@tachles/starter 1.1.0 → 1.1.1

package/dist/utils/security-config-guide.d.ts

@@ -0,0 +1,93 @@
+/**
+ * Security Configuration Guide
+ *
+ * This file documents the security configuration options.
+ * These are the default values and should not be modified unless you understand the implications.
+ *
+ * To customize security settings, you would need to fork the project and modify
+ * src/utils/security.ts
+ */
+export interface SecurityConfigOptions {
+    /**
+     * Maximum number of packages that can be installed in one operation
+     * Default: 50
+     *
+     * Higher values may allow DoS through excessive installations.
+     * Lower values may break legitimate large templates.
+     */
+    MAX_PACKAGES_PER_OPERATION: number;
+    /**
+     * Maximum number of commands that can be executed in one recipe
+     * Default: 20
+     *
+     * Higher values may allow command flooding.
+     * Lower values may break complex setup templates.
+     */
+    MAX_COMMANDS_PER_RECIPE: number;
+    /**
+     * Timeout for individual commands in milliseconds
+     * Default: 1800000 (30 minutes)
+     *
+     * Higher values may allow indefinitely hanging processes.
+     * Lower values may break legitimate long-running operations (database migrations, etc.)
+     */
+    COMMAND_TIMEOUT_MS: number;
+    /**
+     * Maximum package name length (npm standard)
+     * Default: 214
+     *
+     * Should match npm's limit unless you have a specific reason to change it.
+     */
+    MAX_PACKAGE_NAME_LENGTH: number;
+    /**
+     * Maximum command string length
+     * Default: 1000
+     *
+     * Extremely long commands are suspicious and may indicate abuse.
+     */
+    MAX_COMMAND_LENGTH: number;
+}
+/**
+ * Rate Limiter Configuration
+ */
+export interface RateLimiterOptions {
+    /**
+     * Time window in milliseconds
+     * Default: 60000 (1 minute)
+     */
+    windowMs: number;
+    /**
+     * Maximum requests per window
+     * Default: 20
+     */
+    maxRequests: number;
+}
+/**
+ * Example: Strict Security Profile
+ *
+ * For high-security environments, use these settings:
+ */
+export declare const STRICT_SECURITY: SecurityConfigOptions;
+/**
+ * Example: Permissive Security Profile
+ *
+ * For testing/development, you might use:
+ * WARNING: Do not use in production!
+ */
+export declare const PERMISSIVE_SECURITY: SecurityConfigOptions;
+/**
+ * Default Security Profile (Recommended)
+ */
+export declare const DEFAULT_SECURITY: SecurityConfigOptions;
+/**
+ * Environment-based Configuration
+ *
+ * You can override security settings via environment variables:
+ *
+ * TACHLES_MAX_PACKAGES=30
+ * TACHLES_MAX_COMMANDS=15
+ * TACHLES_COMMAND_TIMEOUT=600000
+ *
+ * Note: This feature is not currently implemented but could be added.
+ */
+//# sourceMappingURL=security-config-guide.d.ts.map

package/dist/utils/security-config-guide.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-config-guide.d.ts","sourceRoot":"","sources":["../../src/utils/security-config-guide.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,MAAM,WAAW,qBAAqB;IACpC;;;;;;OAMG;IACH,0BAA0B,EAAE,MAAM,CAAC;IAEnC;;;;;;OAMG;IACH,uBAAuB,EAAE,MAAM,CAAC;IAEhC;;;;;;OAMG;IACH,kBAAkB,EAAE,MAAM,CAAC;IAE3B;;;;;OAKG;IACH,uBAAuB,EAAE,MAAM,CAAC;IAEhC;;;;;OAKG;IACH,kBAAkB,EAAE,MAAM,CAAC;CAC5B;AAED;;GAEG;AACH,MAAM,WAAW,kBAAkB;IACjC;;;OAGG;IACH,QAAQ,EAAE,MAAM,CAAC;IAEjB;;;OAGG;IACH,WAAW,EAAE,MAAM,CAAC;CACrB;AAED;;;;GAIG;AACH,eAAO,MAAM,eAAe,EAAE,qBAM7B,CAAC;AAEF;;;;;GAKG;AACH,eAAO,MAAM,mBAAmB,EAAE,qBAMjC,CAAC;AAEF;;GAEG;AACH,eAAO,MAAM,gBAAgB,EAAE,qBAM9B,CAAC;AAEF;;;;;;;;;;GAUG"}

package/dist/utils/security-config-guide.js

@@ -0,0 +1,56 @@
+/**
+ * Security Configuration Guide
+ *
+ * This file documents the security configuration options.
+ * These are the default values and should not be modified unless you understand the implications.
+ *
+ * To customize security settings, you would need to fork the project and modify
+ * src/utils/security.ts
+ */
+/**
+ * Example: Strict Security Profile
+ *
+ * For high-security environments, use these settings:
+ */
+export const STRICT_SECURITY = {
+    MAX_PACKAGES_PER_OPERATION: 20,
+    MAX_COMMANDS_PER_RECIPE: 10,
+    COMMAND_TIMEOUT_MS: 10 * 60 * 1000, // 10 minutes
+    MAX_PACKAGE_NAME_LENGTH: 214,
+    MAX_COMMAND_LENGTH: 500,
+};
+/**
+ * Example: Permissive Security Profile
+ *
+ * For testing/development, you might use:
+ * WARNING: Do not use in production!
+ */
+export const PERMISSIVE_SECURITY = {
+    MAX_PACKAGES_PER_OPERATION: 100,
+    MAX_COMMANDS_PER_RECIPE: 50,
+    COMMAND_TIMEOUT_MS: 60 * 60 * 1000, // 60 minutes
+    MAX_PACKAGE_NAME_LENGTH: 214,
+    MAX_COMMAND_LENGTH: 2000,
+};
+/**
+ * Default Security Profile (Recommended)
+ */
+export const DEFAULT_SECURITY = {
+    MAX_PACKAGES_PER_OPERATION: 50,
+    MAX_COMMANDS_PER_RECIPE: 20,
+    COMMAND_TIMEOUT_MS: 30 * 60 * 1000, // 30 minutes
+    MAX_PACKAGE_NAME_LENGTH: 214,
+    MAX_COMMAND_LENGTH: 1000,
+};
+/**
+ * Environment-based Configuration
+ *
+ * You can override security settings via environment variables:
+ *
+ * TACHLES_MAX_PACKAGES=30
+ * TACHLES_MAX_COMMANDS=15
+ * TACHLES_COMMAND_TIMEOUT=600000
+ *
+ * Note: This feature is not currently implemented but could be added.
+ */
+//# sourceMappingURL=security-config-guide.js.map

package/dist/utils/security-config-guide.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security-config-guide.js","sourceRoot":"","sources":["../../src/utils/security-config-guide.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAgEH;;;;GAIG;AACH,MAAM,CAAC,MAAM,eAAe,GAA0B;IACpD,0BAA0B,EAAE,EAAE;IAC9B,uBAAuB,EAAE,EAAE;IAC3B,kBAAkB,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,aAAa;IACjD,uBAAuB,EAAE,GAAG;IAC5B,kBAAkB,EAAE,GAAG;CACxB,CAAC;AAEF;;;;;GAKG;AACH,MAAM,CAAC,MAAM,mBAAmB,GAA0B;IACxD,0BAA0B,EAAE,GAAG;IAC/B,uBAAuB,EAAE,EAAE;IAC3B,kBAAkB,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,aAAa;IACjD,uBAAuB,EAAE,GAAG;IAC5B,kBAAkB,EAAE,IAAI;CACzB,CAAC;AAEF;;GAEG;AACH,MAAM,CAAC,MAAM,gBAAgB,GAA0B;IACrD,0BAA0B,EAAE,EAAE;IAC9B,uBAAuB,EAAE,EAAE;IAC3B,kBAAkB,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI,EAAE,aAAa;IACjD,uBAAuB,EAAE,GAAG;IAC5B,kBAAkB,EAAE,IAAI;CACzB,CAAC;AAEF;;;;;;;;;;GAUG"}

package/dist/utils/security.d.ts

@@ -0,0 +1,83 @@
+import { Package, Command } from '../api/types.js';
+export declare const SECURITY_CONFIG: {
+    MAX_PACKAGES_PER_OPERATION: number;
+    MAX_COMMANDS_PER_RECIPE: number;
+    COMMAND_TIMEOUT_MS: number;
+    BLOCKED_PACKAGE_PATTERNS: RegExp[];
+    BLOCKED_COMMAND_PATTERNS: RegExp[];
+    ALLOWED_PACKAGE_SCOPES: string[];
+    MAX_PACKAGE_NAME_LENGTH: number;
+    MAX_COMMAND_LENGTH: number;
+};
+export declare class SecurityValidator {
+    /**
+     * Validate a package name for security concerns
+     */
+    static validatePackage(pkg: Package): {
+        valid: boolean;
+        reason?: string;
+    };
+    /**
+     * Validate a command for security concerns
+     */
+    static validateCommand(cmd: Command): {
+        valid: boolean;
+        reason?: string;
+    };
+    /**
+     * Validate batch of packages
+     */
+    static validatePackageBatch(packages: Package[]): {
+        valid: boolean;
+        errors: string[];
+    };
+    /**
+     * Validate batch of commands
+     */
+    static validateCommandBatch(commands: Command[]): {
+        valid: boolean;
+        errors: string[];
+    };
+    /**
+     * Check if a version string is valid
+     */
+    private static isValidVersion;
+    /**
+     * Sanitize a command string (escape dangerous characters)
+     */
+    static sanitizeCommandString(cmd: string): string;
+    /**
+     * Check if package is from a trusted scope
+     */
+    static isTrustedScope(packageName: string): boolean;
+    /**
+     * Log security validation result
+     */
+    static logValidationError(context: string, errors: string[]): void;
+}
+/**
+ * Rate limiter to prevent abuse
+ */
+export declare class RateLimiter {
+    private requests;
+    private readonly windowMs;
+    private readonly maxRequests;
+    constructor(windowMs?: number, maxRequests?: number);
+    /**
+     * Check if request is allowed
+     */
+    isAllowed(key: string): boolean;
+    /**
+     * Get remaining requests in current window
+     */
+    getRemaining(key: string): number;
+    /**
+     * Reset rate limit for a key
+     */
+    reset(key: string): void;
+    /**
+     * Clear all rate limits (for testing)
+     */
+    clear(): void;
+}
+//# sourceMappingURL=security.d.ts.map

package/dist/utils/security.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../../src/utils/security.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,OAAO,EAAE,OAAO,EAAE,MAAM,iBAAiB,CAAC;AAInD,eAAO,MAAM,eAAe;;;;;;;;;CAuD3B,CAAC;AAEF,qBAAa,iBAAiB;IAC5B;;OAEG;IACH,MAAM,CAAC,eAAe,CAAC,GAAG,EAAE,OAAO,GAAG;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE;IAmCzE;;OAEG;IACH,MAAM,CAAC,eAAe,CAAC,GAAG,EAAE,OAAO,GAAG;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE;IAkDzE;;OAEG;IACH,MAAM,CAAC,oBAAoB,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG;QAChD,KAAK,EAAE,OAAO,CAAC;QACf,MAAM,EAAE,MAAM,EAAE,CAAC;KAClB;IAwBD;;OAEG;IACH,MAAM,CAAC,oBAAoB,CAAC,QAAQ,EAAE,OAAO,EAAE,GAAG;QAChD,KAAK,EAAE,OAAO,CAAC;QACf,MAAM,EAAE,MAAM,EAAE,CAAC;KAClB;IAwBD;;OAEG;IACH,OAAO,CAAC,MAAM,CAAC,cAAc;IAW7B;;OAEG;IACH,MAAM,CAAC,qBAAqB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM;IAajD;;OAEG;IACH,MAAM,CAAC,cAAc,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO;IAOnD;;OAEG;IACH,MAAM,CAAC,kBAAkB,CAAC,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,GAAG,IAAI;CAQnE;AAED;;GAEG;AACH,qBAAa,WAAW;IACtB,OAAO,CAAC,QAAQ,CAAoC;IACpD,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAS;IAClC,OAAO,CAAC,QAAQ,CAAC,WAAW,CAAS;gBAEzB,QAAQ,GAAE,MAAc,EAAE,WAAW,GAAE,MAAW;IAK9D;;OAEG;IACH,SAAS,CAAC,GAAG,EAAE,MAAM,GAAG,OAAO;IAmB/B;;OAEG;IACH,YAAY,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM;IAUjC;;OAEG;IACH,KAAK,CAAC,GAAG,EAAE,MAAM,GAAG,IAAI;IAIxB;;OAEG;IACH,KAAK,IAAI,IAAI;CAGd"}

package/dist/utils/security.js

@@ -0,0 +1,268 @@
+import chalk from 'chalk';
+// Security configuration
+export const SECURITY_CONFIG = {
+    // Maximum number of packages that can be installed in one operation
+    MAX_PACKAGES_PER_OPERATION: 50,
+    // Maximum number of commands that can be executed
+    MAX_COMMANDS_PER_RECIPE: 20,
+    // Timeout for individual commands (30 minutes)
+    COMMAND_TIMEOUT_MS: 30 * 60 * 1000,
+    // Blocked package patterns (malicious or suspicious)
+    BLOCKED_PACKAGE_PATTERNS: [
+        /^[._]/, // Packages starting with . or _
+        /[\s;|&`$(){}[\]<>]/, // Packages with shell metacharacters
+        /rm\s+-rf/i, // Dangerous rm commands
+        /\/etc\//i, // System directory access
+        /\.\.\/\.\.\//, // Directory traversal
+    ],
+    // Blocked command patterns
+    BLOCKED_COMMAND_PATTERNS: [
+        /rm\s+-rf\s+[/~]/i, // Dangerous rm commands
+        /curl.*\|\s*(bash|sh)/i, // Piping curl to shell
+        /wget.*\|\s*(bash|sh)/i, // Piping wget to shell
+        /eval\s+/i, // Eval commands
+        /exec\s+/i, // Exec commands  
+        /(nc|netcat).*-e/i, // Netcat reverse shells
+        /\/etc\/(passwd|shadow)/i, // System file access
+        /sudo\s+/i, // Sudo commands
+        /chmod\s+[0-7]*7[0-7]*/i, // Making files executable for all
+        />\s*\/dev\/[a-z]+/i, // Writing to devices
+        /mkfs\./i, // Formatting filesystems
+        /dd\s+if=/i, // Direct disk access
+        /:(){ :|:&};:/, // Fork bomb
+    ],
+    // Allowed package scopes (npm organizations)
+    ALLOWED_PACKAGE_SCOPES: [
+        '@types',
+        '@babel',
+        '@testing-library',
+        '@prisma',
+        '@vercel',
+        '@next',
+        '@tanstack',
+        '@radix-ui',
+        '@hookform',
+        // Add more trusted scopes as needed
+    ],
+    // Maximum package name length
+    MAX_PACKAGE_NAME_LENGTH: 214,
+    // Maximum command length
+    MAX_COMMAND_LENGTH: 1000,
+};
+export class SecurityValidator {
+    /**
+     * Validate a package name for security concerns
+     */
+    static validatePackage(pkg) {
+        // Check package name length
+        if (pkg.name.length > SECURITY_CONFIG.MAX_PACKAGE_NAME_LENGTH) {
+            return {
+                valid: false,
+                reason: `Package name too long: ${pkg.name.substring(0, 50)}...`,
+            };
+        }
+        // Check for empty package name
+        if (!pkg.name || pkg.name.trim() === '') {
+            return { valid: false, reason: 'Empty package name' };
+        }
+        // Check against blocked patterns
+        for (const pattern of SECURITY_CONFIG.BLOCKED_PACKAGE_PATTERNS) {
+            if (pattern.test(pkg.name)) {
+                return {
+                    valid: false,
+                    reason: `Package name contains suspicious pattern: ${pkg.name}`,
+                };
+            }
+        }
+        // Validate version format
+        if (!this.isValidVersion(pkg.version)) {
+            return {
+                valid: false,
+                reason: `Invalid version format: ${pkg.version}`,
+            };
+        }
+        return { valid: true };
+    }
+    /**
+     * Validate a command for security concerns
+     */
+    static validateCommand(cmd) {
+        const commandString = cmd.customCommand ||
+            `${cmd.packageName || ''} ${cmd.commandArgs || ''}`.trim();
+        // Check command length
+        if (commandString.length > SECURITY_CONFIG.MAX_COMMAND_LENGTH) {
+            return {
+                valid: false,
+                reason: 'Command exceeds maximum length',
+            };
+        }
+        // Check for empty command
+        if (!commandString || commandString.trim() === '') {
+            return { valid: false, reason: 'Empty command' };
+        }
+        // Check against blocked patterns
+        for (const pattern of SECURITY_CONFIG.BLOCKED_COMMAND_PATTERNS) {
+            if (pattern.test(commandString)) {
+                return {
+                    valid: false,
+                    reason: `Command contains dangerous pattern: ${commandString.substring(0, 100)}`,
+                };
+            }
+        }
+        // Validate runner
+        const validRunners = ['npx', 'npm', 'yarn', 'pnpm', 'custom'];
+        if (cmd.runner && !validRunners.includes(cmd.runner)) {
+            return {
+                valid: false,
+                reason: `Invalid command runner: ${cmd.runner}`,
+            };
+        }
+        // Additional checks for custom commands
+        if (cmd.runner === 'custom' && cmd.customCommand) {
+            // Prevent command chaining
+            if (/[;&|]/.test(cmd.customCommand)) {
+                return {
+                    valid: false,
+                    reason: 'Custom commands cannot contain command chaining operators (;, &, |)',
+                };
+            }
+        }
+        return { valid: true };
+    }
+    /**
+     * Validate batch of packages
+     */
+    static validatePackageBatch(packages) {
+        const errors = [];
+        // Check batch size
+        if (packages.length > SECURITY_CONFIG.MAX_PACKAGES_PER_OPERATION) {
+            errors.push(`Too many packages in one operation (max: ${SECURITY_CONFIG.MAX_PACKAGES_PER_OPERATION})`);
+        }
+        // Validate each package
+        for (const pkg of packages) {
+            const result = this.validatePackage(pkg);
+            if (!result.valid) {
+                errors.push(result.reason);
+            }
+        }
+        return {
+            valid: errors.length === 0,
+            errors,
+        };
+    }
+    /**
+     * Validate batch of commands
+     */
+    static validateCommandBatch(commands) {
+        const errors = [];
+        // Check batch size
+        if (commands.length > SECURITY_CONFIG.MAX_COMMANDS_PER_RECIPE) {
+            errors.push(`Too many commands in recipe (max: ${SECURITY_CONFIG.MAX_COMMANDS_PER_RECIPE})`);
+        }
+        // Validate each command
+        for (const cmd of commands) {
+            const result = this.validateCommand(cmd);
+            if (!result.valid) {
+                errors.push(result.reason);
+            }
+        }
+        return {
+            valid: errors.length === 0,
+            errors,
+        };
+    }
+    /**
+     * Check if a version string is valid
+     */
+    static isValidVersion(version) {
+        if (!version)
+            return false;
+        // Allow 'latest' or valid semver patterns
+        if (version === 'latest' || version === '*')
+            return true;
+        // Allow version ranges: ^1.0.0, ~1.0.0, >=1.0.0, 1.x, 1.0.0-beta.1, etc.
+        const semverPattern = /^([\^~>=<]+)?\d+(\.\d+)?(\.\d+)?(-[\w.]+)?(\+[\w.]+)?$|^\d+\.x$/;
+        return semverPattern.test(version);
+    }
+    /**
+     * Sanitize a command string (escape dangerous characters)
+     */
+    static sanitizeCommandString(cmd) {
+        // Remove any null bytes
+        let sanitized = cmd.replace(/\0/g, '');
+        // Remove newlines and carriage returns
+        sanitized = sanitized.replace(/[\r\n]/g, ' ');
+        // Trim and normalize whitespace
+        sanitized = sanitized.trim().replace(/\s+/g, ' ');
+        return sanitized;
+    }
+    /**
+     * Check if package is from a trusted scope
+     */
+    static isTrustedScope(packageName) {
+        if (!packageName.startsWith('@'))
+            return false;
+        const scope = packageName.split('/')[0];
+        return SECURITY_CONFIG.ALLOWED_PACKAGE_SCOPES.includes(scope);
+    }
+    /**
+     * Log security validation result
+     */
+    static logValidationError(context, errors) {
+        console.error(chalk.red(`\n🚨 Security Validation Failed: ${context}\n`));
+        errors.forEach((error, index) => {
+            console.error(chalk.red(`  ${index + 1}. ${error}`));
+        });
+        console.error(chalk.yellow('\n⚠️  This recipe contains potentially unsafe operations.'));
+        console.error(chalk.yellow('   Please review the template source before proceeding.\n'));
+    }
+}
+/**
+ * Rate limiter to prevent abuse
+ */
+export class RateLimiter {
+    requests = new Map();
+    windowMs;
+    maxRequests;
+    constructor(windowMs = 60000, maxRequests = 10) {
+        this.windowMs = windowMs;
+        this.maxRequests = maxRequests;
+    }
+    /**
+     * Check if request is allowed
+     */
+    isAllowed(key) {
+        const now = Date.now();
+        const requests = this.requests.get(key) || [];
+        // Filter out old requests
+        const recentRequests = requests.filter((timestamp) => now - timestamp < this.windowMs);
+        if (recentRequests.length >= this.maxRequests) {
+            return false;
+        }
+        recentRequests.push(now);
+        this.requests.set(key, recentRequests);
+        return true;
+    }
+    /**
+     * Get remaining requests in current window
+     */
+    getRemaining(key) {
+        const now = Date.now();
+        const requests = this.requests.get(key) || [];
+        const recentRequests = requests.filter((timestamp) => now - timestamp < this.windowMs);
+        return Math.max(0, this.maxRequests - recentRequests.length);
+    }
+    /**
+     * Reset rate limit for a key
+     */
+    reset(key) {
+        this.requests.delete(key);
+    }
+    /**
+     * Clear all rate limits (for testing)
+     */
+    clear() {
+        this.requests.clear();
+    }
+}
+//# sourceMappingURL=security.js.map

package/dist/utils/security.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.js","sourceRoot":"","sources":["../../src/utils/security.ts"],"names":[],"mappings":"AACA,OAAO,KAAK,MAAM,OAAO,CAAC;AAE1B,yBAAyB;AACzB,MAAM,CAAC,MAAM,eAAe,GAAG;IAC7B,oEAAoE;IACpE,0BAA0B,EAAE,EAAE;IAE9B,kDAAkD;IAClD,uBAAuB,EAAE,EAAE;IAE3B,+CAA+C;IAC/C,kBAAkB,EAAE,EAAE,GAAG,EAAE,GAAG,IAAI;IAElC,qDAAqD;IACrD,wBAAwB,EAAE;QACxB,OAAO,EAAG,gCAAgC;QAC1C,oBAAoB,EAAG,qCAAqC;QAC5D,WAAW,EAAG,wBAAwB;QACtC,UAAU,EAAG,0BAA0B;QACvC,cAAc,EAAG,sBAAsB;KACxC;IAED,2BAA2B;IAC3B,wBAAwB,EAAE;QACxB,kBAAkB,EAAG,wBAAwB;QAC7C,uBAAuB,EAAG,uBAAuB;QACjD,uBAAuB,EAAG,uBAAuB;QACjD,UAAU,EAAG,gBAAgB;QAC7B,UAAU,EAAG,kBAAkB;QAC/B,kBAAkB,EAAG,wBAAwB;QAC7C,yBAAyB,EAAG,qBAAqB;QACjD,UAAU,EAAG,gBAAgB;QAC7B,wBAAwB,EAAG,kCAAkC;QAC7D,oBAAoB,EAAG,qBAAqB;QAC5C,SAAS,EAAG,yBAAyB;QACrC,WAAW,EAAG,qBAAqB;QACnC,cAAc,EAAG,YAAY;KAC9B;IAED,6CAA6C;IAC7C,sBAAsB,EAAE;QACtB,QAAQ;QACR,QAAQ;QACR,kBAAkB;QAClB,SAAS;QACT,SAAS;QACT,OAAO;QACP,WAAW;QACX,WAAW;QACX,WAAW;QACX,oCAAoC;KACrC;IAED,8BAA8B;IAC9B,uBAAuB,EAAE,GAAG;IAE5B,yBAAyB;IACzB,kBAAkB,EAAE,IAAI;CACzB,CAAC;AAEF,MAAM,OAAO,iBAAiB;IAC5B;;OAEG;IACH,MAAM,CAAC,eAAe,CAAC,GAAY;QACjC,4BAA4B;QAC5B,IAAI,GAAG,CAAC,IAAI,CAAC,MAAM,GAAG,eAAe,CAAC,uBAAuB,EAAE,CAAC;YAC9D,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,MAAM,EAAE,0BAA0B,GAAG,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,KAAK;aACjE,CAAC;QACJ,CAAC;QAED,+BAA+B;QAC/B,IAAI,CAAC,GAAG,CAAC,IAAI,IAAI,GAAG,CAAC,IAAI,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YACxC,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,oBAAoB,EAAE,CAAC;QACxD,CAAC;QAED,iCAAiC;QACjC,KAAK,MAAM,OAAO,IAAI,eAAe,CAAC,wBAAwB,EAAE,CAAC;YAC/D,IAAI,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC3B,OAAO;oBACL,KAAK,EAAE,KAAK;oBACZ,MAAM,EAAE,6CAA6C,GAAG,CAAC,IAAI,EAAE;iBAChE,CAAC;YACJ,CAAC;QACH,CAAC;QAED,0BAA0B;QAC1B,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,OAAO,CAAC,EAAE,CAAC;YACtC,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,MAAM,EAAE,2BAA2B,GAAG,CAAC,OAAO,EAAE;aACjD,CAAC;QACJ,CAAC;QAED,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;IACzB,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,eAAe,CAAC,GAAY;QACjC,MAAM,aAAa,GAAG,GAAG,CAAC,aAAa;YAClB,GAAG,GAAG,CAAC,WAAW,IAAI,EAAE,IAAI,GAAG,CAAC,WAAW,IAAI,EAAE,EAAE,CAAC,IAAI,EAAE,CAAC;QAEhF,uBAAuB;QACvB,IAAI,aAAa,CAAC,MAAM,GAAG,eAAe,CAAC,kBAAkB,EAAE,CAAC;YAC9D,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,MAAM,EAAE,gCAAgC;aACzC,CAAC;QACJ,CAAC;QAED,0BAA0B;QAC1B,IAAI,CAAC,aAAa,IAAI,aAAa,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,CAAC;YAClD,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,eAAe,EAAE,CAAC;QACnD,CAAC;QAED,iCAAiC;QACjC,KAAK,MAAM,OAAO,IAAI,eAAe,CAAC,wBAAwB,EAAE,CAAC;YAC/D,IAAI,OAAO,CAAC,IAAI,CAAC,aAAa,CAAC,EAAE,CAAC;gBAChC,OAAO;oBACL,KAAK,EAAE,KAAK;oBACZ,MAAM,EAAE,uCAAuC,aAAa,CAAC,SAAS,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE;iBACjF,CAAC;YACJ,CAAC;QACH,CAAC;QAED,kBAAkB;QAClB,MAAM,YAAY,GAAG,CAAC,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,CAAC,CAAC;QAC9D,IAAI,GAAG,CAAC,MAAM,IAAI,CAAC,YAAY,CAAC,QAAQ,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;YACrD,OAAO;gBACL,KAAK,EAAE,KAAK;gBACZ,MAAM,EAAE,2BAA2B,GAAG,CAAC,MAAM,EAAE;aAChD,CAAC;QACJ,CAAC;QAED,wCAAwC;QACxC,IAAI,GAAG,CAAC,MAAM,KAAK,QAAQ,IAAI,GAAG,CAAC,aAAa,EAAE,CAAC;YACjD,2BAA2B;YAC3B,IAAI,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,aAAa,CAAC,EAAE,CAAC;gBACpC,OAAO;oBACL,KAAK,EAAE,KAAK;oBACZ,MAAM,EAAE,qEAAqE;iBAC9E,CAAC;YACJ,CAAC;QACH,CAAC;QAED,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;IACzB,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,oBAAoB,CAAC,QAAmB;QAI7C,MAAM,MAAM,GAAa,EAAE,CAAC;QAE5B,mBAAmB;QACnB,IAAI,QAAQ,CAAC,MAAM,GAAG,eAAe,CAAC,0BAA0B,EAAE,CAAC;YACjE,MAAM,CAAC,IAAI,CACT,4CAA4C,eAAe,CAAC,0BAA0B,GAAG,CAC1F,CAAC;QACJ,CAAC;QAED,wBAAwB;QACxB,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YAC3B,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC;YACzC,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBAClB,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,MAAO,CAAC,CAAC;YAC9B,CAAC;QACH,CAAC;QAED,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC;YAC1B,MAAM;SACP,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,oBAAoB,CAAC,QAAmB;QAI7C,MAAM,MAAM,GAAa,EAAE,CAAC;QAE5B,mBAAmB;QACnB,IAAI,QAAQ,CAAC,MAAM,GAAG,eAAe,CAAC,uBAAuB,EAAE,CAAC;YAC9D,MAAM,CAAC,IAAI,CACT,qCAAqC,eAAe,CAAC,uBAAuB,GAAG,CAChF,CAAC;QACJ,CAAC;QAED,wBAAwB;QACxB,KAAK,MAAM,GAAG,IAAI,QAAQ,EAAE,CAAC;YAC3B,MAAM,MAAM,GAAG,IAAI,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC;YACzC,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBAClB,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,MAAO,CAAC,CAAC;YAC9B,CAAC;QACH,CAAC;QAED,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC;YAC1B,MAAM;SACP,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,MAAM,CAAC,cAAc,CAAC,OAAe;QAC3C,IAAI,CAAC,OAAO;YAAE,OAAO,KAAK,CAAC;QAE3B,0CAA0C;QAC1C,IAAI,OAAO,KAAK,QAAQ,IAAI,OAAO,KAAK,GAAG;YAAE,OAAO,IAAI,CAAC;QAEzD,yEAAyE;QACzE,MAAM,aAAa,GAAG,iEAAiE,CAAC;QACxF,OAAO,aAAa,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACrC,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,qBAAqB,CAAC,GAAW;QACtC,wBAAwB;QACxB,IAAI,SAAS,GAAG,GAAG,CAAC,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;QAEvC,uCAAuC;QACvC,SAAS,GAAG,SAAS,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,CAAC,CAAC;QAE9C,gCAAgC;QAChC,SAAS,GAAG,SAAS,CAAC,IAAI,EAAE,CAAC,OAAO,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;QAElD,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,cAAc,CAAC,WAAmB;QACvC,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,GAAG,CAAC;YAAE,OAAO,KAAK,CAAC;QAE/C,MAAM,KAAK,GAAG,WAAW,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QACxC,OAAO,eAAe,CAAC,sBAAsB,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAChE,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,kBAAkB,CAAC,OAAe,EAAE,MAAgB;QACzD,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,oCAAoC,OAAO,IAAI,CAAC,CAAC,CAAC;QAC1E,MAAM,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,KAAK,EAAE,EAAE;YAC9B,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,KAAK,KAAK,GAAG,CAAC,KAAK,KAAK,EAAE,CAAC,CAAC,CAAC;QACvD,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,2DAA2D,CAAC,CAAC,CAAC;QACzF,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,MAAM,CAAC,2DAA2D,CAAC,CAAC,CAAC;IAC3F,CAAC;CACF;AAED;;GAEG;AACH,MAAM,OAAO,WAAW;IACd,QAAQ,GAA0B,IAAI,GAAG,EAAE,CAAC;IACnC,QAAQ,CAAS;IACjB,WAAW,CAAS;IAErC,YAAY,WAAmB,KAAK,EAAE,cAAsB,EAAE;QAC5D,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;IACjC,CAAC;IAED;;OAEG;IACH,SAAS,CAAC,GAAW;QACnB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;QAE9C,0BAA0B;QAC1B,MAAM,cAAc,GAAG,QAAQ,CAAC,MAAM,CACpC,CAAC,SAAS,EAAE,EAAE,CAAC,GAAG,GAAG,SAAS,GAAG,IAAI,CAAC,QAAQ,CAC/C,CAAC;QAEF,IAAI,cAAc,CAAC,MAAM,IAAI,IAAI,CAAC,WAAW,EAAE,CAAC;YAC9C,OAAO,KAAK,CAAC;QACf,CAAC;QAED,cAAc,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACzB,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,EAAE,cAAc,CAAC,CAAC;QAEvC,OAAO,IAAI,CAAC;IACd,CAAC;IAED;;OAEG;IACH,YAAY,CAAC,GAAW;QACtB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,EAAE,CAAC;QAC9C,MAAM,cAAc,GAAG,QAAQ,CAAC,MAAM,CACpC,CAAC,SAAS,EAAE,EAAE,CAAC,GAAG,GAAG,SAAS,GAAG,IAAI,CAAC,QAAQ,CAC/C,CAAC;QAEF,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,WAAW,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC;IAC/D,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,GAAW;QACf,IAAI,CAAC,QAAQ,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;IAC5B,CAAC;IAED;;OAEG;IACH,KAAK;QACH,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,CAAC;IACxB,CAAC;CACF"}

package/dist/utils/security.test.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=security.test.d.ts.map

package/dist/utils/security.test.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"security.test.d.ts","sourceRoot":"","sources":["../../src/utils/security.test.ts"],"names":[],"mappings":""}