@skillcap/gdh 0.23.0 → 0.24.0

package/node_modules/@gdh/adapters/dist/process-orchestration.js

@@ -0,0 +1,368 @@
+import {} from "@gdh/core";
+/**
+ * Allowlist of environment variable keys captured into each process row's
+ * `env_subset` (T-72-06-01 mitigation).
+ *
+ * The orchestrator never persists `process.env` wholesale into
+ * processes-snapshot.json — only keys explicitly named here, plus any key
+ * matching the `GDH_*` prefix (matched in {@link pickEnvSubset}). The
+ * regression-safe assertion test in process-orchestration.test.ts asserts
+ * non-allowlisted env vars (SECRET_TOKEN, AWS_SECRET_ACCESS_KEY, OPENAI_API_KEY)
+ * are NOT captured.
+ *
+ * If you need to add a key, add it here and document why in the commit
+ * message — this is the single ops-review point for what crosses the
+ * snapshot-file trust boundary.
+ */
+export const STOP_AND_RESTART_ENV_SUBSET_KEYS = [
+    "PATH",
+    "NODE_PATH",
+    "HOME",
+    "USER",
+    "LANG",
+    "LC_ALL",
+    // GDH_* allowlist matched as prefix in `pickEnvSubset`
+];
+/**
+ * Default graceful-stop timeout. Production-safe value; tests inject a much
+ * lower number (e.g. 5ms) via the `gracefulTimeoutMs` parameter so suites stay
+ * fast. T-72-06-04 mitigation: bounded single-attempt timeout, no retry loop.
+ */
+export const DEFAULT_GRACEFUL_STOP_TIMEOUT_MS = 2500;
+/**
+ * Restrict each process's `env` to the documented allowlist + any key with
+ * the `GDH_*` prefix. T-72-06-01 mitigation: secret env vars
+ * (SECRET_TOKEN, *_API_KEY, AWS_SECRET_ACCESS_KEY, etc.) never enter the
+ * snapshot.
+ */
+function pickEnvSubset(env) {
+    const subset = {};
+    for (const [key, value] of Object.entries(env)) {
+        if (STOP_AND_RESTART_ENV_SUBSET_KEYS.includes(key) || key.startsWith("GDH_")) {
+            subset[key] = value;
+        }
+    }
+    return subset;
+}
+/**
+ * Discover owned MCP processes + broker, build a {@link GdhProcessesSnapshot}.
+ *
+ * Returns a degraded result on win32 (Pitfall 5: process orchestration is
+ * Mac/Linux only). The discovery hooks are NOT called on win32; the snapshot
+ * is empty and the caller routes around stop/restart, allowing the update to
+ * proceed.
+ *
+ * The returned snapshot has `stop_method = null` on every row. Plan 08 writes
+ * this snapshot to disk via {@link writeProcessesSnapshot}, then calls
+ * {@link stopCapturedProcesses} which mutates the rows to record the actual
+ * stop method per row.
+ */
+export async function captureProcessSnapshot(input) {
+    const { env } = input;
+    const capturedAt = env.nowIso();
+    if (env.platform === "win32") {
+        return {
+            snapshot: { snapshot_version: 1, captured_at: capturedAt, processes: [] },
+            degraded: true,
+            degradedReason: "platform_unsupported_win32",
+        };
+    }
+    const processes = [];
+    const owned = await env.discoverOwnedMcpProcesses();
+    for (const m of owned) {
+        processes.push({
+            kind: "mcp",
+            pid: m.pid,
+            cmd: m.cmd,
+            args: m.args,
+            cwd: m.cwd,
+            env_subset: pickEnvSubset(m.env),
+            stop_method: null,
+        });
+    }
+    const broker = await env.inspectBroker();
+    if (broker !== null) {
+        processes.push({
+            kind: "broker",
+            pid: broker.pid,
+            cmd: broker.cmd,
+            args: broker.args,
+            cwd: broker.cwd,
+            env_subset: pickEnvSubset(broker.env),
+            stop_method: null,
+        });
+    }
+    return {
+        snapshot: { snapshot_version: 1, captured_at: capturedAt, processes },
+        degraded: false,
+    };
+}
+/**
+ * Stop every captured process per row.
+ *
+ * Dispatch (D-18 step 4):
+ * - kind === "broker": prefer {@link GdhProcessOrchestrationEnvironment.pruneBroker}
+ *   over raw kill so broker-owned sessions are stopped cleanly first
+ *   (Pitfall 4 / T-72-06-05). Records `stop_method: "broker_prune"`.
+ * - kind === "mcp": graceful SIGTERM via env.killProcess; wait
+ *   `gracefulTimeoutMs` (default {@link DEFAULT_GRACEFUL_STOP_TIMEOUT_MS});
+ *   if env.isProcessRunning still true, escalate to env.hardKillProcess.
+ *   Records `stop_method: "graceful_sigterm"` or `"hard_kill"`.
+ *
+ * Idempotent: if the kill probe finds the process already gone (kill throws,
+ * isProcessRunning returns false), records `stop_method: "none"` and
+ * continues. T-72-06-04: no retry loop; bounded single-attempt timeout.
+ */
+export async function stopCapturedProcesses(input) {
+    const timeoutMs = input.gracefulTimeoutMs ?? DEFAULT_GRACEFUL_STOP_TIMEOUT_MS;
+    const updated = [];
+    const skipped = [];
+    for (const proc of input.snapshot.processes) {
+        let stopMethod = "none";
+        if (proc.kind === "broker") {
+            try {
+                await input.env.pruneBroker(input.targetPath);
+                stopMethod = "broker_prune";
+            }
+            catch (error) {
+                skipped.push({
+                    pid: proc.pid,
+                    reason: `broker_prune_failed:${error instanceof Error ? error.message : String(error)}`,
+                });
+            }
+        }
+        else {
+            // mcp
+            try {
+                await input.env.killProcess(proc.pid);
+                await new Promise((resolve) => {
+                    setTimeout(resolve, timeoutMs);
+                });
+                const stillAlive = await input.env.isProcessRunning(proc.pid);
+                if (stillAlive) {
+                    await input.env.hardKillProcess(proc.pid);
+                    stopMethod = "hard_kill";
+                }
+                else {
+                    stopMethod = "graceful_sigterm";
+                }
+            }
+            catch (error) {
+                // killProcess threw — could be ESRCH (already gone) or permission
+                // denied. Probe for liveness; if gone, treat as 'none' (idempotent).
+                const stillAlive = await input.env.isProcessRunning(proc.pid).catch(() => false);
+                if (!stillAlive) {
+                    stopMethod = "none";
+                }
+                else {
+                    skipped.push({
+                        pid: proc.pid,
+                        reason: `kill_failed:${error instanceof Error ? error.message : String(error)}`,
+                    });
+                }
+            }
+        }
+        updated.push({ ...proc, stop_method: stopMethod });
+    }
+    return {
+        state: "stopped",
+        updatedSnapshot: {
+            snapshot_version: 1,
+            captured_at: input.snapshot.captured_at,
+            processes: updated,
+        },
+        skipped,
+    };
+}
+/**
+ * Re-spawn every captured process per row.
+ *
+ * Dispatch (D-18 step 5):
+ * - kind === "broker": call env.ensureBroker(captured) — wraps
+ *   ensureRuntimeBridgeBroker which polls for the ready handshake.
+ * - kind === "mcp": call env.spawnProcess(captured) — production wires this to
+ *   child_process.spawn with the captured cmd/args/cwd/env_subset and detached:true.
+ *
+ * Privilege of restarted processes matches captured cwd + env_subset; no
+ * implicit elevation, no inheritance of process.env (T-72-06-02).
+ */
+export async function restartFromSnapshot(input) {
+    const restarted = [];
+    const failed = [];
+    for (const proc of input.snapshot.processes) {
+        if (proc.kind === "broker") {
+            const result = await input.env.ensureBroker(proc);
+            if (result.state === "started") {
+                restarted.push({
+                    kind: "broker",
+                    originalPid: proc.pid,
+                    newPid: null,
+                    cmd: proc.cmd,
+                });
+            }
+            else {
+                failed.push({
+                    kind: "broker",
+                    pid: proc.pid,
+                    cmd: proc.cmd,
+                    reason: result.detail ?? "broker_ensure_failed",
+                });
+            }
+        }
+        else {
+            const result = await input.env.spawnProcess(proc);
+            if (result.state === "spawned") {
+                restarted.push({
+                    kind: "mcp",
+                    originalPid: proc.pid,
+                    newPid: result.pid ?? null,
+                    cmd: proc.cmd,
+                });
+            }
+            else {
+                failed.push({
+                    kind: "mcp",
+                    pid: proc.pid,
+                    cmd: proc.cmd,
+                    reason: result.detail ?? "spawn_failed",
+                });
+            }
+        }
+    }
+    if (failed.length === 0) {
+        return { state: "all_restarted", restarted };
+    }
+    return { state: "some_failed", restarted, failed };
+}
+/**
+ * Convert a structured payload (the same shape produced by Plan 08 when it
+ * registers a `process_restart` deferred action) into a runtime probe that
+ * Plan 05's `runDeferredActionProbe` consumes.
+ *
+ * Payload shape: `{ failed_rows: { kind: "mcp"|"broker", pid: number, cmd: string }[] }`
+ *
+ * The probe returns:
+ * - `true` when every referenced row's pid is currently running OR a
+ *   discovered process matches by cmd (PID drift acceptable; T-72-06-06).
+ * - `false` when at least one row's pid is gone AND discovery does not
+ *   surface a process with matching cmd.
+ * - `null` when the env adapter is unable to evaluate (win32 degraded
+ *   platform per T-72-06-09, or malformed payload — caller's runDeferredActionProbe
+ *   converts null to `status: "pending"` with a documented reason).
+ *
+ * The probe never throws — every error mode collapses into a defined return
+ * value so the advisory layer cannot crash on a misbehaving adapter.
+ *
+ * T-72-06-03: each invocation reads fresh discovery results via the env
+ * adapter; nothing cached crosses call boundaries.
+ */
+export function buildProcessRestartProbeFromSnapshot(env) {
+    return async (payload) => {
+        if (env.platform === "win32")
+            return null;
+        const failedRows = payload["failed_rows"];
+        if (!Array.isArray(failedRows))
+            return null;
+        for (const row of failedRows) {
+            if (typeof row !== "object" || row === null)
+                return null;
+            const r = row;
+            const pid = r["pid"];
+            const cmd = r["cmd"];
+            if (typeof pid !== "number" || typeof cmd !== "string")
+                return null;
+            const stillRunningOriginalPid = await env.isProcessRunning(pid).catch(() => false);
+            if (stillRunningOriginalPid)
+                continue;
+            // PID drift acceptable: check discovery for matching cmd
+            const owned = await env.discoverOwnedMcpProcesses().catch(() => []);
+            const broker = await env.inspectBroker().catch(() => null);
+            const matchesMcp = owned.some((m) => m.cmd === cmd);
+            const matchesBroker = broker !== null && broker.cmd === cmd;
+            if (!matchesMcp && !matchesBroker) {
+                return false;
+            }
+        }
+        return true;
+    };
+}
+// ---------------------------------------------------------------------------
+// Default production env factory (Plan 72-08 Task 08-02)
+// ---------------------------------------------------------------------------
+/**
+ * Default production-safe `GdhProcessOrchestrationEnvironment` factory.
+ *
+ * Returns a minimal environment that:
+ *   - reports `process.platform` reduced to the closed enum
+ *   - returns `() => new Date().toISOString()` for nowIso
+ *   - returns empty discovery (no MCP processes / no broker) — production
+ *     callers (Plan 13-02 self-update.ts) wire a richer factory backed by
+ *     `cleanupGdhMcpProcessesWithEnvironment` + `inspectRuntimeBridgeBroker`
+ *     + `pruneRuntimeBridgeBroker` + `ensureRuntimeBridgeBroker` from
+ *     `@gdh/runtime`. The default factory exists so `bumpAndRebakePin`
+ *     callers that omit the optional adapter still get a working
+ *     no-orchestration flow (Test 1 and Test 2 of Plan 72-08 Task 08-02
+ *     happy paths exercise this default with empty discovery).
+ *   - uses `process.kill(pid, 'SIGTERM')` and `process.kill(pid, 'SIGKILL')`
+ *     for kill primitives; `process.kill(pid, 0)` for liveness probe
+ *   - no-ops `pruneBroker` and `ensureBroker` (production callers wire
+ *     the real broker primitives)
+ *   - no-ops `spawnProcess` (production callers wire `child_process.spawn`)
+ *
+ * The defaults are conservative — when discovery returns empty, every
+ * downstream stop/restart loop is a no-op and `bumpAndRebakePin`'s 12-step
+ * flow still completes cleanly. Production wiring layers richer adapters on
+ * top of this default; tests inject a fully-stubbed environment via the
+ * optional `processOrchestrationEnvironment` parameter to bumpAndRebakePin.
+ */
+export function defaultProcessOrchestrationEnvironment() {
+    const platformRaw = process.platform;
+    const platform = platformRaw === "darwin"
+        ? "darwin"
+        : platformRaw === "linux"
+            ? "linux"
+            : platformRaw === "win32"
+                ? "win32"
+                : "other";
+    return {
+        platform,
+        nowIso: () => new Date().toISOString(),
+        discoverOwnedMcpProcesses: async () => [],
+        inspectBroker: async () => null,
+        killProcess: async (pid) => {
+            try {
+                process.kill(pid, "SIGTERM");
+            }
+            catch {
+                // ESRCH or EPERM — caller's stop loop probes liveness and treats as 'none'
+            }
+        },
+        hardKillProcess: async (pid) => {
+            try {
+                process.kill(pid, "SIGKILL");
+            }
+            catch {
+                // process already gone; no-op
+            }
+        },
+        isProcessRunning: async (pid) => {
+            try {
+                process.kill(pid, 0);
+                return true;
+            }
+            catch {
+                return false;
+            }
+        },
+        pruneBroker: async () => {
+            // No-op default. Production wires pruneRuntimeBridgeBroker.
+        },
+        ensureBroker: async () => ({ state: "started" }),
+        spawnProcess: async (captured) => {
+            // No-op default. Production wires child_process.spawn with the
+            // captured cmd/args/cwd/env_subset and detached:true.
+            return { state: "spawned", pid: captured.pid };
+        },
+    };
+}
+//# sourceMappingURL=process-orchestration.js.map

package/node_modules/@gdh/adapters/dist/process-orchestration.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"process-orchestration.js","sourceRoot":"","sources":["../src/process-orchestration.ts"],"names":[],"mappings":"AAAA,OAAO,EAIN,MAAM,WAAW,CAAC;AAEnB;;;;;;;;;;;;;;GAcG;AACH,MAAM,CAAC,MAAM,gCAAgC,GAAsB;IACjE,MAAM;IACN,WAAW;IACX,MAAM;IACN,MAAM;IACN,MAAM;IACN,QAAQ;IACR,uDAAuD;CACxD,CAAC;AAEF;;;;GAIG;AACH,MAAM,CAAC,MAAM,gCAAgC,GAAG,IAAI,CAAC;AAuDrD;;;;;GAKG;AACH,SAAS,aAAa,CAAC,GAA2B;IAChD,MAAM,MAAM,GAA2B,EAAE,CAAC;IAC1C,KAAK,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QAC/C,IAAI,gCAAgC,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,EAAE,CAAC;YAC7E,MAAM,CAAC,GAAG,CAAC,GAAG,KAAK,CAAC;QACtB,CAAC;IACH,CAAC;IACD,OAAO,MAAM,CAAC;AAChB,CAAC;AAQD;;;;;;;;;;;;GAYG;AACH,MAAM,CAAC,KAAK,UAAU,sBAAsB,CAAC,KAG5C;IACC,MAAM,EAAE,GAAG,EAAE,GAAG,KAAK,CAAC;IACtB,MAAM,UAAU,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC;IAEhC,IAAI,GAAG,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;QAC7B,OAAO;YACL,QAAQ,EAAE,EAAE,gBAAgB,EAAE,CAAC,EAAE,WAAW,EAAE,UAAU,EAAE,SAAS,EAAE,EAAE,EAAE;YACzE,QAAQ,EAAE,IAAI;YACd,cAAc,EAAE,4BAA4B;SAC7C,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAyB,EAAE,CAAC;IAC3C,MAAM,KAAK,GAAG,MAAM,GAAG,CAAC,yBAAyB,EAAE,CAAC;IACpD,KAAK,MAAM,CAAC,IAAI,KAAK,EAAE,CAAC;QACtB,SAAS,CAAC,IAAI,CAAC;YACb,IAAI,EAAE,KAAK;YACX,GAAG,EAAE,CAAC,CAAC,GAAG;YACV,GAAG,EAAE,CAAC,CAAC,GAAG;YACV,IAAI,EAAE,CAAC,CAAC,IAAI;YACZ,GAAG,EAAE,CAAC,CAAC,GAAG;YACV,UAAU,EAAE,aAAa,CAAC,CAAC,CAAC,GAAG,CAAC;YAChC,WAAW,EAAE,IAAI;SAClB,CAAC,CAAC;IACL,CAAC;IACD,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,aAAa,EAAE,CAAC;IACzC,IAAI,MAAM,KAAK,IAAI,EAAE,CAAC;QACpB,SAAS,CAAC,IAAI,CAAC;YACb,IAAI,EAAE,QAAQ;YACd,GAAG,EAAE,MAAM,CAAC,GAAG;YACf,GAAG,EAAE,MAAM,CAAC,GAAG;YACf,IAAI,EAAE,MAAM,CAAC,IAAI;YACjB,GAAG,EAAE,MAAM,CAAC,GAAG;YACf,UAAU,EAAE,aAAa,CAAC,MAAM,CAAC,GAAG,CAAC;YACrC,WAAW,EAAE,IAAI;SAClB,CAAC,CAAC;IACL,CAAC;IACD,OAAO;QACL,QAAQ,EAAE,EAAE,gBAAgB,EAAE,CAAC,EAAE,WAAW,EAAE,UAAU,EAAE,SAAS,EAAE;QACrE,QAAQ,EAAE,KAAK;KAChB,CAAC;AACJ,CAAC;AAaD;;;;;;;;;;;;;;;GAeG;AACH,MAAM,CAAC,KAAK,UAAU,qBAAqB,CAAC,KAK3C;IACC,MAAM,SAAS,GAAG,KAAK,CAAC,iBAAiB,IAAI,gCAAgC,CAAC;IAC9E,MAAM,OAAO,GAAyB,EAAE,CAAC;IACzC,MAAM,OAAO,GAAsC,EAAE,CAAC;IACtD,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,QAAQ,CAAC,SAAS,EAAE,CAAC;QAC5C,IAAI,UAAU,GAAiC,MAAM,CAAC;QACtD,IAAI,IAAI,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC3B,IAAI,CAAC;gBACH,MAAM,KAAK,CAAC,GAAG,CAAC,WAAW,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;gBAC9C,UAAU,GAAG,cAAc,CAAC;YAC9B,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,OAAO,CAAC,IAAI,CAAC;oBACX,GAAG,EAAE,IAAI,CAAC,GAAG;oBACb,MAAM,EAAE,uBACN,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CACvD,EAAE;iBACH,CAAC,CAAC;YACL,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM;YACN,IAAI,CAAC;gBACH,MAAM,KAAK,CAAC,GAAG,CAAC,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBACtC,MAAM,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,EAAE;oBAC5B,UAAU,CAAC,OAAO,EAAE,SAAS,CAAC,CAAC;gBACjC,CAAC,CAAC,CAAC;gBACH,MAAM,UAAU,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,gBAAgB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAC9D,IAAI,UAAU,EAAE,CAAC;oBACf,MAAM,KAAK,CAAC,GAAG,CAAC,eAAe,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;oBAC1C,UAAU,GAAG,WAAW,CAAC;gBAC3B,CAAC;qBAAM,CAAC;oBACN,UAAU,GAAG,kBAAkB,CAAC;gBAClC,CAAC;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,kEAAkE;gBAClE,qEAAqE;gBACrE,MAAM,UAAU,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,gBAAgB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC;gBACjF,IAAI,CAAC,UAAU,EAAE,CAAC;oBAChB,UAAU,GAAG,MAAM,CAAC;gBACtB,CAAC;qBAAM,CAAC;oBACN,OAAO,CAAC,IAAI,CAAC;wBACX,GAAG,EAAE,IAAI,CAAC,GAAG;wBACb,MAAM,EAAE,eACN,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CACvD,EAAE;qBACH,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;QACH,CAAC;QACD,OAAO,CAAC,IAAI,CAAC,EAAE,GAAG,IAAI,EAAE,WAAW,EAAE,UAAU,EAAE,CAAC,CAAC;IACrD,CAAC;IACD,OAAO;QACL,KAAK,EAAE,SAAS;QAChB,eAAe,EAAE;YACf,gBAAgB,EAAE,CAAC;YACnB,WAAW,EAAE,KAAK,CAAC,QAAQ,CAAC,WAAW;YACvC,SAAS,EAAE,OAAO;SACnB;QACD,OAAO;KACR,CAAC;AACJ,CAAC;AAsCD;;;;;;;;;;;GAWG;AACH,MAAM,CAAC,KAAK,UAAU,mBAAmB,CAAC,KAIzC;IACC,MAAM,SAAS,GAAsB,EAAE,CAAC;IACxC,MAAM,MAAM,GAA0B,EAAE,CAAC;IAEzC,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,QAAQ,CAAC,SAAS,EAAE,CAAC;QAC5C,IAAI,IAAI,CAAC,IAAI,KAAK,QAAQ,EAAE,CAAC;YAC3B,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;YAClD,IAAI,MAAM,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;gBAC/B,SAAS,CAAC,IAAI,CAAC;oBACb,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,IAAI,CAAC,GAAG;oBACrB,MAAM,EAAE,IAAI;oBACZ,GAAG,EAAE,IAAI,CAAC,GAAG;iBACd,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,MAAM,CAAC,IAAI,CAAC;oBACV,IAAI,EAAE,QAAQ;oBACd,GAAG,EAAE,IAAI,CAAC,GAAG;oBACb,GAAG,EAAE,IAAI,CAAC,GAAG;oBACb,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,sBAAsB;iBAChD,CAAC,CAAC;YACL,CAAC;QACH,CAAC;aAAM,CAAC;YACN,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,CAAC,CAAC;YAClD,IAAI,MAAM,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;gBAC/B,SAAS,CAAC,IAAI,CAAC;oBACb,IAAI,EAAE,KAAK;oBACX,WAAW,EAAE,IAAI,CAAC,GAAG;oBACrB,MAAM,EAAE,MAAM,CAAC,GAAG,IAAI,IAAI;oBAC1B,GAAG,EAAE,IAAI,CAAC,GAAG;iBACd,CAAC,CAAC;YACL,CAAC;iBAAM,CAAC;gBACN,MAAM,CAAC,IAAI,CAAC;oBACV,IAAI,EAAE,KAAK;oBACX,GAAG,EAAE,IAAI,CAAC,GAAG;oBACb,GAAG,EAAE,IAAI,CAAC,GAAG;oBACb,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,cAAc;iBACxC,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;IAED,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACxB,OAAO,EAAE,KAAK,EAAE,eAAe,EAAE,SAAS,EAAE,CAAC;IAC/C,CAAC;IACD,OAAO,EAAE,KAAK,EAAE,aAAa,EAAE,SAAS,EAAE,MAAM,EAAE,CAAC;AACrD,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,MAAM,UAAU,oCAAoC,CAClD,GAAuC;IAEvC,OAAO,KAAK,EAAE,OAAO,EAAE,EAAE;QACvB,IAAI,GAAG,CAAC,QAAQ,KAAK,OAAO;YAAE,OAAO,IAAI,CAAC;QAC1C,MAAM,UAAU,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC;QAC1C,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,UAAU,CAAC;YAAE,OAAO,IAAI,CAAC;QAC5C,KAAK,MAAM,GAAG,IAAI,UAAU,EAAE,CAAC;YAC7B,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI;gBAAE,OAAO,IAAI,CAAC;YACzD,MAAM,CAAC,GAAG,GAA8B,CAAC;YACzC,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;YACrB,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC;YACrB,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,OAAO,GAAG,KAAK,QAAQ;gBAAE,OAAO,IAAI,CAAC;YACpE,MAAM,uBAAuB,GAAG,MAAM,GAAG,CAAC,gBAAgB,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,KAAK,CAAC,CAAC;YACnF,IAAI,uBAAuB;gBAAE,SAAS;YACtC,yDAAyD;YACzD,MAAM,KAAK,GAAG,MAAM,GAAG,CAAC,yBAAyB,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,EAAwC,CAAC,CAAC;YAC1G,MAAM,MAAM,GAAG,MAAM,GAAG,CAAC,aAAa,EAAE,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,CAAC;YAC3D,MAAM,UAAU,GAAG,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,KAAK,GAAG,CAAC,CAAC;YACpD,MAAM,aAAa,GAAG,MAAM,KAAK,IAAI,IAAI,MAAM,CAAC,GAAG,KAAK,GAAG,CAAC;YAC5D,IAAI,CAAC,UAAU,IAAI,CAAC,aAAa,EAAE,CAAC;gBAClC,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC,CAAC;AACJ,CAAC;AAED,8EAA8E;AAC9E,yDAAyD;AACzD,8EAA8E;AAE9E;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,MAAM,UAAU,sCAAsC;IACpD,MAAM,WAAW,GAAG,OAAO,CAAC,QAAQ,CAAC;IACrC,MAAM,QAAQ,GACZ,WAAW,KAAK,QAAQ;QACtB,CAAC,CAAC,QAAQ;QACV,CAAC,CAAC,WAAW,KAAK,OAAO;YACvB,CAAC,CAAC,OAAO;YACT,CAAC,CAAC,WAAW,KAAK,OAAO;gBACvB,CAAC,CAAC,OAAO;gBACT,CAAC,CAAC,OAAO,CAAC;IAClB,OAAO;QACL,QAAQ;QACR,MAAM,EAAE,GAAG,EAAE,CAAC,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;QACtC,yBAAyB,EAAE,KAAK,IAAI,EAAE,CAAC,EAAE;QACzC,aAAa,EAAE,KAAK,IAAI,EAAE,CAAC,IAAI;QAC/B,WAAW,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE;YACzB,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;YAC/B,CAAC;YAAC,MAAM,CAAC;gBACP,2EAA2E;YAC7E,CAAC;QACH,CAAC;QACD,eAAe,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE;YAC7B,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;YAC/B,CAAC;YAAC,MAAM,CAAC;gBACP,8BAA8B;YAChC,CAAC;QACH,CAAC;QACD,gBAAgB,EAAE,KAAK,EAAE,GAAG,EAAE,EAAE;YAC9B,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,CAAC;gBACrB,OAAO,IAAI,CAAC;YACd,CAAC;YAAC,MAAM,CAAC;gBACP,OAAO,KAAK,CAAC;YACf,CAAC;QACH,CAAC;QACD,WAAW,EAAE,KAAK,IAAI,EAAE;YACtB,4DAA4D;QAC9D,CAAC;QACD,YAAY,EAAE,KAAK,IAAI,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,SAAkB,EAAE,CAAC;QACzD,YAAY,EAAE,KAAK,EAAE,QAAQ,EAAE,EAAE;YAC/B,+DAA+D;YAC/D,sDAAsD;YACtD,OAAO,EAAE,KAAK,EAAE,SAAkB,EAAE,GAAG,EAAE,QAAQ,CAAC,GAAG,EAAE,CAAC;QAC1D,CAAC;KACF,CAAC;AACJ,CAAC"}

package/node_modules/@gdh/adapters/dist/self-update-mechanics.d.ts

@@ -1,11 +1,34 @@
-import type { GdhAgentAdapterInstallAction } from "@gdh/core";
+import type { GdhAgentAdapterInstallAction, GdhApplyMigrationChainResult, GdhMigrationEnvelope, GdhMigrationVersionPair } from "@gdh/core";
+import { type GdhBackupPreservationNote } from "./durable-backup.js";
+import { type GdhProcessOrchestrationEnvironment, type GdhRestartFailedRow } from "./process-orchestration.js";
 /**
  * Result of a bumpAndRebakePin invocation.
- * - `updated`: pin rewritten; every managed surface re-baked at the new version
+ *
+ * Plan 12 / Plan 72-08 D-10 12-step flow result variants:
+ * - `updated`: pin rewritten; every managed surface re-baked at the new version;
+ *   processes restarted cleanly; processes-snapshot deleted
  * - `noop`: target already at the requested version; zero writes
  * - `skipped_dev_mode`: SELF-03 gate (GDH_DEV_REPO set or local-paths.json hint present)
- * - `rolled_back`: re-bake failed post-commit; originals restored (best-effort)
- * - `blocked`: pre-commit failure (pin write itself failed); no re-bake attempted
+ * - `rolled_back`: legacy in-memory rollback path (preserved for backwards
+ *   compatibility; new flow uses `rolled_back_from_durable_backup` per D-10 step 8a)
+ * - `blocked`: pre-commit failure (e.g., invalid semver from writePinnedVersion;
+ *   or current pair unresolvable); no re-bake attempted
+ * - `rolled_back_from_durable_backup`: applyMigrationChain reported verify_failed
+ *   or transform_threw; restoreFromDurableBackup re-created files byte-equal
+ *   pre-update; processes stay stopped per WFL-01 D-18 step 6
+ * - `updated_with_deferred_actions`: re-bake + applyMigrationChain succeeded;
+ *   restartFromSnapshot reported some_failed → migration.json gained a
+ *   process_restart deferred action whose payload carries the failed rows
+ *   (D-19); processes-snapshot.json persists for the runtime probe
+ * - `needs_envelope` (Phase 73 D-09 / D-11): applyMigrationChain paused on an
+ *   entry whose `envelope_ref` is unresolved. `pending_envelope_resume` is
+ *   set on `migration.json`, durable backup + processes-snapshot persist,
+ *   and steps 3-7 are skipped on the resume run so the original pre-update
+ *   backup content is preserved (re-taking would clobber the rollback
+ *   substrate). Step 11 on resume reads the snapshot via
+ *   `readProcessesSnapshot(effectiveTargetPath)` and derives any deferred-
+ *   action id from that re-read snapshot's `captured_at` (the local
+ *   `captureResult` is undefined on resume).
  */
 export type BumpAndRebakePinResult = {
     readonly state: "updated";
@@ -28,24 +51,144 @@ export type BumpAndRebakePinResult = {
 } | {
     readonly state: "blocked";
     readonly reason: string;
+} | {
+    readonly state: "rolled_back_from_durable_backup";
+    readonly fromVersion: string;
+    readonly attemptedToVersion: string;
+    readonly failureReason: {
+        readonly kind: "verify_failed";
+        readonly entryId: string;
+        readonly reason: string;
+    } | {
+        readonly kind: "transform_threw";
+        readonly entryId: string;
+        readonly error: string;
+    };
+    readonly preservationNotes: readonly GdhBackupPreservationNote[];
+    readonly restoredPaths: readonly string[];
+    readonly removedPaths: readonly string[];
+    /**
+     * WR-06: Aggregate restore-failure surface from
+     * `restoreFromDurableBackup`. When `> 0`, some captured paths failed
+     * to restore (disk full, EROFS, EACCES, EISDIR, etc.) and the
+     * workspace is in a PARTIALLY-restored state — NOT a clean rollback.
+     * `restoredPaths.length === 0 && removedPaths.length === 0 &&
+     * restoreFailedCount > 0` means EVERY captured path failed; the
+     * operator must inspect the durable backup at .gdh-state/backup/ and
+     * recover manually. Always present (zero on a clean restore) so
+     * downstream consumers can treat the field as a typed scalar.
+     */
+    readonly restoreFailedCount: number;
+} | {
+    readonly state: "updated_with_deferred_actions";
+    readonly fromVersion: string;
+    readonly toVersion: string;
+    readonly actions: readonly GdhAgentAdapterInstallAction[];
+    readonly migrationChainResult: Extract<GdhApplyMigrationChainResult, {
+        state: "applied";
+    } | {
+        state: "noop";
+    }>;
+    readonly deferredActions: readonly {
+        readonly id: string;
+        readonly kind: string;
+    }[];
+    readonly restartFailedRows: readonly GdhRestartFailedRow[];
+    readonly preservationNotes: readonly GdhBackupPreservationNote[];
+} | {
+    /**
+     * Phase 73 D-09 / D-11. Migration chain paused on an unresolved
+     * envelope_ref. `migration.json.pending_envelope_resume` is set; the
+     * durable backup persists; processes-snapshot.json persists. The agent
+     * calls `gdh migration record-envelope-result <slug> --result-file <path>`
+     * (Plan 73-05 contract), then re-runs `gdh self-update` which resumes
+     * from step 8 (steps 3-7 are skipped on resume — the durable backup
+     * must NOT be re-taken because it would clobber the pre-update content
+     * that the rollback substrate depends on).
+     */
+    readonly state: "needs_envelope";
+    readonly fromVersion: string;
+    readonly attemptedToVersion: string;
+    readonly envelopeRef: string;
+    readonly envelope: GdhMigrationEnvelope;
+    readonly preservationNotes: readonly GdhBackupPreservationNote[];
+    /**
+     * Entries already applied in this chain run before the pause. Empty when
+     * the first envelope-bearing entry pauses; populated when one or more
+     * mechanical entries advance before an envelope-bearing entry pauses.
+     */
+    readonly priorlyApplied: readonly string[];
 };
 /**
- * Phase 12 MIG-01 + MIG-02 orchestrator. Atomically bumps the .gdh/project.yaml
- * `gdh_version` pin and re-bakes every managed surface at the new pin.
+ * Resolve the {schema, agentContract} pair for an onboarded target.
+ *
+ * Returns:
+ *   - `null` when `.gdh/project.yaml` is absent or unparseable (project not
+ *     onboarded; bumpAndRebakePin treats this as `blocked` with reason
+ *     `current_pair_unresolvable`)
+ *   - the supported-range floor pair `{schema: 2, agentContract: 2}` for any
+ *     readable target
+ *
+ * Why a constant floor instead of the on-disk version? The supported floor
+ * pair gates the s2c2_to_s2c3 registry entry's range filter
+ * (entry.from = {2,2} must be ≥ fromPair). Per Plan 72-02 audit, every entry
+ * in the supported range is idempotent — running it on a target that's
+ * already past the entry's `to` pair is a verify-true no-op. Using the
+ * constant floor means the chain considers every entry on every run; the
+ * entry transforms self-detect "already at HEAD" and skip work, and the
+ * entry verify probes self-confirm "rules.yaml at version: 3" regardless of
+ * whether the entry just rewrote it or it was already there.
+ *
+ * The on-disk schema version (`version:` field of `.gdh/project.yaml`) is
+ * read defensively to confirm the config is parseable, but is not used to
+ * narrow the pair: per the audit, project.yaml `version: 3` has been
+ * forward-compatible since v0.18 and does not gate registry entries.
+ */
+export declare function resolveCurrentMigrationPairOrNull(targetPath: string): Promise<GdhMigrationVersionPair | null>;
+/**
+ * Resolve the {schema, agentContract} pair for the running GDH version.
+ *
+ * Always the package's compile-time pair: `GDH_PROJECT_CONFIG_VERSION` and
+ * `GDH_AGENT_CONTRACT_VERSION` from `@gdh/core`. This is the chain's `to`
+ * pair ceiling — applyMigrationChain runs every entry whose `to` ≤ this pair.
+ */
+export declare function resolveTargetMigrationPair(): GdhMigrationVersionPair;
+/**
+ * Phase 12 MIG-01 + MIG-02 + Plan 72-08 D-10 orchestrator. Atomically bumps the
+ * `.gdh/project.yaml` `gdh_version` pin, re-bakes every managed surface at the
+ * new pin (class-1), runs the migration registry chain (class-2/3 transforms +
+ * verify probes), sweeps orphan files, and orchestrates managed-process
+ * stop/restart with a deferred-action recovery path on restart failure.
  *
- * Sequencing invariant (MIG-02): writePinnedVersion is called BEFORE
- * installSupportedAgentAdapters. Because installSupportedAgentAdapters reads
- * the pin from disk once per top-level call (adapters/index.ts:173), pinning
- * first guarantees every renderer bakes the new value.
+ * The full 12-step ordering (D-10):
+ *   1. SELF-03 dev-mode short-circuit (preserved unchanged)
+ *   2. Plan: dry-run installSupportedAgentAdapters + resolve from/to pair
+ *   3. Capture process snapshot (writeProcessesSnapshot)
+ *   4. Stop processes (broker → pruneBroker; mcp → graceful → hard kill)
+ *   5. Write durable backup (.gdh-state/backup/) with WFL-02 marker drift detection
+ *   6. Write pin (writePinnedVersion) — MIG-02 sequencing precedes final re-bake
+ *   7. Re-bake adapters (installSupportedAgentAdapters apply)
+ *   8. Apply migration chain (registry entries class-2/3); failure → 8a rollback
+ *   9. Inventory set-diff sweep (orphan deletion)
+ *   10. Write new render-inventory.json + migration.json
+ *   11. Restart processes from snapshot; on all_restarted delete snapshot,
+ *       on some_failed write process_restart deferred action (D-19)
+ *   12. Emit structured BumpAndRebakePinResult
  *
- * Transactional invariant (MIG-02): on re-bake failure, every captured original
- * is restored. Partial state is not acceptable.
+ * On step-8 chain failure: restoreFromDurableBackup re-creates files byte-equal
+ * pre-update (writePinnedVersion is rolled back automatically because
+ * `.gdh/project.yaml` is in the captured paths). Processes stay stopped per
+ * WFL-01 D-18 step 6. Inventory is NOT updated (the new render set was never
+ * reached coherently). Result: `rolled_back_from_durable_backup`.
  *
- * SELF-03 leak barrier: dev-mode check gates at the mechanics layer, not only at
- * Phase 13 entry points. Single source of truth.
+ * Sequencing invariant (MIG-02 + validate-docs Check 43): writePinnedVersion
+ * is called textually BEFORE the FINAL installSupportedAgentAdapters call in
+ * this file. The dry-run plan call at step 2 reads the current pin; the apply
+ * call at step 7 reads the new pin from disk after writePinnedVersion.
  */
 export declare function bumpAndRebakePin(targetPath: string, options: {
     readonly targetVersion: string;
     readonly dryRun?: boolean;
+    readonly processOrchestrationEnvironment?: GdhProcessOrchestrationEnvironment;
 }): Promise<BumpAndRebakePinResult>;
 //# sourceMappingURL=self-update-mechanics.d.ts.map

package/node_modules/@gdh/adapters/dist/self-update-mechanics.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"self-update-mechanics.d.ts","sourceRoot":"","sources":["../src/self-update-mechanics.ts"],"names":[],"mappings":"AAUA,OAAO,KAAK,EAAE,4BAA4B,EAAE,MAAM,WAAW,CAAC;AAmB9D;;;;;;;GAOG;AACH,MAAM,MAAM,sBAAsB,GAC9B;IACE,QAAQ,CAAC,KAAK,EAAE,SAAS,CAAC;IAC1B,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,OAAO,EAAE,SAAS,4BAA4B,EAAE,CAAC;CAC3D,GACD;IAAE,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;CAAE,GAC3D;IACE,QAAQ,CAAC,KAAK,EAAE,kBAAkB,CAAC;IACnC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;CACxC,GACD;IACE,QAAQ,CAAC,KAAK,EAAE,aAAa,CAAC;IAC9B,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAC;IACpC,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC;IAC/B,QAAQ,CAAC,eAAe,EAAE,SAAS,MAAM,EAAE,CAAC;CAC7C,GACD;IAAE,QAAQ,CAAC,KAAK,EAAE,SAAS,CAAC;IAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;CAAE,CAAC;AAE3D;;;;;;;;;;;;;;GAcG;AACH,wBAAsB,gBAAgB,CACpC,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE;IACP,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC;IAC/B,QAAQ,CAAC,MAAM,CAAC,EAAE,OAAO,CAAC;CAC3B,GACA,OAAO,CAAC,sBAAsB,CAAC,CA6FjC"}
+{"version":3,"file":"self-update-mechanics.d.ts","sourceRoot":"","sources":["../src/self-update-mechanics.ts"],"names":[],"mappings":"AAyBA,OAAO,KAAK,EACV,4BAA4B,EAC5B,4BAA4B,EAE5B,oBAAoB,EAEpB,uBAAuB,EAGxB,MAAM,WAAW,CAAC;AAEnB,OAAO,EAML,KAAK,yBAAyB,EAC/B,MAAM,qBAAqB,CAAC;AAE7B,OAAO,EAKL,KAAK,kCAAkC,EACvC,KAAK,mBAAmB,EACzB,MAAM,4BAA4B,CAAC;AAmBpC;;;;;;;;;;;;;;;;;;;;;;;;;;;;GA4BG;AACH,MAAM,MAAM,sBAAsB,GAC9B;IACE,QAAQ,CAAC,KAAK,EAAE,SAAS,CAAC;IAC1B,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,OAAO,EAAE,SAAS,4BAA4B,EAAE,CAAC;CAC3D,GACD;IAAE,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IAAC,QAAQ,CAAC,cAAc,EAAE,MAAM,CAAA;CAAE,GAC3D;IACE,QAAQ,CAAC,KAAK,EAAE,kBAAkB,CAAC;IACnC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,cAAc,EAAE,MAAM,GAAG,IAAI,CAAC;CACxC,GACD;IACE,QAAQ,CAAC,KAAK,EAAE,aAAa,CAAC;IAC9B,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAC;IACpC,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC;IAC/B,QAAQ,CAAC,eAAe,EAAE,SAAS,MAAM,EAAE,CAAC;CAC7C,GACD;IAAE,QAAQ,CAAC,KAAK,EAAE,SAAS,CAAC;IAAC,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAA;CAAE,GACtD;IACE,QAAQ,CAAC,KAAK,EAAE,iCAAiC,CAAC;IAClD,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAC;IACpC,QAAQ,CAAC,aAAa,EAClB;QACE,QAAQ,CAAC,IAAI,EAAE,eAAe,CAAC;QAC/B,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;QACzB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;KACzB,GACD;QACE,QAAQ,CAAC,IAAI,EAAE,iBAAiB,CAAC;QACjC,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;QACzB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;KACxB,CAAC;IACN,QAAQ,CAAC,iBAAiB,EAAE,SAAS,yBAAyB,EAAE,CAAC;IACjE,QAAQ,CAAC,aAAa,EAAE,SAAS,MAAM,EAAE,CAAC;IAC1C,QAAQ,CAAC,YAAY,EAAE,SAAS,MAAM,EAAE,CAAC;IACzC;;;;;;;;;;OAUG;IACH,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAC;CACrC,GACD;IACE,QAAQ,CAAC,KAAK,EAAE,+BAA+B,CAAC;IAChD,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,OAAO,EAAE,SAAS,4BAA4B,EAAE,CAAC;IAC1D,QAAQ,CAAC,oBAAoB,EAAE,OAAO,CACpC,4BAA4B,EAC5B;QAAE,KAAK,EAAE,SAAS,CAAA;KAAE,GAAG;QAAE,KAAK,EAAE,MAAM,CAAA;KAAE,CACzC,CAAC;IACF,QAAQ,CAAC,eAAe,EAAE,SAAS;QACjC,QAAQ,CAAC,EAAE,EAAE,MAAM,CAAC;QACpB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;KACvB,EAAE,CAAC;IACJ,QAAQ,CAAC,iBAAiB,EAAE,SAAS,mBAAmB,EAAE,CAAC;IAC3D,QAAQ,CAAC,iBAAiB,EAAE,SAAS,yBAAyB,EAAE,CAAC;CAClE,GACD;IACE;;;;;;;;;OASG;IACH,QAAQ,CAAC,KAAK,EAAE,gBAAgB,CAAC;IACjC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,kBAAkB,EAAE,MAAM,CAAC;IACpC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,QAAQ,EAAE,oBAAoB,CAAC;IACxC,QAAQ,CAAC,iBAAiB,EAAE,SAAS,yBAAyB,EAAE,CAAC;IACjE;;;;OAIG;IACH,QAAQ,CAAC,cAAc,EAAE,SAAS,MAAM,EAAE,CAAC;CAC5C,CAAC;AAMN;;;;;;;;;;;;;;;;;;;;;;;;GAwBG;AACH,wBAAsB,iCAAiC,CACrD,UAAU,EAAE,MAAM,GACjB,OAAO,CAAC,uBAAuB,GAAG,IAAI,CAAC,CASzC;AAED;;;;;;GAMG;AACH,wBAAgB,0BAA0B,IAAI,uBAAuB,CAKpE;AAED;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAgCG;AACH,wBAAsB,gBAAgB,CACpC,UAAU,EAAE,MAAM,EAClB,OAAO,EAAE;IACP,QAAQ,CAAC,aAAa,EAAE,MAAM,CAAC;IAC/B,QAAQ,CAAC,MAAM,CAAC,EAAE,OAAO,CAAC;IAC1B,QAAQ,CAAC,+BAA+B,CAAC,EAAE,kCAAkC,CAAC;CAC/E,GACA,OAAO,CAAC,sBAAsB,CAAC,CAoiBjC"}