@socketsecurity/sdk 1.5.1 → 1.7.0

package/CHANGELOG.md

@@ -4,6 +4,49 @@ All notable changes to this project will be documented in this file.
 
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
 
+## [1.7.0](https://github.com/SocketDev/socket-sdk-js/releases/tag/v1.7.0) - 2025-09-26
+
+### Added
+- `getApi` method for raw GET requests with configurable response handling
+- `sendApi` method for POST/PUT requests with JSON body support
+- `CResult` type pattern for non-throwing API operations
+- `CustomResponseType` type export for response type options
+- Support for custom response types (`response`, `text`, `json`) in `getApi`
+- Enhanced error handling with detailed error context from `error.details` field
+- Socket API `error.details` parsing for richer error information
+- `getEntitlements` method for retrieving organization entitlements
+- `getEnabledEntitlements` method for getting enabled entitlement keys
+- `viewPatch` method for retrieving patch details by UUID
+- `streamPatchesFromScan` method for streaming patches from scan results
+- `Entitlement` and `EntitlementsResponse` types for entitlements API
+- `PatchFile`, `Vulnerability`, `SecurityAlert`, `PatchRecord`, `PatchViewResponse`, and `ArtifactPatches` types for patches API
+- Support for NDJSON streaming responses in patches API
+- Comprehensive test coverage improvements (484 total tests, 99.92% line coverage, 99.39% branch coverage)
+- Enhanced error handling tests for JSON parsing edge cases in streaming
+- Additional coverage tests for invalid JSON line handling in NDJSON streams
+
+### Changed
+- Improved error message formatting and JSON parsing error handling
+- Enhanced type safety with better generic constraints
+- Renamed option types to `GetOptions` and `SendOptions` for consistency
+- Reorganized test files into focused, functionality-based modules
+- Raised coverage thresholds to match achieved levels (100% statements, functions, lines)
+- Removed duplicate tests while maintaining coverage integrity
+- Renamed `getIssuesByNPMPackage` to `getIssuesByNpmPackage` for consistent naming convention
+- Improved method alphabetical ordering in source code
+- Enhanced test coverage from 99.77% to 99.92% line coverage
+- Improved branch coverage from 99.08% to 99.39%
+
+## [1.6.1](https://github.com/SocketDev/socket-sdk-js/releases/tag/v1.6.1) - 2025-09-24
+
+### Changed
+- Updated to use trusted publisher for npm package provenance
+
+## [1.6.0](https://github.com/SocketDev/socket-sdk-js/releases/tag/v1.6.0) - 2025-09-24
+
+### Changed
+- **BREAKING:** Converted to single CommonJS export type, removing dual ESM/CJS support
+
 ## [1.5.1](https://github.com/SocketDev/socket-sdk-js/releases/tag/v1.5.1) - 2025-09-24
 
 ### Fixed

package/README.md

@@ -5,6 +5,7 @@
 [![TypeScript types](https://img.shields.io/npm/types/@socketsecurity/sdk.svg?style=flat)](https://www.npmjs.com/package/@socketsecurity/sdk)
 [![js-standard-style](https://img.shields.io/badge/code%20style-standard-brightgreen.svg)](https://github.com/SocketDev/eslint-config)
 [![Follow @SocketSecurity](https://img.shields.io/twitter/follow/SocketSecurity?style=social)](https://twitter.com/SocketSecurity)
+[![Follow @socket.dev on Bluesky](https://img.shields.io/badge/Follow-@socket.dev-1DA1F2?style=social&logo=bluesky)](https://bsky.app/profile/socket.dev)
 
 SDK for the Socket API client, generated by `api`.
 
@@ -35,36 +36,210 @@ if (res.success) {
 const { SocketSdk } = require('@socketsecurity/sdk')
 ```
 
+## API Overview
+
+The Socket SDK provides programmatic access to Socket.dev's security analysis platform through 60+ API methods organized into functional categories:
+
+### Package Analysis
+- **Package Security**: Get vulnerability reports, security scores, and issue details for npm packages
+- **Batch Processing**: Analyze multiple packages efficiently with streaming and concurrent processing
+- **PURL Support**: Process Package URLs for comprehensive package identification
+
+### Organization Management
+- **Organizations**: List, manage, and configure organization settings
+- **Repositories**: Create, update, and delete organization repositories
+- **Labels**: Manage repository categorization and tagging systems
+
+### Security Scanning & Analysis
+- **Full Scans**: Create comprehensive security scans from manifest files
+- **Diff Scans**: Compare scans to identify changes and new vulnerabilities
+- **Dependencies**: Upload and analyze project dependency files
+- **Reports**: Generate, retrieve, and manage detailed security reports
+
+### Policy & Compliance
+- **Security Policies**: Configure and update organization security policies
+- **License Policies**: Manage allowed/restricted license types
+- **Alert Triage**: Review and manage security alert statuses
+- **Audit Logs**: Access chronological security and administrative events
+
+### Data Export & Integration
+- **SBOM Export**: Generate CycloneDX and SPDX Software Bill of Materials
+- **Streaming**: Efficient data streaming for large datasets
+- **Analytics**: Access usage metrics and security trend data
+
+### Authentication & Access
+- **API Tokens**: Create, rotate, update, and revoke organization API tokens
+- **Entitlements**: View enabled Socket products and features
+- **Quota Management**: Monitor API usage limits and quotas
+
+### Advanced Features
+- **Patches**: View and stream security patches for vulnerabilities
+- **Custom Queries**: Raw API access with configurable response handling
+- **Cross-platform**: Full Windows, macOS, and Linux compatibility
+
 ## SocketSdk Methods
 
-### Package methods
-
-* `getIssuesByNPMPackage(packageName, version)`
-  * `packageName`: A `string` representing the name of the npm package you want the issues for
-  * `version`:  A `string` representing the version of the npm package to return the issues for
-* `getScoreByNPMPackage(packageName, version)`
-  * `packageName`: A `string` representing the name of the npm package you want the score for
-  * `version`:  A `string` representing the version of the npm package to return the score for
-
-### Report methods
-
-* `createReportFromFilepaths(filePaths, pathsRelativeTo=., [issueRules])`
-  * `filePaths`: An `array` of absolute or relative `string` paths to `package.json` and any corresponding `package-lock.json` files
-  * `pathsRelativeTo`: A `string` path that the absolute paths `filePaths` are relative to. This to calculate where in your project the `package.json`/`package-lock.json` files lives
-  * `issueRules`: An object that follows the format of the [`socket.yml`](https://docs.socket.dev/docs/socket-yml) issue rules. Keys being issue names, values being a boolean that activates or deactivates it. Is applied on top of default config and organization config.
-* `getReportList()`
-* `getReportSupportedFiles()`
-* `getReport(id)`
-  * `id`: A `string` representing the id of a created report
-
-### Utility methods
-
-* `getQuota()`
-* `getOrganizations()`
-* `postSettings(selectors)`
-  * `selectors`: An array of settings selectors, e.g. `[{ organization: 'id' }]`
-* `getOrgSecurityPolicy(orgSlug)`
-  * `orgSlug`: the slug of the organization
+### Package Analysis Methods
+
+* `batchPackageFetch(componentsObj, queryParams?)` - Analyze multiple packages in batch
+  * Returns all results at once after processing is complete
+* `batchPackageStream(componentsObj, options?)` - Stream package analysis with concurrency control
+  * Returns results as they become available via async generator
+* `getIssuesByNpmPackage(packageName, version)` - Get security issues for a specific npm package
+  * Returns detailed vulnerability and security alert information
+* `getScoreByNpmPackage(packageName, version)` - Get security score for a package
+  * Returns numerical security rating and scoring breakdown
+
+### Scanning & Analysis Methods
+
+* `createDependenciesSnapshot(filepaths, pathsRelativeTo='.', queryParams?)` - Create dependency snapshot
+  * Analyzes dependency files to generate comprehensive security report
+* `createOrgFullScan(orgSlug, filepaths, pathsRelativeTo='.', queryParams?)` - Create full organization scan
+  * Uploads project files and initiates complete security analysis
+* `createScanFromFilepaths(filePaths, pathsRelativeTo='.', issueRules?)` - Create security scan from files
+  * Analyzes uploaded files for security vulnerabilities and policy violations
+* `getScan(id)` - Get detailed scan results
+  * Returns complete scan analysis including vulnerabilities and alerts
+* `getScanList()` - List all accessible scans
+  * Returns paginated list of scan metadata and status
+* `getSupportedScanFiles()` - Get supported file formats
+  * Returns supported manifest files, lockfiles, and configuration formats
+
+### Organization Management Methods
+
+* `createOrgRepo(orgSlug, queryParams?)` - Create new repository
+  * Registers repository for monitoring and security scanning
+* `deleteOrgRepo(orgSlug, repoSlug)` - Delete repository
+  * Removes repository monitoring and associated scan data
+* `getOrganizations()` - List accessible organizations
+  * Returns organization details and access permissions
+* `getOrgRepo(orgSlug, repoSlug)` - Get repository details
+  * Returns repository configuration, monitoring status, and metadata
+* `getOrgRepoList(orgSlug, queryParams?)` - List organization repositories
+  * Returns paginated list of repository metadata and status
+* `updateOrgRepo(orgSlug, repoSlug, queryParams?)` - Update repository configuration
+  * Modifies monitoring settings, branch configuration, and scan preferences
+
+### Full Scan Management Methods
+
+* `deleteOrgFullScan(orgSlug, fullScanId)` - Delete full scan
+  * Permanently removes scan data and results
+* `getOrgFullScanBuffered(orgSlug, fullScanId)` - Get complete scan results in memory
+  * Returns entire scan data as JSON for programmatic processing
+* `getOrgFullScanList(orgSlug, queryParams?)` - List organization full scans
+  * Returns paginated list of scan metadata and status
+* `getOrgFullScanMetadata(orgSlug, fullScanId)` - Get scan metadata
+  * Returns scan configuration, status, and summary information
+* `streamOrgFullScan(orgSlug, fullScanId, output?)` - Stream scan results
+  * Provides efficient streaming for large scan datasets to file or stdout
+
+### Policy & Settings Methods
+
+* `getOrgLicensePolicy(orgSlug)` - Get license policy configuration
+  * Returns allowed, restricted, and monitored license types
+* `getOrgSecurityPolicy(orgSlug)` - Get organization security policy
+  * Returns alert rules, severity thresholds, and enforcement settings
+* `postSettings(selectors)` - Update user or organization settings
+  * Configures preferences, notifications, and security policies
+* `updateOrgLicensePolicy(orgSlug, policyData, queryParams?)` - Update license policy
+  * Modifies allowed, restricted, and monitored license types
+* `updateOrgSecurityPolicy(orgSlug, policyData)` - Update security policy
+  * Modifies alert rules, severity thresholds, and enforcement settings
+
+### Analytics & Monitoring Methods
+
+* `getAuditLogEvents(orgSlug, queryParams?)` - Get audit log events
+  * Returns chronological log of security and administrative actions
+* `getOrgAnalytics(time)` - Get organization analytics
+  * Returns statistical analysis for specified time period
+* `getQuota()` - Get current API quota usage
+  * Returns remaining requests, rate limits, and quota reset times
+* `getRepoAnalytics(repo, time)` - Get repository analytics
+  * Returns security metrics, dependency trends, and vulnerability statistics
+
+### Authentication & Access Methods
+
+* `getAPITokens(orgSlug)` - List organization API tokens
+  * Returns organization API tokens with metadata and permissions
+* `postAPIToken(orgSlug, tokenData)` - Create new API token
+  * Generates API token with specified scopes and metadata
+* `postAPITokensRevoke(orgSlug, tokenId)` - Revoke API token
+  * Permanently disables the token and removes access
+* `postAPITokensRotate(orgSlug, tokenId)` - Rotate API token
+  * Generates new token value while preserving token metadata
+* `postAPITokenUpdate(orgSlug, tokenId, updateData)` - Update API token
+  * Modifies token metadata, scopes, or other properties
+
+### Export & Integration Methods
+
+* `exportCDX(orgSlug, fullScanId)` - Export CycloneDX SBOM
+  * Returns Software Bill of Materials compliant with CycloneDX standard
+* `exportSPDX(orgSlug, fullScanId)` - Export SPDX SBOM
+  * Returns Software Bill of Materials compliant with SPDX standard
+* `searchDependencies(queryParams?)` - Search monitored dependencies
+  * Returns matching packages with security information and usage patterns
+* `uploadManifestFiles(orgSlug, filepaths, pathsRelativeTo='.')` - Upload manifest files
+  * Processes package files to create dependency snapshots and security analysis
+
+### Alert & Triage Methods
+
+* `getOrgTriage(orgSlug)` - Get organization triage settings
+  * Returns alert triage configuration and current state
+* `updateOrgAlertTriage(orgSlug, alertId, triageData)` - Update alert triage
+  * Modifies alert resolution status and triage decisions
+
+### Repository Label Methods
+
+* `createOrgRepoLabel(orgSlug, repoSlug, labelData)` - Create repository label
+  * Adds label for repository categorization and management
+* `deleteOrgRepoLabel(orgSlug, repoSlug, labelSlug)` - Delete repository label
+  * Removes label and associated configuration
+* `getOrgRepoLabel(orgSlug, repoSlug, labelSlug)` - Get label details
+  * Returns label configuration and metadata
+* `getOrgRepoLabelList(orgSlug, repoSlug)` - List repository labels
+  * Returns all labels configured for repository management
+* `updateOrgRepoLabel(orgSlug, repoSlug, labelSlug, labelData)` - Update repository label
+  * Modifies label properties and configuration
+
+### Diff Scan Methods
+
+* `createOrgDiffScanFromIds(orgSlug, queryParams?)` - Create diff scan from IDs
+  * Compares two existing full scans to identify changes
+* `deleteOrgDiffScan(orgSlug, diffScanId)` - Delete diff scan
+  * Permanently removes diff scan data and results
+* `getDiffScanById(orgSlug, diffScanId)` - Get diff scan details
+  * Returns comparison between two full scans with artifact changes
+* `listOrgDiffScans(orgSlug)` - List organization diff scans
+  * Returns paginated list of diff scan metadata and status
+
+### Patch & Vulnerability Methods
+
+* `streamPatchesFromScan(orgSlug, scanId)` - Stream patches from scan
+  * Returns ReadableStream for processing large patch datasets
+* `viewPatch(orgSlug, uuid)` - View patch details
+  * Retrieves comprehensive patch information including files and vulnerabilities
+
+### Entitlement Methods
+
+* `getEnabledEntitlements(orgSlug)` - Get enabled entitlements
+  * Returns array of enabled Socket product keys
+* `getEntitlements(orgSlug)` - Get all organization entitlements
+  * Returns complete list of entitlements with their status
+
+### Advanced Query Methods
+
+* `getApi<T>(urlPath, options?)` - Execute raw GET request
+  * Direct API access with configurable response type (response, json, text)
+* `sendApi<T>(urlPath, options?)` - Send POST/PUT with JSON body
+  * Direct API access for POST/PUT operations with JSON responses
+
+### Legacy Methods (Deprecated Names)
+
+* `createReportFromFilepaths()` → Use `createScanFromFilepaths()`
+* `deleteReport(reportId)` → Use scan-specific delete methods
+* `getReport(id)` → Use `getScan(id)`
+* `getReportList()` → Use `getScanList()`
+* `getReportSupportedFiles()` → Use `getSupportedScanFiles()`
 
 ## Additional exports
 

package/dist/constants.d.ts

@@ -0,0 +1,8 @@
+import type { ALERT_ACTION } from './types';
+export declare const DEFAULT_USER_AGENT: string;
+// https://github.com/sindresorhus/got/blob/v14.4.6/documentation/2-options.md#agent
+// Valid HTTP agent names for Got-style agent configuration compatibility.
+export declare const httpAgentNames: Set<string>;
+// Public security policy.
+export declare const publicPolicy: Map<"ambiguousClassifier" | "badEncoding" | "badSemver" | "badSemverDependency" | "bidi" | "binScriptConfusion" | "chromeContentScript" | "chromeHostPermission" | "chromePermission" | "chromeWildcardHostPermission" | "chronoAnomaly" | "compromisedSSHKey" | "copyleftLicense" | "criticalCVE" | "cve" | "debugAccess" | "deprecated" | "deprecatedException" | "deprecatedLicense" | "didYouMean" | "dynamicRequire" | "emptyPackage" | "envVars" | "explicitlyUnlicensedItem" | "extraneousDependency" | "fileDependency" | "filesystemAccess" | "floatingDependency" | "generic" | "gitDependency" | "gitHubDependency" | "gptAnomaly" | "gptDidYouMean" | "gptMalware" | "gptSecurity" | "hasNativeCode" | "highEntropyStrings" | "homoglyphs" | "httpDependency" | "installScripts" | "invalidPackageJSON" | "invisibleChars" | "licenseChange" | "licenseException" | "licenseSpdxDisj" | "longStrings" | "majorRefactor" | "malware" | "manifestConfusion" | "mediumCVE" | "mildCVE" | "minifiedFile" | "miscLicenseIssues" | "missingAuthor" | "missingDependency" | "missingLicense" | "missingTarball" | "mixedLicense" | "modifiedException" | "modifiedLicense" | "networkAccess" | "newAuthor" | "noAuthorData" | "noBugTracker" | "noLicenseFound" | "noREADME" | "noRepository" | "noTests" | "noV1" | "noWebsite" | "nonOSILicense" | "nonSPDXLicense" | "nonpermissiveLicense" | "notice" | "obfuscatedFile" | "obfuscatedRequire" | "peerDependency" | "potentialVulnerability" | "semverAnomaly" | "shellAccess" | "shellScriptOverride" | "shrinkwrap" | "socketUpgradeAvailable" | "suspiciousStarActivity" | "suspiciousString" | "telemetry" | "trivialPackage" | "troll" | "typeModuleCompatibility" | "uncaughtOptionalDependency" | "unclearLicense" | "unidentifiedLicense" | "unmaintained" | "unpopularPackage" | "unpublished" | "unresolvedRequire" | "unsafeCopyright" | "unstableOwnership" | "unusedDependency" | "urlStrings" | "usesEval" | "zeroWidth", ALERT_ACTION>;
+//# sourceMappingURL=constants.d.ts.map

package/dist/constants.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.d.ts","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":"AAWA,OAAO,KAAK,EAAE,YAAY,EAAc,MAAM,SAAS,CAAA;AAEvD,eAAO,MAAM,kBAAkB,QAA0C,CAAA;AAEzE,oFAAoF;AACpF,0EAA0E;AAC1E,eAAO,MAAM,cAAc,aAAsC,CAAA;AAEjE,0BAA0B;AAC1B,eAAO,MAAM,YAAY,g5DA0GvB,CAAA"}

package/dist/constants.js

@@ -0,0 +1,128 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.publicPolicy = exports.httpAgentNames = exports.DEFAULT_USER_AGENT = void 0;
+/**
+ * @fileoverview Configuration constants and enums for the Socket SDK.
+ * Provides default values, HTTP agents, and public policy configurations for API interactions.
+ */
+// Import attributes are only supported when the '--module' option is set to
+// 'esnext', 'node18', 'node20', 'nodenext', or 'preserve'.
+// @ts-ignore: Avoid TS import attributes error.
+const package_json_1 = __importDefault(require("../package.json"));
+const user_agent_1 = require("./user-agent");
+exports.DEFAULT_USER_AGENT = (0, user_agent_1.createUserAgentFromPkgJson)(package_json_1.default);
+// https://github.com/sindresorhus/got/blob/v14.4.6/documentation/2-options.md#agent
+// Valid HTTP agent names for Got-style agent configuration compatibility.
+exports.httpAgentNames = new Set(['http', 'https', 'http2']);
+// Public security policy.
+exports.publicPolicy = new Map([
+    // error (1):
+    ['malware', 'error'],
+    // warn (7):
+    ['criticalCVE', 'warn'],
+    ['didYouMean', 'warn'],
+    ['gitDependency', 'warn'],
+    ['httpDependency', 'warn'],
+    ['licenseSpdxDisj', 'warn'],
+    ['obfuscatedFile', 'warn'],
+    ['troll', 'warn'],
+    // monitor (7):
+    ['deprecated', 'monitor'],
+    ['mediumCVE', 'monitor'],
+    ['mildCVE', 'monitor'],
+    ['shrinkwrap', 'monitor'],
+    ['telemetry', 'monitor'],
+    ['unpopularPackage', 'monitor'],
+    ['unstableOwnership', 'monitor'],
+    // ignore (85):
+    ['ambiguousClassifier', 'ignore'],
+    ['badEncoding', 'ignore'],
+    ['badSemver', 'ignore'],
+    ['badSemverDependency', 'ignore'],
+    ['bidi', 'ignore'],
+    ['binScriptConfusion', 'ignore'],
+    ['chromeContentScript', 'ignore'],
+    ['chromeHostPermission', 'ignore'],
+    ['chromePermission', 'ignore'],
+    ['chromeWildcardHostPermission', 'ignore'],
+    ['chronoAnomaly', 'ignore'],
+    ['compromisedSSHKey', 'ignore'],
+    ['copyleftLicense', 'ignore'],
+    ['cve', 'ignore'],
+    ['debugAccess', 'ignore'],
+    ['deprecatedLicense', 'ignore'],
+    ['deprecatedException', 'ignore'],
+    ['dynamicRequire', 'ignore'],
+    ['emptyPackage', 'ignore'],
+    ['envVars', 'ignore'],
+    ['explicitlyUnlicensedItem', 'ignore'],
+    ['extraneousDependency', 'ignore'],
+    ['fileDependency', 'ignore'],
+    ['filesystemAccess', 'ignore'],
+    ['floatingDependency', 'ignore'],
+    ['gitHubDependency', 'ignore'],
+    ['gptAnomaly', 'ignore'],
+    ['gptDidYouMean', 'ignore'],
+    ['gptMalware', 'ignore'],
+    ['gptSecurity', 'ignore'],
+    ['hasNativeCode', 'ignore'],
+    ['highEntropyStrings', 'ignore'],
+    ['homoglyphs', 'ignore'],
+    ['installScripts', 'ignore'],
+    ['invalidPackageJSON', 'ignore'],
+    ['invisibleChars', 'ignore'],
+    ['licenseChange', 'ignore'],
+    ['licenseException', 'ignore'],
+    ['longStrings', 'ignore'],
+    ['majorRefactor', 'ignore'],
+    ['manifestConfusion', 'ignore'],
+    ['minifiedFile', 'ignore'],
+    ['miscLicenseIssues', 'ignore'],
+    ['missingAuthor', 'ignore'],
+    ['missingDependency', 'ignore'],
+    ['missingLicense', 'ignore'],
+    ['missingTarball', 'ignore'],
+    ['mixedLicense', 'ignore'],
+    ['modifiedException', 'ignore'],
+    ['modifiedLicense', 'ignore'],
+    ['networkAccess', 'ignore'],
+    ['newAuthor', 'ignore'],
+    ['noAuthorData', 'ignore'],
+    ['noBugTracker', 'ignore'],
+    ['noLicenseFound', 'ignore'],
+    ['noREADME', 'ignore'],
+    ['noRepository', 'ignore'],
+    ['noTests', 'ignore'],
+    ['noV1', 'ignore'],
+    ['noWebsite', 'ignore'],
+    ['nonOSILicense', 'ignore'],
+    ['nonSPDXLicense', 'ignore'],
+    ['nonpermissiveLicense', 'ignore'],
+    ['notice', 'ignore'],
+    ['obfuscatedRequire', 'ignore'],
+    ['peerDependency', 'ignore'],
+    ['potentialVulnerability', 'ignore'],
+    ['semverAnomaly', 'ignore'],
+    ['shellAccess', 'ignore'],
+    ['shellScriptOverride', 'ignore'],
+    ['socketUpgradeAvailable', 'ignore'],
+    ['suspiciousStarActivity', 'ignore'],
+    ['suspiciousString', 'ignore'],
+    ['trivialPackage', 'ignore'],
+    ['typeModuleCompatibility', 'ignore'],
+    ['uncaughtOptionalDependency', 'ignore'],
+    ['unclearLicense', 'ignore'],
+    ['unidentifiedLicense', 'ignore'],
+    ['unmaintained', 'ignore'],
+    ['unpublished', 'ignore'],
+    ['unresolvedRequire', 'ignore'],
+    ['unsafeCopyright', 'ignore'],
+    ['unusedDependency', 'ignore'],
+    ['urlStrings', 'ignore'],
+    ['usesEval', 'ignore'],
+    ['zeroWidth', 'ignore'],
+]);
+//# sourceMappingURL=constants.js.map

package/dist/constants.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"constants.js","sourceRoot":"","sources":["../src/constants.ts"],"names":[],"mappings":";;;;;;AAAA;;;GAGG;AAEH,4EAA4E;AAC5E,2DAA2D;AAC3D,gDAAgD;AAChD,mEAA+D;AAC/D,6CAAyD;AAI5C,QAAA,kBAAkB,GAAG,IAAA,uCAA0B,EAAC,sBAAW,CAAC,CAAA;AAEzE,oFAAoF;AACpF,0EAA0E;AAC7D,QAAA,cAAc,GAAG,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC,CAAC,CAAA;AAEjE,0BAA0B;AACb,QAAA,YAAY,GAAG,IAAI,GAAG,CAA2B;IAC5D,aAAa;IACb,CAAC,SAAS,EAAE,OAAO,CAAC;IACpB,YAAY;IACZ,CAAC,aAAa,EAAE,MAAM,CAAC;IACvB,CAAC,YAAY,EAAE,MAAM,CAAC;IACtB,CAAC,eAAe,EAAE,MAAM,CAAC;IACzB,CAAC,gBAAgB,EAAE,MAAM,CAAC;IAC1B,CAAC,iBAAiB,EAAE,MAAM,CAAC;IAC3B,CAAC,gBAAgB,EAAE,MAAM,CAAC;IAC1B,CAAC,OAAO,EAAE,MAAM,CAAC;IACjB,eAAe;IACf,CAAC,YAAY,EAAE,SAAS,CAAC;IACzB,CAAC,WAAW,EAAE,SAAS,CAAC;IACxB,CAAC,SAAS,EAAE,SAAS,CAAC;IACtB,CAAC,YAAY,EAAE,SAAS,CAAC;IACzB,CAAC,WAAW,EAAE,SAAS,CAAC;IACxB,CAAC,kBAAkB,EAAE,SAAS,CAAC;IAC/B,CAAC,mBAAmB,EAAE,SAAS,CAAC;IAChC,eAAe;IACf,CAAC,qBAAqB,EAAE,QAAQ,CAAC;IACjC,CAAC,aAAa,EAAE,QAAQ,CAAC;IACzB,CAAC,WAAW,EAAE,QAAQ,CAAC;IACvB,CAAC,qBAAqB,EAAE,QAAQ,CAAC;IACjC,CAAC,MAAM,EAAE,QAAQ,CAAC;IAClB,CAAC,oBAAoB,EAAE,QAAQ,CAAC;IAChC,CAAC,qBAAqB,EAAE,QAAQ,CAAC;IACjC,CAAC,sBAAsB,EAAE,QAAQ,CAAC;IAClC,CAAC,kBAAkB,EAAE,QAAQ,CAAC;IAC9B,CAAC,8BAA8B,EAAE,QAAQ,CAAC;IAC1C,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,mBAAmB,EAAE,QAAQ,CAAC;IAC/B,CAAC,iBAAiB,EAAE,QAAQ,CAAC;IAC7B,CAAC,KAAK,EAAE,QAAQ,CAAC;IACjB,CAAC,aAAa,EAAE,QAAQ,CAAC;IACzB,CAAC,mBAAmB,EAAE,QAAQ,CAAC;IAC/B,CAAC,qBAAqB,EAAE,QAAQ,CAAC;IACjC,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,cAAc,EAAE,QAAQ,CAAC;IAC1B,CAAC,SAAS,EAAE,QAAQ,CAAC;IACrB,CAAC,0BAA0B,EAAE,QAAQ,CAAC;IACtC,CAAC,sBAAsB,EAAE,QAAQ,CAAC;IAClC,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,kBAAkB,EAAE,QAAQ,CAAC;IAC9B,CAAC,oBAAoB,EAAE,QAAQ,CAAC;IAChC,CAAC,kBAAkB,EAAE,QAAQ,CAAC;IAC9B,CAAC,YAAY,EAAE,QAAQ,CAAC;IACxB,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,YAAY,EAAE,QAAQ,CAAC;IACxB,CAAC,aAAa,EAAE,QAAQ,CAAC;IACzB,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,oBAAoB,EAAE,QAAQ,CAAC;IAChC,CAAC,YAAY,EAAE,QAAQ,CAAC;IACxB,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,oBAAoB,EAAE,QAAQ,CAAC;IAChC,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,kBAAkB,EAAE,QAAQ,CAAC;IAC9B,CAAC,aAAa,EAAE,QAAQ,CAAC;IACzB,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,mBAAmB,EAAE,QAAQ,CAAC;IAC/B,CAAC,cAAc,EAAE,QAAQ,CAAC;IAC1B,CAAC,mBAAmB,EAAE,QAAQ,CAAC;IAC/B,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,mBAAmB,EAAE,QAAQ,CAAC;IAC/B,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,cAAc,EAAE,QAAQ,CAAC;IAC1B,CAAC,mBAAmB,EAAE,QAAQ,CAAC;IAC/B,CAAC,iBAAiB,EAAE,QAAQ,CAAC;IAC7B,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,WAAW,EAAE,QAAQ,CAAC;IACvB,CAAC,cAAc,EAAE,QAAQ,CAAC;IAC1B,CAAC,cAAc,EAAE,QAAQ,CAAC;IAC1B,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,UAAU,EAAE,QAAQ,CAAC;IACtB,CAAC,cAAc,EAAE,QAAQ,CAAC;IAC1B,CAAC,SAAS,EAAE,QAAQ,CAAC;IACrB,CAAC,MAAM,EAAE,QAAQ,CAAC;IAClB,CAAC,WAAW,EAAE,QAAQ,CAAC;IACvB,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,sBAAsB,EAAE,QAAQ,CAAC;IAClC,CAAC,QAAQ,EAAE,QAAQ,CAAC;IACpB,CAAC,mBAAmB,EAAE,QAAQ,CAAC;IAC/B,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,wBAAwB,EAAE,QAAQ,CAAC;IACpC,CAAC,eAAe,EAAE,QAAQ,CAAC;IAC3B,CAAC,aAAa,EAAE,QAAQ,CAAC;IACzB,CAAC,qBAAqB,EAAE,QAAQ,CAAC;IACjC,CAAC,wBAAwB,EAAE,QAAQ,CAAC;IACpC,CAAC,wBAAwB,EAAE,QAAQ,CAAC;IACpC,CAAC,kBAAkB,EAAE,QAAQ,CAAC;IAC9B,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,yBAAyB,EAAE,QAAQ,CAAC;IACrC,CAAC,4BAA4B,EAAE,QAAQ,CAAC;IACxC,CAAC,gBAAgB,EAAE,QAAQ,CAAC;IAC5B,CAAC,qBAAqB,EAAE,QAAQ,CAAC;IACjC,CAAC,cAAc,EAAE,QAAQ,CAAC;IAC1B,CAAC,aAAa,EAAE,QAAQ,CAAC;IACzB,CAAC,mBAAmB,EAAE,QAAQ,CAAC;IAC/B,CAAC,iBAAiB,EAAE,QAAQ,CAAC;IAC7B,CAAC,kBAAkB,EAAE,QAAQ,CAAC;IAC9B,CAAC,YAAY,EAAE,QAAQ,CAAC;IACxB,CAAC,UAAU,EAAE,QAAQ,CAAC;IACtB,CAAC,WAAW,EAAE,QAAQ,CAAC;CACxB,CAAC,CAAA"}

package/dist/file-upload.d.ts

@@ -0,0 +1,22 @@
+import { Readable } from 'node:stream';
+import type { RequestOptions } from './types';
+import type { ReadStream } from 'node:fs';
+import type { IncomingMessage } from 'node:http';
+/**
+ * Create multipart form-data body parts for file uploads.
+ * Converts file paths to readable streams with proper multipart headers.
+ */
+export declare function createRequestBodyForFilepaths(filepaths: string[], basePath: string): Array<Array<string | ReadStream>>;
+/**
+ * Create multipart form-data body part for JSON data.
+ * Converts JSON object to readable stream with appropriate headers.
+ */
+export declare function createRequestBodyForJson(jsonData: unknown, basename?: string): Array<string | Readable>;
+/**
+ * Create and execute a multipart/form-data upload request.
+ * Streams large files efficiently with backpressure handling and early server validation.
+ *
+ * @throws {Error} When network errors occur or stream processing fails
+ */
+export declare function createUploadRequest(baseUrl: string, urlPath: string, requestBodyNoBoundaries: Array<string | Readable | Array<string | Readable>>, options: RequestOptions): Promise<IncomingMessage>;
+//# sourceMappingURL=file-upload.d.ts.map

package/dist/file-upload.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"file-upload.d.ts","sourceRoot":"","sources":["../src/file-upload.ts"],"names":[],"mappings":"AAIA,OAAO,EAAE,QAAQ,EAAE,MAAM,aAAa,CAAA;AAMtC,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,SAAS,CAAA;AAC7C,OAAO,KAAK,EAAE,UAAU,EAAE,MAAM,SAAS,CAAA;AACzC,OAAO,KAAK,EAAiB,eAAe,EAAE,MAAM,WAAW,CAAA;AAG/D;;;GAGG;AACH,wBAAgB,6BAA6B,CAC3C,SAAS,EAAE,MAAM,EAAE,EACnB,QAAQ,EAAE,MAAM,GACf,KAAK,CAAC,KAAK,CAAC,MAAM,GAAG,UAAU,CAAC,CAAC,CAYnC;AAED;;;GAGG;AACH,wBAAgB,wBAAwB,CACtC,QAAQ,EAAE,OAAO,EACjB,QAAQ,SAAc,GACrB,KAAK,CAAC,MAAM,GAAG,QAAQ,CAAC,CAS1B;AAED;;;;;GAKG;AACH,wBAAsB,mBAAmB,CACvC,OAAO,EAAE,MAAM,EACf,OAAO,EAAE,MAAM,EACf,uBAAuB,EAAE,KAAK,CAAC,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC,MAAM,GAAG,QAAQ,CAAC,CAAC,EAC5E,OAAO,EAAE,cAAc,GACtB,OAAO,CAAC,eAAe,CAAC,CAuG1B"}

package/dist/file-upload.js

@@ -0,0 +1,152 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createRequestBodyForFilepaths = createRequestBodyForFilepaths;
+exports.createRequestBodyForJson = createRequestBodyForJson;
+exports.createUploadRequest = createUploadRequest;
+/** @fileoverview File upload utilities for Socket API with multipart form data support. */
+const node_events_1 = __importDefault(require("node:events"));
+const node_fs_1 = require("node:fs");
+const node_path_1 = __importDefault(require("node:path"));
+const node_stream_1 = require("node:stream");
+const path_1 = require("@socketsecurity/registry/lib/path");
+const http_client_1 = require("./http-client");
+/**
+ * Create multipart form-data body parts for file uploads.
+ * Converts file paths to readable streams with proper multipart headers.
+ */
+function createRequestBodyForFilepaths(filepaths, basePath) {
+    const requestBody = [];
+    for (const absPath of filepaths) {
+        const relPath = (0, path_1.normalizePath)(node_path_1.default.relative(basePath, absPath));
+        const filename = node_path_1.default.basename(absPath);
+        requestBody.push([
+            `Content-Disposition: form-data; name="${relPath}"; filename="${filename}"\r\n`,
+            `Content-Type: application/octet-stream\r\n\r\n`,
+            (0, node_fs_1.createReadStream)(absPath, { highWaterMark: 1024 * 1024 }),
+        ]);
+    }
+    return requestBody;
+}
+/**
+ * Create multipart form-data body part for JSON data.
+ * Converts JSON object to readable stream with appropriate headers.
+ */
+function createRequestBodyForJson(jsonData, basename = 'data.json') {
+    const ext = node_path_1.default.extname(basename);
+    const name = node_path_1.default.basename(basename, ext);
+    return [
+        `Content-Disposition: form-data; name="${name}"; filename="${basename}"\r\n` +
+            `Content-Type: application/json\r\n\r\n`,
+        node_stream_1.Readable.from(JSON.stringify(jsonData), { highWaterMark: 1024 * 1024 }),
+        '\r\n',
+    ];
+}
+/**
+ * Create and execute a multipart/form-data upload request.
+ * Streams large files efficiently with backpressure handling and early server validation.
+ *
+ * @throws {Error} When network errors occur or stream processing fails
+ */
+async function createUploadRequest(baseUrl, urlPath, requestBodyNoBoundaries, options) {
+    // This function constructs and sends a multipart/form-data HTTP POST request
+    // where each part is streamed to the server. It supports string payloads
+    // and readable streams (e.g., large file uploads).
+    // The body is streamed manually with proper backpressure support to avoid
+    // overwhelming Node.js memory (i.e., avoiding out-of-memory crashes for large inputs).
+    // We call `flushHeaders()` early to ensure headers are sent before body transmission
+    // begins. If the server rejects the request (e.g., bad org or auth), it will likely
+    // respond immediately. We listen for that response while still streaming the body.
+    //
+    // This protects against cases where the server closes the connection (EPIPE/ECONNRESET)
+    // mid-stream, which would otherwise cause hard-to-diagnose failures during file upload.
+    //
+    // Example failure this mitigates: `socket scan create --org badorg`
+    // eslint-disable-next-line no-async-promise-executor
+    return await new Promise(async (pass, fail) => {
+        const boundary = `NodeMultipartBoundary${Date.now()}`;
+        const boundarySep = `--${boundary}\r\n`;
+        const finalBoundary = `--${boundary}--\r\n`;
+        const requestBody = [
+            ...requestBodyNoBoundaries.flatMap(part => [
+                boundarySep,
+                /* c8 ignore next - Array.isArray branch for part is defensive coding for edge cases. */
+                ...(Array.isArray(part) ? part : [part]),
+            ]),
+            finalBoundary,
+        ];
+        const url = new URL(urlPath, baseUrl);
+        const req = (0, http_client_1.getHttpModule)(baseUrl).request(url, {
+            method: 'POST',
+            ...options,
+            headers: {
+                ...options?.headers,
+                'Content-Type': `multipart/form-data; boundary=${boundary}`,
+            },
+        });
+        // Send headers early to prompt server validation (auth, URL, quota, etc.).
+        req.flushHeaders();
+        // Concurrently wait for response while we stream body.
+        (0, http_client_1.getResponse)(req).then(pass, fail);
+        let aborted = false;
+        req.on('error', () => (aborted = true));
+        req.on('close', () => (aborted = true));
+        try {
+            for (const part of requestBody) {
+                /* c8 ignore next 3 - aborted state is difficult to test reliably */
+                if (aborted) {
+                    break;
+                }
+                if (typeof part === 'string') {
+                    /* c8 ignore next 5 - backpressure handling requires specific stream conditions */
+                    if (!req.write(part)) {
+                        // Wait for 'drain' if backpressure is signaled.
+                        // eslint-disable-next-line no-await-in-loop
+                        await node_events_1.default.once(req, 'drain');
+                    }
+                }
+                else if (typeof part?.pipe === 'function') {
+                    // Stream data chunk-by-chunk with backpressure support.
+                    const stream = part;
+                    // eslint-disable-next-line no-await-in-loop
+                    for await (const chunk of stream) {
+                        /* c8 ignore next 3 - aborted state during streaming is difficult to test reliably */
+                        if (aborted) {
+                            break;
+                        }
+                        /* c8 ignore next 3 - backpressure handling requires specific stream conditions */
+                        if (!req.write(chunk)) {
+                            await node_events_1.default.once(req, 'drain');
+                        }
+                    }
+                    // Ensure trailing CRLF after file part.
+                    /* c8 ignore next 4 - trailing CRLF backpressure handling is edge case */
+                    if (!aborted && !req.write('\r\n')) {
+                        // eslint-disable-next-line no-await-in-loop
+                        await node_events_1.default.once(req, 'drain');
+                    }
+                    // Cleanup stream to free memory buffers.
+                    if (typeof part.destroy === 'function') {
+                        part.destroy();
+                    }
+                    /* c8 ignore next 3 - defensive check for non-string/stream types */
+                }
+                else {
+                    throw new TypeError('Expected string or stream');
+                }
+            }
+        }
+        catch (e) {
+            req.destroy(e);
+            fail(e);
+        }
+        finally {
+            if (!aborted) {
+                req.end();
+            }
+        }
+    });
+}
+//# sourceMappingURL=file-upload.js.map

package/dist/file-upload.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"file-upload.js","sourceRoot":"","sources":["../src/file-upload.ts"],"names":[],"mappings":";;;;;;;;AAAA,2FAA2F;AAC3F,8DAAgC;AAChC,qCAA0C;AAC1C,0DAA4B;AAC5B,6CAAsC;AAEtC,4DAAiE;AAEjE,+CAA0D;AAO1D;;;GAGG;AACH,uCACE,SAAmB,EACnB,QAAgB,EACmB;IACnC,MAAM,WAAW,GAAsC,EAAE,CAAA;IACzD,KAAK,MAAM,OAAO,IAAI,SAAS,EAAE,CAAC;QAChC,MAAM,OAAO,GAAG,IAAA,oBAAa,EAAC,mBAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC,CAAA;QAC/D,MAAM,QAAQ,GAAG,mBAAI,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAA;QACvC,WAAW,CAAC,IAAI,CAAC;YACf,yCAAyC,OAAO,gBAAgB,QAAQ,OAAO;YAC/E,gDAAgD;YAChD,IAAA,0BAAgB,EAAC,OAAO,EAAE,EAAE,aAAa,EAAE,IAAI,GAAG,IAAI,EAAE,CAAC;SAC1D,CAAC,CAAA;IACJ,CAAC;IACD,OAAO,WAAW,CAAA;AAAA,CACnB;AAED;;;GAGG;AACH,kCACE,QAAiB,EACjB,QAAQ,GAAG,WAAW,EACI;IAC1B,MAAM,GAAG,GAAG,mBAAI,CAAC,OAAO,CAAC,QAAQ,CAAC,CAAA;IAClC,MAAM,IAAI,GAAG,mBAAI,CAAC,QAAQ,CAAC,QAAQ,EAAE,GAAG,CAAC,CAAA;IACzC,OAAO;QACL,yCAAyC,IAAI,gBAAgB,QAAQ,OAAO;YAC1E,wCAAwC;QAC1C,sBAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,EAAE,EAAE,aAAa,EAAE,IAAI,GAAG,IAAI,EAAE,CAAC;QACvE,MAAM;KACP,CAAA;AAAA,CACF;AAED;;;;;GAKG;AACI,KAAK,8BACV,OAAe,EACf,OAAe,EACf,uBAA4E,EAC5E,OAAuB,EACG;IAC1B,6EAA6E;IAC7E,yEAAyE;IACzE,mDAAmD;IAEnD,0EAA0E;IAC1E,uFAAuF;IAEvF,qFAAqF;IACrF,oFAAoF;IACpF,mFAAmF;IACnF,EAAE;IACF,wFAAwF;IACxF,wFAAwF;IACxF,EAAE;IACF,oEAAoE;IAEpE,qDAAqD;IACrD,OAAO,MAAM,IAAI,OAAO,CAAC,KAAK,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE,CAAC;QAC7C,MAAM,QAAQ,GAAG,wBAAwB,IAAI,CAAC,GAAG,EAAE,EAAE,CAAA;QACrD,MAAM,WAAW,GAAG,KAAK,QAAQ,MAAM,CAAA;QACvC,MAAM,aAAa,GAAG,KAAK,QAAQ,QAAQ,CAAA;QAE3C,MAAM,WAAW,GAAG;YAClB,GAAG,uBAAuB,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;gBACzC,WAAW;gBACX,wFAAwF;gBACxF,GAAG,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC;aACzC,CAAC;YACF,aAAa;SACd,CAAA;QAED,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,OAAO,EAAE,OAAO,CAAC,CAAA;QACrC,MAAM,GAAG,GAAkB,IAAA,2BAAa,EAAC,OAAO,CAAC,CAAC,OAAO,CAAC,GAAG,EAAE;YAC7D,MAAM,EAAE,MAAM;YACd,GAAG,OAAO;YACV,OAAO,EAAE;gBACP,GAAI,OAA+B,EAAE,OAAO;gBAC5C,cAAc,EAAE,iCAAiC,QAAQ,EAAE;aAC5D;SACF,CAAC,CAAA;QAEF,2EAA2E;QAC3E,GAAG,CAAC,YAAY,EAAE,CAAA;QAElB,uDAAuD;QACvD,IAAA,yBAAW,EAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,CAAA;QAEjC,IAAI,OAAO,GAAG,KAAK,CAAA;QACnB,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC,CAAA;QACvC,GAAG,CAAC,EAAE,CAAC,OAAO,EAAE,GAAG,EAAE,CAAC,CAAC,OAAO,GAAG,IAAI,CAAC,CAAC,CAAA;QAEvC,IAAI,CAAC;YACH,KAAK,MAAM,IAAI,IAAI,WAAW,EAAE,CAAC;gBAC/B,oEAAoE;gBACpE,IAAI,OAAO,EAAE,CAAC;oBACZ,MAAK;gBACP,CAAC;gBACD,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;oBAC7B,kFAAkF;oBAClF,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;wBACrB,gDAAgD;wBAChD,4CAA4C;wBAC5C,MAAM,qBAAM,CAAC,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;oBACjC,CAAC;gBACH,CAAC;qBAAM,IAAI,OAAO,IAAI,EAAE,IAAI,KAAK,UAAU,EAAE,CAAC;oBAC5C,wDAAwD;oBACxD,MAAM,MAAM,GAAG,IAAgB,CAAA;oBAC/B,4CAA4C;oBAC5C,IAAI,KAAK,EAAE,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;wBACjC,qFAAqF;wBACrF,IAAI,OAAO,EAAE,CAAC;4BACZ,MAAK;wBACP,CAAC;wBACD,kFAAkF;wBAClF,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC;4BACtB,MAAM,qBAAM,CAAC,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;wBACjC,CAAC;oBACH,CAAC;oBACD,wCAAwC;oBACxC,yEAAyE;oBACzE,IAAI,CAAC,OAAO,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,MAAM,CAAC,EAAE,CAAC;wBACnC,4CAA4C;wBAC5C,MAAM,qBAAM,CAAC,IAAI,CAAC,GAAG,EAAE,OAAO,CAAC,CAAA;oBACjC,CAAC;oBACD,yCAAyC;oBACzC,IAAI,OAAO,IAAI,CAAC,OAAO,KAAK,UAAU,EAAE,CAAC;wBACvC,IAAI,CAAC,OAAO,EAAE,CAAA;oBAChB,CAAC;oBACD,oEAAoE;gBACtE,CAAC;qBAAM,CAAC;oBACN,MAAM,IAAI,SAAS,CAAC,2BAA2B,CAAC,CAAA;gBAClD,CAAC;YACH,CAAC;QACH,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,GAAG,CAAC,OAAO,CAAC,CAAU,CAAC,CAAA;YACvB,IAAI,CAAC,CAAC,CAAC,CAAA;QACT,CAAC;gBAAS,CAAC;YACT,IAAI,CAAC,OAAO,EAAE,CAAC;gBACb,GAAG,CAAC,GAAG,EAAE,CAAA;YACX,CAAC;QACH,CAAC;IAAA,CACF,CAAC,CAAA;AAAA,CACH"}