@mneme-ai/core 2.23.2 → 2.25.0

package/dist/mcp_fuzzer/storage.js

@@ -0,0 +1,65 @@
+/**
+ * v2.24.0 — Persist HMAC-chained MCP fuzz report cards.
+ *
+ * Cards land at `.mneme/mcp_fuzzer/<seq>-<utc>.json` AND get appended to
+ * an append-only ledger `.mneme/mcp_fuzzer/ledger.jsonl` (one line per
+ * card with hmac + bodyDigest only — fast skim).
+ */
+import { mkdirSync, writeFileSync, readFileSync, readdirSync, existsSync, appendFileSync } from "node:fs";
+import { join } from "node:path";
+function dirOf(repoRoot) {
+    return join(repoRoot, ".mneme", "mcp_fuzzer");
+}
+export function storeReport(repoRoot, card) {
+    const dir = dirOf(repoRoot);
+    if (!existsSync(dir))
+        mkdirSync(dir, { recursive: true });
+    const stamp = card.finishedAt.replace(/[:.]/g, "-");
+    const path = join(dir, `${String(card.seq).padStart(10, "0")}-${stamp}.json`);
+    writeFileSync(path, JSON.stringify(card, null, 2) + "\n");
+    const ledger = join(dir, "ledger.jsonl");
+    const skim = {
+        seq: card.seq,
+        finishedAt: card.finishedAt,
+        pass: card.summary.pass,
+        fail: card.summary.fail,
+        warn: card.summary.warn,
+        trafficLight: card.wisdom.trafficLight,
+        headline: card.wisdom.headline,
+        hmac: card.hmac,
+        bodyDigest: card.bodyDigest,
+        file: path,
+    };
+    appendFileSync(ledger, JSON.stringify(skim) + "\n");
+    return { path, ledger };
+}
+export function readLatestReport(repoRoot) {
+    const dir = dirOf(repoRoot);
+    if (!existsSync(dir))
+        return null;
+    const files = readdirSync(dir).filter((n) => n.endsWith(".json")).sort();
+    if (files.length === 0)
+        return null;
+    const last = files[files.length - 1];
+    try {
+        return JSON.parse(readFileSync(join(dir, last), "utf8"));
+    }
+    catch {
+        return null;
+    }
+}
+export function listReports(repoRoot, limit = 30) {
+    const ledger = join(dirOf(repoRoot), "ledger.jsonl");
+    if (!existsSync(ledger))
+        return [];
+    const lines = readFileSync(ledger, "utf8").split("\n").filter(Boolean);
+    const out = [];
+    for (const l of lines.slice(-limit)) {
+        try {
+            out.push(JSON.parse(l));
+        }
+        catch { /* skip */ }
+    }
+    return out;
+}
+//# sourceMappingURL=storage.js.map

package/dist/mcp_fuzzer/storage.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"storage.js","sourceRoot":"","sources":["../../src/mcp_fuzzer/storage.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,SAAS,EAAE,aAAa,EAAE,YAAY,EAAE,WAAW,EAAE,UAAU,EAAE,cAAc,EAAE,MAAM,SAAS,CAAC;AAC1G,OAAO,EAAE,IAAI,EAAE,MAAM,WAAW,CAAC;AAGjC,SAAS,KAAK,CAAC,QAAgB;IAC7B,OAAO,IAAI,CAAC,QAAQ,EAAE,QAAQ,EAAE,YAAY,CAAC,CAAC;AAChD,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,QAAgB,EAAE,IAAgB;IAC5D,MAAM,GAAG,GAAG,KAAK,CAAC,QAAQ,CAAC,CAAC;IAC5B,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;QAAE,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC1D,MAAM,KAAK,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;IACpD,MAAM,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,EAAE,EAAE,GAAG,CAAC,IAAI,KAAK,OAAO,CAAC,CAAC;IAC9E,aAAa,CAAC,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE,IAAI,EAAE,CAAC,CAAC,GAAG,IAAI,CAAC,CAAC;IAC1D,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;IACzC,MAAM,IAAI,GAAG;QACX,GAAG,EAAE,IAAI,CAAC,GAAG;QACb,UAAU,EAAE,IAAI,CAAC,UAAU;QAC3B,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI;QACvB,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI;QACvB,IAAI,EAAE,IAAI,CAAC,OAAO,CAAC,IAAI;QACvB,YAAY,EAAE,IAAI,CAAC,MAAM,CAAC,YAAY;QACtC,QAAQ,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ;QAC9B,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,UAAU,EAAE,IAAI,CAAC,UAAU;QAC3B,IAAI,EAAE,IAAI;KACX,CAAC;IACF,cAAc,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,CAAC;IACpD,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,CAAC;AAC1B,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,QAAgB;IAC/C,MAAM,GAAG,GAAG,KAAK,CAAC,QAAQ,CAAC,CAAC;IAC5B,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC;QAAE,OAAO,IAAI,CAAC;IAClC,MAAM,KAAK,GAAG,WAAW,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;IACzE,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IACpC,MAAM,IAAI,GAAG,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,CAAC,CAAE,CAAC;IACtC,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,IAAI,CAAC,GAAG,EAAE,IAAI,CAAC,EAAE,MAAM,CAAC,CAAe,CAAC;IACzE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;AACH,CAAC;AAeD,MAAM,UAAU,WAAW,CAAC,QAAgB,EAAE,KAAK,GAAG,EAAE;IACtD,MAAM,MAAM,GAAG,IAAI,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE,cAAc,CAAC,CAAC;IACrD,IAAI,CAAC,UAAU,CAAC,MAAM,CAAC;QAAE,OAAO,EAAE,CAAC;IACnC,MAAM,KAAK,GAAG,YAAY,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACvE,MAAM,GAAG,GAAkB,EAAE,CAAC;IAC9B,KAAK,MAAM,CAAC,IAAI,KAAK,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;QACpC,IAAI,CAAC;YAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAgB,CAAC,CAAC;QAAC,CAAC;QAAC,MAAM,CAAC,CAAC,UAAU,CAAC,CAAC;IACtE,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC"}

package/dist/mcp_fuzzer/types.d.ts

@@ -0,0 +1,147 @@
+/**
+ * v2.24.0 — MCP fuzzer type contract.
+ *
+ * The world-class MCP fuzzer ships as a deterministic, vendor-agnostic
+ * engine that fires 108 attack vectors at a target MCP server and emits
+ * a tamper-evident HMAC-chained report card. Designed so external tools
+ * (mcp-scan, MCPSecBench, MCPTox) can be subsumed as importable vector
+ * packs.
+ *
+ * The Intelligent Second Brain interprets each verdict + correlates with
+ * known CVEs (CVE-2025-54136 MCPoison etc) and proposes mutations for
+ * the next 24/7 run.
+ */
+export type Severity = "info" | "low" | "medium" | "high" | "critical";
+export type Category = "handshake" | "schema" | "method" | "tool" | "resource" | "prompt" | "policy" | "concurrency" | "transport";
+export type Verdict = "pass" | "fail" | "warn" | "inconclusive";
+/** A single fuzz attack vector — pure data; the engine drives the JSON-RPC. */
+export interface AttackVector {
+    /** Stable id, used as report-card key + replay seed (vec-001 .. vec-108). */
+    id: string;
+    /** Short title (≤ 60 chars). */
+    title: string;
+    /** What the spec says SHOULD happen — citable in the report. */
+    spec: string;
+    category: Category;
+    severity: Severity;
+    /** CVE / public-incident references that this vector hardens against. */
+    cve?: string[];
+    /** JSON-RPC frame(s) to send. Use `__id` placeholders the engine fills. */
+    payload: PayloadStep[];
+    /** Per-vector timeout (ms). Defaults to 5000. */
+    timeoutMs?: number;
+    /** Detector: receives the responses for this vector + verdicts pass/fail. */
+    detector: Detector;
+}
+export interface PayloadStep {
+    /** Either a JSON-RPC object, or a raw frame string the engine sends verbatim. */
+    send: object | string;
+    /** If true, no response expected (notification). */
+    noResponse?: boolean;
+    /** Per-step timeout (ms). Defaults to vector timeoutMs. */
+    timeoutMs?: number;
+}
+export interface DetectorResult {
+    verdict: Verdict;
+    /** Human-readable single-line summary (≤ 200 chars). */
+    reason: string;
+    /** Optional structured detail surfaced in the report. */
+    detail?: Record<string, unknown>;
+}
+export type Detector = (responses: Array<JsonRpcReply | null>) => DetectorResult;
+export interface JsonRpcReply {
+    jsonrpc?: string;
+    id?: number | string | null;
+    result?: unknown;
+    error?: {
+        code: number;
+        message: string;
+        data?: unknown;
+    };
+    method?: string;
+    params?: unknown;
+}
+export interface VectorRunResult {
+    vectorId: string;
+    category: Category;
+    severity: Severity;
+    verdict: Verdict;
+    reason: string;
+    detail?: Record<string, unknown>;
+    dtMs: number;
+    /** Compact dump of responses for replay / debugging. */
+    responses: Array<JsonRpcReply | null>;
+}
+export interface ReportCard {
+    spec: {
+        name: "MCP-FUZZER";
+        version: string;
+    };
+    target: string;
+    startedAt: string;
+    finishedAt: string;
+    totalMs: number;
+    /** Per-vector outcomes. */
+    results: VectorRunResult[];
+    /** Aggregate stats. */
+    summary: {
+        total: number;
+        pass: number;
+        warn: number;
+        fail: number;
+        inconclusive: number;
+        bySeverity: Record<Severity, {
+            pass: number;
+            fail: number;
+        }>;
+        byCategory: Record<Category, {
+            pass: number;
+            fail: number;
+        }>;
+    };
+    /** Intelligent Second Brain commentary. */
+    wisdom: WisdomVerdict;
+    /** HMAC-chain root over the canonical report. */
+    hmac: string;
+    /** Sequence number in the local fuzzer chain. */
+    seq: number;
+    /** SHA-256 of the canonical body (without hmac field). */
+    bodyDigest: string;
+}
+export interface WisdomVerdict {
+    /** Single-line headline (≤ 100 chars). */
+    headline: string;
+    /** Traffic light. */
+    trafficLight: "green" | "yellow" | "red" | "black";
+    /** Top failing vectors mapped to remediation steps. */
+    remediations: Array<{
+        vectorId: string;
+        cve?: string[];
+        action: string;
+    }>;
+    /** Cross-vendor correlation: which CVE patterns this scan would have caught. */
+    cvePosture: Array<{
+        cve: string;
+        mitigated: boolean;
+        via: string;
+    }>;
+    /** Suggested mutations the daemon should try on the next run. */
+    mutationsForNextRun: Array<{
+        vectorId: string;
+        variant: string;
+        rationale: string;
+    }>;
+}
+export interface RunOptions {
+    /** Vector ids or category names to include. Empty = all 108. */
+    filter?: string[];
+    /** Override per-vector timeout. */
+    timeoutMs?: number;
+    /** Random seed for mutation engine. Defaults to current ms. */
+    seed?: number;
+    /** Stop after first failure (CI quick gate). */
+    failFast?: boolean;
+    /** Number of variants the mutation engine spins per failing vector. */
+    mutateCount?: number;
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/mcp_fuzzer/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/mcp_fuzzer/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG;AAEH,MAAM,MAAM,QAAQ,GAAG,MAAM,GAAG,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;AAEvE,MAAM,MAAM,QAAQ,GAChB,WAAW,GACX,QAAQ,GACR,QAAQ,GACR,MAAM,GACN,UAAU,GACV,QAAQ,GACR,QAAQ,GACR,aAAa,GACb,WAAW,CAAC;AAEhB,MAAM,MAAM,OAAO,GAAG,MAAM,GAAG,MAAM,GAAG,MAAM,GAAG,cAAc,CAAC;AAEhE,+EAA+E;AAC/E,MAAM,WAAW,YAAY;IAC3B,6EAA6E;IAC7E,EAAE,EAAE,MAAM,CAAC;IACX,gCAAgC;IAChC,KAAK,EAAE,MAAM,CAAC;IACd,gEAAgE;IAChE,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,EAAE,QAAQ,CAAC;IACnB,yEAAyE;IACzE,GAAG,CAAC,EAAE,MAAM,EAAE,CAAC;IACf,2EAA2E;IAC3E,OAAO,EAAE,WAAW,EAAE,CAAC;IACvB,iDAAiD;IACjD,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,6EAA6E;IAC7E,QAAQ,EAAE,QAAQ,CAAC;CACpB;AAED,MAAM,WAAW,WAAW;IAC1B,iFAAiF;IACjF,IAAI,EAAE,MAAM,GAAG,MAAM,CAAC;IACtB,oDAAoD;IACpD,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,2DAA2D;IAC3D,SAAS,CAAC,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,OAAO,CAAC;IACjB,wDAAwD;IACxD,MAAM,EAAE,MAAM,CAAC;IACf,yDAAyD;IACzD,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;CAClC;AAED,MAAM,MAAM,QAAQ,GAAG,CAAC,SAAS,EAAE,KAAK,CAAC,YAAY,GAAG,IAAI,CAAC,KAAK,cAAc,CAAC;AAEjF,MAAM,WAAW,YAAY;IAC3B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,EAAE,CAAC,EAAE,MAAM,GAAG,MAAM,GAAG,IAAI,CAAC;IAC5B,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,KAAK,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,OAAO,CAAA;KAAE,CAAC;IAC1D,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,OAAO,CAAC;CAClB;AAED,MAAM,WAAW,eAAe;IAC9B,QAAQ,EAAE,MAAM,CAAC;IACjB,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,EAAE,QAAQ,CAAC;IACnB,OAAO,EAAE,OAAO,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,IAAI,EAAE,MAAM,CAAC;IACb,wDAAwD;IACxD,SAAS,EAAE,KAAK,CAAC,YAAY,GAAG,IAAI,CAAC,CAAC;CACvC;AAED,MAAM,WAAW,UAAU;IACzB,IAAI,EAAE;QAAE,IAAI,EAAE,YAAY,CAAC;QAAC,OAAO,EAAE,MAAM,CAAA;KAAE,CAAC;IAC9C,MAAM,EAAE,MAAM,CAAC;IACf,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,OAAO,EAAE,MAAM,CAAC;IAChB,2BAA2B;IAC3B,OAAO,EAAE,eAAe,EAAE,CAAC;IAC3B,uBAAuB;IACvB,OAAO,EAAE;QACP,KAAK,EAAE,MAAM,CAAC;QACd,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,IAAI,EAAE,MAAM,CAAC;QACb,YAAY,EAAE,MAAM,CAAC;QACrB,UAAU,EAAE,MAAM,CAAC,QAAQ,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,IAAI,EAAE,MAAM,CAAA;SAAE,CAAC,CAAC;QAC7D,UAAU,EAAE,MAAM,CAAC,QAAQ,EAAE;YAAE,IAAI,EAAE,MAAM,CAAC;YAAC,IAAI,EAAE,MAAM,CAAA;SAAE,CAAC,CAAC;KAC9D,CAAC;IACF,2CAA2C;IAC3C,MAAM,EAAE,aAAa,CAAC;IACtB,iDAAiD;IACjD,IAAI,EAAE,MAAM,CAAC;IACb,iDAAiD;IACjD,GAAG,EAAE,MAAM,CAAC;IACZ,0DAA0D;IAC1D,UAAU,EAAE,MAAM,CAAC;CACpB;AAED,MAAM,WAAW,aAAa;IAC5B,0CAA0C;IAC1C,QAAQ,EAAE,MAAM,CAAC;IACjB,qBAAqB;IACrB,YAAY,EAAE,OAAO,GAAG,QAAQ,GAAG,KAAK,GAAG,OAAO,CAAC;IACnD,uDAAuD;IACvD,YAAY,EAAE,KAAK,CAAC;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,GAAG,CAAC,EAAE,MAAM,EAAE,CAAC;QAAC,MAAM,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IAC1E,gFAAgF;IAChF,UAAU,EAAE,KAAK,CAAC;QAAE,GAAG,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,OAAO,CAAC;QAAC,GAAG,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACpE,iEAAiE;IACjE,mBAAmB,EAAE,KAAK,CAAC;QAAE,QAAQ,EAAE,MAAM,CAAC;QAAC,OAAO,EAAE,MAAM,CAAC;QAAC,SAAS,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;CACtF;AAED,MAAM,WAAW,UAAU;IACzB,gEAAgE;IAChE,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;IAClB,mCAAmC;IACnC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,+DAA+D;IAC/D,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,gDAAgD;IAChD,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,uEAAuE;IACvE,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB"}

package/dist/mcp_fuzzer/types.js

@@ -0,0 +1,15 @@
+/**
+ * v2.24.0 — MCP fuzzer type contract.
+ *
+ * The world-class MCP fuzzer ships as a deterministic, vendor-agnostic
+ * engine that fires 108 attack vectors at a target MCP server and emits
+ * a tamper-evident HMAC-chained report card. Designed so external tools
+ * (mcp-scan, MCPSecBench, MCPTox) can be subsumed as importable vector
+ * packs.
+ *
+ * The Intelligent Second Brain interprets each verdict + correlates with
+ * known CVEs (CVE-2025-54136 MCPoison etc) and proposes mutations for
+ * the next 24/7 run.
+ */
+export {};
+//# sourceMappingURL=types.js.map

package/dist/mcp_fuzzer/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/mcp_fuzzer/types.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;GAYG"}

package/dist/mcp_fuzzer/vectors.d.ts

@@ -0,0 +1,25 @@
+/**
+ * v2.24.0 — 108 MCP attack vectors organized by category × severity.
+ *
+ *   handshake (12)    Protocol initialize / protocolVersion / capabilities
+ *   schema     (12)   JSON Schema attacks (depth / unicode / proto / required)
+ *   method     (12)   Unknown method / id type / batching / jsonrpc version
+ *   tool       (12)   tool-name confusion / case / unicode / aliases
+ *   resource   (12)   uri injection / path traversal / read non-existent
+ *   prompt     (12)   prompts/get / argument injection / missing fields
+ *   policy     (12)   honeypot / DLP-flag / consent / banner-parity
+ *   concurrency(12)   parallel init / id collision / racing tools/list
+ *   transport  (12)   malformed frames / chunking / very long line
+ *
+ * Total 108. Each vector ships a deterministic payload + detector.
+ *
+ * Coverage envelope (from research brief):
+ *   - subsumes mcp-scan + mcp-server-fuzzer surface
+ *   - tests under-covered classes (deep nesting / proto-pollution / batched id
+ *     collision / handshake timing / git-absence) that the existing tools miss
+ *   - maps to CVE-2025-54136 / -54135 / -53818 / -6515 / -49596 + Postmark BCC
+ */
+import type { AttackVector } from "./types.js";
+export declare const VECTORS_108: AttackVector[];
+export declare const VECTOR_COUNT: number;
+//# sourceMappingURL=vectors.d.ts.map

package/dist/mcp_fuzzer/vectors.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"vectors.d.ts","sourceRoot":"","sources":["../../src/mcp_fuzzer/vectors.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;GAoBG;AAEH,OAAO,KAAK,EAAE,YAAY,EAA0B,MAAM,YAAY,CAAC;AA8iCvE,eAAO,MAAM,WAAW,EAAE,YAAY,EAErC,CAAC;AAEF,eAAO,MAAM,YAAY,QAAqB,CAAC"}