@skillcap/gdh 0.23.0 → 0.25.0

package/node_modules/@gdh/adapters/dist/inventory-sweep.js

@@ -0,0 +1,98 @@
+import fs from "node:fs/promises";
+import path from "node:path";
+import { GDH_MANAGED_SURFACE_CLASSES, isWorkspaceRelativePath, } from "@gdh/core";
+/**
+ * Derive the expected render set from the Phase 70 manifest
+ * (`GDH_MANAGED_SURFACE_CLASSES`).
+ *
+ * Only entries with a non-null `relativePath` contribute. Skill-class
+ * entries with `relativePath: null` are conceptual surfaces (the renderer
+ * resolves the actual paths per-adapter) and are NOT in the inventory's
+ * direct delete-comparison set.
+ */
+export function deriveExpectedRenderSet() {
+    const expected = new Set();
+    for (const entry of GDH_MANAGED_SURFACE_CLASSES) {
+        if (entry.relativePath !== null) {
+            expected.add(entry.relativePath);
+        }
+    }
+    return expected;
+}
+/**
+ * Run the orphan sweep (STA-02).
+ *
+ * Orphans = (oldInventory.paths ∪ supplementaryDeletions) MINUS expected
+ * render set (derived from `GDH_MANAGED_SURFACE_CLASSES`).
+ *
+ * Behaviour contract:
+ *   - **Path traversal blocked:** any candidate failing
+ *     `isWorkspaceRelativePath` (T-72-03-01) is skipped with reason
+ *     `path_traversal_blocked`; never deleted.
+ *   - **Symlinks not followed:** existence is probed via `fs.lstat` so
+ *     symlinks are detected by-link (not by-target); deletion via
+ *     `fs.rm(... { force: true })` calls `unlink` for symlinks (T-72-03-02).
+ *     Symlink targets are never deleted.
+ *   - **Idempotent:** missing files report as `alreadyAbsent`; not an error.
+ *   - **First-run bootstrap (D-16):** when `oldInventory` is null, only
+ *     `supplementaryDeletions` is processed (no set-diff input from a
+ *     prior render-inventory.paths).
+ *   - **Caller writes the new inventory after** consuming this result. The
+ *     sweep does NOT write `.gdh-state/render-inventory.json`; Plan 08 step
+ *     11 wires the write into `bumpAndRebakePin` after the sweep returns
+ *     successfully (transactional ordering: deletions first, then commit
+ *     the new inventory).
+ */
+export async function runInventorySweep(input) {
+    const expected = deriveExpectedRenderSet();
+    const candidates = new Set();
+    if (input.oldInventory !== null) {
+        for (const candidate of input.oldInventory.paths)
+            candidates.add(candidate);
+    }
+    for (const candidate of input.supplementaryDeletions ?? []) {
+        candidates.add(candidate);
+    }
+    const orphans = [...candidates]
+        .filter((candidate) => !expected.has(candidate))
+        .sort();
+    const deleted = [];
+    const alreadyAbsent = [];
+    const skipped = [];
+    for (const orphan of orphans) {
+        if (!isWorkspaceRelativePath(orphan)) {
+            skipped.push({ path: orphan, reason: "path_traversal_blocked" });
+            continue;
+        }
+        const absolute = path.join(input.targetPath, orphan);
+        let exists = true;
+        try {
+            // lstat (not stat) so symlinks are reported by-link, not by-target
+            await fs.lstat(absolute);
+        }
+        catch {
+            exists = false;
+        }
+        if (!exists) {
+            alreadyAbsent.push(orphan);
+            continue;
+        }
+        try {
+            // fs.rm with force:true uses unlink semantics for symlinks (does NOT
+            // follow them) and removes regular files. Directories would be removed
+            // recursively only if `recursive: true` is set, which we do not pass —
+            // the sweep targets files-only by design.
+            await fs.rm(absolute, { force: true });
+            deleted.push(orphan);
+        }
+        catch (error) {
+            skipped.push({
+                path: orphan,
+                reason: "delete_failed",
+                detail: error instanceof Error ? error.message : String(error),
+            });
+        }
+    }
+    return { state: "swept", deleted, alreadyAbsent, skipped };
+}
+//# sourceMappingURL=inventory-sweep.js.map

package/node_modules/@gdh/adapters/dist/inventory-sweep.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"inventory-sweep.js","sourceRoot":"","sources":["../src/inventory-sweep.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAClC,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EACL,2BAA2B,EAC3B,uBAAuB,GAExB,MAAM,WAAW,CAAC;AAEnB;;;;;;;;GAQG;AACH,MAAM,UAAU,uBAAuB;IACrC,MAAM,QAAQ,GAAG,IAAI,GAAG,EAAU,CAAC;IACnC,KAAK,MAAM,KAAK,IAAI,2BAA2B,EAAE,CAAC;QAChD,IAAI,KAAK,CAAC,YAAY,KAAK,IAAI,EAAE,CAAC;YAChC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;QACnC,CAAC;IACH,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAqBD;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,MAAM,CAAC,KAAK,UAAU,iBAAiB,CACrC,KAA6B;IAE7B,MAAM,QAAQ,GAAG,uBAAuB,EAAE,CAAC;IAC3C,MAAM,UAAU,GAAG,IAAI,GAAG,EAAU,CAAC;IACrC,IAAI,KAAK,CAAC,YAAY,KAAK,IAAI,EAAE,CAAC;QAChC,KAAK,MAAM,SAAS,IAAI,KAAK,CAAC,YAAY,CAAC,KAAK;YAAE,UAAU,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAC9E,CAAC;IACD,KAAK,MAAM,SAAS,IAAI,KAAK,CAAC,sBAAsB,IAAI,EAAE,EAAE,CAAC;QAC3D,UAAU,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;IAC5B,CAAC;IAED,MAAM,OAAO,GAAG,CAAC,GAAG,UAAU,CAAC;SAC5B,MAAM,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,CAAC,QAAQ,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;SAC/C,IAAI,EAAE,CAAC;IAEV,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,MAAM,aAAa,GAAa,EAAE,CAAC;IACnC,MAAM,OAAO,GAA+B,EAAE,CAAC;IAE/C,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;QAC7B,IAAI,CAAC,uBAAuB,CAAC,MAAM,CAAC,EAAE,CAAC;YACrC,OAAO,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,wBAAwB,EAAE,CAAC,CAAC;YACjE,SAAS;QACX,CAAC;QACD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,MAAM,CAAC,CAAC;QACrD,IAAI,MAAM,GAAG,IAAI,CAAC;QAClB,IAAI,CAAC;YACH,mEAAmE;YACnE,MAAM,EAAE,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QAC3B,CAAC;QAAC,MAAM,CAAC;YACP,MAAM,GAAG,KAAK,CAAC;QACjB,CAAC;QACD,IAAI,CAAC,MAAM,EAAE,CAAC;YACZ,aAAa,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YAC3B,SAAS;QACX,CAAC;QACD,IAAI,CAAC;YACH,qEAAqE;YACrE,uEAAuE;YACvE,uEAAuE;YACvE,0CAA0C;YAC1C,MAAM,EAAE,CAAC,EAAE,CAAC,QAAQ,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC,CAAC;YACvC,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACvB,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,OAAO,CAAC,IAAI,CAAC;gBACX,IAAI,EAAE,MAAM;gBACZ,MAAM,EAAE,eAAe;gBACvB,MAAM,EAAE,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC;aAC/D,CAAC,CAAC;QACL,CAAC;IACH,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,aAAa,EAAE,OAAO,EAAE,CAAC;AAC7D,CAAC"}

package/node_modules/@gdh/adapters/dist/process-orchestration.d.ts

@@ -0,0 +1,223 @@
+import { type GdhCapturedProcess, type GdhProcessesSnapshot } from "@gdh/core";
+/**
+ * Allowlist of environment variable keys captured into each process row's
+ * `env_subset` (T-72-06-01 mitigation).
+ *
+ * The orchestrator never persists `process.env` wholesale into
+ * processes-snapshot.json — only keys explicitly named here, plus any key
+ * matching the `GDH_*` prefix (matched in {@link pickEnvSubset}). The
+ * regression-safe assertion test in process-orchestration.test.ts asserts
+ * non-allowlisted env vars (SECRET_TOKEN, AWS_SECRET_ACCESS_KEY, OPENAI_API_KEY)
+ * are NOT captured.
+ *
+ * If you need to add a key, add it here and document why in the commit
+ * message — this is the single ops-review point for what crosses the
+ * snapshot-file trust boundary.
+ */
+export declare const STOP_AND_RESTART_ENV_SUBSET_KEYS: readonly string[];
+/**
+ * Default graceful-stop timeout. Production-safe value; tests inject a much
+ * lower number (e.g. 5ms) via the `gracefulTimeoutMs` parameter so suites stay
+ * fast. T-72-06-04 mitigation: bounded single-attempt timeout, no retry loop.
+ */
+export declare const DEFAULT_GRACEFUL_STOP_TIMEOUT_MS = 2500;
+export type GdhProcessOrchestrationPlatform = "darwin" | "linux" | "win32" | "other";
+/** Discovered MCP process — caller's adapter sources this from the OS. */
+export interface GdhDiscoveredMcpProcess {
+    readonly pid: number;
+    readonly cmd: string;
+    readonly args: readonly string[];
+    readonly cwd: string | null;
+    readonly env: Record<string, string>;
+}
+/** Discovered broker process — caller's adapter sources this from
+ *  inspectRuntimeBridgeBroker.metadata. */
+export interface GdhDiscoveredBrokerProcess {
+    readonly pid: number;
+    readonly cmd: string;
+    readonly args: readonly string[];
+    readonly cwd: string | null;
+    readonly env: Record<string, string>;
+}
+/**
+ * Injectable environment for the process orchestrator.
+ *
+ * In production, callers wire the defaults around mcp-cleanup +
+ * bridge-broker primitives (cleanupGdhMcpProcessesWithEnvironment +
+ * inspectRuntimeBridgeBroker / pruneRuntimeBridgeBroker /
+ * ensureRuntimeBridgeBroker). In tests, every method is stubbed — the
+ * orchestrator never touches `process.kill` or `spawn` directly. This is the
+ * sole OS-touching surface (must_have: "GdhProcessOrchestrationEnvironment
+ * injectable adapter for testability").
+ */
+export interface GdhProcessOrchestrationEnvironment {
+    readonly platform: GdhProcessOrchestrationPlatform;
+    readonly nowIso: () => string;
+    readonly discoverOwnedMcpProcesses: () => Promise<readonly GdhDiscoveredMcpProcess[]>;
+    readonly inspectBroker: () => Promise<GdhDiscoveredBrokerProcess | null>;
+    readonly killProcess: (pid: number) => Promise<void>;
+    readonly hardKillProcess: (pid: number) => Promise<void>;
+    readonly isProcessRunning: (pid: number) => Promise<boolean>;
+    readonly pruneBroker: (targetPath: string) => Promise<void>;
+    readonly ensureBroker: (captured: GdhCapturedProcess) => Promise<{
+        readonly state: "started" | "failed";
+        readonly detail?: string;
+    }>;
+    readonly spawnProcess: (captured: GdhCapturedProcess) => Promise<{
+        readonly state: "spawned" | "failed";
+        readonly pid?: number;
+        readonly detail?: string;
+    }>;
+}
+export interface GdhCaptureProcessSnapshotResult {
+    readonly snapshot: GdhProcessesSnapshot;
+    readonly degraded: boolean;
+    readonly degradedReason?: "platform_unsupported_win32";
+}
+/**
+ * Discover owned MCP processes + broker, build a {@link GdhProcessesSnapshot}.
+ *
+ * Returns a degraded result on win32 (Pitfall 5: process orchestration is
+ * Mac/Linux only). The discovery hooks are NOT called on win32; the snapshot
+ * is empty and the caller routes around stop/restart, allowing the update to
+ * proceed.
+ *
+ * The returned snapshot has `stop_method = null` on every row. Plan 08 writes
+ * this snapshot to disk via {@link writeProcessesSnapshot}, then calls
+ * {@link stopCapturedProcesses} which mutates the rows to record the actual
+ * stop method per row.
+ */
+export declare function captureProcessSnapshot(input: {
+    readonly targetPath: string;
+    readonly env: GdhProcessOrchestrationEnvironment;
+}): Promise<GdhCaptureProcessSnapshotResult>;
+export interface GdhStopCapturedProcessesSkipped {
+    readonly pid: number;
+    readonly reason: string;
+}
+export interface GdhStopCapturedProcessesResult {
+    readonly state: "stopped";
+    readonly updatedSnapshot: GdhProcessesSnapshot;
+    readonly skipped: readonly GdhStopCapturedProcessesSkipped[];
+}
+/**
+ * Stop every captured process per row.
+ *
+ * Dispatch (D-18 step 4):
+ * - kind === "broker": prefer {@link GdhProcessOrchestrationEnvironment.pruneBroker}
+ *   over raw kill so broker-owned sessions are stopped cleanly first
+ *   (Pitfall 4 / T-72-06-05). Records `stop_method: "broker_prune"`.
+ * - kind === "mcp": graceful SIGTERM via env.killProcess; wait
+ *   `gracefulTimeoutMs` (default {@link DEFAULT_GRACEFUL_STOP_TIMEOUT_MS});
+ *   if env.isProcessRunning still true, escalate to env.hardKillProcess.
+ *   Records `stop_method: "graceful_sigterm"` or `"hard_kill"`.
+ *
+ * Idempotent: if the kill probe finds the process already gone (kill throws,
+ * isProcessRunning returns false), records `stop_method: "none"` and
+ * continues. T-72-06-04: no retry loop; bounded single-attempt timeout.
+ */
+export declare function stopCapturedProcesses(input: {
+    readonly snapshot: GdhProcessesSnapshot;
+    readonly env: GdhProcessOrchestrationEnvironment;
+    readonly targetPath: string;
+    readonly gracefulTimeoutMs?: number;
+}): Promise<GdhStopCapturedProcessesResult>;
+/** A row that failed to restart; carried in the deferred-action payload. */
+export interface GdhRestartFailedRow {
+    readonly kind: "mcp" | "broker";
+    readonly pid: number;
+    readonly cmd: string;
+    readonly reason: string;
+}
+/** A row that successfully restarted (PID may differ from original — see
+ *  T-72-06-06: PID drift accepted, identity carried via originalPid for
+ *  audit and via cmd for re-discovery). */
+export interface GdhRestartedRow {
+    readonly kind: "mcp" | "broker";
+    readonly originalPid: number;
+    readonly newPid: number | null;
+    readonly cmd: string;
+}
+/**
+ * Discriminated result of {@link restartFromSnapshot}. On `all_restarted`,
+ * Plan 08 deletes processes-snapshot.json (D-18 step 12 success path). On
+ * `some_failed`, Plan 08 leaves the snapshot in place AND creates a
+ * `process_restart` deferred action whose payload carries the `failed` rows
+ * for the runtime probe (D-19).
+ */
+export type GdhRestartFromSnapshotResult = {
+    readonly state: "all_restarted";
+    readonly restarted: readonly GdhRestartedRow[];
+} | {
+    readonly state: "some_failed";
+    readonly restarted: readonly GdhRestartedRow[];
+    readonly failed: readonly GdhRestartFailedRow[];
+};
+/**
+ * Re-spawn every captured process per row.
+ *
+ * Dispatch (D-18 step 5):
+ * - kind === "broker": call env.ensureBroker(captured) — wraps
+ *   ensureRuntimeBridgeBroker which polls for the ready handshake.
+ * - kind === "mcp": call env.spawnProcess(captured) — production wires this to
+ *   child_process.spawn with the captured cmd/args/cwd/env_subset and detached:true.
+ *
+ * Privilege of restarted processes matches captured cwd + env_subset; no
+ * implicit elevation, no inheritance of process.env (T-72-06-02).
+ */
+export declare function restartFromSnapshot(input: {
+    readonly snapshot: GdhProcessesSnapshot;
+    readonly env: GdhProcessOrchestrationEnvironment;
+    readonly targetPath: string;
+}): Promise<GdhRestartFromSnapshotResult>;
+/**
+ * Convert a structured payload (the same shape produced by Plan 08 when it
+ * registers a `process_restart` deferred action) into a runtime probe that
+ * Plan 05's `runDeferredActionProbe` consumes.
+ *
+ * Payload shape: `{ failed_rows: { kind: "mcp"|"broker", pid: number, cmd: string }[] }`
+ *
+ * The probe returns:
+ * - `true` when every referenced row's pid is currently running OR a
+ *   discovered process matches by cmd (PID drift acceptable; T-72-06-06).
+ * - `false` when at least one row's pid is gone AND discovery does not
+ *   surface a process with matching cmd.
+ * - `null` when the env adapter is unable to evaluate (win32 degraded
+ *   platform per T-72-06-09, or malformed payload — caller's runDeferredActionProbe
+ *   converts null to `status: "pending"` with a documented reason).
+ *
+ * The probe never throws — every error mode collapses into a defined return
+ * value so the advisory layer cannot crash on a misbehaving adapter.
+ *
+ * T-72-06-03: each invocation reads fresh discovery results via the env
+ * adapter; nothing cached crosses call boundaries.
+ */
+export declare function buildProcessRestartProbeFromSnapshot(env: GdhProcessOrchestrationEnvironment): (payload: Record<string, unknown>) => Promise<boolean | null>;
+/**
+ * Default production-safe `GdhProcessOrchestrationEnvironment` factory.
+ *
+ * Returns a minimal environment that:
+ *   - reports `process.platform` reduced to the closed enum
+ *   - returns `() => new Date().toISOString()` for nowIso
+ *   - returns empty discovery (no MCP processes / no broker) — production
+ *     callers (Plan 13-02 self-update.ts) wire a richer factory backed by
+ *     `cleanupGdhMcpProcessesWithEnvironment` + `inspectRuntimeBridgeBroker`
+ *     + `pruneRuntimeBridgeBroker` + `ensureRuntimeBridgeBroker` from
+ *     `@gdh/runtime`. The default factory exists so `bumpAndRebakePin`
+ *     callers that omit the optional adapter still get a working
+ *     no-orchestration flow (Test 1 and Test 2 of Plan 72-08 Task 08-02
+ *     happy paths exercise this default with empty discovery).
+ *   - uses `process.kill(pid, 'SIGTERM')` and `process.kill(pid, 'SIGKILL')`
+ *     for kill primitives; `process.kill(pid, 0)` for liveness probe
+ *   - no-ops `pruneBroker` and `ensureBroker` (production callers wire
+ *     the real broker primitives)
+ *   - no-ops `spawnProcess` (production callers wire `child_process.spawn`)
+ *
+ * The defaults are conservative — when discovery returns empty, every
+ * downstream stop/restart loop is a no-op and `bumpAndRebakePin`'s 12-step
+ * flow still completes cleanly. Production wiring layers richer adapters on
+ * top of this default; tests inject a fully-stubbed environment via the
+ * optional `processOrchestrationEnvironment` parameter to bumpAndRebakePin.
+ */
+export declare function defaultProcessOrchestrationEnvironment(): GdhProcessOrchestrationEnvironment;
+//# sourceMappingURL=process-orchestration.d.ts.map

package/node_modules/@gdh/adapters/dist/process-orchestration.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"process-orchestration.d.ts","sourceRoot":"","sources":["../src/process-orchestration.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,KAAK,kBAAkB,EAEvB,KAAK,oBAAoB,EAC1B,MAAM,WAAW,CAAC;AAEnB;;;;;;;;;;;;;;GAcG;AACH,eAAO,MAAM,gCAAgC,EAAE,SAAS,MAAM,EAQ7D,CAAC;AAEF;;;;GAIG;AACH,eAAO,MAAM,gCAAgC,OAAO,CAAC;AAErD,MAAM,MAAM,+BAA+B,GAAG,QAAQ,GAAG,OAAO,GAAG,OAAO,GAAG,OAAO,CAAC;AAErF,0EAA0E;AAC1E,MAAM,WAAW,uBAAuB;IACtC,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,IAAI,EAAE,SAAS,MAAM,EAAE,CAAC;IACjC,QAAQ,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACtC;AAED;2CAC2C;AAC3C,MAAM,WAAW,0BAA0B;IACzC,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,IAAI,EAAE,SAAS,MAAM,EAAE,CAAC;IACjC,QAAQ,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI,CAAC;IAC5B,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CACtC;AAED;;;;;;;;;;GAUG;AACH,MAAM,WAAW,kCAAkC;IACjD,QAAQ,CAAC,QAAQ,EAAE,+BAA+B,CAAC;IACnD,QAAQ,CAAC,MAAM,EAAE,MAAM,MAAM,CAAC;IAC9B,QAAQ,CAAC,yBAAyB,EAAE,MAAM,OAAO,CAAC,SAAS,uBAAuB,EAAE,CAAC,CAAC;IACtF,QAAQ,CAAC,aAAa,EAAE,MAAM,OAAO,CAAC,0BAA0B,GAAG,IAAI,CAAC,CAAC;IACzE,QAAQ,CAAC,WAAW,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACrD,QAAQ,CAAC,eAAe,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IACzD,QAAQ,CAAC,gBAAgB,EAAE,CAAC,GAAG,EAAE,MAAM,KAAK,OAAO,CAAC,OAAO,CAAC,CAAC;IAC7D,QAAQ,CAAC,WAAW,EAAE,CAAC,UAAU,EAAE,MAAM,KAAK,OAAO,CAAC,IAAI,CAAC,CAAC;IAC5D,QAAQ,CAAC,YAAY,EAAE,CACrB,QAAQ,EAAE,kBAAkB,KACzB,OAAO,CAAC;QAAE,QAAQ,CAAC,KAAK,EAAE,SAAS,GAAG,QAAQ,CAAC;QAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACjF,QAAQ,CAAC,YAAY,EAAE,CACrB,QAAQ,EAAE,kBAAkB,KACzB,OAAO,CAAC;QACX,QAAQ,CAAC,KAAK,EAAE,SAAS,GAAG,QAAQ,CAAC;QACrC,QAAQ,CAAC,GAAG,CAAC,EAAE,MAAM,CAAC;QACtB,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;KAC1B,CAAC,CAAC;CACJ;AAkBD,MAAM,WAAW,+BAA+B;IAC9C,QAAQ,CAAC,QAAQ,EAAE,oBAAoB,CAAC;IACxC,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC;IAC3B,QAAQ,CAAC,cAAc,CAAC,EAAE,4BAA4B,CAAC;CACxD;AAED;;;;;;;;;;;;GAYG;AACH,wBAAsB,sBAAsB,CAAC,KAAK,EAAE;IAClD,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;IAC5B,QAAQ,CAAC,GAAG,EAAE,kCAAkC,CAAC;CAClD,GAAG,OAAO,CAAC,+BAA+B,CAAC,CAyC3C;AAED,MAAM,WAAW,+BAA+B;IAC9C,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;CACzB;AAED,MAAM,WAAW,8BAA8B;IAC7C,QAAQ,CAAC,KAAK,EAAE,SAAS,CAAC;IAC1B,QAAQ,CAAC,eAAe,EAAE,oBAAoB,CAAC;IAC/C,QAAQ,CAAC,OAAO,EAAE,SAAS,+BAA+B,EAAE,CAAC;CAC9D;AAED;;;;;;;;;;;;;;;GAeG;AACH,wBAAsB,qBAAqB,CAAC,KAAK,EAAE;IACjD,QAAQ,CAAC,QAAQ,EAAE,oBAAoB,CAAC;IACxC,QAAQ,CAAC,GAAG,EAAE,kCAAkC,CAAC;IACjD,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;IAC5B,QAAQ,CAAC,iBAAiB,CAAC,EAAE,MAAM,CAAC;CACrC,GAAG,OAAO,CAAC,8BAA8B,CAAC,CA2D1C;AAED,4EAA4E;AAC5E,MAAM,WAAW,mBAAmB;IAClC,QAAQ,CAAC,IAAI,EAAE,KAAK,GAAG,QAAQ,CAAC;IAChC,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;CACzB;AAED;;2CAE2C;AAC3C,MAAM,WAAW,eAAe;IAC9B,QAAQ,CAAC,IAAI,EAAE,KAAK,GAAG,QAAQ,CAAC;IAChC,QAAQ,CAAC,WAAW,EAAE,MAAM,CAAC;IAC7B,QAAQ,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAAC;IAC/B,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;CACtB;AAED;;;;;;GAMG;AACH,MAAM,MAAM,4BAA4B,GACpC;IACE,QAAQ,CAAC,KAAK,EAAE,eAAe,CAAC;IAChC,QAAQ,CAAC,SAAS,EAAE,SAAS,eAAe,EAAE,CAAC;CAChD,GACD;IACE,QAAQ,CAAC,KAAK,EAAE,aAAa,CAAC;IAC9B,QAAQ,CAAC,SAAS,EAAE,SAAS,eAAe,EAAE,CAAC;IAC/C,QAAQ,CAAC,MAAM,EAAE,SAAS,mBAAmB,EAAE,CAAC;CACjD,CAAC;AAEN;;;;;;;;;;;GAWG;AACH,wBAAsB,mBAAmB,CAAC,KAAK,EAAE;IAC/C,QAAQ,CAAC,QAAQ,EAAE,oBAAoB,CAAC;IACxC,QAAQ,CAAC,GAAG,EAAE,kCAAkC,CAAC;IACjD,QAAQ,CAAC,UAAU,EAAE,MAAM,CAAC;CAC7B,GAAG,OAAO,CAAC,4BAA4B,CAAC,CA8CxC;AAED;;;;;;;;;;;;;;;;;;;;;GAqBG;AACH,wBAAgB,oCAAoC,CAClD,GAAG,EAAE,kCAAkC,GACtC,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAAK,OAAO,CAAC,OAAO,GAAG,IAAI,CAAC,CAwB/D;AAMD;;;;;;;;;;;;;;;;;;;;;;;;;GAyBG;AACH,wBAAgB,sCAAsC,IAAI,kCAAkC,CA+C3F"}