@nahisaho/musubix-security 1.8.0 → 1.8.5

package/dist/integrations/ci-integration.js

@@ -0,0 +1,472 @@
+/**
+ * @fileoverview CI/CD Integration for Security Scanning
+ * @module @nahisaho/musubix-security/integrations/ci-integration
+ *
+ * Provides integration with GitHub Actions, GitLab CI, and other CI/CD platforms
+ * for automated security scanning in pipelines.
+ */
+// ============================================================================
+// CI Integration Class
+// ============================================================================
+/**
+ * CI/CD Integration for automated security scanning
+ *
+ * @example
+ * ```typescript
+ * const ci = createCIIntegration({
+ *   failOn: ['critical', 'high'],
+ *   annotations: true,
+ *   prComment: true,
+ * });
+ *
+ * const env = ci.detectEnvironment();
+ * const result = ci.processScanResult(scanResult);
+ *
+ * if (result.shouldFail) {
+ *   process.exit(result.exitCode);
+ * }
+ * ```
+ */
+export class CIIntegration {
+    options;
+    constructor(options = {}) {
+        this.options = {
+            failOn: options.failOn ?? ['critical', 'high'],
+            outputFormat: options.outputFormat ?? 'annotations',
+            annotations: options.annotations ?? true,
+            prComment: options.prComment ?? false,
+            uploadToCodeScanning: options.uploadToCodeScanning ?? false,
+            thresholds: options.thresholds ?? {},
+            enableCache: options.enableCache ?? true,
+            cacheKeyPrefix: options.cacheKeyPrefix ?? 'musubix-security',
+        };
+    }
+    /**
+     * Detect CI environment
+     */
+    detectEnvironment() {
+        const env = process.env;
+        // GitHub Actions
+        if (env.GITHUB_ACTIONS === 'true') {
+            return {
+                platform: 'github-actions',
+                isCI: true,
+                metadata: {
+                    repository: env.GITHUB_REPOSITORY,
+                    branch: env.GITHUB_REF_NAME ?? env.GITHUB_HEAD_REF,
+                    commitSha: env.GITHUB_SHA,
+                    pullRequest: env.GITHUB_EVENT_NAME === 'pull_request'
+                        ? env.GITHUB_REF?.split('/')[2]
+                        : undefined,
+                    buildId: env.GITHUB_RUN_ID,
+                    actor: env.GITHUB_ACTOR,
+                    event: env.GITHUB_EVENT_NAME,
+                    workflow: env.GITHUB_WORKFLOW,
+                    runnerOS: env.RUNNER_OS,
+                },
+            };
+        }
+        // GitLab CI
+        if (env.GITLAB_CI === 'true') {
+            return {
+                platform: 'gitlab-ci',
+                isCI: true,
+                metadata: {
+                    repository: env.CI_PROJECT_PATH,
+                    branch: env.CI_COMMIT_REF_NAME,
+                    commitSha: env.CI_COMMIT_SHA,
+                    pullRequest: env.CI_MERGE_REQUEST_IID,
+                    buildId: env.CI_PIPELINE_ID,
+                    actor: env.GITLAB_USER_LOGIN,
+                    event: env.CI_PIPELINE_SOURCE,
+                    workflow: env.CI_JOB_NAME,
+                },
+            };
+        }
+        // Azure Pipelines
+        if (env.TF_BUILD === 'True') {
+            return {
+                platform: 'azure-pipelines',
+                isCI: true,
+                metadata: {
+                    repository: env.BUILD_REPOSITORY_NAME,
+                    branch: env.BUILD_SOURCEBRANCHNAME,
+                    commitSha: env.BUILD_SOURCEVERSION,
+                    pullRequest: env.SYSTEM_PULLREQUEST_PULLREQUESTID,
+                    buildId: env.BUILD_BUILDID,
+                    actor: env.BUILD_REQUESTEDFOR,
+                    workflow: env.BUILD_DEFINITIONNAME,
+                },
+            };
+        }
+        // Jenkins
+        if (env.JENKINS_URL) {
+            return {
+                platform: 'jenkins',
+                isCI: true,
+                metadata: {
+                    branch: env.GIT_BRANCH ?? env.BRANCH_NAME,
+                    commitSha: env.GIT_COMMIT,
+                    buildId: env.BUILD_NUMBER,
+                    workflow: env.JOB_NAME,
+                },
+            };
+        }
+        // CircleCI
+        if (env.CIRCLECI === 'true') {
+            return {
+                platform: 'circleci',
+                isCI: true,
+                metadata: {
+                    repository: env.CIRCLE_PROJECT_REPONAME,
+                    branch: env.CIRCLE_BRANCH,
+                    commitSha: env.CIRCLE_SHA1,
+                    pullRequest: env.CIRCLE_PULL_REQUEST?.split('/').pop(),
+                    buildId: env.CIRCLE_BUILD_NUM,
+                    actor: env.CIRCLE_USERNAME,
+                    workflow: env.CIRCLE_WORKFLOW_ID,
+                },
+            };
+        }
+        // Generic CI detection
+        const isCI = env.CI === 'true' || env.CONTINUOUS_INTEGRATION === 'true';
+        return {
+            platform: 'generic',
+            isCI,
+            metadata: {},
+        };
+    }
+    /**
+     * Process scan result for CI output
+     */
+    processScanResult(scanResult) {
+        const environment = this.detectEnvironment();
+        const annotations = this.generateAnnotations(scanResult);
+        const summary = this.generateSummary(scanResult);
+        const { shouldFail, failureReasons } = this.checkThresholds(scanResult, summary);
+        const formattedOutput = this.formatOutput(scanResult, environment, summary);
+        const exitCode = shouldFail ? 1 : 0;
+        return {
+            scanResult,
+            environment,
+            shouldFail,
+            failureReasons,
+            annotations,
+            formattedOutput,
+            exitCode,
+            summary,
+        };
+    }
+    /**
+     * Generate GitHub-style annotations
+     */
+    generateAnnotations(scanResult) {
+        if (!this.options.annotations) {
+            return [];
+        }
+        return scanResult.vulnerabilities.map((vuln) => ({
+            level: this.severityToAnnotationLevel(vuln.severity),
+            file: vuln.location.file,
+            startLine: vuln.location.startLine,
+            endLine: vuln.location.endLine ?? vuln.location.startLine,
+            title: `${vuln.severity.toUpperCase()}: ${vuln.ruleId}`,
+            message: `${vuln.description}\n\nRule: ${vuln.ruleId}\nOWASP: ${vuln.owasp?.join(', ') ?? 'N/A'}\nCWE: ${vuln.cwes?.join(', ') ?? 'N/A'}`,
+        }));
+    }
+    /**
+     * Generate summary for display
+     */
+    generateSummary(scanResult) {
+        const bySeverity = scanResult.summary;
+        const total = bySeverity.critical + bySeverity.high + bySeverity.medium + bySeverity.low + bySeverity.info;
+        // Calculate security score (100 - weighted penalty)
+        const penalty = bySeverity.critical * 25 +
+            bySeverity.high * 10 +
+            bySeverity.medium * 5 +
+            bySeverity.low * 2 +
+            bySeverity.info * 0.5;
+        const securityScore = Math.max(0, Math.min(100, 100 - penalty));
+        const passed = !this.shouldFailOnSeverity(scanResult) && !this.shouldFailOnThresholds(scanResult, { securityScore });
+        const statusEmoji = passed ? '✅' : '❌';
+        const shortDescription = passed
+            ? `${total} issues found (acceptable)`
+            : `${total} issues found (policy violation)`;
+        return {
+            total,
+            bySeverity: {
+                critical: bySeverity.critical,
+                high: bySeverity.high,
+                medium: bySeverity.medium,
+                low: bySeverity.low,
+                info: bySeverity.info,
+            },
+            securityScore: Math.round(securityScore),
+            passed,
+            statusEmoji,
+            shortDescription,
+        };
+    }
+    /**
+     * Check if build should fail based on thresholds
+     */
+    checkThresholds(scanResult, summary) {
+        const failureReasons = [];
+        // Check severity-based failure
+        if (this.shouldFailOnSeverity(scanResult)) {
+            const violations = this.options.failOn
+                .filter(severity => scanResult.summary[severity] > 0)
+                .map(severity => `${scanResult.summary[severity]} ${severity} vulnerability(s)`);
+            failureReasons.push(...violations);
+        }
+        // Check threshold-based failure
+        const thresholds = this.options.thresholds;
+        if (thresholds.maxCritical !== undefined && summary.bySeverity.critical > thresholds.maxCritical) {
+            failureReasons.push(`Critical vulnerabilities (${summary.bySeverity.critical}) exceed threshold (${thresholds.maxCritical})`);
+        }
+        if (thresholds.maxHigh !== undefined && summary.bySeverity.high > thresholds.maxHigh) {
+            failureReasons.push(`High vulnerabilities (${summary.bySeverity.high}) exceed threshold (${thresholds.maxHigh})`);
+        }
+        if (thresholds.maxMedium !== undefined && summary.bySeverity.medium > thresholds.maxMedium) {
+            failureReasons.push(`Medium vulnerabilities (${summary.bySeverity.medium}) exceed threshold (${thresholds.maxMedium})`);
+        }
+        if (thresholds.maxTotal !== undefined && summary.total > thresholds.maxTotal) {
+            failureReasons.push(`Total vulnerabilities (${summary.total}) exceed threshold (${thresholds.maxTotal})`);
+        }
+        if (thresholds.minSecurityScore !== undefined && summary.securityScore < thresholds.minSecurityScore) {
+            failureReasons.push(`Security score (${summary.securityScore}) below threshold (${thresholds.minSecurityScore})`);
+        }
+        return {
+            shouldFail: failureReasons.length > 0,
+            failureReasons,
+        };
+    }
+    /**
+     * Format output for CI logs
+     */
+    formatOutput(scanResult, environment, summary) {
+        const lines = [];
+        // Header
+        lines.push('');
+        lines.push('═══════════════════════════════════════════════════════════════');
+        lines.push('  MUSUBIX Security Scan Results');
+        lines.push('═══════════════════════════════════════════════════════════════');
+        lines.push('');
+        // Environment info
+        if (environment.isCI) {
+            lines.push(`Platform: ${environment.platform}`);
+            if (environment.metadata.repository)
+                lines.push(`Repository: ${environment.metadata.repository}`);
+            if (environment.metadata.branch)
+                lines.push(`Branch: ${environment.metadata.branch}`);
+            if (environment.metadata.commitSha)
+                lines.push(`Commit: ${environment.metadata.commitSha.substring(0, 7)}`);
+            lines.push('');
+        }
+        // Summary
+        lines.push(`${summary.statusEmoji} Status: ${summary.passed ? 'PASSED' : 'FAILED'}`);
+        lines.push(`📊 Security Score: ${summary.securityScore}/100`);
+        lines.push('');
+        lines.push('Vulnerability Summary:');
+        lines.push(`  🔴 Critical: ${summary.bySeverity.critical}`);
+        lines.push(`  🟠 High:     ${summary.bySeverity.high}`);
+        lines.push(`  🟡 Medium:   ${summary.bySeverity.medium}`);
+        lines.push(`  🔵 Low:      ${summary.bySeverity.low}`);
+        lines.push(`  ⚪ Info:     ${summary.bySeverity.info}`);
+        lines.push(`  ─────────────`);
+        lines.push(`  Total:      ${summary.total}`);
+        lines.push('');
+        // GitHub Actions specific: output annotations
+        if (environment.platform === 'github-actions' && this.options.annotations) {
+            for (const vuln of scanResult.vulnerabilities) {
+                const level = this.severityToAnnotationLevel(vuln.severity);
+                lines.push(`::${level} file=${vuln.location.file},line=${vuln.location.startLine},title=${vuln.ruleId}::${vuln.description}`);
+            }
+        }
+        lines.push('═══════════════════════════════════════════════════════════════');
+        lines.push('');
+        return lines.join('\n');
+    }
+    /**
+     * Generate workflow file content
+     */
+    generateWorkflowFile(platform) {
+        switch (platform) {
+            case 'github-actions':
+                return this.generateGitHubActionsWorkflow();
+            case 'gitlab-ci':
+                return this.generateGitLabCIConfig();
+            case 'azure-pipelines':
+                return this.generateAzurePipelinesConfig();
+            default:
+                return this.generateGenericScript();
+        }
+    }
+    /**
+     * Generate GitHub Actions workflow
+     */
+    generateGitHubActionsWorkflow() {
+        return `name: Security Scan
+
+on:
+  push:
+    branches: [main, develop]
+  pull_request:
+    branches: [main]
+
+jobs:
+  security-scan:
+    runs-on: ubuntu-latest
+    
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Setup Node.js
+        uses: actions/setup-node@v4
+        with:
+          node-version: '20'
+          cache: 'npm'
+      
+      - name: Install dependencies
+        run: npm ci
+      
+      - name: Run MUSUBIX Security Scan
+        run: npx @nahisaho/musubix-security scan ./src --ci --format sarif --output results.sarif
+        continue-on-error: true
+      
+      - name: Upload SARIF to GitHub
+        uses: github/codeql-action/upload-sarif@v3
+        with:
+          sarif_file: results.sarif
+      
+      - name: Check scan results
+        run: npx @nahisaho/musubix-security check --fail-on critical,high
+`;
+    }
+    /**
+     * Generate GitLab CI config
+     */
+    generateGitLabCIConfig() {
+        return `security-scan:
+  stage: test
+  image: node:20
+  script:
+    - npm ci
+    - npx @nahisaho/musubix-security scan ./src --ci --format json --output gl-sast-report.json
+  artifacts:
+    reports:
+      sast: gl-sast-report.json
+    paths:
+      - gl-sast-report.json
+  rules:
+    - if: $CI_MERGE_REQUEST_IID
+    - if: $CI_COMMIT_BRANCH == $CI_DEFAULT_BRANCH
+`;
+    }
+    /**
+     * Generate Azure Pipelines config
+     */
+    generateAzurePipelinesConfig() {
+        return `trigger:
+  - main
+  - develop
+
+pool:
+  vmImage: 'ubuntu-latest'
+
+steps:
+  - task: NodeTool@0
+    inputs:
+      versionSpec: '20.x'
+    displayName: 'Install Node.js'
+
+  - script: npm ci
+    displayName: 'Install dependencies'
+
+  - script: npx @nahisaho/musubix-security scan ./src --ci --format sarif --output $(Build.ArtifactStagingDirectory)/results.sarif
+    displayName: 'Run Security Scan'
+    continueOnError: true
+
+  - task: PublishBuildArtifacts@1
+    inputs:
+      pathToPublish: '$(Build.ArtifactStagingDirectory)/results.sarif'
+      artifactName: 'SecurityScanResults'
+`;
+    }
+    /**
+     * Generate generic shell script
+     */
+    generateGenericScript() {
+        return `#!/bin/bash
+set -e
+
+# Install dependencies
+npm ci
+
+# Run security scan
+npx @nahisaho/musubix-security scan ./src --ci --format json --output security-report.json
+
+# Check results and fail if critical/high vulnerabilities found
+npx @nahisaho/musubix-security check --fail-on critical,high
+
+echo "Security scan completed successfully"
+`;
+    }
+    /**
+     * Generate cache key for CI
+     */
+    generateCacheKey(files) {
+        const hash = files.sort().join('|');
+        return `${this.options.cacheKeyPrefix}-${Buffer.from(hash).toString('base64').substring(0, 16)}`;
+    }
+    // ============================================================================
+    // Private helpers
+    // ============================================================================
+    severityToAnnotationLevel(severity) {
+        switch (severity) {
+            case 'critical':
+            case 'high':
+                return 'error';
+            case 'medium':
+                return 'warning';
+            default:
+                return 'notice';
+        }
+    }
+    shouldFailOnSeverity(scanResult) {
+        return this.options.failOn.some(severity => scanResult.summary[severity] > 0);
+    }
+    shouldFailOnThresholds(scanResult, extra) {
+        const t = this.options.thresholds;
+        const s = scanResult.summary;
+        const total = s.critical + s.high + s.medium + s.low + s.info;
+        return ((t.maxCritical !== undefined && s.critical > t.maxCritical) ||
+            (t.maxHigh !== undefined && s.high > t.maxHigh) ||
+            (t.maxMedium !== undefined && s.medium > t.maxMedium) ||
+            (t.maxTotal !== undefined && total > t.maxTotal) ||
+            (t.minSecurityScore !== undefined && extra.securityScore < t.minSecurityScore));
+    }
+}
+// ============================================================================
+// Factory Functions
+// ============================================================================
+/**
+ * Create a CI integration instance
+ */
+export function createCIIntegration(options) {
+    return new CIIntegration(options);
+}
+/**
+ * Quick check if running in CI environment
+ */
+export function isCI() {
+    const ci = createCIIntegration();
+    return ci.detectEnvironment().isCI;
+}
+/**
+ * Detect CI platform
+ */
+export function detectCIPlatform() {
+    const ci = createCIIntegration();
+    return ci.detectEnvironment().platform;
+}
+//# sourceMappingURL=ci-integration.js.map

package/dist/integrations/ci-integration.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"ci-integration.js","sourceRoot":"","sources":["../../src/integrations/ci-integration.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAiJH,+EAA+E;AAC/E,uBAAuB;AACvB,+EAA+E;AAE/E;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,OAAO,aAAa;IAChB,OAAO,CAAiC;IAEhD,YAAY,UAAgC,EAAE;QAC5C,IAAI,CAAC,OAAO,GAAG;YACb,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,CAAC,UAAU,EAAE,MAAM,CAAC;YAC9C,YAAY,EAAE,OAAO,CAAC,YAAY,IAAI,aAAa;YACnD,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,IAAI;YACxC,SAAS,EAAE,OAAO,CAAC,SAAS,IAAI,KAAK;YACrC,oBAAoB,EAAE,OAAO,CAAC,oBAAoB,IAAI,KAAK;YAC3D,UAAU,EAAE,OAAO,CAAC,UAAU,IAAI,EAAE;YACpC,WAAW,EAAE,OAAO,CAAC,WAAW,IAAI,IAAI;YACxC,cAAc,EAAE,OAAO,CAAC,cAAc,IAAI,kBAAkB;SAC7D,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,iBAAiB;QACf,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC;QAExB,iBAAiB;QACjB,IAAI,GAAG,CAAC,cAAc,KAAK,MAAM,EAAE,CAAC;YAClC,OAAO;gBACL,QAAQ,EAAE,gBAAgB;gBAC1B,IAAI,EAAE,IAAI;gBACV,QAAQ,EAAE;oBACR,UAAU,EAAE,GAAG,CAAC,iBAAiB;oBACjC,MAAM,EAAE,GAAG,CAAC,eAAe,IAAI,GAAG,CAAC,eAAe;oBAClD,SAAS,EAAE,GAAG,CAAC,UAAU;oBACzB,WAAW,EAAE,GAAG,CAAC,iBAAiB,KAAK,cAAc;wBACnD,CAAC,CAAC,GAAG,CAAC,UAAU,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;wBAC/B,CAAC,CAAC,SAAS;oBACb,OAAO,EAAE,GAAG,CAAC,aAAa;oBAC1B,KAAK,EAAE,GAAG,CAAC,YAAY;oBACvB,KAAK,EAAE,GAAG,CAAC,iBAAiB;oBAC5B,QAAQ,EAAE,GAAG,CAAC,eAAe;oBAC7B,QAAQ,EAAE,GAAG,CAAC,SAAS;iBACxB;aACF,CAAC;QACJ,CAAC;QAED,YAAY;QACZ,IAAI,GAAG,CAAC,SAAS,KAAK,MAAM,EAAE,CAAC;YAC7B,OAAO;gBACL,QAAQ,EAAE,WAAW;gBACrB,IAAI,EAAE,IAAI;gBACV,QAAQ,EAAE;oBACR,UAAU,EAAE,GAAG,CAAC,eAAe;oBAC/B,MAAM,EAAE,GAAG,CAAC,kBAAkB;oBAC9B,SAAS,EAAE,GAAG,CAAC,aAAa;oBAC5B,WAAW,EAAE,GAAG,CAAC,oBAAoB;oBACrC,OAAO,EAAE,GAAG,CAAC,cAAc;oBAC3B,KAAK,EAAE,GAAG,CAAC,iBAAiB;oBAC5B,KAAK,EAAE,GAAG,CAAC,kBAAkB;oBAC7B,QAAQ,EAAE,GAAG,CAAC,WAAW;iBAC1B;aACF,CAAC;QACJ,CAAC;QAED,kBAAkB;QAClB,IAAI,GAAG,CAAC,QAAQ,KAAK,MAAM,EAAE,CAAC;YAC5B,OAAO;gBACL,QAAQ,EAAE,iBAAiB;gBAC3B,IAAI,EAAE,IAAI;gBACV,QAAQ,EAAE;oBACR,UAAU,EAAE,GAAG,CAAC,qBAAqB;oBACrC,MAAM,EAAE,GAAG,CAAC,sBAAsB;oBAClC,SAAS,EAAE,GAAG,CAAC,mBAAmB;oBAClC,WAAW,EAAE,GAAG,CAAC,gCAAgC;oBACjD,OAAO,EAAE,GAAG,CAAC,aAAa;oBAC1B,KAAK,EAAE,GAAG,CAAC,kBAAkB;oBAC7B,QAAQ,EAAE,GAAG,CAAC,oBAAoB;iBACnC;aACF,CAAC;QACJ,CAAC;QAED,UAAU;QACV,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC;YACpB,OAAO;gBACL,QAAQ,EAAE,SAAS;gBACnB,IAAI,EAAE,IAAI;gBACV,QAAQ,EAAE;oBACR,MAAM,EAAE,GAAG,CAAC,UAAU,IAAI,GAAG,CAAC,WAAW;oBACzC,SAAS,EAAE,GAAG,CAAC,UAAU;oBACzB,OAAO,EAAE,GAAG,CAAC,YAAY;oBACzB,QAAQ,EAAE,GAAG,CAAC,QAAQ;iBACvB;aACF,CAAC;QACJ,CAAC;QAED,WAAW;QACX,IAAI,GAAG,CAAC,QAAQ,KAAK,MAAM,EAAE,CAAC;YAC5B,OAAO;gBACL,QAAQ,EAAE,UAAU;gBACpB,IAAI,EAAE,IAAI;gBACV,QAAQ,EAAE;oBACR,UAAU,EAAE,GAAG,CAAC,uBAAuB;oBACvC,MAAM,EAAE,GAAG,CAAC,aAAa;oBACzB,SAAS,EAAE,GAAG,CAAC,WAAW;oBAC1B,WAAW,EAAE,GAAG,CAAC,mBAAmB,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE;oBACtD,OAAO,EAAE,GAAG,CAAC,gBAAgB;oBAC7B,KAAK,EAAE,GAAG,CAAC,eAAe;oBAC1B,QAAQ,EAAE,GAAG,CAAC,kBAAkB;iBACjC;aACF,CAAC;QACJ,CAAC;QAED,uBAAuB;QACvB,MAAM,IAAI,GAAG,GAAG,CAAC,EAAE,KAAK,MAAM,IAAI,GAAG,CAAC,sBAAsB,KAAK,MAAM,CAAC;QAExE,OAAO;YACL,QAAQ,EAAE,SAAS;YACnB,IAAI;YACJ,QAAQ,EAAE,EAAE;SACb,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,UAAsB;QACtC,MAAM,WAAW,GAAG,IAAI,CAAC,iBAAiB,EAAE,CAAC;QAC7C,MAAM,WAAW,GAAG,IAAI,CAAC,mBAAmB,CAAC,UAAU,CAAC,CAAC;QACzD,MAAM,OAAO,GAAG,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC;QACjD,MAAM,EAAE,UAAU,EAAE,cAAc,EAAE,GAAG,IAAI,CAAC,eAAe,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;QACjF,MAAM,eAAe,GAAG,IAAI,CAAC,YAAY,CAAC,UAAU,EAAE,WAAW,EAAE,OAAO,CAAC,CAAC;QAC5E,MAAM,QAAQ,GAAG,UAAU,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAEpC,OAAO;YACL,UAAU;YACV,WAAW;YACX,UAAU;YACV,cAAc;YACd,WAAW;YACX,eAAe;YACf,QAAQ;YACR,OAAO;SACR,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,mBAAmB,CAAC,UAAsB;QACxC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;YAC9B,OAAO,EAAE,CAAC;QACZ,CAAC;QAED,OAAO,UAAU,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;YAC/C,KAAK,EAAE,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,QAAQ,CAAC;YACpD,IAAI,EAAE,IAAI,CAAC,QAAQ,CAAC,IAAI;YACxB,SAAS,EAAE,IAAI,CAAC,QAAQ,CAAC,SAAS;YAClC,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,OAAO,IAAI,IAAI,CAAC,QAAQ,CAAC,SAAS;YACzD,KAAK,EAAE,GAAG,IAAI,CAAC,QAAQ,CAAC,WAAW,EAAE,KAAK,IAAI,CAAC,MAAM,EAAE;YACvD,OAAO,EAAE,GAAG,IAAI,CAAC,WAAW,aAAa,IAAI,CAAC,MAAM,YAAY,IAAI,CAAC,KAAK,EAAE,IAAI,CAAC,IAAI,CAAC,IAAI,KAAK,UAAU,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,CAAC,IAAI,KAAK,EAAE;SAC1I,CAAC,CAAC,CAAC;IACN,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,UAAsB;QACpC,MAAM,UAAU,GAAG,UAAU,CAAC,OAAO,CAAC;QACtC,MAAM,KAAK,GAAG,UAAU,CAAC,QAAQ,GAAG,UAAU,CAAC,IAAI,GAAG,UAAU,CAAC,MAAM,GAAG,UAAU,CAAC,GAAG,GAAG,UAAU,CAAC,IAAI,CAAC;QAE3G,oDAAoD;QACpD,MAAM,OAAO,GACX,UAAU,CAAC,QAAQ,GAAG,EAAE;YACxB,UAAU,CAAC,IAAI,GAAG,EAAE;YACpB,UAAU,CAAC,MAAM,GAAG,CAAC;YACrB,UAAU,CAAC,GAAG,GAAG,CAAC;YAClB,UAAU,CAAC,IAAI,GAAG,GAAG,CAAC;QACxB,MAAM,aAAa,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC;QAEhE,MAAM,MAAM,GAAG,CAAC,IAAI,CAAC,oBAAoB,CAAC,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,sBAAsB,CAAC,UAAU,EAAE,EAAE,aAAa,EAAE,CAAC,CAAC;QACrH,MAAM,WAAW,GAAG,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,GAAG,CAAC;QACvC,MAAM,gBAAgB,GAAG,MAAM;YAC7B,CAAC,CAAC,GAAG,KAAK,4BAA4B;YACtC,CAAC,CAAC,GAAG,KAAK,kCAAkC,CAAC;QAE/C,OAAO;YACL,KAAK;YACL,UAAU,EAAE;gBACV,QAAQ,EAAE,UAAU,CAAC,QAAQ;gBAC7B,IAAI,EAAE,UAAU,CAAC,IAAI;gBACrB,MAAM,EAAE,UAAU,CAAC,MAAM;gBACzB,GAAG,EAAE,UAAU,CAAC,GAAG;gBACnB,IAAI,EAAE,UAAU,CAAC,IAAI;aACtB;YACD,aAAa,EAAE,IAAI,CAAC,KAAK,CAAC,aAAa,CAAC;YACxC,MAAM;YACN,WAAW;YACX,gBAAgB;SACjB,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,UAAsB,EAAE,OAAkB;QACxD,MAAM,cAAc,GAAa,EAAE,CAAC;QAEpC,+BAA+B;QAC/B,IAAI,IAAI,CAAC,oBAAoB,CAAC,UAAU,CAAC,EAAE,CAAC;YAC1C,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,MAAM;iBACnC,MAAM,CAAC,QAAQ,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC;iBACpD,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC,GAAG,UAAU,CAAC,OAAO,CAAC,QAAQ,CAAC,IAAI,QAAQ,mBAAmB,CAAC,CAAC;YACnF,cAAc,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,CAAC;QACrC,CAAC;QAED,gCAAgC;QAChC,MAAM,UAAU,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC;QAC3C,IAAI,UAAU,CAAC,WAAW,KAAK,SAAS,IAAI,OAAO,CAAC,UAAU,CAAC,QAAQ,GAAG,UAAU,CAAC,WAAW,EAAE,CAAC;YACjG,cAAc,CAAC,IAAI,CAAC,6BAA6B,OAAO,CAAC,UAAU,CAAC,QAAQ,uBAAuB,UAAU,CAAC,WAAW,GAAG,CAAC,CAAC;QAChI,CAAC;QACD,IAAI,UAAU,CAAC,OAAO,KAAK,SAAS,IAAI,OAAO,CAAC,UAAU,CAAC,IAAI,GAAG,UAAU,CAAC,OAAO,EAAE,CAAC;YACrF,cAAc,CAAC,IAAI,CAAC,yBAAyB,OAAO,CAAC,UAAU,CAAC,IAAI,uBAAuB,UAAU,CAAC,OAAO,GAAG,CAAC,CAAC;QACpH,CAAC;QACD,IAAI,UAAU,CAAC,SAAS,KAAK,SAAS,IAAI,OAAO,CAAC,UAAU,CAAC,MAAM,GAAG,UAAU,CAAC,SAAS,EAAE,CAAC;YAC3F,cAAc,CAAC,IAAI,CAAC,2BAA2B,OAAO,CAAC,UAAU,CAAC,MAAM,uBAAuB,UAAU,CAAC,SAAS,GAAG,CAAC,CAAC;QAC1H,CAAC;QACD,IAAI,UAAU,CAAC,QAAQ,KAAK,SAAS,IAAI,OAAO,CAAC,KAAK,GAAG,UAAU,CAAC,QAAQ,EAAE,CAAC;YAC7E,cAAc,CAAC,IAAI,CAAC,0BAA0B,OAAO,CAAC,KAAK,uBAAuB,UAAU,CAAC,QAAQ,GAAG,CAAC,CAAC;QAC5G,CAAC;QACD,IAAI,UAAU,CAAC,gBAAgB,KAAK,SAAS,IAAI,OAAO,CAAC,aAAa,GAAG,UAAU,CAAC,gBAAgB,EAAE,CAAC;YACrG,cAAc,CAAC,IAAI,CAAC,mBAAmB,OAAO,CAAC,aAAa,sBAAsB,UAAU,CAAC,gBAAgB,GAAG,CAAC,CAAC;QACpH,CAAC;QAED,OAAO;YACL,UAAU,EAAE,cAAc,CAAC,MAAM,GAAG,CAAC;YACrC,cAAc;SACf,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,YAAY,CAAC,UAAsB,EAAE,WAA0B,EAAE,OAAkB;QACjF,MAAM,KAAK,GAAa,EAAE,CAAC;QAE3B,SAAS;QACT,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,iEAAiE,CAAC,CAAC;QAC9E,KAAK,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;QAC9C,KAAK,CAAC,IAAI,CAAC,iEAAiE,CAAC,CAAC;QAC9E,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEf,mBAAmB;QACnB,IAAI,WAAW,CAAC,IAAI,EAAE,CAAC;YACrB,KAAK,CAAC,IAAI,CAAC,aAAa,WAAW,CAAC,QAAQ,EAAE,CAAC,CAAC;YAChD,IAAI,WAAW,CAAC,QAAQ,CAAC,UAAU;gBAAE,KAAK,CAAC,IAAI,CAAC,eAAe,WAAW,CAAC,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;YAClG,IAAI,WAAW,CAAC,QAAQ,CAAC,MAAM;gBAAE,KAAK,CAAC,IAAI,CAAC,WAAW,WAAW,CAAC,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;YACtF,IAAI,WAAW,CAAC,QAAQ,CAAC,SAAS;gBAAE,KAAK,CAAC,IAAI,CAAC,WAAW,WAAW,CAAC,QAAQ,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC,CAAC;YAC5G,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACjB,CAAC;QAED,UAAU;QACV,KAAK,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,WAAW,YAAY,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE,CAAC,CAAC;QACrF,KAAK,CAAC,IAAI,CAAC,sBAAsB,OAAO,CAAC,aAAa,MAAM,CAAC,CAAC;QAC9D,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;QACrC,KAAK,CAAC,IAAI,CAAC,kBAAkB,OAAO,CAAC,UAAU,CAAC,QAAQ,EAAE,CAAC,CAAC;QAC5D,KAAK,CAAC,IAAI,CAAC,kBAAkB,OAAO,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC,CAAC;QACxD,KAAK,CAAC,IAAI,CAAC,kBAAkB,OAAO,CAAC,UAAU,CAAC,MAAM,EAAE,CAAC,CAAC;QAC1D,KAAK,CAAC,IAAI,CAAC,kBAAkB,OAAO,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC,CAAC;QACvD,KAAK,CAAC,IAAI,CAAC,iBAAiB,OAAO,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC,CAAC;QACvD,KAAK,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAC9B,KAAK,CAAC,IAAI,CAAC,iBAAiB,OAAO,CAAC,KAAK,EAAE,CAAC,CAAC;QAC7C,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEf,8CAA8C;QAC9C,IAAI,WAAW,CAAC,QAAQ,KAAK,gBAAgB,IAAI,IAAI,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC;YAC1E,KAAK,MAAM,IAAI,IAAI,UAAU,CAAC,eAAe,EAAE,CAAC;gBAC9C,MAAM,KAAK,GAAG,IAAI,CAAC,yBAAyB,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;gBAC5D,KAAK,CAAC,IAAI,CAAC,KAAK,KAAK,SAAS,IAAI,CAAC,QAAQ,CAAC,IAAI,SAAS,IAAI,CAAC,QAAQ,CAAC,SAAS,UAAU,IAAI,CAAC,MAAM,KAAK,IAAI,CAAC,WAAW,EAAE,CAAC,CAAC;YAChI,CAAC;QACH,CAAC;QAED,KAAK,CAAC,IAAI,CAAC,iEAAiE,CAAC,CAAC;QAC9E,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAEf,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;IAED;;OAEG;IACH,oBAAoB,CAAC,QAAoB;QACvC,QAAQ,QAAQ,EAAE,CAAC;YACjB,KAAK,gBAAgB;gBACnB,OAAO,IAAI,CAAC,6BAA6B,EAAE,CAAC;YAC9C,KAAK,WAAW;gBACd,OAAO,IAAI,CAAC,sBAAsB,EAAE,CAAC;YACvC,KAAK,iBAAiB;gBACpB,OAAO,IAAI,CAAC,4BAA4B,EAAE,CAAC;YAC7C;gBACE,OAAO,IAAI,CAAC,qBAAqB,EAAE,CAAC;QACxC,CAAC;IACH,CAAC;IAED;;OAEG;IACK,6BAA6B;QACnC,OAAO;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;CAmCV,CAAC;IACA,CAAC;IAED;;OAEG;IACK,sBAAsB;QAC5B,OAAO;;;;;;;;;;;;;;CAcV,CAAC;IACA,CAAC;IAED;;OAEG;IACK,4BAA4B;QAClC,OAAO;;;;;;;;;;;;;;;;;;;;;;;;CAwBV,CAAC;IACA,CAAC;IAED;;OAEG;IACK,qBAAqB;QAC3B,OAAO;;;;;;;;;;;;;CAaV,CAAC;IACA,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,KAAe;QAC9B,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACpC,OAAO,GAAG,IAAI,CAAC,OAAO,CAAC,cAAc,IAAI,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC;IACnG,CAAC;IAED,+EAA+E;IAC/E,kBAAkB;IAClB,+EAA+E;IAEvE,yBAAyB,CAAC,QAAkB;QAClD,QAAQ,QAAQ,EAAE,CAAC;YACjB,KAAK,UAAU,CAAC;YAChB,KAAK,MAAM;gBACT,OAAO,OAAO,CAAC;YACjB,KAAK,QAAQ;gBACX,OAAO,SAAS,CAAC;YACnB;gBACE,OAAO,QAAQ,CAAC;QACpB,CAAC;IACH,CAAC;IAEO,oBAAoB,CAAC,UAAsB;QACjD,OAAO,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC,UAAU,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;IAChF,CAAC;IAEO,sBAAsB,CAAC,UAAsB,EAAE,KAAgC;QACrF,MAAM,CAAC,GAAG,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC;QAClC,MAAM,CAAC,GAAG,UAAU,CAAC,OAAO,CAAC;QAC7B,MAAM,KAAK,GAAG,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,GAAG,GAAG,CAAC,CAAC,IAAI,CAAC;QAE9D,OAAO,CACL,CAAC,CAAC,CAAC,WAAW,KAAK,SAAS,IAAI,CAAC,CAAC,QAAQ,GAAG,CAAC,CAAC,WAAW,CAAC;YAC3D,CAAC,CAAC,CAAC,OAAO,KAAK,SAAS,IAAI,CAAC,CAAC,IAAI,GAAG,CAAC,CAAC,OAAO,CAAC;YAC/C,CAAC,CAAC,CAAC,SAAS,KAAK,SAAS,IAAI,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,SAAS,CAAC;YACrD,CAAC,CAAC,CAAC,QAAQ,KAAK,SAAS,IAAI,KAAK,GAAG,CAAC,CAAC,QAAQ,CAAC;YAChD,CAAC,CAAC,CAAC,gBAAgB,KAAK,SAAS,IAAI,KAAK,CAAC,aAAa,GAAG,CAAC,CAAC,gBAAgB,CAAC,CAC/E,CAAC;IACJ,CAAC;CACF;AAED,+EAA+E;AAC/E,oBAAoB;AACpB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,mBAAmB,CAAC,OAA8B;IAChE,OAAO,IAAI,aAAa,CAAC,OAAO,CAAC,CAAC;AACpC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,IAAI;IAClB,MAAM,EAAE,GAAG,mBAAmB,EAAE,CAAC;IACjC,OAAO,EAAE,CAAC,iBAAiB,EAAE,CAAC,IAAI,CAAC;AACrC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB;IAC9B,MAAM,EAAE,GAAG,mBAAmB,EAAE,CAAC;IACjC,OAAO,EAAE,CAAC,iBAAiB,EAAE,CAAC,QAAQ,CAAC;AACzC,CAAC"}

package/dist/integrations/git-hooks.d.ts

@@ -0,0 +1,155 @@
+/**
+ * @fileoverview Git Hooks Integration for Security Scanning
+ * @module @nahisaho/musubix-security/integrations/git-hooks
+ *
+ * Provides pre-commit and pre-push hooks for automated security checks.
+ */
+import type { ScanResult, Severity } from '../types/index.js';
+/**
+ * Hook type
+ */
+export type HookType = 'pre-commit' | 'pre-push' | 'commit-msg' | 'post-commit';
+/**
+ * Git hooks configuration
+ */
+export interface GitHooksConfig {
+    /** Hooks to install */
+    hooks: HookType[];
+    /** Fail on specific severities */
+    failOn?: Severity[];
+    /** Scan staged files only (for pre-commit) */
+    stagedOnly?: boolean;
+    /** File patterns to include */
+    includePatterns?: string[];
+    /** File patterns to exclude */
+    excludePatterns?: string[];
+    /** Enable secret detection */
+    detectSecrets?: boolean;
+    /** Enable vulnerability scanning */
+    detectVulnerabilities?: boolean;
+    /** Skip hooks in CI environment */
+    skipInCI?: boolean;
+    /** Timeout in seconds */
+    timeout?: number;
+    /** Custom hook scripts */
+    customScripts?: Partial<Record<HookType, string>>;
+}
+/**
+ * Hook execution result
+ */
+export interface HookResult {
+    /** Hook type */
+    hook: HookType;
+    /** Whether hook passed */
+    passed: boolean;
+    /** Execution time in ms */
+    executionTime: number;
+    /** Files scanned */
+    filesScanned: string[];
+    /** Scan result (if performed) */
+    scanResult?: ScanResult;
+    /** Error message (if failed) */
+    error?: string;
+    /** Skipped reason */
+    skippedReason?: string;
+}
+/**
+ * Hook installation result
+ */
+export interface InstallResult {
+    /** Hooks installed */
+    installed: HookType[];
+    /** Hooks that failed to install */
+    failed: {
+        hook: HookType;
+        error: string;
+    }[];
+    /** Git directory path */
+    gitDir: string;
+    /** Whether backup was created */
+    backupCreated: boolean;
+}
+/**
+ * Staged file info
+ */
+export interface StagedFile {
+    /** File path */
+    path: string;
+    /** Git status */
+    status: 'A' | 'M' | 'D' | 'R' | 'C';
+    /** Old path (for renames) */
+    oldPath?: string;
+}
+/**
+ * Manages Git hooks for security scanning
+ *
+ * @example
+ * ```typescript
+ * const hooks = createGitHooks({
+ *   hooks: ['pre-commit', 'pre-push'],
+ *   failOn: ['critical', 'high'],
+ *   detectSecrets: true,
+ * });
+ *
+ * // Install hooks
+ * const result = await hooks.install();
+ *
+ * // Run pre-commit manually
+ * const hookResult = await hooks.runHook('pre-commit');
+ * ```
+ */
+export declare class GitHooksManager {
+    private config;
+    constructor(config: GitHooksConfig);
+    /**
+     * Install git hooks
+     */
+    install(workDir?: string): Promise<InstallResult>;
+    /**
+     * Uninstall git hooks
+     */
+    uninstall(workDir?: string): Promise<{
+        removed: HookType[];
+        restored: HookType[];
+    }>;
+    /**
+     * Run a specific hook
+     */
+    runHook(hook: HookType, workDir?: string): Promise<HookResult>;
+    /**
+     * Get staged files
+     */
+    getStagedFiles(workDir?: string): Promise<StagedFile[]>;
+    /**
+     * Generate hook script content
+     */
+    generateHookScript(hook: HookType): string;
+    /**
+     * Check if hooks should be skipped
+     */
+    shouldSkip(): boolean;
+    /**
+     * Get hook status
+     */
+    getStatus(workDir?: string): Promise<Record<HookType, 'installed' | 'not-installed' | 'other'>>;
+    private findGitDir;
+    private getAllFiles;
+    private shouldIncludeFile;
+    private matchPattern;
+    private runSecurityScan;
+    private checkResult;
+    private formatError;
+}
+/**
+ * Create a git hooks manager
+ */
+export declare function createGitHooks(config: GitHooksConfig): GitHooksManager;
+/**
+ * Quick install pre-commit hook
+ */
+export declare function installPreCommitHook(workDir?: string): Promise<InstallResult>;
+/**
+ * Quick install all recommended hooks
+ */
+export declare function installRecommendedHooks(workDir?: string): Promise<InstallResult>;
+//# sourceMappingURL=git-hooks.d.ts.map

package/dist/integrations/git-hooks.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"git-hooks.d.ts","sourceRoot":"","sources":["../../src/integrations/git-hooks.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAKH,OAAO,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,mBAAmB,CAAC;AAM9D;;GAEG;AACH,MAAM,MAAM,QAAQ,GAAG,YAAY,GAAG,UAAU,GAAG,YAAY,GAAG,aAAa,CAAC;AAEhF;;GAEG;AACH,MAAM,WAAW,cAAc;IAC7B,uBAAuB;IACvB,KAAK,EAAE,QAAQ,EAAE,CAAC;IAClB,kCAAkC;IAClC,MAAM,CAAC,EAAE,QAAQ,EAAE,CAAC;IACpB,8CAA8C;IAC9C,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,+BAA+B;IAC/B,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,+BAA+B;IAC/B,eAAe,CAAC,EAAE,MAAM,EAAE,CAAC;IAC3B,8BAA8B;IAC9B,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,oCAAoC;IACpC,qBAAqB,CAAC,EAAE,OAAO,CAAC;IAChC,mCAAmC;IACnC,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,yBAAyB;IACzB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,0BAA0B;IAC1B,aAAa,CAAC,EAAE,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,CAAC,CAAC;CACnD;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,gBAAgB;IAChB,IAAI,EAAE,QAAQ,CAAC;IACf,0BAA0B;IAC1B,MAAM,EAAE,OAAO,CAAC;IAChB,2BAA2B;IAC3B,aAAa,EAAE,MAAM,CAAC;IACtB,oBAAoB;IACpB,YAAY,EAAE,MAAM,EAAE,CAAC;IACvB,iCAAiC;IACjC,UAAU,CAAC,EAAE,UAAU,CAAC;IACxB,gCAAgC;IAChC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,qBAAqB;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,aAAa;IAC5B,sBAAsB;IACtB,SAAS,EAAE,QAAQ,EAAE,CAAC;IACtB,mCAAmC;IACnC,MAAM,EAAE;QAAE,IAAI,EAAE,QAAQ,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,EAAE,CAAC;IAC5C,yBAAyB;IACzB,MAAM,EAAE,MAAM,CAAC;IACf,iCAAiC;IACjC,aAAa,EAAE,OAAO,CAAC;CACxB;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,gBAAgB;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,iBAAiB;IACjB,MAAM,EAAE,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,GAAG,CAAC;IACpC,6BAA6B;IAC7B,OAAO,CAAC,EAAE,MAAM,CAAC;CAClB;AAMD;;;;;;;;;;;;;;;;;GAiBG;AACH,qBAAa,eAAe;IAC1B,OAAO,CAAC,MAAM,CAA2B;gBAE7B,MAAM,EAAE,cAAc;IAelC;;OAEG;IACG,OAAO,CAAC,OAAO,GAAE,MAAsB,GAAG,OAAO,CAAC,aAAa,CAAC;IAqDtE;;OAEG;IACG,SAAS,CAAC,OAAO,GAAE,MAAsB,GAAG,OAAO,CAAC;QAAE,OAAO,EAAE,QAAQ,EAAE,CAAC;QAAC,QAAQ,EAAE,QAAQ,EAAE,CAAA;KAAE,CAAC;IAkCxG;;OAEG;IACG,OAAO,CAAC,IAAI,EAAE,QAAQ,EAAE,OAAO,GAAE,MAAsB,GAAG,OAAO,CAAC,UAAU,CAAC;IAyDnF;;OAEG;IACG,cAAc,CAAC,OAAO,GAAE,MAAsB,GAAG,OAAO,CAAC,UAAU,EAAE,CAAC;IAgC5E;;OAEG;IACH,kBAAkB,CAAC,IAAI,EAAE,QAAQ,GAAG,MAAM;IAoD1C;;OAEG;IACH,UAAU,IAAI,OAAO;IAYrB;;OAEG;IACG,SAAS,CAAC,OAAO,GAAE,MAAsB,GAAG,OAAO,CAAC,MAAM,CAAC,QAAQ,EAAE,WAAW,GAAG,eAAe,GAAG,OAAO,CAAC,CAAC;IA0BpH,OAAO,CAAC,UAAU;YAcJ,WAAW;IAgBzB,OAAO,CAAC,iBAAiB;IAkBzB,OAAO,CAAC,YAAY;YAUN,eAAe;IAwB7B,OAAO,CAAC,WAAW;IASnB,OAAO,CAAC,WAAW;CAYpB;AAMD;;GAEG;AACH,wBAAgB,cAAc,CAAC,MAAM,EAAE,cAAc,GAAG,eAAe,CAEtE;AAED;;GAEG;AACH,wBAAsB,oBAAoB,CAAC,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC,CAQnF;AAED;;GAEG;AACH,wBAAsB,uBAAuB,CAAC,OAAO,CAAC,EAAE,MAAM,GAAG,OAAO,CAAC,aAAa,CAAC,CAUtF"}