@synth-deploy/server 0.1.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/agent/debrief-retention.d.ts +12 -0
- package/dist/agent/debrief-retention.d.ts.map +1 -0
- package/dist/agent/debrief-retention.js +27 -0
- package/dist/agent/debrief-retention.js.map +1 -0
- package/dist/agent/envoy-client.d.ts +216 -0
- package/dist/agent/envoy-client.d.ts.map +1 -0
- package/dist/agent/envoy-client.js +266 -0
- package/dist/agent/envoy-client.js.map +1 -0
- package/dist/agent/envoy-registry.d.ts +102 -0
- package/dist/agent/envoy-registry.d.ts.map +1 -0
- package/dist/agent/envoy-registry.js +319 -0
- package/dist/agent/envoy-registry.js.map +1 -0
- package/dist/agent/health-checker.d.ts +39 -0
- package/dist/agent/health-checker.d.ts.map +1 -0
- package/dist/agent/health-checker.js +49 -0
- package/dist/agent/health-checker.js.map +1 -0
- package/dist/agent/mcp-client-manager.d.ts +36 -0
- package/dist/agent/mcp-client-manager.d.ts.map +1 -0
- package/dist/agent/mcp-client-manager.js +106 -0
- package/dist/agent/mcp-client-manager.js.map +1 -0
- package/dist/agent/stale-deployment-detector.d.ts +15 -0
- package/dist/agent/stale-deployment-detector.d.ts.map +1 -0
- package/dist/agent/stale-deployment-detector.js +50 -0
- package/dist/agent/stale-deployment-detector.js.map +1 -0
- package/dist/agent/step-runner.d.ts +31 -0
- package/dist/agent/step-runner.d.ts.map +1 -0
- package/dist/agent/step-runner.js +80 -0
- package/dist/agent/step-runner.js.map +1 -0
- package/dist/agent/synth-agent.d.ts +168 -0
- package/dist/agent/synth-agent.d.ts.map +1 -0
- package/dist/agent/synth-agent.js +1195 -0
- package/dist/agent/synth-agent.js.map +1 -0
- package/dist/api/agent.d.ts +36 -0
- package/dist/api/agent.d.ts.map +1 -0
- package/dist/api/agent.js +867 -0
- package/dist/api/agent.js.map +1 -0
- package/dist/api/api-keys.d.ts +4 -0
- package/dist/api/api-keys.d.ts.map +1 -0
- package/dist/api/api-keys.js +118 -0
- package/dist/api/api-keys.js.map +1 -0
- package/dist/api/artifacts.d.ts +5 -0
- package/dist/api/artifacts.d.ts.map +1 -0
- package/dist/api/artifacts.js +142 -0
- package/dist/api/artifacts.js.map +1 -0
- package/dist/api/auth.d.ts +4 -0
- package/dist/api/auth.d.ts.map +1 -0
- package/dist/api/auth.js +280 -0
- package/dist/api/auth.js.map +1 -0
- package/dist/api/deployments.d.ts +11 -0
- package/dist/api/deployments.d.ts.map +1 -0
- package/dist/api/deployments.js +1098 -0
- package/dist/api/deployments.js.map +1 -0
- package/dist/api/environments.d.ts +5 -0
- package/dist/api/environments.d.ts.map +1 -0
- package/dist/api/environments.js +69 -0
- package/dist/api/environments.js.map +1 -0
- package/dist/api/envoy-reports.d.ts +17 -0
- package/dist/api/envoy-reports.d.ts.map +1 -0
- package/dist/api/envoy-reports.js +138 -0
- package/dist/api/envoy-reports.js.map +1 -0
- package/dist/api/envoys.d.ts +5 -0
- package/dist/api/envoys.d.ts.map +1 -0
- package/dist/api/envoys.js +192 -0
- package/dist/api/envoys.js.map +1 -0
- package/dist/api/fleet.d.ts +11 -0
- package/dist/api/fleet.d.ts.map +1 -0
- package/dist/api/fleet.js +394 -0
- package/dist/api/fleet.js.map +1 -0
- package/dist/api/graph.d.ts +8 -0
- package/dist/api/graph.d.ts.map +1 -0
- package/dist/api/graph.js +355 -0
- package/dist/api/graph.js.map +1 -0
- package/dist/api/health.d.ts +20 -0
- package/dist/api/health.d.ts.map +1 -0
- package/dist/api/health.js +248 -0
- package/dist/api/health.js.map +1 -0
- package/dist/api/idp-schemas.d.ts +41 -0
- package/dist/api/idp-schemas.d.ts.map +1 -0
- package/dist/api/idp-schemas.js +17 -0
- package/dist/api/idp-schemas.js.map +1 -0
- package/dist/api/idp.d.ts +6 -0
- package/dist/api/idp.d.ts.map +1 -0
- package/dist/api/idp.js +620 -0
- package/dist/api/idp.js.map +1 -0
- package/dist/api/intake.d.ts +10 -0
- package/dist/api/intake.d.ts.map +1 -0
- package/dist/api/intake.js +418 -0
- package/dist/api/intake.js.map +1 -0
- package/dist/api/partitions.d.ts +5 -0
- package/dist/api/partitions.d.ts.map +1 -0
- package/dist/api/partitions.js +113 -0
- package/dist/api/partitions.js.map +1 -0
- package/dist/api/progress-event-store.d.ts +62 -0
- package/dist/api/progress-event-store.d.ts.map +1 -0
- package/dist/api/progress-event-store.js +118 -0
- package/dist/api/progress-event-store.js.map +1 -0
- package/dist/api/schemas.d.ts +1000 -0
- package/dist/api/schemas.d.ts.map +1 -0
- package/dist/api/schemas.js +328 -0
- package/dist/api/schemas.js.map +1 -0
- package/dist/api/security-boundaries.d.ts +4 -0
- package/dist/api/security-boundaries.d.ts.map +1 -0
- package/dist/api/security-boundaries.js +32 -0
- package/dist/api/security-boundaries.js.map +1 -0
- package/dist/api/settings.d.ts +4 -0
- package/dist/api/settings.d.ts.map +1 -0
- package/dist/api/settings.js +99 -0
- package/dist/api/settings.js.map +1 -0
- package/dist/api/system.d.ts +75 -0
- package/dist/api/system.d.ts.map +1 -0
- package/dist/api/system.js +558 -0
- package/dist/api/system.js.map +1 -0
- package/dist/api/telemetry.d.ts +4 -0
- package/dist/api/telemetry.d.ts.map +1 -0
- package/dist/api/telemetry.js +24 -0
- package/dist/api/telemetry.js.map +1 -0
- package/dist/api/users.d.ts +4 -0
- package/dist/api/users.d.ts.map +1 -0
- package/dist/api/users.js +173 -0
- package/dist/api/users.js.map +1 -0
- package/dist/archive-unpacker.d.ts +24 -0
- package/dist/archive-unpacker.d.ts.map +1 -0
- package/dist/archive-unpacker.js +239 -0
- package/dist/archive-unpacker.js.map +1 -0
- package/dist/artifact-analyzer.d.ts +59 -0
- package/dist/artifact-analyzer.d.ts.map +1 -0
- package/dist/artifact-analyzer.js +334 -0
- package/dist/artifact-analyzer.js.map +1 -0
- package/dist/auth/idp/index.d.ts +9 -0
- package/dist/auth/idp/index.d.ts.map +1 -0
- package/dist/auth/idp/index.js +5 -0
- package/dist/auth/idp/index.js.map +1 -0
- package/dist/auth/idp/ldap.d.ts +56 -0
- package/dist/auth/idp/ldap.d.ts.map +1 -0
- package/dist/auth/idp/ldap.js +276 -0
- package/dist/auth/idp/ldap.js.map +1 -0
- package/dist/auth/idp/oidc.d.ts +27 -0
- package/dist/auth/idp/oidc.d.ts.map +1 -0
- package/dist/auth/idp/oidc.js +97 -0
- package/dist/auth/idp/oidc.js.map +1 -0
- package/dist/auth/idp/role-mapping.d.ts +9 -0
- package/dist/auth/idp/role-mapping.d.ts.map +1 -0
- package/dist/auth/idp/role-mapping.js +16 -0
- package/dist/auth/idp/role-mapping.js.map +1 -0
- package/dist/auth/idp/saml.d.ts +40 -0
- package/dist/auth/idp/saml.d.ts.map +1 -0
- package/dist/auth/idp/saml.js +117 -0
- package/dist/auth/idp/saml.js.map +1 -0
- package/dist/auth/idp/types.d.ts +23 -0
- package/dist/auth/idp/types.d.ts.map +1 -0
- package/dist/auth/idp/types.js +2 -0
- package/dist/auth/idp/types.js.map +1 -0
- package/dist/fleet/fleet-executor.d.ts +35 -0
- package/dist/fleet/fleet-executor.d.ts.map +1 -0
- package/dist/fleet/fleet-executor.js +228 -0
- package/dist/fleet/fleet-executor.js.map +1 -0
- package/dist/fleet/fleet-store.d.ts +13 -0
- package/dist/fleet/fleet-store.d.ts.map +1 -0
- package/dist/fleet/fleet-store.js +13 -0
- package/dist/fleet/fleet-store.js.map +1 -0
- package/dist/fleet/index.d.ts +5 -0
- package/dist/fleet/index.d.ts.map +1 -0
- package/dist/fleet/index.js +4 -0
- package/dist/fleet/index.js.map +1 -0
- package/dist/fleet/representative-selector.d.ts +15 -0
- package/dist/fleet/representative-selector.d.ts.map +1 -0
- package/dist/fleet/representative-selector.js +71 -0
- package/dist/fleet/representative-selector.js.map +1 -0
- package/dist/graph/graph-executor.d.ts +36 -0
- package/dist/graph/graph-executor.d.ts.map +1 -0
- package/dist/graph/graph-executor.js +348 -0
- package/dist/graph/graph-executor.js.map +1 -0
- package/dist/graph/graph-inference.d.ts +22 -0
- package/dist/graph/graph-inference.d.ts.map +1 -0
- package/dist/graph/graph-inference.js +149 -0
- package/dist/graph/graph-inference.js.map +1 -0
- package/dist/graph/graph-store.d.ts +12 -0
- package/dist/graph/graph-store.d.ts.map +1 -0
- package/dist/graph/graph-store.js +61 -0
- package/dist/graph/graph-store.js.map +1 -0
- package/dist/graph/index.d.ts +5 -0
- package/dist/graph/index.d.ts.map +1 -0
- package/dist/graph/index.js +4 -0
- package/dist/graph/index.js.map +1 -0
- package/dist/index.d.ts +2 -0
- package/dist/index.d.ts.map +1 -0
- package/dist/index.js +837 -0
- package/dist/index.js.map +1 -0
- package/dist/intake/index.d.ts +6 -0
- package/dist/intake/index.d.ts.map +1 -0
- package/dist/intake/index.js +5 -0
- package/dist/intake/index.js.map +1 -0
- package/dist/intake/intake-processor.d.ts +17 -0
- package/dist/intake/intake-processor.d.ts.map +1 -0
- package/dist/intake/intake-processor.js +99 -0
- package/dist/intake/intake-processor.js.map +1 -0
- package/dist/intake/intake-store.d.ts +7 -0
- package/dist/intake/intake-store.d.ts.map +1 -0
- package/dist/intake/intake-store.js +7 -0
- package/dist/intake/intake-store.js.map +1 -0
- package/dist/intake/registry-poller.d.ts +41 -0
- package/dist/intake/registry-poller.d.ts.map +1 -0
- package/dist/intake/registry-poller.js +202 -0
- package/dist/intake/registry-poller.js.map +1 -0
- package/dist/intake/webhook-handlers.d.ts +37 -0
- package/dist/intake/webhook-handlers.d.ts.map +1 -0
- package/dist/intake/webhook-handlers.js +268 -0
- package/dist/intake/webhook-handlers.js.map +1 -0
- package/dist/logger.d.ts +5 -0
- package/dist/logger.d.ts.map +1 -0
- package/dist/logger.js +15 -0
- package/dist/logger.js.map +1 -0
- package/dist/mcp/resources.d.ts +9 -0
- package/dist/mcp/resources.d.ts.map +1 -0
- package/dist/mcp/resources.js +72 -0
- package/dist/mcp/resources.js.map +1 -0
- package/dist/mcp/server.d.ts +15 -0
- package/dist/mcp/server.d.ts.map +1 -0
- package/dist/mcp/server.js +20 -0
- package/dist/mcp/server.js.map +1 -0
- package/dist/mcp/tools.d.ts +9 -0
- package/dist/mcp/tools.d.ts.map +1 -0
- package/dist/mcp/tools.js +88 -0
- package/dist/mcp/tools.js.map +1 -0
- package/dist/middleware/auth.d.ts +29 -0
- package/dist/middleware/auth.d.ts.map +1 -0
- package/dist/middleware/auth.js +76 -0
- package/dist/middleware/auth.js.map +1 -0
- package/dist/middleware/permissions.d.ts +13 -0
- package/dist/middleware/permissions.d.ts.map +1 -0
- package/dist/middleware/permissions.js +32 -0
- package/dist/middleware/permissions.js.map +1 -0
- package/dist/pattern-store.d.ts +104 -0
- package/dist/pattern-store.d.ts.map +1 -0
- package/dist/pattern-store.js +299 -0
- package/dist/pattern-store.js.map +1 -0
- package/package.json +54 -0
- package/src/agent/debrief-retention.ts +44 -0
- package/src/agent/envoy-client.ts +474 -0
- package/src/agent/envoy-registry.ts +384 -0
- package/src/agent/health-checker.ts +70 -0
- package/src/agent/mcp-client-manager.ts +131 -0
- package/src/agent/stale-deployment-detector.ts +79 -0
- package/src/agent/step-runner.ts +124 -0
- package/src/agent/synth-agent.ts +1567 -0
- package/src/api/agent.ts +1075 -0
- package/src/api/api-keys.ts +129 -0
- package/src/api/artifacts.ts +194 -0
- package/src/api/auth.ts +320 -0
- package/src/api/deployments.ts +1347 -0
- package/src/api/environments.ts +97 -0
- package/src/api/envoy-reports.ts +159 -0
- package/src/api/envoys.ts +237 -0
- package/src/api/fleet.ts +510 -0
- package/src/api/graph.ts +516 -0
- package/src/api/health.ts +311 -0
- package/src/api/idp-schemas.ts +19 -0
- package/src/api/idp.ts +735 -0
- package/src/api/intake.ts +537 -0
- package/src/api/partitions.ts +147 -0
- package/src/api/progress-event-store.ts +153 -0
- package/src/api/schemas.ts +376 -0
- package/src/api/security-boundaries.ts +54 -0
- package/src/api/settings.ts +118 -0
- package/src/api/system.ts +704 -0
- package/src/api/telemetry.ts +32 -0
- package/src/api/users.ts +210 -0
- package/src/archive-unpacker.ts +271 -0
- package/src/artifact-analyzer.ts +438 -0
- package/src/auth/idp/index.ts +8 -0
- package/src/auth/idp/ldap.ts +340 -0
- package/src/auth/idp/oidc.ts +117 -0
- package/src/auth/idp/role-mapping.ts +22 -0
- package/src/auth/idp/saml.ts +148 -0
- package/src/auth/idp/types.ts +22 -0
- package/src/fleet/fleet-executor.ts +309 -0
- package/src/fleet/fleet-store.ts +13 -0
- package/src/fleet/index.ts +4 -0
- package/src/fleet/representative-selector.ts +83 -0
- package/src/graph/graph-executor.ts +446 -0
- package/src/graph/graph-inference.ts +184 -0
- package/src/graph/graph-store.ts +75 -0
- package/src/graph/index.ts +4 -0
- package/src/index.ts +916 -0
- package/src/intake/index.ts +5 -0
- package/src/intake/intake-processor.ts +111 -0
- package/src/intake/intake-store.ts +7 -0
- package/src/intake/registry-poller.ts +230 -0
- package/src/intake/webhook-handlers.ts +328 -0
- package/src/logger.ts +19 -0
- package/src/mcp/resources.ts +98 -0
- package/src/mcp/server.ts +34 -0
- package/src/mcp/tools.ts +117 -0
- package/src/middleware/auth.ts +103 -0
- package/src/middleware/permissions.ts +35 -0
- package/src/pattern-store.ts +409 -0
- package/tests/agent-mode.test.ts +536 -0
- package/tests/api-handlers.test.ts +1245 -0
- package/tests/archive-unpacker.test.ts +179 -0
- package/tests/artifact-analyzer.test.ts +240 -0
- package/tests/auth-middleware.test.ts +189 -0
- package/tests/decision-diary.test.ts +957 -0
- package/tests/diary-reader.test.ts +782 -0
- package/tests/envoy-client.test.ts +342 -0
- package/tests/envoy-reports.test.ts +156 -0
- package/tests/mcp-tools.test.ts +213 -0
- package/tests/orchestration.test.ts +536 -0
- package/tests/partition-deletion.test.ts +143 -0
- package/tests/partition-isolation.test.ts +830 -0
- package/tests/pattern-store.test.ts +371 -0
- package/tests/rbac-enforcement.test.ts +409 -0
- package/tests/ssrf-validation.test.ts +56 -0
- package/tests/stale-deployment.test.ts +85 -0
- package/tests/step-runner.test.ts +308 -0
- package/tests/ui-journey.test.ts +330 -0
- package/tsconfig.json +11 -0
- package/vitest.config.ts +27 -0
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"schemas.d.ts","sourceRoot":"","sources":["../../src/api/schemas.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAIxB,eAAO,MAAM,qBAAqB;;;;;;;;;EAOhC,CAAC;AAEH,eAAO,MAAM,qBAAqB;;;;;;EAEhC,CAAC;AAEH,eAAO,MAAM,kBAAkB;;;;;;EAK7B,CAAC;AAIH,eAAO,MAAM,oBAAoB;;;;;;;;;;;;;;;EAK/B,CAAC;AAEH,eAAO,MAAM,mBAAmB;;;;;;;;;EAG9B,CAAC;AAEH,eAAO,MAAM,wBAAwB;;;;;;;;;;;;EAInC,CAAC;AAIH,eAAO,MAAM,2BAA2B;;;;;;;;;;;;;;;;;;;;;EAKtC,CAAC;AAIH,eAAO,MAAM,uBAAuB;;;;;;;;;EAOlC,CAAC;AAEH,eAAO,MAAM,uBAAuB;;;;;;;;;EAOlC,CAAC;AAiFH,QAAA,MAAM,uBAAuB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAY3B,CAAC;AAEH,OAAO,EAAE,uBAAuB,EAAE,CAAC;AAEnC,QAAA,MAAM,qBAAqB;;;;;;;;;;;;;;;EAKzB,CAAC;AAEH,OAAO,EAAE,qBAAqB,EAAE,CAAC;AAEjC,eAAO,MAAM,qBAAqB;;;;;;;;;EAGhC,CAAC;AAEH,eAAO,MAAM,oBAAoB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EA+B/B,CAAC;AAIH,eAAO,MAAM,oBAAoB;;;;;;;;;;;;;;;EAK/B,CAAC;AAIH,eAAO,MAAM,sBAAsB;;;;;;;;;;;;;;;;;;EAMjC,CAAC;AAEH,eAAO,MAAM,uBAAuB;;;;;;;;;EAGlC,CAAC;AAEH,eAAO,MAAM,sBAAsB;;;;;;EAEjC,CAAC;AAEH,eAAO,MAAM,0BAA0B;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EASrC,CAAC;AAEH,eAAO,MAAM,gBAAgB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAuB3B,CAAC;AAEH,eAAO,MAAM,yBAAyB;;;;;;;;;;;;EAIpC,CAAC;AAEH,eAAO,MAAM,sBAAsB;;;;;;EAEjC,CAAC;AAEH,eAAO,MAAM,kBAAkB;;;;;;;;;;;;EAI7B,CAAC;AAIH,eAAO,MAAM,mBAAmB;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;EAiB9B,CAAC;AAIH,eAAO,MAAM,oBAAoB;;;;;;;;;;;;;;;;;;;;;EAO/B,CAAC;AAIH,eAAO,MAAM,kBAAkB;;;;;;;;;EAG7B,CAAC;AAIH,eAAO,MAAM,WAAW;;;;;;;;;EAGtB,CAAC;AAEH,eAAO,MAAM,cAAc;;;;;;;;;;;;EAIzB,CAAC;AAEH,eAAO,MAAM,kBAAkB;;;;;;EAE7B,CAAC;AAEH,eAAO,MAAM,gBAAgB;;;;;;;;;;;;EAI3B,CAAC;AAEH,eAAO,MAAM,gBAAgB;;;;;;;;;;;;EAI3B,CAAC;AAEH,eAAO,MAAM,iBAAiB;;;;;;EAE5B,CAAC;AAEH,eAAO,MAAM,gBAAgB;;;;;;;;;EAG3B,CAAC;AAEH,eAAO,MAAM,gBAAgB;;;;;;;;;EAG3B,CAAC"}
|
|
@@ -0,0 +1,328 @@
|
|
|
1
|
+
import { z } from "zod";
|
|
2
|
+
// --- Partitions ---
|
|
3
|
+
export const CreatePartitionSchema = z.object({
|
|
4
|
+
name: z.string().min(1),
|
|
5
|
+
variables: z.record(z.string().max(10_000, "Variable value must not exceed 10,000 characters"))
|
|
6
|
+
.refine((v) => Object.keys(v).length <= 200, {
|
|
7
|
+
message: "Maximum 200 variables per entity",
|
|
8
|
+
})
|
|
9
|
+
.optional(),
|
|
10
|
+
});
|
|
11
|
+
export const UpdatePartitionSchema = z.object({
|
|
12
|
+
name: z.string().min(1).optional(),
|
|
13
|
+
});
|
|
14
|
+
export const SetVariablesSchema = z.object({
|
|
15
|
+
variables: z.record(z.string().max(10_000, "Variable value must not exceed 10,000 characters"))
|
|
16
|
+
.refine((v) => Object.keys(v).length <= 200, {
|
|
17
|
+
message: "Maximum 200 variables per entity",
|
|
18
|
+
}),
|
|
19
|
+
});
|
|
20
|
+
// --- Artifacts ---
|
|
21
|
+
export const CreateArtifactSchema = z.object({
|
|
22
|
+
name: z.string().min(1),
|
|
23
|
+
type: z.string().min(1),
|
|
24
|
+
source: z.string().optional(),
|
|
25
|
+
metadata: z.record(z.string()).optional(),
|
|
26
|
+
});
|
|
27
|
+
export const AddAnnotationSchema = z.object({
|
|
28
|
+
field: z.string().min(1),
|
|
29
|
+
correction: z.string().min(1),
|
|
30
|
+
});
|
|
31
|
+
export const AddArtifactVersionSchema = z.object({
|
|
32
|
+
version: z.string().min(1),
|
|
33
|
+
source: z.string(),
|
|
34
|
+
metadata: z.record(z.string()).optional(),
|
|
35
|
+
});
|
|
36
|
+
// --- Security Boundaries ---
|
|
37
|
+
export const SetSecurityBoundariesSchema = z.object({
|
|
38
|
+
boundaries: z.array(z.object({
|
|
39
|
+
boundaryType: z.enum(["filesystem", "service", "network", "credential", "execution"]),
|
|
40
|
+
config: z.record(z.unknown()),
|
|
41
|
+
})),
|
|
42
|
+
});
|
|
43
|
+
// --- Environments ---
|
|
44
|
+
export const CreateEnvironmentSchema = z.object({
|
|
45
|
+
name: z.string().min(1),
|
|
46
|
+
variables: z.record(z.string().max(10_000, "Variable value must not exceed 10,000 characters"))
|
|
47
|
+
.refine((v) => Object.keys(v).length <= 200, {
|
|
48
|
+
message: "Maximum 200 variables per entity",
|
|
49
|
+
})
|
|
50
|
+
.optional(),
|
|
51
|
+
});
|
|
52
|
+
export const UpdateEnvironmentSchema = z.object({
|
|
53
|
+
name: z.string().min(1).optional(),
|
|
54
|
+
variables: z.record(z.string().max(10_000, "Variable value must not exceed 10,000 characters"))
|
|
55
|
+
.refine((v) => Object.keys(v).length <= 200, {
|
|
56
|
+
message: "Maximum 200 variables per entity",
|
|
57
|
+
})
|
|
58
|
+
.optional(),
|
|
59
|
+
});
|
|
60
|
+
// --- SSRF Prevention ---
|
|
61
|
+
/**
|
|
62
|
+
* SSRF-safe URL validator. Blocks private/internal IP ranges and
|
|
63
|
+
* restricts to http/https protocols.
|
|
64
|
+
*/
|
|
65
|
+
function isSsrfSafeUrl(url) {
|
|
66
|
+
let parsed;
|
|
67
|
+
try {
|
|
68
|
+
parsed = new URL(url);
|
|
69
|
+
}
|
|
70
|
+
catch {
|
|
71
|
+
return false;
|
|
72
|
+
}
|
|
73
|
+
// Only allow http and https
|
|
74
|
+
if (parsed.protocol !== "http:" && parsed.protocol !== "https:") {
|
|
75
|
+
return false;
|
|
76
|
+
}
|
|
77
|
+
const hostname = parsed.hostname;
|
|
78
|
+
// Block localhost variants
|
|
79
|
+
if (hostname === "localhost" || hostname === "[::1]") {
|
|
80
|
+
return false;
|
|
81
|
+
}
|
|
82
|
+
// Block IPv6 loopback
|
|
83
|
+
if (hostname === "::1") {
|
|
84
|
+
return false;
|
|
85
|
+
}
|
|
86
|
+
// Check IPv4 private ranges
|
|
87
|
+
const ipv4Match = hostname.match(/^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/);
|
|
88
|
+
if (ipv4Match) {
|
|
89
|
+
const [, a, b] = ipv4Match.map(Number);
|
|
90
|
+
// 127.0.0.0/8 — loopback
|
|
91
|
+
if (a === 127)
|
|
92
|
+
return false;
|
|
93
|
+
// 10.0.0.0/8 — private
|
|
94
|
+
if (a === 10)
|
|
95
|
+
return false;
|
|
96
|
+
// 172.16.0.0/12 — private
|
|
97
|
+
if (a === 172 && b >= 16 && b <= 31)
|
|
98
|
+
return false;
|
|
99
|
+
// 192.168.0.0/16 — private
|
|
100
|
+
if (a === 192 && b === 168)
|
|
101
|
+
return false;
|
|
102
|
+
// 169.254.0.0/16 — link-local (AWS metadata)
|
|
103
|
+
if (a === 169 && b === 254)
|
|
104
|
+
return false;
|
|
105
|
+
// 0.0.0.0
|
|
106
|
+
if (a === 0)
|
|
107
|
+
return false;
|
|
108
|
+
}
|
|
109
|
+
return true;
|
|
110
|
+
}
|
|
111
|
+
// --- Settings ---
|
|
112
|
+
const LlmProviderEnum = z.enum(["claude", "openai", "gemini", "grok", "deepseek", "ollama", "custom"]);
|
|
113
|
+
/**
|
|
114
|
+
* LLM base URL validator. Allows localhost/private IPs for local providers
|
|
115
|
+
* like Ollama, but validates URL format.
|
|
116
|
+
*/
|
|
117
|
+
function isValidLlmBaseUrl(url) {
|
|
118
|
+
try {
|
|
119
|
+
const parsed = new URL(url);
|
|
120
|
+
return parsed.protocol === "http:" || parsed.protocol === "https:";
|
|
121
|
+
}
|
|
122
|
+
catch {
|
|
123
|
+
return false;
|
|
124
|
+
}
|
|
125
|
+
}
|
|
126
|
+
const LlmFallbackConfigSchema = z.object({
|
|
127
|
+
provider: LlmProviderEnum,
|
|
128
|
+
apiKeyConfigured: z.boolean().optional(),
|
|
129
|
+
baseUrl: z.string().refine(isValidLlmBaseUrl, {
|
|
130
|
+
message: "Must be a valid http or https URL",
|
|
131
|
+
}).optional(),
|
|
132
|
+
model: z.string().min(1),
|
|
133
|
+
timeoutMs: z.number().int().positive({ message: "Timeout must be a positive number" }),
|
|
134
|
+
});
|
|
135
|
+
const LlmProviderConfigSchema = z.object({
|
|
136
|
+
provider: LlmProviderEnum,
|
|
137
|
+
apiKeyConfigured: z.boolean().optional(),
|
|
138
|
+
apiKey: z.string().optional(),
|
|
139
|
+
baseUrl: z.string().refine(isValidLlmBaseUrl, {
|
|
140
|
+
message: "Must be a valid http or https URL",
|
|
141
|
+
}).optional(),
|
|
142
|
+
reasoningModel: z.string().min(1),
|
|
143
|
+
classificationModel: z.string().min(1),
|
|
144
|
+
timeoutMs: z.number().int().positive({ message: "Timeout must be a positive number" }),
|
|
145
|
+
rateLimitPerMin: z.number().int().positive({ message: "Rate limit must be a positive number" }),
|
|
146
|
+
fallbacks: z.array(LlmFallbackConfigSchema).optional(),
|
|
147
|
+
});
|
|
148
|
+
export { LlmProviderConfigSchema };
|
|
149
|
+
const TaskModelConfigSchema = z.object({
|
|
150
|
+
logClassification: z.string().optional(),
|
|
151
|
+
diagnosticSynthesis: z.string().optional(),
|
|
152
|
+
postmortemGeneration: z.string().optional(),
|
|
153
|
+
queryAnswering: z.string().optional(),
|
|
154
|
+
});
|
|
155
|
+
export { TaskModelConfigSchema };
|
|
156
|
+
export const VerifyTaskModelSchema = z.object({
|
|
157
|
+
task: z.enum(["logClassification", "diagnosticSynthesis", "postmortemGeneration", "queryAnswering"]),
|
|
158
|
+
model: z.string().min(1),
|
|
159
|
+
});
|
|
160
|
+
export const UpdateSettingsSchema = z.object({
|
|
161
|
+
environmentsEnabled: z.boolean().optional(),
|
|
162
|
+
defaultTheme: z.enum(["dark", "light", "system"]).optional(),
|
|
163
|
+
agent: z.object({
|
|
164
|
+
defaultHealthCheckRetries: z.number().int().nonnegative().optional(),
|
|
165
|
+
defaultTimeoutMs: z.number().int().positive().optional(),
|
|
166
|
+
conflictPolicy: z.enum(["permissive", "strict"]).optional(),
|
|
167
|
+
defaultVerificationStrategy: z.enum(["basic", "full", "none"]).optional(),
|
|
168
|
+
llmEntityExposure: z.enum(["names", "none"]).optional(),
|
|
169
|
+
llmOverride: LlmProviderConfigSchema.partial().optional(),
|
|
170
|
+
taskModels: TaskModelConfigSchema.optional(),
|
|
171
|
+
}).optional(),
|
|
172
|
+
envoy: z.object({
|
|
173
|
+
url: z.string().refine(isSsrfSafeUrl, {
|
|
174
|
+
message: "URL must not point to private/internal IP ranges (SSRF prevention)",
|
|
175
|
+
}).optional(),
|
|
176
|
+
timeoutMs: z.number().int().positive().optional(),
|
|
177
|
+
}).optional(),
|
|
178
|
+
coBranding: z.object({
|
|
179
|
+
operatorName: z.string(),
|
|
180
|
+
logoUrl: z.string(),
|
|
181
|
+
accentColor: z.string().optional(),
|
|
182
|
+
}).optional().nullable(),
|
|
183
|
+
mcpServers: z.array(z.object({
|
|
184
|
+
name: z.string(),
|
|
185
|
+
url: z.string().url().refine(isSsrfSafeUrl, {
|
|
186
|
+
message: "URL must not point to private/internal IP ranges (SSRF prevention)",
|
|
187
|
+
}),
|
|
188
|
+
description: z.string().optional(),
|
|
189
|
+
})).optional(),
|
|
190
|
+
llm: LlmProviderConfigSchema.partial().optional(),
|
|
191
|
+
});
|
|
192
|
+
// --- Artifacts (update) ---
|
|
193
|
+
export const UpdateArtifactSchema = z.object({
|
|
194
|
+
name: z.string().min(1).optional(),
|
|
195
|
+
type: z.string().min(1).optional(),
|
|
196
|
+
source: z.string().optional(),
|
|
197
|
+
metadata: z.record(z.string()).optional(),
|
|
198
|
+
});
|
|
199
|
+
// --- Deployments ---
|
|
200
|
+
export const CreateDeploymentSchema = z.object({
|
|
201
|
+
artifactId: z.string().min(1),
|
|
202
|
+
environmentId: z.string().min(1).optional(),
|
|
203
|
+
partitionId: z.string().optional(),
|
|
204
|
+
envoyId: z.string().optional(),
|
|
205
|
+
version: z.string().optional(),
|
|
206
|
+
});
|
|
207
|
+
export const ApproveDeploymentSchema = z.object({
|
|
208
|
+
approvedBy: z.string().min(1),
|
|
209
|
+
modifications: z.string().optional(),
|
|
210
|
+
});
|
|
211
|
+
export const RejectDeploymentSchema = z.object({
|
|
212
|
+
reason: z.string().min(1),
|
|
213
|
+
});
|
|
214
|
+
export const ModifyDeploymentPlanSchema = z.object({
|
|
215
|
+
steps: z.array(z.object({
|
|
216
|
+
description: z.string().min(1),
|
|
217
|
+
action: z.string().min(1),
|
|
218
|
+
target: z.string().min(1),
|
|
219
|
+
reversible: z.boolean(),
|
|
220
|
+
rollbackAction: z.string().optional(),
|
|
221
|
+
})).min(1, "Plan must contain at least one step"),
|
|
222
|
+
reason: z.string().min(1),
|
|
223
|
+
});
|
|
224
|
+
export const SubmitPlanSchema = z.object({
|
|
225
|
+
plan: z.object({
|
|
226
|
+
steps: z.array(z.object({
|
|
227
|
+
description: z.string().min(1),
|
|
228
|
+
action: z.string().min(1),
|
|
229
|
+
target: z.string().min(1),
|
|
230
|
+
reversible: z.boolean(),
|
|
231
|
+
rollbackAction: z.string().optional(),
|
|
232
|
+
})).min(1),
|
|
233
|
+
reasoning: z.string().min(1),
|
|
234
|
+
diffFromCurrent: z.array(z.object({ key: z.string(), from: z.string(), to: z.string() })).optional(),
|
|
235
|
+
diffFromPreviousPlan: z.string().optional(),
|
|
236
|
+
}),
|
|
237
|
+
rollbackPlan: z.object({
|
|
238
|
+
steps: z.array(z.object({
|
|
239
|
+
description: z.string().min(1),
|
|
240
|
+
action: z.string().min(1),
|
|
241
|
+
target: z.string().min(1),
|
|
242
|
+
reversible: z.boolean(),
|
|
243
|
+
rollbackAction: z.string().optional(),
|
|
244
|
+
})),
|
|
245
|
+
reasoning: z.string().min(1),
|
|
246
|
+
}),
|
|
247
|
+
});
|
|
248
|
+
export const DeploymentListQuerySchema = z.object({
|
|
249
|
+
partitionId: z.string().optional(),
|
|
250
|
+
artifactId: z.string().optional(),
|
|
251
|
+
envoyId: z.string().optional(),
|
|
252
|
+
});
|
|
253
|
+
export const ReplanDeploymentSchema = z.object({
|
|
254
|
+
feedback: z.string().min(1),
|
|
255
|
+
});
|
|
256
|
+
export const DebriefQuerySchema = z.object({
|
|
257
|
+
limit: z.coerce.number().int().positive().optional(),
|
|
258
|
+
partitionId: z.string().optional(),
|
|
259
|
+
decisionType: z.string().optional(),
|
|
260
|
+
});
|
|
261
|
+
// --- Progress Events (from envoy callback) ---
|
|
262
|
+
export const ProgressEventSchema = z.object({
|
|
263
|
+
deploymentId: z.string(),
|
|
264
|
+
type: z.enum([
|
|
265
|
+
"step-started",
|
|
266
|
+
"step-completed",
|
|
267
|
+
"step-failed",
|
|
268
|
+
"rollback-started",
|
|
269
|
+
"rollback-completed",
|
|
270
|
+
"deployment-completed",
|
|
271
|
+
]),
|
|
272
|
+
stepIndex: z.number().int().nonnegative(),
|
|
273
|
+
stepDescription: z.string(),
|
|
274
|
+
status: z.enum(["in_progress", "completed", "failed"]),
|
|
275
|
+
output: z.string().optional(),
|
|
276
|
+
error: z.string().optional(),
|
|
277
|
+
timestamp: z.string(),
|
|
278
|
+
overallProgress: z.number().min(0).max(100),
|
|
279
|
+
});
|
|
280
|
+
// --- Telemetry ---
|
|
281
|
+
export const TelemetryQuerySchema = z.object({
|
|
282
|
+
actor: z.string().optional(),
|
|
283
|
+
action: z.string().optional(),
|
|
284
|
+
from: z.string().optional(),
|
|
285
|
+
to: z.string().optional(),
|
|
286
|
+
limit: z.coerce.number().int().positive().max(200).optional(),
|
|
287
|
+
offset: z.coerce.number().int().nonnegative().optional(),
|
|
288
|
+
});
|
|
289
|
+
// --- Agent ---
|
|
290
|
+
export const QueryRequestSchema = z.object({
|
|
291
|
+
query: z.string().min(1),
|
|
292
|
+
conversationId: z.string().optional(),
|
|
293
|
+
});
|
|
294
|
+
// --- Auth ---
|
|
295
|
+
export const LoginSchema = z.object({
|
|
296
|
+
email: z.string().email(),
|
|
297
|
+
password: z.string().min(1),
|
|
298
|
+
});
|
|
299
|
+
export const RegisterSchema = z.object({
|
|
300
|
+
email: z.string().email(),
|
|
301
|
+
name: z.string().min(1),
|
|
302
|
+
password: z.string().min(8),
|
|
303
|
+
});
|
|
304
|
+
export const RefreshTokenSchema = z.object({
|
|
305
|
+
refreshToken: z.string().min(1),
|
|
306
|
+
});
|
|
307
|
+
export const CreateUserSchema = z.object({
|
|
308
|
+
email: z.string().email(),
|
|
309
|
+
name: z.string().min(1),
|
|
310
|
+
password: z.string().min(8),
|
|
311
|
+
});
|
|
312
|
+
export const UpdateUserSchema = z.object({
|
|
313
|
+
email: z.string().email().optional(),
|
|
314
|
+
name: z.string().min(1).optional(),
|
|
315
|
+
password: z.string().min(8).optional(),
|
|
316
|
+
});
|
|
317
|
+
export const AssignRolesSchema = z.object({
|
|
318
|
+
roleIds: z.array(z.string().min(1)),
|
|
319
|
+
});
|
|
320
|
+
export const CreateRoleSchema = z.object({
|
|
321
|
+
name: z.string().min(1),
|
|
322
|
+
permissions: z.array(z.string().min(1)),
|
|
323
|
+
});
|
|
324
|
+
export const UpdateRoleSchema = z.object({
|
|
325
|
+
name: z.string().min(1).optional(),
|
|
326
|
+
permissions: z.array(z.string().min(1)).optional(),
|
|
327
|
+
});
|
|
328
|
+
//# sourceMappingURL=schemas.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"schemas.js","sourceRoot":"","sources":["../../src/api/schemas.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,CAAC,EAAE,MAAM,KAAK,CAAC;AAExB,qBAAqB;AAErB,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC5C,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,MAAM,EAAE,kDAAkD,CAAC,CAAC;SAC5F,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,IAAI,GAAG,EAAE;QAC3C,OAAO,EAAE,kCAAkC;KAC5C,CAAC;SACD,QAAQ,EAAE;CACd,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC5C,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;CACnC,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,CAAC,MAAM,CAAC;IACzC,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,MAAM,EAAE,kDAAkD,CAAC,CAAC;SAC5F,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,IAAI,GAAG,EAAE;QAC3C,OAAO,EAAE,kCAAkC;KAC5C,CAAC;CACL,CAAC,CAAC;AAEH,oBAAoB;AAEpB,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC3C,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7B,QAAQ,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;CAC1C,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC1C,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACxB,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CAC9B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,wBAAwB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC/C,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC1B,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE;IAClB,QAAQ,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;CAC1C,CAAC,CAAC;AAEH,8BAA8B;AAE9B,MAAM,CAAC,MAAM,2BAA2B,GAAG,CAAC,CAAC,MAAM,CAAC;IAClD,UAAU,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC;QAC3B,YAAY,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,YAAY,EAAE,SAAS,EAAE,SAAS,EAAE,YAAY,EAAE,WAAW,CAAC,CAAC;QACrF,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,EAAE,CAAC;KAC9B,CAAC,CAAC;CACJ,CAAC,CAAC;AAEH,uBAAuB;AAEvB,MAAM,CAAC,MAAM,uBAAuB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC9C,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,MAAM,EAAE,kDAAkD,CAAC,CAAC;SAC5F,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,IAAI,GAAG,EAAE;QAC3C,OAAO,EAAE,kCAAkC;KAC5C,CAAC;SACD,QAAQ,EAAE;CACd,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC9C,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAClC,SAAS,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,MAAM,EAAE,kDAAkD,CAAC,CAAC;SAC5F,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,MAAM,IAAI,GAAG,EAAE;QAC3C,OAAO,EAAE,kCAAkC;KAC5C,CAAC;SACD,QAAQ,EAAE;CACd,CAAC,CAAC;AAEH,0BAA0B;AAE1B;;;GAGG;AACH,SAAS,aAAa,CAAC,GAAW;IAChC,IAAI,MAAW,CAAC;IAChB,IAAI,CAAC;QACH,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;IACxB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;IAED,4BAA4B;IAC5B,IAAI,MAAM,CAAC,QAAQ,KAAK,OAAO,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAChE,OAAO,KAAK,CAAC;IACf,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;IAEjC,2BAA2B;IAC3B,IAAI,QAAQ,KAAK,WAAW,IAAI,QAAQ,KAAK,OAAO,EAAE,CAAC;QACrD,OAAO,KAAK,CAAC;IACf,CAAC;IAED,sBAAsB;IACtB,IAAI,QAAQ,KAAK,KAAK,EAAE,CAAC;QACvB,OAAO,KAAK,CAAC;IACf,CAAC;IAED,4BAA4B;IAC5B,MAAM,SAAS,GAAG,QAAQ,CAAC,KAAK,CAAC,8CAA8C,CAAC,CAAC;IACjF,IAAI,SAAS,EAAE,CAAC;QACd,MAAM,CAAC,EAAE,CAAC,EAAE,CAAC,CAAC,GAAG,SAAS,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;QACvC,yBAAyB;QACzB,IAAI,CAAC,KAAK,GAAG;YAAE,OAAO,KAAK,CAAC;QAC5B,uBAAuB;QACvB,IAAI,CAAC,KAAK,EAAE;YAAE,OAAO,KAAK,CAAC;QAC3B,0BAA0B;QAC1B,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE;YAAE,OAAO,KAAK,CAAC;QAClD,2BAA2B;QAC3B,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,GAAG;YAAE,OAAO,KAAK,CAAC;QACzC,6CAA6C;QAC7C,IAAI,CAAC,KAAK,GAAG,IAAI,CAAC,KAAK,GAAG;YAAE,OAAO,KAAK,CAAC;QACzC,UAAU;QACV,IAAI,CAAC,KAAK,CAAC;YAAE,OAAO,KAAK,CAAC;IAC5B,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED,mBAAmB;AAEnB,MAAM,eAAe,GAAG,CAAC,CAAC,IAAI,CAAC,CAAC,QAAQ,EAAE,QAAQ,EAAE,QAAQ,EAAE,MAAM,EAAE,UAAU,EAAE,QAAQ,EAAE,QAAQ,CAAC,CAAC,CAAC;AAEvG;;;GAGG;AACH,SAAS,iBAAiB,CAAC,GAAW;IACpC,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,IAAI,GAAG,CAAC,GAAG,CAAC,CAAC;QAC5B,OAAO,MAAM,CAAC,QAAQ,KAAK,OAAO,IAAI,MAAM,CAAC,QAAQ,KAAK,QAAQ,CAAC;IACrE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC;IACf,CAAC;AACH,CAAC;AAED,MAAM,uBAAuB,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,QAAQ,EAAE,eAAe;IACzB,gBAAgB,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IACxC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,iBAAiB,EAAE;QAC5C,OAAO,EAAE,mCAAmC;KAC7C,CAAC,CAAC,QAAQ,EAAE;IACb,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACxB,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,OAAO,EAAE,mCAAmC,EAAE,CAAC;CACvF,CAAC,CAAC;AAEH,MAAM,uBAAuB,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,QAAQ,EAAE,eAAe;IACzB,gBAAgB,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IACxC,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7B,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,iBAAiB,EAAE;QAC5C,OAAO,EAAE,mCAAmC;KAC7C,CAAC,CAAC,QAAQ,EAAE;IACb,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACjC,mBAAmB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACtC,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,OAAO,EAAE,mCAAmC,EAAE,CAAC;IACtF,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,OAAO,EAAE,sCAAsC,EAAE,CAAC;IAC/F,SAAS,EAAE,CAAC,CAAC,KAAK,CAAC,uBAAuB,CAAC,CAAC,QAAQ,EAAE;CACvD,CAAC,CAAC;AAEH,OAAO,EAAE,uBAAuB,EAAE,CAAC;AAEnC,MAAM,qBAAqB,GAAG,CAAC,CAAC,MAAM,CAAC;IACrC,iBAAiB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACxC,mBAAmB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC1C,oBAAoB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC3C,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACtC,CAAC,CAAC;AAEH,OAAO,EAAE,qBAAqB,EAAE,CAAC;AAEjC,MAAM,CAAC,MAAM,qBAAqB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC5C,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,mBAAmB,EAAE,qBAAqB,EAAE,sBAAsB,EAAE,gBAAgB,CAAC,CAAC;IACpG,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CACzB,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC3C,mBAAmB,EAAE,CAAC,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;IAC3C,YAAY,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,MAAM,EAAE,OAAO,EAAE,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE;IAC5D,KAAK,EAAE,CAAC,CAAC,MAAM,CAAC;QACd,yBAAyB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;QACpE,gBAAgB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;QACxD,cAAc,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAC,CAAC,QAAQ,EAAE;QAC3D,2BAA2B,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,CAAC,CAAC,CAAC,QAAQ,EAAE;QACzE,iBAAiB,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC,QAAQ,EAAE;QACvD,WAAW,EAAE,uBAAuB,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;QACzD,UAAU,EAAE,qBAAqB,CAAC,QAAQ,EAAE;KAC7C,CAAC,CAAC,QAAQ,EAAE;IACb,KAAK,EAAE,CAAC,CAAC,MAAM,CAAC;QACd,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,MAAM,CAAC,aAAa,EAAE;YACpC,OAAO,EAAE,oEAAoE;SAC9E,CAAC,CAAC,QAAQ,EAAE;QACb,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;KAClD,CAAC,CAAC,QAAQ,EAAE;IACb,UAAU,EAAE,CAAC,CAAC,MAAM,CAAC;QACnB,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE;QACxB,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE;QACnB,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;KACnC,CAAC,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IACxB,UAAU,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC;QAC3B,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE;QAChB,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,MAAM,CAAC,aAAa,EAAE;YAC1C,OAAO,EAAE,oEAAoE;SAC9E,CAAC;QACF,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;KACnC,CAAC,CAAC,CAAC,QAAQ,EAAE;IACd,GAAG,EAAE,uBAAuB,CAAC,OAAO,EAAE,CAAC,QAAQ,EAAE;CAClD,CAAC,CAAC;AAEH,6BAA6B;AAE7B,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC3C,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAClC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAClC,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7B,QAAQ,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,QAAQ,EAAE;CAC1C,CAAC,CAAC;AAEH,sBAAsB;AAEtB,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC7C,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC7B,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAC3C,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC9B,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC/B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,uBAAuB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC9C,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IAC7B,aAAa,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACrC,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC7C,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CAC1B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,0BAA0B,GAAG,CAAC,CAAC,MAAM,CAAC;IACjD,KAAK,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC;QACtB,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;QAC9B,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;QACzB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;QACzB,UAAU,EAAE,CAAC,CAAC,OAAO,EAAE;QACvB,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;KACtC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,EAAE,qCAAqC,CAAC;IACjD,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CAC1B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;QACb,KAAK,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC;YACtB,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;YAC9B,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;YACzB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;YACzB,UAAU,EAAE,CAAC,CAAC,OAAO,EAAE;YACvB,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;SACtC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC;QACV,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;QAC5B,eAAe,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC,EAAE,GAAG,EAAE,CAAC,CAAC,MAAM,EAAE,EAAE,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,EAAE,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,EAAE;QACpG,oBAAoB,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;KAC5C,CAAC;IACF,YAAY,EAAE,CAAC,CAAC,MAAM,CAAC;QACrB,KAAK,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,CAAC;YACtB,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;YAC9B,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;YACzB,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;YACzB,UAAU,EAAE,CAAC,CAAC,OAAO,EAAE;YACvB,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;SACtC,CAAC,CAAC;QACH,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;KAC7B,CAAC;CACH,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,yBAAyB,GAAG,CAAC,CAAC,MAAM,CAAC;IAChD,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,UAAU,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACjC,OAAO,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CAC/B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,sBAAsB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC7C,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CAC5B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,CAAC,MAAM,CAAC;IACzC,KAAK,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,QAAQ,EAAE;IACpD,WAAW,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAClC,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACpC,CAAC,CAAC;AAEH,gDAAgD;AAEhD,MAAM,CAAC,MAAM,mBAAmB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC1C,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE;IACxB,IAAI,EAAE,CAAC,CAAC,IAAI,CAAC;QACX,cAAc;QACd,gBAAgB;QAChB,aAAa;QACb,kBAAkB;QAClB,oBAAoB;QACpB,sBAAsB;KACvB,CAAC;IACF,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE;IACzC,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE;IAC3B,MAAM,EAAE,CAAC,CAAC,IAAI,CAAC,CAAC,aAAa,EAAE,WAAW,EAAE,QAAQ,CAAC,CAAC;IACtD,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7B,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5B,SAAS,EAAE,CAAC,CAAC,MAAM,EAAE;IACrB,eAAe,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC;CAC5C,CAAC,CAAC;AAEH,oBAAoB;AAEpB,MAAM,CAAC,MAAM,oBAAoB,GAAG,CAAC,CAAC,MAAM,CAAC;IAC3C,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC5B,MAAM,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC7B,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IAC3B,EAAE,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;IACzB,KAAK,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,QAAQ,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,QAAQ,EAAE;IAC7D,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,MAAM,EAAE,CAAC,GAAG,EAAE,CAAC,WAAW,EAAE,CAAC,QAAQ,EAAE;CACzD,CAAC,CAAC;AAEH,gBAAgB;AAEhB,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,CAAC,MAAM,CAAC;IACzC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACxB,cAAc,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,QAAQ,EAAE;CACtC,CAAC,CAAC;AAEH,eAAe;AAEf,MAAM,CAAC,MAAM,WAAW,GAAG,CAAC,CAAC,MAAM,CAAC;IAClC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE;IACzB,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CAC5B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,cAAc,GAAG,CAAC,CAAC,MAAM,CAAC;IACrC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE;IACzB,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CAC5B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,kBAAkB,GAAG,CAAC,CAAC,MAAM,CAAC;IACzC,YAAY,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CAChC,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE;IACzB,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;CAC5B,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,KAAK,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,KAAK,EAAE,CAAC,QAAQ,EAAE;IACpC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAClC,QAAQ,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;CACvC,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,iBAAiB,GAAG,CAAC,CAAC,MAAM,CAAC;IACxC,OAAO,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;CACpC,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC;IACvB,WAAW,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;CACxC,CAAC,CAAC;AAEH,MAAM,CAAC,MAAM,gBAAgB,GAAG,CAAC,CAAC,MAAM,CAAC;IACvC,IAAI,EAAE,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;IAClC,WAAW,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,QAAQ,EAAE;CACnD,CAAC,CAAC"}
|
|
@@ -0,0 +1,4 @@
|
|
|
1
|
+
import type { FastifyInstance } from "fastify";
|
|
2
|
+
import type { ISecurityBoundaryStore, ITelemetryStore } from "@synth-deploy/core";
|
|
3
|
+
export declare function registerSecurityBoundaryRoutes(app: FastifyInstance, securityBoundaryStore: ISecurityBoundaryStore, telemetry: ITelemetryStore): void;
|
|
4
|
+
//# sourceMappingURL=security-boundaries.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"security-boundaries.d.ts","sourceRoot":"","sources":["../../src/api/security-boundaries.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AAC/C,OAAO,KAAK,EAAE,sBAAsB,EAAE,eAAe,EAAE,MAAM,oBAAoB,CAAC;AAIlF,wBAAgB,8BAA8B,CAC5C,GAAG,EAAE,eAAe,EACpB,qBAAqB,EAAE,sBAAsB,EAC7C,SAAS,EAAE,eAAe,GACzB,IAAI,CA2CN"}
|
|
@@ -0,0 +1,32 @@
|
|
|
1
|
+
import crypto from "node:crypto";
|
|
2
|
+
import { SetSecurityBoundariesSchema } from "./schemas.js";
|
|
3
|
+
import { requirePermission } from "../middleware/permissions.js";
|
|
4
|
+
export function registerSecurityBoundaryRoutes(app, securityBoundaryStore, telemetry) {
|
|
5
|
+
// Get boundaries for envoy
|
|
6
|
+
app.get("/api/envoys/:envoyId/security-boundaries", { preHandler: [requirePermission("envoy.view")] }, async (request) => {
|
|
7
|
+
const boundaries = securityBoundaryStore.get(request.params.envoyId);
|
|
8
|
+
return { boundaries };
|
|
9
|
+
});
|
|
10
|
+
// Set/replace boundaries for envoy
|
|
11
|
+
app.put("/api/envoys/:envoyId/security-boundaries", { preHandler: [requirePermission("envoy.configure")] }, async (request, reply) => {
|
|
12
|
+
const parsed = SetSecurityBoundariesSchema.safeParse(request.body);
|
|
13
|
+
if (!parsed.success) {
|
|
14
|
+
return reply.status(400).send({ error: parsed.error.message });
|
|
15
|
+
}
|
|
16
|
+
const boundaries = parsed.data.boundaries.map((b) => ({
|
|
17
|
+
id: crypto.randomUUID(),
|
|
18
|
+
envoyId: request.params.envoyId,
|
|
19
|
+
boundaryType: b.boundaryType,
|
|
20
|
+
config: b.config,
|
|
21
|
+
}));
|
|
22
|
+
securityBoundaryStore.set(request.params.envoyId, boundaries);
|
|
23
|
+
telemetry.record({ actor: (request.user?.email) ?? "anonymous", action: "security-boundary.updated", target: { type: "envoy", id: request.params.envoyId }, details: { boundaryCount: boundaries.length } });
|
|
24
|
+
return { boundaries };
|
|
25
|
+
});
|
|
26
|
+
// Remove all boundaries for envoy
|
|
27
|
+
app.delete("/api/envoys/:envoyId/security-boundaries", { preHandler: [requirePermission("envoy.configure")] }, async (request, reply) => {
|
|
28
|
+
securityBoundaryStore.delete(request.params.envoyId);
|
|
29
|
+
return reply.status(204).send();
|
|
30
|
+
});
|
|
31
|
+
}
|
|
32
|
+
//# sourceMappingURL=security-boundaries.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"security-boundaries.js","sourceRoot":"","sources":["../../src/api/security-boundaries.ts"],"names":[],"mappings":"AAAA,OAAO,MAAM,MAAM,aAAa,CAAC;AAGjC,OAAO,EAAE,2BAA2B,EAAE,MAAM,cAAc,CAAC;AAC3D,OAAO,EAAE,iBAAiB,EAAE,MAAM,8BAA8B,CAAC;AAEjE,MAAM,UAAU,8BAA8B,CAC5C,GAAoB,EACpB,qBAA6C,EAC7C,SAA0B;IAE1B,2BAA2B;IAC3B,GAAG,CAAC,GAAG,CACL,0CAA0C,EAC1C,EAAE,UAAU,EAAE,CAAC,iBAAiB,CAAC,YAAY,CAAC,CAAC,EAAE,EACjD,KAAK,EAAE,OAAO,EAAE,EAAE;QAChB,MAAM,UAAU,GAAG,qBAAqB,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QACrE,OAAO,EAAE,UAAU,EAAE,CAAC;IACxB,CAAC,CACF,CAAC;IAEF,mCAAmC;IACnC,GAAG,CAAC,GAAG,CACL,0CAA0C,EAC1C,EAAE,UAAU,EAAE,CAAC,iBAAiB,CAAC,iBAAiB,CAAC,CAAC,EAAE,EACtD,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACvB,MAAM,MAAM,GAAG,2BAA2B,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QACnE,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QACjE,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC;YACpD,EAAE,EAAE,MAAM,CAAC,UAAU,EAAE;YACvB,OAAO,EAAE,OAAO,CAAC,MAAM,CAAC,OAAO;YAC/B,YAAY,EAAE,CAAC,CAAC,YAAY;YAC5B,MAAM,EAAE,CAAC,CAAC,MAAM;SACjB,CAAC,CAAC,CAAC;QAEJ,qBAAqB,CAAC,GAAG,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;QAC9D,SAAS,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,CAAC,OAAO,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,WAAW,EAAE,MAAM,EAAE,2BAA2B,EAAE,MAAM,EAAE,EAAE,IAAI,EAAE,OAAO,EAAE,EAAE,EAAE,OAAO,CAAC,MAAM,CAAC,OAAO,EAAE,EAAE,OAAO,EAAE,EAAE,aAAa,EAAE,UAAU,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC;QAC7M,OAAO,EAAE,UAAU,EAAE,CAAC;IACxB,CAAC,CACF,CAAC;IAEF,kCAAkC;IAClC,GAAG,CAAC,MAAM,CACR,0CAA0C,EAC1C,EAAE,UAAU,EAAE,CAAC,iBAAiB,CAAC,iBAAiB,CAAC,CAAC,EAAE,EACtD,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACvB,qBAAqB,CAAC,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;QACrD,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC;IAClC,CAAC,CACF,CAAC;AACJ,CAAC"}
|
|
@@ -0,0 +1,4 @@
|
|
|
1
|
+
import type { FastifyInstance } from "fastify";
|
|
2
|
+
import type { ISettingsStore, ITelemetryStore } from "@synth-deploy/core";
|
|
3
|
+
export declare function registerSettingsRoutes(app: FastifyInstance, settings: ISettingsStore, telemetry: ITelemetryStore): void;
|
|
4
|
+
//# sourceMappingURL=settings.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"settings.d.ts","sourceRoot":"","sources":["../../src/api/settings.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AAC/C,OAAO,KAAK,EAAE,cAAc,EAAE,eAAe,EAAkC,MAAM,oBAAoB,CAAC;AAoD1G,wBAAgB,sBAAsB,CACpC,GAAG,EAAE,eAAe,EACpB,QAAQ,EAAE,cAAc,EACxB,SAAS,EAAE,eAAe,GACzB,IAAI,CA0DN"}
|
|
@@ -0,0 +1,99 @@
|
|
|
1
|
+
import { UpdateSettingsSchema } from "./schemas.js";
|
|
2
|
+
import { requirePermission } from "../middleware/permissions.js";
|
|
3
|
+
import { requireEnterprise, getEdition, getLicenseInfo, getMaxEnvoys, isPartnership, ENTERPRISE_FEATURES } from "@synth-deploy/core";
|
|
4
|
+
import { invalidateLlmHealthCache } from "./health.js";
|
|
5
|
+
/**
|
|
6
|
+
* Strips API key from LLM settings before returning to the frontend.
|
|
7
|
+
* The apiKeyConfigured field tells the UI whether a key is set without exposing it.
|
|
8
|
+
*/
|
|
9
|
+
function sanitizeLlmSettings(settings) {
|
|
10
|
+
const sanitized = structuredClone(settings);
|
|
11
|
+
if (sanitized.llm) {
|
|
12
|
+
// Remove any raw apiKey that leaked into the config
|
|
13
|
+
// eslint-disable-next-line @typescript-eslint/no-explicit-any
|
|
14
|
+
delete sanitized.llm["apiKey"];
|
|
15
|
+
// Ensure apiKeyConfigured reflects whether an env var key is set
|
|
16
|
+
sanitized.llm.apiKeyConfigured =
|
|
17
|
+
typeof process.env.SYNTH_LLM_API_KEY === "string" &&
|
|
18
|
+
process.env.SYNTH_LLM_API_KEY.length > 0;
|
|
19
|
+
if (sanitized.llm.fallbacks) {
|
|
20
|
+
for (const fb of sanitized.llm.fallbacks) {
|
|
21
|
+
// eslint-disable-next-line @typescript-eslint/no-explicit-any
|
|
22
|
+
delete fb["apiKey"];
|
|
23
|
+
fb.apiKeyConfigured =
|
|
24
|
+
typeof process.env.SYNTH_LLM_API_KEY === "string" &&
|
|
25
|
+
process.env.SYNTH_LLM_API_KEY.length > 0;
|
|
26
|
+
}
|
|
27
|
+
}
|
|
28
|
+
}
|
|
29
|
+
return sanitized;
|
|
30
|
+
}
|
|
31
|
+
/**
|
|
32
|
+
* Strips API key from incoming LLM provider config before persisting.
|
|
33
|
+
* API keys are stored in environment variables only — never in the settings store.
|
|
34
|
+
*/
|
|
35
|
+
function stripApiKeyFromConfig(llmConfig) {
|
|
36
|
+
const { apiKey: _apiKey, ...rest } = llmConfig;
|
|
37
|
+
return {
|
|
38
|
+
...rest,
|
|
39
|
+
apiKeyConfigured: typeof process.env.SYNTH_LLM_API_KEY === "string" &&
|
|
40
|
+
process.env.SYNTH_LLM_API_KEY.length > 0,
|
|
41
|
+
};
|
|
42
|
+
}
|
|
43
|
+
export function registerSettingsRoutes(app, settings, telemetry) {
|
|
44
|
+
// Get all settings
|
|
45
|
+
app.get("/api/settings", { preHandler: [requirePermission("settings.manage")] }, async () => {
|
|
46
|
+
return { settings: sanitizeLlmSettings(settings.get()) };
|
|
47
|
+
});
|
|
48
|
+
// Update settings (partial merge)
|
|
49
|
+
app.put("/api/settings", { preHandler: [requirePermission("settings.manage")] }, async (request, reply) => {
|
|
50
|
+
const parsed = UpdateSettingsSchema.safeParse(request.body);
|
|
51
|
+
if (!parsed.success) {
|
|
52
|
+
const msg = parsed.error.issues.map(i => `${i.path.join(".")}: ${i.message}`).join("; ");
|
|
53
|
+
return reply.status(400).send({ error: msg || "Invalid input" });
|
|
54
|
+
}
|
|
55
|
+
// Gate enterprise-only settings
|
|
56
|
+
const data = parsed.data;
|
|
57
|
+
if (data.coBranding)
|
|
58
|
+
requireEnterprise("co-branding");
|
|
59
|
+
if (data.mcpServers && data.mcpServers.length > 0)
|
|
60
|
+
requireEnterprise("mcp-servers");
|
|
61
|
+
// Persist API key encrypted in DB and apply to process env, then strip before storing settings
|
|
62
|
+
if (data.llm) {
|
|
63
|
+
if (data.llm.apiKey && data.llm.apiKey.length > 0) {
|
|
64
|
+
settings.setSecret("llm_api_key", data.llm.apiKey);
|
|
65
|
+
process.env.SYNTH_LLM_API_KEY = data.llm.apiKey;
|
|
66
|
+
invalidateLlmHealthCache();
|
|
67
|
+
}
|
|
68
|
+
data.llm = stripApiKeyFromConfig(data.llm);
|
|
69
|
+
}
|
|
70
|
+
const updated = settings.update(data);
|
|
71
|
+
telemetry.record({ actor: (request.user?.email) ?? "anonymous", action: "settings.updated", target: { type: "settings", id: "app" }, details: { fields: Object.keys(parsed.data) } });
|
|
72
|
+
return { settings: sanitizeLlmSettings(updated) };
|
|
73
|
+
});
|
|
74
|
+
// Edition info — public (no auth required), used by UI to render edition badge and gate features
|
|
75
|
+
app.get("/api/edition", async () => {
|
|
76
|
+
const edition = getEdition();
|
|
77
|
+
const license = getLicenseInfo();
|
|
78
|
+
return {
|
|
79
|
+
edition,
|
|
80
|
+
maxEnvoys: getMaxEnvoys(),
|
|
81
|
+
partnership: isPartnership(),
|
|
82
|
+
license,
|
|
83
|
+
features: ENTERPRISE_FEATURES,
|
|
84
|
+
};
|
|
85
|
+
});
|
|
86
|
+
// Read-only command info
|
|
87
|
+
app.get("/api/settings/command-info", { preHandler: [requirePermission("settings.manage")] }, async () => {
|
|
88
|
+
return {
|
|
89
|
+
info: {
|
|
90
|
+
version: "0.1.0",
|
|
91
|
+
host: process.env.HOST ?? "0.0.0.0",
|
|
92
|
+
port: parseInt(process.env.PORT ?? "9410", 10),
|
|
93
|
+
startedAt: commandStartTime,
|
|
94
|
+
},
|
|
95
|
+
};
|
|
96
|
+
});
|
|
97
|
+
}
|
|
98
|
+
const commandStartTime = new Date().toISOString();
|
|
99
|
+
//# sourceMappingURL=settings.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"settings.js","sourceRoot":"","sources":["../../src/api/settings.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,oBAAoB,EAAE,MAAM,cAAc,CAAC;AACpD,OAAO,EAAE,iBAAiB,EAAE,MAAM,8BAA8B,CAAC;AACjE,OAAO,EAAE,iBAAiB,EAAE,UAAU,EAAE,cAAc,EAAE,YAAY,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,oBAAoB,CAAC;AACrI,OAAO,EAAE,wBAAwB,EAAE,MAAM,aAAa,CAAC;AAEvD;;;GAGG;AACH,SAAS,mBAAmB,CAAC,QAAqB;IAChD,MAAM,SAAS,GAAG,eAAe,CAAC,QAAQ,CAAC,CAAC;IAE5C,IAAI,SAAS,CAAC,GAAG,EAAE,CAAC;QAClB,oDAAoD;QACpD,8DAA8D;QAC9D,OAAQ,SAAS,CAAC,GAAW,CAAC,QAAQ,CAAC,CAAC;QACxC,iEAAiE;QACjE,SAAS,CAAC,GAAG,CAAC,gBAAgB;YAC5B,OAAO,OAAO,CAAC,GAAG,CAAC,iBAAiB,KAAK,QAAQ;gBACjD,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,MAAM,GAAG,CAAC,CAAC;QAE3C,IAAI,SAAS,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC;YAC5B,KAAK,MAAM,EAAE,IAAI,SAAS,CAAC,GAAG,CAAC,SAAS,EAAE,CAAC;gBACzC,8DAA8D;gBAC9D,OAAQ,EAAU,CAAC,QAAQ,CAAC,CAAC;gBAC7B,EAAE,CAAC,gBAAgB;oBACjB,OAAO,OAAO,CAAC,GAAG,CAAC,iBAAiB,KAAK,QAAQ;wBACjD,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,MAAM,GAAG,CAAC,CAAC;YAC7C,CAAC;QACH,CAAC;IACH,CAAC;IAED,OAAO,SAAS,CAAC;AACnB,CAAC;AAED;;;GAGG;AACH,SAAS,qBAAqB,CAC5B,SAAkD;IAElD,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,GAAG,IAAI,EAAE,GAAG,SAAS,CAAC;IAC/C,OAAO;QACL,GAAG,IAAI;QACP,gBAAgB,EACd,OAAO,OAAO,CAAC,GAAG,CAAC,iBAAiB,KAAK,QAAQ;YACjD,OAAO,CAAC,GAAG,CAAC,iBAAiB,CAAC,MAAM,GAAG,CAAC;KAC3C,CAAC;AACJ,CAAC;AAED,MAAM,UAAU,sBAAsB,CACpC,GAAoB,EACpB,QAAwB,EACxB,SAA0B;IAE1B,mBAAmB;IACnB,GAAG,CAAC,GAAG,CAAC,eAAe,EAAE,EAAE,UAAU,EAAE,CAAC,iBAAiB,CAAC,iBAAiB,CAAC,CAAC,EAAE,EAAE,KAAK,IAAI,EAAE;QAC1F,OAAO,EAAE,QAAQ,EAAE,mBAAmB,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAC,EAAE,CAAC;IAC3D,CAAC,CAAC,CAAC;IAEH,kCAAkC;IAClC,GAAG,CAAC,GAAG,CAAC,eAAe,EAAE,EAAE,UAAU,EAAE,CAAC,iBAAiB,CAAC,iBAAiB,CAAC,CAAC,EAAE,EAAE,KAAK,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE;QACxG,MAAM,MAAM,GAAG,oBAAoB,CAAC,SAAS,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;QAC5D,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;YACpB,MAAM,GAAG,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACzF,OAAO,KAAK,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,GAAG,IAAI,eAAe,EAAE,CAAC,CAAC;QACnE,CAAC;QAED,gCAAgC;QAChC,MAAM,IAAI,GAAG,MAAM,CAAC,IAAgF,CAAC;QACrG,IAAI,IAAI,CAAC,UAAU;YAAE,iBAAiB,CAAC,aAAa,CAAC,CAAC;QACtD,IAAI,IAAI,CAAC,UAAU,IAAI,IAAI,CAAC,UAAU,CAAC,MAAM,GAAG,CAAC;YAAE,iBAAiB,CAAC,aAAa,CAAC,CAAC;QAEpF,+FAA+F;QAC/F,IAAI,IAAI,CAAC,GAAG,EAAE,CAAC;YACb,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,IAAI,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBAClD,QAAQ,CAAC,SAAS,CAAC,aAAa,EAAE,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC;gBACnD,OAAO,CAAC,GAAG,CAAC,iBAAiB,GAAG,IAAI,CAAC,GAAG,CAAC,MAAM,CAAC;gBAChD,wBAAwB,EAAE,CAAC;YAC7B,CAAC;YACD,IAAI,CAAC,GAAG,GAAG,qBAAqB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAC7C,CAAC;QAED,MAAM,OAAO,GAAG,QAAQ,CAAC,MAAM,CAAC,IAA4B,CAAC,CAAC;QAC9D,SAAS,CAAC,MAAM,CAAC,EAAE,KAAK,EAAE,CAAC,OAAO,CAAC,IAAI,EAAE,KAAK,CAAC,IAAI,WAAW,EAAE,MAAM,EAAE,kBAAkB,EAAE,MAAM,EAAE,EAAE,IAAI,EAAE,UAAU,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,EAAE,MAAM,EAAE,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE,EAAE,CAAC,CAAC;QACtL,OAAO,EAAE,QAAQ,EAAE,mBAAmB,CAAC,OAAO,CAAC,EAAE,CAAC;IACpD,CAAC,CAAC,CAAC;IAEH,iGAAiG;IACjG,GAAG,CAAC,GAAG,CAAC,cAAc,EAAE,KAAK,IAAI,EAAE;QACjC,MAAM,OAAO,GAAG,UAAU,EAAE,CAAC;QAC7B,MAAM,OAAO,GAAG,cAAc,EAAE,CAAC;QACjC,OAAO;YACL,OAAO;YACP,SAAS,EAAE,YAAY,EAAE;YACzB,WAAW,EAAE,aAAa,EAAE;YAC5B,OAAO;YACP,QAAQ,EAAE,mBAAmB;SAC9B,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,yBAAyB;IACzB,GAAG,CAAC,GAAG,CAAC,4BAA4B,EAAE,EAAE,UAAU,EAAE,CAAC,iBAAiB,CAAC,iBAAiB,CAAC,CAAC,EAAE,EAAE,KAAK,IAAI,EAAE;QACvG,OAAO;YACL,IAAI,EAAE;gBACJ,OAAO,EAAE,OAAO;gBAChB,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,SAAS;gBACnC,IAAI,EAAE,QAAQ,CAAC,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,MAAM,EAAE,EAAE,CAAC;gBAC9C,SAAS,EAAE,gBAAgB;aAC5B;SACF,CAAC;IACJ,CAAC,CAAC,CAAC;AACL,CAAC;AAED,MAAM,gBAAgB,GAAG,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE,CAAC"}
|
|
@@ -0,0 +1,75 @@
|
|
|
1
|
+
import type { FastifyInstance } from "fastify";
|
|
2
|
+
import type { IDeploymentStore, IArtifactStore, IEnvironmentStore, IPartitionStore } from "@synth-deploy/core";
|
|
3
|
+
import type { EnvoyRegistry } from "../agent/envoy-registry.js";
|
|
4
|
+
export interface SignalEvidence {
|
|
5
|
+
label: string;
|
|
6
|
+
value: string;
|
|
7
|
+
status: "healthy" | "warning" | "info";
|
|
8
|
+
}
|
|
9
|
+
export interface SignalRecommendation {
|
|
10
|
+
action: string;
|
|
11
|
+
detail: string;
|
|
12
|
+
priority: "high" | "medium" | "low";
|
|
13
|
+
}
|
|
14
|
+
export interface SignalInvestigation {
|
|
15
|
+
title: string;
|
|
16
|
+
entity: string;
|
|
17
|
+
entityType: string;
|
|
18
|
+
status: string;
|
|
19
|
+
detectedAt: string;
|
|
20
|
+
synthAssessment: {
|
|
21
|
+
confidence: number;
|
|
22
|
+
summary: string;
|
|
23
|
+
};
|
|
24
|
+
evidence: SignalEvidence[];
|
|
25
|
+
recommendations: SignalRecommendation[];
|
|
26
|
+
timeline: Array<{
|
|
27
|
+
time: string;
|
|
28
|
+
event: string;
|
|
29
|
+
}>;
|
|
30
|
+
relatedDeployments: Array<{
|
|
31
|
+
artifact: string;
|
|
32
|
+
version: string;
|
|
33
|
+
target: string;
|
|
34
|
+
status: string;
|
|
35
|
+
time: string;
|
|
36
|
+
}>;
|
|
37
|
+
driftConflicts?: Array<{
|
|
38
|
+
variable: string;
|
|
39
|
+
partitionValue: string;
|
|
40
|
+
violatedRule: string;
|
|
41
|
+
affectedEnvoy: string;
|
|
42
|
+
}>;
|
|
43
|
+
}
|
|
44
|
+
export interface AlertSignal {
|
|
45
|
+
type: "envoy-health" | "deployment-failure-pattern" | "drift" | "new-version-failure-context" | "cross-environment-inconsistency" | "security-boundary-violation" | "dependency-conflict" | "stale-deployment" | "envoy-knowledge-gap" | "scheduled-maintenance-conflict";
|
|
46
|
+
severity: "critical" | "warning" | "info";
|
|
47
|
+
title: string;
|
|
48
|
+
detail: string;
|
|
49
|
+
relatedEntity?: {
|
|
50
|
+
type: string;
|
|
51
|
+
id: string;
|
|
52
|
+
name: string;
|
|
53
|
+
};
|
|
54
|
+
investigation: SignalInvestigation;
|
|
55
|
+
}
|
|
56
|
+
export interface SystemStateResponse {
|
|
57
|
+
state: "empty" | "normal" | "alert";
|
|
58
|
+
signals: AlertSignal[];
|
|
59
|
+
stats: {
|
|
60
|
+
artifacts: number;
|
|
61
|
+
envoys: number;
|
|
62
|
+
deployments: {
|
|
63
|
+
total: number;
|
|
64
|
+
active: number;
|
|
65
|
+
failed24h: number;
|
|
66
|
+
};
|
|
67
|
+
environments: number;
|
|
68
|
+
};
|
|
69
|
+
assessment: {
|
|
70
|
+
headline: string;
|
|
71
|
+
detail: string;
|
|
72
|
+
};
|
|
73
|
+
}
|
|
74
|
+
export declare function registerSystemRoutes(app: FastifyInstance, deployments: IDeploymentStore, artifacts: IArtifactStore, environments: IEnvironmentStore, partitions: IPartitionStore, envoyRegistry: EnvoyRegistry): void;
|
|
75
|
+
//# sourceMappingURL=system.d.ts.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"system.d.ts","sourceRoot":"","sources":["../../src/api/system.ts"],"names":[],"mappings":"AAAA,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,SAAS,CAAC;AAC/C,OAAO,KAAK,EACV,gBAAgB,EAChB,cAAc,EACd,iBAAiB,EACjB,eAAe,EAGhB,MAAM,oBAAoB,CAAC;AAC5B,OAAO,KAAK,EAAE,aAAa,EAAE,MAAM,4BAA4B,CAAC;AAOhE,MAAM,WAAW,cAAc;IAC7B,KAAK,EAAE,MAAM,CAAC;IACd,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,SAAS,GAAG,SAAS,GAAG,MAAM,CAAC;CACxC;AAED,MAAM,WAAW,oBAAoB;IACnC,MAAM,EAAE,MAAM,CAAC;IACf,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,GAAG,QAAQ,GAAG,KAAK,CAAC;CACrC;AAED,MAAM,WAAW,mBAAmB;IAClC,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;IACnB,eAAe,EAAE;QACf,UAAU,EAAE,MAAM,CAAC;QACnB,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;IACF,QAAQ,EAAE,cAAc,EAAE,CAAC;IAC3B,eAAe,EAAE,oBAAoB,EAAE,CAAC;IACxC,QAAQ,EAAE,KAAK,CAAC;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,KAAK,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC;IACjD,kBAAkB,EAAE,KAAK,CAAC;QACxB,QAAQ,EAAE,MAAM,CAAC;QACjB,OAAO,EAAE,MAAM,CAAC;QAChB,MAAM,EAAE,MAAM,CAAC;QACf,MAAM,EAAE,MAAM,CAAC;QACf,IAAI,EAAE,MAAM,CAAC;KACd,CAAC,CAAC;IACH,cAAc,CAAC,EAAE,KAAK,CAAC;QACrB,QAAQ,EAAE,MAAM,CAAC;QACjB,cAAc,EAAE,MAAM,CAAC;QACvB,YAAY,EAAE,MAAM,CAAC;QACrB,aAAa,EAAE,MAAM,CAAC;KACvB,CAAC,CAAC;CACJ;AAED,MAAM,WAAW,WAAW;IAC1B,IAAI,EACA,cAAc,GACd,4BAA4B,GAC5B,OAAO,GACP,6BAA6B,GAC7B,iCAAiC,GACjC,6BAA6B,GAC7B,qBAAqB,GACrB,kBAAkB,GAClB,qBAAqB,GACrB,gCAAgC,CAAC;IACrC,QAAQ,EAAE,UAAU,GAAG,SAAS,GAAG,MAAM,CAAC;IAC1C,KAAK,EAAE,MAAM,CAAC;IACd,MAAM,EAAE,MAAM,CAAC;IACf,aAAa,CAAC,EAAE;QAAE,IAAI,EAAE,MAAM,CAAC;QAAC,EAAE,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAA;KAAE,CAAC;IAC3D,aAAa,EAAE,mBAAmB,CAAC;CACpC;AAED,MAAM,WAAW,mBAAmB;IAClC,KAAK,EAAE,OAAO,GAAG,QAAQ,GAAG,OAAO,CAAC;IACpC,OAAO,EAAE,WAAW,EAAE,CAAC;IACvB,KAAK,EAAE;QACL,SAAS,EAAE,MAAM,CAAC;QAClB,MAAM,EAAE,MAAM,CAAC;QACf,WAAW,EAAE;YAAE,KAAK,EAAE,MAAM,CAAC;YAAC,MAAM,EAAE,MAAM,CAAC;YAAC,SAAS,EAAE,MAAM,CAAA;SAAE,CAAC;QAClE,YAAY,EAAE,MAAM,CAAC;KACtB,CAAC;IACF,UAAU,EAAE;QACV,QAAQ,EAAE,MAAM,CAAC;QACjB,MAAM,EAAE,MAAM,CAAC;KAChB,CAAC;CACH;AAyDD,wBAAgB,oBAAoB,CAClC,GAAG,EAAE,eAAe,EACpB,WAAW,EAAE,gBAAgB,EAC7B,SAAS,EAAE,cAAc,EACzB,YAAY,EAAE,iBAAiB,EAC/B,UAAU,EAAE,eAAe,EAC3B,aAAa,EAAE,aAAa,GAC3B,IAAI,CAuiBN"}
|