@sxl-studio/bridge 1.7.2 → 1.8.0

package/dist/asset-upload.js

@@ -0,0 +1,225 @@
+import { Buffer } from "node:buffer";
+export const MAX_UPLOAD_ASSETS = 10;
+export const MAX_UPLOAD_ASSET_BYTES = 10 * 1024 * 1024;
+const SUPPORTED_CONTENT_TYPES = new Set([
+    "image/png",
+    "image/jpeg",
+    "image/jpg",
+    "image/gif",
+    "image/webp",
+]);
+const EXTENSION_TO_CONTENT_TYPE = {
+    ".png": "image/png",
+    ".jpg": "image/jpeg",
+    ".jpeg": "image/jpeg",
+    ".gif": "image/gif",
+    ".webp": "image/webp",
+};
+function normalizeContentType(value) {
+    if (!value)
+        return null;
+    const normalized = value.split(";")[0]?.trim().toLowerCase() ?? "";
+    return normalized || null;
+}
+function inferContentTypeFromUrl(url) {
+    if (!url)
+        return null;
+    let pathname = "";
+    try {
+        pathname = new URL(url).pathname.toLowerCase();
+    }
+    catch {
+        return null;
+    }
+    for (const [ext, contentType] of Object.entries(EXTENSION_TO_CONTENT_TYPE)) {
+        if (pathname.endsWith(ext))
+            return contentType;
+    }
+    return null;
+}
+function isSupportedContentType(contentType) {
+    return Boolean(contentType && SUPPORTED_CONTENT_TYPES.has(contentType));
+}
+function nameFromUrl(url, index) {
+    if (!url)
+        return `Image ${index + 1}`;
+    try {
+        const pathname = new URL(url).pathname;
+        const last = pathname.split("/").filter(Boolean).pop();
+        if (last)
+            return decodeURIComponent(last).slice(0, 120);
+    }
+    catch {
+        // Fall through to stable fallback.
+    }
+    return `Image ${index + 1}`;
+}
+function parseDataBase64(input) {
+    const trimmed = input.trim();
+    const match = /^data:([^;]+);base64,(.+)$/is.exec(trimmed);
+    if (match) {
+        return {
+            contentType: normalizeContentType(match[1]),
+            base64: match[2].replace(/[\r\n\s]/g, ""),
+        };
+    }
+    return { contentType: null, base64: trimmed.replace(/[\r\n\s]/g, "") };
+}
+function encodeBytesToBase64(bytes) {
+    return Buffer.from(bytes).toString("base64");
+}
+function decodeBase64Bytes(input) {
+    return new Uint8Array(Buffer.from(input, "base64"));
+}
+function validateAssetCount(assets) {
+    if (assets.length === 0)
+        throw new Error("upload_assets requires at least one asset");
+    if (assets.length > MAX_UPLOAD_ASSETS) {
+        throw new Error(`upload_assets accepts at most ${MAX_UPLOAD_ASSETS} assets per call`);
+    }
+}
+function validateUrl(url) {
+    let parsed;
+    try {
+        parsed = new URL(url);
+    }
+    catch {
+        throw new Error(`Invalid asset URL: ${url}`);
+    }
+    if (parsed.protocol !== "https:" && parsed.protocol !== "http:") {
+        throw new Error(`Unsupported asset URL protocol: ${parsed.protocol}`);
+    }
+}
+async function fetchAssetBytes(asset, options) {
+    if (asset.dataBase64) {
+        const parsed = parseDataBase64(asset.dataBase64);
+        const bytes = decodeBase64Bytes(parsed.base64);
+        return { bytes, contentType: normalizeContentType(asset.contentType) ?? parsed.contentType };
+    }
+    if (!asset.url) {
+        throw new Error("Each upload asset requires url or dataBase64");
+    }
+    validateUrl(asset.url);
+    const response = await options.fetchImpl(asset.url, {
+        method: "GET",
+        headers: { Accept: "image/png,image/jpeg,image/gif,image/webp" },
+    });
+    if (!response.ok) {
+        throw new Error(`Asset fetch failed for ${asset.url}: HTTP ${response.status}`);
+    }
+    const contentLengthRaw = response.headers.get("content-length");
+    const contentLength = contentLengthRaw ? Number.parseInt(contentLengthRaw, 10) : Number.NaN;
+    if (Number.isFinite(contentLength) && contentLength > options.maxBytes) {
+        throw new Error(`Asset ${asset.url} is ${contentLength} bytes; max is ${options.maxBytes}`);
+    }
+    const bytes = new Uint8Array(await response.arrayBuffer());
+    return {
+        bytes,
+        contentType: normalizeContentType(asset.contentType)
+            ?? normalizeContentType(response.headers.get("content-type"))
+            ?? inferContentTypeFromUrl(asset.url),
+    };
+}
+function plannedTarget(args, asset, index) {
+    const width = asset.width ?? args.width ?? 320;
+    const height = asset.height ?? args.height ?? 200;
+    const gap = args.gap ?? 24;
+    const nodeId = asset.nodeId ?? args.targetNodeId ?? null;
+    return {
+        nodeId,
+        parentId: asset.parentId ?? args.parentId ?? null,
+        createsRectangle: !nodeId,
+        x: nodeId ? null : asset.x ?? (args.x ?? 0) + index * (width + gap),
+        y: nodeId ? null : asset.y ?? args.y ?? 0,
+        width: nodeId ? null : width,
+        height: nodeId ? null : height,
+    };
+}
+function payloadForAsset(args, asset, index, imageBase64) {
+    const target = plannedTarget(args, asset, index);
+    return {
+        nodeId: target.nodeId ?? undefined,
+        parentId: target.parentId ?? undefined,
+        x: target.x ?? undefined,
+        y: target.y ?? undefined,
+        width: target.width ?? undefined,
+        height: target.height ?? undefined,
+        cornerRadius: asset.cornerRadius,
+        name: asset.name ?? nameFromUrl(asset.url, index),
+        scaleMode: asset.scaleMode ?? args.scaleMode ?? "FILL",
+        imageBase64,
+    };
+}
+export async function prepareUploadAssets(args, options = {}) {
+    validateAssetCount(args.assets);
+    const dryRun = args.dryRun === true;
+    const fetchInDryRun = args.fetchInDryRun === true;
+    const maxBytes = Math.max(1, Math.min(args.maxBytes ?? MAX_UPLOAD_ASSET_BYTES, MAX_UPLOAD_ASSET_BYTES));
+    const fetchImpl = options.fetchImpl ?? fetch;
+    const assets = [];
+    for (let index = 0; index < args.assets.length; index += 1) {
+        const asset = args.assets[index];
+        if (!asset.url && !asset.dataBase64) {
+            throw new Error(`Asset ${index + 1} requires url or dataBase64`);
+        }
+        if (asset.url)
+            validateUrl(asset.url);
+        const shouldFetch = !dryRun || fetchInDryRun || Boolean(asset.dataBase64);
+        const target = plannedTarget(args, asset, index);
+        const name = asset.name ?? nameFromUrl(asset.url, index);
+        if (!shouldFetch) {
+            const contentType = normalizeContentType(asset.contentType) ?? inferContentTypeFromUrl(asset.url);
+            if (contentType && !isSupportedContentType(contentType)) {
+                throw new Error(`Unsupported asset content type for ${name}: ${contentType}`);
+            }
+            assets.push({
+                report: {
+                    index,
+                    name,
+                    source: asset.url ? "url" : "dataBase64",
+                    url: asset.url,
+                    contentType,
+                    byteLength: null,
+                    target,
+                    willFetch: true,
+                    willCallPlugin: false,
+                },
+                payload: null,
+            });
+            continue;
+        }
+        const { bytes, contentType: fetchedContentType } = await fetchAssetBytes(asset, { fetchImpl, maxBytes });
+        const contentType = fetchedContentType ?? inferContentTypeFromUrl(asset.url);
+        if (!isSupportedContentType(contentType)) {
+            throw new Error(`Unsupported asset content type for ${name}: ${contentType ?? "(unknown)"}`);
+        }
+        if (bytes.byteLength > maxBytes) {
+            throw new Error(`Asset ${name} is ${bytes.byteLength} bytes; max is ${maxBytes}`);
+        }
+        assets.push({
+            report: {
+                index,
+                name,
+                source: asset.url ? "url" : "dataBase64",
+                url: asset.url,
+                contentType,
+                byteLength: bytes.byteLength,
+                target,
+                willFetch: !asset.dataBase64,
+                willCallPlugin: !dryRun,
+            },
+            payload: dryRun ? null : payloadForAsset(args, asset, index, encodeBytesToBase64(bytes)),
+        });
+    }
+    return {
+        ok: true,
+        dryRun,
+        count: assets.length,
+        maxBytes,
+        assets,
+    };
+}
+export function uploadAssetReports(prepared) {
+    return prepared.assets.map((asset) => asset.report);
+}
+//# sourceMappingURL=asset-upload.js.map

package/dist/asset-upload.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"asset-upload.js","sourceRoot":"","sources":["../src/asset-upload.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,aAAa,CAAC;AAErC,MAAM,CAAC,MAAM,iBAAiB,GAAG,EAAE,CAAC;AACpC,MAAM,CAAC,MAAM,sBAAsB,GAAG,EAAE,GAAG,IAAI,GAAG,IAAI,CAAC;AA+DvD,MAAM,uBAAuB,GAAG,IAAI,GAAG,CAAC;IACtC,WAAW;IACX,YAAY;IACZ,WAAW;IACX,WAAW;IACX,YAAY;CACb,CAAC,CAAC;AAEH,MAAM,yBAAyB,GAA2B;IACxD,MAAM,EAAE,WAAW;IACnB,MAAM,EAAE,YAAY;IACpB,OAAO,EAAE,YAAY;IACrB,MAAM,EAAE,WAAW;IACnB,OAAO,EAAE,YAAY;CACtB,CAAC;AAEF,SAAS,oBAAoB,CAAC,KAAgC;IAC5D,IAAI,CAAC,KAAK;QAAE,OAAO,IAAI,CAAC;IACxB,MAAM,UAAU,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,EAAE,IAAI,EAAE,CAAC,WAAW,EAAE,IAAI,EAAE,CAAC;IACnE,OAAO,UAAU,IAAI,IAAI,CAAC;AAC5B,CAAC;AAED,SAAS,uBAAuB,CAAC,GAAuB;IACtD,IAAI,CAAC,GAAG;QAAE,OAAO,IAAI,CAAC;IACtB,IAAI,QAAQ,GAAG,EAAE,CAAC;IAClB,IAAI,CAAC;QACH,QAAQ,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC,WAAW,EAAE,CAAC;IACjD,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,IAAI,CAAC;IACd,CAAC;IACD,KAAK,MAAM,CAAC,GAAG,EAAE,WAAW,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,yBAAyB,CAAC,EAAE,CAAC;QAC3E,IAAI,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC;YAAE,OAAO,WAAW,CAAC;IACjD,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,sBAAsB,CAAC,WAA0B;IACxD,OAAO,OAAO,CAAC,WAAW,IAAI,uBAAuB,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC,CAAC;AAC1E,CAAC;AAED,SAAS,WAAW,CAAC,GAAuB,EAAE,KAAa;IACzD,IAAI,CAAC,GAAG;QAAE,OAAO,SAAS,KAAK,GAAG,CAAC,EAAE,CAAC;IACtC,IAAI,CAAC;QACH,MAAM,QAAQ,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;QACvC,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,CAAC;QACvD,IAAI,IAAI;YAAE,OAAO,kBAAkB,CAAC,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;IAC1D,CAAC;IAAC,MAAM,CAAC;QACP,mCAAmC;IACrC,CAAC;IACD,OAAO,SAAS,KAAK,GAAG,CAAC,EAAE,CAAC;AAC9B,CAAC;AAED,SAAS,eAAe,CAAC,KAAa;IACpC,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAC7B,MAAM,KAAK,GAAG,8BAA8B,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAC3D,IAAI,KAAK,EAAE,CAAC;QACV,OAAO;YACL,WAAW,EAAE,oBAAoB,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAC3C,MAAM,EAAE,KAAK,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC;SAC1C,CAAC;IACJ,CAAC;IACD,OAAO,EAAE,WAAW,EAAE,IAAI,EAAE,MAAM,EAAE,OAAO,CAAC,OAAO,CAAC,WAAW,EAAE,EAAE,CAAC,EAAE,CAAC;AACzE,CAAC;AAED,SAAS,mBAAmB,CAAC,KAAiB;IAC5C,OAAO,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC;AAC/C,CAAC;AAED,SAAS,iBAAiB,CAAC,KAAa;IACtC,OAAO,IAAI,UAAU,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,EAAE,QAAQ,CAAC,CAAC,CAAC;AACtD,CAAC;AAED,SAAS,kBAAkB,CAAC,MAA2B;IACrD,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC;QAAE,MAAM,IAAI,KAAK,CAAC,2CAA2C,CAAC,CAAC;IACtF,IAAI,MAAM,CAAC,MAAM,GAAG,iBAAiB,EAAE,CAAC;QACtC,MAAM,IAAI,KAAK,CAAC,iCAAiC,iBAAiB,kBAAkB,CAAC,CAAC;IACxF,CAAC;AACH,CAAC;AAED,SAAS,WAAW,CAAC,GAAW;IAC9B,IAAI,MAAW,CAAC;IAChB,IAAI,CAAC;QACH,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;IACxB,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CAAC,sBAAsB,GAAG,EAAE,CAAC,CAAC;IAC/C,CAAC;IACD,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,IAAI,MAAM,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;QAChE,MAAM,IAAI,KAAK,CAAC,mCAAmC,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC;IACxE,CAAC;AACH,CAAC;AAED,KAAK,UAAU,eAAe,CAC5B,KAAwB,EACxB,OAAsD;IAEtD,IAAI,KAAK,CAAC,UAAU,EAAE,CAAC;QACrB,MAAM,MAAM,GAAG,eAAe,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QACjD,MAAM,KAAK,GAAG,iBAAiB,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAC/C,OAAO,EAAE,KAAK,EAAE,WAAW,EAAE,oBAAoB,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,MAAM,CAAC,WAAW,EAAE,CAAC;IAC/F,CAAC;IAED,IAAI,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;IAClE,CAAC;IACD,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAEvB,MAAM,QAAQ,GAAG,MAAM,OAAO,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,EAAE;QAClD,MAAM,EAAE,KAAK;QACb,OAAO,EAAE,EAAE,MAAM,EAAE,2CAA2C,EAAE;KACjE,CAAC,CAAC;IACH,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,0BAA0B,KAAK,CAAC,GAAG,UAAU,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IAClF,CAAC;IACD,MAAM,gBAAgB,GAAG,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;IAChE,MAAM,aAAa,GAAG,gBAAgB,CAAC,CAAC,CAAC,MAAM,CAAC,QAAQ,CAAC,gBAAgB,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC;IAC5F,IAAI,MAAM,CAAC,QAAQ,CAAC,aAAa,CAAC,IAAI,aAAa,GAAG,OAAO,CAAC,QAAQ,EAAE,CAAC;QACvE,MAAM,IAAI,KAAK,CAAC,SAAS,KAAK,CAAC,GAAG,OAAO,aAAa,kBAAkB,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC;IAC9F,CAAC;IACD,MAAM,KAAK,GAAG,IAAI,UAAU,CAAC,MAAM,QAAQ,CAAC,WAAW,EAAE,CAAC,CAAC;IAC3D,OAAO;QACL,KAAK;QACL,WAAW,EAAE,oBAAoB,CAAC,KAAK,CAAC,WAAW,CAAC;eAC/C,oBAAoB,CAAC,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,cAAc,CAAC,CAAC;eAC1D,uBAAuB,CAAC,KAAK,CAAC,GAAG,CAAC;KACxC,CAAC;AACJ,CAAC;AAED,SAAS,aAAa,CAAC,IAAsB,EAAE,KAAwB,EAAE,KAAa;IACpF,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,IAAI,GAAG,CAAC;IAC/C,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,IAAI,GAAG,CAAC;IAClD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,IAAI,EAAE,CAAC;IAC3B,MAAM,MAAM,GAAG,KAAK,CAAC,MAAM,IAAI,IAAI,CAAC,YAAY,IAAI,IAAI,CAAC;IACzD,OAAO;QACL,MAAM;QACN,QAAQ,EAAE,KAAK,CAAC,QAAQ,IAAI,IAAI,CAAC,QAAQ,IAAI,IAAI;QACjD,gBAAgB,EAAE,CAAC,MAAM;QACzB,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,KAAK,GAAG,CAAC,KAAK,GAAG,GAAG,CAAC;QACnE,CAAC,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,IAAI,IAAI,CAAC,CAAC,IAAI,CAAC;QACzC,KAAK,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK;QAC5B,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM;KAC/B,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CAAC,IAAsB,EAAE,KAAwB,EAAE,KAAa,EAAE,WAAmB;IAC3G,MAAM,MAAM,GAAG,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;IACjD,OAAO;QACL,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,SAAS;QAClC,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,SAAS;QACtC,CAAC,EAAE,MAAM,CAAC,CAAC,IAAI,SAAS;QACxB,CAAC,EAAE,MAAM,CAAC,CAAC,IAAI,SAAS;QACxB,KAAK,EAAE,MAAM,CAAC,KAAK,IAAI,SAAS;QAChC,MAAM,EAAE,MAAM,CAAC,MAAM,IAAI,SAAS;QAClC,YAAY,EAAE,KAAK,CAAC,YAAY;QAChC,IAAI,EAAE,KAAK,CAAC,IAAI,IAAI,WAAW,CAAC,KAAK,CAAC,GAAG,EAAE,KAAK,CAAC;QACjD,SAAS,EAAE,KAAK,CAAC,SAAS,IAAI,IAAI,CAAC,SAAS,IAAI,MAAM;QACtD,WAAW;KACZ,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,mBAAmB,CACvC,IAAsB,EACtB,UAAwC,EAAE;IAE1C,kBAAkB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAChC,MAAM,MAAM,GAAG,IAAI,CAAC,MAAM,KAAK,IAAI,CAAC;IACpC,MAAM,aAAa,GAAG,IAAI,CAAC,aAAa,KAAK,IAAI,CAAC;IAClD,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,IAAI,sBAAsB,EAAE,sBAAsB,CAAC,CAAC,CAAC;IACxG,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,KAAK,CAAC;IAE7C,MAAM,MAAM,GAA0B,EAAE,CAAC;IACzC,KAAK,IAAI,KAAK,GAAG,CAAC,EAAE,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,EAAE,KAAK,IAAI,CAAC,EAAE,CAAC;QAC3D,MAAM,KAAK,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAE,CAAC;QAClC,IAAI,CAAC,KAAK,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,UAAU,EAAE,CAAC;YACpC,MAAM,IAAI,KAAK,CAAC,SAAS,KAAK,GAAG,CAAC,6BAA6B,CAAC,CAAC;QACnE,CAAC;QACD,IAAI,KAAK,CAAC,GAAG;YAAE,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAEtC,MAAM,WAAW,GAAG,CAAC,MAAM,IAAI,aAAa,IAAI,OAAO,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC;QAC1E,MAAM,MAAM,GAAG,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,KAAK,CAAC,CAAC;QACjD,MAAM,IAAI,GAAG,KAAK,CAAC,IAAI,IAAI,WAAW,CAAC,KAAK,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC;QAEzD,IAAI,CAAC,WAAW,EAAE,CAAC;YACjB,MAAM,WAAW,GAAG,oBAAoB,CAAC,KAAK,CAAC,WAAW,CAAC,IAAI,uBAAuB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAClG,IAAI,WAAW,IAAI,CAAC,sBAAsB,CAAC,WAAW,CAAC,EAAE,CAAC;gBACxD,MAAM,IAAI,KAAK,CAAC,sCAAsC,IAAI,KAAK,WAAW,EAAE,CAAC,CAAC;YAChF,CAAC;YACD,MAAM,CAAC,IAAI,CAAC;gBACV,MAAM,EAAE;oBACN,KAAK;oBACL,IAAI;oBACJ,MAAM,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;oBACxC,GAAG,EAAE,KAAK,CAAC,GAAG;oBACd,WAAW;oBACX,UAAU,EAAE,IAAI;oBAChB,MAAM;oBACN,SAAS,EAAE,IAAI;oBACf,cAAc,EAAE,KAAK;iBACtB;gBACD,OAAO,EAAE,IAAI;aACd,CAAC,CAAC;YACH,SAAS;QACX,CAAC;QAED,MAAM,EAAE,KAAK,EAAE,WAAW,EAAE,kBAAkB,EAAE,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE,EAAE,SAAS,EAAE,QAAQ,EAAE,CAAC,CAAC;QACzG,MAAM,WAAW,GAAG,kBAAkB,IAAI,uBAAuB,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;QAC7E,IAAI,CAAC,sBAAsB,CAAC,WAAW,CAAC,EAAE,CAAC;YACzC,MAAM,IAAI,KAAK,CAAC,sCAAsC,IAAI,KAAK,WAAW,IAAI,WAAW,EAAE,CAAC,CAAC;QAC/F,CAAC;QACD,IAAI,KAAK,CAAC,UAAU,GAAG,QAAQ,EAAE,CAAC;YAChC,MAAM,IAAI,KAAK,CAAC,SAAS,IAAI,OAAO,KAAK,CAAC,UAAU,kBAAkB,QAAQ,EAAE,CAAC,CAAC;QACpF,CAAC;QACD,MAAM,CAAC,IAAI,CAAC;YACV,MAAM,EAAE;gBACN,KAAK;gBACL,IAAI;gBACJ,MAAM,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,YAAY;gBACxC,GAAG,EAAE,KAAK,CAAC,GAAG;gBACd,WAAW;gBACX,UAAU,EAAE,KAAK,CAAC,UAAU;gBAC5B,MAAM;gBACN,SAAS,EAAE,CAAC,KAAK,CAAC,UAAU;gBAC5B,cAAc,EAAE,CAAC,MAAM;aACxB;YACD,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,eAAe,CAAC,IAAI,EAAE,KAAK,EAAE,KAAK,EAAE,mBAAmB,CAAC,KAAK,CAAC,CAAC;SACzF,CAAC,CAAC;IACL,CAAC;IAED,OAAO;QACL,EAAE,EAAE,IAAI;QACR,MAAM;QACN,KAAK,EAAE,MAAM,CAAC,MAAM;QACpB,QAAQ;QACR,MAAM;KACP,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,QAA8B;IAC/D,OAAO,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,KAAK,EAAE,EAAE,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC;AACtD,CAAC"}

package/dist/audit-store.d.ts

@@ -0,0 +1,15 @@
+/**
+ * Disk-backed command audit log.
+ *
+ * Entries are JSONL and intentionally contain only sanitized command metadata:
+ * ids, commandType, status, duration, payload key names, and idempotency key.
+ * Payload values are never persisted here.
+ */
+import type { AuditEntry } from "./audit.js";
+export declare function getAuditLogRootDir(): string;
+export declare function getAuditLogFilePath(rootDir?: string, date?: Date): string;
+export declare function appendAuditEntry(entry: AuditEntry, rootDir?: string): Promise<void>;
+export declare function readPersistedAuditSnapshot(options?: {
+    limit?: number;
+    rootDir?: string;
+}): Promise<AuditEntry[]>;

package/dist/audit-store.js

@@ -0,0 +1,100 @@
+/**
+ * Disk-backed command audit log.
+ *
+ * Entries are JSONL and intentionally contain only sanitized command metadata:
+ * ids, commandType, status, duration, payload key names, and idempotency key.
+ * Payload values are never persisted here.
+ */
+import fs from "node:fs/promises";
+import path from "node:path";
+import envPaths from "env-paths";
+const AUDIT_SUBDIR = "audit";
+const LOG_FILE_RE = /^audit-\d{4}-\d{2}-\d{2}\.jsonl$/;
+const MAX_READ_LIMIT = 1_000;
+function getRootFromEnv() {
+    const raw = process.env["SXL_BRIDGE_AUDIT_ROOT"];
+    if (!raw || raw.trim().length === 0)
+        return null;
+    return path.resolve(raw.trim());
+}
+export function getAuditLogRootDir() {
+    const override = getRootFromEnv();
+    if (override)
+        return override;
+    const paths = envPaths("sxl-studio-bridge", { suffix: "" });
+    return path.join(paths.cache, AUDIT_SUBDIR);
+}
+function dayKey(date) {
+    return date.toISOString().slice(0, 10);
+}
+export function getAuditLogFilePath(rootDir = getAuditLogRootDir(), date = new Date()) {
+    return path.join(rootDir, `audit-${dayKey(date)}.jsonl`);
+}
+function toPersistedEntry(entry) {
+    return {
+        schemaVersion: 1,
+        type: "sxl_bridge_command",
+        atIso: new Date(entry.at).toISOString(),
+        ...entry,
+    };
+}
+function toAuditEntry(value) {
+    if (!value || typeof value !== "object" || Array.isArray(value))
+        return null;
+    const entry = value;
+    if (typeof entry.at !== "number" ||
+        typeof entry.commandId !== "string" ||
+        typeof entry.commandType !== "string" ||
+        typeof entry.status !== "string" ||
+        !Array.isArray(entry.payloadKeys)) {
+        return null;
+    }
+    return {
+        at: entry.at,
+        commandId: entry.commandId,
+        commandType: entry.commandType,
+        status: entry.status,
+        durationMs: typeof entry.durationMs === "number" ? entry.durationMs : null,
+        error: typeof entry.error === "string" ? entry.error : null,
+        payloadKeys: entry.payloadKeys.filter((key) => typeof key === "string"),
+        idempotencyKey: typeof entry.idempotencyKey === "string" ? entry.idempotencyKey : null,
+    };
+}
+export async function appendAuditEntry(entry, rootDir = getAuditLogRootDir()) {
+    const target = getAuditLogFilePath(rootDir, new Date(entry.at));
+    await fs.mkdir(path.dirname(target), { recursive: true });
+    await fs.appendFile(target, `${JSON.stringify(toPersistedEntry(entry))}\n`, "utf8");
+}
+export async function readPersistedAuditSnapshot(options = {}) {
+    const rootDir = options.rootDir ?? getAuditLogRootDir();
+    const limit = Math.max(1, Math.min(options.limit ?? 50, MAX_READ_LIMIT));
+    let fileNames;
+    try {
+        fileNames = await fs.readdir(rootDir);
+    }
+    catch (error) {
+        const err = error;
+        if (err.code === "ENOENT")
+            return [];
+        throw error;
+    }
+    const entries = [];
+    for (const fileName of fileNames.filter((name) => LOG_FILE_RE.test(name)).sort().reverse()) {
+        const text = await fs.readFile(path.join(rootDir, fileName), "utf8");
+        const lines = text.split(/\r?\n/).filter((line) => line.trim().length > 0);
+        for (const line of lines.reverse()) {
+            try {
+                const parsed = toAuditEntry(JSON.parse(line));
+                if (parsed)
+                    entries.push(parsed);
+            }
+            catch {
+                // Ignore malformed lines; a partial append should not make diagnostics unusable.
+            }
+            if (entries.length >= limit)
+                return entries;
+        }
+    }
+    return entries;
+}
+//# sourceMappingURL=audit-store.js.map

package/dist/audit-store.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"audit-store.js","sourceRoot":"","sources":["../src/audit-store.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,EAAE,MAAM,kBAAkB,CAAC;AAClC,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,QAAQ,MAAM,WAAW,CAAC;AAGjC,MAAM,YAAY,GAAG,OAAO,CAAC;AAC7B,MAAM,WAAW,GAAG,kCAAkC,CAAC;AACvD,MAAM,cAAc,GAAG,KAAK,CAAC;AAQ7B,SAAS,cAAc;IACrB,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,uBAAuB,CAAC,CAAC;IACjD,IAAI,CAAC,GAAG,IAAI,GAAG,CAAC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IACjD,OAAO,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC,CAAC;AAClC,CAAC;AAED,MAAM,UAAU,kBAAkB;IAChC,MAAM,QAAQ,GAAG,cAAc,EAAE,CAAC;IAClC,IAAI,QAAQ;QAAE,OAAO,QAAQ,CAAC;IAC9B,MAAM,KAAK,GAAG,QAAQ,CAAC,mBAAmB,EAAE,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC,CAAC;IAC5D,OAAO,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,KAAK,EAAE,YAAY,CAAC,CAAC;AAC9C,CAAC;AAED,SAAS,MAAM,CAAC,IAAU;IACxB,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;AACzC,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,OAAO,GAAG,kBAAkB,EAAE,EAAE,IAAI,GAAG,IAAI,IAAI,EAAE;IACnF,OAAO,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,SAAS,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;AAC3D,CAAC;AAED,SAAS,gBAAgB,CAAC,KAAiB;IACzC,OAAO;QACL,aAAa,EAAE,CAAC;QAChB,IAAI,EAAE,oBAAoB;QAC1B,KAAK,EAAE,IAAI,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,WAAW,EAAE;QACvC,GAAG,KAAK;KACT,CAAC;AACJ,CAAC;AAED,SAAS,YAAY,CAAC,KAAc;IAClC,IAAI,CAAC,KAAK,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC;QAAE,OAAO,IAAI,CAAC;IAC7E,MAAM,KAAK,GAAG,KAAqC,CAAC;IACpD,IACE,OAAO,KAAK,CAAC,EAAE,KAAK,QAAQ;QAC5B,OAAO,KAAK,CAAC,SAAS,KAAK,QAAQ;QACnC,OAAO,KAAK,CAAC,WAAW,KAAK,QAAQ;QACrC,OAAO,KAAK,CAAC,MAAM,KAAK,QAAQ;QAChC,CAAC,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,WAAW,CAAC,EACjC,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IACD,OAAO;QACL,EAAE,EAAE,KAAK,CAAC,EAAE;QACZ,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,WAAW,EAAE,KAAK,CAAC,WAAW;QAC9B,MAAM,EAAE,KAAK,CAAC,MAA8B;QAC5C,UAAU,EAAE,OAAO,KAAK,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI;QAC1E,KAAK,EAAE,OAAO,KAAK,CAAC,KAAK,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,IAAI;QAC3D,WAAW,EAAE,KAAK,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,GAAG,EAAiB,EAAE,CAAC,OAAO,GAAG,KAAK,QAAQ,CAAC;QACtF,cAAc,EAAE,OAAO,KAAK,CAAC,cAAc,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,cAAc,CAAC,CAAC,CAAC,IAAI;KACvF,CAAC;AACJ,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,KAAiB,EACjB,OAAO,GAAG,kBAAkB,EAAE;IAE9B,MAAM,MAAM,GAAG,mBAAmB,CAAC,OAAO,EAAE,IAAI,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC;IAChE,MAAM,EAAE,CAAC,KAAK,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IAC1D,MAAM,EAAE,CAAC,UAAU,CAAC,MAAM,EAAE,GAAG,IAAI,CAAC,SAAS,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;AACtF,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,0BAA0B,CAAC,UAG7C,EAAE;IACJ,MAAM,OAAO,GAAG,OAAO,CAAC,OAAO,IAAI,kBAAkB,EAAE,CAAC;IACxD,MAAM,KAAK,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,OAAO,CAAC,KAAK,IAAI,EAAE,EAAE,cAAc,CAAC,CAAC,CAAC;IACzE,IAAI,SAAmB,CAAC;IACxB,IAAI,CAAC;QACH,SAAS,GAAG,MAAM,EAAE,CAAC,OAAO,CAAC,OAAO,CAAC,CAAC;IACxC,CAAC;IAAC,OAAO,KAAK,EAAE,CAAC;QACf,MAAM,GAAG,GAAG,KAA8B,CAAC;QAC3C,IAAI,GAAG,CAAC,IAAI,KAAK,QAAQ;YAAE,OAAO,EAAE,CAAC;QACrC,MAAM,KAAK,CAAC;IACd,CAAC;IAED,MAAM,OAAO,GAAiB,EAAE,CAAC;IACjC,KAAK,MAAM,QAAQ,IAAI,SAAS,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,WAAW,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,OAAO,EAAE,EAAE,CAAC;QAC3F,MAAM,IAAI,GAAG,MAAM,EAAE,CAAC,QAAQ,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,EAAE,QAAQ,CAAC,EAAE,MAAM,CAAC,CAAC;QACrE,MAAM,KAAK,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,EAAE,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QAC3E,KAAK,MAAM,IAAI,IAAI,KAAK,CAAC,OAAO,EAAE,EAAE,CAAC;YACnC,IAAI,CAAC;gBACH,MAAM,MAAM,GAAG,YAAY,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAY,CAAC,CAAC;gBACzD,IAAI,MAAM;oBAAE,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;YACnC,CAAC;YAAC,MAAM,CAAC;gBACP,iFAAiF;YACnF,CAAC;YACD,IAAI,OAAO,CAAC,MAAM,IAAI,KAAK;gBAAE,OAAO,OAAO,CAAC;QAC9C,CAAC;IACH,CAAC;IACD,OAAO,OAAO,CAAC;AACjB,CAAC"}

package/dist/audit.d.ts

@@ -1,10 +1,10 @@
 /**
- * Audit ring buffer for Bridge commands.
+ * Audit ring buffer + persisted JSONL log for Bridge commands.
  *
  * Every command dispatched via POST /api/command is recorded with its
  * commandType, status, duration and a short payload-keys preview (no values
- * — to avoid leaking secrets). GET /api/log returns the most recent entries.
- * This is in-memory, per-process, and capped to 200 entries.
+ * — to avoid leaking secrets). GET /api/log returns the most recent entries
+ * from memory by default, or disk when `source=disk`.
  */
 import type { CommandResult } from "./types.js";
 export type AuditEntry = {
@@ -19,3 +19,4 @@ export type AuditEntry = {
 };
 export declare function recordAudit(entry: AuditEntry): void;
 export declare function getAuditSnapshot(limit?: number): AuditEntry[];
+export declare function flushAuditPersistenceForTests(): Promise<void>;

package/dist/audit.js

@@ -1,24 +1,57 @@
 /**
- * Audit ring buffer for Bridge commands.
+ * Audit ring buffer + persisted JSONL log for Bridge commands.
  *
  * Every command dispatched via POST /api/command is recorded with its
  * commandType, status, duration and a short payload-keys preview (no values
- * — to avoid leaking secrets). GET /api/log returns the most recent entries.
- * This is in-memory, per-process, and capped to 200 entries.
+ * — to avoid leaking secrets). GET /api/log returns the most recent entries
+ * from memory by default, or disk when `source=disk`.
  */
+import { appendAuditEntry } from "./audit-store.js";
 const BUFFER_SIZE = 200;
 const buffer = [];
+const pendingPersistence = new Set();
+function isDiskAuditDisabled() {
+    return process.env["SXL_BRIDGE_AUDIT_DISABLE_DISK"] === "true";
+}
+function persistAuditEntry(entry) {
+    if (isDiskAuditDisabled())
+        return;
+    const pending = appendAuditEntry(entry)
+        .catch((error) => {
+        // Persistence must never break the command path.
+        // eslint-disable-next-line no-console
+        console.error(`[Audit] failed to persist audit entry: ${String(error)}`);
+    })
+        .finally(() => {
+        pendingPersistence.delete(pending);
+    });
+    pendingPersistence.add(pending);
+}
 export function recordAudit(entry) {
     buffer.push(entry);
     if (buffer.length > BUFFER_SIZE) {
         buffer.splice(0, buffer.length - BUFFER_SIZE);
     }
+    persistAuditEntry(entry);
     // Structured log line for operators tailing the console.
     // eslint-disable-next-line no-console
-    console.error(`[Audit] ${new Date(entry.at).toISOString()} ${entry.commandType} -> ${entry.status}${typeof entry.durationMs === "number" ? ` (${entry.durationMs}ms)` : ""}${entry.error ? ` — ${entry.error}` : ""}`);
+    console.error(`[Audit] ${JSON.stringify({
+        type: "sxl_bridge_command",
+        at: new Date(entry.at).toISOString(),
+        commandId: entry.commandId,
+        commandType: entry.commandType,
+        status: entry.status,
+        durationMs: entry.durationMs,
+        error: entry.error,
+        payloadKeys: entry.payloadKeys,
+        idempotencyKey: entry.idempotencyKey,
+    })}`);
 }
 export function getAuditSnapshot(limit = 50) {
     const clamped = Math.max(1, Math.min(limit, BUFFER_SIZE));
     return buffer.slice(-clamped).reverse();
 }
+export async function flushAuditPersistenceForTests() {
+    await Promise.all(Array.from(pendingPersistence));
+}
 //# sourceMappingURL=audit.js.map

package/dist/audit.js.map

@@ -1 +1 @@
-{"version":3,"file":"audit.js","sourceRoot":"","sources":["../src/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAeH,MAAM,WAAW,GAAG,GAAG,CAAC;AACxB,MAAM,MAAM,GAAiB,EAAE,CAAC;AAEhC,MAAM,UAAU,WAAW,CAAC,KAAiB;IAC3C,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACnB,IAAI,MAAM,CAAC,MAAM,GAAG,WAAW,EAAE,CAAC;QAChC,MAAM,CAAC,MAAM,CAAC,CAAC,EAAE,MAAM,CAAC,MAAM,GAAG,WAAW,CAAC,CAAC;IAChD,CAAC;IACD,yDAAyD;IACzD,sCAAsC;IACtC,OAAO,CAAC,KAAK,CACX,WAAW,IAAI,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,WAAW,EAAE,IAAI,KAAK,CAAC,WAAW,OAAO,KAAK,CAAC,MAAM,GACjF,OAAO,KAAK,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,KAAK,CAAC,UAAU,KAAK,CAAC,CAAC,CAAC,EACtE,GAAG,KAAK,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,CAC5C,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,KAAK,GAAG,EAAE;IACzC,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC,CAAC;IAC1D,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,CAAC;AAC1C,CAAC"}
+{"version":3,"file":"audit.js","sourceRoot":"","sources":["../src/audit.ts"],"names":[],"mappings":"AAAA;;;;;;;GAOG;AAEH,OAAO,EAAE,gBAAgB,EAAE,MAAM,kBAAkB,CAAC;AAcpD,MAAM,WAAW,GAAG,GAAG,CAAC;AACxB,MAAM,MAAM,GAAiB,EAAE,CAAC;AAChC,MAAM,kBAAkB,GAAG,IAAI,GAAG,EAAiB,CAAC;AAEpD,SAAS,mBAAmB;IAC1B,OAAO,OAAO,CAAC,GAAG,CAAC,+BAA+B,CAAC,KAAK,MAAM,CAAC;AACjE,CAAC;AAED,SAAS,iBAAiB,CAAC,KAAiB;IAC1C,IAAI,mBAAmB,EAAE;QAAE,OAAO;IAClC,MAAM,OAAO,GAAG,gBAAgB,CAAC,KAAK,CAAC;SACpC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;QACf,iDAAiD;QACjD,sCAAsC;QACtC,OAAO,CAAC,KAAK,CAAC,0CAA0C,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;IAC3E,CAAC,CAAC;SACD,OAAO,CAAC,GAAG,EAAE;QACZ,kBAAkB,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;IACrC,CAAC,CAAC,CAAC;IACL,kBAAkB,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;AAClC,CAAC;AAED,MAAM,UAAU,WAAW,CAAC,KAAiB;IAC3C,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACnB,IAAI,MAAM,CAAC,MAAM,GAAG,WAAW,EAAE,CAAC;QAChC,MAAM,CAAC,MAAM,CAAC,CAAC,EAAE,MAAM,CAAC,MAAM,GAAG,WAAW,CAAC,CAAC;IAChD,CAAC;IACD,iBAAiB,CAAC,KAAK,CAAC,CAAC;IACzB,yDAAyD;IACzD,sCAAsC;IACtC,OAAO,CAAC,KAAK,CACX,WAAW,IAAI,CAAC,SAAS,CAAC;QACxB,IAAI,EAAE,oBAAoB;QAC1B,EAAE,EAAE,IAAI,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,WAAW,EAAE;QACpC,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,WAAW,EAAE,KAAK,CAAC,WAAW;QAC9B,MAAM,EAAE,KAAK,CAAC,MAAM;QACpB,UAAU,EAAE,KAAK,CAAC,UAAU;QAC5B,KAAK,EAAE,KAAK,CAAC,KAAK;QAClB,WAAW,EAAE,KAAK,CAAC,WAAW;QAC9B,cAAc,EAAE,KAAK,CAAC,cAAc;KACrC,CAAC,EAAE,CACL,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,gBAAgB,CAAC,KAAK,GAAG,EAAE;IACzC,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,KAAK,EAAE,WAAW,CAAC,CAAC,CAAC;IAC1D,OAAO,MAAM,CAAC,KAAK,CAAC,CAAC,OAAO,CAAC,CAAC,OAAO,EAAE,CAAC;AAC1C,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,6BAA6B;IACjD,MAAM,OAAO,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,kBAAkB,CAAC,CAAC,CAAC;AACpD,CAAC"}

package/dist/auth.d.ts

@@ -3,7 +3,7 @@
  *
  * Activated when BRIDGE_AUTH_TOKEN env var is set. Requests must then carry
  * `Authorization: Bearer <token>` (case-insensitive header name, case-sensitive token).
- * Applies to both REST /api/* and MCP Streamable HTTP at /mcp.
+ * Applies to REST /api/*, MCP Streamable HTTP at /mcp, and plugin WebSocket.
  *
  * Disabled by default to preserve zero-config "run and connect Cursor" UX.
  */
@@ -15,4 +15,11 @@ export declare function checkAuth(req: IncomingMessage): {
     ok: false;
     reason: string;
 };
+export declare function sanitizeWebSocketAuthLogPath(reqUrl: string | undefined): string;
+export declare function checkWebSocketAuth(req: IncomingMessage): {
+    ok: true;
+} | {
+    ok: false;
+    reason: string;
+};
 export declare function isAuthEnabled(): boolean;

package/dist/auth.js

@@ -3,10 +3,11 @@
  *
  * Activated when BRIDGE_AUTH_TOKEN env var is set. Requests must then carry
  * `Authorization: Bearer <token>` (case-insensitive header name, case-sensitive token).
- * Applies to both REST /api/* and MCP Streamable HTTP at /mcp.
+ * Applies to REST /api/*, MCP Streamable HTTP at /mcp, and plugin WebSocket.
  *
  * Disabled by default to preserve zero-config "run and connect Cursor" UX.
  */
+const WEB_SOCKET_AUTH_QUERY_KEYS = new Set(["bridgeauthtoken", "token"]);
 export function getBridgeAuthToken() {
     const raw = process.env["BRIDGE_AUTH_TOKEN"];
     if (!raw)
@@ -33,6 +34,45 @@ export function checkAuth(req) {
     }
     return { ok: true };
 }
+export function sanitizeWebSocketAuthLogPath(reqUrl) {
+    const source = reqUrl && reqUrl.trim().length > 0 ? reqUrl : "/";
+    try {
+        const url = new URL(source, "ws://127.0.0.1");
+        for (const key of Array.from(url.searchParams.keys())) {
+            if (WEB_SOCKET_AUTH_QUERY_KEYS.has(key.toLowerCase())) {
+                url.searchParams.set(key, "REDACTED");
+            }
+        }
+        return `${url.pathname}${url.search}${url.hash}` || "/";
+    }
+    catch {
+        return "/";
+    }
+}
+export function checkWebSocketAuth(req) {
+    const token = getBridgeAuthToken();
+    if (!token)
+        return { ok: true };
+    const headerResult = checkAuth(req);
+    if (headerResult.ok)
+        return headerResult;
+    const reqUrl = req.url ?? "/";
+    let provided = null;
+    try {
+        const url = new URL(reqUrl, "ws://127.0.0.1");
+        provided = url.searchParams.get("bridgeAuthToken") ?? url.searchParams.get("token");
+    }
+    catch {
+        provided = null;
+    }
+    if (!provided) {
+        return { ok: false, reason: "Missing WebSocket auth token" };
+    }
+    if (provided !== token) {
+        return { ok: false, reason: "Invalid WebSocket auth token" };
+    }
+    return { ok: true };
+}
 export function isAuthEnabled() {
     return getBridgeAuthToken() !== null;
 }

package/dist/auth.js.map

@@ -1 +1 @@
-{"version":3,"file":"auth.js","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,MAAM,UAAU,kBAAkB;IAChC,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;IAC7C,IAAI,CAAC,GAAG;QAAE,OAAO,IAAI,CAAC;IACtB,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,EAAE,CAAC;IAC3B,OAAO,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC;AAC7C,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,GAAoB;IAC5C,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;IACnC,IAAI,CAAC,KAAK;QAAE,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;IAChC,MAAM,MAAM,GACT,GAAG,CAAC,OAAO,CAAC,eAAe,CAAwB;QACnD,GAAG,CAAC,OAAO,CAAC,eAAe,CAAmC,CAAC;IAClE,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,8BAA8B,EAAE,CAAC;IAC/D,CAAC;IACD,MAAM,CAAC,MAAM,EAAE,GAAG,IAAI,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC5C,IAAI,MAAM,EAAE,WAAW,EAAE,KAAK,QAAQ,EAAE,CAAC;QACvC,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,6CAA6C,EAAE,CAAC;IAC9E,CAAC;IACD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;IACvC,IAAI,QAAQ,KAAK,KAAK,EAAE,CAAC;QACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC;IACvD,CAAC;IACD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;AACtB,CAAC;AAED,MAAM,UAAU,aAAa;IAC3B,OAAO,kBAAkB,EAAE,KAAK,IAAI,CAAC;AACvC,CAAC"}
+{"version":3,"file":"auth.js","sourceRoot":"","sources":["../src/auth.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAIH,MAAM,0BAA0B,GAAG,IAAI,GAAG,CAAC,CAAC,iBAAiB,EAAE,OAAO,CAAC,CAAC,CAAC;AAEzE,MAAM,UAAU,kBAAkB;IAChC,MAAM,GAAG,GAAG,OAAO,CAAC,GAAG,CAAC,mBAAmB,CAAC,CAAC;IAC7C,IAAI,CAAC,GAAG;QAAE,OAAO,IAAI,CAAC;IACtB,MAAM,OAAO,GAAG,GAAG,CAAC,IAAI,EAAE,CAAC;IAC3B,OAAO,OAAO,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,IAAI,CAAC;AAC7C,CAAC;AAED,MAAM,UAAU,SAAS,CAAC,GAAoB;IAC5C,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;IACnC,IAAI,CAAC,KAAK;QAAE,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;IAChC,MAAM,MAAM,GACT,GAAG,CAAC,OAAO,CAAC,eAAe,CAAwB;QACnD,GAAG,CAAC,OAAO,CAAC,eAAe,CAAmC,CAAC;IAClE,IAAI,CAAC,MAAM,EAAE,CAAC;QACZ,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,8BAA8B,EAAE,CAAC;IAC/D,CAAC;IACD,MAAM,CAAC,MAAM,EAAE,GAAG,IAAI,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;IAC5C,IAAI,MAAM,EAAE,WAAW,EAAE,KAAK,QAAQ,EAAE,CAAC;QACvC,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,6CAA6C,EAAE,CAAC;IAC9E,CAAC;IACD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;IACvC,IAAI,QAAQ,KAAK,KAAK,EAAE,CAAC;QACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,sBAAsB,EAAE,CAAC;IACvD,CAAC;IACD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;AACtB,CAAC;AAED,MAAM,UAAU,4BAA4B,CAAC,MAA0B;IACrE,MAAM,MAAM,GAAG,MAAM,IAAI,MAAM,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,GAAG,CAAC;IACjE,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC;QAC9C,KAAK,MAAM,GAAG,IAAI,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC,EAAE,CAAC;YACtD,IAAI,0BAA0B,CAAC,GAAG,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,EAAE,CAAC;gBACtD,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC;YACxC,CAAC;QACH,CAAC;QACD,OAAO,GAAG,GAAG,CAAC,QAAQ,GAAG,GAAG,CAAC,MAAM,GAAG,GAAG,CAAC,IAAI,EAAE,IAAI,GAAG,CAAC;IAC1D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,GAAG,CAAC;IACb,CAAC;AACH,CAAC;AAED,MAAM,UAAU,kBAAkB,CAAC,GAAoB;IACrD,MAAM,KAAK,GAAG,kBAAkB,EAAE,CAAC;IACnC,IAAI,CAAC,KAAK;QAAE,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;IAEhC,MAAM,YAAY,GAAG,SAAS,CAAC,GAAG,CAAC,CAAC;IACpC,IAAI,YAAY,CAAC,EAAE;QAAE,OAAO,YAAY,CAAC;IAEzC,MAAM,MAAM,GAAG,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC;IAC9B,IAAI,QAAQ,GAAkB,IAAI,CAAC;IACnC,IAAI,CAAC;QACH,MAAM,GAAG,GAAG,IAAI,GAAG,CAAC,MAAM,EAAE,gBAAgB,CAAC,CAAC;QAC9C,QAAQ,GAAG,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,iBAAiB,CAAC,IAAI,GAAG,CAAC,YAAY,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IACtF,CAAC;IAAC,MAAM,CAAC;QACP,QAAQ,GAAG,IAAI,CAAC;IAClB,CAAC;IAED,IAAI,CAAC,QAAQ,EAAE,CAAC;QACd,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,8BAA8B,EAAE,CAAC;IAC/D,CAAC;IACD,IAAI,QAAQ,KAAK,KAAK,EAAE,CAAC;QACvB,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,MAAM,EAAE,8BAA8B,EAAE,CAAC;IAC/D,CAAC;IACD,OAAO,EAAE,EAAE,EAAE,IAAI,EAAE,CAAC;AACtB,CAAC;AAED,MAAM,UAAU,aAAa;IAC3B,OAAO,kBAAkB,EAAE,KAAK,IAAI,CAAC;AACvC,CAAC"}

package/dist/bridge-agent-workflow-validation-cli.d.ts

@@ -0,0 +1,2 @@
+#!/usr/bin/env node
+export declare function runAgentWorkflowValidationCli(argv?: string[]): Promise<void>;

package/dist/bridge-agent-workflow-validation-cli.js

@@ -0,0 +1,68 @@
+#!/usr/bin/env node
+import { pathToFileURL } from "node:url";
+import { runAgentWorkflowValidation, } from "./bridge-agent-workflow-validation.js";
+function usage() {
+    return [
+        "Usage: sxl-bridge-agent [--json]",
+        "",
+        "Runs local agent workflow validation for route_intent, plan_workflow, and preview_workflow.",
+        "No running Bridge server or Figma Remote Connect session is required.",
+    ].join("\n");
+}
+function parseArgs(argv) {
+    const args = { json: false };
+    for (const arg of argv) {
+        if (arg === "--help" || arg === "-h") {
+            console.log(usage());
+            process.exit(0);
+        }
+        if (arg === "--json") {
+            args.json = true;
+            continue;
+        }
+        throw new Error(`Unknown argument: ${arg}`);
+    }
+    return args;
+}
+function renderText(report) {
+    const lines = [];
+    lines.push(`SXL Bridge agent workflow validation: ${report.status.toUpperCase()}`);
+    lines.push(`Version: ${report.bridgeVersion}`);
+    lines.push(`Scenarios: ${report.scenarioCount}`);
+    lines.push("");
+    for (const step of report.steps) {
+        const commits = step.commitTools.length > 0 ? ` commits=${step.commitTools.join(",")}` : "";
+        lines.push(`- ${step.status.toUpperCase()} ${step.id} -> ${step.recipeId}${commits}`);
+    }
+    if (report.findings.length > 0) {
+        lines.push("");
+        lines.push("Findings:");
+        for (const finding of report.findings) {
+            const scenario = finding.scenarioId ? ` ${finding.scenarioId}` : "";
+            const tool = finding.toolName ? ` [${finding.toolName}]` : "";
+            lines.push(`- ${finding.severity.toUpperCase()} ${finding.code}${scenario}${tool}: ${finding.message}`);
+        }
+    }
+    return lines.join("\n");
+}
+export async function runAgentWorkflowValidationCli(argv = process.argv.slice(2)) {
+    const args = parseArgs(argv);
+    const report = runAgentWorkflowValidation();
+    if (args.json) {
+        console.log(JSON.stringify(report, null, 2));
+    }
+    else {
+        console.log(renderText(report));
+    }
+    process.exit(report.ok ? 0 : 1);
+}
+const isCliEntry = process.argv[1] !== undefined && import.meta.url === pathToFileURL(process.argv[1]).href;
+if (isCliEntry) {
+    runAgentWorkflowValidationCli().catch((error) => {
+        console.error(error instanceof Error ? error.message : String(error));
+        console.error("");
+        console.error(usage());
+        process.exit(2);
+    });
+}
+//# sourceMappingURL=bridge-agent-workflow-validation-cli.js.map

package/dist/bridge-agent-workflow-validation-cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"bridge-agent-workflow-validation-cli.js","sourceRoot":"","sources":["../src/bridge-agent-workflow-validation-cli.ts"],"names":[],"mappings":";AACA,OAAO,EAAE,aAAa,EAAE,MAAM,UAAU,CAAC;AACzC,OAAO,EACL,0BAA0B,GAE3B,MAAM,uCAAuC,CAAC;AAM/C,SAAS,KAAK;IACZ,OAAO;QACL,kCAAkC;QAClC,EAAE;QACF,6FAA6F;QAC7F,uEAAuE;KACxE,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AACf,CAAC;AAED,SAAS,SAAS,CAAC,IAAc;IAC/B,MAAM,IAAI,GAAY,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC;IACtC,KAAK,MAAM,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,IAAI,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,EAAE,CAAC;YACrC,OAAO,CAAC,GAAG,CAAC,KAAK,EAAE,CAAC,CAAC;YACrB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;QAClB,CAAC;QACD,IAAI,GAAG,KAAK,QAAQ,EAAE,CAAC;YACrB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;YACjB,SAAS;QACX,CAAC;QACD,MAAM,IAAI,KAAK,CAAC,qBAAqB,GAAG,EAAE,CAAC,CAAC;IAC9C,CAAC;IACD,OAAO,IAAI,CAAC;AACd,CAAC;AAED,SAAS,UAAU,CAAC,MAAqC;IACvD,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,CAAC,IAAI,CAAC,yCAAyC,MAAM,CAAC,MAAM,CAAC,WAAW,EAAE,EAAE,CAAC,CAAC;IACnF,KAAK,CAAC,IAAI,CAAC,YAAY,MAAM,CAAC,aAAa,EAAE,CAAC,CAAC;IAC/C,KAAK,CAAC,IAAI,CAAC,cAAc,MAAM,CAAC,aAAa,EAAE,CAAC,CAAC;IACjD,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACf,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,KAAK,EAAE,CAAC;QAChC,MAAM,OAAO,GAAG,IAAI,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,YAAY,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;QAC5F,KAAK,CAAC,IAAI,CAAC,KAAK,IAAI,CAAC,MAAM,CAAC,WAAW,EAAE,IAAI,IAAI,CAAC,EAAE,OAAO,IAAI,CAAC,QAAQ,GAAG,OAAO,EAAE,CAAC,CAAC;IACxF,CAAC;IACD,IAAI,MAAM,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAC/B,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QACf,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;QACxB,KAAK,MAAM,OAAO,IAAI,MAAM,CAAC,QAAQ,EAAE,CAAC;YACtC,MAAM,QAAQ,GAAG,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YACpE,MAAM,IAAI,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,KAAK,OAAO,CAAC,QAAQ,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC;YAC9D,KAAK,CAAC,IAAI,CAAC,KAAK,OAAO,CAAC,QAAQ,CAAC,WAAW,EAAE,IAAI,OAAO,CAAC,IAAI,GAAG,QAAQ,GAAG,IAAI,KAAK,OAAO,CAAC,OAAO,EAAE,CAAC,CAAC;QAC1G,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;AAC1B,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,6BAA6B,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC;IAC9E,MAAM,IAAI,GAAG,SAAS,CAAC,IAAI,CAAC,CAAC;IAC7B,MAAM,MAAM,GAAG,0BAA0B,EAAE,CAAC;IAC5C,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;QACd,OAAO,CAAC,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,CAAC,CAAC;IAC/C,CAAC;SAAM,CAAC;QACN,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC;IAClC,CAAC;IACD,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;AAClC,CAAC;AAED,MAAM,UAAU,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,KAAK,SAAS,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,KAAK,aAAa,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC;AAE5G,IAAI,UAAU,EAAE,CAAC;IACf,6BAA6B,EAAE,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;QAC9C,OAAO,CAAC,KAAK,CAAC,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC,CAAC;QACtE,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;QAClB,OAAO,CAAC,KAAK,CAAC,KAAK,EAAE,CAAC,CAAC;QACvB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClB,CAAC,CAAC,CAAC;AACL,CAAC"}