@nahisaho/musubix-security 2.0.1 → 2.1.0

package/dist/cve/cpe-matcher.js

@@ -0,0 +1,396 @@
+/**
+ * @fileoverview CPE (Common Platform Enumeration) Matching Engine
+ * @module @nahisaho/musubix-security/cve/cpe-matcher
+ *
+ * Provides npm package name to CPE conversion and semver-based
+ * vulnerability matching.
+ *
+ * @requirement REQ-CVE-003 - CPE matching for vulnerability lookup
+ * @design DES-EPIC2-004 - CPE Matcher component
+ */
+/**
+ * Known npm package to vendor mappings
+ * Many npm packages use different names than their CPE vendor
+ */
+const VENDOR_MAPPINGS = {
+    // Major frameworks
+    'express': 'expressjs',
+    'koa': 'koajs',
+    'fastify': 'fastify',
+    'next': 'vercel',
+    'nuxt': 'nuxtjs',
+    'gatsby': 'gatsbyjs',
+    // Utilities
+    'lodash': 'lodash',
+    'underscore': 'underscorejs',
+    'moment': 'momentjs',
+    'dayjs': 'dayjs',
+    // Security-related
+    'jsonwebtoken': 'auth0',
+    'passport': 'passportjs',
+    'helmet': 'helmetjs',
+    // Database clients
+    'mongoose': 'mongoosejs',
+    'sequelize': 'sequelizejs',
+    'typeorm': 'typeorm',
+    'prisma': 'prisma',
+    'pg': 'postgresql',
+    'mysql2': 'mysql',
+    'sqlite3': 'sqlite',
+    // Build tools
+    'webpack': 'webpack',
+    'vite': 'vitejs',
+    'esbuild': 'esbuild',
+    'rollup': 'rollupjs',
+    // Testing
+    'jest': 'jestjs',
+    'mocha': 'mochajs',
+    'vitest': 'vitest',
+    // HTTP clients
+    'axios': 'axios',
+    'node-fetch': 'node-fetch',
+    'got': 'sindresorhus',
+    // Template engines
+    'pug': 'pugjs',
+    'ejs': 'ejs',
+    'handlebars': 'handlebarsjs',
+    // Validation
+    'joi': 'hapijs',
+    'yup': 'jquense',
+    'zod': 'colinhacks',
+    // Crypto
+    'bcrypt': 'bcrypt',
+    'argon2': 'argon2',
+    'crypto-js': 'crypto-js',
+};
+/**
+ * Packages that should be searched under 'node.js' vendor
+ */
+const NODEJS_VENDOR_PACKAGES = new Set([
+    'node',
+    'npm',
+    'npx',
+]);
+/**
+ * CPE Matcher for npm packages
+ *
+ * @example
+ * ```typescript
+ * const matcher = new CPEMatcher();
+ *
+ * // Generate CPE from package
+ * const cpe = matcher.generateCPE('express', '4.18.2');
+ * // => 'cpe:2.3:a:expressjs:express:4.18.2:*:*:*:*:node.js:*:*'
+ *
+ * // Check if version is vulnerable
+ * const isVuln = matcher.isVersionVulnerable('4.18.2', {
+ *   versionStart: '4.0.0',
+ *   versionEnd: '4.19.0',
+ *   versionEndExcluding: true
+ * });
+ * ```
+ */
+export class CPEMatcher {
+    vendorMappings;
+    constructor(customMappings) {
+        this.vendorMappings = new Map([
+            ...Object.entries(VENDOR_MAPPINGS),
+            ...Object.entries(customMappings ?? {}),
+        ]);
+    }
+    /**
+     * Generate CPE 2.3 URI for an npm package
+     * @param packageName - npm package name
+     * @param version - Package version
+     * @returns CPE 2.3 formatted URI
+     */
+    generateCPE(packageName, version) {
+        const components = this.packageToCPEComponents(packageName, version);
+        return this.componentsToURI(components);
+    }
+    /**
+     * Convert npm package info to CPE components
+     */
+    packageToCPEComponents(packageName, version) {
+        const normalizedName = this.normalizeName(packageName);
+        const vendor = this.resolveVendor(packageName);
+        return {
+            part: 'a',
+            vendor,
+            product: normalizedName,
+            version: this.normalizeVersion(version),
+            targetSw: 'node.js',
+        };
+    }
+    /**
+     * Convert CPE components to URI string
+     */
+    componentsToURI(components) {
+        const parts = [
+            'cpe:2.3',
+            components.part,
+            this.escapeComponent(components.vendor),
+            this.escapeComponent(components.product),
+            this.escapeComponent(components.version),
+            this.escapeComponent(components.update ?? '*'),
+            this.escapeComponent(components.edition ?? '*'),
+            this.escapeComponent(components.language ?? '*'),
+            this.escapeComponent(components.swEdition ?? '*'),
+            this.escapeComponent(components.targetSw ?? '*'),
+            this.escapeComponent(components.targetHw ?? '*'),
+            this.escapeComponent(components.other ?? '*'),
+        ];
+        return parts.join(':');
+    }
+    /**
+     * Parse CPE 2.3 URI to components
+     */
+    parseURI(cpeUri) {
+        const match = cpeUri.match(/^cpe:2\.3:([aoh]):([^:]+):([^:]+):([^:]+):([^:]*):([^:]*):([^:]*):([^:]*):([^:]*):([^:]*):([^:]*)$/);
+        if (!match) {
+            return null;
+        }
+        return {
+            part: match[1],
+            vendor: this.unescapeComponent(match[2]),
+            product: this.unescapeComponent(match[3]),
+            version: this.unescapeComponent(match[4]),
+            update: match[5] && match[5] !== '*' ? this.unescapeComponent(match[5]) : undefined,
+            edition: match[6] && match[6] !== '*' ? this.unescapeComponent(match[6]) : undefined,
+            language: match[7] && match[7] !== '*' ? this.unescapeComponent(match[7]) : undefined,
+            swEdition: match[8] && match[8] !== '*' ? this.unescapeComponent(match[8]) : undefined,
+            targetSw: match[9] && match[9] !== '*' ? this.unescapeComponent(match[9]) : undefined,
+            targetHw: match[10] && match[10] !== '*' ? this.unescapeComponent(match[10]) : undefined,
+            other: match[11] && match[11] !== '*' ? this.unescapeComponent(match[11]) : undefined,
+        };
+    }
+    /**
+     * Check if a version falls within a vulnerable range
+     * @param version - Version to check
+     * @param range - Version range from CVE data
+     * @returns True if version is within vulnerable range
+     */
+    isVersionVulnerable(version, range) {
+        const normalizedVersion = this.normalizeVersion(version);
+        // Handle "all versions" case
+        if (!range.versionStart && !range.versionEnd) {
+            return true;
+        }
+        const vStart = range.versionStart ? this.normalizeVersion(range.versionStart) : null;
+        const vEnd = range.versionEnd ? this.normalizeVersion(range.versionEnd) : null;
+        // Check start bound
+        if (vStart) {
+            const comparison = this.compareVersions(normalizedVersion, vStart);
+            if (range.versionStartExcluding) {
+                if (comparison <= 0)
+                    return false;
+            }
+            else {
+                if (comparison < 0)
+                    return false;
+            }
+        }
+        // Check end bound
+        if (vEnd) {
+            const comparison = this.compareVersions(normalizedVersion, vEnd);
+            if (range.versionEndExcluding) {
+                if (comparison >= 0)
+                    return false;
+            }
+            else {
+                if (comparison > 0)
+                    return false;
+            }
+        }
+        return true;
+    }
+    /**
+     * Match a package against CPE criteria
+     */
+    matchPackage(packageName, packageVersion, cpeMatch) {
+        const parsed = this.parseURI(cpeMatch.criteria);
+        if (!parsed) {
+            return null;
+        }
+        const normalizedName = this.normalizeName(packageName);
+        const expectedVendors = this.getPossibleVendors(packageName);
+        // Check if product matches
+        const productMatches = parsed.product === normalizedName ||
+            parsed.product === '*' ||
+            parsed.product.includes(normalizedName);
+        // Check if vendor matches
+        const vendorMatches = parsed.vendor === '*' ||
+            expectedVendors.some(v => parsed.vendor === v ||
+                parsed.vendor.includes(v) ||
+                v.includes(parsed.vendor));
+        if (!productMatches || !vendorMatches) {
+            return null;
+        }
+        // Calculate confidence based on match quality
+        let confidence = 0.5;
+        if (parsed.vendor !== '*' && expectedVendors.includes(parsed.vendor)) {
+            confidence += 0.25;
+        }
+        if (parsed.product === normalizedName) {
+            confidence += 0.25;
+        }
+        // Check version range
+        const versionRange = cpeMatch.versionRange;
+        let isVulnerable = cpeMatch.vulnerable;
+        if (versionRange) {
+            isVulnerable = isVulnerable && this.isVersionVulnerable(packageVersion, versionRange);
+        }
+        else if (parsed.version !== '*') {
+            // Exact version match
+            isVulnerable = isVulnerable && this.compareVersions(this.normalizeVersion(packageVersion), this.normalizeVersion(parsed.version)) === 0;
+        }
+        return {
+            packageName,
+            packageVersion,
+            cveId: '', // To be filled by caller
+            cpe: this.generateCPE(packageName, packageVersion),
+            matchCriteria: cpeMatch,
+            isVulnerable,
+            confidence,
+        };
+    }
+    /**
+     * Add a custom vendor mapping
+     */
+    addVendorMapping(packageName, vendor) {
+        this.vendorMappings.set(packageName.toLowerCase(), vendor);
+    }
+    /**
+     * Get the vendor for a package
+     */
+    getVendor(packageName) {
+        return this.resolveVendor(packageName);
+    }
+    /**
+     * Normalize package name for CPE
+     */
+    normalizeName(name) {
+        // Handle scoped packages (@org/package -> package)
+        const unscoped = name.startsWith('@') ? name.split('/')[1] : name;
+        // Convert to lowercase, replace special chars
+        return unscoped
+            .toLowerCase()
+            .replace(/[^a-z0-9]/g, '_')
+            .replace(/_+/g, '_')
+            .replace(/^_|_$/g, '');
+    }
+    /**
+     * Normalize version string
+     */
+    normalizeVersion(version) {
+        // Remove leading 'v' and any pre-release/build metadata for comparison
+        return version
+            .replace(/^v/, '')
+            .replace(/[+-].*$/, '') // Remove pre-release (-beta) and build (+build) metadata
+            .trim();
+    }
+    /**
+     * Resolve vendor for a package
+     */
+    resolveVendor(packageName) {
+        const normalized = packageName.toLowerCase();
+        // Check for scoped packages
+        if (normalized.startsWith('@')) {
+            const [scope] = normalized.slice(1).split('/');
+            // Use scope as vendor (without @)
+            return scope.replace(/[^a-z0-9]/g, '_');
+        }
+        // Check custom mappings
+        if (this.vendorMappings.has(normalized)) {
+            return this.vendorMappings.get(normalized);
+        }
+        // Check Node.js packages
+        if (NODEJS_VENDOR_PACKAGES.has(normalized)) {
+            return 'nodejs';
+        }
+        // Default: use package name as vendor
+        return this.normalizeName(packageName);
+    }
+    /**
+     * Get possible vendor names for a package
+     */
+    getPossibleVendors(packageName) {
+        const vendors = new Set();
+        const normalized = packageName.toLowerCase();
+        // Add resolved vendor
+        vendors.add(this.resolveVendor(packageName));
+        // Add normalized name
+        vendors.add(this.normalizeName(packageName));
+        // Add common variations
+        if (normalized.endsWith('js')) {
+            vendors.add(normalized.slice(0, -2));
+        }
+        if (!normalized.endsWith('js')) {
+            vendors.add(`${normalized}js`);
+        }
+        return Array.from(vendors);
+    }
+    /**
+     * Compare two semver versions
+     * @returns -1 if a < b, 0 if a == b, 1 if a > b
+     */
+    compareVersions(a, b) {
+        const partsA = a.split('.').map(p => parseInt(p, 10) || 0);
+        const partsB = b.split('.').map(p => parseInt(p, 10) || 0);
+        const maxLen = Math.max(partsA.length, partsB.length);
+        for (let i = 0; i < maxLen; i++) {
+            const partA = partsA[i] ?? 0;
+            const partB = partsB[i] ?? 0;
+            if (partA < partB)
+                return -1;
+            if (partA > partB)
+                return 1;
+        }
+        return 0;
+    }
+    /**
+     * Escape special characters in CPE component
+     */
+    escapeComponent(value) {
+        if (value === '*' || value === '-') {
+            return value;
+        }
+        return value
+            .replace(/\\/g, '\\\\')
+            .replace(/\*/g, '\\*')
+            .replace(/\?/g, '\\?');
+    }
+    /**
+     * Unescape CPE component value
+     */
+    unescapeComponent(value) {
+        if (value === '*' || value === '-') {
+            return value;
+        }
+        return value
+            .replace(/\\\\/g, '\\')
+            .replace(/\\\*/g, '*')
+            .replace(/\\\?/g, '?');
+    }
+}
+/**
+ * Create a CPE search query from package info
+ * Generates wildcarded CPE for searching NVD
+ */
+export function createCPESearchQuery(packageName, vendor) {
+    const matcher = new CPEMatcher();
+    const normalizedName = packageName
+        .toLowerCase()
+        .replace(/[^a-z0-9]/g, '_');
+    const resolvedVendor = vendor ?? matcher.getVendor(packageName);
+    return `cpe:2.3:a:${resolvedVendor}:${normalizedName}:*:*:*:*:*:*:*:*`;
+}
+/**
+ * Extract package name from CPE URI
+ */
+export function extractPackageFromCPE(cpeUri) {
+    const matcher = new CPEMatcher();
+    const parsed = matcher.parseURI(cpeUri);
+    return parsed?.product ?? null;
+}
+//# sourceMappingURL=cpe-matcher.js.map

package/dist/cve/cpe-matcher.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"cpe-matcher.js","sourceRoot":"","sources":["../../src/cve/cpe-matcher.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AA+EH;;;GAGG;AACH,MAAM,eAAe,GAA2B;IAC9C,mBAAmB;IACnB,SAAS,EAAE,WAAW;IACtB,KAAK,EAAE,OAAO;IACd,SAAS,EAAE,SAAS;IACpB,MAAM,EAAE,QAAQ;IAChB,MAAM,EAAE,QAAQ;IAChB,QAAQ,EAAE,UAAU;IAEpB,YAAY;IACZ,QAAQ,EAAE,QAAQ;IAClB,YAAY,EAAE,cAAc;IAC5B,QAAQ,EAAE,UAAU;IACpB,OAAO,EAAE,OAAO;IAEhB,mBAAmB;IACnB,cAAc,EAAE,OAAO;IACvB,UAAU,EAAE,YAAY;IACxB,QAAQ,EAAE,UAAU;IAEpB,mBAAmB;IACnB,UAAU,EAAE,YAAY;IACxB,WAAW,EAAE,aAAa;IAC1B,SAAS,EAAE,SAAS;IACpB,QAAQ,EAAE,QAAQ;IAClB,IAAI,EAAE,YAAY;IAClB,QAAQ,EAAE,OAAO;IACjB,SAAS,EAAE,QAAQ;IAEnB,cAAc;IACd,SAAS,EAAE,SAAS;IACpB,MAAM,EAAE,QAAQ;IAChB,SAAS,EAAE,SAAS;IACpB,QAAQ,EAAE,UAAU;IAEpB,UAAU;IACV,MAAM,EAAE,QAAQ;IAChB,OAAO,EAAE,SAAS;IAClB,QAAQ,EAAE,QAAQ;IAElB,eAAe;IACf,OAAO,EAAE,OAAO;IAChB,YAAY,EAAE,YAAY;IAC1B,KAAK,EAAE,cAAc;IAErB,mBAAmB;IACnB,KAAK,EAAE,OAAO;IACd,KAAK,EAAE,KAAK;IACZ,YAAY,EAAE,cAAc;IAE5B,aAAa;IACb,KAAK,EAAE,QAAQ;IACf,KAAK,EAAE,SAAS;IAChB,KAAK,EAAE,YAAY;IAEnB,SAAS;IACT,QAAQ,EAAE,QAAQ;IAClB,QAAQ,EAAE,QAAQ;IAClB,WAAW,EAAE,WAAW;CACzB,CAAC;AAEF;;GAEG;AACH,MAAM,sBAAsB,GAAG,IAAI,GAAG,CAAC;IACrC,MAAM;IACN,KAAK;IACL,KAAK;CACN,CAAC,CAAC;AAEH;;;;;;;;;;;;;;;;;;GAkBG;AACH,MAAM,OAAO,UAAU;IACb,cAAc,CAAsB;IAE5C,YAAY,cAAuC;QACjD,IAAI,CAAC,cAAc,GAAG,IAAI,GAAG,CAAC;YAC5B,GAAG,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC;YAClC,GAAG,MAAM,CAAC,OAAO,CAAC,cAAc,IAAI,EAAE,CAAC;SACxC,CAAC,CAAC;IACL,CAAC;IAED;;;;;OAKG;IACH,WAAW,CAAC,WAAmB,EAAE,OAAe;QAC9C,MAAM,UAAU,GAAG,IAAI,CAAC,sBAAsB,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC;QACrE,OAAO,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,CAAC;IAC1C,CAAC;IAED;;OAEG;IACH,sBAAsB,CAAC,WAAmB,EAAE,OAAe;QACzD,MAAM,cAAc,GAAG,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC;QACvD,MAAM,MAAM,GAAG,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC;QAE/C,OAAO;YACL,IAAI,EAAE,GAAG;YACT,MAAM;YACN,OAAO,EAAE,cAAc;YACvB,OAAO,EAAE,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC;YACvC,QAAQ,EAAE,SAAS;SACpB,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,eAAe,CAAC,UAAyB;QACvC,MAAM,KAAK,GAAG;YACZ,SAAS;YACT,UAAU,CAAC,IAAI;YACf,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,MAAM,CAAC;YACvC,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,OAAO,CAAC;YACxC,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,OAAO,CAAC;YACxC,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,MAAM,IAAI,GAAG,CAAC;YAC9C,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,OAAO,IAAI,GAAG,CAAC;YAC/C,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,QAAQ,IAAI,GAAG,CAAC;YAChD,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,SAAS,IAAI,GAAG,CAAC;YACjD,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,QAAQ,IAAI,GAAG,CAAC;YAChD,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,QAAQ,IAAI,GAAG,CAAC;YAChD,IAAI,CAAC,eAAe,CAAC,UAAU,CAAC,KAAK,IAAI,GAAG,CAAC;SAC9C,CAAC;QAEF,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACzB,CAAC;IAED;;OAEG;IACH,QAAQ,CAAC,MAAc;QACrB,MAAM,KAAK,GAAG,MAAM,CAAC,KAAK,CACxB,oGAAoG,CACrG,CAAC;QAEF,IAAI,CAAC,KAAK,EAAE,CAAC;YACX,OAAO,IAAI,CAAC;QACd,CAAC;QAED,OAAO;YACL,IAAI,EAAE,KAAK,CAAC,CAAC,CAAoB;YACjC,MAAM,EAAE,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YACxC,OAAO,EAAE,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YACzC,OAAO,EAAE,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YACzC,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS;YACnF,OAAO,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS;YACpF,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS;YACrF,SAAS,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS;YACtF,QAAQ,EAAE,KAAK,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,CAAC,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS;YACrF,QAAQ,EAAE,KAAK,CAAC,EAAE,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS;YACxF,KAAK,EAAE,KAAK,CAAC,EAAE,CAAC,IAAI,KAAK,CAAC,EAAE,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS;SACtF,CAAC;IACJ,CAAC;IAED;;;;;OAKG;IACH,mBAAmB,CAAC,OAAe,EAAE,KAAmB;QACtD,MAAM,iBAAiB,GAAG,IAAI,CAAC,gBAAgB,CAAC,OAAO,CAAC,CAAC;QAEzD,6BAA6B;QAC7B,IAAI,CAAC,KAAK,CAAC,YAAY,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;YAC7C,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,MAAM,GAAG,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QACrF,MAAM,IAAI,GAAG,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QAE/E,oBAAoB;QACpB,IAAI,MAAM,EAAE,CAAC;YACX,MAAM,UAAU,GAAG,IAAI,CAAC,eAAe,CAAC,iBAAiB,EAAE,MAAM,CAAC,CAAC;YACnE,IAAI,KAAK,CAAC,qBAAqB,EAAE,CAAC;gBAChC,IAAI,UAAU,IAAI,CAAC;oBAAE,OAAO,KAAK,CAAC;YACpC,CAAC;iBAAM,CAAC;gBACN,IAAI,UAAU,GAAG,CAAC;oBAAE,OAAO,KAAK,CAAC;YACnC,CAAC;QACH,CAAC;QAED,kBAAkB;QAClB,IAAI,IAAI,EAAE,CAAC;YACT,MAAM,UAAU,GAAG,IAAI,CAAC,eAAe,CAAC,iBAAiB,EAAE,IAAI,CAAC,CAAC;YACjE,IAAI,KAAK,CAAC,mBAAmB,EAAE,CAAC;gBAC9B,IAAI,UAAU,IAAI,CAAC;oBAAE,OAAO,KAAK,CAAC;YACpC,CAAC;iBAAM,CAAC;gBACN,IAAI,UAAU,GAAG,CAAC;oBAAE,OAAO,KAAK,CAAC;YACnC,CAAC;QACH,CAAC;QAED,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,YAAY,CACV,WAAmB,EACnB,cAAsB,EACtB,QAAkB;QAElB,MAAM,MAAM,GAAG,IAAI,CAAC,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;QAChD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,cAAc,GAAG,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC;QACvD,MAAM,eAAe,GAAG,IAAI,CAAC,kBAAkB,CAAC,WAAW,CAAC,CAAC;QAE7D,2BAA2B;QAC3B,MAAM,cAAc,GAClB,MAAM,CAAC,OAAO,KAAK,cAAc;YACjC,MAAM,CAAC,OAAO,KAAK,GAAG;YACtB,MAAM,CAAC,OAAO,CAAC,QAAQ,CAAC,cAAc,CAAC,CAAC;QAE1C,0BAA0B;QAC1B,MAAM,aAAa,GACjB,MAAM,CAAC,MAAM,KAAK,GAAG;YACrB,eAAe,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CACvB,MAAM,CAAC,MAAM,KAAK,CAAC;gBACnB,MAAM,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC;gBACzB,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,CAC1B,CAAC;QAEJ,IAAI,CAAC,cAAc,IAAI,CAAC,aAAa,EAAE,CAAC;YACtC,OAAO,IAAI,CAAC;QACd,CAAC;QAED,8CAA8C;QAC9C,IAAI,UAAU,GAAG,GAAG,CAAC;QACrB,IAAI,MAAM,CAAC,MAAM,KAAK,GAAG,IAAI,eAAe,CAAC,QAAQ,CAAC,MAAM,CAAC,MAAM,CAAC,EAAE,CAAC;YACrE,UAAU,IAAI,IAAI,CAAC;QACrB,CAAC;QACD,IAAI,MAAM,CAAC,OAAO,KAAK,cAAc,EAAE,CAAC;YACtC,UAAU,IAAI,IAAI,CAAC;QACrB,CAAC;QAED,sBAAsB;QACtB,MAAM,YAAY,GAA6B,QAAQ,CAAC,YAAY,CAAC;QACrE,IAAI,YAAY,GAAG,QAAQ,CAAC,UAAU,CAAC;QAEvC,IAAI,YAAY,EAAE,CAAC;YACjB,YAAY,GAAG,YAAY,IAAI,IAAI,CAAC,mBAAmB,CAAC,cAAc,EAAE,YAAY,CAAC,CAAC;QACxF,CAAC;aAAM,IAAI,MAAM,CAAC,OAAO,KAAK,GAAG,EAAE,CAAC;YAClC,sBAAsB;YACtB,YAAY,GAAG,YAAY,IAAI,IAAI,CAAC,eAAe,CACjD,IAAI,CAAC,gBAAgB,CAAC,cAAc,CAAC,EACrC,IAAI,CAAC,gBAAgB,CAAC,MAAM,CAAC,OAAO,CAAC,CACtC,KAAK,CAAC,CAAC;QACV,CAAC;QAED,OAAO;YACL,WAAW;YACX,cAAc;YACd,KAAK,EAAE,EAAE,EAAE,yBAAyB;YACpC,GAAG,EAAE,IAAI,CAAC,WAAW,CAAC,WAAW,EAAE,cAAc,CAAC;YAClD,aAAa,EAAE,QAAQ;YACvB,YAAY;YACZ,UAAU;SACX,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,WAAmB,EAAE,MAAc;QAClD,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,WAAW,CAAC,WAAW,EAAE,EAAE,MAAM,CAAC,CAAC;IAC7D,CAAC;IAED;;OAEG;IACH,SAAS,CAAC,WAAmB;QAC3B,OAAO,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC;IACzC,CAAC;IAED;;OAEG;IACK,aAAa,CAAC,IAAY;QAChC,mDAAmD;QACnD,MAAM,QAAQ,GAAG,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;QAElE,8CAA8C;QAC9C,OAAO,QAAQ;aACZ,WAAW,EAAE;aACb,OAAO,CAAC,YAAY,EAAE,GAAG,CAAC;aAC1B,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;aACnB,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IAC3B,CAAC;IAED;;OAEG;IACK,gBAAgB,CAAC,OAAe;QACtC,uEAAuE;QACvE,OAAO,OAAO;aACX,OAAO,CAAC,IAAI,EAAE,EAAE,CAAC;aACjB,OAAO,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC,yDAAyD;aAChF,IAAI,EAAE,CAAC;IACZ,CAAC;IAED;;OAEG;IACK,aAAa,CAAC,WAAmB;QACvC,MAAM,UAAU,GAAG,WAAW,CAAC,WAAW,EAAE,CAAC;QAE7C,4BAA4B;QAC5B,IAAI,UAAU,CAAC,UAAU,CAAC,GAAG,CAAC,EAAE,CAAC;YAC/B,MAAM,CAAC,KAAK,CAAC,GAAG,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC/C,kCAAkC;YAClC,OAAO,KAAK,CAAC,OAAO,CAAC,YAAY,EAAE,GAAG,CAAC,CAAC;QAC1C,CAAC;QAED,wBAAwB;QACxB,IAAI,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;YACxC,OAAO,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,UAAU,CAAE,CAAC;QAC9C,CAAC;QAED,yBAAyB;QACzB,IAAI,sBAAsB,CAAC,GAAG,CAAC,UAAU,CAAC,EAAE,CAAC;YAC3C,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,sCAAsC;QACtC,OAAO,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC;IACzC,CAAC;IAED;;OAEG;IACK,kBAAkB,CAAC,WAAmB;QAC5C,MAAM,OAAO,GAAG,IAAI,GAAG,EAAU,CAAC;QAClC,MAAM,UAAU,GAAG,WAAW,CAAC,WAAW,EAAE,CAAC;QAE7C,sBAAsB;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC,CAAC;QAE7C,sBAAsB;QACtB,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,aAAa,CAAC,WAAW,CAAC,CAAC,CAAC;QAE7C,wBAAwB;QACxB,IAAI,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAC9B,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC;QACvC,CAAC;QACD,IAAI,CAAC,UAAU,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;YAC/B,OAAO,CAAC,GAAG,CAAC,GAAG,UAAU,IAAI,CAAC,CAAC;QACjC,CAAC;QAED,OAAO,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAC7B,CAAC;IAED;;;OAGG;IACH,eAAe,CAAC,CAAS,EAAE,CAAS;QAClC,MAAM,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC;QAC3D,MAAM,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,QAAQ,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC;QAE3D,MAAM,MAAM,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,MAAM,CAAC,CAAC;QAEtD,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAChC,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;YAC7B,MAAM,KAAK,GAAG,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;YAE7B,IAAI,KAAK,GAAG,KAAK;gBAAE,OAAO,CAAC,CAAC,CAAC;YAC7B,IAAI,KAAK,GAAG,KAAK;gBAAE,OAAO,CAAC,CAAC;QAC9B,CAAC;QAED,OAAO,CAAC,CAAC;IACX,CAAC;IAED;;OAEG;IACK,eAAe,CAAC,KAAa;QACnC,IAAI,KAAK,KAAK,GAAG,IAAI,KAAK,KAAK,GAAG,EAAE,CAAC;YACnC,OAAO,KAAK,CAAC;QACf,CAAC;QACD,OAAO,KAAK;aACT,OAAO,CAAC,KAAK,EAAE,MAAM,CAAC;aACtB,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC;aACrB,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;IAC3B,CAAC;IAED;;OAEG;IACK,iBAAiB,CAAC,KAAa;QACrC,IAAI,KAAK,KAAK,GAAG,IAAI,KAAK,KAAK,GAAG,EAAE,CAAC;YACnC,OAAO,KAAK,CAAC;QACf,CAAC;QACD,OAAO,KAAK;aACT,OAAO,CAAC,OAAO,EAAE,IAAI,CAAC;aACtB,OAAO,CAAC,OAAO,EAAE,GAAG,CAAC;aACrB,OAAO,CAAC,OAAO,EAAE,GAAG,CAAC,CAAC;IAC3B,CAAC;CACF;AAED;;;GAGG;AACH,MAAM,UAAU,oBAAoB,CAClC,WAAmB,EACnB,MAAe;IAEf,MAAM,OAAO,GAAG,IAAI,UAAU,EAAE,CAAC;IACjC,MAAM,cAAc,GAAG,WAAW;SAC/B,WAAW,EAAE;SACb,OAAO,CAAC,YAAY,EAAE,GAAG,CAAC,CAAC;IAE9B,MAAM,cAAc,GAAG,MAAM,IAAI,OAAO,CAAC,SAAS,CAAC,WAAW,CAAC,CAAC;IAEhE,OAAO,aAAa,cAAc,IAAI,cAAc,kBAAkB,CAAC;AACzE,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,qBAAqB,CAAC,MAAc;IAClD,MAAM,OAAO,GAAG,IAAI,UAAU,EAAE,CAAC;IACjC,MAAM,MAAM,GAAG,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;IACxC,OAAO,MAAM,EAAE,OAAO,IAAI,IAAI,CAAC;AACjC,CAAC"}

package/dist/cve/cve-cache.d.ts

@@ -0,0 +1,225 @@
+/**
+ * @fileoverview CVE Cache with SQLite storage
+ * @module @nahisaho/musubix-security/cve/cve-cache
+ * @description Provides persistent caching for CVE data to reduce NVD API calls
+ * @requirements REQ-SEC-CVE-002 - Rate limiting and caching for NVD API
+ * @design DES-SEC-CVE-002 - CVE cache with configurable TTL
+ * @task TSK-CVE-007 - SQLite キャッシュ
+ */
+import type { CVE } from '../types/cve.js';
+/**
+ * Cache entry with metadata
+ */
+export interface CacheEntry<T> {
+    /** Cached data */
+    data: T;
+    /** Timestamp when the entry was created */
+    createdAt: number;
+    /** Timestamp when the entry expires */
+    expiresAt: number;
+    /** Optional ETag for conditional requests */
+    etag?: string;
+}
+/**
+ * CVE Cache configuration options
+ */
+export interface CVECacheOptions {
+    /** Path to the SQLite database file */
+    dbPath?: string;
+    /** Default TTL in milliseconds (default: 24 hours) */
+    defaultTTL?: number;
+    /** Maximum number of entries (default: 10000) */
+    maxEntries?: number;
+    /** Enable automatic cleanup (default: true) */
+    autoCleanup?: boolean;
+    /** Cleanup interval in milliseconds (default: 1 hour) */
+    cleanupInterval?: number;
+}
+/**
+ * Cache statistics
+ */
+export interface CacheStats {
+    /** Total number of entries */
+    totalEntries: number;
+    /** Number of expired entries */
+    expiredEntries: number;
+    /** Number of valid entries */
+    validEntries: number;
+    /** Cache hit rate */
+    hitRate: number;
+    /** Total cache size in bytes */
+    sizeBytes: number;
+    /** Oldest entry timestamp */
+    oldestEntry: number | null;
+    /** Newest entry timestamp */
+    newestEntry: number | null;
+}
+/**
+ * CVE Cache implementation using file-based JSON storage
+ * @description Uses JSON files for persistence to avoid native module dependencies
+ */
+export declare class CVECache {
+    private readonly dbPath;
+    private readonly defaultTTL;
+    private readonly maxEntries;
+    private readonly autoCleanup;
+    private readonly cleanupInterval;
+    private cleanupTimer?;
+    private metrics;
+    private cache;
+    /**
+     * Default 24 hours TTL
+     */
+    static readonly DEFAULT_TTL: number;
+    /**
+     * Default maximum entries
+     */
+    static readonly DEFAULT_MAX_ENTRIES = 10000;
+    /**
+     * Default cleanup interval (1 hour)
+     */
+    static readonly DEFAULT_CLEANUP_INTERVAL: number;
+    constructor(options?: CVECacheOptions);
+    /**
+     * Initialize storage directory and file
+     */
+    private initializeStorage;
+    /**
+     * Load cache from disk
+     */
+    private loadFromDisk;
+    /**
+     * Save cache to disk
+     */
+    private saveToDisk;
+    /**
+     * Start automatic cleanup timer
+     */
+    private startCleanupTimer;
+    /**
+     * Stop automatic cleanup timer
+     */
+    private stopCleanupTimer;
+    /**
+     * Generate cache key for CVE ID
+     */
+    private cveKey;
+    /**
+     * Generate cache key for CPE search
+     */
+    private cpeKey;
+    /**
+     * Generate cache key for keyword search
+     */
+    private keywordKey;
+    /**
+     * Get a CVE from cache
+     * @param cveId - CVE identifier (e.g., CVE-2024-12345)
+     * @returns Cached CVE or undefined if not found/expired
+     */
+    getCVE(cveId: string): CVE | undefined;
+    /**
+     * Store a CVE in cache
+     * @param cve - CVE to cache
+     * @param ttl - Optional custom TTL in milliseconds
+     * @param etag - Optional ETag for conditional requests
+     */
+    setCVE(cve: CVE, ttl?: number, etag?: string): void;
+    /**
+     * Get CVEs for a CPE from cache
+     * @param cpeName - CPE name string
+     * @returns Cached CVE array or undefined
+     */
+    getCVEsByCPE(cpeName: string): CVE[] | undefined;
+    /**
+     * Store CVEs for a CPE in cache
+     * @param cpeName - CPE name string
+     * @param cves - Array of CVEs to cache
+     * @param ttl - Optional custom TTL
+     */
+    setCVEsByCPE(cpeName: string, cves: CVE[], ttl?: number): void;
+    /**
+     * Get CVEs for a keyword search from cache
+     * @param keyword - Search keyword
+     * @returns Cached CVE array or undefined
+     */
+    getCVEsByKeyword(keyword: string): CVE[] | undefined;
+    /**
+     * Store CVEs for a keyword search in cache
+     * @param keyword - Search keyword
+     * @param cves - Array of CVEs to cache
+     * @param ttl - Optional custom TTL (shorter recommended for searches)
+     */
+    setCVEsByKeyword(keyword: string, cves: CVE[], ttl?: number): void;
+    /**
+     * Check if a CVE is in cache and not expired
+     * @param cveId - CVE identifier
+     * @returns true if cached and valid
+     */
+    hasCVE(cveId: string): boolean;
+    /**
+     * Delete a CVE from cache
+     * @param cveId - CVE identifier
+     * @returns true if entry was deleted
+     */
+    deleteCVE(cveId: string): boolean;
+    /**
+     * Get cache entry metadata
+     * @param cveId - CVE identifier
+     * @returns Cache entry metadata or undefined
+     */
+    getCVEMetadata(cveId: string): Omit<CacheEntry<unknown>, 'data'> | undefined;
+    /**
+     * Remove expired entries
+     * @returns Number of entries removed
+     */
+    cleanup(): number;
+    /**
+     * Enforce maximum entries limit (LRU eviction)
+     */
+    private enforceMaxEntries;
+    /**
+     * Clear all entries
+     */
+    clear(): void;
+    /**
+     * Get cache statistics
+     */
+    getStats(): CacheStats;
+    /**
+     * Close cache and cleanup resources
+     */
+    close(): void;
+    /**
+     * Batch get multiple CVEs
+     * @param cveIds - Array of CVE identifiers
+     * @returns Map of CVE ID to CVE (only found entries)
+     */
+    getMultipleCVEs(cveIds: string[]): Map<string, CVE>;
+    /**
+     * Batch set multiple CVEs
+     * @param cves - Array of CVEs to cache
+     * @param ttl - Optional custom TTL
+     */
+    setMultipleCVEs(cves: CVE[], ttl?: number): void;
+    /**
+     * Touch a cache entry to extend its TTL
+     * @param cveId - CVE identifier
+     * @param ttl - Optional new TTL
+     * @returns true if entry was touched
+     */
+    touchCVE(cveId: string, ttl?: number): boolean;
+}
+/**
+ * Create a CVE cache with memory-only storage (no persistence)
+ */
+export declare function createMemoryCache(options?: Omit<CVECacheOptions, 'dbPath'>): CVECache;
+/**
+ * Get or create the default cache instance
+ */
+export declare function getDefaultCache(): CVECache;
+/**
+ * Close the default cache instance
+ */
+export declare function closeDefaultCache(): void;
+//# sourceMappingURL=cve-cache.d.ts.map

package/dist/cve/cve-cache.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"cve-cache.d.ts","sourceRoot":"","sources":["../../src/cve/cve-cache.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,OAAO,KAAK,EAAE,GAAG,EAAE,MAAM,iBAAiB,CAAC;AAE3C;;GAEG;AACH,MAAM,WAAW,UAAU,CAAC,CAAC;IAC3B,kBAAkB;IAClB,IAAI,EAAE,CAAC,CAAC;IACR,2CAA2C;IAC3C,SAAS,EAAE,MAAM,CAAC;IAClB,uCAAuC;IACvC,SAAS,EAAE,MAAM,CAAC;IAClB,6CAA6C;IAC7C,IAAI,CAAC,EAAE,MAAM,CAAC;CACf;AAED;;GAEG;AACH,MAAM,WAAW,eAAe;IAC9B,uCAAuC;IACvC,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,sDAAsD;IACtD,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,iDAAiD;IACjD,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,+CAA+C;IAC/C,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,yDAAyD;IACzD,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED;;GAEG;AACH,MAAM,WAAW,UAAU;IACzB,8BAA8B;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,gCAAgC;IAChC,cAAc,EAAE,MAAM,CAAC;IACvB,8BAA8B;IAC9B,YAAY,EAAE,MAAM,CAAC;IACrB,qBAAqB;IACrB,OAAO,EAAE,MAAM,CAAC;IAChB,gCAAgC;IAChC,SAAS,EAAE,MAAM,CAAC;IAClB,6BAA6B;IAC7B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;IAC3B,6BAA6B;IAC7B,WAAW,EAAE,MAAM,GAAG,IAAI,CAAC;CAC5B;AAUD;;;GAGG;AACH,qBAAa,QAAQ;IACnB,OAAO,CAAC,QAAQ,CAAC,MAAM,CAAS;IAChC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAS;IACpC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAAS;IACpC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAU;IACtC,OAAO,CAAC,QAAQ,CAAC,eAAe,CAAS;IACzC,OAAO,CAAC,YAAY,CAAC,CAAiC;IACtD,OAAO,CAAC,OAAO,CAAwC;IAGvD,OAAO,CAAC,KAAK,CAA+C;IAE5D;;OAEG;IACH,MAAM,CAAC,QAAQ,CAAC,WAAW,SAAuB;IAElD;;OAEG;IACH,MAAM,CAAC,QAAQ,CAAC,mBAAmB,SAAS;IAE5C;;OAEG;IACH,MAAM,CAAC,QAAQ,CAAC,wBAAwB,SAAkB;gBAE9C,OAAO,GAAE,eAAoB;IAezC;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAUzB;;OAEG;IACH,OAAO,CAAC,YAAY;IAUpB;;OAEG;IACH,OAAO,CAAC,UAAU;IASlB;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAWzB;;OAEG;IACH,OAAO,CAAC,gBAAgB;IAOxB;;OAEG;IACH,OAAO,CAAC,MAAM;IAId;;OAEG;IACH,OAAO,CAAC,MAAM;IAId;;OAEG;IACH,OAAO,CAAC,UAAU;IAIlB;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,GAAG,GAAG,SAAS;IAmBtC;;;;;OAKG;IACH,MAAM,CAAC,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,EAAE,MAAM,EAAE,IAAI,CAAC,EAAE,MAAM,GAAG,IAAI;IAenD;;;;OAIG;IACH,YAAY,CAAC,OAAO,EAAE,MAAM,GAAG,GAAG,EAAE,GAAG,SAAS;IAmBhD;;;;;OAKG;IACH,YAAY,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,EAAE,EAAE,GAAG,CAAC,EAAE,MAAM,GAAG,IAAI;IAc9D;;;;OAIG;IACH,gBAAgB,CAAC,OAAO,EAAE,MAAM,GAAG,GAAG,EAAE,GAAG,SAAS;IAmBpD;;;;;OAKG;IACH,gBAAgB,CAAC,OAAO,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,EAAE,EAAE,GAAG,CAAC,EAAE,MAAM,GAAG,IAAI;IAgBlE;;;;OAIG;IACH,MAAM,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO;IAO9B;;;;OAIG;IACH,SAAS,CAAC,KAAK,EAAE,MAAM,GAAG,OAAO;IASjC;;;;OAIG;IACH,cAAc,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI,CAAC,UAAU,CAAC,OAAO,CAAC,EAAE,MAAM,CAAC,GAAG,SAAS;IAY5E;;;OAGG;IACH,OAAO,IAAI,MAAM;IAiBjB;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAazB;;OAEG;IACH,KAAK,IAAI,IAAI;IAMb;;OAEG;IACH,QAAQ,IAAI,UAAU;IAwCtB;;OAEG;IACH,KAAK,IAAI,IAAI;IAKb;;;;OAIG;IACH,eAAe,CAAC,MAAM,EAAE,MAAM,EAAE,GAAG,GAAG,CAAC,MAAM,EAAE,GAAG,CAAC;IAWnD;;;;OAIG;IACH,eAAe,CAAC,IAAI,EAAE,GAAG,EAAE,EAAE,GAAG,CAAC,EAAE,MAAM,GAAG,IAAI;IAehD;;;;;OAKG;IACH,QAAQ,CAAC,KAAK,EAAE,MAAM,EAAE,GAAG,CAAC,EAAE,MAAM,GAAG,OAAO;CAS/C;AAED;;GAEG;AACH,wBAAgB,iBAAiB,CAAC,OAAO,CAAC,EAAE,IAAI,CAAC,eAAe,EAAE,QAAQ,CAAC,GAAG,QAAQ,CAOrF;AAOD;;GAEG;AACH,wBAAgB,eAAe,IAAI,QAAQ,CAK1C;AAED;;GAEG;AACH,wBAAgB,iBAAiB,IAAI,IAAI,CAKxC"}