@nobulex/sdk 0.1.0

package/dist/index.d.ts

@@ -0,0 +1,384 @@
+/**
+ * @nobulex/sdk -- High-level TypeScript SDK that unifies the entire Stele protocol.
+ *
+ * Provides a single entry point (SteleClient) for key management, covenant
+ * lifecycle, identity management, chain operations, and CCL utilities.
+ *
+ * @packageDocumentation
+ */
+import { KeyManager } from '@nobulex/crypto';
+import type { KeyPair } from '@nobulex/crypto';
+import type { CovenantDocument, VerificationResult, Issuer, Beneficiary, PartyRole } from '@nobulex/core';
+import type { CCLDocument, EvaluationContext } from '@nobulex/ccl';
+import type { AgentIdentity } from '@nobulex/identity';
+import type { SteleClientOptions, CreateCovenantOptions, EvaluationResult, CreateIdentityOptions, EvolveOptions, ChainValidationResult, SteleEventType, SteleEventHandler } from './types.js';
+export { runConformanceSuite, cryptoConformance, cclConformance, covenantConformance, interopConformance, } from './conformance.js';
+export type { ConformanceResult, ConformanceFailure, ConformanceTarget, } from './conformance.js';
+export { MiddlewarePipeline, loggingMiddleware, validationMiddleware, timingMiddleware, rateLimitMiddleware } from './middleware.js';
+export type { MiddlewareContext, MiddlewareResult, MiddlewareFn, SteleMiddleware } from './middleware.js';
+export * from './plugins/index.js';
+export { telemetryMiddleware, SteleMetrics, NoopTracer, NoopMeter, NoopSpan, NoopCounter, NoopHistogram, createTelemetry, SpanStatusCode, } from './telemetry.js';
+export type { Span, Tracer, Meter, Counter, Histogram, TelemetryMiddlewareOptions, CreateTelemetryOptions, EventSource, } from './telemetry.js';
+export type { SteleClientOptions, CreateCovenantOptions, EvaluationResult, CreateIdentityOptions, EvolveOptions, ChainValidationResult, NarrowingViolationEntry, SteleEventType, SteleEventMap, SteleEventHandler, CovenantCreatedEvent, CovenantVerifiedEvent, CovenantCountersignedEvent, IdentityCreatedEvent, IdentityEvolvedEvent, ChainResolvedEvent, ChainValidatedEvent, EvaluationCompletedEvent, KeyRotatedEvent, SteleEvent, } from './types.js';
+export type { CovenantDocument, CovenantBuilderOptions, VerificationResult, VerificationCheck, Issuer, Beneficiary, Party, ChainReference, EnforcementConfig, ProofConfig, RevocationConfig, CovenantMetadata, Obligation, PartyRole, Countersignature, ChainRelation, EnforcementType, ProofType, RevocationMethod, Severity, } from '@nobulex/core';
+export { PROTOCOL_VERSION, MAX_CONSTRAINTS, MAX_CHAIN_DEPTH, MAX_DOCUMENT_SIZE, CovenantBuildError, CovenantVerificationError, MemoryChainResolver, canonicalForm, computeId, buildCovenant, verifyCovenant as verifyCovenant_core, countersignCovenant, resignCovenant, serializeCovenant, deserializeCovenant, resolveChain as resolveChain_core, computeEffectiveConstraints, validateChainNarrowing, } from '@nobulex/core';
+export type { ChainResolver } from '@nobulex/core';
+export type { KeyPair, HashHex, Base64Url, PrivateKey, PublicKey, Signature, DetachedSignature, Nonce, KeyRotationPolicy, ManagedKeyPair, } from '@nobulex/crypto';
+export { generateKeyPair, sign, signString, verify, sha256, sha256String, sha256Object, canonicalizeJson, toHex, fromHex, base64urlEncode, base64urlDecode, generateNonce, generateId, constantTimeEqual, timestamp, keyPairFromPrivateKey, keyPairFromPrivateKeyHex, KeyManager, } from '@nobulex/crypto';
+export type { CCLDocument, EvaluationContext, EvaluationResult as CCLEvaluationResult, Statement, PermitDenyStatement, RequireStatement, LimitStatement, Condition, CompoundCondition, NarrowingViolation, } from '@nobulex/ccl';
+export { parse as parseCCL, evaluate as evaluateCCL, matchAction, matchResource, specificity, evaluateCondition, checkRateLimit, merge as mergeCCL, validateNarrowing, serialize as serializeCCL, validateCCL, tokenize, parseTokens, CCLSyntaxError, CCLValidationError, } from '@nobulex/ccl';
+export type { AgentIdentity, ModelAttestation, DeploymentContext, LineageEntry, EvolutionPolicy, CreateIdentityOptions as CoreCreateIdentityOptions, EvolveIdentityOptions as CoreEvolveIdentityOptions, RuntimeType, } from '@nobulex/identity';
+export { createIdentity as createIdentity_core, evolveIdentity as evolveIdentity_core, verifyIdentity, computeCapabilityManifestHash, computeIdentityHash, computeCarryForward, getLineage, shareAncestor, serializeIdentity, deserializeIdentity, DEFAULT_EVOLUTION_POLICY, } from '@nobulex/identity';
+/**
+ * The main entry point for the Stele SDK.
+ *
+ * Provides a unified, high-level API for the entire Stele protocol:
+ * key management, covenant lifecycle, identity management, chain
+ * operations, and CCL utilities.
+ *
+ * @example
+ * ```typescript
+ * const client = new SteleClient();
+ * await client.generateKeyPair();
+ *
+ * const doc = await client.createCovenant({
+ *   issuer: { id: 'alice', publicKey: client.keyPair!.publicKeyHex, role: 'issuer' },
+ *   beneficiary: { id: 'bob', publicKey: bobPubHex, role: 'beneficiary' },
+ *   constraints: "permit read on '/data/**'",
+ * });
+ *
+ * const result = await client.verifyCovenant(doc);
+ * console.log(result.valid); // true
+ * ```
+ */
+export declare class SteleClient {
+    private _keyPair;
+    private readonly _agentId;
+    private readonly _strictMode;
+    private readonly _listeners;
+    private _keyManager;
+    constructor(options?: SteleClientOptions);
+    /** The currently configured key pair, if any. */
+    get keyPair(): KeyPair | undefined;
+    /** The currently configured agent ID, if any. */
+    get agentId(): string | undefined;
+    /** Whether strict mode is enabled. */
+    get strictMode(): boolean;
+    /** Get the key manager instance, if key rotation is configured. */
+    get keyManager(): KeyManager | undefined;
+    /**
+     * Generate a new Ed25519 key pair and set it as the client's active key pair.
+     *
+     * Subsequent operations (createCovenant, countersign, etc.) will use this
+     * key pair automatically unless overridden per-call.
+     *
+     * If key rotation is configured and initialized, returns the current
+     * managed key pair instead of generating a new one.
+     *
+     * @returns The generated key pair.
+     *
+     * @example
+     * ```typescript
+     * const kp = await client.generateKeyPair();
+     * console.log(kp.publicKeyHex); // 64-char hex
+     * ```
+     */
+    generateKeyPair(): Promise<KeyPair>;
+    /**
+     * Initialize key rotation. Generates the first key and starts lifecycle management.
+     *
+     * Requires that the client was constructed with a `keyRotation` policy.
+     * After initialization, the managed key becomes the client's active key pair.
+     *
+     * @throws {Error} When key rotation is not configured.
+     */
+    initializeKeyRotation(): Promise<void>;
+    /**
+     * Check if the current key needs rotation and rotate if necessary.
+     *
+     * If the key manager determines that the current key has exceeded its
+     * maximum age, a new key is generated and the old key enters the overlap
+     * period. Emits a `key:rotated` event on rotation.
+     *
+     * @returns `true` if rotation occurred, `false` otherwise.
+     * @throws {Error} When key rotation is not configured.
+     */
+    rotateKeyIfNeeded(): Promise<boolean>;
+    /**
+     * Create a new, signed covenant document.
+     *
+     * If `options.privateKey` is not provided, the client's key pair is used.
+     * Emits a `covenant:created` event on success.
+     *
+     * @param options - Covenant creation options including parties and constraints.
+     * @returns A complete, signed CovenantDocument.
+     * @throws {CovenantBuildError} When validation of inputs or CCL parsing fails.
+     * @throws {Error} When no private key is available.
+     *
+     * @example
+     * ```typescript
+     * const doc = await client.createCovenant({
+     *   issuer: { id: 'alice', publicKey: pubHex, role: 'issuer' },
+     *   beneficiary: { id: 'bob', publicKey: bobHex, role: 'beneficiary' },
+     *   constraints: "permit read on '/data/**'",
+     * });
+     * ```
+     */
+    createCovenant(options: CreateCovenantOptions): Promise<CovenantDocument>;
+    /**
+     * Verify a covenant document by running all specification checks.
+     *
+     * Checks include signature validity, ID integrity, protocol version,
+     * party roles, expiry, and constraint syntax. In strict mode, throws
+     * `CovenantVerificationError` on failure. Emits a `covenant:verified` event.
+     *
+     * @param doc - The covenant document to verify.
+     * @returns A VerificationResult with `valid` and detailed `checks` array.
+     * @throws {CovenantVerificationError} In strict mode when verification fails.
+     *
+     * @example
+     * ```typescript
+     * const result = await client.verifyCovenant(doc);
+     * if (!result.valid) {
+     *   console.log(result.checks.filter(c => !c.passed));
+     * }
+     * ```
+     */
+    verifyCovenant(doc: CovenantDocument): Promise<VerificationResult>;
+    /**
+     * Add a countersignature to a covenant document.
+     *
+     * If no key pair is provided, the client's key pair is used.
+     * Emits a `covenant:countersigned` event on success. Returns a
+     * new document; the original is not mutated.
+     *
+     * @param doc - The covenant document to countersign.
+     * @param signerRole - Role of the countersigner (default: `'auditor'`).
+     * @param signerKeyPair - Optional key pair override.
+     * @returns A new CovenantDocument with the countersignature appended.
+     * @throws {Error} When no key pair is available.
+     *
+     * @example
+     * ```typescript
+     * const audited = await client.countersign(doc, 'auditor');
+     * ```
+     */
+    countersign(doc: CovenantDocument, signerRole?: PartyRole, signerKeyPair?: KeyPair): Promise<CovenantDocument>;
+    /**
+     * Evaluate an action/resource pair against a covenant's CCL constraints.
+     *
+     * Parses the covenant's constraints and runs the CCL evaluator.
+     * Uses default-deny semantics: if no rules match, the result is
+     * `permitted: false`. Emits an `evaluation:completed` event.
+     *
+     * @param doc - The covenant document containing CCL constraints.
+     * @param action - The action to evaluate (e.g. `"read"`, `"api.call"`).
+     * @param resource - The target resource (e.g. `"/data/users"`).
+     * @param context - Optional evaluation context for condition checking.
+     * @returns An EvaluationResult with the access decision.
+     *
+     * @example
+     * ```typescript
+     * const result = await client.evaluateAction(doc, 'read', '/data/users');
+     * console.log(result.permitted); // true or false
+     * ```
+     */
+    evaluateAction(doc: CovenantDocument, action: string, resource: string, context?: EvaluationContext): Promise<EvaluationResult>;
+    /**
+     * Create a new agent identity.
+     *
+     * If `options.operatorKeyPair` is not provided, the client's key pair is used.
+     * Emits an `identity:created` event on success.
+     *
+     * @param options - Identity creation options including model and capabilities.
+     * @returns A signed AgentIdentity object.
+     * @throws {Error} When no key pair is available.
+     *
+     * @example
+     * ```typescript
+     * const identity = await client.createIdentity({
+     *   model: { provider: 'anthropic', modelId: 'claude-3' },
+     *   capabilities: ['read', 'write'],
+     *   deployment: { runtime: 'container' },
+     * });
+     * ```
+     */
+    createIdentity(options: CreateIdentityOptions): Promise<AgentIdentity>;
+    /**
+     * Evolve an existing agent identity with updates.
+     *
+     * Creates a new lineage entry recording the change. If
+     * `options.operatorKeyPair` is not provided, the client's key pair
+     * is used. Emits an `identity:evolved` event on success.
+     *
+     * @param identity - The current agent identity to evolve.
+     * @param options - Evolution options describing the change.
+     * @returns The updated AgentIdentity with a new lineage entry.
+     * @throws {Error} When no key pair is available.
+     *
+     * @example
+     * ```typescript
+     * const evolved = await client.evolveIdentity(identity, {
+     *   changeType: 'model_update',
+     *   description: 'Upgraded to v2',
+     *   updates: { model: { provider: 'anthropic', modelId: 'claude-4' } },
+     * });
+     * ```
+     */
+    evolveIdentity(identity: AgentIdentity, options: EvolveOptions): Promise<AgentIdentity>;
+    /**
+     * Resolve the ancestor chain of a covenant document.
+     *
+     * Uses a MemoryChainResolver seeded with the provided documents.
+     * If no additional documents are provided, only the document's
+     * immediate chain reference is followed.
+     * Emits a `chain:resolved` event.
+     *
+     * @param doc - The covenant document whose chain to resolve.
+     * @param knownDocuments - Optional array of documents that may be ancestors.
+     * @returns An array of ancestor documents, parent-first.
+     *
+     * @example
+     * ```typescript
+     * const ancestors = await client.resolveChain(childDoc, [parentDoc]);
+     * ```
+     */
+    resolveChain(doc: CovenantDocument, knownDocuments?: CovenantDocument[]): Promise<CovenantDocument[]>;
+    /**
+     * Validate a chain of covenant documents.
+     *
+     * Verifies each document individually and checks that each child
+     * only narrows (restricts) its parent's constraints. Documents
+     * should be ordered from root (index 0) to leaf (last index).
+     * Emits a `chain:validated` event.
+     *
+     * @param docs - The chain of documents, ordered root-first.
+     * @returns A ChainValidationResult with per-document and narrowing results.
+     *
+     * @example
+     * ```typescript
+     * const result = await client.validateChain([rootDoc, childDoc]);
+     * console.log(result.valid); // true if all docs valid and narrowing holds
+     * ```
+     */
+    validateChain(docs: CovenantDocument[]): Promise<ChainValidationResult>;
+    /**
+     * Parse CCL source text into a CCLDocument.
+     *
+     * @param source - CCL source text.
+     * @returns A parsed CCLDocument.
+     * @throws {CCLSyntaxError} When the source has syntax errors.
+     *
+     * @example
+     * ```typescript
+     * const cclDoc = client.parseCCL("permit read on '/data/**'");
+     * ```
+     */
+    parseCCL(source: string): CCLDocument;
+    /**
+     * Merge two CCL documents using deny-wins semantics.
+     *
+     * @param a - The first (parent) CCL document.
+     * @param b - The second (child) CCL document.
+     * @returns A new merged CCLDocument.
+     */
+    mergeCCL(a: CCLDocument, b: CCLDocument): CCLDocument;
+    /**
+     * Serialize a CCLDocument back to human-readable CCL source text.
+     *
+     * @param doc - The CCL document to serialize.
+     * @returns Multi-line CCL source string.
+     */
+    serializeCCL(doc: CCLDocument): string;
+    /**
+     * Register an event handler for a specific event type.
+     *
+     * @param event - The event type to listen for.
+     * @param handler - The callback function.
+     * @returns A disposal function that removes the handler when called.
+     *
+     * @example
+     * ```typescript
+     * const off = client.on('covenant:created', (e) => {
+     *   console.log('Created:', e.document.id);
+     * });
+     * // later: off() to unsubscribe
+     * ```
+     */
+    on<T extends SteleEventType>(event: T, handler: SteleEventHandler<T>): () => void;
+    /**
+     * Remove a previously registered event handler.
+     *
+     * @param event - The event type.
+     * @param handler - The handler function to remove.
+     */
+    off<T extends SteleEventType>(event: T, handler: SteleEventHandler<T>): void;
+    /**
+     * Remove all event handlers for a specific event type, or all events if
+     * no type is specified.
+     *
+     * @param event - Optional event type. If omitted, removes all handlers.
+     */
+    removeAllListeners(event?: SteleEventType): void;
+    /** Emit an event to all registered handlers. */
+    private _emit;
+}
+/**
+ * Convenience builders for creating common covenant patterns quickly.
+ *
+ * These produce CovenantDocument instances with minimal configuration.
+ * All methods require an issuer key pair, issuer party, and beneficiary party.
+ */
+export declare class QuickCovenant {
+    /**
+     * Create a simple permit covenant that allows a specific action on a resource.
+     *
+     * @param action - The action to permit (e.g., `"read"`, `"file.read"`).
+     * @param resource - The resource to permit on (e.g., `"/data"`, `"/files/**"`).
+     * @param issuer - The issuing party.
+     * @param beneficiary - The beneficiary party.
+     * @param privateKey - Issuer's private key for signing.
+     * @returns A signed CovenantDocument with a single permit rule.
+     *
+     * @example
+     * ```typescript
+     * const doc = await QuickCovenant.permit('read', '/data/**', issuer, beneficiary, kp.privateKey);
+     * ```
+     */
+    static permit(action: string, resource: string, issuer: Issuer, beneficiary: Beneficiary, privateKey: Uint8Array): Promise<CovenantDocument>;
+    /**
+     * Create a simple deny covenant that denies a specific action on a resource.
+     *
+     * @param action - The action to deny.
+     * @param resource - The resource to deny on.
+     * @param issuer - The issuing party.
+     * @param beneficiary - The beneficiary party.
+     * @param privateKey - Issuer's private key for signing.
+     * @returns A signed CovenantDocument with a single deny rule.
+     *
+     * @example
+     * ```typescript
+     * const doc = await QuickCovenant.deny('delete', '/system/**', issuer, beneficiary, kp.privateKey);
+     * ```
+     */
+    static deny(action: string, resource: string, issuer: Issuer, beneficiary: Beneficiary, privateKey: Uint8Array): Promise<CovenantDocument>;
+    /**
+     * Create a standard covenant with common constraints:
+     * - Permits read on all resources
+     * - Denies write on system resources
+     * - Limits API calls to 1000 per 1 hour
+     *
+     * @param issuer - The issuing party.
+     * @param beneficiary - The beneficiary party.
+     * @param privateKey - Issuer's private key for signing.
+     * @returns A signed CovenantDocument with standard constraints.
+     *
+     * @example
+     * ```typescript
+     * const doc = await QuickCovenant.standard(issuer, beneficiary, kp.privateKey);
+     * ```
+     */
+    static standard(issuer: Issuer, beneficiary: Beneficiary, privateKey: Uint8Array): Promise<CovenantDocument>;
+}
+export * from './adapters/index.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAIH,OAAO,EAGL,UAAU,EACX,MAAM,iBAAiB,CAAC;AACzB,OAAO,KAAK,EAAE,OAAO,EAAqC,MAAM,iBAAiB,CAAC;AAsBlF,OAAO,KAAK,EACV,gBAAgB,EAChB,kBAAkB,EAElB,MAAM,EACN,WAAW,EACX,SAAS,EACV,MAAM,eAAe,CAAC;AAYvB,OAAO,KAAK,EAAE,WAAW,EAAE,iBAAiB,EAAE,MAAM,cAAc,CAAC;AAOnE,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,mBAAmB,CAAC;AAEvD,OAAO,KAAK,EACV,kBAAkB,EAClB,qBAAqB,EACrB,gBAAgB,EAChB,qBAAqB,EACrB,aAAa,EACb,qBAAqB,EAErB,cAAc,EAEd,iBAAiB,EAClB,MAAM,YAAY,CAAC;AAKpB,OAAO,EACL,mBAAmB,EACnB,iBAAiB,EACjB,cAAc,EACd,mBAAmB,EACnB,kBAAkB,GACnB,MAAM,kBAAkB,CAAC;AAC1B,YAAY,EACV,iBAAiB,EACjB,kBAAkB,EAClB,iBAAiB,GAClB,MAAM,kBAAkB,CAAC;AAG1B,OAAO,EAAE,kBAAkB,EAAE,iBAAiB,EAAE,oBAAoB,EAAE,gBAAgB,EAAE,mBAAmB,EAAE,MAAM,iBAAiB,CAAC;AACrI,YAAY,EAAE,iBAAiB,EAAE,gBAAgB,EAAE,YAAY,EAAE,eAAe,EAAE,MAAM,iBAAiB,CAAC;AAG1G,cAAc,oBAAoB,CAAC;AAGnC,OAAO,EACL,mBAAmB,EACnB,YAAY,EACZ,UAAU,EACV,SAAS,EACT,QAAQ,EACR,WAAW,EACX,aAAa,EACb,eAAe,EACf,cAAc,GACf,MAAM,gBAAgB,CAAC;AACxB,YAAY,EACV,IAAI,EACJ,MAAM,EACN,KAAK,EACL,OAAO,EACP,SAAS,EACT,0BAA0B,EAC1B,sBAAsB,EACtB,WAAW,GACZ,MAAM,gBAAgB,CAAC;AAGxB,YAAY,EACV,kBAAkB,EAClB,qBAAqB,EACrB,gBAAgB,EAChB,qBAAqB,EACrB,aAAa,EACb,qBAAqB,EACrB,uBAAuB,EACvB,cAAc,EACd,aAAa,EACb,iBAAiB,EACjB,oBAAoB,EACpB,qBAAqB,EACrB,0BAA0B,EAC1B,oBAAoB,EACpB,oBAAoB,EACpB,kBAAkB,EAClB,mBAAmB,EACnB,wBAAwB,EACxB,eAAe,EACf,UAAU,GACX,MAAM,YAAY,CAAC;AAGpB,YAAY,EACV,gBAAgB,EAChB,sBAAsB,EACtB,kBAAkB,EAClB,iBAAiB,EACjB,MAAM,EACN,WAAW,EACX,KAAK,EACL,cAAc,EACd,iBAAiB,EACjB,WAAW,EACX,gBAAgB,EAChB,gBAAgB,EAChB,UAAU,EACV,SAAS,EACT,gBAAgB,EAChB,aAAa,EACb,eAAe,EACf,SAAS,EACT,gBAAgB,EAChB,QAAQ,GACT,MAAM,eAAe,CAAC;AAEvB,OAAO,EACL,gBAAgB,EAChB,eAAe,EACf,eAAe,EACf,iBAAiB,EACjB,kBAAkB,EAClB,yBAAyB,EACzB,mBAAmB,EACnB,aAAa,EACb,SAAS,EACT,aAAa,EACb,cAAc,IAAI,mBAAmB,EACrC,mBAAmB,EACnB,cAAc,EACd,iBAAiB,EACjB,mBAAmB,EACnB,YAAY,IAAI,iBAAiB,EACjC,2BAA2B,EAC3B,sBAAsB,GACvB,MAAM,eAAe,CAAC;AAEvB,YAAY,EAAE,aAAa,EAAE,MAAM,eAAe,CAAC;AAGnD,YAAY,EACV,OAAO,EACP,OAAO,EACP,SAAS,EACT,UAAU,EACV,SAAS,EACT,SAAS,EACT,iBAAiB,EACjB,KAAK,EACL,iBAAiB,EACjB,cAAc,GACf,MAAM,iBAAiB,CAAC;AAEzB,OAAO,EACL,eAAe,EACf,IAAI,EACJ,UAAU,EACV,MAAM,EACN,MAAM,EACN,YAAY,EACZ,YAAY,EACZ,gBAAgB,EAChB,KAAK,EACL,OAAO,EACP,eAAe,EACf,eAAe,EACf,aAAa,EACb,UAAU,EACV,iBAAiB,EACjB,SAAS,EACT,qBAAqB,EACrB,wBAAwB,EACxB,UAAU,GACX,MAAM,iBAAiB,CAAC;AAGzB,YAAY,EACV,WAAW,EACX,iBAAiB,EACjB,gBAAgB,IAAI,mBAAmB,EACvC,SAAS,EACT,mBAAmB,EACnB,gBAAgB,EAChB,cAAc,EACd,SAAS,EACT,iBAAiB,EACjB,kBAAkB,GACnB,MAAM,cAAc,CAAC;AAEtB,OAAO,EACL,KAAK,IAAI,QAAQ,EACjB,QAAQ,IAAI,WAAW,EACvB,WAAW,EACX,aAAa,EACb,WAAW,EACX,iBAAiB,EACjB,cAAc,EACd,KAAK,IAAI,QAAQ,EACjB,iBAAiB,EACjB,SAAS,IAAI,YAAY,EACzB,WAAW,EACX,QAAQ,EACR,WAAW,EACX,cAAc,EACd,kBAAkB,GACnB,MAAM,cAAc,CAAC;AAGtB,YAAY,EACV,aAAa,EACb,gBAAgB,EAChB,iBAAiB,EACjB,YAAY,EACZ,eAAe,EACf,qBAAqB,IAAI,yBAAyB,EAClD,qBAAqB,IAAI,yBAAyB,EAClD,WAAW,GACZ,MAAM,mBAAmB,CAAC;AAE3B,OAAO,EACL,cAAc,IAAI,mBAAmB,EACrC,cAAc,IAAI,mBAAmB,EACrC,cAAc,EACd,6BAA6B,EAC7B,mBAAmB,EACnB,mBAAmB,EACnB,UAAU,EACV,aAAa,EACb,iBAAiB,EACjB,mBAAmB,EACnB,wBAAwB,GACzB,MAAM,mBAAmB,CAAC;AAI3B;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,qBAAa,WAAW;IACtB,OAAO,CAAC,QAAQ,CAAsB;IACtC,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAqB;IAC9C,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAU;IACtC,OAAO,CAAC,QAAQ,CAAC,UAAU,CAA8D;IACzF,OAAO,CAAC,WAAW,CAAyB;gBAEhC,OAAO,GAAE,kBAAuB;IAiB5C,iDAAiD;IACjD,IAAI,OAAO,IAAI,OAAO,GAAG,SAAS,CAEjC;IAED,iDAAiD;IACjD,IAAI,OAAO,IAAI,MAAM,GAAG,SAAS,CAEhC;IAED,sCAAsC;IACtC,IAAI,UAAU,IAAI,OAAO,CAExB;IAED,mEAAmE;IACnE,IAAI,UAAU,IAAI,UAAU,GAAG,SAAS,CAEvC;IAID;;;;;;;;;;;;;;;;OAgBG;IACG,eAAe,IAAI,OAAO,CAAC,OAAO,CAAC;IAezC;;;;;;;OAOG;IACG,qBAAqB,IAAI,OAAO,CAAC,IAAI,CAAC;IAU5C;;;;;;;;;OASG;IACG,iBAAiB,IAAI,OAAO,CAAC,OAAO,CAAC;IA0B3C;;;;;;;;;;;;;;;;;;;OAmBG;IACG,cAAc,CAAC,OAAO,EAAE,qBAAqB,GAAG,OAAO,CAAC,gBAAgB,CAAC;IA4D/E;;;;;;;;;;;;;;;;;;OAkBG;IACG,cAAc,CAAC,GAAG,EAAE,gBAAgB,GAAG,OAAO,CAAC,kBAAkB,CAAC;IAmBxE;;;;;;;;;;;;;;;;;OAiBG;IACG,WAAW,CACf,GAAG,EAAE,gBAAgB,EACrB,UAAU,GAAE,SAAqB,EACjC,aAAa,CAAC,EAAE,OAAO,GACtB,OAAO,CAAC,gBAAgB,CAAC;IA6B5B;;;;;;;;;;;;;;;;;;OAkBG;IACG,cAAc,CAClB,GAAG,EAAE,gBAAgB,EACrB,MAAM,EAAE,MAAM,EACd,QAAQ,EAAE,MAAM,EAChB,OAAO,CAAC,EAAE,iBAAiB,GAC1B,OAAO,CAAC,gBAAgB,CAAC;IAoC5B;;;;;;;;;;;;;;;;;;OAkBG;IACG,cAAc,CAAC,OAAO,EAAE,qBAAqB,GAAG,OAAO,CAAC,aAAa,CAAC;IAyB5E;;;;;;;;;;;;;;;;;;;;OAoBG;IACG,cAAc,CAClB,QAAQ,EAAE,aAAa,EACvB,OAAO,EAAE,aAAa,GACrB,OAAO,CAAC,aAAa,CAAC;IA4BzB;;;;;;;;;;;;;;;;OAgBG;IACG,YAAY,CAChB,GAAG,EAAE,gBAAgB,EACrB,cAAc,CAAC,EAAE,gBAAgB,EAAE,GAClC,OAAO,CAAC,gBAAgB,EAAE,CAAC;IAqB9B;;;;;;;;;;;;;;;;OAgBG;IACG,aAAa,CAAC,IAAI,EAAE,gBAAgB,EAAE,GAAG,OAAO,CAAC,qBAAqB,CAAC;IA6C7E;;;;;;;;;;;OAWG;IACH,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,WAAW;IAIrC;;;;;;OAMG;IACH,QAAQ,CAAC,CAAC,EAAE,WAAW,EAAE,CAAC,EAAE,WAAW,GAAG,WAAW;IAIrD;;;;;OAKG;IACH,YAAY,CAAC,GAAG,EAAE,WAAW,GAAG,MAAM;IAMtC;;;;;;;;;;;;;;OAcG;IACH,EAAE,CAAC,CAAC,SAAS,cAAc,EACzB,KAAK,EAAE,CAAC,EACR,OAAO,EAAE,iBAAiB,CAAC,CAAC,CAAC,GAC5B,MAAM,IAAI;IAYb;;;;;OAKG;IACH,GAAG,CAAC,CAAC,SAAS,cAAc,EAC1B,KAAK,EAAE,CAAC,EACR,OAAO,EAAE,iBAAiB,CAAC,CAAC,CAAC,GAC5B,IAAI;IAOP;;;;;OAKG;IACH,kBAAkB,CAAC,KAAK,CAAC,EAAE,cAAc,GAAG,IAAI;IAQhD,gDAAgD;IAChD,OAAO,CAAC,KAAK;CAWd;AAID;;;;;GAKG;AACH,qBAAa,aAAa;IACxB;;;;;;;;;;;;;;OAcG;WACU,MAAM,CACjB,MAAM,EAAE,MAAM,EACd,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,MAAM,EACd,WAAW,EAAE,WAAW,EACxB,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC,gBAAgB,CAAC;IAU5B;;;;;;;;;;;;;;OAcG;WACU,IAAI,CACf,MAAM,EAAE,MAAM,EACd,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,MAAM,EACd,WAAW,EAAE,WAAW,EACxB,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC,gBAAgB,CAAC;IAU5B;;;;;;;;;;;;;;;OAeG;WACU,QAAQ,CACnB,MAAM,EAAE,MAAM,EACd,WAAW,EAAE,WAAW,EACxB,UAAU,EAAE,UAAU,GACrB,OAAO,CAAC,gBAAgB,CAAC;CAc7B;AAGD,cAAc,qBAAqB,CAAC"}