@nahisaho/musubix-security 1.8.0 → 1.8.5

package/dist/remediation/secure-code-transformer.js

@@ -0,0 +1,625 @@
+/**
+ * @fileoverview Secure Code Transformer
+ * @module @nahisaho/musubix-security/remediation/secure-code-transformer
+ *
+ * Transforms insecure code patterns into secure alternatives using
+ * AST-based transformations and secure coding patterns.
+ */
+// ============================================================================
+// Built-in Transformations
+// ============================================================================
+const BUILT_IN_TRANSFORMATIONS = [
+    // Input Validation
+    {
+        id: 'transform-escape-html',
+        name: 'Escape HTML Output',
+        category: 'output-encoding',
+        pattern: {
+            type: 'regex',
+            value: 'innerHTML\\s*=\\s*([^;]+)',
+            flags: 'g',
+        },
+        replacement: {
+            type: 'template',
+            value: 'textContent = $1',
+            captures: { '1': 'content' },
+        },
+        description: 'Replace innerHTML with textContent to prevent XSS',
+        riskLevel: 'safe',
+        languages: ['javascript', 'typescript'],
+    },
+    {
+        id: 'transform-encode-uri',
+        name: 'Encode URI Components',
+        category: 'output-encoding',
+        pattern: {
+            type: 'regex',
+            value: '(["\'])\\s*\\+\\s*(\\w+)\\s*\\+\\s*(["\'])',
+            flags: 'g',
+        },
+        replacement: {
+            type: 'template',
+            value: '$1 + encodeURIComponent($2) + $3',
+        },
+        description: 'Encode user input in URL contexts',
+        riskLevel: 'caution',
+        languages: ['javascript', 'typescript'],
+    },
+    // SQL Injection
+    {
+        id: 'transform-parameterized-query',
+        name: 'Use Parameterized Queries',
+        category: 'input-validation',
+        pattern: {
+            type: 'regex',
+            value: 'query\\(\\s*[`"\']SELECT\\s+.+\\$\\{([^}]+)\\}',
+            flags: 'gi',
+        },
+        replacement: {
+            type: 'template',
+            value: 'query("SELECT ... WHERE column = $1", [$1])',
+            wrapExisting: true,
+        },
+        description: 'Convert string interpolation to parameterized queries',
+        riskLevel: 'review-required',
+        languages: ['javascript', 'typescript'],
+    },
+    // Cryptography
+    {
+        id: 'transform-md5-to-sha256',
+        name: 'Replace MD5 with SHA-256',
+        category: 'cryptography',
+        pattern: {
+            type: 'function-call',
+            value: "createHash('md5')",
+        },
+        replacement: {
+            type: 'template',
+            value: "createHash('sha256')",
+        },
+        description: 'Replace weak MD5 hash with SHA-256',
+        riskLevel: 'safe',
+        languages: ['javascript', 'typescript'],
+    },
+    {
+        id: 'transform-sha1-to-sha256',
+        name: 'Replace SHA-1 with SHA-256',
+        category: 'cryptography',
+        pattern: {
+            type: 'function-call',
+            value: "createHash('sha1')",
+        },
+        replacement: {
+            type: 'template',
+            value: "createHash('sha256')",
+        },
+        description: 'Replace weak SHA-1 hash with SHA-256',
+        riskLevel: 'safe',
+        languages: ['javascript', 'typescript'],
+    },
+    {
+        id: 'transform-math-random',
+        name: 'Replace Math.random with crypto',
+        category: 'cryptography',
+        pattern: {
+            type: 'function-call',
+            value: 'Math.random()',
+        },
+        replacement: {
+            type: 'snippet',
+            value: 'crypto.randomBytes(16).toString("hex")',
+        },
+        description: 'Replace insecure Math.random() with cryptographic random',
+        riskLevel: 'caution',
+        languages: ['javascript', 'typescript'],
+        imports: [{ module: 'crypto', named: ['randomBytes'] }],
+    },
+    // Path Traversal
+    {
+        id: 'transform-path-normalize',
+        name: 'Normalize File Paths',
+        category: 'input-validation',
+        pattern: {
+            type: 'regex',
+            value: 'readFile(?:Sync)?\\(\\s*([^,)]+)',
+            flags: 'g',
+        },
+        replacement: {
+            type: 'template',
+            value: 'readFile(path.normalize(path.join(baseDir, path.basename($1)))',
+        },
+        description: 'Normalize paths to prevent traversal',
+        riskLevel: 'review-required',
+        languages: ['javascript', 'typescript'],
+        imports: [{ module: 'path', default: 'path' }],
+    },
+    // Error Handling
+    {
+        id: 'transform-generic-error',
+        name: 'Use Generic Error Messages',
+        category: 'error-handling',
+        pattern: {
+            type: 'regex',
+            value: 'res\\.send\\(err\\.message\\)',
+            flags: 'g',
+        },
+        replacement: {
+            type: 'template',
+            value: 'res.send("An error occurred")',
+        },
+        description: 'Prevent error message information disclosure',
+        riskLevel: 'safe',
+        languages: ['javascript', 'typescript'],
+    },
+    {
+        id: 'transform-error-stack',
+        name: 'Remove Stack Traces from Responses',
+        category: 'error-handling',
+        pattern: {
+            type: 'regex',
+            value: 'res\\.(json|send)\\(.*err\\.stack.*\\)',
+            flags: 'g',
+        },
+        replacement: {
+            type: 'template',
+            value: 'res.$1({ error: "Internal server error" })',
+        },
+        description: 'Prevent stack trace information disclosure',
+        riskLevel: 'safe',
+        languages: ['javascript', 'typescript'],
+    },
+    // Data Protection
+    {
+        id: 'transform-hardcoded-secret',
+        name: 'Move Secrets to Environment Variables',
+        category: 'data-protection',
+        pattern: {
+            type: 'regex',
+            value: '(const|let|var)\\s+(\\w*(?:secret|key|password|token|api_key)\\w*)\\s*=\\s*["\']([^"\']+)["\']',
+            flags: 'gi',
+        },
+        replacement: {
+            type: 'template',
+            value: '$1 $2 = process.env.$2 || ""',
+            captures: { '2': 'varName' },
+        },
+        description: 'Move hardcoded secrets to environment variables',
+        riskLevel: 'review-required',
+        languages: ['javascript', 'typescript'],
+    },
+    // Session Management
+    {
+        id: 'transform-cookie-httponly',
+        name: 'Add HttpOnly to Cookies',
+        category: 'session-management',
+        pattern: {
+            type: 'regex',
+            value: 'cookie\\(["\']([^"\']+)["\'],\\s*([^,)]+)\\)',
+            flags: 'g',
+        },
+        replacement: {
+            type: 'template',
+            value: 'cookie("$1", $2, { httpOnly: true, secure: true })',
+        },
+        description: 'Add HttpOnly and Secure flags to cookies',
+        riskLevel: 'safe',
+        languages: ['javascript', 'typescript'],
+    },
+    // Logging
+    {
+        id: 'transform-sanitize-logs',
+        name: 'Sanitize Sensitive Data in Logs',
+        category: 'logging',
+        pattern: {
+            type: 'regex',
+            value: 'console\\.log\\(.*(?:password|secret|token|key).*\\)',
+            flags: 'gi',
+        },
+        replacement: {
+            type: 'template',
+            value: 'console.log("[REDACTED]")',
+        },
+        description: 'Remove sensitive data from log statements',
+        riskLevel: 'review-required',
+        languages: ['javascript', 'typescript'],
+    },
+];
+// ============================================================================
+// SecureCodeTransformer Class
+// ============================================================================
+/**
+ * Transforms insecure code patterns to secure alternatives
+ *
+ * @example
+ * ```typescript
+ * const transformer = createSecureCodeTransformer();
+ * const result = transformer.transform(code, { targetVulnerabilities: [...] });
+ * console.log(result.transformedCode);
+ * ```
+ */
+export class SecureCodeTransformer {
+    transformations;
+    options;
+    constructor(options = {}) {
+        this.transformations = new Map();
+        this.options = {
+            language: options.language ?? 'typescript',
+            preserveFormatting: options.preserveFormatting ?? true,
+            dryRun: options.dryRun ?? false,
+            enabledCategories: new Set(options.enabledCategories ?? [
+                'input-validation',
+                'output-encoding',
+                'cryptography',
+                'data-protection',
+                'error-handling',
+                'session-management',
+            ]),
+        };
+        // Load built-in transformations
+        for (const t of BUILT_IN_TRANSFORMATIONS) {
+            this.transformations.set(t.id, t);
+        }
+        // Add custom transformations
+        if (options.customTransformations) {
+            for (const t of options.customTransformations) {
+                this.transformations.set(t.id, t);
+            }
+        }
+    }
+    /**
+     * Transform code using security patterns
+     */
+    transform(code, options = {}) {
+        const result = {
+            success: false,
+            originalCode: code,
+            transformedCode: code,
+            transformationsApplied: [],
+            warnings: [],
+            errors: [],
+            requiredImports: [],
+        };
+        let transformedCode = code;
+        const appliedTransformations = [];
+        const requiredImports = [];
+        // Get applicable transformations
+        const transformations = this.getApplicableTransformations(options);
+        // Apply transformations
+        for (const transformation of transformations) {
+            if (options.maxTransformations &&
+                appliedTransformations.length >= options.maxTransformations) {
+                break;
+            }
+            try {
+                const transformResult = this.applyTransformation(transformedCode, transformation);
+                if (transformResult.applied) {
+                    transformedCode = transformResult.code;
+                    appliedTransformations.push(...transformResult.applications);
+                    if (transformation.imports) {
+                        requiredImports.push(...transformation.imports);
+                    }
+                }
+            }
+            catch (error) {
+                result.errors.push(`Failed to apply ${transformation.name}: ${error instanceof Error ? error.message : String(error)}`);
+            }
+        }
+        // Add required imports
+        if (requiredImports.length > 0 && !this.options.dryRun) {
+            transformedCode = this.addImports(transformedCode, requiredImports);
+        }
+        result.success = appliedTransformations.length > 0;
+        result.transformedCode = transformedCode;
+        result.transformationsApplied = appliedTransformations;
+        result.requiredImports = requiredImports;
+        return result;
+    }
+    /**
+     * Transform code for specific vulnerability
+     */
+    transformForVulnerability(code, vulnerability) {
+        const category = this.mapVulnerabilityToCategory(vulnerability.type);
+        const relevantTransformations = [...this.transformations.values()]
+            .filter(t => t.category === category);
+        return this.transform(code, {
+            onlyTransformations: relevantTransformations.map(t => t.id),
+            targetVulnerabilities: [vulnerability],
+        });
+    }
+    /**
+     * Get available transformations
+     */
+    getAvailableTransformations() {
+        return [...this.transformations.values()];
+    }
+    /**
+     * Get transformations by category
+     */
+    getTransformationsByCategory(category) {
+        return [...this.transformations.values()]
+            .filter(t => t.category === category);
+    }
+    /**
+     * Add custom transformation
+     */
+    addTransformation(transformation) {
+        this.transformations.set(transformation.id, transformation);
+    }
+    /**
+     * Remove transformation
+     */
+    removeTransformation(id) {
+        return this.transformations.delete(id);
+    }
+    /**
+     * Preview transformation without applying
+     */
+    preview(code, transformationId) {
+        const transformation = this.transformations.get(transformationId);
+        if (!transformation) {
+            return { matches: [], wouldApply: false };
+        }
+        const matches = [];
+        // const lines = code.split('\n'); // Available if needed for line-based processing
+        if (transformation.pattern.type === 'regex') {
+            const regex = new RegExp(transformation.pattern.value, transformation.pattern.flags || 'g');
+            let match;
+            while ((match = regex.exec(code)) !== null) {
+                const lineNumber = code.substring(0, match.index).split('\n').length;
+                const column = match.index - code.lastIndexOf('\n', match.index - 1);
+                const preview = this.generateReplacement(match[0], match, transformation.replacement);
+                matches.push({
+                    location: {
+                        file: 'preview',
+                        startLine: lineNumber,
+                        endLine: lineNumber,
+                        startColumn: column,
+                        endColumn: column + match[0].length,
+                    },
+                    original: match[0],
+                    preview,
+                });
+            }
+        }
+        else if (transformation.pattern.type === 'function-call') {
+            const searchStr = transformation.pattern.value;
+            let index = 0;
+            while ((index = code.indexOf(searchStr, index)) !== -1) {
+                const lineNumber = code.substring(0, index).split('\n').length;
+                const column = index - code.lastIndexOf('\n', index - 1);
+                matches.push({
+                    location: {
+                        file: 'preview',
+                        startLine: lineNumber,
+                        endLine: lineNumber,
+                        startColumn: column,
+                        endColumn: column + searchStr.length,
+                    },
+                    original: searchStr,
+                    preview: transformation.replacement.value,
+                });
+                index += searchStr.length;
+            }
+        }
+        return { matches, wouldApply: matches.length > 0 };
+    }
+    /**
+     * Validate code after transformation
+     */
+    validateTransformation(_originalCode, transformedCode) {
+        const issues = [];
+        // Basic validation
+        if (transformedCode.trim().length === 0) {
+            issues.push('Transformation resulted in empty code');
+        }
+        // Check bracket balance
+        const brackets = ['()', '[]', '{}'];
+        for (const pair of brackets) {
+            const open = (transformedCode.match(new RegExp('\\' + pair[0], 'g')) || []).length;
+            const close = (transformedCode.match(new RegExp('\\' + pair[1], 'g')) || []).length;
+            if (open !== close) {
+                issues.push(`Unbalanced ${pair}: ${open} opens, ${close} closes`);
+            }
+        }
+        // Check for common syntax issues
+        const syntaxPatterns = [
+            { pattern: /;\s*;/g, issue: 'Double semicolon' },
+            { pattern: /\(\s*,/g, issue: 'Missing argument before comma' },
+            { pattern: /,\s*\)/g, issue: 'Trailing comma before parenthesis' },
+            { pattern: /\[\s*,/g, issue: 'Missing element before comma in array' },
+        ];
+        for (const { pattern, issue } of syntaxPatterns) {
+            if (pattern.test(transformedCode)) {
+                issues.push(issue);
+            }
+        }
+        return { valid: issues.length === 0, issues };
+    }
+    // ============================================================================
+    // Private Methods
+    // ============================================================================
+    getApplicableTransformations(options) {
+        let transformations = [...this.transformations.values()];
+        // Filter by enabled categories
+        transformations = transformations.filter(t => this.options.enabledCategories.has(t.category));
+        // Filter by language
+        transformations = transformations.filter(t => t.languages.includes(this.options.language));
+        // Filter by specific IDs
+        if (options.onlyTransformations) {
+            const ids = new Set(options.onlyTransformations);
+            transformations = transformations.filter(t => ids.has(t.id));
+        }
+        // Exclude specific IDs
+        if (options.excludeTransformations) {
+            const excludeIds = new Set(options.excludeTransformations);
+            transformations = transformations.filter(t => !excludeIds.has(t.id));
+        }
+        // Sort by risk level (safest first)
+        const riskOrder = { 'safe': 0, 'caution': 1, 'review-required': 2 };
+        transformations.sort((a, b) => riskOrder[a.riskLevel] - riskOrder[b.riskLevel]);
+        return transformations;
+    }
+    applyTransformation(code, transformation) {
+        const applications = [];
+        let newCode = code;
+        if (transformation.pattern.type === 'regex') {
+            const regex = new RegExp(transformation.pattern.value, transformation.pattern.flags || 'g');
+            const matches = [];
+            let match;
+            while ((match = regex.exec(code)) !== null) {
+                matches.push({ match: [...match], index: match.index });
+            }
+            // Apply in reverse order to preserve indices
+            for (let i = matches.length - 1; i >= 0; i--) {
+                const { match, index } = matches[i];
+                const original = match[0];
+                const replacement = this.generateReplacement(original, match, transformation.replacement);
+                const lineNumber = code.substring(0, index).split('\n').length;
+                const lastNewline = code.lastIndexOf('\n', index - 1);
+                const column = index - lastNewline;
+                newCode = newCode.substring(0, index) + replacement + newCode.substring(index + original.length);
+                applications.unshift({
+                    transformationId: transformation.id,
+                    location: {
+                        file: 'unknown',
+                        startLine: lineNumber,
+                        endLine: lineNumber,
+                        startColumn: column,
+                        endColumn: column + original.length,
+                    },
+                    original,
+                    replacement,
+                });
+            }
+        }
+        else if (transformation.pattern.type === 'function-call') {
+            const searchStr = transformation.pattern.value;
+            let index = 0;
+            const indices = [];
+            while ((index = code.indexOf(searchStr, index)) !== -1) {
+                indices.push(index);
+                index += searchStr.length;
+            }
+            // Apply in reverse order
+            for (let i = indices.length - 1; i >= 0; i--) {
+                const idx = indices[i];
+                const lineNumber = code.substring(0, idx).split('\n').length;
+                const lastNewline = code.lastIndexOf('\n', idx - 1);
+                const column = idx - lastNewline;
+                newCode = newCode.substring(0, idx) +
+                    transformation.replacement.value +
+                    newCode.substring(idx + searchStr.length);
+                applications.unshift({
+                    transformationId: transformation.id,
+                    location: {
+                        file: 'unknown',
+                        startLine: lineNumber,
+                        endLine: lineNumber,
+                        startColumn: column,
+                        endColumn: column + searchStr.length,
+                    },
+                    original: searchStr,
+                    replacement: transformation.replacement.value,
+                });
+            }
+        }
+        return {
+            applied: applications.length > 0,
+            code: newCode,
+            applications,
+        };
+    }
+    generateReplacement(original, match, replacement) {
+        let result = replacement.value;
+        // Replace capture groups
+        for (let i = 1; i < match.length; i++) {
+            result = result.replace(new RegExp(`\\$${i}`, 'g'), match[i] || '');
+        }
+        if (replacement.wrapExisting) {
+            result = result.replace('$0', original);
+        }
+        return result;
+    }
+    addImports(code, imports) {
+        // Deduplicate imports
+        const uniqueImports = new Map();
+        for (const imp of imports) {
+            const existing = uniqueImports.get(imp.module);
+            if (existing) {
+                // Merge named imports
+                if (imp.named) {
+                    existing.named = [...new Set([...(existing.named || []), ...imp.named])];
+                }
+            }
+            else {
+                uniqueImports.set(imp.module, { ...imp });
+            }
+        }
+        // Generate import statements
+        const importStatements = [];
+        for (const imp of uniqueImports.values()) {
+            if (imp.default && imp.named?.length) {
+                importStatements.push(`import ${imp.default}, { ${imp.named.join(', ')} } from '${imp.module}';`);
+            }
+            else if (imp.default) {
+                importStatements.push(`import ${imp.default} from '${imp.module}';`);
+            }
+            else if (imp.named?.length) {
+                const keyword = imp.typeOnly ? 'import type' : 'import';
+                importStatements.push(`${keyword} { ${imp.named.join(', ')} } from '${imp.module}';`);
+            }
+        }
+        if (importStatements.length === 0)
+            return code;
+        // Find insertion point (after existing imports or at start)
+        const lines = code.split('\n');
+        let insertIndex = 0;
+        for (let i = 0; i < lines.length; i++) {
+            if (lines[i].startsWith('import ')) {
+                insertIndex = i + 1;
+            }
+            else if (insertIndex > 0 && !lines[i].trim().startsWith('import')) {
+                break;
+            }
+        }
+        lines.splice(insertIndex, 0, ...importStatements);
+        return lines.join('\n');
+    }
+    mapVulnerabilityToCategory(vulnType) {
+        const mapping = {
+            'xss': 'output-encoding',
+            'sql-injection': 'input-validation',
+            'path-traversal': 'input-validation',
+            'command-injection': 'input-validation',
+            'hardcoded-secret': 'data-protection',
+            'weak-crypto': 'cryptography',
+            'weak-random': 'cryptography',
+            'information-disclosure': 'error-handling',
+            'session-fixation': 'session-management',
+        };
+        return mapping[vulnType] || 'general';
+    }
+}
+// ============================================================================
+// Factory Functions
+// ============================================================================
+/**
+ * Create a secure code transformer
+ */
+export function createSecureCodeTransformer(options) {
+    return new SecureCodeTransformer(options);
+}
+/**
+ * Quick transform code
+ */
+export function quickTransform(code) {
+    const transformer = createSecureCodeTransformer();
+    return transformer.transform(code);
+}
+/**
+ * Get all built-in transformations
+ */
+export function getBuiltInTransformations() {
+    return [...BUILT_IN_TRANSFORMATIONS];
+}
+//# sourceMappingURL=secure-code-transformer.js.map

package/dist/remediation/secure-code-transformer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"secure-code-transformer.js","sourceRoot":"","sources":["../../src/remediation/secure-code-transformer.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAuKH,+EAA+E;AAC/E,2BAA2B;AAC3B,+EAA+E;AAE/E,MAAM,wBAAwB,GAAyB;IACrD,mBAAmB;IACnB;QACE,EAAE,EAAE,uBAAuB;QAC3B,IAAI,EAAE,oBAAoB;QAC1B,QAAQ,EAAE,iBAAiB;QAC3B,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,2BAA2B;YAClC,KAAK,EAAE,GAAG;SACX;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,kBAAkB;YACzB,QAAQ,EAAE,EAAE,GAAG,EAAE,SAAS,EAAE;SAC7B;QACD,WAAW,EAAE,mDAAmD;QAChE,SAAS,EAAE,MAAM;QACjB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;IACD;QACE,EAAE,EAAE,sBAAsB;QAC1B,IAAI,EAAE,uBAAuB;QAC7B,QAAQ,EAAE,iBAAiB;QAC3B,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,4CAA4C;YACnD,KAAK,EAAE,GAAG;SACX;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,kCAAkC;SAC1C;QACD,WAAW,EAAE,mCAAmC;QAChD,SAAS,EAAE,SAAS;QACpB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;IAED,gBAAgB;IAChB;QACE,EAAE,EAAE,+BAA+B;QACnC,IAAI,EAAE,2BAA2B;QACjC,QAAQ,EAAE,kBAAkB;QAC5B,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,gDAAgD;YACvD,KAAK,EAAE,IAAI;SACZ;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,6CAA6C;YACpD,YAAY,EAAE,IAAI;SACnB;QACD,WAAW,EAAE,uDAAuD;QACpE,SAAS,EAAE,iBAAiB;QAC5B,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;IAED,eAAe;IACf;QACE,EAAE,EAAE,yBAAyB;QAC7B,IAAI,EAAE,0BAA0B;QAChC,QAAQ,EAAE,cAAc;QACxB,OAAO,EAAE;YACP,IAAI,EAAE,eAAe;YACrB,KAAK,EAAE,mBAAmB;SAC3B;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,sBAAsB;SAC9B;QACD,WAAW,EAAE,oCAAoC;QACjD,SAAS,EAAE,MAAM;QACjB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;IACD;QACE,EAAE,EAAE,0BAA0B;QAC9B,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,cAAc;QACxB,OAAO,EAAE;YACP,IAAI,EAAE,eAAe;YACrB,KAAK,EAAE,oBAAoB;SAC5B;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,sBAAsB;SAC9B;QACD,WAAW,EAAE,sCAAsC;QACnD,SAAS,EAAE,MAAM;QACjB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;IACD;QACE,EAAE,EAAE,uBAAuB;QAC3B,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,cAAc;QACxB,OAAO,EAAE;YACP,IAAI,EAAE,eAAe;YACrB,KAAK,EAAE,eAAe;SACvB;QACD,WAAW,EAAE;YACX,IAAI,EAAE,SAAS;YACf,KAAK,EAAE,wCAAwC;SAChD;QACD,WAAW,EAAE,0DAA0D;QACvE,SAAS,EAAE,SAAS;QACpB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;QACvC,OAAO,EAAE,CAAC,EAAE,MAAM,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC,aAAa,CAAC,EAAE,CAAC;KACxD;IAED,iBAAiB;IACjB;QACE,EAAE,EAAE,0BAA0B;QAC9B,IAAI,EAAE,sBAAsB;QAC5B,QAAQ,EAAE,kBAAkB;QAC5B,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,kCAAkC;YACzC,KAAK,EAAE,GAAG;SACX;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,gEAAgE;SACxE;QACD,WAAW,EAAE,sCAAsC;QACnD,SAAS,EAAE,iBAAiB;QAC5B,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;QACvC,OAAO,EAAE,CAAC,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,CAAC;KAC/C;IAED,iBAAiB;IACjB;QACE,EAAE,EAAE,yBAAyB;QAC7B,IAAI,EAAE,4BAA4B;QAClC,QAAQ,EAAE,gBAAgB;QAC1B,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,+BAA+B;YACtC,KAAK,EAAE,GAAG;SACX;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,+BAA+B;SACvC;QACD,WAAW,EAAE,8CAA8C;QAC3D,SAAS,EAAE,MAAM;QACjB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;IACD;QACE,EAAE,EAAE,uBAAuB;QAC3B,IAAI,EAAE,oCAAoC;QAC1C,QAAQ,EAAE,gBAAgB;QAC1B,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,wCAAwC;YAC/C,KAAK,EAAE,GAAG;SACX;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,4CAA4C;SACpD;QACD,WAAW,EAAE,4CAA4C;QACzD,SAAS,EAAE,MAAM;QACjB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;IAED,kBAAkB;IAClB;QACE,EAAE,EAAE,4BAA4B;QAChC,IAAI,EAAE,uCAAuC;QAC7C,QAAQ,EAAE,iBAAiB;QAC3B,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,gGAAgG;YACvG,KAAK,EAAE,IAAI;SACZ;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,8BAA8B;YACrC,QAAQ,EAAE,EAAE,GAAG,EAAE,SAAS,EAAE;SAC7B;QACD,WAAW,EAAE,iDAAiD;QAC9D,SAAS,EAAE,iBAAiB;QAC5B,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;IAED,qBAAqB;IACrB;QACE,EAAE,EAAE,2BAA2B;QAC/B,IAAI,EAAE,yBAAyB;QAC/B,QAAQ,EAAE,oBAAoB;QAC9B,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,8CAA8C;YACrD,KAAK,EAAE,GAAG;SACX;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,oDAAoD;SAC5D;QACD,WAAW,EAAE,0CAA0C;QACvD,SAAS,EAAE,MAAM;QACjB,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;IAED,UAAU;IACV;QACE,EAAE,EAAE,yBAAyB;QAC7B,IAAI,EAAE,iCAAiC;QACvC,QAAQ,EAAE,SAAS;QACnB,OAAO,EAAE;YACP,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,sDAAsD;YAC7D,KAAK,EAAE,IAAI;SACZ;QACD,WAAW,EAAE;YACX,IAAI,EAAE,UAAU;YAChB,KAAK,EAAE,2BAA2B;SACnC;QACD,WAAW,EAAE,2CAA2C;QACxD,SAAS,EAAE,iBAAiB;QAC5B,SAAS,EAAE,CAAC,YAAY,EAAE,YAAY,CAAC;KACxC;CACF,CAAC;AAEF,+EAA+E;AAC/E,8BAA8B;AAC9B,+EAA+E;AAE/E;;;;;;;;;GASG;AACH,MAAM,OAAO,qBAAqB;IACxB,eAAe,CAAkC;IACjD,OAAO,CAEb;IAEF,YAAY,UAAwC,EAAE;QACpD,IAAI,CAAC,eAAe,GAAG,IAAI,GAAG,EAAE,CAAC;QACjC,IAAI,CAAC,OAAO,GAAG;YACb,QAAQ,EAAE,OAAO,CAAC,QAAQ,IAAI,YAAY;YAC1C,kBAAkB,EAAE,OAAO,CAAC,kBAAkB,IAAI,IAAI;YACtD,MAAM,EAAE,OAAO,CAAC,MAAM,IAAI,KAAK;YAC/B,iBAAiB,EAAE,IAAI,GAAG,CAAC,OAAO,CAAC,iBAAiB,IAAI;gBACtD,kBAAkB;gBAClB,iBAAiB;gBACjB,cAAc;gBACd,iBAAiB;gBACjB,gBAAgB;gBAChB,oBAAoB;aACrB,CAAC;SACH,CAAC;QAEF,gCAAgC;QAChC,KAAK,MAAM,CAAC,IAAI,wBAAwB,EAAE,CAAC;YACzC,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;QACpC,CAAC;QAED,6BAA6B;QAC7B,IAAI,OAAO,CAAC,qBAAqB,EAAE,CAAC;YAClC,KAAK,MAAM,CAAC,IAAI,OAAO,CAAC,qBAAqB,EAAE,CAAC;gBAC9C,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC;YACpC,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACH,SAAS,CAAC,IAAY,EAAE,UAA4B,EAAE;QACpD,MAAM,MAAM,GAAyB;YACnC,OAAO,EAAE,KAAK;YACd,YAAY,EAAE,IAAI;YAClB,eAAe,EAAE,IAAI;YACrB,sBAAsB,EAAE,EAAE;YAC1B,QAAQ,EAAE,EAAE;YACZ,MAAM,EAAE,EAAE;YACV,eAAe,EAAE,EAAE;SACpB,CAAC;QAEF,IAAI,eAAe,GAAG,IAAI,CAAC;QAC3B,MAAM,sBAAsB,GAA4B,EAAE,CAAC;QAC3D,MAAM,eAAe,GAAiB,EAAE,CAAC;QAEzC,iCAAiC;QACjC,MAAM,eAAe,GAAG,IAAI,CAAC,4BAA4B,CAAC,OAAO,CAAC,CAAC;QAEnE,wBAAwB;QACxB,KAAK,MAAM,cAAc,IAAI,eAAe,EAAE,CAAC;YAC7C,IAAI,OAAO,CAAC,kBAAkB;gBAC1B,sBAAsB,CAAC,MAAM,IAAI,OAAO,CAAC,kBAAkB,EAAE,CAAC;gBAChE,MAAM;YACR,CAAC;YAED,IAAI,CAAC;gBACH,MAAM,eAAe,GAAG,IAAI,CAAC,mBAAmB,CAC9C,eAAe,EACf,cAAc,CACf,CAAC;gBAEF,IAAI,eAAe,CAAC,OAAO,EAAE,CAAC;oBAC5B,eAAe,GAAG,eAAe,CAAC,IAAI,CAAC;oBACvC,sBAAsB,CAAC,IAAI,CAAC,GAAG,eAAe,CAAC,YAAY,CAAC,CAAC;oBAE7D,IAAI,cAAc,CAAC,OAAO,EAAE,CAAC;wBAC3B,eAAe,CAAC,IAAI,CAAC,GAAG,cAAc,CAAC,OAAO,CAAC,CAAC;oBAClD,CAAC;gBACH,CAAC;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,MAAM,CAAC,MAAM,CAAC,IAAI,CAChB,mBAAmB,cAAc,CAAC,IAAI,KAAK,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,EAAE,CACpG,CAAC;YACJ,CAAC;QACH,CAAC;QAED,uBAAuB;QACvB,IAAI,eAAe,CAAC,MAAM,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;YACvD,eAAe,GAAG,IAAI,CAAC,UAAU,CAAC,eAAe,EAAE,eAAe,CAAC,CAAC;QACtE,CAAC;QAED,MAAM,CAAC,OAAO,GAAG,sBAAsB,CAAC,MAAM,GAAG,CAAC,CAAC;QACnD,MAAM,CAAC,eAAe,GAAG,eAAe,CAAC;QACzC,MAAM,CAAC,sBAAsB,GAAG,sBAAsB,CAAC;QACvD,MAAM,CAAC,eAAe,GAAG,eAAe,CAAC;QAEzC,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,yBAAyB,CACvB,IAAY,EACZ,aAA4B;QAE5B,MAAM,QAAQ,GAAG,IAAI,CAAC,0BAA0B,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC;QACrE,MAAM,uBAAuB,GAAG,CAAC,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,CAAC;aAC/D,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;QAExC,OAAO,IAAI,CAAC,SAAS,CAAC,IAAI,EAAE;YAC1B,mBAAmB,EAAE,uBAAuB,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAC3D,qBAAqB,EAAE,CAAC,aAAa,CAAC;SACvC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,2BAA2B;QACzB,OAAO,CAAC,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,CAAC,CAAC;IAC5C,CAAC;IAED;;OAEG;IACH,4BAA4B,CAAC,QAAgC;QAC3D,OAAO,CAAC,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,CAAC;aACtC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,KAAK,QAAQ,CAAC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,cAAkC;QAClD,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,cAAc,CAAC,EAAE,EAAE,cAAc,CAAC,CAAC;IAC9D,CAAC;IAED;;OAEG;IACH,oBAAoB,CAAC,EAAU;QAC7B,OAAO,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;IACzC,CAAC;IAED;;OAEG;IACH,OAAO,CAAC,IAAY,EAAE,gBAAwB;QAI5C,MAAM,cAAc,GAAG,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;QAClE,IAAI,CAAC,cAAc,EAAE,CAAC;YACpB,OAAO,EAAE,OAAO,EAAE,EAAE,EAAE,UAAU,EAAE,KAAK,EAAE,CAAC;QAC5C,CAAC;QAED,MAAM,OAAO,GAA2E,EAAE,CAAC;QAC3F,mFAAmF;QAEnF,IAAI,cAAc,CAAC,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;YAC5C,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,cAAc,CAAC,OAAO,CAAC,KAAK,EAAE,cAAc,CAAC,OAAO,CAAC,KAAK,IAAI,GAAG,CAAC,CAAC;YAC5F,IAAI,KAAK,CAAC;YAEV,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;gBAC3C,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;gBACrE,MAAM,MAAM,GAAG,KAAK,CAAC,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,KAAK,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC;gBAErE,MAAM,OAAO,GAAG,IAAI,CAAC,mBAAmB,CACtC,KAAK,CAAC,CAAC,CAAC,EACR,KAAK,EACL,cAAc,CAAC,WAAW,CAC3B,CAAC;gBAEF,OAAO,CAAC,IAAI,CAAC;oBACX,QAAQ,EAAE;wBACR,IAAI,EAAE,SAAS;wBACf,SAAS,EAAE,UAAU;wBACrB,OAAO,EAAE,UAAU;wBACnB,WAAW,EAAE,MAAM;wBACnB,SAAS,EAAE,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,MAAM;qBACpC;oBACD,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC;oBAClB,OAAO;iBACR,CAAC,CAAC;YACL,CAAC;QACH,CAAC;aAAM,IAAI,cAAc,CAAC,OAAO,CAAC,IAAI,KAAK,eAAe,EAAE,CAAC;YAC3D,MAAM,SAAS,GAAG,cAAc,CAAC,OAAO,CAAC,KAAK,CAAC;YAC/C,IAAI,KAAK,GAAG,CAAC,CAAC;YAEd,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC;gBACvD,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;gBAC/D,MAAM,MAAM,GAAG,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC;gBAEzD,OAAO,CAAC,IAAI,CAAC;oBACX,QAAQ,EAAE;wBACR,IAAI,EAAE,SAAS;wBACf,SAAS,EAAE,UAAU;wBACrB,OAAO,EAAE,UAAU;wBACnB,WAAW,EAAE,MAAM;wBACnB,SAAS,EAAE,MAAM,GAAG,SAAS,CAAC,MAAM;qBACrC;oBACD,QAAQ,EAAE,SAAS;oBACnB,OAAO,EAAE,cAAc,CAAC,WAAW,CAAC,KAAK;iBAC1C,CAAC,CAAC;gBAEH,KAAK,IAAI,SAAS,CAAC,MAAM,CAAC;YAC5B,CAAC;QACH,CAAC;QAED,OAAO,EAAE,OAAO,EAAE,UAAU,EAAE,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;IACrD,CAAC;IAED;;OAEG;IACH,sBAAsB,CACpB,aAAqB,EACrB,eAAuB;QAEvB,MAAM,MAAM,GAAa,EAAE,CAAC;QAE5B,mBAAmB;QACnB,IAAI,eAAe,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACxC,MAAM,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;QACvD,CAAC;QAED,wBAAwB;QACxB,MAAM,QAAQ,GAAG,CAAC,IAAI,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;QACpC,KAAK,MAAM,IAAI,IAAI,QAAQ,EAAE,CAAC;YAC5B,MAAM,IAAI,GAAG,CAAC,eAAe,CAAC,KAAK,CAAC,IAAI,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;YACnF,MAAM,KAAK,GAAG,CAAC,eAAe,CAAC,KAAK,CAAC,IAAI,MAAM,CAAC,IAAI,GAAG,IAAI,CAAC,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;YACpF,IAAI,IAAI,KAAK,KAAK,EAAE,CAAC;gBACnB,MAAM,CAAC,IAAI,CAAC,cAAc,IAAI,KAAK,IAAI,WAAW,KAAK,SAAS,CAAC,CAAC;YACpE,CAAC;QACH,CAAC;QAED,iCAAiC;QACjC,MAAM,cAAc,GAAG;YACrB,EAAE,OAAO,EAAE,QAAQ,EAAE,KAAK,EAAE,kBAAkB,EAAE;YAChD,EAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,+BAA+B,EAAE;YAC9D,EAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,mCAAmC,EAAE;YAClE,EAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,uCAAuC,EAAE;SACvE,CAAC;QAEF,KAAK,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,IAAI,cAAc,EAAE,CAAC;YAChD,IAAI,OAAO,CAAC,IAAI,CAAC,eAAe,CAAC,EAAE,CAAC;gBAClC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;YACrB,CAAC;QACH,CAAC;QAED,OAAO,EAAE,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,MAAM,EAAE,CAAC;IAChD,CAAC;IAED,+EAA+E;IAC/E,kBAAkB;IAClB,+EAA+E;IAEvE,4BAA4B,CAAC,OAAyB;QAC5D,IAAI,eAAe,GAAG,CAAC,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,EAAE,CAAC,CAAC;QAEzD,+BAA+B;QAC/B,eAAe,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAC3C,IAAI,CAAC,OAAO,CAAC,iBAAiB,CAAC,GAAG,CAAC,CAAC,CAAC,QAAQ,CAAC,CAC/C,CAAC;QAEF,qBAAqB;QACrB,eAAe,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAC3C,CAAC,CAAC,SAAS,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAC5C,CAAC;QAEF,yBAAyB;QACzB,IAAI,OAAO,CAAC,mBAAmB,EAAE,CAAC;YAChC,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,mBAAmB,CAAC,CAAC;YACjD,eAAe,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QAC/D,CAAC;QAED,uBAAuB;QACvB,IAAI,OAAO,CAAC,sBAAsB,EAAE,CAAC;YACnC,MAAM,UAAU,GAAG,IAAI,GAAG,CAAC,OAAO,CAAC,sBAAsB,CAAC,CAAC;YAC3D,eAAe,GAAG,eAAe,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;QACvE,CAAC;QAED,oCAAoC;QACpC,MAAM,SAAS,GAAG,EAAE,MAAM,EAAE,CAAC,EAAE,SAAS,EAAE,CAAC,EAAE,iBAAiB,EAAE,CAAC,EAAE,CAAC;QACpE,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAC5B,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,GAAG,SAAS,CAAC,CAAC,CAAC,SAAS,CAAC,CAChD,CAAC;QAEF,OAAO,eAAe,CAAC;IACzB,CAAC;IAEO,mBAAmB,CACzB,IAAY,EACZ,cAAkC;QAElC,MAAM,YAAY,GAA4B,EAAE,CAAC;QACjD,IAAI,OAAO,GAAG,IAAI,CAAC;QAEnB,IAAI,cAAc,CAAC,OAAO,CAAC,IAAI,KAAK,OAAO,EAAE,CAAC;YAC5C,MAAM,KAAK,GAAG,IAAI,MAAM,CACtB,cAAc,CAAC,OAAO,CAAC,KAAK,EAC5B,cAAc,CAAC,OAAO,CAAC,KAAK,IAAI,GAAG,CACpC,CAAC;YAEF,MAAM,OAAO,GAAqD,EAAE,CAAC;YACrE,IAAI,KAAK,CAAC;YACV,OAAO,CAAC,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;gBAC3C,OAAO,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,CAAC,GAAG,KAAK,CAA+B,EAAE,KAAK,EAAE,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC;YACxF,CAAC;YAED,6CAA6C;YAC7C,KAAK,IAAI,CAAC,GAAG,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC7C,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;gBACpC,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;gBAC1B,MAAM,WAAW,GAAG,IAAI,CAAC,mBAAmB,CAAC,QAAQ,EAAE,KAAK,EAAE,cAAc,CAAC,WAAW,CAAC,CAAC;gBAC1F,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;gBAC/D,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,KAAK,GAAG,CAAC,CAAC,CAAC;gBACtD,MAAM,MAAM,GAAG,KAAK,GAAG,WAAW,CAAC;gBAEnC,OAAO,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,KAAK,CAAC,GAAG,WAAW,GAAG,OAAO,CAAC,SAAS,CAAC,KAAK,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC;gBAEjG,YAAY,CAAC,OAAO,CAAC;oBACnB,gBAAgB,EAAE,cAAc,CAAC,EAAE;oBACnC,QAAQ,EAAE;wBACR,IAAI,EAAE,SAAS;wBACf,SAAS,EAAE,UAAU;wBACrB,OAAO,EAAE,UAAU;wBACnB,WAAW,EAAE,MAAM;wBACnB,SAAS,EAAE,MAAM,GAAG,QAAQ,CAAC,MAAM;qBACpC;oBACD,QAAQ;oBACR,WAAW;iBACZ,CAAC,CAAC;YACL,CAAC;QACH,CAAC;aAAM,IAAI,cAAc,CAAC,OAAO,CAAC,IAAI,KAAK,eAAe,EAAE,CAAC;YAC3D,MAAM,SAAS,GAAG,cAAc,CAAC,OAAO,CAAC,KAAK,CAAC;YAC/C,IAAI,KAAK,GAAG,CAAC,CAAC;YACd,MAAM,OAAO,GAAa,EAAE,CAAC;YAE7B,OAAO,CAAC,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC;gBACvD,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBACpB,KAAK,IAAI,SAAS,CAAC,MAAM,CAAC;YAC5B,CAAC;YAED,yBAAyB;YACzB,KAAK,IAAI,CAAC,GAAG,OAAO,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC,IAAI,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC;gBAC7C,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,CAAC,CAAC;gBACvB,MAAM,UAAU,GAAG,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,MAAM,CAAC;gBAC7D,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC;gBACpD,MAAM,MAAM,GAAG,GAAG,GAAG,WAAW,CAAC;gBAEjC,OAAO,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC;oBACzB,cAAc,CAAC,WAAW,CAAC,KAAK;oBAChC,OAAO,CAAC,SAAS,CAAC,GAAG,GAAG,SAAS,CAAC,MAAM,CAAC,CAAC;gBAEpD,YAAY,CAAC,OAAO,CAAC;oBACnB,gBAAgB,EAAE,cAAc,CAAC,EAAE;oBACnC,QAAQ,EAAE;wBACR,IAAI,EAAE,SAAS;wBACf,SAAS,EAAE,UAAU;wBACrB,OAAO,EAAE,UAAU;wBACnB,WAAW,EAAE,MAAM;wBACnB,SAAS,EAAE,MAAM,GAAG,SAAS,CAAC,MAAM;qBACrC;oBACD,QAAQ,EAAE,SAAS;oBACnB,WAAW,EAAE,cAAc,CAAC,WAAW,CAAC,KAAK;iBAC9C,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,OAAO;YACL,OAAO,EAAE,YAAY,CAAC,MAAM,GAAG,CAAC;YAChC,IAAI,EAAE,OAAO;YACb,YAAY;SACb,CAAC;IACJ,CAAC;IAEO,mBAAmB,CACzB,QAAgB,EAChB,KAAiC,EACjC,WAA+B;QAE/B,IAAI,MAAM,GAAG,WAAW,CAAC,KAAK,CAAC;QAE/B,yBAAyB;QACzB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,MAAM,CAAC,MAAM,CAAC,EAAE,EAAE,GAAG,CAAC,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;QACtE,CAAC;QAED,IAAI,WAAW,CAAC,YAAY,EAAE,CAAC;YAC7B,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC;QAC1C,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,UAAU,CAAC,IAAY,EAAE,OAAqB;QACpD,sBAAsB;QACtB,MAAM,aAAa,GAAG,IAAI,GAAG,EAAsB,CAAC;QACpD,KAAK,MAAM,GAAG,IAAI,OAAO,EAAE,CAAC;YAC1B,MAAM,QAAQ,GAAG,aAAa,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;YAC/C,IAAI,QAAQ,EAAE,CAAC;gBACb,sBAAsB;gBACtB,IAAI,GAAG,CAAC,KAAK,EAAE,CAAC;oBACd,QAAQ,CAAC,KAAK,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,IAAI,EAAE,CAAC,EAAE,GAAG,GAAG,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;gBAC3E,CAAC;YACH,CAAC;iBAAM,CAAC;gBACN,aAAa,CAAC,GAAG,CAAC,GAAG,CAAC,MAAM,EAAE,EAAE,GAAG,GAAG,EAAE,CAAC,CAAC;YAC5C,CAAC;QACH,CAAC;QAED,6BAA6B;QAC7B,MAAM,gBAAgB,GAAa,EAAE,CAAC;QACtC,KAAK,MAAM,GAAG,IAAI,aAAa,CAAC,MAAM,EAAE,EAAE,CAAC;YACzC,IAAI,GAAG,CAAC,OAAO,IAAI,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,CAAC;gBACrC,gBAAgB,CAAC,IAAI,CACnB,UAAU,GAAG,CAAC,OAAO,OAAO,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,GAAG,CAAC,MAAM,IAAI,CAC3E,CAAC;YACJ,CAAC;iBAAM,IAAI,GAAG,CAAC,OAAO,EAAE,CAAC;gBACvB,gBAAgB,CAAC,IAAI,CAAC,UAAU,GAAG,CAAC,OAAO,UAAU,GAAG,CAAC,MAAM,IAAI,CAAC,CAAC;YACvE,CAAC;iBAAM,IAAI,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,CAAC;gBAC7B,MAAM,OAAO,GAAG,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,aAAa,CAAC,CAAC,CAAC,QAAQ,CAAC;gBACxD,gBAAgB,CAAC,IAAI,CACnB,GAAG,OAAO,MAAM,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,YAAY,GAAG,CAAC,MAAM,IAAI,CAC/D,CAAC;YACJ,CAAC;QACH,CAAC;QAED,IAAI,gBAAgB,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QAE/C,4DAA4D;QAC5D,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QAC/B,IAAI,WAAW,GAAG,CAAC,CAAC;QAEpB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,IAAI,KAAK,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;gBACnC,WAAW,GAAG,CAAC,GAAG,CAAC,CAAC;YACtB,CAAC;iBAAM,IAAI,WAAW,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACpE,MAAM;YACR,CAAC;QACH,CAAC;QAED,KAAK,CAAC,MAAM,CAAC,WAAW,EAAE,CAAC,EAAE,GAAG,gBAAgB,CAAC,CAAC;QAClD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC1B,CAAC;IAEO,0BAA0B,CAAC,QAAgB;QACjD,MAAM,OAAO,GAA2C;YACtD,KAAK,EAAE,iBAAiB;YACxB,eAAe,EAAE,kBAAkB;YACnC,gBAAgB,EAAE,kBAAkB;YACpC,mBAAmB,EAAE,kBAAkB;YACvC,kBAAkB,EAAE,iBAAiB;YACrC,aAAa,EAAE,cAAc;YAC7B,aAAa,EAAE,cAAc;YAC7B,wBAAwB,EAAE,gBAAgB;YAC1C,kBAAkB,EAAE,oBAAoB;SACzC,CAAC;QAEF,OAAO,OAAO,CAAC,QAAQ,CAAC,IAAI,SAAS,CAAC;IACxC,CAAC;CACF;AAED,+EAA+E;AAC/E,oBAAoB;AACpB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,UAAU,2BAA2B,CACzC,OAAsC;IAEtC,OAAO,IAAI,qBAAqB,CAAC,OAAO,CAAC,CAAC;AAC5C,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,cAAc,CAAC,IAAY;IACzC,MAAM,WAAW,GAAG,2BAA2B,EAAE,CAAC;IAClD,OAAO,WAAW,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;AACrC,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,yBAAyB;IACvC,OAAO,CAAC,GAAG,wBAAwB,CAAC,CAAC;AACvC,CAAC"}

package/dist/types/fix.d.ts

@@ -8,7 +8,7 @@ import type { SourceLocation, Severity } from './vulnerability.js';
  * Fix strategy type
  * @trace REQ-SEC-FIX-001
  */
-export type FixStrategy = 'parameterized-query' | 'html-escape' | 'command-escape' | 'path-validation' | 'url-validation' | 'input-validation' | 'authentication' | 'authorization' | 'encryption' | 'sanitization' | 'configuration' | 'dependency-update';
+export type FixStrategy = 'parameterized-query' | 'html-escape' | 'command-escape' | 'path-validation' | 'url-validation' | 'input-validation' | 'authentication' | 'authorization' | 'encryption' | 'sanitization' | 'configuration' | 'dependency-update' | 'encoding' | 'parameterization' | 'validation' | 'replacement' | 'combined' | 'revert';
 /**
  * Code edit to apply
  * @trace DES-SEC-FIX-001
@@ -37,6 +37,8 @@ export interface ImportEdit {
     namespaceImport?: string;
     /** Insert at line (0 for top of file) */
     insertLine: number;
+    /** Whether this is a type-only import */
+    isTypeOnly?: boolean;
 }
 /**
  * Fix suggestion for a vulnerability