@probelabs/visor 0.1.94 → 0.1.96

package/dist/index.js

@@ -1,6 +1,6 @@
 #!/usr/bin/env node
-process.env.VISOR_VERSION = '0.1.94';
-process.env.PROBE_VERSION = '0.6.0-rc138';
+process.env.VISOR_VERSION = '0.1.96';
+process.env.PROBE_VERSION = '0.6.0-rc146';
 /******/ (() => { // webpackBootstrap
 /******/ 	var __webpack_modules__ = ({
 
@@ -177300,6 +177300,522 @@ DelayedStream.prototype._checkIfMaxDataSizeExceeded = function() {
 };
 
 
+/***/ }),
+
+/***/ 52874:
+/***/ ((__unused_webpack_module, __unused_webpack_exports, __nccwpck_require__) => {
+
+(function () {
+  (__nccwpck_require__(18889).config)(
+    Object.assign(
+      {},
+      __nccwpck_require__(39990),
+      __nccwpck_require__(4531)(process.argv)
+    )
+  )
+})()
+
+
+/***/ }),
+
+/***/ 4531:
+/***/ ((module) => {
+
+const re = /^dotenv_config_(encoding|path|quiet|debug|override|DOTENV_KEY)=(.+)$/
+
+module.exports = function optionMatcher (args) {
+  const options = args.reduce(function (acc, cur) {
+    const matches = cur.match(re)
+    if (matches) {
+      acc[matches[1]] = matches[2]
+    }
+    return acc
+  }, {})
+
+  if (!('quiet' in options)) {
+    options.quiet = 'true'
+  }
+
+  return options
+}
+
+
+/***/ }),
+
+/***/ 39990:
+/***/ ((module) => {
+
+// ../config.js accepts options via environment variables
+const options = {}
+
+if (process.env.DOTENV_CONFIG_ENCODING != null) {
+  options.encoding = process.env.DOTENV_CONFIG_ENCODING
+}
+
+if (process.env.DOTENV_CONFIG_PATH != null) {
+  options.path = process.env.DOTENV_CONFIG_PATH
+}
+
+if (process.env.DOTENV_CONFIG_QUIET != null) {
+  options.quiet = process.env.DOTENV_CONFIG_QUIET
+}
+
+if (process.env.DOTENV_CONFIG_DEBUG != null) {
+  options.debug = process.env.DOTENV_CONFIG_DEBUG
+}
+
+if (process.env.DOTENV_CONFIG_OVERRIDE != null) {
+  options.override = process.env.DOTENV_CONFIG_OVERRIDE
+}
+
+if (process.env.DOTENV_CONFIG_DOTENV_KEY != null) {
+  options.DOTENV_KEY = process.env.DOTENV_CONFIG_DOTENV_KEY
+}
+
+module.exports = options
+
+
+/***/ }),
+
+/***/ 18889:
+/***/ ((module, __unused_webpack_exports, __nccwpck_require__) => {
+
+const fs = __nccwpck_require__(79896)
+const path = __nccwpck_require__(16928)
+const os = __nccwpck_require__(70857)
+const crypto = __nccwpck_require__(76982)
+const packageJson = __nccwpck_require__(80056)
+
+const version = packageJson.version
+
+// Array of tips to display randomly
+const TIPS = [
+  '🔐 encrypt with Dotenvx: https://dotenvx.com',
+  '🔐 prevent committing .env to code: https://dotenvx.com/precommit',
+  '🔐 prevent building .env in docker: https://dotenvx.com/prebuild',
+  '📡 add observability to secrets: https://dotenvx.com/ops',
+  '👥 sync secrets across teammates & machines: https://dotenvx.com/ops',
+  '🗂️ backup and recover secrets: https://dotenvx.com/ops',
+  '✅ audit secrets and track compliance: https://dotenvx.com/ops',
+  '🔄 add secrets lifecycle management: https://dotenvx.com/ops',
+  '🔑 add access controls to secrets: https://dotenvx.com/ops',
+  '🛠️  run anywhere with `dotenvx run -- yourcommand`',
+  '⚙️  specify custom .env file path with { path: \'/custom/path/.env\' }',
+  '⚙️  enable debug logging with { debug: true }',
+  '⚙️  override existing env vars with { override: true }',
+  '⚙️  suppress all logs with { quiet: true }',
+  '⚙️  write to custom object with { processEnv: myObject }',
+  '⚙️  load multiple .env files with { path: [\'.env.local\', \'.env\'] }'
+]
+
+// Get a random tip from the tips array
+function _getRandomTip () {
+  return TIPS[Math.floor(Math.random() * TIPS.length)]
+}
+
+function parseBoolean (value) {
+  if (typeof value === 'string') {
+    return !['false', '0', 'no', 'off', ''].includes(value.toLowerCase())
+  }
+  return Boolean(value)
+}
+
+function supportsAnsi () {
+  return process.stdout.isTTY // && process.env.TERM !== 'dumb'
+}
+
+function dim (text) {
+  return supportsAnsi() ? `\x1b[2m${text}\x1b[0m` : text
+}
+
+const LINE = /(?:^|^)\s*(?:export\s+)?([\w.-]+)(?:\s*=\s*?|:\s+?)(\s*'(?:\\'|[^'])*'|\s*"(?:\\"|[^"])*"|\s*`(?:\\`|[^`])*`|[^#\r\n]+)?\s*(?:#.*)?(?:$|$)/mg
+
+// Parse src into an Object
+function parse (src) {
+  const obj = {}
+
+  // Convert buffer to string
+  let lines = src.toString()
+
+  // Convert line breaks to same format
+  lines = lines.replace(/\r\n?/mg, '\n')
+
+  let match
+  while ((match = LINE.exec(lines)) != null) {
+    const key = match[1]
+
+    // Default undefined or null to empty string
+    let value = (match[2] || '')
+
+    // Remove whitespace
+    value = value.trim()
+
+    // Check if double quoted
+    const maybeQuote = value[0]
+
+    // Remove surrounding quotes
+    value = value.replace(/^(['"`])([\s\S]*)\1$/mg, '$2')
+
+    // Expand newlines if double quoted
+    if (maybeQuote === '"') {
+      value = value.replace(/\\n/g, '\n')
+      value = value.replace(/\\r/g, '\r')
+    }
+
+    // Add to object
+    obj[key] = value
+  }
+
+  return obj
+}
+
+function _parseVault (options) {
+  options = options || {}
+
+  const vaultPath = _vaultPath(options)
+  options.path = vaultPath // parse .env.vault
+  const result = DotenvModule.configDotenv(options)
+  if (!result.parsed) {
+    const err = new Error(`MISSING_DATA: Cannot parse ${vaultPath} for an unknown reason`)
+    err.code = 'MISSING_DATA'
+    throw err
+  }
+
+  // handle scenario for comma separated keys - for use with key rotation
+  // example: DOTENV_KEY="dotenv://:key_1234@dotenvx.com/vault/.env.vault?environment=prod,dotenv://:key_7890@dotenvx.com/vault/.env.vault?environment=prod"
+  const keys = _dotenvKey(options).split(',')
+  const length = keys.length
+
+  let decrypted
+  for (let i = 0; i < length; i++) {
+    try {
+      // Get full key
+      const key = keys[i].trim()
+
+      // Get instructions for decrypt
+      const attrs = _instructions(result, key)
+
+      // Decrypt
+      decrypted = DotenvModule.decrypt(attrs.ciphertext, attrs.key)
+
+      break
+    } catch (error) {
+      // last key
+      if (i + 1 >= length) {
+        throw error
+      }
+      // try next key
+    }
+  }
+
+  // Parse decrypted .env string
+  return DotenvModule.parse(decrypted)
+}
+
+function _warn (message) {
+  console.error(`[dotenv@${version}][WARN] ${message}`)
+}
+
+function _debug (message) {
+  console.log(`[dotenv@${version}][DEBUG] ${message}`)
+}
+
+function _log (message) {
+  console.log(`[dotenv@${version}] ${message}`)
+}
+
+function _dotenvKey (options) {
+  // prioritize developer directly setting options.DOTENV_KEY
+  if (options && options.DOTENV_KEY && options.DOTENV_KEY.length > 0) {
+    return options.DOTENV_KEY
+  }
+
+  // secondary infra already contains a DOTENV_KEY environment variable
+  if (process.env.DOTENV_KEY && process.env.DOTENV_KEY.length > 0) {
+    return process.env.DOTENV_KEY
+  }
+
+  // fallback to empty string
+  return ''
+}
+
+function _instructions (result, dotenvKey) {
+  // Parse DOTENV_KEY. Format is a URI
+  let uri
+  try {
+    uri = new URL(dotenvKey)
+  } catch (error) {
+    if (error.code === 'ERR_INVALID_URL') {
+      const err = new Error('INVALID_DOTENV_KEY: Wrong format. Must be in valid uri format like dotenv://:key_1234@dotenvx.com/vault/.env.vault?environment=development')
+      err.code = 'INVALID_DOTENV_KEY'
+      throw err
+    }
+
+    throw error
+  }
+
+  // Get decrypt key
+  const key = uri.password
+  if (!key) {
+    const err = new Error('INVALID_DOTENV_KEY: Missing key part')
+    err.code = 'INVALID_DOTENV_KEY'
+    throw err
+  }
+
+  // Get environment
+  const environment = uri.searchParams.get('environment')
+  if (!environment) {
+    const err = new Error('INVALID_DOTENV_KEY: Missing environment part')
+    err.code = 'INVALID_DOTENV_KEY'
+    throw err
+  }
+
+  // Get ciphertext payload
+  const environmentKey = `DOTENV_VAULT_${environment.toUpperCase()}`
+  const ciphertext = result.parsed[environmentKey] // DOTENV_VAULT_PRODUCTION
+  if (!ciphertext) {
+    const err = new Error(`NOT_FOUND_DOTENV_ENVIRONMENT: Cannot locate environment ${environmentKey} in your .env.vault file.`)
+    err.code = 'NOT_FOUND_DOTENV_ENVIRONMENT'
+    throw err
+  }
+
+  return { ciphertext, key }
+}
+
+function _vaultPath (options) {
+  let possibleVaultPath = null
+
+  if (options && options.path && options.path.length > 0) {
+    if (Array.isArray(options.path)) {
+      for (const filepath of options.path) {
+        if (fs.existsSync(filepath)) {
+          possibleVaultPath = filepath.endsWith('.vault') ? filepath : `${filepath}.vault`
+        }
+      }
+    } else {
+      possibleVaultPath = options.path.endsWith('.vault') ? options.path : `${options.path}.vault`
+    }
+  } else {
+    possibleVaultPath = path.resolve(process.cwd(), '.env.vault')
+  }
+
+  if (fs.existsSync(possibleVaultPath)) {
+    return possibleVaultPath
+  }
+
+  return null
+}
+
+function _resolveHome (envPath) {
+  return envPath[0] === '~' ? path.join(os.homedir(), envPath.slice(1)) : envPath
+}
+
+function _configVault (options) {
+  const debug = parseBoolean(process.env.DOTENV_CONFIG_DEBUG || (options && options.debug))
+  const quiet = parseBoolean(process.env.DOTENV_CONFIG_QUIET || (options && options.quiet))
+
+  if (debug || !quiet) {
+    _log('Loading env from encrypted .env.vault')
+  }
+
+  const parsed = DotenvModule._parseVault(options)
+
+  let processEnv = process.env
+  if (options && options.processEnv != null) {
+    processEnv = options.processEnv
+  }
+
+  DotenvModule.populate(processEnv, parsed, options)
+
+  return { parsed }
+}
+
+function configDotenv (options) {
+  const dotenvPath = path.resolve(process.cwd(), '.env')
+  let encoding = 'utf8'
+  let processEnv = process.env
+  if (options && options.processEnv != null) {
+    processEnv = options.processEnv
+  }
+  let debug = parseBoolean(processEnv.DOTENV_CONFIG_DEBUG || (options && options.debug))
+  let quiet = parseBoolean(processEnv.DOTENV_CONFIG_QUIET || (options && options.quiet))
+
+  if (options && options.encoding) {
+    encoding = options.encoding
+  } else {
+    if (debug) {
+      _debug('No encoding is specified. UTF-8 is used by default')
+    }
+  }
+
+  let optionPaths = [dotenvPath] // default, look for .env
+  if (options && options.path) {
+    if (!Array.isArray(options.path)) {
+      optionPaths = [_resolveHome(options.path)]
+    } else {
+      optionPaths = [] // reset default
+      for (const filepath of options.path) {
+        optionPaths.push(_resolveHome(filepath))
+      }
+    }
+  }
+
+  // Build the parsed data in a temporary object (because we need to return it).  Once we have the final
+  // parsed data, we will combine it with process.env (or options.processEnv if provided).
+  let lastError
+  const parsedAll = {}
+  for (const path of optionPaths) {
+    try {
+      // Specifying an encoding returns a string instead of a buffer
+      const parsed = DotenvModule.parse(fs.readFileSync(path, { encoding }))
+
+      DotenvModule.populate(parsedAll, parsed, options)
+    } catch (e) {
+      if (debug) {
+        _debug(`Failed to load ${path} ${e.message}`)
+      }
+      lastError = e
+    }
+  }
+
+  const populated = DotenvModule.populate(processEnv, parsedAll, options)
+
+  // handle user settings DOTENV_CONFIG_ options inside .env file(s)
+  debug = parseBoolean(processEnv.DOTENV_CONFIG_DEBUG || debug)
+  quiet = parseBoolean(processEnv.DOTENV_CONFIG_QUIET || quiet)
+
+  if (debug || !quiet) {
+    const keysCount = Object.keys(populated).length
+    const shortPaths = []
+    for (const filePath of optionPaths) {
+      try {
+        const relative = path.relative(process.cwd(), filePath)
+        shortPaths.push(relative)
+      } catch (e) {
+        if (debug) {
+          _debug(`Failed to load ${filePath} ${e.message}`)
+        }
+        lastError = e
+      }
+    }
+
+    _log(`injecting env (${keysCount}) from ${shortPaths.join(',')} ${dim(`-- tip: ${_getRandomTip()}`)}`)
+  }
+
+  if (lastError) {
+    return { parsed: parsedAll, error: lastError }
+  } else {
+    return { parsed: parsedAll }
+  }
+}
+
+// Populates process.env from .env file
+function config (options) {
+  // fallback to original dotenv if DOTENV_KEY is not set
+  if (_dotenvKey(options).length === 0) {
+    return DotenvModule.configDotenv(options)
+  }
+
+  const vaultPath = _vaultPath(options)
+
+  // dotenvKey exists but .env.vault file does not exist
+  if (!vaultPath) {
+    _warn(`You set DOTENV_KEY but you are missing a .env.vault file at ${vaultPath}. Did you forget to build it?`)
+
+    return DotenvModule.configDotenv(options)
+  }
+
+  return DotenvModule._configVault(options)
+}
+
+function decrypt (encrypted, keyStr) {
+  const key = Buffer.from(keyStr.slice(-64), 'hex')
+  let ciphertext = Buffer.from(encrypted, 'base64')
+
+  const nonce = ciphertext.subarray(0, 12)
+  const authTag = ciphertext.subarray(-16)
+  ciphertext = ciphertext.subarray(12, -16)
+
+  try {
+    const aesgcm = crypto.createDecipheriv('aes-256-gcm', key, nonce)
+    aesgcm.setAuthTag(authTag)
+    return `${aesgcm.update(ciphertext)}${aesgcm.final()}`
+  } catch (error) {
+    const isRange = error instanceof RangeError
+    const invalidKeyLength = error.message === 'Invalid key length'
+    const decryptionFailed = error.message === 'Unsupported state or unable to authenticate data'
+
+    if (isRange || invalidKeyLength) {
+      const err = new Error('INVALID_DOTENV_KEY: It must be 64 characters long (or more)')
+      err.code = 'INVALID_DOTENV_KEY'
+      throw err
+    } else if (decryptionFailed) {
+      const err = new Error('DECRYPTION_FAILED: Please check your DOTENV_KEY')
+      err.code = 'DECRYPTION_FAILED'
+      throw err
+    } else {
+      throw error
+    }
+  }
+}
+
+// Populate process.env with parsed values
+function populate (processEnv, parsed, options = {}) {
+  const debug = Boolean(options && options.debug)
+  const override = Boolean(options && options.override)
+  const populated = {}
+
+  if (typeof parsed !== 'object') {
+    const err = new Error('OBJECT_REQUIRED: Please check the processEnv argument being passed to populate')
+    err.code = 'OBJECT_REQUIRED'
+    throw err
+  }
+
+  // Set process.env
+  for (const key of Object.keys(parsed)) {
+    if (Object.prototype.hasOwnProperty.call(processEnv, key)) {
+      if (override === true) {
+        processEnv[key] = parsed[key]
+        populated[key] = parsed[key]
+      }
+
+      if (debug) {
+        if (override === true) {
+          _debug(`"${key}" is already defined and WAS overwritten`)
+        } else {
+          _debug(`"${key}" is already defined and was NOT overwritten`)
+        }
+      }
+    } else {
+      processEnv[key] = parsed[key]
+      populated[key] = parsed[key]
+    }
+  }
+
+  return populated
+}
+
+const DotenvModule = {
+  configDotenv,
+  _configVault,
+  _parseVault,
+  config,
+  decrypt,
+  parse,
+  populate
+}
+
+module.exports.configDotenv = DotenvModule.configDotenv
+module.exports._configVault = DotenvModule._configVault
+module.exports._parseVault = DotenvModule._parseVault
+module.exports.config = DotenvModule.config
+module.exports.decrypt = DotenvModule.decrypt
+module.exports.parse = DotenvModule.parse
+module.exports.populate = DotenvModule.populate
+
+module.exports = DotenvModule
+
+
 /***/ }),
 
 /***/ 26669:
@@ -218031,6 +218547,7 @@ const probe_1 = __nccwpck_require__(83841);
 const session_registry_1 = __nccwpck_require__(46059);
 const logger_1 = __nccwpck_require__(86999);
 const tracer_init_1 = __nccwpck_require__(11903);
+const diff_processor_1 = __nccwpck_require__(29883);
 /**
  * Helper function to log debug messages using the centralized logger
  */
@@ -218083,7 +218600,7 @@ class AIReviewService {
     /**
      * Execute AI review using probe agent
      */
-    async executeReview(prInfo, customPrompt, schema, _checkName, sessionId) {
+    async executeReview(prInfo, customPrompt, schema, checkName, sessionId) {
         const startTime = Date.now();
         const timestamp = new Date().toISOString();
         // Build prompt from custom instructions
@@ -218140,7 +218657,7 @@ class AIReviewService {
             }
         }
         try {
-            const { response, effectiveSchema } = await this.callProbeAgent(prompt, schema, debugInfo, _checkName, sessionId);
+            const { response, effectiveSchema } = await this.callProbeAgent(prompt, schema, debugInfo, checkName, sessionId);
             const processingTime = Date.now() - startTime;
             if (debugInfo) {
                 debugInfo.rawResponse = response;
@@ -218300,10 +218817,10 @@ class AIReviewService {
     async buildCustomPrompt(prInfo, customInstructions, schema, options) {
         // When reusing sessions, skip PR context to avoid sending duplicate diff data
         const skipPRContext = options?.skipPRContext === true;
-        const prContext = skipPRContext ? '' : this.formatPRContext(prInfo);
-        const isIssue = prInfo.isIssue === true;
         // Check if we're using the code-review schema
         const isCodeReviewSchema = schema === 'code-review';
+        const prContext = skipPRContext ? '' : await this.formatPRContext(prInfo, isCodeReviewSchema);
+        const isIssue = prInfo.isIssue === true;
         if (isIssue) {
             // Issue context - no code analysis needed
             if (skipPRContext) {
@@ -218401,7 +218918,7 @@ ${prContext}
     /**
      * Format PR or Issue context for the AI using XML structure
      */
-    formatPRContext(prInfo) {
+    async formatPRContext(prInfo, isCodeReviewSchema) {
         // Check if this is an issue (not a PR)
         const prContextInfo = prInfo;
         const isIssue = prContextInfo.isIssue === true;
@@ -218496,9 +219013,14 @@ ${this.escapeXml(prInfo.body)}
             const issueComments = prInfo.comments;
             if (issueComments && issueComments.length > 0) {
                 // Filter out the triggering comment from history if present
-                const historicalComments = triggeringComment
+                let historicalComments = triggeringComment
                     ? issueComments.filter(c => c.id !== triggeringComment.id)
                     : issueComments;
+                // For code-review schema checks, filter out previous Visor code-review comments to avoid self-bias
+                // Comment IDs look like: <!-- visor-comment-id:pr-review-244-review -->
+                if (isCodeReviewSchema) {
+                    historicalComments = historicalComments.filter(c => !c.body || !c.body.includes('visor-comment-id:pr-review-'));
+                }
                 if (historicalComments.length > 0) {
                     context += `
   <!-- Previous comments in chronological order (excluding triggering comment) -->
@@ -218545,26 +219067,34 @@ ${this.escapeXml(prInfo.body)}
         if (includeCodeContext) {
             // Add full diff if available (for complete PR review)
             if (prInfo.fullDiff) {
+                // Process the diff with outline-diff format for better structure
+                const processedFullDiff = await (0, diff_processor_1.processDiffWithOutline)(prInfo.fullDiff);
                 context += `
-  <!-- Complete unified diff showing all changes in the pull request -->
+  <!-- Complete unified diff showing all changes in the pull request (processed with outline-diff) -->
   <full_diff>
-${this.escapeXml(prInfo.fullDiff)}
+${this.escapeXml(processedFullDiff)}
   </full_diff>`;
             }
             // Add incremental commit diff if available (for new commit analysis)
             if (prInfo.isIncremental) {
                 if (prInfo.commitDiff && prInfo.commitDiff.length > 0) {
+                    // Process the commit diff with outline-diff format for better structure
+                    const processedCommitDiff = await (0, diff_processor_1.processDiffWithOutline)(prInfo.commitDiff);
                     context += `
-  <!-- Diff of only the latest commit for incremental analysis -->
+  <!-- Diff of only the latest commit for incremental analysis (processed with outline-diff) -->
   <commit_diff>
-${this.escapeXml(prInfo.commitDiff)}
+${this.escapeXml(processedCommitDiff)}
   </commit_diff>`;
                 }
                 else {
+                    // Process the fallback full diff with outline-diff format
+                    const processedFallbackDiff = prInfo.fullDiff
+                        ? await (0, diff_processor_1.processDiffWithOutline)(prInfo.fullDiff)
+                        : '';
                     context += `
-  <!-- Commit diff could not be retrieved - falling back to full diff analysis -->
+  <!-- Commit diff could not be retrieved - falling back to full diff analysis (processed with outline-diff) -->
   <commit_diff>
-${prInfo.fullDiff ? this.escapeXml(prInfo.fullDiff) : ''}
+${this.escapeXml(processedFallbackDiff)}
   </commit_diff>`;
                 }
             }
@@ -218606,9 +219136,14 @@ ${prInfo.fullDiff ? this.escapeXml(prInfo.fullDiff) : ''}
         const prComments = prInfo.comments;
         if (prComments && prComments.length > 0) {
             // Filter out the triggering comment from history if present
-            const historicalComments = triggeringComment
+            let historicalComments = triggeringComment
                 ? prComments.filter(c => c.id !== triggeringComment.id)
                 : prComments;
+            // For code-review schema checks, filter out previous Visor code-review comments to avoid self-bias
+            // Comment IDs look like: <!-- visor-comment-id:pr-review-244-review -->
+            if (isCodeReviewSchema) {
+                historicalComments = historicalComments.filter(c => !c.body || !c.body.includes('visor-comment-id:pr-review-'));
+            }
             if (historicalComments.length > 0) {
                 context += `
   <!-- Previous PR comments in chronological order (excluding triggering comment) -->
@@ -224361,6 +224896,8 @@ var __importStar = (this && this.__importStar) || (function () {
 })();
 Object.defineProperty(exports, "__esModule", ({ value: true }));
 exports.main = main;
+// Load environment variables from .env file
+__nccwpck_require__(52874);
 const cli_1 = __nccwpck_require__(95581);
 const config_1 = __nccwpck_require__(22973);
 const check_execution_engine_1 = __nccwpck_require__(80299);
@@ -224953,6 +225490,7 @@ var __importStar = (this && this.__importStar) || (function () {
 Object.defineProperty(exports, "__esModule", ({ value: true }));
 exports.CLI = void 0;
 const commander_1 = __nccwpck_require__(18909);
+const config_1 = __nccwpck_require__(22973);
 const fs = __importStar(__nccwpck_require__(79896));
 const path = __importStar(__nccwpck_require__(16928));
 /**
@@ -224962,6 +225500,12 @@ class CLI {
     program;
     validChecks = ['performance', 'architecture', 'security', 'style', 'all'];
     validOutputs = ['table', 'json', 'markdown', 'sarif'];
+    // Valid events: all core EventTrigger types plus 'all' for CLI-only usage
+    // Reuses VALID_EVENT_TRIGGERS from config.ts as the single source of truth
+    validEvents = [
+        ...config_1.VALID_EVENT_TRIGGERS,
+        'all', // CLI-specific: run checks regardless of event triggers
+    ];
     constructor() {
         this.program = new commander_1.Command();
         this.setupProgram();
@@ -225092,6 +225636,8 @@ class CLI {
                 help: options.help,
                 version: options.version,
                 codeContext,
+                analyzeBranchDiff: options.analyzeBranchDiff,
+                event: options.event,
             };
         }
         catch (error) {
@@ -225142,6 +225688,10 @@ class CLI {
                 throw new Error(`Invalid max parallelism value: ${options.maxParallelism}. Max parallelism must be a positive integer (minimum 1).`);
             }
         }
+        // Validate event type
+        if (options.event && !this.validEvents.includes(options.event)) {
+            throw new Error(`Invalid event type: ${options.event}. Available options: ${this.validEvents.join(', ')}`);
+        }
     }
     /**
      * Get help text
@@ -225168,6 +225718,7 @@ class CLI {
             .option('--enable-code-context', 'Force include code diffs in analysis (CLI mode)')
             .option('--disable-code-context', 'Force exclude code diffs from analysis (CLI mode)')
             .option('--analyze-branch-diff', 'Analyze diff vs base branch when on feature branch (auto-enabled for code-review schemas)')
+            .option('--event <type>', 'Simulate GitHub event (pr_opened, pr_updated, issue_opened, issue_comment, manual, all). Default: auto-detect from schema or "all"')
             .option('--mode <mode>', 'Run mode (cli|github-actions). Default: cli')
             .addHelpText('after', this.getExamplesText());
         // Get the basic help and append examples manually if addHelpText doesn't work
@@ -225250,13 +225801,14 @@ exports.CLI = CLI;
 /***/ }),
 
 /***/ 99153:
-/***/ ((__unused_webpack_module, exports) => {
+/***/ ((__unused_webpack_module, exports, __nccwpck_require__) => {
 
 "use strict";
 
 Object.defineProperty(exports, "__esModule", ({ value: true }));
 exports.parseComment = parseComment;
 exports.getHelpText = getHelpText;
+const footer_1 = __nccwpck_require__(6924);
 function parseComment(body, supportedCommands) {
     const trimmed = body.trim();
     if (!trimmed.startsWith('/')) {
@@ -225302,8 +225854,7 @@ function getHelpText(customCommands) {
 ${commandList}
 Commands are case-insensitive and can be used in PR comments.
 
----
-*Powered by [Visor](https://probelabs.com/visor) from [Probelabs](https://probelabs.com)*`;
+${(0, footer_1.generateFooter)()}`;
 }
 
 
@@ -225351,7 +225902,7 @@ var __importDefault = (this && this.__importDefault) || function (mod) {
     return (mod && mod.__esModule) ? mod : { "default": mod };
 };
 Object.defineProperty(exports, "__esModule", ({ value: true }));
-exports.ConfigManager = void 0;
+exports.ConfigManager = exports.VALID_EVENT_TRIGGERS = void 0;
 const yaml = __importStar(__nccwpck_require__(74281));
 const fs = __importStar(__nccwpck_require__(79896));
 const path = __importStar(__nccwpck_require__(16928));
@@ -225361,6 +225912,20 @@ const config_loader_1 = __nccwpck_require__(73836);
 const config_merger_1 = __nccwpck_require__(20730);
 const ajv_1 = __importDefault(__nccwpck_require__(42463));
 const ajv_formats_1 = __importDefault(__nccwpck_require__(82815));
+/**
+ * Valid event triggers for checks
+ * Exported as a constant to serve as the single source of truth for event validation
+ */
+exports.VALID_EVENT_TRIGGERS = [
+    'pr_opened',
+    'pr_updated',
+    'pr_closed',
+    'issue_opened',
+    'issue_comment',
+    'manual',
+    'schedule',
+    'webhook_received',
+];
 /**
  * Configuration manager for Visor
  */
@@ -225372,20 +225937,13 @@ class ConfigManager {
         'http',
         'http_input',
         'http_client',
+        'memory',
         'noop',
         'log',
+        'memory',
         'github',
     ];
-    validEventTriggers = [
-        'pr_opened',
-        'pr_updated',
-        'pr_closed',
-        'issue_opened',
-        'issue_comment',
-        'manual',
-        'schedule',
-        'webhook_received',
-    ];
+    validEventTriggers = [...exports.VALID_EVENT_TRIGGERS];
     validOutputFormats = ['table', 'json', 'markdown', 'sarif'];
     validGroupByOptions = ['check', 'file', 'severity', 'group'];
     /**
@@ -225393,18 +225951,22 @@ class ConfigManager {
      */
     async loadConfig(configPath, options = {}) {
         const { validate = true, mergeDefaults = true, allowedRemotePatterns } = options;
+        // Resolve relative paths to absolute paths based on current working directory
+        const resolvedPath = path.isAbsolute(configPath)
+            ? configPath
+            : path.resolve(process.cwd(), configPath);
         try {
-            if (!fs.existsSync(configPath)) {
-                throw new Error(`Configuration file not found: ${configPath}`);
+            if (!fs.existsSync(resolvedPath)) {
+                throw new Error(`Configuration file not found: ${resolvedPath}`);
             }
-            const configContent = fs.readFileSync(configPath, 'utf8');
+            const configContent = fs.readFileSync(resolvedPath, 'utf8');
             let parsedConfig;
             try {
                 parsedConfig = yaml.load(configContent);
             }
             catch (yamlError) {
                 const errorMessage = yamlError instanceof Error ? yamlError.message : String(yamlError);
-                throw new Error(`Invalid YAML syntax in ${configPath}: ${errorMessage}`);
+                throw new Error(`Invalid YAML syntax in ${resolvedPath}: ${errorMessage}`);
             }
             if (!parsedConfig || typeof parsedConfig !== 'object') {
                 throw new Error('Configuration file must contain a valid YAML object');
@@ -225412,7 +225974,7 @@ class ConfigManager {
             // Handle extends directive if present
             if (parsedConfig.extends) {
                 const loaderOptions = {
-                    baseDir: path.dirname(configPath),
+                    baseDir: path.dirname(resolvedPath),
                     allowRemote: this.isRemoteExtendsAllowed(),
                     maxDepth: 10,
                     allowedRemotePatterns,
@@ -225458,12 +226020,12 @@ class ConfigManager {
                 }
                 // Add more context for generic errors
                 if (error.message.includes('ENOENT')) {
-                    throw new Error(`Configuration file not found: ${configPath}`);
+                    throw new Error(`Configuration file not found: ${resolvedPath}`);
                 }
                 if (error.message.includes('EPERM')) {
-                    throw new Error(`Permission denied reading configuration file: ${configPath}`);
+                    throw new Error(`Permission denied reading configuration file: ${resolvedPath}`);
                 }
-                throw new Error(`Failed to read configuration file ${configPath}: ${error.message}`);
+                throw new Error(`Failed to read configuration file ${resolvedPath}: ${error.message}`);
             }
             throw error;
         }
@@ -226900,11 +227462,6 @@ class FailureConditionEvaluator {
                     return false;
                 return issues.some(issue => issue.file?.includes(pattern));
             };
-            const hasSuggestion = (suggestions, text) => {
-                if (!Array.isArray(suggestions))
-                    return false;
-                return suggestions.some(s => s.toLowerCase().includes(text.toLowerCase()));
-            };
             // Backward compatibility aliases
             const hasIssueWith = hasIssue;
             const hasFileWith = hasFileMatching;
@@ -226919,7 +227476,6 @@ class FailureConditionEvaluator {
             // Extract context variables
             const output = context.output || {};
             const issues = output.issues || [];
-            const suggestions = [];
             // Backward compatibility: provide metadata for transition period
             // TODO: Remove after all configurations are updated
             const metadata = context.metadata || {
@@ -226970,7 +227526,6 @@ class FailureConditionEvaluator {
                 memory: memoryAccessor,
                 // Legacy compatibility variables
                 issues,
-                suggestions,
                 metadata,
                 criticalIssues,
                 errorIssues,
@@ -226999,7 +227554,6 @@ class FailureConditionEvaluator {
                 hasIssue,
                 countIssues,
                 hasFileMatching,
-                hasSuggestion,
                 hasIssueWith,
                 hasFileWith,
                 // Permission helpers
@@ -227283,6 +227837,53 @@ class FailureConditionEvaluator {
 exports.FailureConditionEvaluator = FailureConditionEvaluator;
 
 
+/***/ }),
+
+/***/ 6924:
+/***/ ((__unused_webpack_module, exports) => {
+
+"use strict";
+
+/**
+ * Centralized footer generation for Visor comments and outputs
+ */
+Object.defineProperty(exports, "__esModule", ({ value: true }));
+exports.generateFooter = generateFooter;
+exports.hasVisorFooter = hasVisorFooter;
+/**
+ * Generate a standard Visor footer with branding and optional tip
+ */
+function generateFooter(options = {}) {
+    const { includeMetadata, includeSeparator = true } = options;
+    const parts = [];
+    // Add separator
+    if (includeSeparator) {
+        parts.push('---');
+        parts.push('');
+    }
+    // Add branding
+    parts.push('*Powered by [Visor](https://probelabs.com/visor) from [Probelabs](https://probelabs.com)*');
+    // Add metadata if provided
+    if (includeMetadata) {
+        const { lastUpdated, triggeredBy, commitSha } = includeMetadata;
+        const commitInfo = commitSha ? ` | Commit: ${commitSha.substring(0, 7)}` : '';
+        parts.push('');
+        parts.push(`*Last updated: ${lastUpdated} | Triggered by: ${triggeredBy}${commitInfo}*`);
+    }
+    // Add tip
+    parts.push('');
+    parts.push('💡 **TIP:** You can chat with Visor using `/visor ask <your question>`');
+    return parts.join('\n');
+}
+/**
+ * Check if a string contains a Visor footer
+ */
+function hasVisorFooter(text) {
+    return (text.includes('*Powered by [Visor](https://probelabs.com/visor)') ||
+        text.includes('*Powered by [Visor](https://github.com/probelabs/visor)'));
+}
+
+
 /***/ }),
 
 /***/ 65543:
@@ -228823,7 +229424,7 @@ exports.GitRepositoryAnalyzer = GitRepositoryAnalyzer;
 /***/ }),
 
 /***/ 43748:
-/***/ ((__unused_webpack_module, exports) => {
+/***/ ((__unused_webpack_module, exports, __nccwpck_require__) => {
 
 "use strict";
 
@@ -228832,6 +229433,7 @@ exports.GitRepositoryAnalyzer = GitRepositoryAnalyzer;
  */
 Object.defineProperty(exports, "__esModule", ({ value: true }));
 exports.GitHubCheckService = void 0;
+const footer_1 = __nccwpck_require__(6924);
 /**
  * Service for managing GitHub Check Runs based on Visor failure conditions
  */
@@ -229073,9 +229675,7 @@ class GitHubCheckService {
         }
         // Footer
         sections.push('');
-        sections.push('---');
-        sections.push('');
-        sections.push('*Powered by [Visor](https://probelabs.com/visor) from [Probelabs](https://probelabs.com)*');
+        sections.push((0, footer_1.generateFooter)());
         return sections.join('\n');
     }
     /**
@@ -229286,6 +229886,7 @@ Object.defineProperty(exports, "__esModule", ({ value: true }));
 exports.CommentManager = void 0;
 const uuid_1 = __nccwpck_require__(31914);
 const logger_1 = __nccwpck_require__(86999);
+const footer_1 = __nccwpck_require__(6924);
 /**
  * Manages GitHub PR comments with dynamic updating capabilities
  */
@@ -229379,15 +229980,17 @@ class CommentManager {
      */
     formatCommentWithMetadata(content, metadata) {
         const { commentId, lastUpdated, triggeredBy, commitSha } = metadata;
-        const commitInfo = commitSha ? ` | Commit: ${commitSha.substring(0, 7)}` : '';
+        const footer = (0, footer_1.generateFooter)({
+            includeMetadata: {
+                lastUpdated,
+                triggeredBy,
+                commitSha,
+            },
+        });
         return `<!-- visor-comment-id:${commentId} -->
 ${content}
 
----
-
-*Powered by [Visor](https://probelabs.com/visor) from [Probelabs](https://probelabs.com)*
-
-*Last updated: ${lastUpdated} | Triggered by: ${triggeredBy}${commitInfo}*
+${footer}
 <!-- /visor-comment-id:${commentId} -->`;
     }
     /**
@@ -229743,6 +230346,8 @@ var __importStar = (this && this.__importStar) || (function () {
 Object.defineProperty(exports, "__esModule", ({ value: true }));
 exports.deriveExecutedCheckNames = void 0;
 exports.run = run;
+// Load environment variables from .env file
+__nccwpck_require__(52874);
 const rest_1 = __nccwpck_require__(47432);
 const auth_app_1 = __nccwpck_require__(76479);
 const core_1 = __nccwpck_require__(37484);
@@ -229756,6 +230361,7 @@ const reviewer_1 = __nccwpck_require__(532);
 const config_1 = __nccwpck_require__(22973);
 const github_check_service_1 = __nccwpck_require__(43748);
 const github_reactions_1 = __nccwpck_require__(67997);
+const footer_1 = __nccwpck_require__(6924);
 /**
  * Create an authenticated Octokit instance using either GitHub App or token authentication
  */
@@ -230333,8 +230939,8 @@ async function handleIssueEvent(octokit, owner, repo, context, inputs, config, c
             // Only post if there's actual content (not just empty checks)
             if (commentBody.trim()) {
                 // Only add footer if not already present (to avoid duplicates)
-                if (!commentBody.includes('*Powered by [Visor](')) {
-                    commentBody += `\n---\n*Powered by [Visor](https://probelabs.com/visor) from [Probelabs](https://probelabs.com)*`;
+                if (!(0, footer_1.hasVisorFooter)(commentBody)) {
+                    commentBody += `\n${(0, footer_1.generateFooter)()}`;
                 }
                 // Post comment to the issue
                 await octokit.rest.issues.createComment({
@@ -230376,9 +230982,7 @@ async function handleIssueComment(octokit, owner, repo, context, inputs, actionC
         comment.user?.login === 'github-actions[bot]' ||
         comment.user?.type === 'Bot';
     const hasVisorMarkers = comment.body &&
-        (comment.body.includes('<!-- visor-comment-id:') ||
-            comment.body.includes('*Powered by [Visor](https://probelabs.com/visor)') ||
-            comment.body.includes('*Powered by [Visor](https://github.com/probelabs/visor)'));
+        (comment.body.includes('<!-- visor-comment-id:') || (0, footer_1.hasVisorFooter)(comment.body));
     if (isVisorBot || hasVisorMarkers) {
         console.log(`✓ Skipping bot's own comment to prevent recursion. Author: ${comment.user?.login}, Type: ${comment.user?.type}, Has markers: ${hasVisorMarkers}`);
         return;
@@ -230454,8 +231058,7 @@ async function handleIssueComment(octokit, owner, repo, context, inputs, actionC
                     `**Additions:** +${statusPrInfo.totalAdditions}\n` +
                     `**Deletions:** -${statusPrInfo.totalDeletions}\n` +
                     `**Base:** ${statusPrInfo.base} → **Head:** ${statusPrInfo.head}\n\n` +
-                    `\n---\n\n` +
-                    `*Powered by [Visor](https://probelabs.com/visor) from [Probelabs](https://probelabs.com)*`;
+                    `\n${(0, footer_1.generateFooter)()}`;
                 await octokit.rest.issues.createComment({
                     owner,
                     repo,
@@ -230470,8 +231073,7 @@ async function handleIssueComment(octokit, owner, repo, context, inputs, actionC
                     `**State:** ${issue.state || 'open'}\n` +
                     `**Comments:** ${issue.comments || 0}\n` +
                     `**Created:** ${issue.created_at || 'unknown'}\n` +
-                    `\n---\n\n` +
-                    `*Powered by [Visor](https://probelabs.com/visor) from [Probelabs](https://probelabs.com)*`;
+                    `\n${(0, footer_1.generateFooter)()}`;
                 await octokit.rest.issues.createComment({
                     owner,
                     repo,
@@ -230568,7 +231170,7 @@ async function handleIssueComment(octokit, owner, repo, context, inputs, actionC
                         owner,
                         repo,
                         issue_number: prNumber,
-                        body: `⚠️ No checks are configured to run for ${isPullRequest ? 'PR' : 'issue'} comments with command /${command.type}\n\n*Powered by [Visor](https://probelabs.com/visor) from [Probelabs](https://probelabs.com)*`,
+                        body: `⚠️ No checks are configured to run for ${isPullRequest ? 'PR' : 'issue'} comments with command /${command.type}\n\n${(0, footer_1.generateFooter)()}`,
                     });
                     return;
                 }
@@ -237676,17 +238278,20 @@ class PRReviewer {
             'Built-in prompts have been removed - all checks must be explicitly configured.');
     }
     /**
-     * Helper to check if a schema definition has a "text" field in its properties
+     * Helper to check if a schema is comment-generating
+     * Comment-generating schemas include:
+     * - Built-in schemas: code-review, overview, plain, text
+     * - Custom schemas with a "text" field in properties
      */
-    async schemaHasTextField(schema) {
+    async isCommentGeneratingSchema(schema) {
         try {
-            let schemaObj;
-            if (typeof schema === 'object') {
-                // Inline schema object
-                schemaObj = schema;
-            }
-            else {
-                // String reference - load the schema
+            // Check for built-in comment-generating schemas
+            if (typeof schema === 'string') {
+                // Well-known comment-generating schemas
+                if (['code-review', 'overview', 'plain', 'text'].includes(schema)) {
+                    return true;
+                }
+                // Try to load and check custom string schema
                 const fs = (__nccwpck_require__(79896).promises);
                 const path = __nccwpck_require__(16928);
                 // Sanitize schema name
@@ -237698,16 +238303,21 @@ class PRReviewer {
                 const schemaPath = __nccwpck_require__.ab + "output/" + sanitizedSchemaName + '/schema.json';
                 try {
                     const schemaContent = await fs.readFile(schemaPath, 'utf-8');
-                    schemaObj = JSON.parse(schemaContent);
+                    const schemaObj = JSON.parse(schemaContent);
+                    // Check if schema has a "text" field in properties
+                    const properties = schemaObj.properties;
+                    return !!(properties && 'text' in properties);
                 }
                 catch {
                     // Schema file not found or invalid, return false
                     return false;
                 }
             }
-            // Check if schema has a "text" field in properties
-            const properties = schemaObj.properties;
-            return !!(properties && 'text' in properties);
+            else {
+                // Inline schema object - check if it has a "text" field in properties
+                const properties = schema.properties;
+                return !!(properties && 'text' in properties);
+            }
         }
         catch {
             return false;
@@ -237734,19 +238344,9 @@ class PRReviewer {
                 // Other types (github, command, http, etc.) without schema are for orchestration
                 shouldPostComment = isAICheck;
             }
-            else if (typeof schema === 'string') {
-                // String schema - check if it's a known plain text schema OR has a text field
-                if (schema === 'text' || schema === 'plain') {
-                    shouldPostComment = true;
-                }
-                else {
-                    // Load the schema and check if it has a text field
-                    shouldPostComment = await this.schemaHasTextField(schema);
-                }
-            }
-            else if (typeof schema === 'object') {
-                // Custom inline schema object - check if it has a "text" field in properties
-                shouldPostComment = await this.schemaHasTextField(schema);
+            else {
+                // Check if the schema is comment-generating (built-in or custom with text field)
+                shouldPostComment = await this.isCommentGeneratingSchema(schema);
             }
             if (shouldPostComment) {
                 filtered.push(r);
@@ -240148,6 +240748,121 @@ class ConfigMerger {
 exports.ConfigMerger = ConfigMerger;
 
 
+/***/ }),
+
+/***/ 29883:
+/***/ (function(__unused_webpack_module, exports, __nccwpck_require__) {
+
+"use strict";
+
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", ({ value: true }));
+exports.processDiffWithOutline = processDiffWithOutline;
+const probe_1 = __nccwpck_require__(83841);
+const path = __importStar(__nccwpck_require__(16928));
+/**
+ * Process diff content using the outline-diff format from @probelabs/probe
+ * This extracts a structured outline from the diff without requiring a temporary file
+ */
+async function processDiffWithOutline(diffContent) {
+    if (!diffContent || diffContent.trim().length === 0) {
+        return diffContent;
+    }
+    try {
+        // Set PROBE_PATH to use the bundled binary with outline-diff support
+        // The SDK by default may download an older binary that doesn't support outline-diff
+        const originalProbePath = process.env.PROBE_PATH;
+        // Try multiple possible locations for the probe binary
+        // When bundled with ncc, __dirname may not be reliable
+        const fs = __nccwpck_require__(79896);
+        const possiblePaths = [
+            // Relative to current working directory (most common in production)
+            path.join(process.cwd(), 'node_modules/@probelabs/probe/bin/probe-binary'),
+            // Relative to __dirname (for unbundled development)
+            path.join(__dirname, '../..', 'node_modules/@probelabs/probe/bin/probe-binary'),
+            // Relative to dist directory (for bundled CLI)
+            path.join(__dirname, 'node_modules/@probelabs/probe/bin/probe-binary'),
+        ];
+        let probeBinaryPath;
+        for (const candidatePath of possiblePaths) {
+            if (fs.existsSync(candidatePath)) {
+                probeBinaryPath = candidatePath;
+                break;
+            }
+        }
+        // Only process if binary exists, otherwise fall back to original diff
+        if (!probeBinaryPath) {
+            if (process.env.DEBUG === '1' || process.env.VERBOSE === '1') {
+                console.error('Probe binary not found. Tried:', possiblePaths);
+            }
+            return diffContent;
+        }
+        process.env.PROBE_PATH = probeBinaryPath;
+        // Use extract with content parameter (can be string or Buffer)
+        // The TypeScript types haven't been updated yet, but the runtime supports it
+        // Add timeout to avoid hanging
+        const extractPromise = probe_1.extract({
+            content: diffContent,
+            format: 'outline-diff',
+            allowTests: true, // Allow test files and test code blocks in extraction results
+        });
+        const timeoutPromise = new Promise((_, reject) => {
+            setTimeout(() => reject(new Error('Extract timeout after 30s')), 30000);
+        });
+        const result = await Promise.race([extractPromise, timeoutPromise]);
+        // Restore original PROBE_PATH
+        if (originalProbePath !== undefined) {
+            process.env.PROBE_PATH = originalProbePath;
+        }
+        else {
+            delete process.env.PROBE_PATH;
+        }
+        // Return the processed outline diff
+        return typeof result === 'string' ? result : JSON.stringify(result);
+    }
+    catch (error) {
+        // If outline-diff processing fails, fall back to the original diff
+        // Use console.error instead of console.warn to avoid polluting JSON output
+        if (process.env.DEBUG === '1' || process.env.VERBOSE === '1') {
+            console.error('Failed to process diff with outline-diff format:', error);
+        }
+        return diffContent;
+    }
+}
+
+
 /***/ }),
 
 /***/ 58749:
@@ -254098,6 +254813,364 @@ var __toESM = (mod, isNodeMode, target) => (target = mod != null ? __create(__ge
 ));
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
 
+// node_modules/dotenv/package.json
+var require_package = __commonJS({
+  "node_modules/dotenv/package.json"(exports2, module2) {
+    module2.exports = {
+      name: "dotenv",
+      version: "16.6.1",
+      description: "Loads environment variables from .env file",
+      main: "lib/main.js",
+      types: "lib/main.d.ts",
+      exports: {
+        ".": {
+          types: "./lib/main.d.ts",
+          require: "./lib/main.js",
+          default: "./lib/main.js"
+        },
+        "./config": "./config.js",
+        "./config.js": "./config.js",
+        "./lib/env-options": "./lib/env-options.js",
+        "./lib/env-options.js": "./lib/env-options.js",
+        "./lib/cli-options": "./lib/cli-options.js",
+        "./lib/cli-options.js": "./lib/cli-options.js",
+        "./package.json": "./package.json"
+      },
+      scripts: {
+        "dts-check": "tsc --project tests/types/tsconfig.json",
+        lint: "standard",
+        pretest: "npm run lint && npm run dts-check",
+        test: "tap run --allow-empty-coverage --disable-coverage --timeout=60000",
+        "test:coverage": "tap run --show-full-coverage --timeout=60000 --coverage-report=text --coverage-report=lcov",
+        prerelease: "npm test",
+        release: "standard-version"
+      },
+      repository: {
+        type: "git",
+        url: "git://github.com/motdotla/dotenv.git"
+      },
+      homepage: "https://github.com/motdotla/dotenv#readme",
+      funding: "https://dotenvx.com",
+      keywords: [
+        "dotenv",
+        "env",
+        ".env",
+        "environment",
+        "variables",
+        "config",
+        "settings"
+      ],
+      readmeFilename: "README.md",
+      license: "BSD-2-Clause",
+      devDependencies: {
+        "@types/node": "^18.11.3",
+        decache: "^4.6.2",
+        sinon: "^14.0.1",
+        standard: "^17.0.0",
+        "standard-version": "^9.5.0",
+        tap: "^19.2.0",
+        typescript: "^4.8.4"
+      },
+      engines: {
+        node: ">=12"
+      },
+      browser: {
+        fs: false
+      }
+    };
+  }
+});
+
+// node_modules/dotenv/lib/main.js
+var require_main = __commonJS({
+  "node_modules/dotenv/lib/main.js"(exports2, module2) {
+    var fs6 = __nccwpck_require__(79896);
+    var path7 = __nccwpck_require__(16928);
+    var os3 = __nccwpck_require__(70857);
+    var crypto2 = __nccwpck_require__(76982);
+    var packageJson = require_package();
+    var version = packageJson.version;
+    var LINE = /(?:^|^)\s*(?:export\s+)?([\w.-]+)(?:\s*=\s*?|:\s+?)(\s*'(?:\\'|[^'])*'|\s*"(?:\\"|[^"])*"|\s*`(?:\\`|[^`])*`|[^#\r\n]+)?\s*(?:#.*)?(?:$|$)/mg;
+    function parse6(src) {
+      const obj = {};
+      let lines = src.toString();
+      lines = lines.replace(/\r\n?/mg, "\n");
+      let match2;
+      while ((match2 = LINE.exec(lines)) != null) {
+        const key = match2[1];
+        let value = match2[2] || "";
+        value = value.trim();
+        const maybeQuote = value[0];
+        value = value.replace(/^(['"`])([\s\S]*)\1$/mg, "$2");
+        if (maybeQuote === '"') {
+          value = value.replace(/\\n/g, "\n");
+          value = value.replace(/\\r/g, "\r");
+        }
+        obj[key] = value;
+      }
+      return obj;
+    }
+    function _parseVault(options) {
+      options = options || {};
+      const vaultPath = _vaultPath(options);
+      options.path = vaultPath;
+      const result = DotenvModule.configDotenv(options);
+      if (!result.parsed) {
+        const err = new Error(`MISSING_DATA: Cannot parse ${vaultPath} for an unknown reason`);
+        err.code = "MISSING_DATA";
+        throw err;
+      }
+      const keys2 = _dotenvKey(options).split(",");
+      const length = keys2.length;
+      let decrypted;
+      for (let i3 = 0; i3 < length; i3++) {
+        try {
+          const key = keys2[i3].trim();
+          const attrs = _instructions(result, key);
+          decrypted = DotenvModule.decrypt(attrs.ciphertext, attrs.key);
+          break;
+        } catch (error2) {
+          if (i3 + 1 >= length) {
+            throw error2;
+          }
+        }
+      }
+      return DotenvModule.parse(decrypted);
+    }
+    function _warn(message) {
+      console.log(`[dotenv@${version}][WARN] ${message}`);
+    }
+    function _debug(message) {
+      console.log(`[dotenv@${version}][DEBUG] ${message}`);
+    }
+    function _log(message) {
+      console.log(`[dotenv@${version}] ${message}`);
+    }
+    function _dotenvKey(options) {
+      if (options && options.DOTENV_KEY && options.DOTENV_KEY.length > 0) {
+        return options.DOTENV_KEY;
+      }
+      if (process.env.DOTENV_KEY && process.env.DOTENV_KEY.length > 0) {
+        return process.env.DOTENV_KEY;
+      }
+      return "";
+    }
+    function _instructions(result, dotenvKey) {
+      let uri;
+      try {
+        uri = new URL(dotenvKey);
+      } catch (error2) {
+        if (error2.code === "ERR_INVALID_URL") {
+          const err = new Error("INVALID_DOTENV_KEY: Wrong format. Must be in valid uri format like dotenv://:key_1234@dotenvx.com/vault/.env.vault?environment=development");
+          err.code = "INVALID_DOTENV_KEY";
+          throw err;
+        }
+        throw error2;
+      }
+      const key = uri.password;
+      if (!key) {
+        const err = new Error("INVALID_DOTENV_KEY: Missing key part");
+        err.code = "INVALID_DOTENV_KEY";
+        throw err;
+      }
+      const environment = uri.searchParams.get("environment");
+      if (!environment) {
+        const err = new Error("INVALID_DOTENV_KEY: Missing environment part");
+        err.code = "INVALID_DOTENV_KEY";
+        throw err;
+      }
+      const environmentKey = `DOTENV_VAULT_${environment.toUpperCase()}`;
+      const ciphertext = result.parsed[environmentKey];
+      if (!ciphertext) {
+        const err = new Error(`NOT_FOUND_DOTENV_ENVIRONMENT: Cannot locate environment ${environmentKey} in your .env.vault file.`);
+        err.code = "NOT_FOUND_DOTENV_ENVIRONMENT";
+        throw err;
+      }
+      return { ciphertext, key };
+    }
+    function _vaultPath(options) {
+      let possibleVaultPath = null;
+      if (options && options.path && options.path.length > 0) {
+        if (Array.isArray(options.path)) {
+          for (const filepath of options.path) {
+            if (fs6.existsSync(filepath)) {
+              possibleVaultPath = filepath.endsWith(".vault") ? filepath : `${filepath}.vault`;
+            }
+          }
+        } else {
+          possibleVaultPath = options.path.endsWith(".vault") ? options.path : `${options.path}.vault`;
+        }
+      } else {
+        possibleVaultPath = path7.resolve(process.cwd(), ".env.vault");
+      }
+      if (fs6.existsSync(possibleVaultPath)) {
+        return possibleVaultPath;
+      }
+      return null;
+    }
+    function _resolveHome(envPath) {
+      return envPath[0] === "~" ? path7.join(os3.homedir(), envPath.slice(1)) : envPath;
+    }
+    function _configVault(options) {
+      const debug = Boolean(options && options.debug);
+      const quiet = options && "quiet" in options ? options.quiet : true;
+      if (debug || !quiet) {
+        _log("Loading env from encrypted .env.vault");
+      }
+      const parsed = DotenvModule._parseVault(options);
+      let processEnv = process.env;
+      if (options && options.processEnv != null) {
+        processEnv = options.processEnv;
+      }
+      DotenvModule.populate(processEnv, parsed, options);
+      return { parsed };
+    }
+    function configDotenv(options) {
+      const dotenvPath = path7.resolve(process.cwd(), ".env");
+      let encoding = "utf8";
+      const debug = Boolean(options && options.debug);
+      const quiet = options && "quiet" in options ? options.quiet : true;
+      if (options && options.encoding) {
+        encoding = options.encoding;
+      } else {
+        if (debug) {
+          _debug("No encoding is specified. UTF-8 is used by default");
+        }
+      }
+      let optionPaths = [dotenvPath];
+      if (options && options.path) {
+        if (!Array.isArray(options.path)) {
+          optionPaths = [_resolveHome(options.path)];
+        } else {
+          optionPaths = [];
+          for (const filepath of options.path) {
+            optionPaths.push(_resolveHome(filepath));
+          }
+        }
+      }
+      let lastError;
+      const parsedAll = {};
+      for (const path8 of optionPaths) {
+        try {
+          const parsed = DotenvModule.parse(fs6.readFileSync(path8, { encoding }));
+          DotenvModule.populate(parsedAll, parsed, options);
+        } catch (e3) {
+          if (debug) {
+            _debug(`Failed to load ${path8} ${e3.message}`);
+          }
+          lastError = e3;
+        }
+      }
+      let processEnv = process.env;
+      if (options && options.processEnv != null) {
+        processEnv = options.processEnv;
+      }
+      DotenvModule.populate(processEnv, parsedAll, options);
+      if (debug || !quiet) {
+        const keysCount = Object.keys(parsedAll).length;
+        const shortPaths = [];
+        for (const filePath of optionPaths) {
+          try {
+            const relative = path7.relative(process.cwd(), filePath);
+            shortPaths.push(relative);
+          } catch (e3) {
+            if (debug) {
+              _debug(`Failed to load ${filePath} ${e3.message}`);
+            }
+            lastError = e3;
+          }
+        }
+        _log(`injecting env (${keysCount}) from ${shortPaths.join(",")}`);
+      }
+      if (lastError) {
+        return { parsed: parsedAll, error: lastError };
+      } else {
+        return { parsed: parsedAll };
+      }
+    }
+    function config(options) {
+      if (_dotenvKey(options).length === 0) {
+        return DotenvModule.configDotenv(options);
+      }
+      const vaultPath = _vaultPath(options);
+      if (!vaultPath) {
+        _warn(`You set DOTENV_KEY but you are missing a .env.vault file at ${vaultPath}. Did you forget to build it?`);
+        return DotenvModule.configDotenv(options);
+      }
+      return DotenvModule._configVault(options);
+    }
+    function decrypt(encrypted, keyStr) {
+      const key = Buffer.from(keyStr.slice(-64), "hex");
+      let ciphertext = Buffer.from(encrypted, "base64");
+      const nonce = ciphertext.subarray(0, 12);
+      const authTag = ciphertext.subarray(-16);
+      ciphertext = ciphertext.subarray(12, -16);
+      try {
+        const aesgcm = crypto2.createDecipheriv("aes-256-gcm", key, nonce);
+        aesgcm.setAuthTag(authTag);
+        return `${aesgcm.update(ciphertext)}${aesgcm.final()}`;
+      } catch (error2) {
+        const isRange = error2 instanceof RangeError;
+        const invalidKeyLength = error2.message === "Invalid key length";
+        const decryptionFailed = error2.message === "Unsupported state or unable to authenticate data";
+        if (isRange || invalidKeyLength) {
+          const err = new Error("INVALID_DOTENV_KEY: It must be 64 characters long (or more)");
+          err.code = "INVALID_DOTENV_KEY";
+          throw err;
+        } else if (decryptionFailed) {
+          const err = new Error("DECRYPTION_FAILED: Please check your DOTENV_KEY");
+          err.code = "DECRYPTION_FAILED";
+          throw err;
+        } else {
+          throw error2;
+        }
+      }
+    }
+    function populate(processEnv, parsed, options = {}) {
+      const debug = Boolean(options && options.debug);
+      const override = Boolean(options && options.override);
+      if (typeof parsed !== "object") {
+        const err = new Error("OBJECT_REQUIRED: Please check the processEnv argument being passed to populate");
+        err.code = "OBJECT_REQUIRED";
+        throw err;
+      }
+      for (const key of Object.keys(parsed)) {
+        if (Object.prototype.hasOwnProperty.call(processEnv, key)) {
+          if (override === true) {
+            processEnv[key] = parsed[key];
+          }
+          if (debug) {
+            if (override === true) {
+              _debug(`"${key}" is already defined and WAS overwritten`);
+            } else {
+              _debug(`"${key}" is already defined and was NOT overwritten`);
+            }
+          }
+        } else {
+          processEnv[key] = parsed[key];
+        }
+      }
+    }
+    var DotenvModule = {
+      configDotenv,
+      _configVault,
+      _parseVault,
+      config,
+      decrypt,
+      parse: parse6,
+      populate
+    };
+    module2.exports.configDotenv = DotenvModule.configDotenv;
+    module2.exports._configVault = DotenvModule._configVault;
+    module2.exports._parseVault = DotenvModule._parseVault;
+    module2.exports.config = DotenvModule.config;
+    module2.exports.decrypt = DotenvModule.decrypt;
+    module2.exports.parse = DotenvModule.parse;
+    module2.exports.populate = DotenvModule.populate;
+    module2.exports = DotenvModule;
+  }
+});
+
 // src/directory-resolver.js
 async function getPackageBinDir() {
   const debug = process.env.DEBUG === "1" || process.env.VERBOSE === "1";
@@ -254271,6 +255344,145 @@ var init_directory_resolver = __esm({
 });
 
 // src/downloader.js
+async function acquireFileLock(lockPath, version) {
+  const lockData = {
+    version,
+    pid: process.pid,
+    timestamp: Date.now()
+  };
+  try {
+    await import_fs_extra2.default.writeFile(lockPath, JSON.stringify(lockData), { flag: "wx" });
+    if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+      console.log(`Acquired file lock: ${lockPath}`);
+    }
+    return true;
+  } catch (error2) {
+    if (error2.code === "EEXIST") {
+      try {
+        const existingLock = JSON.parse(await import_fs_extra2.default.readFile(lockPath, "utf-8"));
+        const lockAge = Date.now() - existingLock.timestamp;
+        if (lockAge > LOCK_TIMEOUT_MS) {
+          if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+            console.log(`Removing stale lock file (age: ${Math.round(lockAge / 1e3)}s, pid: ${existingLock.pid})`);
+          }
+          await import_fs_extra2.default.remove(lockPath);
+          return false;
+        }
+        if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+          console.log(`Download in progress by process ${existingLock.pid}, waiting...`);
+        }
+        return false;
+      } catch (readError) {
+        if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+          console.log(`Lock file corrupted, removing: ${readError.message}`);
+        }
+        try {
+          await import_fs_extra2.default.remove(lockPath);
+        } catch {
+        }
+        return false;
+      }
+    }
+    if (error2.code === "EACCES" || error2.code === "EPERM" || error2.code === "EROFS") {
+      if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+        console.log(`Cannot create lock file (${error2.code}): ${lockPath}`);
+        console.log(`File-based locking unavailable, will proceed without cross-process coordination`);
+      }
+      return null;
+    }
+    if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+      console.log(`Unexpected error creating lock file: ${error2.message}`);
+      console.log(`Proceeding without file-based lock`);
+    }
+    return null;
+  }
+}
+async function releaseFileLock(lockPath) {
+  try {
+    await import_fs_extra2.default.remove(lockPath);
+    if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+      console.log(`Released file lock: ${lockPath}`);
+    }
+  } catch (error2) {
+    if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+      console.log(`Warning: Could not release lock file: ${error2.message}`);
+    }
+  }
+}
+async function waitForFileLock(lockPath, binaryPath) {
+  const startTime = Date.now();
+  while (Date.now() - startTime < MAX_LOCK_WAIT_MS) {
+    if (await import_fs_extra2.default.pathExists(binaryPath)) {
+      if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+        console.log(`Binary now available at ${binaryPath}, download completed by another process`);
+      }
+      return true;
+    }
+    const lockExists = await import_fs_extra2.default.pathExists(lockPath);
+    if (!lockExists) {
+      if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+        console.log(`Lock file removed but binary not found - download may have failed`);
+      }
+      return false;
+    }
+    try {
+      const lockData = JSON.parse(await import_fs_extra2.default.readFile(lockPath, "utf-8"));
+      const lockAge = Date.now() - lockData.timestamp;
+      if (lockAge > LOCK_TIMEOUT_MS) {
+        if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+          console.log(`Lock expired (age: ${Math.round(lockAge / 1e3)}s), will retry download`);
+        }
+        return false;
+      }
+    } catch {
+    }
+    await new Promise((resolve4) => setTimeout(resolve4, LOCK_POLL_INTERVAL_MS));
+  }
+  if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+    console.log(`Timeout waiting for file lock`);
+  }
+  return false;
+}
+async function withDownloadLock(version, downloadFn) {
+  const lockKey = version || "latest";
+  if (downloadLocks.has(lockKey)) {
+    const lock = downloadLocks.get(lockKey);
+    const lockAge = Date.now() - lock.timestamp;
+    if (lockAge > LOCK_TIMEOUT_MS) {
+      if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+        console.log(`In-memory lock for version ${lockKey} expired (age: ${Math.round(lockAge / 1e3)}s), removing stale lock`);
+      }
+      downloadLocks.delete(lockKey);
+    } else {
+      if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+        console.log(`Download already in progress in this process for version ${lockKey}, waiting...`);
+      }
+      try {
+        return await lock.promise;
+      } catch (error2) {
+        if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+          console.log(`In-memory locked download failed, will retry: ${error2.message}`);
+        }
+      }
+    }
+  }
+  const downloadPromise = Promise.race([
+    downloadFn(),
+    new Promise(
+      (_2, reject2) => setTimeout(() => reject2(new Error(`Download timeout after ${LOCK_TIMEOUT_MS / 1e3}s`)), LOCK_TIMEOUT_MS)
+    )
+  ]);
+  downloadLocks.set(lockKey, {
+    promise: downloadPromise,
+    timestamp: Date.now()
+  });
+  try {
+    const result = await downloadPromise;
+    return result;
+  } finally {
+    downloadLocks.delete(lockKey);
+  }
+}
 function detectOsArch() {
   const osType = import_os2.default.platform();
   const archType = import_os2.default.arch();
@@ -254714,16 +255926,64 @@ async function getPackageVersion() {
     return "0.0.0";
   }
 }
+async function doDownload(version) {
+  const localDir = await getPackageBinDir();
+  if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+    console.log(`Downloading probe binary (version: ${version || "latest"})...`);
+    console.log(`Using binary directory: ${localDir}`);
+  }
+  const isWindows = import_os2.default.platform() === "win32";
+  const binaryName = isWindows ? `${BINARY_NAME}.exe` : `${BINARY_NAME}-binary`;
+  const binaryPath = import_path2.default.join(localDir, binaryName);
+  const { os: osInfo, arch: archInfo } = detectOsArch();
+  let versionToUse = version;
+  let bestAsset;
+  let tagVersion;
+  if (!versionToUse || versionToUse === "0.0.0") {
+    if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+      console.log("No specific version requested, will use the latest release");
+    }
+    const { tag: tag2, assets } = await getLatestRelease(void 0);
+    tagVersion = tag2.startsWith("v") ? tag2.substring(1) : tag2;
+    bestAsset = findBestAsset(assets, osInfo, archInfo);
+    if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+      console.log(`Found release version: ${tagVersion}`);
+    }
+  } else {
+    if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+      console.log(`Direct download for version: ${versionToUse}`);
+    }
+    tagVersion = versionToUse;
+    bestAsset = constructAssetInfo(versionToUse, osInfo, archInfo);
+  }
+  const { assetPath, checksumPath } = await downloadAsset(bestAsset, localDir);
+  const checksumValid = await verifyChecksum(assetPath, checksumPath);
+  if (!checksumValid) {
+    throw new Error("Checksum verification failed");
+  }
+  const extractedBinaryPath = await extractBinary(assetPath, localDir);
+  await saveVersionInfo(tagVersion, localDir);
+  try {
+    await import_fs_extra2.default.remove(assetPath);
+    if (checksumPath) {
+      await import_fs_extra2.default.remove(checksumPath);
+    }
+  } catch (err) {
+    if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+      console.log(`Warning: Could not clean up temporary files: ${err}`);
+    }
+  }
+  if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+    console.log(`Binary successfully installed at ${extractedBinaryPath} (version: ${tagVersion})`);
+  }
+  return extractedBinaryPath;
+}
 async function downloadProbeBinary(version) {
   try {
     const localDir = await getPackageBinDir();
     if (!version || version === "0.0.0") {
       version = await getPackageVersion();
     }
-    if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
-      console.log(`Downloading probe binary (version: ${version || "latest"})...`);
-      console.log(`Using binary directory: ${localDir}`);
-    }
     const isWindows = import_os2.default.platform() === "win32";
     const binaryName = isWindows ? `${BINARY_NAME}.exe` : `${BINARY_NAME}-binary`;
     const binaryPath = import_path2.default.join(localDir, binaryName);
@@ -254739,54 +255999,44 @@ async function downloadProbeBinary(version) {
         console.log(`Existing binary version (${versionInfo?.version || "unknown"}) doesn't match requested version (${version}). Downloading new version...`);
       }
     }
-    const { os: osInfo, arch: archInfo } = detectOsArch();
-    let versionToUse = version;
-    let bestAsset;
-    let tagVersion;
-    if (!versionToUse || versionToUse === "0.0.0") {
-      if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
-        console.log("No specific version requested, will use the latest release");
-      }
-      const { tag: tag2, assets } = await getLatestRelease(void 0);
-      tagVersion = tag2.startsWith("v") ? tag2.substring(1) : tag2;
-      bestAsset = findBestAsset(assets, osInfo, archInfo);
-      if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
-        console.log(`Found release version: ${tagVersion}`);
+    const lockPath = import_path2.default.join(localDir, `.probe-download-${version}.lock`);
+    const maxRetries = 3;
+    for (let retry = 0; retry < maxRetries; retry++) {
+      const lockAcquired = await acquireFileLock(lockPath, version);
+      if (lockAcquired === true) {
+        try {
+          const result = await withDownloadLock(version, () => doDownload(version));
+          return result;
+        } finally {
+          await releaseFileLock(lockPath);
+        }
       }
-    } else {
-      if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
-        console.log(`Direct download for version: ${versionToUse}`);
+      if (lockAcquired === null) {
+        if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+          console.log(`File-based locking unavailable, downloading without cross-process coordination`);
+        }
+        return await withDownloadLock(version, () => doDownload(version));
       }
-      tagVersion = versionToUse;
-      bestAsset = constructAssetInfo(versionToUse, osInfo, archInfo);
-    }
-    const { assetPath, checksumPath } = await downloadAsset(bestAsset, localDir);
-    const checksumValid = await verifyChecksum(assetPath, checksumPath);
-    if (!checksumValid) {
-      throw new Error("Checksum verification failed");
-    }
-    const extractedBinaryPath = await extractBinary(assetPath, localDir);
-    await saveVersionInfo(tagVersion, localDir);
-    try {
-      await import_fs_extra2.default.remove(assetPath);
-      if (checksumPath) {
-        await import_fs_extra2.default.remove(checksumPath);
+      const downloadCompleted = await waitForFileLock(lockPath, binaryPath);
+      if (downloadCompleted) {
+        return binaryPath;
       }
-    } catch (err) {
-      if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
-        console.log(`Warning: Could not clean up temporary files: ${err}`);
+      if (retry < maxRetries - 1) {
+        if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
+          console.log(`Retrying download (attempt ${retry + 2}/${maxRetries})...`);
+        }
       }
     }
     if (process.env.DEBUG === "1" || process.env.VERBOSE === "1") {
-      console.log(`Binary successfully installed at ${extractedBinaryPath} (version: ${tagVersion})`);
+      console.log(`All lock attempts exhausted, attempting direct download`);
     }
-    return extractedBinaryPath;
+    return await withDownloadLock(version, () => doDownload(version));
   } catch (error2) {
     console.error("Error downloading probe binary:", error2);
     throw error2;
   }
 }
-var import_axios, import_fs_extra2, import_path2, import_crypto, import_util, import_child_process, import_tar, import_os2, import_url2, exec, REPO_OWNER, REPO_NAME, BINARY_NAME, __filename2, __dirname2;
+var import_axios, import_fs_extra2, import_path2, import_crypto, import_util, import_child_process, import_tar, import_os2, import_url2, exec, REPO_OWNER, REPO_NAME, BINARY_NAME, __filename2, __dirname2, downloadLocks, LOCK_TIMEOUT_MS, LOCK_POLL_INTERVAL_MS, MAX_LOCK_WAIT_MS;
 var init_downloader = __esm({
   "src/downloader.js"() {
     "use strict";
@@ -254807,19 +256057,25 @@ var init_downloader = __esm({
     BINARY_NAME = "probe";
     __filename2 = (0, import_url2.fileURLToPath)("file:///");
     __dirname2 = import_path2.default.dirname(__filename2);
+    downloadLocks = /* @__PURE__ */ new Map();
+    LOCK_TIMEOUT_MS = 5 * 60 * 1e3;
+    LOCK_POLL_INTERVAL_MS = 1e3;
+    MAX_LOCK_WAIT_MS = 5 * 60 * 1e3;
   }
 });
 
 // src/utils.js
 async function getBinaryPath(options = {}) {
   const { forceDownload = false, version } = options;
-  if (probeBinaryPath && !forceDownload && import_fs_extra3.default.existsSync(probeBinaryPath)) {
-    return probeBinaryPath;
-  }
   if (process.env.PROBE_PATH && import_fs_extra3.default.existsSync(process.env.PROBE_PATH) && !forceDownload) {
     probeBinaryPath = process.env.PROBE_PATH;
     return probeBinaryPath;
   }
+  if (version && !forceDownload) {
+    console.log(`Specific version ${version} requested. Downloading...`);
+    probeBinaryPath = await downloadProbeBinary(version);
+    return probeBinaryPath;
+  }
   const binDir = await getPackageBinDir();
   const isWindows = process.platform === "win32";
   const binaryName = isWindows ? "probe.exe" : "probe-binary";
@@ -254931,17 +256187,20 @@ Search: query="${queries[0]}" path="${options.path}"`;
     if (options.session) logMessage += ` session=${options.session}`;
     console.error(logMessage);
   }
-  const positionalArgs = [];
+  const args = ["search", ...cliArgs];
   if (queries.length > 0) {
-    positionalArgs.push(escapeString(queries[0]));
+    args.push(queries[0]);
+  }
+  args.push(options.path);
+  if (process.env.DEBUG === "1") {
+    console.error(`Executing: ${binaryPath} ${args.join(" ")}`);
   }
-  positionalArgs.push(escapeString(options.path));
-  const command = `${binaryPath} search ${cliArgs.join(" ")} ${positionalArgs.join(" ")}`;
   try {
-    const { stdout, stderr } = await execAsync(command, {
-      shell: true,
-      timeout: options.timeout * 1e3
+    const { stdout, stderr } = await execFileAsync(binaryPath, args, {
+      timeout: options.timeout * 1e3,
       // Convert seconds to milliseconds
+      maxBuffer: 50 * 1024 * 1024
+      // 50MB buffer for large outputs
     });
     if (stderr && process.env.DEBUG) {
       console.error(`stderr: ${stderr}`);
@@ -254990,23 +256249,25 @@ Search results: ${resultCount} matches, ${tokenCount} tokens`;
   } catch (error2) {
     if (error2.code === "ETIMEDOUT" || error2.killed) {
       const timeoutMessage = `Search operation timed out after ${options.timeout} seconds.
-Command: ${command}`;
+Binary: ${binaryPath}
+Args: ${args.join(" ")}`;
       console.error(timeoutMessage);
       throw new Error(timeoutMessage);
     }
     const errorMessage = `Error executing search command: ${error2.message}
-Command: ${command}`;
+Binary: ${binaryPath}
+Args: ${args.join(" ")}`;
     throw new Error(errorMessage);
   }
 }
-var import_child_process2, import_util2, execAsync, SEARCH_FLAG_MAP;
+var import_child_process2, import_util2, execFileAsync, SEARCH_FLAG_MAP;
 var init_search = __esm({
   "src/search.js"() {
     "use strict";
     import_child_process2 = __nccwpck_require__(35317);
     import_util2 = __nccwpck_require__(39023);
     init_utils();
-    execAsync = (0, import_util2.promisify)(import_child_process2.exec);
+    execFileAsync = (0, import_util2.promisify)(import_child_process2.execFile);
     SEARCH_FLAG_MAP = {
       filesOnly: "--files-only",
       ignore: "--ignore",
@@ -255014,6 +256275,7 @@ var init_search = __esm({
       reranker: "--reranker",
       frequencySearch: "--frequency",
       exact: "--exact",
+      strictElasticSyntax: "--strict-elastic-syntax",
       maxResults: "--max-results",
       maxBytes: "--max-bytes",
       maxTokens: "--max-tokens",
@@ -255051,7 +256313,7 @@ async function query(options) {
   }
   const command = `${binaryPath} query ${cliArgs.join(" ")}`;
   try {
-    const { stdout, stderr } = await execAsync2(command);
+    const { stdout, stderr } = await execAsync(command);
     if (stderr) {
       console.error(`stderr: ${stderr}`);
     }
@@ -255080,14 +256342,14 @@ Command: ${command}`;
     throw new Error(errorMessage);
   }
 }
-var import_child_process3, import_util3, execAsync2, QUERY_FLAG_MAP;
+var import_child_process3, import_util3, execAsync, QUERY_FLAG_MAP;
 var init_query = __esm({
   "src/query.js"() {
     "use strict";
     import_child_process3 = __nccwpck_require__(35317);
     import_util3 = __nccwpck_require__(39023);
     init_utils();
-    execAsync2 = (0, import_util3.promisify)(import_child_process3.exec);
+    execAsync = (0, import_util3.promisify)(import_child_process3.exec);
     QUERY_FLAG_MAP = {
       language: "--language",
       ignore: "--ignore",
@@ -255103,15 +256365,20 @@ async function extract(options) {
   if (!options) {
     throw new Error("Options object is required");
   }
-  if ((!options.files || !Array.isArray(options.files) || options.files.length === 0) && !options.inputFile) {
-    throw new Error("Either files array or inputFile must be provided");
+  const hasFiles = options.files && Array.isArray(options.files) && options.files.length > 0;
+  const hasInputFile = !!options.inputFile;
+  const hasContent = options.content !== void 0 && options.content !== null;
+  if (!hasFiles && !hasInputFile && !hasContent) {
+    throw new Error("Either files array, inputFile, or content must be provided");
   }
   const binaryPath = await getBinaryPath(options.binaryOptions || {});
-  const cliArgs = buildCliArgs(options, EXTRACT_FLAG_MAP);
+  const filteredOptions = { ...options };
+  delete filteredOptions.content;
+  const cliArgs = buildCliArgs(filteredOptions, EXTRACT_FLAG_MAP);
   if (options.json && !options.format) {
     cliArgs.push("--format", "json");
   }
-  if (options.files && Array.isArray(options.files) && options.files.length > 0) {
+  if (hasFiles) {
     for (const file of options.files) {
       cliArgs.push(escapeString(file));
     }
@@ -255123,75 +256390,124 @@ Extract:`;
       logMessage += ` files="${options.files.join(", ")}"`;
     }
     if (options.inputFile) logMessage += ` inputFile="${options.inputFile}"`;
+    if (options.content) logMessage += ` content=(${typeof options.content === "string" ? options.content.length : options.content.byteLength} bytes)`;
     if (options.allowTests) logMessage += " allowTests=true";
     if (options.contextLines) logMessage += ` contextLines=${options.contextLines}`;
     if (options.format) logMessage += ` format=${options.format}`;
     if (options.json) logMessage += " json=true";
     console.error(logMessage);
   }
+  if (hasContent) {
+    return extractWithStdin(binaryPath, cliArgs, options.content, options);
+  }
   const command = `${binaryPath} extract ${cliArgs.join(" ")}`;
   try {
-    const { stdout, stderr } = await execAsync3(command);
+    const { stdout, stderr } = await execAsync2(command);
     if (stderr) {
       console.error(`stderr: ${stderr}`);
     }
-    let tokenUsage = {
-      requestTokens: 0,
-      responseTokens: 0,
-      totalTokens: 0
-    };
-    if (options.files && Array.isArray(options.files)) {
-      tokenUsage.requestTokens = options.files.join(" ").length / 4;
-    } else if (options.inputFile) {
-      tokenUsage.requestTokens = options.inputFile.length / 4;
-    }
-    if (stdout.includes("Total tokens returned:")) {
-      const tokenMatch = stdout.match(/Total tokens returned: (\d+)/);
-      if (tokenMatch && tokenMatch[1]) {
-        tokenUsage.responseTokens = parseInt(tokenMatch[1], 10);
-        tokenUsage.totalTokens = tokenUsage.requestTokens + tokenUsage.responseTokens;
+    return processExtractOutput(stdout, options);
+  } catch (error2) {
+    const errorMessage = `Error executing extract command: ${error2.message}
+Command: ${command}`;
+    throw new Error(errorMessage);
+  }
+}
+function extractWithStdin(binaryPath, cliArgs, content, options) {
+  return new Promise((resolve4, reject2) => {
+    const childProcess = (0, import_child_process4.spawn)(binaryPath, ["extract", ...cliArgs], {
+      stdio: ["pipe", "pipe", "pipe"]
+    });
+    let stdout = "";
+    let stderr = "";
+    childProcess.stdout.on("data", (data2) => {
+      stdout += data2.toString();
+    });
+    childProcess.stderr.on("data", (data2) => {
+      stderr += data2.toString();
+    });
+    childProcess.on("close", (code) => {
+      if (stderr && process.env.DEBUG === "1") {
+        console.error(`stderr: ${stderr}`);
       }
+      if (code !== 0) {
+        reject2(new Error(`Extract command failed with exit code ${code}: ${stderr}`));
+        return;
+      }
+      try {
+        const result = processExtractOutput(stdout, options);
+        resolve4(result);
+      } catch (error2) {
+        reject2(error2);
+      }
+    });
+    childProcess.on("error", (error2) => {
+      reject2(new Error(`Failed to spawn extract process: ${error2.message}`));
+    });
+    if (typeof content === "string") {
+      childProcess.stdin.write(content);
+    } else {
+      childProcess.stdin.write(content);
     }
-    let output = stdout;
-    if (!output.includes("Token Usage:")) {
-      output += `
+    childProcess.stdin.end();
+  });
+}
+function processExtractOutput(stdout, options) {
+  let tokenUsage = {
+    requestTokens: 0,
+    responseTokens: 0,
+    totalTokens: 0
+  };
+  if (options.files && Array.isArray(options.files)) {
+    tokenUsage.requestTokens = options.files.join(" ").length / 4;
+  } else if (options.inputFile) {
+    tokenUsage.requestTokens = options.inputFile.length / 4;
+  } else if (options.content) {
+    const contentLength = typeof options.content === "string" ? options.content.length : options.content.byteLength;
+    tokenUsage.requestTokens = contentLength / 4;
+  }
+  if (stdout.includes("Total tokens returned:")) {
+    const tokenMatch = stdout.match(/Total tokens returned: (\d+)/);
+    if (tokenMatch && tokenMatch[1]) {
+      tokenUsage.responseTokens = parseInt(tokenMatch[1], 10);
+      tokenUsage.totalTokens = tokenUsage.requestTokens + tokenUsage.responseTokens;
+    }
+  }
+  let output = stdout;
+  if (!output.includes("Token Usage:")) {
+    output += `
 Token Usage:
   Request tokens: ${tokenUsage.requestTokens}
   Response tokens: ${tokenUsage.responseTokens}
   Total tokens: ${tokenUsage.totalTokens}
 `;
-    }
-    if (options.json || options.format === "json") {
-      try {
-        const jsonOutput = JSON.parse(stdout);
-        if (!jsonOutput.token_usage) {
-          jsonOutput.token_usage = {
-            request_tokens: tokenUsage.requestTokens,
-            response_tokens: tokenUsage.responseTokens,
-            total_tokens: tokenUsage.totalTokens
-          };
-        }
-        return jsonOutput;
-      } catch (error2) {
-        console.error("Error parsing JSON output:", error2);
-        return output;
+  }
+  if (options.json || options.format === "json") {
+    try {
+      const jsonOutput = JSON.parse(stdout);
+      if (!jsonOutput.token_usage) {
+        jsonOutput.token_usage = {
+          request_tokens: tokenUsage.requestTokens,
+          response_tokens: tokenUsage.responseTokens,
+          total_tokens: tokenUsage.totalTokens
+        };
       }
+      return jsonOutput;
+    } catch (error2) {
+      console.error("Error parsing JSON output:", error2);
+      return output;
     }
-    return output;
-  } catch (error2) {
-    const errorMessage = `Error executing extract command: ${error2.message}
-Command: ${command}`;
-    throw new Error(errorMessage);
   }
+  return output;
 }
-var import_child_process4, import_util4, execAsync3, EXTRACT_FLAG_MAP;
+var import_child_process4, import_util4, execAsync2, EXTRACT_FLAG_MAP;
 var init_extract = __esm({
   "src/extract.js"() {
     "use strict";
     import_child_process4 = __nccwpck_require__(35317);
     import_util4 = __nccwpck_require__(39023);
     init_utils();
-    execAsync3 = (0, import_util4.promisify)(import_child_process4.exec);
+    execAsync2 = (0, import_util4.promisify)(import_child_process4.exec);
     EXTRACT_FLAG_MAP = {
       allowTests: "--allow-tests",
       contextLines: "--context",
@@ -255226,7 +256542,7 @@ async function grep(options) {
   const paths = Array.isArray(options.paths) ? options.paths : [options.paths];
   cliArgs.push(...paths);
   try {
-    const { stdout, stderr } = await execFileAsync(binaryPath, cliArgs, {
+    const { stdout, stderr } = await execFileAsync2(binaryPath, cliArgs, {
       maxBuffer: 10 * 1024 * 1024,
       // 10MB buffer
       env: {
@@ -255244,14 +256560,14 @@ async function grep(options) {
     throw new Error(`Grep failed: ${errorMessage}`);
   }
 }
-var import_child_process5, import_util5, execFileAsync, GREP_FLAG_MAP;
+var import_child_process5, import_util5, execFileAsync2, GREP_FLAG_MAP;
 var init_grep = __esm({
   "src/grep.js"() {
     "use strict";
     import_child_process5 = __nccwpck_require__(35317);
     import_util5 = __nccwpck_require__(39023);
     init_utils();
-    execFileAsync = (0, import_util5.promisify)(import_child_process5.execFile);
+    execFileAsync2 = (0, import_util5.promisify)(import_child_process5.execFile);
     GREP_FLAG_MAP = {
       ignoreCase: "-i",
       lineNumbers: "-n",
@@ -259482,6 +260798,12 @@ function createMessagePreview(message, charsPerSide = 200) {
   const end = message.substring(message.length - charsPerSide);
   return `${start}...${end}`;
 }
+function parseTargets(targets) {
+  if (!targets || typeof targets !== "string") {
+    return [];
+  }
+  return targets.split(/\s+/).filter((f3) => f3.length > 0);
+}
 var searchSchema, querySchema, extractSchema, delegateSchema, bashSchema, attemptCompletionSchema, searchToolDefinition, queryToolDefinition, extractToolDefinition, delegateToolDefinition, attemptCompletionToolDefinition, bashToolDefinition, searchDescription, queryDescription, extractDescription, delegateDescription, bashDescription, DEFAULT_VALID_TOOLS;
 var init_common = __esm({
   "src/tools/common.js"() {
@@ -259509,7 +260831,7 @@ var init_common = __esm({
       end_line: external_exports.number().optional().describe("End line number for extracting a range of lines"),
       allow_tests: external_exports.boolean().optional().default(false).describe("Allow test files and test code blocks"),
       context_lines: external_exports.number().optional().default(10).describe("Number of context lines to include"),
-      format: external_exports.string().optional().default("plain").describe("Output format (plain, markdown, json, color)")
+      format: external_exports.string().optional().default("plain").describe("Output format (plain, markdown, json, xml, color, outline-xml, outline-diff)")
     });
     delegateSchema = external_exports.object({
       task: external_exports.string().describe("The task to delegate to a subagent. Be specific about what needs to be accomplished.")
@@ -260136,7 +261458,7 @@ var init_vercel = __esm({
                 format: effectiveFormat
               };
             } else if (targets) {
-              const files = [targets];
+              const files = parseTargets(targets);
               let effectiveFormat = format2;
               if (outline && format2 === "outline-xml") {
                 effectiveFormat = "xml";
@@ -261494,7 +262816,7 @@ function createExtractTool() {
     schema: extractSchema,
     func: async ({ targets, line, end_line, allow_tests, context_lines, format: format2 }) => {
       try {
-        const files = [targets];
+        const files = parseTargets(targets);
         const results = await extract({
           files,
           allowTests: allow_tests,
@@ -261720,7 +263042,7 @@ async function listFilesByLevel(options) {
   return await listFilesByLevelManually(directory, maxFiles, respectGitignore);
 }
 async function listFilesUsingGit(directory, maxFiles) {
-  const { stdout } = await execAsync4("git ls-files", { cwd: directory });
+  const { stdout } = await execAsync3("git ls-files", { cwd: directory });
   const files = stdout.split("\n").filter(Boolean);
   const sortedFiles = files.sort((a3, b3) => {
     const depthA = a3.split(import_path6.default.sep).length;
@@ -261786,7 +263108,7 @@ function shouldIgnore(filePath, ignorePatterns) {
   }
   return false;
 }
-var import_fs2, import_path6, import_util9, import_child_process8, execAsync4;
+var import_fs2, import_path6, import_util9, import_child_process8, execAsync3;
 var init_file_lister = __esm({
   "src/utils/file-lister.js"() {
     "use strict";
@@ -261794,7 +263116,7 @@ var init_file_lister = __esm({
     import_path6 = __toESM(__nccwpck_require__(16928), 1);
     import_util9 = __nccwpck_require__(39023);
     import_child_process8 = __nccwpck_require__(35317);
-    execAsync4 = (0, import_util9.promisify)(import_child_process8.exec);
+    execAsync3 = (0, import_util9.promisify)(import_child_process8.exec);
   }
 });
 
@@ -264853,22 +266175,13 @@ var require_dist_cjs18 = __commonJS({
     var sdkStreamMixin2 = require_sdk_stream_mixin();
     var splitStream = require_splitStream();
     var streamTypeCheck = require_stream_type_check();
-    function transformToString(payload2, encoding = "utf-8") {
-      if (encoding === "base64") {
-        return utilBase64.toBase64(payload2);
-      }
-      return utilUtf8.toUtf8(payload2);
-    }
-    function transformFromString(str, encoding) {
-      if (encoding === "base64") {
-        return Uint8ArrayBlobAdapter2.mutate(utilBase64.fromBase64(str));
-      }
-      return Uint8ArrayBlobAdapter2.mutate(utilUtf8.fromUtf8(str));
-    }
     var Uint8ArrayBlobAdapter2 = class _Uint8ArrayBlobAdapter extends Uint8Array {
       static fromString(source, encoding = "utf-8") {
         if (typeof source === "string") {
-          return transformFromString(source, encoding);
+          if (encoding === "base64") {
+            return _Uint8ArrayBlobAdapter.mutate(utilBase64.fromBase64(source));
+          }
+          return _Uint8ArrayBlobAdapter.mutate(utilUtf8.fromUtf8(source));
         }
         throw new Error(`Unsupported conversion from ${typeof source} to Uint8ArrayBlobAdapter.`);
       }
@@ -264877,7 +266190,10 @@ var require_dist_cjs18 = __commonJS({
         return source;
       }
       transformToString(encoding = "utf-8") {
-        return transformToString(this, encoding);
+        if (encoding === "base64") {
+          return utilBase64.toBase64(this);
+        }
+        return utilUtf8.toUtf8(this);
       }
     };
     exports2.Uint8ArrayBlobAdapter = Uint8ArrayBlobAdapter2;
@@ -264990,6 +266306,138 @@ var init_deref = __esm({
   }
 });
 
+// node_modules/@smithy/core/dist-es/submodules/schema/schemas/operation.js
+var operation;
+var init_operation = __esm({
+  "node_modules/@smithy/core/dist-es/submodules/schema/schemas/operation.js"() {
+    operation = (namespace, name14, traits, input, output) => ({
+      name: name14,
+      namespace,
+      traits,
+      input,
+      output
+    });
+  }
+});
+
+// node_modules/@smithy/core/dist-es/submodules/schema/middleware/schemaDeserializationMiddleware.js
+var import_protocol_http2, import_util_middleware3, schemaDeserializationMiddleware, findHeader;
+var init_schemaDeserializationMiddleware = __esm({
+  "node_modules/@smithy/core/dist-es/submodules/schema/middleware/schemaDeserializationMiddleware.js"() {
+    import_protocol_http2 = __toESM(require_dist_cjs2());
+    import_util_middleware3 = __toESM(require_dist_cjs7());
+    init_operation();
+    schemaDeserializationMiddleware = (config) => (next, context3) => async (args) => {
+      const { response } = await next(args);
+      const { operationSchema } = (0, import_util_middleware3.getSmithyContext)(context3);
+      const [, ns, n3, t3, i3, o3] = operationSchema ?? [];
+      try {
+        const parsed = await config.protocol.deserializeResponse(operation(ns, n3, t3, i3, o3), {
+          ...config,
+          ...context3
+        }, response);
+        return {
+          response,
+          output: parsed
+        };
+      } catch (error2) {
+        Object.defineProperty(error2, "$response", {
+          value: response
+        });
+        if (!("$metadata" in error2)) {
+          const hint = `Deserialization error: to see the raw response, inspect the hidden field {error}.$response on this object.`;
+          try {
+            error2.message += "\n  " + hint;
+          } catch (e3) {
+            if (!context3.logger || context3.logger?.constructor?.name === "NoOpLogger") {
+              console.warn(hint);
+            } else {
+              context3.logger?.warn?.(hint);
+            }
+          }
+          if (typeof error2.$responseBodyText !== "undefined") {
+            if (error2.$response) {
+              error2.$response.body = error2.$responseBodyText;
+            }
+          }
+          try {
+            if (import_protocol_http2.HttpResponse.isInstance(response)) {
+              const { headers = {} } = response;
+              const headerEntries = Object.entries(headers);
+              error2.$metadata = {
+                httpStatusCode: response.statusCode,
+                requestId: findHeader(/^x-[\w-]+-request-?id$/, headerEntries),
+                extendedRequestId: findHeader(/^x-[\w-]+-id-2$/, headerEntries),
+                cfId: findHeader(/^x-[\w-]+-cf-id$/, headerEntries)
+              };
+            }
+          } catch (e3) {
+          }
+        }
+        throw error2;
+      }
+    };
+    findHeader = (pattern, headers) => {
+      return (headers.find(([k3]) => {
+        return k3.match(pattern);
+      }) || [void 0, void 0])[1];
+    };
+  }
+});
+
+// node_modules/@smithy/core/dist-es/submodules/schema/middleware/schemaSerializationMiddleware.js
+var import_util_middleware4, schemaSerializationMiddleware;
+var init_schemaSerializationMiddleware = __esm({
+  "node_modules/@smithy/core/dist-es/submodules/schema/middleware/schemaSerializationMiddleware.js"() {
+    import_util_middleware4 = __toESM(require_dist_cjs7());
+    init_operation();
+    schemaSerializationMiddleware = (config) => (next, context3) => async (args) => {
+      const { operationSchema } = (0, import_util_middleware4.getSmithyContext)(context3);
+      const [, ns, n3, t3, i3, o3] = operationSchema ?? [];
+      const endpoint = context3.endpointV2?.url && config.urlParser ? async () => config.urlParser(context3.endpointV2.url) : config.endpoint;
+      const request = await config.protocol.serializeRequest(operation(ns, n3, t3, i3, o3), args.input, {
+        ...config,
+        ...context3,
+        endpoint
+      });
+      return next({
+        ...args,
+        request
+      });
+    };
+  }
+});
+
+// node_modules/@smithy/core/dist-es/submodules/schema/middleware/getSchemaSerdePlugin.js
+function getSchemaSerdePlugin(config) {
+  return {
+    applyToStack: (commandStack) => {
+      commandStack.add(schemaSerializationMiddleware(config), serializerMiddlewareOption2);
+      commandStack.add(schemaDeserializationMiddleware(config), deserializerMiddlewareOption);
+      config.protocol.setSerdeContext(config);
+    }
+  };
+}
+var deserializerMiddlewareOption, serializerMiddlewareOption2;
+var init_getSchemaSerdePlugin = __esm({
+  "node_modules/@smithy/core/dist-es/submodules/schema/middleware/getSchemaSerdePlugin.js"() {
+    init_schemaDeserializationMiddleware();
+    init_schemaSerializationMiddleware();
+    deserializerMiddlewareOption = {
+      name: "deserializerMiddleware",
+      step: "deserialize",
+      tags: ["DESERIALIZER"],
+      override: true
+    };
+    serializerMiddlewareOption2 = {
+      name: "serializerMiddleware",
+      step: "serialize",
+      tags: ["SERIALIZER"],
+      override: true
+    };
+  }
+});
+
 // node_modules/@smithy/core/dist-es/submodules/schema/schemas/Schema.js
 var Schema;
 var init_Schema = __esm({
@@ -265017,51 +266465,6 @@ var init_Schema = __esm({
   }
 });
 
-// node_modules/@smithy/core/dist-es/submodules/schema/schemas/StructureSchema.js
-var StructureSchema, struct;
-var init_StructureSchema = __esm({
-  "node_modules/@smithy/core/dist-es/submodules/schema/schemas/StructureSchema.js"() {
-    init_Schema();
-    StructureSchema = class _StructureSchema extends Schema {
-      static symbol = Symbol.for("@smithy/str");
-      name;
-      traits;
-      memberNames;
-      memberList;
-      symbol = _StructureSchema.symbol;
-    };
-    struct = (namespace, name14, traits, memberNames, memberList) => Schema.assign(new StructureSchema(), {
-      name: name14,
-      namespace,
-      traits,
-      memberNames,
-      memberList
-    });
-  }
-});
-
-// node_modules/@smithy/core/dist-es/submodules/schema/schemas/ErrorSchema.js
-var ErrorSchema, error;
-var init_ErrorSchema = __esm({
-  "node_modules/@smithy/core/dist-es/submodules/schema/schemas/ErrorSchema.js"() {
-    init_Schema();
-    init_StructureSchema();
-    ErrorSchema = class _ErrorSchema extends StructureSchema {
-      static symbol = Symbol.for("@smithy/err");
-      ctor;
-      symbol = _ErrorSchema.symbol;
-    };
-    error = (namespace, name14, traits, memberNames, memberList, ctor) => Schema.assign(new ErrorSchema(), {
-      name: name14,
-      namespace,
-      traits,
-      memberNames,
-      memberList,
-      ctor: null
-    });
-  }
-});
-
 // node_modules/@smithy/core/dist-es/submodules/schema/schemas/ListSchema.js
 var ListSchema, list;
 var init_ListSchema = __esm({
@@ -265129,29 +266532,47 @@ var init_OperationSchema = __esm({
   }
 });
 
-// node_modules/@smithy/core/dist-es/submodules/schema/schemas/SimpleSchema.js
-var SimpleSchema, sim, simAdapter;
-var init_SimpleSchema = __esm({
-  "node_modules/@smithy/core/dist-es/submodules/schema/schemas/SimpleSchema.js"() {
+// node_modules/@smithy/core/dist-es/submodules/schema/schemas/StructureSchema.js
+var StructureSchema, struct;
+var init_StructureSchema = __esm({
+  "node_modules/@smithy/core/dist-es/submodules/schema/schemas/StructureSchema.js"() {
     init_Schema();
-    SimpleSchema = class _SimpleSchema extends Schema {
-      static symbol = Symbol.for("@smithy/sim");
+    StructureSchema = class _StructureSchema extends Schema {
+      static symbol = Symbol.for("@smithy/str");
       name;
-      schemaRef;
       traits;
-      symbol = _SimpleSchema.symbol;
+      memberNames;
+      memberList;
+      symbol = _StructureSchema.symbol;
     };
-    sim = (namespace, name14, schemaRef, traits) => Schema.assign(new SimpleSchema(), {
+    struct = (namespace, name14, traits, memberNames, memberList) => Schema.assign(new StructureSchema(), {
       name: name14,
       namespace,
       traits,
-      schemaRef
+      memberNames,
+      memberList
     });
-    simAdapter = (namespace, name14, traits, schemaRef) => Schema.assign(new SimpleSchema(), {
+  }
+});
+
+// node_modules/@smithy/core/dist-es/submodules/schema/schemas/ErrorSchema.js
+var ErrorSchema, error;
+var init_ErrorSchema = __esm({
+  "node_modules/@smithy/core/dist-es/submodules/schema/schemas/ErrorSchema.js"() {
+    init_Schema();
+    init_StructureSchema();
+    ErrorSchema = class _ErrorSchema extends StructureSchema {
+      static symbol = Symbol.for("@smithy/err");
+      ctor;
+      symbol = _ErrorSchema.symbol;
+    };
+    error = (namespace, name14, traits, memberNames, memberList, ctor) => Schema.assign(new ErrorSchema(), {
       name: name14,
       namespace,
       traits,
-      schemaRef
+      memberNames,
+      memberList,
+      ctor: null
     });
   }
 });
@@ -265195,28 +266616,10 @@ function member(memberSchema, memberName) {
   const internalCtorAccess = NormalizedSchema;
   return new internalCtorAccess(memberSchema, memberName);
 }
-function hydrate(ss) {
-  const [id, ...rest] = ss;
-  return {
-    [0]: simAdapter,
-    [1]: list,
-    [2]: map,
-    [3]: struct,
-    [-3]: error,
-    [9]: op
-  }[id].call(null, ...rest);
-}
 var NormalizedSchema, isMemberSchema, isStaticSchema;
 var init_NormalizedSchema = __esm({
   "node_modules/@smithy/core/dist-es/submodules/schema/schemas/NormalizedSchema.js"() {
     init_deref();
-    init_ErrorSchema();
-    init_ListSchema();
-    init_MapSchema();
-    init_OperationSchema();
-    init_Schema();
-    init_SimpleSchema();
-    init_StructureSchema();
     init_translateTraits();
     NormalizedSchema = class _NormalizedSchema {
       ref;
@@ -265242,8 +266645,6 @@ var init_NormalizedSchema = __esm({
           schema = deref(_ref);
           this._isMemberSchema = true;
         }
-        if (isStaticSchema(schema))
-          schema = hydrate(schema);
         if (traitStack.length > 0) {
           this.memberTraits = {};
           for (let i3 = traitStack.length - 1; i3 >= 0; --i3) {
@@ -265262,18 +266663,24 @@ var init_NormalizedSchema = __esm({
           return;
         }
         this.schema = deref(schema);
-        if (this.schema && typeof this.schema === "object") {
-          this.traits = this.schema?.traits ?? {};
+        if (isStaticSchema(this.schema)) {
+          this.name = `${this.schema[1]}#${this.schema[2]}`;
+          this.traits = this.schema[3];
         } else {
+          this.name = this.memberName ?? String(schema);
           this.traits = 0;
         }
-        this.name = (this.schema instanceof Schema ? this.schema.getName?.() : void 0) ?? this.memberName ?? String(schema);
         if (this._isMemberSchema && !memberName) {
           throw new Error(`@smithy/core/schema - NormalizedSchema member init ${this.getName(true)} missing member name.`);
         }
       }
       static [Symbol.hasInstance](lhs) {
-        return Schema[Symbol.hasInstance].bind(this)(lhs);
+        const isPrototype2 = this.prototype.isPrototypeOf(lhs);
+        if (!isPrototype2 && typeof lhs === "object" && lhs !== null) {
+          const ns = lhs;
+          return ns.symbol === this.symbol;
+        }
+        return isPrototype2;
       }
       static of(ref) {
         const sc = deref(ref);
@@ -265291,7 +266698,11 @@ var init_NormalizedSchema = __esm({
         return new _NormalizedSchema(sc);
       }
       getSchema() {
-        return deref(this.schema?.schemaRef ?? this.schema);
+        const sc = this.schema;
+        if (sc[0] === 0) {
+          return sc[4];
+        }
+        return sc;
       }
       getName(withNamespace = false) {
         const { name: name14 } = this;
@@ -265306,15 +266717,15 @@ var init_NormalizedSchema = __esm({
       }
       isListSchema() {
         const sc = this.getSchema();
-        return typeof sc === "number" ? sc >= 64 && sc < 128 : sc instanceof ListSchema;
+        return typeof sc === "number" ? sc >= 64 && sc < 128 : sc[0] === 1;
       }
       isMapSchema() {
         const sc = this.getSchema();
-        return typeof sc === "number" ? sc >= 128 && sc <= 255 : sc instanceof MapSchema;
+        return typeof sc === "number" ? sc >= 128 && sc <= 255 : sc[0] === 2;
       }
       isStructSchema() {
         const sc = this.getSchema();
-        return sc !== null && typeof sc === "object" && "members" in sc || sc instanceof StructureSchema;
+        return sc[0] === 3 || sc[0] === -3;
       }
       isBlobSchema() {
         const sc = this.getSchema();
@@ -265372,13 +266783,13 @@ var init_NormalizedSchema = __esm({
           throw new Error(`@smithy/core/schema - cannot get key for non-map: ${this.getName(true)}`);
         }
         const schema = this.getSchema();
-        const memberSchema = isDoc ? 15 : schema?.keySchema ?? 0;
+        const memberSchema = isDoc ? 15 : schema[4] ?? 0;
         return member([memberSchema, 0], "key");
       }
       getValueSchema() {
         const sc = this.getSchema();
         const [isDoc, isMap2, isList] = [this.isDocumentSchema(), this.isMapSchema(), this.isListSchema()];
-        const memberSchema = typeof sc === "number" ? 63 & sc : sc && typeof sc === "object" && (isMap2 || isList) ? sc.valueSchema : isDoc ? 15 : void 0;
+        const memberSchema = typeof sc === "number" ? 63 & sc : sc && typeof sc === "object" && (isMap2 || isList) ? sc[3 + sc[0]] : isDoc ? 15 : void 0;
         if (memberSchema != null) {
           return member([memberSchema, 0], isMap2 ? "value" : "member");
         }
@@ -265386,9 +266797,9 @@ var init_NormalizedSchema = __esm({
       }
       getMemberSchema(memberName) {
         const struct2 = this.getSchema();
-        if (this.isStructSchema() && struct2.memberNames.includes(memberName)) {
-          const i3 = struct2.memberNames.indexOf(memberName);
-          const memberSchema = struct2.memberList[i3];
+        if (this.isStructSchema() && struct2[4].includes(memberName)) {
+          const i3 = struct2[4].indexOf(memberName);
+          const memberSchema = struct2[5][i3];
           return member(isMemberSchema(memberSchema) ? memberSchema : [memberSchema, 0], memberName);
         }
         if (this.isDocumentSchema()) {
@@ -265424,8 +266835,8 @@ var init_NormalizedSchema = __esm({
           throw new Error("@smithy/core/schema - cannot iterate non-struct schema.");
         }
         const struct2 = this.getSchema();
-        for (let i3 = 0; i3 < struct2.memberNames.length; ++i3) {
-          yield [struct2.memberNames[i3], member([struct2.memberList[i3], 0], struct2.memberNames[i3])];
+        for (let i3 = 0; i3 < struct2[4].length; ++i3) {
+          yield [struct2[4][i3], member([struct2[5][i3], 0], struct2[4][i3])];
         }
       }
     };
@@ -265434,125 +266845,30 @@ var init_NormalizedSchema = __esm({
   }
 });
 
-// node_modules/@smithy/core/dist-es/submodules/schema/middleware/schemaDeserializationMiddleware.js
-var import_protocol_http2, import_util_middleware3, schemaDeserializationMiddleware, findHeader;
-var init_schemaDeserializationMiddleware = __esm({
-  "node_modules/@smithy/core/dist-es/submodules/schema/middleware/schemaDeserializationMiddleware.js"() {
-    import_protocol_http2 = __toESM(require_dist_cjs2());
-    import_util_middleware3 = __toESM(require_dist_cjs7());
-    init_NormalizedSchema();
-    schemaDeserializationMiddleware = (config) => (next, context3) => async (args) => {
-      const { response } = await next(args);
-      let { operationSchema } = (0, import_util_middleware3.getSmithyContext)(context3);
-      if (isStaticSchema(operationSchema)) {
-        operationSchema = hydrate(operationSchema);
-      }
-      try {
-        const parsed = await config.protocol.deserializeResponse(operationSchema, {
-          ...config,
-          ...context3
-        }, response);
-        return {
-          response,
-          output: parsed
-        };
-      } catch (error2) {
-        Object.defineProperty(error2, "$response", {
-          value: response
-        });
-        if (!("$metadata" in error2)) {
-          const hint = `Deserialization error: to see the raw response, inspect the hidden field {error}.$response on this object.`;
-          try {
-            error2.message += "\n  " + hint;
-          } catch (e3) {
-            if (!context3.logger || context3.logger?.constructor?.name === "NoOpLogger") {
-              console.warn(hint);
-            } else {
-              context3.logger?.warn?.(hint);
-            }
-          }
-          if (typeof error2.$responseBodyText !== "undefined") {
-            if (error2.$response) {
-              error2.$response.body = error2.$responseBodyText;
-            }
-          }
-          try {
-            if (import_protocol_http2.HttpResponse.isInstance(response)) {
-              const { headers = {} } = response;
-              const headerEntries = Object.entries(headers);
-              error2.$metadata = {
-                httpStatusCode: response.statusCode,
-                requestId: findHeader(/^x-[\w-]+-request-?id$/, headerEntries),
-                extendedRequestId: findHeader(/^x-[\w-]+-id-2$/, headerEntries),
-                cfId: findHeader(/^x-[\w-]+-cf-id$/, headerEntries)
-              };
-            }
-          } catch (e3) {
-          }
-        }
-        throw error2;
-      }
-    };
-    findHeader = (pattern, headers) => {
-      return (headers.find(([k3]) => {
-        return k3.match(pattern);
-      }) || [void 0, void 0])[1];
-    };
-  }
-});
-
-// node_modules/@smithy/core/dist-es/submodules/schema/middleware/schemaSerializationMiddleware.js
-var import_util_middleware4, schemaSerializationMiddleware;
-var init_schemaSerializationMiddleware = __esm({
-  "node_modules/@smithy/core/dist-es/submodules/schema/middleware/schemaSerializationMiddleware.js"() {
-    import_util_middleware4 = __toESM(require_dist_cjs7());
-    init_NormalizedSchema();
-    schemaSerializationMiddleware = (config) => (next, context3) => async (args) => {
-      let { operationSchema } = (0, import_util_middleware4.getSmithyContext)(context3);
-      if (isStaticSchema(operationSchema)) {
-        operationSchema = hydrate(operationSchema);
-      }
-      const endpoint = context3.endpointV2?.url && config.urlParser ? async () => config.urlParser(context3.endpointV2.url) : config.endpoint;
-      const request = await config.protocol.serializeRequest(operationSchema, args.input, {
-        ...config,
-        ...context3,
-        endpoint
-      });
-      return next({
-        ...args,
-        request
-      });
-    };
-  }
-});
-
-// node_modules/@smithy/core/dist-es/submodules/schema/middleware/getSchemaSerdePlugin.js
-function getSchemaSerdePlugin(config) {
-  return {
-    applyToStack: (commandStack) => {
-      commandStack.add(schemaSerializationMiddleware(config), serializerMiddlewareOption2);
-      commandStack.add(schemaDeserializationMiddleware(config), deserializerMiddlewareOption);
-      config.protocol.setSerdeContext(config);
-    }
-  };
-}
-var deserializerMiddlewareOption, serializerMiddlewareOption2;
-var init_getSchemaSerdePlugin = __esm({
-  "node_modules/@smithy/core/dist-es/submodules/schema/middleware/getSchemaSerdePlugin.js"() {
-    init_schemaDeserializationMiddleware();
-    init_schemaSerializationMiddleware();
-    deserializerMiddlewareOption = {
-      name: "deserializerMiddleware",
-      step: "deserialize",
-      tags: ["DESERIALIZER"],
-      override: true
-    };
-    serializerMiddlewareOption2 = {
-      name: "serializerMiddleware",
-      step: "serialize",
-      tags: ["SERIALIZER"],
-      override: true
+// node_modules/@smithy/core/dist-es/submodules/schema/schemas/SimpleSchema.js
+var SimpleSchema, sim, simAdapter;
+var init_SimpleSchema = __esm({
+  "node_modules/@smithy/core/dist-es/submodules/schema/schemas/SimpleSchema.js"() {
+    init_Schema();
+    SimpleSchema = class _SimpleSchema extends Schema {
+      static symbol = Symbol.for("@smithy/sim");
+      name;
+      schemaRef;
+      traits;
+      symbol = _SimpleSchema.symbol;
     };
+    sim = (namespace, name14, schemaRef, traits) => Schema.assign(new SimpleSchema(), {
+      name: name14,
+      namespace,
+      traits,
+      schemaRef
+    });
+    simAdapter = (namespace, name14, traits, schemaRef) => Schema.assign(new SimpleSchema(), {
+      name: name14,
+      namespace,
+      traits,
+      schemaRef
+    });
   }
 });
 
@@ -265620,7 +266936,7 @@ var init_TypeRegistry = __esm({
       getErrorCtor(es) {
         const $error = es;
         const registry = _TypeRegistry.for($error[1]);
-        return registry.exceptions.get(es);
+        return registry.exceptions.get($error);
       }
       getBaseException() {
         for (const exceptionKey of this.exceptions.keys()) {
@@ -265668,11 +266984,11 @@ __export(schema_exports, {
   deserializerMiddlewareOption: () => deserializerMiddlewareOption,
   error: () => error,
   getSchemaSerdePlugin: () => getSchemaSerdePlugin,
-  hydrate: () => hydrate,
   isStaticSchema: () => isStaticSchema,
   list: () => list,
   map: () => map,
   op: () => op,
+  operation: () => operation,
   serializerMiddlewareOption: () => serializerMiddlewareOption2,
   sim: () => sim,
   simAdapter: () => simAdapter,
@@ -265686,6 +267002,7 @@ var init_schema = __esm({
     init_ListSchema();
     init_MapSchema();
     init_OperationSchema();
+    init_operation();
     init_ErrorSchema();
     init_NormalizedSchema();
     init_Schema();
@@ -267052,7 +268369,6 @@ var init_EventStreamSerde = __esm({
         const marshaller = this.marshaller;
         const eventStreamMember = requestSchema.getEventStreamMember();
         const unionSchema = requestSchema.getMemberSchema(eventStreamMember);
-        const memberSchemas = unionSchema.getMemberSchemas();
         const serializer = this.serializer;
         const defaultContentType = this.defaultContentType;
         const initialRequestMarker = Symbol("initialRequestMarker");
@@ -267163,7 +268479,7 @@ var init_EventStreamSerde = __esm({
         let explicitPayloadContentType;
         const isKnownSchema = (() => {
           const struct2 = unionSchema.getSchema();
-          return struct2.memberNames.includes(unionMember);
+          return struct2[4].includes(unionMember);
         })();
         const additionalHeaders = {};
         if (!isKnownSchema) {
@@ -267297,10 +268613,10 @@ var init_HttpProtocol = __esm({
         }
       }
       setHostPrefix(request, operationSchema, input) {
-        const operationNs = NormalizedSchema.of(operationSchema);
         const inputNs = NormalizedSchema.of(operationSchema.input);
-        if (operationNs.getMergedTraits().endpoint) {
-          let hostPrefix = operationNs.getMergedTraits().endpoint?.[0];
+        const opTraits = translateTraits(operationSchema.traits ?? {});
+        if (opTraits.endpoint) {
+          let hostPrefix = opTraits.endpoint?.[0];
           if (typeof hostPrefix === "string") {
             const hostLabelInputs = [...inputNs.structIterator()].filter(([, member2]) => member2.getMergedTraits().hostLabel);
             for (const [name14] of hostLabelInputs) {
@@ -268579,20 +269895,24 @@ var require_dist_cjs20 = __commonJS({
       if (typeof obj === "string") {
         return evaluateTemplate(obj, options);
       } else if (obj["fn"]) {
-        return callFunction(obj, options);
+        return group$2.callFunction(obj, options);
       } else if (obj["ref"]) {
         return getReferenceValue(obj, options);
       }
       throw new EndpointError(`'${keyName}': ${String(obj)} is not a string, function or reference.`);
     };
     var callFunction = ({ fn, argv }, options) => {
-      const evaluatedArgs = argv.map((arg) => ["boolean", "number"].includes(typeof arg) ? arg : evaluateExpression(arg, "arg", options));
+      const evaluatedArgs = argv.map((arg) => ["boolean", "number"].includes(typeof arg) ? arg : group$2.evaluateExpression(arg, "arg", options));
       const fnSegments = fn.split(".");
       if (fnSegments[0] in customEndpointFunctions3 && fnSegments[1] != null) {
         return customEndpointFunctions3[fnSegments[0]][fnSegments[1]](...evaluatedArgs);
       }
       return endpointFunctions[fn](...evaluatedArgs);
     };
+    var group$2 = {
+      evaluateExpression,
+      callFunction
+    };
     var evaluateCondition = ({ assign: assign2, ...fnArgs }, options) => {
       if (assign2 && assign2 in options.referenceRecord) {
         throw new EndpointError(`'${assign2}' is already defined in Reference Record.`);
@@ -268634,6 +269954,10 @@ var require_dist_cjs20 = __commonJS({
         return processedExpr;
       })
     }), {});
+    var getEndpointProperties = (properties, options) => Object.entries(properties).reduce((acc, [propertyKey, propertyVal]) => ({
+      ...acc,
+      [propertyKey]: group$1.getEndpointProperty(propertyVal, options)
+    }), {});
     var getEndpointProperty = (property2, options) => {
       if (Array.isArray(property2)) {
         return property2.map((propertyEntry) => getEndpointProperty(propertyEntry, options));
@@ -268645,17 +269969,17 @@ var require_dist_cjs20 = __commonJS({
           if (property2 === null) {
             throw new EndpointError(`Unexpected endpoint property: ${property2}`);
           }
-          return getEndpointProperties(property2, options);
+          return group$1.getEndpointProperties(property2, options);
         case "boolean":
           return property2;
         default:
           throw new EndpointError(`Unexpected endpoint property type: ${typeof property2}`);
       }
     };
-    var getEndpointProperties = (properties, options) => Object.entries(properties).reduce((acc, [propertyKey, propertyVal]) => ({
-      ...acc,
-      [propertyKey]: getEndpointProperty(propertyVal, options)
-    }), {});
+    var group$1 = {
+      getEndpointProperty,
+      getEndpointProperties
+    };
     var getEndpointUrl = (endpointUrl, options) => {
       const expression = evaluateExpression(endpointUrl, "Endpoint URL", options);
       if (typeof expression === "string") {
@@ -268701,17 +270025,6 @@ var require_dist_cjs20 = __commonJS({
         referenceRecord: { ...options.referenceRecord, ...referenceRecord }
       }));
     };
-    var evaluateTreeRule = (treeRule, options) => {
-      const { conditions, rules } = treeRule;
-      const { result, referenceRecord } = evaluateConditions(conditions, options);
-      if (!result) {
-        return;
-      }
-      return evaluateRules(rules, {
-        ...options,
-        referenceRecord: { ...options.referenceRecord, ...referenceRecord }
-      });
-    };
     var evaluateRules = (rules, options) => {
       for (const rule of rules) {
         if (rule.type === "endpoint") {
@@ -268722,7 +270035,7 @@ var require_dist_cjs20 = __commonJS({
         } else if (rule.type === "error") {
           evaluateErrorRule(rule, options);
         } else if (rule.type === "tree") {
-          const endpointOrUndefined = evaluateTreeRule(rule, options);
+          const endpointOrUndefined = group.evaluateTreeRule(rule, options);
           if (endpointOrUndefined) {
             return endpointOrUndefined;
           }
@@ -268732,6 +270045,21 @@ var require_dist_cjs20 = __commonJS({
       }
       throw new EndpointError(`Rules evaluation failed`);
     };
+    var evaluateTreeRule = (treeRule, options) => {
+      const { conditions, rules } = treeRule;
+      const { result, referenceRecord } = evaluateConditions(conditions, options);
+      if (!result) {
+        return;
+      }
+      return group.evaluateRules(rules, {
+        ...options,
+        referenceRecord: { ...options.referenceRecord, ...referenceRecord }
+      });
+    };
+    var group = {
+      evaluateRules,
+      evaluateTreeRule
+    };
     var resolveEndpoint3 = (ruleSetObject, options) => {
       const { endpointParams, logger: logger2 } = options;
       const { parameters, rules } = ruleSetObject;
@@ -271254,8 +272582,8 @@ var init_SmithyRpcV2CborProtocol = __esm({
           } catch (e3) {
           }
         }
-        const { service, operation } = (0, import_util_middleware5.getSmithyContext)(context3);
-        const path7 = `/service/${service}/operation/${operation}`;
+        const { service, operation: operation2 } = (0, import_util_middleware5.getSmithyContext)(context3);
+        const path7 = `/service/${service}/operation/${operation2}`;
         if (request.path.endsWith("/")) {
           request.path += path7.slice(1);
         } else {
@@ -271960,10 +273288,10 @@ var require_dist_cjs27 = __commonJS({
         this._middlewareFn = middlewareSupplier;
         return this;
       }
-      s(service, operation, smithyContext = {}) {
+      s(service, operation2, smithyContext = {}) {
         this._smithyContext = {
           service,
-          operation,
+          operation: operation2,
           ...smithyContext
         };
         return this;
@@ -271990,9 +273318,9 @@ var require_dist_cjs27 = __commonJS({
         this._deserializer = deserializer;
         return this;
       }
-      sc(operation) {
-        this._operationSchema = operation;
-        this._smithyContext.operationSchema = operation;
+      sc(operation2) {
+        this._operationSchema = operation2;
+        this._smithyContext.operationSchema = operation2;
         return this;
       }
       build() {
@@ -272844,7 +274172,7 @@ var init_AwsJsonRpcProtocol = __esm({
         }
         Object.assign(request.headers, {
           "content-type": `application/x-amz-json-${this.getJsonRpcVersion()}`,
-          "x-amz-target": `${this.serviceTarget}.${NormalizedSchema.of(operationSchema).getName()}`
+          "x-amz-target": `${this.serviceTarget}.${operationSchema.name}`
         });
         if (this.awsQueryCompatible) {
           request.headers["x-amzn-query-mode"] = "true";
@@ -275309,7 +276637,7 @@ var require_uint32ArrayFrom = __commonJS({
 });
 
 // node_modules/@aws-crypto/util/build/main/index.js
-var require_main = __commonJS({
+var require_main2 = __commonJS({
   "node_modules/@aws-crypto/util/build/main/index.js"(exports2) {
     "use strict";
     Object.defineProperty(exports2, "__esModule", { value: true });
@@ -275340,8 +276668,8 @@ var require_aws_crc32 = __commonJS({
     Object.defineProperty(exports2, "__esModule", { value: true });
     exports2.AwsCrc32 = void 0;
     var tslib_1 = (init_tslib_es6(), __toCommonJS(tslib_es6_exports));
-    var util_1 = require_main();
-    var index_1 = require_main2();
+    var util_1 = require_main2();
+    var index_1 = require_main3();
     var AwsCrc32 = (
       /** @class */
       (function() {
@@ -275371,13 +276699,13 @@ var require_aws_crc32 = __commonJS({
 });
 
 // node_modules/@aws-crypto/crc32/build/main/index.js
-var require_main2 = __commonJS({
+var require_main3 = __commonJS({
   "node_modules/@aws-crypto/crc32/build/main/index.js"(exports2) {
     "use strict";
     Object.defineProperty(exports2, "__esModule", { value: true });
     exports2.AwsCrc32 = exports2.Crc32 = exports2.crc32 = void 0;
     var tslib_1 = (init_tslib_es6(), __toCommonJS(tslib_es6_exports));
-    var util_1 = require_main();
+    var util_1 = require_main2();
     function crc32(data2) {
       return new Crc32().update(data2).digest();
     }
@@ -275683,7 +277011,7 @@ var require_main2 = __commonJS({
 var require_dist_cjs33 = __commonJS({
   "node_modules/@smithy/eventstream-codec/dist-cjs/index.js"(exports2) {
     "use strict";
-    var crc32 = require_main2();
+    var crc32 = require_main3();
     var utilHexEncoding = require_dist_cjs17();
     var Int64 = class _Int64 {
       bytes;
@@ -276967,6 +278295,7 @@ var require_dist_cjs42 = __commonJS({
     var ENV_PROFILE = "AWS_PROFILE";
     var DEFAULT_PROFILE = "default";
     var getProfileName = (init) => init.profile || process.env[ENV_PROFILE] || DEFAULT_PROFILE;
+    var CONFIG_PREFIX_SEPARATOR = ".";
     var getConfigData = (data2) => Object.entries(data2).filter(([key]) => {
       const indexOfSeparator = key.indexOf(CONFIG_PREFIX_SEPARATOR);
       if (indexOfSeparator === -1) {
@@ -277033,7 +278362,6 @@ var require_dist_cjs42 = __commonJS({
       return map4;
     };
     var swallowError$1 = () => ({});
-    var CONFIG_PREFIX_SEPARATOR = ".";
     var loadSharedConfigFiles = async (init = {}) => {
       const { filepath = getCredentialsFilepath(), configFilepath = getConfigFilepath() } = init;
       const homeDir = getHomeDir.getHomeDir();
@@ -278233,12 +279561,12 @@ var require_httpAuthSchemeProvider = __commonJS({
 });
 
 // node_modules/@aws-sdk/client-bedrock-runtime/package.json
-var require_package = __commonJS({
+var require_package2 = __commonJS({
   "node_modules/@aws-sdk/client-bedrock-runtime/package.json"(exports2, module2) {
     module2.exports = {
       name: "@aws-sdk/client-bedrock-runtime",
       description: "AWS SDK for JavaScript Bedrock Runtime Client for Node.js, Browser and React Native",
-      version: "3.910.0",
+      version: "3.913.0",
       scripts: {
         build: "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
         "build:cjs": "node ../../scripts/compilation/inline client-bedrock-runtime",
@@ -278257,21 +279585,21 @@ var require_package = __commonJS({
       dependencies: {
         "@aws-crypto/sha256-browser": "5.2.0",
         "@aws-crypto/sha256-js": "5.2.0",
-        "@aws-sdk/core": "3.910.0",
-        "@aws-sdk/credential-provider-node": "3.910.0",
+        "@aws-sdk/core": "3.911.0",
+        "@aws-sdk/credential-provider-node": "3.913.0",
         "@aws-sdk/eventstream-handler-node": "3.910.0",
         "@aws-sdk/middleware-eventstream": "3.910.0",
         "@aws-sdk/middleware-host-header": "3.910.0",
         "@aws-sdk/middleware-logger": "3.910.0",
         "@aws-sdk/middleware-recursion-detection": "3.910.0",
-        "@aws-sdk/middleware-user-agent": "3.910.0",
+        "@aws-sdk/middleware-user-agent": "3.911.0",
         "@aws-sdk/middleware-websocket": "3.910.0",
         "@aws-sdk/region-config-resolver": "3.910.0",
-        "@aws-sdk/token-providers": "3.910.0",
+        "@aws-sdk/token-providers": "3.911.0",
         "@aws-sdk/types": "3.910.0",
         "@aws-sdk/util-endpoints": "3.910.0",
         "@aws-sdk/util-user-agent-browser": "3.910.0",
-        "@aws-sdk/util-user-agent-node": "3.910.0",
+        "@aws-sdk/util-user-agent-node": "3.911.0",
         "@smithy/config-resolver": "^4.3.2",
         "@smithy/core": "^3.16.1",
         "@smithy/eventstream-serde-browser": "^4.2.2",
@@ -279019,7 +280347,7 @@ var init_package = __esm({
   "node_modules/@aws-sdk/nested-clients/package.json"() {
     package_default = {
       name: "@aws-sdk/nested-clients",
-      version: "3.910.0",
+      version: "3.911.0",
       description: "Nested clients for AWS SDK packages.",
       main: "./dist-cjs/index.js",
       module: "./dist-es/index.js",
@@ -279048,16 +280376,16 @@ var init_package = __esm({
       dependencies: {
         "@aws-crypto/sha256-browser": "5.2.0",
         "@aws-crypto/sha256-js": "5.2.0",
-        "@aws-sdk/core": "3.910.0",
+        "@aws-sdk/core": "3.911.0",
         "@aws-sdk/middleware-host-header": "3.910.0",
         "@aws-sdk/middleware-logger": "3.910.0",
         "@aws-sdk/middleware-recursion-detection": "3.910.0",
-        "@aws-sdk/middleware-user-agent": "3.910.0",
+        "@aws-sdk/middleware-user-agent": "3.911.0",
         "@aws-sdk/region-config-resolver": "3.910.0",
         "@aws-sdk/types": "3.910.0",
         "@aws-sdk/util-endpoints": "3.910.0",
         "@aws-sdk/util-user-agent-browser": "3.910.0",
-        "@aws-sdk/util-user-agent-node": "3.910.0",
+        "@aws-sdk/util-user-agent-node": "3.911.0",
         "@smithy/config-resolver": "^4.3.2",
         "@smithy/core": "^3.16.1",
         "@smithy/fetch-http-handler": "^5.3.3",
@@ -280467,12 +281795,12 @@ var require_httpAuthSchemeProvider2 = __commonJS({
 });
 
 // node_modules/@aws-sdk/client-sso/package.json
-var require_package2 = __commonJS({
+var require_package3 = __commonJS({
   "node_modules/@aws-sdk/client-sso/package.json"(exports2, module2) {
     module2.exports = {
       name: "@aws-sdk/client-sso",
       description: "AWS SDK for JavaScript Sso Client for Node.js, Browser and React Native",
-      version: "3.910.0",
+      version: "3.911.0",
       scripts: {
         build: "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
         "build:cjs": "node ../../scripts/compilation/inline client-sso",
@@ -280491,16 +281819,16 @@ var require_package2 = __commonJS({
       dependencies: {
         "@aws-crypto/sha256-browser": "5.2.0",
         "@aws-crypto/sha256-js": "5.2.0",
-        "@aws-sdk/core": "3.910.0",
+        "@aws-sdk/core": "3.911.0",
         "@aws-sdk/middleware-host-header": "3.910.0",
         "@aws-sdk/middleware-logger": "3.910.0",
         "@aws-sdk/middleware-recursion-detection": "3.910.0",
-        "@aws-sdk/middleware-user-agent": "3.910.0",
+        "@aws-sdk/middleware-user-agent": "3.911.0",
         "@aws-sdk/region-config-resolver": "3.910.0",
         "@aws-sdk/types": "3.910.0",
         "@aws-sdk/util-endpoints": "3.910.0",
         "@aws-sdk/util-user-agent-browser": "3.910.0",
-        "@aws-sdk/util-user-agent-node": "3.910.0",
+        "@aws-sdk/util-user-agent-node": "3.911.0",
         "@smithy/config-resolver": "^4.3.2",
         "@smithy/core": "^3.16.1",
         "@smithy/fetch-http-handler": "^5.3.3",
@@ -280682,7 +282010,7 @@ var require_runtimeConfig = __commonJS({
     Object.defineProperty(exports2, "__esModule", { value: true });
     exports2.getRuntimeConfig = void 0;
     var tslib_1 = (init_tslib_es6(), __toCommonJS(tslib_es6_exports));
-    var package_json_1 = tslib_1.__importDefault(require_package2());
+    var package_json_1 = tslib_1.__importDefault(require_package3());
     var core_1 = (init_dist_es2(), __toCommonJS(dist_es_exports2));
     var util_user_agent_node_1 = require_dist_cjs51();
     var config_resolver_1 = require_dist_cjs39();
@@ -282916,7 +284244,7 @@ var require_dist_cjs61 = __commonJS({
       }
       return withProviderProfile;
     };
-    var resolveAssumeRoleCredentials = async (profileName, profiles, options, visitedProfiles = {}) => {
+    var resolveAssumeRoleCredentials = async (profileName, profiles, options, visitedProfiles = {}, resolveProfileData2) => {
       options.logger?.debug("@aws-sdk/credential-provider-ini - resolveAssumeRoleCredentials (STS)");
       const profileData = profiles[profileName];
       const { source_profile, region } = profileData;
@@ -282935,7 +284263,7 @@ var require_dist_cjs61 = __commonJS({
         throw new propertyProvider.CredentialsProviderError(`Detected a cycle attempting to resolve credentials for profile ${sharedIniFileLoader.getProfileName(options)}. Profiles visited: ` + Object.keys(visitedProfiles).join(", "), { logger: options.logger });
       }
       options.logger?.debug(`@aws-sdk/credential-provider-ini - finding credential resolver using ${source_profile ? `source_profile=[${source_profile}]` : `profile=[${profileName}]`}`);
-      const sourceCredsProvider = source_profile ? resolveProfileData(source_profile, profiles, options, {
+      const sourceCredsProvider = source_profile ? resolveProfileData2(source_profile, profiles, options, {
         ...visitedProfiles,
         [source_profile]: true
       }, isCredentialSourceWithoutRoleArn(profiles[source_profile] ?? {})) : (await resolveCredentialSource(profileData.credential_source, profileName, options.logger)(options))();
@@ -283011,7 +284339,7 @@ var require_dist_cjs61 = __commonJS({
         return resolveStaticCredentials(data2, options);
       }
       if (isAssumeRoleRecursiveCall || isAssumeRoleProfile(data2, { profile: profileName, logger: options.logger })) {
-        return resolveAssumeRoleCredentials(profileName, profiles, options, visitedProfiles);
+        return resolveAssumeRoleCredentials(profileName, profiles, options, visitedProfiles, resolveProfileData);
       }
       if (isStaticCredsProfile(data2)) {
         return resolveStaticCredentials(data2, options);
@@ -283403,7 +284731,7 @@ var require_runtimeConfig2 = __commonJS({
     Object.defineProperty(exports2, "__esModule", { value: true });
     exports2.getRuntimeConfig = void 0;
     var tslib_1 = (init_tslib_es6(), __toCommonJS(tslib_es6_exports));
-    var package_json_1 = tslib_1.__importDefault(require_package());
+    var package_json_1 = tslib_1.__importDefault(require_package2());
     var core_1 = (init_dist_es2(), __toCommonJS(dist_es_exports2));
     var credential_provider_node_1 = require_dist_cjs62();
     var eventstream_handler_node_1 = require_dist_cjs63();
@@ -307897,8 +309225,8 @@ var init_parser2 = __esm({
                     { ALT: () => this.CONSUME(Identifier) },
                     { ALT: () => this.CONSUME(Text) },
                     { ALT: () => this.CONSUME(NumberLiteral) },
-                    { ALT: () => this.CONSUME(RoundOpen) },
-                    { ALT: () => this.CONSUME(RoundClose) },
+                    // Note: RoundOpen and RoundClose (parentheses) are NOT allowed in unquoted labels
+                    // to match Mermaid's behavior - use quoted labels like ["text (with parens)"] instead
                     // Allow HTML-like tags (e.g., <br/>) inside labels
                     { ALT: () => this.CONSUME(AngleLess) },
                     { ALT: () => this.CONSUME(AngleOpen) },
@@ -307987,7 +309315,17 @@ var init_parser2 = __esm({
             this.OR([
               { ALT: () => this.CONSUME(Identifier) },
               { ALT: () => this.CONSUME(Text) },
-              { ALT: () => this.CONSUME(NumberLiteral) }
+              { ALT: () => this.CONSUME(NumberLiteral) },
+              // Allow HTML-like angle brackets and slashes for <br/>, <i>, etc.
+              { ALT: () => this.CONSUME(AngleLess) },
+              { ALT: () => this.CONSUME(AngleOpen) },
+              { ALT: () => this.CONSUME(ForwardSlash) },
+              { ALT: () => this.CONSUME(Backslash) },
+              // Allow common punctuation seen in labels
+              { ALT: () => this.CONSUME(Comma) },
+              { ALT: () => this.CONSUME(Colon) },
+              { ALT: () => this.CONSUME(Ampersand) },
+              { ALT: () => this.CONSUME(Semicolon) }
             ]);
           });
         });
@@ -308599,7 +309937,7 @@ var init_semantics = __esm({
               this.ctx.errors.push({
                 line: q3.startLine ?? 1,
                 column: col,
-                severity: "warning",
+                severity: "error",
                 code: "FL-LABEL-CURLY-IN-QUOTED",
                 message: "Curly braces inside quoted label text may be parsed as a shape by Mermaid. Replace { and } with HTML entities.",
                 hint: 'Use &#123; and &#125; for { and } inside quoted text, e.g., "tyk-trace-&#123;id&#125;".',
@@ -308729,6 +310067,8 @@ var init_semantics = __esm({
               this.ctx.errors.push({
                 line: tk.startLine ?? 1,
                 column: col,
+                // Treat backticks in quoted labels as errors (CLI rejects in many cases);
+                // outside quotes, surface as a warning.
                 severity: inQuoted ? "error" : "warning",
                 code: "FL-LABEL-BACKTICK",
                 message: "Backticks (`\u2026`) inside node labels are not supported by Mermaid.",
@@ -310013,7 +311353,7 @@ function validateFlowchart(text, options = {}) {
         code: "FL-LABEL-ESCAPED-QUOTE",
         message: 'Escaped quotes (\\") in node labels are accepted by Mermaid, but using &quot; is preferred for portability.',
         hint: 'Prefer &quot; inside quoted labels, e.g., A["He said &quot;Hi&quot;"]'
-      }).map((e3) => ({ ...e3, severity: "warning" }));
+      }).map((e3) => ({ ...e3, severity: "error" }));
       const seenDoubleLines = new Set(prevErrors.filter((e3) => e3.code === "FL-LABEL-DOUBLE-IN-DOUBLE").map((e3) => e3.line));
       const escapedLinesAll = new Set(detectEscapedQuotes(tokens, { code: "x" }).map((e3) => e3.line));
       const dbl = detectDoubleInDouble(tokens, {
@@ -312292,11 +313632,85 @@ function computeFixes(text, errors, level = "safe") {
   const patchedLines = /* @__PURE__ */ new Set();
   const seen = /* @__PURE__ */ new Set();
   const piQuoteClosedLines = /* @__PURE__ */ new Set();
+  function sanitizeAllQuotedSegmentsInShapes(lineText, lineNo) {
+    const shapes = [
+      { open: "[[", close: "]]" },
+      { open: "((", close: "))" },
+      { open: "{{", close: "}}" },
+      { open: "[(", close: ")]" },
+      { open: "([", close: "])" },
+      { open: "{", close: "}" },
+      { open: "[", close: "]" },
+      { open: "(", close: ")" }
+    ];
+    let idx = 0;
+    let produced = 0;
+    while (idx < lineText.length) {
+      let found = null;
+      for (const s3 of shapes) {
+        const i3 = lineText.indexOf(s3.open, idx);
+        if (i3 !== -1 && (found === null || i3 < found.i))
+          found = { ...s3, i: i3 };
+      }
+      if (!found)
+        break;
+      const contentStart = found.i + found.open.length;
+      const closeIdx = lineText.indexOf(found.close, contentStart);
+      if (closeIdx === -1) {
+        idx = contentStart;
+        continue;
+      }
+      let q1 = -1;
+      for (let i3 = contentStart; i3 < closeIdx; i3++) {
+        if (lineText[i3] === '"' && lineText[i3 - 1] !== "\\") {
+          q1 = i3;
+          break;
+        }
+      }
+      if (q1 !== -1) {
+        let q22 = -1;
+        for (let j3 = closeIdx - 1; j3 > q1; j3--) {
+          if (lineText[j3] === '"' && lineText[j3 - 1] !== "\\") {
+            q22 = j3;
+            break;
+          }
+        }
+        if (q22 !== -1) {
+          const inner = lineText.slice(q1 + 1, q22);
+          const replaced = sanitizeQuotedInner(inner);
+          if (replaced !== inner) {
+            edits.push({ start: { line: lineNo, column: q1 + 2 }, end: { line: lineNo, column: q22 + 1 }, newText: replaced });
+            produced++;
+          }
+        }
+      }
+      idx = closeIdx + found.close.length;
+    }
+    return produced;
+  }
+  function sanitizeQuotedInner(inner) {
+    const SENT_Q = "\0__Q__";
+    let out = inner.split("&quot;").join(SENT_Q);
+    out = out.replace(/`/g, "");
+    out = out.replace(/\\\"/g, "&quot;");
+    out = out.replace(/\"/g, "&quot;");
+    out = out.replace(/"/g, "&quot;");
+    out = out.split(SENT_Q).join("&quot;");
+    return out;
+  }
   for (const e3 of errors) {
     const key = `${e3.code}@${e3.line}:${e3.column}:${e3.length ?? 1}`;
     if (seen.has(key))
       continue;
     seen.add(key);
+    if ((e3.code === "FL-LABEL-ESCAPED-QUOTE" || e3.code === "FL-LABEL-CURLY-IN-QUOTED" || e3.code === "FL-LABEL-DOUBLE-IN-DOUBLE" || e3.code === "FL-LABEL-BACKTICK") && !patchedLines.has(e3.line)) {
+      const lineText = lineTextAt(text, e3.line);
+      const produced = sanitizeAllQuotedSegmentsInShapes(lineText, e3.line);
+      patchedLines.add(e3.line);
+      if (produced > 0) {
+        continue;
+      }
+    }
     if (is("FL-ARROW-INVALID", e3)) {
       edits.push(replaceRange(text, at(e3), e3.length ?? 2, "-->"));
       continue;
@@ -312401,6 +313815,8 @@ function computeFixes(text, errors, level = "safe") {
       continue;
     }
     if (is("FL-LABEL-ESCAPED-QUOTE", e3)) {
+      if (patchedLines.has(e3.line))
+        continue;
       const lineText = lineTextAt(text, e3.line);
       const caret0 = Math.max(0, e3.column - 1);
       const opens = [
@@ -312423,17 +313839,10 @@ function computeFixes(text, errors, level = "safe") {
           const q22 = lineText.lastIndexOf('"', closeIdx - 1);
           if (q1 !== -1 && q22 !== -1 && q22 > q1) {
             const inner = lineText.slice(q1 + 1, q22);
-            if (inner.includes('\\"')) {
-              const replaced = inner.split('\\"').join("&quot;");
+            const replaced = sanitizeQuotedInner(inner);
+            if (replaced !== inner) {
               edits.push({ start: { line: e3.line, column: q1 + 2 }, end: { line: e3.line, column: q22 + 1 }, newText: replaced });
               continue;
-              if (is("FL-META-UNSUPPORTED", e3)) {
-                if (level === "all") {
-                  const lineText2 = lineTextAt(text, e3.line);
-                  edits.push({ start: { line: e3.line, column: 1 }, end: { line: e3.line + 1, column: 1 }, newText: "" });
-                }
-                continue;
-              }
             }
           }
         }
@@ -312443,11 +313852,12 @@ function computeFixes(text, errors, level = "safe") {
     }
     if (is("FL-META-UNSUPPORTED", e3)) {
       if (level === "all") {
+        const lineText = lineTextAt(text, e3.line);
         edits.push({ start: { line: e3.line, column: 1 }, end: { line: e3.line + 1, column: 1 }, newText: "" });
       }
       continue;
     }
-    if (is("FL-LABEL-BACKTICK", e3)) {
+    if (is("FL-LABEL-BACKTICK", e3) && e3.severity === "warning") {
       edits.push(replaceRange(text, at(e3), e3.length ?? 1, ""));
       continue;
     }
@@ -312457,13 +313867,13 @@ function computeFixes(text, errors, level = "safe") {
       let qOpenIdx = -1;
       let qChar = null;
       for (let i3 = caret0; i3 >= 0; i3--) {
-        const ch2 = lineText[i3];
-        const code = ch2 ? ch2.charCodeAt(0) : -1;
+        const ch = lineText[i3];
+        const code = ch ? ch.charCodeAt(0) : -1;
         if (code === 34 || code === 39) {
           const bs = i3 > 0 && lineText[i3 - 1] === "\\";
           if (!bs) {
             qOpenIdx = i3;
-            qChar = ch2;
+            qChar = ch;
             break;
           }
         }
@@ -312471,8 +313881,8 @@ function computeFixes(text, errors, level = "safe") {
       if (qOpenIdx !== -1 && qChar) {
         let qCloseIdx = -1;
         for (let j3 = qOpenIdx + 1; j3 < lineText.length; j3++) {
-          const ch2 = lineText[j3];
-          const code = ch2 ? ch2.charCodeAt(0) : -1;
+          const ch = lineText[j3];
+          const code = ch ? ch.charCodeAt(0) : -1;
           if (code === (qChar ? qChar.charCodeAt(0) : -1)) {
             const bs = lineText[j3 - 1] === "\\";
             if (!bs) {
@@ -312483,17 +313893,13 @@ function computeFixes(text, errors, level = "safe") {
         }
         if (qCloseIdx > qOpenIdx) {
           const inner = lineText.slice(qOpenIdx + 1, qCloseIdx);
-          const replaced = inner.replace(/\{/g, "&#123;").replace(/\}/g, "&#125;");
+          const replaced = sanitizeQuotedInner(inner);
           if (replaced !== inner) {
             edits.push({ start: { line: e3.line, column: qOpenIdx + 2 }, end: { line: e3.line, column: qCloseIdx + 1 }, newText: replaced });
             continue;
           }
         }
       }
-      const ch = lineText[caret0] || "";
-      const rep = ch === "{" ? "&#123;" : ch === "}" ? "&#125;" : ch;
-      if (rep !== ch)
-        edits.push(replaceRange(text, at(e3), e3.length ?? 1, rep));
       continue;
     }
     if (is("FL-END-WITHOUT-SUBGRAPH", e3)) {
@@ -312505,6 +313911,11 @@ function computeFixes(text, errors, level = "safe") {
     if (is("FL-LABEL-DOUBLE-IN-DOUBLE", e3)) {
       const lineText = lineTextAt(text, e3.line);
       const caret0 = Math.max(0, e3.column - 1);
+      const rawDqCount = (lineText.match(/\"/g) || []).length;
+      const unescapedDqCount = (lineText.replace(/\\\"/g, "").match(/\"/g) || []).length;
+      if (rawDqCount + unescapedDqCount > 8 && level !== "all") {
+        continue;
+      }
       const opens = [
         { tok: "[[", idx: lineText.lastIndexOf("[[", caret0) },
         { tok: "((", idx: lineText.lastIndexOf("((", caret0) },
@@ -312528,7 +313939,7 @@ function computeFixes(text, errors, level = "safe") {
         const q22 = lineText.lastIndexOf('"', closeIdx - 1);
         if (q1 !== -1 && q22 !== -1 && q22 > q1) {
           const inner = lineText.slice(q1 + 1, q22);
-          const replaced = inner.split("&quot;").join("\0").split('"').join("&quot;").split("\0").join("&quot;");
+          const replaced = sanitizeQuotedInner(inner);
           if (replaced !== inner) {
             const start = { line: e3.line, column: q1 + 2 };
             const end = { line: e3.line, column: q22 + 1 };
@@ -312890,6 +314301,10 @@ function computeFixes(text, errors, level = "safe") {
       if (level === "safe" || level === "all") {
         const lineText = lineTextAt(text, e3.line);
         const caret0 = Math.max(0, e3.column - 1);
+        const dq = (lineText.replace(/\\\"/g, "").match(/\"/g) || []).length;
+        if (lineText.length > 600 || dq > 8) {
+          continue;
+        }
         const openPairs = [
           { open: "[[", close: "]]", idx: lineText.lastIndexOf("[[", caret0), delta: 2 },
           { open: "((", close: "))", idx: lineText.lastIndexOf("((", caret0), delta: 2 },
@@ -312940,6 +314355,24 @@ function computeFixes(text, errors, level = "safe") {
           { open: "[", close: "]" },
           { open: "(", close: ")" }
         ];
+        const findMatchingCloser = (text2, openIdx, opener, closer) => {
+          let pos = openIdx + opener.length;
+          let depth = 1;
+          while (pos < text2.length && depth > 0) {
+            if (text2.slice(pos, pos + opener.length) === opener) {
+              depth++;
+              pos += opener.length;
+            } else if (text2.slice(pos, pos + closer.length) === closer) {
+              depth--;
+              if (depth === 0)
+                return pos;
+              pos += closer.length;
+            } else {
+              pos++;
+            }
+          }
+          return -1;
+        };
         for (const shape of shapes) {
           let searchStart = 0;
           while (true) {
@@ -312947,7 +314380,7 @@ function computeFixes(text, errors, level = "safe") {
             if (openIdx === -1)
               break;
             const contentStart = openIdx + shape.open.length;
-            const closeIdx = lineText.indexOf(shape.close, contentStart);
+            const closeIdx = shape.open === "(" && shape.close === ")" ? findMatchingCloser(lineText, openIdx, shape.open, shape.close) : lineText.indexOf(shape.close, contentStart);
             if (closeIdx === -1)
               break;
             if (openIdx <= caret0 && caret0 < closeIdx) {
@@ -312965,10 +314398,11 @@ function computeFixes(text, errors, level = "safe") {
               const left = core.slice(0, 1);
               const right = core.slice(-1);
               const isSlashPair = (l3, r3) => l3 === "/" && r3 === "/" || l3 === "\\" && r3 === "\\" || l3 === "/" && r3 === "\\" || l3 === "\\" && r3 === "/";
-              if (core.length >= 2 && isSlashPair(left, right)) {
-                break;
+              const isParallelogramShape = core.length >= 2 && isSlashPair(left, right);
+              let replaced = inner.replace(/\(/g, "&#40;").replace(/\)/g, "&#41;");
+              if (isParallelogramShape) {
+                replaced = replaced.replace(/"/g, "&quot;");
               }
-              const replaced = inner.replace(/\(/g, "&#40;").replace(/\)/g, "&#41;");
               if (replaced !== inner) {
                 edits.push({ start: { line: e3.line, column: contentStart + 1 }, end: { line: e3.line, column: closeIdx + 1 }, newText: replaced });
                 patchedLines.add(e3.line);
@@ -323088,7 +324522,7 @@ ${baseGroup}
         return out;
       }
       htmlDecode(s3) {
-        return s3.replace(/&lt;/g, "<").replace(/&gt;/g, ">").replace(/&amp;/g, "&").replace(/&quot;/g, '"').replace(/&#39;/g, "'");
+        return s3.replace(/&lt;/g, "<").replace(/&gt;/g, ">").replace(/&amp;/g, "&").replace(/&quot;/g, '"').replace(/&#39;/g, "'").replace(/&#96;/g, "`").replace(/&#123;/g, "{").replace(/&#125;/g, "}").replace(/&#40;/g, "(").replace(/&#41;/g, ")");
       }
       generateEdge(edge, padX, padY, nodeMap) {
         if (!edge.points || edge.points.length < 2) {
@@ -327797,10 +329231,11 @@ var ProbeAgent_exports = {};
 __export(ProbeAgent_exports, {
   ProbeAgent: () => ProbeAgent
 });
-var import_anthropic, import_openai, import_google, import_ai3, import_crypto5, import_events2, import_fs7, import_promises2, import_path9, MAX_TOOL_ITERATIONS, MAX_HISTORY_MESSAGES, SUPPORTED_IMAGE_EXTENSIONS, MAX_IMAGE_FILE_SIZE, ProbeAgent;
+var import_dotenv, import_anthropic, import_openai, import_google, import_ai3, import_crypto5, import_events2, import_fs7, import_promises2, import_path9, MAX_TOOL_ITERATIONS, MAX_HISTORY_MESSAGES, SUPPORTED_IMAGE_EXTENSIONS, MAX_IMAGE_FILE_SIZE, ProbeAgent;
 var init_ProbeAgent = __esm({
   "src/agent/ProbeAgent.js"() {
     "use strict";
+    import_dotenv = __toESM(require_main(), 1);
     import_anthropic = __nccwpck_require__(93201);
     import_openai = __nccwpck_require__(87635);
     import_google = __nccwpck_require__(30260);
@@ -327822,6 +329257,7 @@ var init_ProbeAgent = __esm({
     init_schemaUtils();
     init_xmlParsingUtils();
     init_mcp();
+    import_dotenv.default.config();
     MAX_TOOL_ITERATIONS = parseInt(process.env.MAX_TOOL_ITERATIONS || "30", 10);
     MAX_HISTORY_MESSAGES = 100;
     SUPPORTED_IMAGE_EXTENSIONS = ["png", "jpg", "jpeg", "webp", "gif", "bmp", "svg"];
@@ -330670,8 +332106,10 @@ __export(index_exports, {
   tools: () => tools_exports
 });
 module.exports = __toCommonJS(index_exports);
+var import_dotenv2;
 var init_index = __esm({
   "src/index.js"() {
+    import_dotenv2 = __toESM(require_main(), 1);
     init_search();
     init_query();
     init_extract();
@@ -330691,6 +332129,7 @@ var init_index = __esm({
     init_probeTool();
     init_storage();
     init_hooks();
+    import_dotenv2.default.config();
   }
 });
 init_index();
@@ -360266,6 +361705,14 @@ module.exports = /*#__PURE__*/JSON.parse('{"$schema":"http://json-schema.org/dra
 
 /***/ }),
 
+/***/ 80056:
+/***/ ((module) => {
+
+"use strict";
+module.exports = /*#__PURE__*/JSON.parse('{"name":"dotenv","version":"17.2.3","description":"Loads environment variables from .env file","main":"lib/main.js","types":"lib/main.d.ts","exports":{".":{"types":"./lib/main.d.ts","require":"./lib/main.js","default":"./lib/main.js"},"./config":"./config.js","./config.js":"./config.js","./lib/env-options":"./lib/env-options.js","./lib/env-options.js":"./lib/env-options.js","./lib/cli-options":"./lib/cli-options.js","./lib/cli-options.js":"./lib/cli-options.js","./package.json":"./package.json"},"scripts":{"dts-check":"tsc --project tests/types/tsconfig.json","lint":"standard","pretest":"npm run lint && npm run dts-check","test":"tap run tests/**/*.js --allow-empty-coverage --disable-coverage --timeout=60000","test:coverage":"tap run tests/**/*.js --show-full-coverage --timeout=60000 --coverage-report=text --coverage-report=lcov","prerelease":"npm test","release":"standard-version"},"repository":{"type":"git","url":"git://github.com/motdotla/dotenv.git"},"homepage":"https://github.com/motdotla/dotenv#readme","funding":"https://dotenvx.com","keywords":["dotenv","env",".env","environment","variables","config","settings"],"readmeFilename":"README.md","license":"BSD-2-Clause","devDependencies":{"@types/node":"^18.11.3","decache":"^4.6.2","sinon":"^14.0.1","standard":"^17.0.0","standard-version":"^9.5.0","tap":"^19.2.0","typescript":"^4.8.4"},"engines":{"node":">=12"},"browser":{"fs":false}}');
+
+/***/ }),
+
 /***/ 17324:
 /***/ ((module) => {
 
@@ -360334,7 +361781,7 @@ module.exports = /*#__PURE__*/JSON.parse('{"assert":true,"node:assert":[">= 14.1
 /***/ ((module) => {
 
 "use strict";
-module.exports = {"rE":"0.1.94"};
+module.exports = {"rE":"0.1.96"};
 
 /***/ })