {\n includeInStateLogs: false,\n persist: true,\n includeInDebugSnapshot: false,\n usedInUi: true,\n },\n};\n\n/**\n * Get a default empty state for the controller.\n *\n * @returns The default empty state.\n */\nconst getDefaultState = (): PhishingControllerState => {\n return {\n phishingLists: [],\n whitelist: [],\n whitelistPaths: {},\n hotlistLastFetched: 0,\n stalelistLastFetched: 0,\n c2DomainBlocklistLastFetched: 0,\n urlScanCache: {},\n tokenScanCache: {},\n addressScanCache: {},\n };\n};\n\n/**\n * @type PhishingControllerState\n *\n * Phishing controller state\n * phishingLists - array of phishing lists\n * whitelist - origins that bypass the phishing detector\n * whitelistPaths - origins with paths that bypass the phishing detector\n * hotlistLastFetched - timestamp of the last hotlist fetch\n * stalelistLastFetched - timestamp of the last stalelist fetch\n * c2DomainBlocklistLastFetched - timestamp of the last c2 domain blocklist fetch\n * urlScanCache - cache of URL scan results\n * tokenScanCache - cache of token scan results\n * addressScanCache - cache of address scan results\n */\nexport type PhishingControllerState = {\n phishingLists: PhishingListState[];\n whitelist: string[];\n whitelistPaths: PathTrie;\n hotlistLastFetched: number;\n stalelistLastFetched: number;\n c2DomainBlocklistLastFetched: number;\n urlScanCache: Record<string, CacheEntry<PhishingDetectionScanResult>>;\n tokenScanCache: Record<string, CacheEntry<TokenScanCacheData>>;\n addressScanCache: Record<string, CacheEntry<AddressScanCacheData>>;\n};\n\n/**\n * PhishingControllerOptions\n *\n * Phishing controller options\n * stalelistRefreshInterval - Polling interval used to fetch stale list.\n * hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n * c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n * urlScanCacheTTL - Time to live in seconds for cached scan results.\n * urlScanCacheMaxSize - Maximum number of entries in the scan cache.\n * tokenScanCacheTTL - Time to live in seconds for cached token scan results.\n * tokenScanCacheMaxSize - Maximum number of entries in the token scan cache.\n * addressScanCacheTTL - Time to live in seconds for cached address scan results.\n * addressScanCacheMaxSize - Maximum number of entries in the address scan cache.\n */\nexport type PhishingControllerOptions = {\n stalelistRefreshInterval?: number;\n hotlistRefreshInterval?: number;\n c2DomainBlocklistRefreshInterval?: number;\n urlScanCacheTTL?: number;\n urlScanCacheMaxSize?: number;\n tokenScanCacheTTL?: number;\n tokenScanCacheMaxSize?: number;\n addressScanCacheTTL?: number;\n addressScanCacheMaxSize?: number;\n messenger: PhishingControllerMessenger;\n state?: Partial<PhishingControllerState>;\n};\n\nconst MESSENGER_EXPOSED_METHODS = [\n 'maybeUpdateState',\n 'testOrigin',\n 'isBlockedRequest',\n 'bypass',\n 'scanUrl',\n 'bulkScanUrls',\n 'bulkScanTokens',\n 'scanAddress',\n 'getApprovals',\n] as const;\n\n/**\n * @deprecated Use `PhishingControllerTestOriginAction` instead.\n */\nexport type TestOrigin = PhishingControllerTestOriginAction;\n\n/**\n * @deprecated Use `PhishingControllerMaybeUpdateStateAction` instead.\n */\nexport type MaybeUpdateState = PhishingControllerMaybeUpdateStateAction;\n\nexport type PhishingControllerGetStateAction = ControllerGetStateAction<\n typeof controllerName,\n PhishingControllerState\n>;\n\nexport type PhishingControllerActions =\n | PhishingControllerGetStateAction\n | PhishingControllerMethodActions;\n\nexport type PhishingControllerStateChangeEvent = ControllerStateChangeEvent<\n typeof controllerName,\n PhishingControllerState\n>;\n\nexport type PhishingControllerEvents = PhishingControllerStateChangeEvent;\n\n/**\n * The external actions available to the PhishingController.\n */\ntype AllowedActions = never;\n\n/**\n * The external events available to the PhishingController.\n */\nexport type AllowedEvents = TransactionControllerStateChangeEvent;\n\nexport type PhishingControllerMessenger = Messenger<\n typeof controllerName,\n PhishingControllerActions | AllowedActions,\n PhishingControllerEvents | AllowedEvents\n>;\n\n/**\n * BulkPhishingDetectionScanResponse\n *\n * Response for bulk phishing detection scan requests\n * results - Record of domain names and their corresponding phishing detection scan results\n *\n * errors - Record of domain names and their corresponding errors\n */\nexport type BulkPhishingDetectionScanResponse = {\n results: Record<string, PhishingDetectionScanResult>;\n errors: Record<string, string[]>;\n};\n\n/**\n * Controller that manages community-maintained lists of approved and unapproved website origins.\n */\nexport class PhishingController extends BaseController<\n typeof controllerName,\n PhishingControllerState,\n PhishingControllerMessenger\n> {\n // TODO: Replace `any` with type\n // eslint-disable-next-line @typescript-eslint/no-explicit-any\n #detector: any;\n\n readonly #stalelistRefreshInterval: number;\n\n readonly #hotlistRefreshInterval: number;\n\n readonly #c2DomainBlocklistRefreshInterval: number;\n\n readonly #urlScanCache: CacheManager<PhishingDetectionScanResult>;\n\n readonly #tokenScanCache: CacheManager<TokenScanCacheData>;\n\n readonly #addressScanCache: CacheManager<AddressScanCacheData>;\n\n #inProgressHotlistUpdate?: Promise<void>;\n\n #inProgressStalelistUpdate?: Promise<void>;\n\n #isProgressC2DomainBlocklistUpdate?: Promise<void>;\n\n readonly #transactionControllerStateChangeHandler: (\n state: { transactions: TransactionMeta[] },\n patches: Patch[],\n ) => void;\n\n /**\n * Construct a Phishing Controller.\n *\n * @param config - Initial options used to configure this controller.\n * @param config.stalelistRefreshInterval - Polling interval used to fetch stale list.\n * @param config.hotlistRefreshInterval - Polling interval used to fetch hotlist diff list.\n * @param config.c2DomainBlocklistRefreshInterval - Polling interval used to fetch c2 domain blocklist.\n * @param config.urlScanCacheTTL - Time to live in seconds for cached scan results.\n * @param config.urlScanCacheMaxSize - Maximum number of entries in the scan cache.\n * @param config.tokenScanCacheTTL - Time to live in seconds for cached token scan results.\n * @param config.tokenScanCacheMaxSize - Maximum number of entries in the token scan cache.\n * @param config.addressScanCacheTTL - Time to live in seconds for cached address scan results.\n * @param config.addressScanCacheMaxSize - Maximum number of entries in the address scan cache.\n * @param config.messenger - The controller restricted messenger.\n * @param config.state - Initial state to set on this controller.\n */\n constructor({\n stalelistRefreshInterval = STALELIST_REFRESH_INTERVAL,\n hotlistRefreshInterval = HOTLIST_REFRESH_INTERVAL,\n c2DomainBlocklistRefreshInterval = C2_DOMAIN_BLOCKLIST_REFRESH_INTERVAL,\n urlScanCacheTTL = DEFAULT_URL_SCAN_CACHE_TTL,\n urlScanCacheMaxSize = DEFAULT_URL_SCAN_CACHE_MAX_SIZE,\n tokenScanCacheTTL = DEFAULT_TOKEN_SCAN_CACHE_TTL,\n tokenScanCacheMaxSize = DEFAULT_TOKEN_SCAN_CACHE_MAX_SIZE,\n addressScanCacheTTL = DEFAULT_ADDRESS_SCAN_CACHE_TTL,\n addressScanCacheMaxSize = DEFAULT_ADDRESS_SCAN_CACHE_MAX_SIZE,\n messenger,\n state = {},\n }: PhishingControllerOptions) {\n super({\n name: controllerName,\n metadata,\n messenger,\n state: {\n ...getDefaultState(),\n ...state,\n },\n });\n\n this.#stalelistRefreshInterval = stalelistRefreshInterval;\n this.#hotlistRefreshInterval = hotlistRefreshInterval;\n this.#c2DomainBlocklistRefreshInterval = c2DomainBlocklistRefreshInterval;\n this.#transactionControllerStateChangeHandler =\n this.#onTransactionControllerStateChange.bind(this);\n this.#urlScanCache = new CacheManager<PhishingDetectionScanResult>({\n cacheTTL: urlScanCacheTTL,\n maxCacheSize: urlScanCacheMaxSize,\n initialCache: this.state.urlScanCache,\n updateState: (cache) => {\n this.update((draftState) => {\n draftState.urlScanCache = cache;\n });\n },\n });\n this.#tokenScanCache = new CacheManager<TokenScanCacheData>({\n cacheTTL: tokenScanCacheTTL,\n maxCacheSize: tokenScanCacheMaxSize,\n initialCache: this.state.tokenScanCache,\n updateState: (cache) => {\n this.update((draftState) => {\n draftState.tokenScanCache = cache;\n });\n },\n });\n this.#addressScanCache = new CacheManager<AddressScanCacheData>({\n cacheTTL: addressScanCacheTTL,\n maxCacheSize: addressScanCacheMaxSize,\n initialCache: this.state.addressScanCache,\n updateState: (cache) => {\n this.update((draftState) => {\n draftState.addressScanCache = cache;\n });\n },\n });\n\n this.messenger.registerMethodActionHandlers(\n this,\n MESSENGER_EXPOSED_METHODS,\n );\n\n this.updatePhishingDetector();\n this.#subscribeToTransactionControllerStateChange();\n }\n\n #subscribeToTransactionControllerStateChange() {\n this.messenger.subscribe(\n 'TransactionController:stateChange',\n this.#transactionControllerStateChangeHandler,\n );\n }\n\n /**\n * Checks if a patch represents a transaction-level change or nested transaction property change\n *\n * @param patch - Immer patch to check\n * @returns True if patch affects a transaction or its nested properties\n */\n #isTransactionPatch(patch: Patch): boolean {\n const { path } = patch;\n return (\n path.length === 2 &&\n path[0] === 'transactions' &&\n typeof path[1] === 'number'\n );\n }\n\n /**\n * Checks if a patch represents a simulation data change\n *\n * @param patch - Immer patch to check\n * @returns True if patch represents a simulation data change\n */\n #isSimulationDataPatch(patch: Patch): boolean {\n const { path } = patch;\n return (\n path.length === 3 &&\n path[0] === 'transactions' &&\n typeof path[1] === 'number' &&\n path[2] === 'simulationData'\n );\n }\n\n /**\n * Handle transaction controller state changes using Immer patches\n * Extracts token addresses from simulation data and groups them by chain for bulk scanning\n *\n * @param _state - The current transaction controller state\n * @param _state.transactions - Array of transaction metadata\n * @param patches - Array of Immer patches only for transaction-level changes\n */\n #onTransactionControllerStateChange(\n _state: { transactions: TransactionMeta[] },\n patches: Patch[],\n ) {\n try {\n const tokensByChain = new Map<string, Set<string>>();\n\n for (const patch of patches) {\n if (patch.op === 'remove') {\n continue;\n }\n\n // Handle transaction-level patches (includes simulation data updates)\n if (this.#isTransactionPatch(patch)) {\n const transaction = patch.value as TransactionMeta;\n this.#getTokensFromTransaction(transaction, tokensByChain);\n } else if (this.#isSimulationDataPatch(patch)) {\n const transactionIndex = patch.path[1] as number;\n const transaction = _state.transactions?.[transactionIndex];\n this.#getTokensFromTransaction(transaction, tokensByChain);\n }\n }\n\n this.#scanTokensByChain(tokensByChain);\n } catch (error) {\n console.error('Error processing transaction state change:', error);\n }\n }\n\n /**\n * Collect token addresses from a transaction and group them by chain\n *\n * @param transaction - Transaction metadata to extract tokens from\n * @param tokensByChain - Map to collect tokens grouped by chainId\n */\n #getTokensFromTransaction(\n transaction: TransactionMeta,\n tokensByChain: Map<string, Set<string>>,\n ) {\n // extract token addresses from simulation data\n const tokenAddresses = transaction.simulationData?.tokenBalanceChanges?.map(\n (tokenChange) => tokenChange.address.toLowerCase(),\n );\n\n // add token addresses to the map by chainId\n if (tokenAddresses && tokenAddresses.length > 0 && transaction.chainId) {\n const chainId = transaction.chainId.toLowerCase();\n\n if (!tokensByChain.has(chainId)) {\n tokensByChain.set(chainId, new Set());\n }\n\n const chainTokens = tokensByChain.get(chainId);\n if (chainTokens) {\n for (const address of tokenAddresses) {\n chainTokens.add(address);\n }\n }\n }\n }\n\n /**\n * Scan tokens grouped by chain ID\n *\n * @param tokensByChain - Map of chainId to token addresses\n */\n #scanTokensByChain(tokensByChain: Map<string, Set<string>>) {\n for (const [chainId, tokenSet] of tokensByChain) {\n if (tokenSet.size > 0) {\n const tokens = Array.from(tokenSet);\n this.bulkScanTokens({\n chainId,\n tokens,\n }).catch((error) =>\n console.error(`Error scanning tokens for chain ${chainId}:`, error),\n );\n }\n }\n }\n\n /**\n * Updates this.detector with an instance of PhishingDetector using the current state.\n */\n updatePhishingDetector() {\n this.#detector = new PhishingDetector(this.state.phishingLists);\n }\n\n /**\n * Determine if an update to the stalelist configuration is needed.\n *\n * @returns Whether an update is needed\n */\n isStalelistOutOfDate() {\n return (\n fetchTimeNow() - this.state.stalelistLastFetched >=\n this.#stalelistRefreshInterval\n );\n }\n\n /**\n * Determine if an update to the hotlist configuration is needed.\n *\n * @returns Whether an update is needed\n */\n isHotlistOutOfDate() {\n return (\n fetchTimeNow() - this.state.hotlistLastFetched >=\n this.#hotlistRefreshInterval\n );\n }\n\n /**\n * Determine if an update to the C2 domain blocklist is needed.\n *\n * @returns Whether an update is needed\n */\n isC2DomainBlocklistOutOfDate() {\n return (\n fetchTimeNow() - this.state.c2DomainBlocklistLastFetched >=\n this.#c2DomainBlocklistRefreshInterval\n );\n }\n\n /**\n * Conditionally update the phishing configuration.\n *\n * If the stalelist configuration is out of date, this function will call `updateStalelist`\n * to update the configuration. This will automatically grab the hotlist,\n * so it isn't necessary to continue on to download the hotlist and the c2 domain blocklist.\n *\n */\n async maybeUpdateState() {\n const staleListOutOfDate = this.isStalelistOutOfDate();\n if (staleListOutOfDate) {\n await this.updateStalelist();\n return;\n }\n const hotlistOutOfDate = this.isHotlistOutOfDate();\n if (hotlistOutOfDate) {\n await this.updateHotlist();\n }\n const c2DomainBlocklistOutOfDate = this.isC2DomainBlocklistOutOfDate();\n if (c2DomainBlocklistOutOfDate) {\n await this.updateC2DomainBlocklist();\n }\n }\n\n /**\n * Determines if a given origin is unapproved.\n *\n * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n * by calling {@link updateStalelist} or {@link updateHotlist}.\n *\n * @param origin - Domain origin of a website.\n * @returns Whether the origin is an unapproved origin.\n */\n testOrigin(origin: string): PhishingDetectorResult {\n const punycodeOrigin = toASCII(origin);\n const hostname = getHostnameFromUrl(punycodeOrigin);\n const hostnameWithPaths = hostname + getPathnameFromUrl(origin);\n\n if (matchedPathPrefix(hostnameWithPaths, this.state.whitelistPaths)) {\n return { result: false, type: PhishingDetectorResultType.All };\n }\n\n if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n }\n return this.#detector.check(punycodeOrigin);\n }\n\n /**\n * Determines if a given origin is unapproved.\n *\n * It is strongly recommended that you call {@link maybeUpdateState} before calling this,\n * to check whether the phishing configuration is up-to-date. It will be updated if necessary\n * by calling {@link updateStalelist} or {@link updateHotlist}.\n *\n * @param origin - Domain origin of a website.\n * @returns Whether the origin is an unapproved origin.\n * @deprecated Use {@link testOrigin} instead. This method is exposed for backward compatibility and will be removed in a future release.\n */\n test = this.testOrigin.bind(this);\n\n /**\n * Checks if a request URL's domain is blocked against the request blocklist.\n *\n * This method is used to determine if a specific request URL is associated with a malicious\n * command and control (C2) domain. The URL's hostname is hashed and checked against a configured\n * blocklist of known malicious domains.\n *\n * @param origin - The full request URL to be checked.\n * @returns An object indicating whether the URL's domain is blocked and relevant metadata.\n */\n isBlockedRequest(origin: string): PhishingDetectorResult {\n const punycodeOrigin = toASCII(origin);\n const hostname = getHostnameFromUrl(punycodeOrigin);\n if (this.state.whitelist.includes(hostname || punycodeOrigin)) {\n return { result: false, type: PhishingDetectorResultType.All }; // Same as whitelisted match returned by detector.check(...).\n }\n return this.#detector.isMaliciousC2Domain(punycodeOrigin);\n }\n\n /**\n * Temporarily marks a given origin as approved.\n *\n * @param origin - The origin to mark as approved.\n */\n bypass(origin: string) {\n const punycodeOrigin = toASCII(origin);\n const hostname = getHostnameFromUrl(punycodeOrigin);\n const hostnameWithPaths = hostname + getPathnameFromUrl(origin);\n const { whitelist, whitelistPaths } = this.state;\n const whitelistPath = matchedPathPrefix(hostnameWithPaths, whitelistPaths);\n\n if (whitelist.includes(hostname || punycodeOrigin) || whitelistPath) {\n return;\n }\n\n // If the origin was blocked by a path, then we only want to add it to the whitelistPaths since\n // other paths with the same hostname may not be blocked.\n const blockingPath = this.#detector.blockingPath(origin);\n if (blockingPath) {\n this.update((draftState) => {\n insertToTrie(blockingPath, draftState.whitelistPaths);\n });\n return;\n }\n\n this.update((draftState) => {\n draftState.whitelist.push(hostname || punycodeOrigin);\n });\n }\n\n /**\n * Update the C2 domain blocklist.\n *\n * If an update is in progress, no additional update will be made. Instead this will wait until\n * the in-progress update has finished.\n */\n async updateC2DomainBlocklist() {\n if (this.#isProgressC2DomainBlocklistUpdate) {\n await this.#isProgressC2DomainBlocklistUpdate;\n return;\n }\n\n try {\n this.#isProgressC2DomainBlocklistUpdate = this.#updateC2DomainBlocklist();\n await this.#isProgressC2DomainBlocklistUpdate;\n } finally {\n this.#isProgressC2DomainBlocklistUpdate = undefined;\n }\n }\n\n /**\n * Update the hotlist.\n *\n * If an update is in progress, no additional update will be made. Instead this will wait until\n * the in-progress update has finished.\n */\n async updateHotlist() {\n if (this.#inProgressHotlistUpdate) {\n await this.#inProgressHotlistUpdate;\n return;\n }\n\n try {\n this.#inProgressHotlistUpdate = this.#updateHotlist();\n await this.#inProgressHotlistUpdate;\n } finally {\n this.#inProgressHotlistUpdate = undefined;\n }\n }\n\n /**\n * Update the stalelist.\n *\n * If an update is in progress, no additional update will be made. Instead this will wait until\n * the in-progress update has finished.\n */\n async updateStalelist() {\n if (this.#inProgressStalelistUpdate) {\n await this.#inProgressStalelistUpdate;\n return;\n }\n\n try {\n this.#inProgressStalelistUpdate = this.#updateStalelist();\n await this.#inProgressStalelistUpdate;\n } finally {\n this.#inProgressStalelistUpdate = undefined;\n }\n }\n\n /**\n * Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports\n * web URLs.\n *\n * @param url - The URL to scan.\n * @returns The phishing detection scan result.\n */\n async scanUrl(url: string): Promise<PhishingDetectionScanResult> {\n const [hostname, ok] = getHostnameFromWebUrl(url);\n if (!ok) {\n return {\n hostname: '',\n recommendedAction: RecommendedAction.None,\n fetchError: 'url is not a valid web URL',\n };\n }\n\n const cachedResult = this.#urlScanCache.get(hostname);\n if (cachedResult) {\n return cachedResult;\n }\n\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const res = await fetch(\n `${PHISHING_DETECTION_BASE_URL}/${PHISHING_DETECTION_SCAN_ENDPOINT}?url=${encodeURIComponent(hostname)}`,\n {\n method: 'GET',\n headers: {\n Accept: 'application/json',\n },\n },\n );\n if (!res.ok) {\n return {\n error: `${res.status} ${res.statusText}`,\n };\n }\n const data = await res.json();\n return data;\n },\n true,\n 8000,\n );\n\n // Need to do it this way because safelyExecuteWithTimeout returns undefined for both timeouts and errors.\n if (!apiResponse) {\n return {\n hostname: '',\n recommendedAction: RecommendedAction.None,\n fetchError: 'timeout of 8000ms exceeded',\n };\n } else if ('error' in apiResponse) {\n return {\n hostname: '',\n recommendedAction: RecommendedAction.None,\n fetchError: apiResponse.error,\n };\n }\n\n const result = {\n hostname,\n recommendedAction: apiResponse.recommendedAction,\n };\n\n this.#urlScanCache.set(hostname, result);\n\n return result;\n }\n\n /**\n * Scan multiple URLs for phishing in bulk. It will only scan the hostnames of the URLs.\n * It also only supports web URLs.\n *\n * @param urls - The URLs to scan.\n * @returns A mapping of URLs to their phishing detection scan results and errors.\n */\n async bulkScanUrls(\n urls: string[],\n ): Promise<BulkPhishingDetectionScanResponse> {\n if (!urls || urls.length === 0) {\n return {\n results: {},\n errors: {},\n };\n }\n\n // we are arbitrarily limiting the number of URLs to 250\n const MAX_TOTAL_URLS = 250;\n if (urls.length > MAX_TOTAL_URLS) {\n return {\n results: {},\n errors: {\n too_many_urls: [\n `Maximum of ${MAX_TOTAL_URLS} URLs allowed per request`,\n ],\n },\n };\n }\n\n const MAX_URL_LENGTH = 2048;\n const combinedResponse: BulkPhishingDetectionScanResponse = {\n results: {},\n errors: {},\n };\n\n // Extract hostnames from URLs and check for validity and length constraints\n const urlsToHostnames: Record<string, string> = {};\n const urlsToFetch: string[] = [];\n\n for (const url of urls) {\n if (url.length > MAX_URL_LENGTH) {\n combinedResponse.errors[url] = [\n `URL length must not exceed ${MAX_URL_LENGTH} characters`,\n ];\n continue;\n }\n\n const [hostname, ok] = getHostnameFromWebUrl(url);\n if (!ok) {\n combinedResponse.errors[url] = ['url is not a valid web URL'];\n continue;\n }\n\n // Check if result is already in cache\n const cachedResult = this.#urlScanCache.get(hostname);\n if (cachedResult) {\n // Use cached result\n combinedResponse.results[url] = cachedResult;\n } else {\n // Add to list of URLs to fetch\n urlsToHostnames[url] = hostname;\n urlsToFetch.push(url);\n }\n }\n\n // If there are URLs to fetch, process them in batches\n if (urlsToFetch.length > 0) {\n // The API has a limit of 50 URLs per request, so we batch the requests\n const MAX_URLS_PER_BATCH = 50;\n const batches: string[][] = [];\n for (let i = 0; i < urlsToFetch.length; i += MAX_URLS_PER_BATCH) {\n batches.push(urlsToFetch.slice(i, i + MAX_URLS_PER_BATCH));\n }\n\n // Process each batch in parallel\n const batchResults = await Promise.all(\n batches.map((batchUrls) => this.#processBatch(batchUrls)),\n );\n\n // Merge results and errors from all batches\n batchResults.forEach((batchResponse) => {\n // Add results to cache and combine with response\n Object.entries(batchResponse.results).forEach(([url, result]) => {\n const hostname = urlsToHostnames[url];\n if (hostname) {\n this.#urlScanCache.set(hostname, result);\n }\n combinedResponse.results[url] = result;\n });\n\n // Combine errors\n Object.entries(batchResponse.errors).forEach(([key, messages]) => {\n combinedResponse.errors[key] = [\n ...(combinedResponse.errors[key] || []),\n ...messages,\n ];\n });\n });\n }\n\n return combinedResponse;\n }\n\n /**\n * Fetch bulk token scan results from the security alerts API.\n *\n * @param chain - The chain name.\n * @param tokens - Array of token addresses to scan.\n * @returns The API response or null if there was an error.\n */\n readonly #fetchTokenScanBulkResults = async (\n chain: string,\n tokens: string[],\n ): Promise<TokenScanApiResponse | null> => {\n const timeout = 8000; // 8 seconds\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const response = await fetch(\n `${SECURITY_ALERTS_BASE_URL}${TOKEN_BULK_SCANNING_ENDPOINT}`,\n {\n method: 'POST',\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n chain,\n tokens,\n }),\n },\n );\n\n if (!response.ok) {\n return {\n error: `${response.status} ${response.statusText}`,\n status: response.status,\n statusText: response.statusText,\n };\n }\n\n const data = await response.json();\n return data;\n },\n true,\n timeout,\n );\n\n if (!apiResponse) {\n console.error(`Error scanning tokens: timeout of ${timeout}ms exceeded`);\n return null;\n }\n\n if (\n 'error' in apiResponse &&\n 'status' in apiResponse &&\n 'statusText' in apiResponse\n ) {\n console.warn(\n `Token bulk screening API error: ${apiResponse.status} ${apiResponse.statusText}`,\n );\n return null;\n }\n\n return apiResponse as TokenScanApiResponse;\n };\n\n /**\n * Scan an address for security alerts.\n *\n * @param chainId - The chain ID in hex format (e.g., '0x1' for Ethereum).\n * @param address - The address to scan.\n * @returns The address scan result.\n */\n async scanAddress(\n chainId: string,\n address: string,\n ): Promise<AddressScanResult> {\n if (!address || !chainId) {\n return {\n result_type: AddressScanResultType.ErrorResult,\n label: '',\n };\n }\n\n const normalizedChainId = chainId.toLowerCase();\n const normalizedAddress = address.toLowerCase();\n const chain = resolveChainName(normalizedChainId);\n\n if (!chain) {\n return {\n result_type: AddressScanResultType.ErrorResult,\n label: '',\n };\n }\n\n const cacheKey = buildCacheKey(normalizedChainId, normalizedAddress);\n const cachedResult = this.#addressScanCache.get(cacheKey);\n if (cachedResult) {\n return {\n result_type: cachedResult.result_type,\n label: cachedResult.label,\n };\n }\n\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const res = await fetch(\n `${SECURITY_ALERTS_BASE_URL}${ADDRESS_SCAN_ENDPOINT}`,\n {\n method: 'POST',\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n chain,\n address: normalizedAddress,\n }),\n },\n );\n if (!res.ok) {\n return {\n error: `${res.status} ${res.statusText}`,\n };\n }\n const data: AddressScanResult = await res.json();\n return data;\n },\n true,\n 5000,\n );\n\n if (!apiResponse) {\n return {\n result_type: AddressScanResultType.ErrorResult,\n label: '',\n };\n } else if ('error' in apiResponse) {\n return {\n result_type: AddressScanResultType.ErrorResult,\n label: '',\n };\n }\n\n const result: AddressScanCacheData = {\n result_type: apiResponse.result_type,\n label: apiResponse.label,\n };\n\n this.#addressScanCache.set(cacheKey, result);\n\n return {\n result_type: apiResponse.result_type,\n label: apiResponse.label,\n };\n }\n\n /**\n * Get token approvals for an EVM address with security enrichments.\n *\n * @param chainId - The chain ID in hex format (e.g., '0x1' for Ethereum).\n * @param address - The address to get approvals for.\n * @returns The approvals response containing approval data, or empty approvals on error.\n */\n getApprovals = async (\n chainId: string,\n address: string,\n ): Promise<ApprovalsResponse> => {\n if (!address || !chainId) {\n return { approvals: [] };\n }\n\n const normalizedChainId = chainId.toLowerCase();\n const normalizedAddress = address.toLowerCase();\n const chain = resolveChainName(normalizedChainId);\n\n if (!chain || !isApprovalSupportedChain(chain)) {\n return { approvals: [] };\n }\n\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const res = await fetch(\n `${SECURITY_ALERTS_BASE_URL}${APPROVALS_ENDPOINT}`,\n {\n method: 'POST',\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({\n chain,\n address: normalizedAddress,\n }),\n },\n );\n if (!res.ok) {\n return { error: `${res.status} ${res.statusText}` };\n }\n const data: ApprovalsResponse = await res.json();\n return data;\n },\n true,\n 5000,\n );\n\n if (\n !apiResponse ||\n 'error' in apiResponse ||\n !Array.isArray(apiResponse.approvals)\n ) {\n return { approvals: [] };\n }\n\n return apiResponse;\n };\n\n /**\n * Scan multiple tokens for malicious activity in bulk.\n *\n * @param request - The bulk scan request containing chainId and tokens.\n * @param request.chainId - The chain identifier. Accepts a hex chain ID for\n * EVM chains (e.g. `'0x1'` for Ethereum) or a chain name for non-EVM chains\n * (e.g. `'solana'`).\n * @param request.tokens - Array of token addresses to scan.\n * @returns A mapping of token addresses to their scan results. For EVM chains,\n * addresses are lowercased; for non-EVM chains, original casing is preserved.\n * Tokens that fail to scan are omitted.\n */\n async bulkScanTokens(\n request: BulkTokenScanRequest,\n ): Promise<BulkTokenScanResponse> {\n const { chainId, tokens } = request;\n\n if (!tokens || tokens.length === 0) {\n return {};\n }\n\n const MAX_TOKENS_PER_REQUEST = 100;\n if (tokens.length > MAX_TOKENS_PER_REQUEST) {\n console.warn(\n `Maximum of ${MAX_TOKENS_PER_REQUEST} tokens allowed per request`,\n );\n return {};\n }\n\n const normalizedChainId = chainId.toLowerCase();\n const chain = resolveChainName(normalizedChainId);\n\n if (!chain) {\n console.warn(`Unknown chain ID: ${chainId}`);\n return {};\n }\n\n // EVM addresses are case-insensitive; non-EVM addresses (e.g. Solana\n // base58) are case-sensitive and must not be lowercased.\n const caseSensitive = !normalizedChainId.startsWith('0x');\n\n // Split tokens into cached results and tokens that need to be fetched\n const { cachedResults, tokensToFetch } = splitCacheHits(\n this.#tokenScanCache,\n normalizedChainId,\n tokens,\n caseSensitive,\n );\n\n const results: BulkTokenScanResponse = { ...cachedResults };\n\n // If there are tokens to fetch, call the bulk token scan API\n if (tokensToFetch.length > 0) {\n const apiResponse = await this.#fetchTokenScanBulkResults(\n chain,\n tokensToFetch,\n );\n if (apiResponse?.results) {\n // Process API results and update cache\n for (const tokenAddress of tokensToFetch) {\n const normalizedAddress = caseSensitive\n ? tokenAddress\n : tokenAddress.toLowerCase();\n const tokenResult = apiResponse.results[normalizedAddress];\n\n if (tokenResult?.result_type) {\n const result = {\n result_type: tokenResult.result_type,\n chain: tokenResult.chain || normalizedChainId,\n address: tokenResult.address || normalizedAddress,\n };\n\n // Update cache\n const cacheKey = buildCacheKey(\n normalizedChainId,\n normalizedAddress,\n caseSensitive,\n );\n this.#tokenScanCache.set(cacheKey, {\n result_type: tokenResult.result_type,\n });\n\n results[normalizedAddress] = result;\n }\n }\n }\n }\n\n return results;\n }\n\n /**\n * Process a batch of URLs (up to 50) for phishing detection.\n *\n * @param urls - A batch of URLs to scan.\n * @returns The scan results and errors for this batch.\n */\n readonly #processBatch = async (\n urls: string[],\n ): Promise<BulkPhishingDetectionScanResponse> => {\n const apiResponse = await safelyExecuteWithTimeout(\n async () => {\n const res = await fetch(\n `${PHISHING_DETECTION_BASE_URL}/${PHISHING_DETECTION_BULK_SCAN_ENDPOINT}`,\n {\n method: 'POST',\n headers: {\n Accept: 'application/json',\n 'Content-Type': 'application/json',\n },\n body: JSON.stringify({ urls }),\n },\n );\n\n if (!res.ok) {\n return {\n error: `${res.status} ${res.statusText}`,\n status: res.status,\n statusText: res.statusText,\n };\n }\n\n const data = await res.json();\n return data;\n },\n true,\n 15000,\n );\n\n // Handle timeout or network errors\n if (!apiResponse) {\n return {\n results: {},\n errors: {\n network_error: ['timeout of 15000ms exceeded'],\n },\n };\n }\n\n // Handle HTTP error responses\n if (\n 'error' in apiResponse &&\n 'status' in apiResponse &&\n 'statusText' in apiResponse\n ) {\n return {\n results: {},\n errors: {\n api_error: [`${apiResponse.status} ${apiResponse.statusText}`],\n },\n };\n }\n\n return apiResponse as BulkPhishingDetectionScanResponse;\n };\n\n /**\n * Update the stalelist configuration.\n *\n * This should only be called from the `updateStalelist` function, which is a wrapper around\n * this function that prevents redundant configuration updates.\n */\n async #updateStalelist() {\n let stalelistResponse: DataResultWrapper<PhishingStalelist> | null = null;\n let hotlistDiffsResponse: DataResultWrapper<Hotlist> | null = null;\n let c2DomainBlocklistResponse: C2DomainBlocklistResponse | null = null;\n try {\n const stalelistPromise = this.#queryConfig<\n DataResultWrapper<PhishingStalelist>\n >(METAMASK_STALELIST_URL);\n\n const c2DomainBlocklistPromise =\n this.#queryConfig<C2DomainBlocklistResponse>(C2_DOMAIN_BLOCKLIST_URL);\n\n [stalelistResponse, c2DomainBlocklistResponse] = await Promise.all([\n stalelistPromise,\n c2DomainBlocklistPromise,\n ]);\n // Fetching hotlist diffs relies on having a lastUpdated timestamp to do `GET /v1/diffsSince/:timestamp`,\n // so it doesn't make sense to call if there is not a timestamp to begin with.\n if (stalelistResponse?.data && stalelistResponse.data.lastUpdated > 0) {\n hotlistDiffsResponse = await this.#queryConfig<\n DataResultWrapper<Hotlist>\n >(`${METAMASK_HOTLIST_DIFF_URL}/${stalelistResponse.data.lastUpdated}`);\n }\n } finally {\n // Set `stalelistLastFetched` and `hotlistLastFetched` even for failed requests to prevent server\n // from being overwhelmed with traffic after a network disruption.\n const timeNow = fetchTimeNow();\n this.update((draftState) => {\n draftState.stalelistLastFetched = timeNow;\n draftState.hotlistLastFetched = timeNow;\n if (c2DomainBlocklistResponse) {\n draftState.c2DomainBlocklistLastFetched = timeNow;\n }\n });\n }\n\n if (!stalelistResponse || !hotlistDiffsResponse) {\n return;\n }\n\n const metamaskListState: PhishingListState = {\n allowlist: stalelistResponse.data.allowlist,\n fuzzylist: stalelistResponse.data.fuzzylist,\n tolerance: stalelistResponse.data.tolerance,\n version: stalelistResponse.data.version,\n lastUpdated: stalelistResponse.data.lastUpdated,\n blocklist: stalelistResponse.data.blocklist,\n blocklistPaths: convertListToTrie(stalelistResponse.data.blocklistPaths),\n c2DomainBlocklist: c2DomainBlocklistResponse\n ? c2DomainBlocklistResponse.recentlyAdded\n : [],\n name: phishingListKeyNameMap.eth_phishing_detect_config,\n };\n\n const newMetaMaskListState: PhishingListState = applyDiffs(\n metamaskListState,\n hotlistDiffsResponse.data,\n ListKeys.EthPhishingDetectConfig,\n );\n\n this.update((draftState) => {\n draftState.phishingLists = [newMetaMaskListState];\n });\n this.updatePhishingDetector();\n }\n\n /**\n * Update the stalelist configuration.\n *\n * This should only be called from the `updateStalelist` function, which is a wrapper around\n * this function that prevents redundant configuration updates.\n */\n async #updateHotlist() {\n let hotlistResponse: DataResultWrapper<Hotlist> | null;\n\n try {\n if (this.state.phishingLists.length === 0) {\n return;\n }\n\n const lastDiffTimestamp = Math.max(\n ...this.state.phishingLists.map(({ lastUpdated }) => lastUpdated),\n );\n\n hotlistResponse = await this.#queryConfig<DataResultWrapper<Hotlist>>(\n `${METAMASK_HOTLIST_DIFF_URL}/${lastDiffTimestamp}`,\n );\n } finally {\n // Set `hotlistLastFetched` even for failed requests to prevent server from being overwhelmed with\n // traffic after a network disruption.\n this.update((draftState) => {\n draftState.hotlistLastFetched = fetchTimeNow();\n });\n }\n\n if (!hotlistResponse?.data) {\n return;\n }\n const hotlist = hotlistResponse.data;\n const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n const updatedList = applyDiffs(\n phishingList,\n hotlist,\n phishingListNameKeyMap[phishingList.name],\n [],\n [],\n );\n\n return updatedList;\n });\n\n this.update((draftState) => {\n draftState.phishingLists = newPhishingLists;\n });\n this.updatePhishingDetector();\n }\n\n /**\n * Update the C2 domain blocklist.\n *\n * This should only be called from the `updateC2DomainBlocklist` function, which is a wrapper around\n * this function that prevents redundant configuration updates.\n */\n async #updateC2DomainBlocklist() {\n const c2DomainBlocklistResponse =\n await this.#queryConfig<C2DomainBlocklistResponse>(\n `${C2_DOMAIN_BLOCKLIST_URL}?timestamp=${roundToNearestMinute(\n this.state.c2DomainBlocklistLastFetched,\n )}`,\n );\n\n if (!c2DomainBlocklistResponse) {\n return;\n }\n\n this.update((draftState) => {\n draftState.c2DomainBlocklistLastFetched = fetchTimeNow();\n });\n\n const recentlyAddedC2Domains = c2DomainBlocklistResponse.recentlyAdded;\n const recentlyRemovedC2Domains = c2DomainBlocklistResponse.recentlyRemoved;\n\n const newPhishingLists = this.state.phishingLists.map((phishingList) => {\n const updatedList = applyDiffs(\n phishingList,\n [],\n phishingListNameKeyMap[phishingList.name],\n recentlyAddedC2Domains,\n recentlyRemovedC2Domains,\n );\n\n return updatedList;\n });\n\n this.update((draftState) => {\n draftState.phishingLists = newPhishingLists;\n });\n this.updatePhishingDetector();\n }\n\n async #queryConfig<ResponseType>(\n input: RequestInfo,\n ): Promise<ResponseType | null> {\n const response = await safelyExecute(\n () => fetch(input, { cache: 'no-cache' }),\n true,\n );\n\n switch (response?.status) {\n case 200: {\n return await response.json();\n }\n\n default: {\n return null;\n }\n }\n }\n}\n\nexport default PhishingController;\n\nexport type { PhishingDetectorResult };\n"]}
|
|
@@ -366,9 +366,8 @@ export declare class PhishingController extends BaseController<typeof controller
|
|
|
366
366
|
*/
|
|
367
367
|
updateStalelist(): Promise<void>;
|
|
368
368
|
/**
|
|
369
|
-
* Scan a URL for phishing.
|
|
370
|
-
*
|
|
371
|
-
* Only supports web URLs (`http:` / `https:`).
|
|
369
|
+
* Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports
|
|
370
|
+
* web URLs.
|
|
372
371
|
*
|
|
373
372
|
* @param url - The URL to scan.
|
|
374
373
|
* @returns The phishing detection scan result.
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"PhishingController.d.cts","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,kCAAkC;AAC3D,OAAO,KAAK,EAEV,wBAAwB,EACxB,0BAA0B,EAC3B,kCAAkC;AAKnC,OAAO,KAAK,EAAE,SAAS,EAAE,4BAA4B;AACrD,OAAO,KAAK,EACV,qCAAqC,EAEtC,yCAAyC;AAK1C,OAAO,KAAK,EAAE,UAAU,EAAE,2BAAuB;AAEjD,OAAO,KAAK,EAAE,QAAQ,EAAE,uBAAmB;AAC3C,OAAO,KAAK,EACV,wCAAwC,EACxC,+BAA+B,EAC/B,kCAAkC,EACnC,qDAAiD;AAOlD,OAAO,KAAK,EACV,sBAAsB,EACtB,2BAA2B,EAC3B,kBAAkB,EAClB,qBAAqB,EACrB,oBAAoB,EAEpB,oBAAoB,EACpB,iBAAiB,EACjB,iBAAiB,EAClB,oBAAgB;
|
|
1
|
+
{"version":3,"file":"PhishingController.d.cts","sourceRoot":"","sources":["../src/PhishingController.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,cAAc,EAAE,kCAAkC;AAC3D,OAAO,KAAK,EAEV,wBAAwB,EACxB,0BAA0B,EAC3B,kCAAkC;AAKnC,OAAO,KAAK,EAAE,SAAS,EAAE,4BAA4B;AACrD,OAAO,KAAK,EACV,qCAAqC,EAEtC,yCAAyC;AAK1C,OAAO,KAAK,EAAE,UAAU,EAAE,2BAAuB;AAEjD,OAAO,KAAK,EAAE,QAAQ,EAAE,uBAAmB;AAC3C,OAAO,KAAK,EACV,wCAAwC,EACxC,+BAA+B,EAC/B,kCAAkC,EACnC,qDAAiD;AAOlD,OAAO,KAAK,EACV,sBAAsB,EACtB,2BAA2B,EAC3B,kBAAkB,EAClB,qBAAqB,EACrB,oBAAoB,EAEpB,oBAAoB,EACpB,iBAAiB,EACjB,iBAAiB,EAClB,oBAAgB;AAcjB,eAAO,MAAM,wBAAwB,kDACY,CAAC;AAClD,eAAO,MAAM,uBAAuB,kBAAkB,CAAC;AACvD,eAAO,MAAM,0BAA0B,mBAAmB,CAAC;AAE3D,eAAO,MAAM,6BAA6B,qDACU,CAAC;AACrD,eAAO,MAAM,4BAA4B,0BAA0B,CAAC;AAEpE,eAAO,MAAM,2BAA2B,6CACI,CAAC;AAC7C,eAAO,MAAM,gCAAgC,YAAY,CAAC;AAC1D,eAAO,MAAM,qCAAqC,cAAc,CAAC;AAEjE,eAAO,MAAM,wBAAwB,+CACS,CAAC;AAC/C,eAAO,MAAM,4BAA4B,qBAAqB,CAAC;AAC/D,eAAO,MAAM,qBAAqB,sBAAsB,CAAC;AACzD,eAAO,MAAM,kBAAkB,2BAA2B,CAAC;AAG3D,eAAO,MAAM,0BAA0B,QAAS,CAAC;AACjD,eAAO,MAAM,+BAA+B,MAAM,CAAC;AACnD,eAAO,MAAM,4BAA4B,QAAS,CAAC;AACnD,eAAO,MAAM,iCAAiC,OAAO,CAAC;AACtD,eAAO,MAAM,8BAA8B,QAAS,CAAC;AACrD,eAAO,MAAM,mCAAmC,OAAO,CAAC;AAExD,eAAO,MAAM,oCAAoC,QAAS,CAAC;AAC3D,eAAO,MAAM,wBAAwB,QAAS,CAAC;AAC/C,eAAO,MAAM,0BAA0B,QAAoB,CAAC;AAE5D,eAAO,MAAM,sBAAsB,+DAA0D,CAAC;AAC9F,eAAO,MAAM,yBAAyB,gEAA6D,CAAC;AACpG,eAAO,MAAM,uBAAuB,0EAAoE,CAAC;AAEzG;;;;GAIG;AACH,MAAM,MAAM,SAAS,GACjB,WAAW,GACX,WAAW,GACX,gBAAgB,GAChB,WAAW,GACX,mBAAmB,CAAC;AAExB;;;;;;;;;;;GAWG;AACH,MAAM,MAAM,mBAAmB,GAAG;IAChC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,SAAS,EAAE,MAAM,EAAE,CAAC;CACrB,CAAC;AAEF;;;;;;;;GAQG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,aAAa,EAAE,MAAM,EAAE,CAAC;IACxB,eAAe,EAAE,MAAM,EAAE,CAAC;IAC1B,aAAa,EAAE,MAAM,CAAC;CACvB,CAAC;AAEF;;;;;;;;;;GAUG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAC9B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,cAAc,EAAE,MAAM,EAAE,CAAC;IACzB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;CACrB,CAAC;AAEF;;;;;;;;;;;;;;GAcG;AACH,MAAM,MAAM,iBAAiB,GAAG;IAC9B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,cAAc,EAAE,QAAQ,CAAC;IACzB,iBAAiB,EAAE,MAAM,EAAE,CAAC;IAC5B,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,SAAS,EAAE,MAAM,CAAC;IAClB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,IAAI,EAAE,SAAS,CAAC;CACjB,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,WAAW,GAAG;IACxB,GAAG,EAAE,MAAM,CAAC;IACZ,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,GAAG,QAAQ,IAAI,SAAS,EAAE,CAAC;IACvC,SAAS,CAAC,EAAE,OAAO,CAAC;CACrB,CAAC;AAEF,MAAM,MAAM,iBAAiB,CAAC,CAAC,IAAI;IACjC,IAAI,EAAE,CAAC,CAAC;CACT,CAAC;AAEF;;;;;;;;;GASG;AACH,MAAM,MAAM,OAAO,GAAG,WAAW,EAAE,CAAC;AAEpC;;;GAGG;AACH,oBAAY,QAAQ;IAClB,uBAAuB,+BAA+B;CACvD;AAED;;GAEG;AACH,oBAAY,SAAS;IACnB,QAAQ,aAAa;CACtB;AAUD;;;GAGG;AACH,eAAO,MAAM,sBAAsB;;CAElC,CAAC;AAEF,QAAA,MAAM,cAAc,uBAAuB,CAAC;AA8E5C;;;;;;;;;;;;;GAaG;AACH,MAAM,MAAM,uBAAuB,GAAG;IACpC,aAAa,EAAE,iBAAiB,EAAE,CAAC;IACnC,SAAS,EAAE,MAAM,EAAE,CAAC;IACpB,cAAc,EAAE,QAAQ,CAAC;IACzB,kBAAkB,EAAE,MAAM,CAAC;IAC3B,oBAAoB,EAAE,MAAM,CAAC;IAC7B,4BAA4B,EAAE,MAAM,CAAC;IACrC,YAAY,EAAE,MAAM,CAAC,MAAM,EAAE,UAAU,CAAC,2BAA2B,CAAC,CAAC,CAAC;IACtE,cAAc,EAAE,MAAM,CAAC,MAAM,EAAE,UAAU,CAAC,kBAAkB,CAAC,CAAC,CAAC;IAC/D,gBAAgB,EAAE,MAAM,CAAC,MAAM,EAAE,UAAU,CAAC,oBAAoB,CAAC,CAAC,CAAC;CACpE,CAAC;AAEF;;;;;;;;;;;;;GAaG;AACH,MAAM,MAAM,yBAAyB,GAAG;IACtC,wBAAwB,CAAC,EAAE,MAAM,CAAC;IAClC,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,gCAAgC,CAAC,EAAE,MAAM,CAAC;IAC1C,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,qBAAqB,CAAC,EAAE,MAAM,CAAC;IAC/B,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,uBAAuB,CAAC,EAAE,MAAM,CAAC;IACjC,SAAS,EAAE,2BAA2B,CAAC;IACvC,KAAK,CAAC,EAAE,OAAO,CAAC,uBAAuB,CAAC,CAAC;CAC1C,CAAC;AAcF;;GAEG;AACH,MAAM,MAAM,UAAU,GAAG,kCAAkC,CAAC;AAE5D;;GAEG;AACH,MAAM,MAAM,gBAAgB,GAAG,wCAAwC,CAAC;AAExE,MAAM,MAAM,gCAAgC,GAAG,wBAAwB,CACrE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,yBAAyB,GACjC,gCAAgC,GAChC,+BAA+B,CAAC;AAEpC,MAAM,MAAM,kCAAkC,GAAG,0BAA0B,CACzE,OAAO,cAAc,EACrB,uBAAuB,CACxB,CAAC;AAEF,MAAM,MAAM,wBAAwB,GAAG,kCAAkC,CAAC;AAE1E;;GAEG;AACH,KAAK,cAAc,GAAG,KAAK,CAAC;AAE5B;;GAEG;AACH,MAAM,MAAM,aAAa,GAAG,qCAAqC,CAAC;AAElE,MAAM,MAAM,2BAA2B,GAAG,SAAS,CACjD,OAAO,cAAc,EACrB,yBAAyB,GAAG,cAAc,EAC1C,wBAAwB,GAAG,aAAa,CACzC,CAAC;AAEF;;;;;;;GAOG;AACH,MAAM,MAAM,iCAAiC,GAAG;IAC9C,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,2BAA2B,CAAC,CAAC;IACrD,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;CAClC,CAAC;AAEF;;GAEG;AACH,qBAAa,kBAAmB,SAAQ,cAAc,CACpD,OAAO,cAAc,EACrB,uBAAuB,EACvB,2BAA2B,CAC5B;;IA4BC;;;;;;;;;;;;;;;OAeG;gBACS,EACV,wBAAqD,EACrD,sBAAiD,EACjD,gCAAuE,EACvE,eAA4C,EAC5C,mBAAqD,EACrD,iBAAgD,EAChD,qBAAyD,EACzD,mBAAoD,EACpD,uBAA6D,EAC7D,SAAS,EACT,KAAU,GACX,EAAE,yBAAyB;IAsL5B;;OAEG;IACH,sBAAsB;IAItB;;;;OAIG;IACH,oBAAoB;IAOpB;;;;OAIG;IACH,kBAAkB;IAOlB;;;;OAIG;IACH,4BAA4B;IAO5B;;;;;;;OAOG;IACG,gBAAgB;IAgBtB;;;;;;;;;OASG;IACH,UAAU,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IAelD;;;;;;;;;;OAUG;IACH,IAAI,WA1Be,MAAM,KAAG,sBAAsB,CA0BhB;IAElC;;;;;;;;;OASG;IACH,gBAAgB,CAAC,MAAM,EAAE,MAAM,GAAG,sBAAsB;IASxD;;;;OAIG;IACH,MAAM,CAAC,MAAM,EAAE,MAAM;IA0BrB;;;;;OAKG;IACG,uBAAuB;IAc7B;;;;;OAKG;IACG,aAAa;IAcnB;;;;;OAKG;IACG,eAAe;IAcrB;;;;;;OAMG;IACG,OAAO,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO,CAAC,2BAA2B,CAAC;IA+DhE;;;;;;OAMG;IACG,YAAY,CAChB,IAAI,EAAE,MAAM,EAAE,GACb,OAAO,CAAC,iCAAiC,CAAC;IA8J7C;;;;;;OAMG;IACG,WAAW,CACf,OAAO,EAAE,MAAM,EACf,OAAO,EAAE,MAAM,GACd,OAAO,CAAC,iBAAiB,CAAC;IAiF7B;;;;;;OAMG;IACH,YAAY,YACD,MAAM,WACN,MAAM,KACd,QAAQ,iBAAiB,CAAC,CAgD3B;IAEF;;;;;;;;;;;OAWG;IACG,cAAc,CAClB,OAAO,EAAE,oBAAoB,GAC5B,OAAO,CAAC,qBAAqB,CAAC;CAsUlC;AAED,eAAe,kBAAkB,CAAC;AAElC,YAAY,EAAE,sBAAsB,EAAE,CAAC"}
|
|
@@ -366,9 +366,8 @@ export declare class PhishingController extends BaseController<typeof controller
|
|
|
366
366
|
*/
|
|
367
367
|
updateStalelist(): Promise<void>;
|
|
368
368
|
/**
|
|
369
|
-
* Scan a URL for phishing.
|
|
370
|
-
*
|
|
371
|
-
* Only supports web URLs (`http:` / `https:`).
|
|
369
|
+
* Scan a URL for phishing. It will only scan the hostname of the URL. It also only supports
|
|
370
|
+
* web URLs.
|
|
372
371
|
*
|
|
373
372
|
* @param url - The URL to scan.
|
|
374
373
|
* @returns The phishing detection scan result.
|