@tenova/swt3-ai 0.5.1 → 0.5.3

package/dist/wal.d.ts

@@ -0,0 +1,69 @@
+/**
+ * SWT3 AI Witness SDK -- Write-Ahead Log (WAL).
+ *
+ * Crash-resilient buffer persistence. Payloads are written to a JSONL
+ * file before network transmission. If the process crashes, unsent
+ * entries survive on disk and replay on next startup.
+ *
+ * Format:
+ *   Each line: JSON object with { seq, fingerprint, payload }
+ *   Checkpoint file: single number (last successfully flushed seq)
+ *
+ * Replay protection:
+ *   A bounded set of recently-seen anchor_fingerprint values prevents
+ *   duplicate witness anchors from being submitted. The set is populated
+ *   from the WAL on startup and updated on each enqueue.
+ *
+ * Patent pending. All rights reserved.
+ */
+import type { WitnessPayload } from "./types.js";
+export interface WalOptions {
+    /** Directory for WAL files. Default: $TMPDIR/swt3-wal */
+    walDir?: string;
+    /** Max fingerprints in replay protection set. Default: 50000 */
+    replayWindow?: number;
+    /** Enable replay protection (dedup). Default: true when WAL enabled */
+    replayProtection?: boolean;
+}
+export declare class WriteAheadLog {
+    private walPath;
+    private checkpointPath;
+    private seq;
+    private checkpoint;
+    private replaySet;
+    private replayWindow;
+    private replayEnabled;
+    constructor(tenantId: string, options?: WalOptions);
+    /**
+     * Write a payload to the WAL before sending. Returns the sequence number.
+     * Returns -1 if the fingerprint is a duplicate (replay protection).
+     */
+    append(payload: WitnessPayload): number;
+    /**
+     * Mark entries up to this sequence as successfully flushed.
+     * Updates the checkpoint file atomically.
+     */
+    markFlushed(upToSeq: number): void;
+    /**
+     * Recover unflushed entries from the WAL. Called on startup.
+     * Returns payloads that were written but never confirmed as flushed.
+     */
+    recover(): WitnessPayload[];
+    /**
+     * Check if a fingerprint has already been seen (replay protection).
+     */
+    isDuplicate(fingerprint: string): boolean;
+    /** Current sequence number. */
+    get currentSeq(): number;
+    /** Last flushed checkpoint. */
+    get currentCheckpoint(): number;
+    /** Number of fingerprints in the replay set. */
+    get replaySetSize(): number;
+    /** Remove WAL and checkpoint files (for testing or cleanup). */
+    destroy(): void;
+    private _scanWal;
+    private _readEntries;
+    private _addToReplaySet;
+    private _maybeRotate;
+}
+//# sourceMappingURL=wal.d.ts.map

package/dist/wal.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"wal.d.ts","sourceRoot":"","sources":["../src/wal.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAKH,OAAO,KAAK,EAAE,cAAc,EAAE,MAAM,YAAY,CAAC;AAiBjD,MAAM,WAAW,UAAU;IACzB,yDAAyD;IACzD,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,gEAAgE;IAChE,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,uEAAuE;IACvE,gBAAgB,CAAC,EAAE,OAAO,CAAC;CAC5B;AAED,qBAAa,aAAa;IACxB,OAAO,CAAC,OAAO,CAAS;IACxB,OAAO,CAAC,cAAc,CAAS;IAC/B,OAAO,CAAC,GAAG,CAAa;IACxB,OAAO,CAAC,UAAU,CAAa;IAC/B,OAAO,CAAC,SAAS,CAAc;IAC/B,OAAO,CAAC,YAAY,CAAS;IAC7B,OAAO,CAAC,aAAa,CAAU;gBAEnB,QAAQ,EAAE,MAAM,EAAE,OAAO,GAAE,UAAe;IAwBtD;;;OAGG;IACH,MAAM,CAAC,OAAO,EAAE,cAAc,GAAG,MAAM;IAyBvC;;;OAGG;IACH,WAAW,CAAC,OAAO,EAAE,MAAM,GAAG,IAAI;IAalC;;;OAGG;IACH,OAAO,IAAI,cAAc,EAAE;IAe3B;;OAEG;IACH,WAAW,CAAC,WAAW,EAAE,MAAM,GAAG,OAAO;IAKzC,+BAA+B;IAC/B,IAAI,UAAU,IAAI,MAAM,CAEvB;IAED,+BAA+B;IAC/B,IAAI,iBAAiB,IAAI,MAAM,CAE9B;IAED,gDAAgD;IAChD,IAAI,aAAa,IAAI,MAAM,CAE1B;IAED,gEAAgE;IAChE,OAAO,IAAI,IAAI;IASf,OAAO,CAAC,QAAQ;IAUhB,OAAO,CAAC,YAAY;IAepB,OAAO,CAAC,eAAe;IAavB,OAAO,CAAC,YAAY;CAuBrB"}

package/dist/wal.js

@@ -0,0 +1,223 @@
+/**
+ * SWT3 AI Witness SDK -- Write-Ahead Log (WAL).
+ *
+ * Crash-resilient buffer persistence. Payloads are written to a JSONL
+ * file before network transmission. If the process crashes, unsent
+ * entries survive on disk and replay on next startup.
+ *
+ * Format:
+ *   Each line: JSON object with { seq, fingerprint, payload }
+ *   Checkpoint file: single number (last successfully flushed seq)
+ *
+ * Replay protection:
+ *   A bounded set of recently-seen anchor_fingerprint values prevents
+ *   duplicate witness anchors from being submitted. The set is populated
+ *   from the WAL on startup and updated on each enqueue.
+ *
+ * Patent pending. All rights reserved.
+ */
+import { mkdirSync, appendFileSync, readFileSync, writeFileSync, existsSync, renameSync, unlinkSync, statSync } from "node:fs";
+import { join } from "node:path";
+import { tmpdir } from "node:os";
+/** Default WAL directory under OS temp. */
+const DEFAULT_WAL_DIR = join(tmpdir(), "swt3-wal");
+/** Maximum fingerprints tracked for replay protection. */
+const DEFAULT_REPLAY_WINDOW = 50_000;
+/** WAL file rotation threshold (5 MB). */
+const WAL_ROTATION_BYTES = 5 * 1024 * 1024;
+export class WriteAheadLog {
+    walPath;
+    checkpointPath;
+    seq = 0;
+    checkpoint = 0;
+    replaySet;
+    replayWindow;
+    replayEnabled;
+    constructor(tenantId, options = {}) {
+        const dir = options.walDir ?? DEFAULT_WAL_DIR;
+        this.replayWindow = options.replayWindow ?? DEFAULT_REPLAY_WINDOW;
+        this.replayEnabled = options.replayProtection ?? true;
+        this.replaySet = new Set();
+        // Tenant-scoped WAL file (multiple SDK instances on same machine)
+        const safe = tenantId.replace(/[^a-zA-Z0-9_-]/g, "_");
+        mkdirSync(dir, { recursive: true, mode: 0o700 });
+        this.walPath = join(dir, `${safe}.wal`);
+        this.checkpointPath = join(dir, `${safe}.ckpt`);
+        // Load checkpoint
+        if (existsSync(this.checkpointPath)) {
+            const raw = readFileSync(this.checkpointPath, "utf-8").trim();
+            this.checkpoint = parseInt(raw, 10) || 0;
+        }
+        // Scan existing WAL to find max seq and populate replay set
+        if (existsSync(this.walPath)) {
+            this._scanWal();
+        }
+    }
+    /**
+     * Write a payload to the WAL before sending. Returns the sequence number.
+     * Returns -1 if the fingerprint is a duplicate (replay protection).
+     */
+    append(payload) {
+        const fp = payload.anchor_fingerprint;
+        // Replay protection: reject duplicates
+        if (this.replayEnabled && fp && this.replaySet.has(fp)) {
+            return -1;
+        }
+        this.seq++;
+        const entry = {
+            seq: this.seq,
+            fingerprint: fp || "",
+            payload: payloadToRecord(payload),
+        };
+        appendFileSync(this.walPath, JSON.stringify(entry) + "\n", "utf-8");
+        // Track fingerprint
+        if (this.replayEnabled && fp) {
+            this._addToReplaySet(fp);
+        }
+        return this.seq;
+    }
+    /**
+     * Mark entries up to this sequence as successfully flushed.
+     * Updates the checkpoint file atomically.
+     */
+    markFlushed(upToSeq) {
+        if (upToSeq <= this.checkpoint)
+            return;
+        this.checkpoint = upToSeq;
+        // Atomic write: write to temp then rename
+        const tmp = this.checkpointPath + ".tmp";
+        writeFileSync(tmp, String(this.checkpoint), "utf-8");
+        renameSync(tmp, this.checkpointPath);
+        // Rotate WAL if it's large and fully flushed
+        this._maybeRotate();
+    }
+    /**
+     * Recover unflushed entries from the WAL. Called on startup.
+     * Returns payloads that were written but never confirmed as flushed.
+     */
+    recover() {
+        if (!existsSync(this.walPath))
+            return [];
+        const entries = this._readEntries();
+        const unflushed = entries.filter((e) => e.seq > this.checkpoint);
+        if (unflushed.length > 0) {
+            console.info(`[swt3-ai] WAL recovery: ${unflushed.length} unflushed entries found (checkpoint: ${this.checkpoint}, max seq: ${this.seq})`);
+        }
+        return unflushed.map((e) => e.payload);
+    }
+    /**
+     * Check if a fingerprint has already been seen (replay protection).
+     */
+    isDuplicate(fingerprint) {
+        if (!this.replayEnabled || !fingerprint)
+            return false;
+        return this.replaySet.has(fingerprint);
+    }
+    /** Current sequence number. */
+    get currentSeq() {
+        return this.seq;
+    }
+    /** Last flushed checkpoint. */
+    get currentCheckpoint() {
+        return this.checkpoint;
+    }
+    /** Number of fingerprints in the replay set. */
+    get replaySetSize() {
+        return this.replaySet.size;
+    }
+    /** Remove WAL and checkpoint files (for testing or cleanup). */
+    destroy() {
+        try {
+            unlinkSync(this.walPath);
+        }
+        catch { /* noop */ }
+        try {
+            unlinkSync(this.checkpointPath);
+        }
+        catch { /* noop */ }
+        try {
+            unlinkSync(this.walPath + ".tmp");
+        }
+        catch { /* noop */ }
+        try {
+            unlinkSync(this.checkpointPath + ".tmp");
+        }
+        catch { /* noop */ }
+    }
+    // ── Internal ──
+    _scanWal() {
+        const entries = this._readEntries();
+        for (const entry of entries) {
+            if (entry.seq > this.seq)
+                this.seq = entry.seq;
+            if (this.replayEnabled && entry.fingerprint) {
+                this._addToReplaySet(entry.fingerprint);
+            }
+        }
+    }
+    _readEntries() {
+        if (!existsSync(this.walPath))
+            return [];
+        const raw = readFileSync(this.walPath, "utf-8");
+        const entries = [];
+        for (const line of raw.split("\n")) {
+            if (!line.trim())
+                continue;
+            try {
+                entries.push(JSON.parse(line));
+            }
+            catch {
+                // Corrupted line (partial write from crash) -- skip
+            }
+        }
+        return entries;
+    }
+    _addToReplaySet(fp) {
+        this.replaySet.add(fp);
+        // Evict oldest entries if over window (convert to array, drop first N)
+        if (this.replaySet.size > this.replayWindow) {
+            const overflow = this.replaySet.size - this.replayWindow;
+            const iter = this.replaySet.values();
+            for (let i = 0; i < overflow; i++) {
+                const oldest = iter.next().value;
+                if (oldest !== undefined)
+                    this.replaySet.delete(oldest);
+            }
+        }
+    }
+    _maybeRotate() {
+        if (!existsSync(this.walPath))
+            return;
+        try {
+            const stat = statSync(this.walPath);
+            if (stat.size < WAL_ROTATION_BYTES)
+                return;
+        }
+        catch {
+            return;
+        }
+        // Read entries, keep only unflushed
+        const entries = this._readEntries();
+        const unflushed = entries.filter((e) => e.seq > this.checkpoint);
+        if (unflushed.length === 0) {
+            // All flushed -- truncate
+            writeFileSync(this.walPath, "", "utf-8");
+        }
+        else {
+            // Rewrite with only unflushed entries
+            const tmp = this.walPath + ".tmp";
+            writeFileSync(tmp, unflushed.map((e) => JSON.stringify(e)).join("\n") + "\n", "utf-8");
+            renameSync(tmp, this.walPath);
+        }
+    }
+}
+/** Convert WitnessPayload to a plain record for JSON serialization. */
+function payloadToRecord(p) {
+    const r = {};
+    for (const [k, v] of Object.entries(p)) {
+        if (v !== undefined && v !== null)
+            r[k] = v;
+    }
+    return r;
+}
+//# sourceMappingURL=wal.js.map

package/dist/wal.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"wal.js","sourceRoot":"","sources":["../src/wal.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;GAiBG;AAEH,OAAO,EAAE,SAAS,EAAE,cAAc,EAAE,YAAY,EAAE,aAAa,EAAE,UAAU,EAAE,UAAU,EAAE,UAAU,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAC/H,OAAO,EAAE,IAAI,EAAW,MAAM,WAAW,CAAC;AAC1C,OAAO,EAAE,MAAM,EAAE,MAAM,SAAS,CAAC;AAGjC,2CAA2C;AAC3C,MAAM,eAAe,GAAG,IAAI,CAAC,MAAM,EAAE,EAAE,UAAU,CAAC,CAAC;AAEnD,0DAA0D;AAC1D,MAAM,qBAAqB,GAAG,MAAM,CAAC;AAErC,0CAA0C;AAC1C,MAAM,kBAAkB,GAAG,CAAC,GAAG,IAAI,GAAG,IAAI,CAAC;AAiB3C,MAAM,OAAO,aAAa;IAChB,OAAO,CAAS;IAChB,cAAc,CAAS;IACvB,GAAG,GAAW,CAAC,CAAC;IAChB,UAAU,GAAW,CAAC,CAAC;IACvB,SAAS,CAAc;IACvB,YAAY,CAAS;IACrB,aAAa,CAAU;IAE/B,YAAY,QAAgB,EAAE,UAAsB,EAAE;QACpD,MAAM,GAAG,GAAG,OAAO,CAAC,MAAM,IAAI,eAAe,CAAC;QAC9C,IAAI,CAAC,YAAY,GAAG,OAAO,CAAC,YAAY,IAAI,qBAAqB,CAAC;QAClE,IAAI,CAAC,aAAa,GAAG,OAAO,CAAC,gBAAgB,IAAI,IAAI,CAAC;QACtD,IAAI,CAAC,SAAS,GAAG,IAAI,GAAG,EAAE,CAAC;QAE3B,kEAAkE;QAClE,MAAM,IAAI,GAAG,QAAQ,CAAC,OAAO,CAAC,iBAAiB,EAAE,GAAG,CAAC,CAAC;QACtD,SAAS,CAAC,GAAG,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;QACjD,IAAI,CAAC,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,MAAM,CAAC,CAAC;QACxC,IAAI,CAAC,cAAc,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,IAAI,OAAO,CAAC,CAAC;QAEhD,kBAAkB;QAClB,IAAI,UAAU,CAAC,IAAI,CAAC,cAAc,CAAC,EAAE,CAAC;YACpC,MAAM,GAAG,GAAG,YAAY,CAAC,IAAI,CAAC,cAAc,EAAE,OAAO,CAAC,CAAC,IAAI,EAAE,CAAC;YAC9D,IAAI,CAAC,UAAU,GAAG,QAAQ,CAAC,GAAG,EAAE,EAAE,CAAC,IAAI,CAAC,CAAC;QAC3C,CAAC;QAED,4DAA4D;QAC5D,IAAI,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;YAC7B,IAAI,CAAC,QAAQ,EAAE,CAAC;QAClB,CAAC;IACH,CAAC;IAED;;;OAGG;IACH,MAAM,CAAC,OAAuB;QAC5B,MAAM,EAAE,GAAG,OAAO,CAAC,kBAAkB,CAAC;QAEtC,uCAAuC;QACvC,IAAI,IAAI,CAAC,aAAa,IAAI,EAAE,IAAI,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,EAAE,CAAC;YACvD,OAAO,CAAC,CAAC,CAAC;QACZ,CAAC;QAED,IAAI,CAAC,GAAG,EAAE,CAAC;QACX,MAAM,KAAK,GAAa;YACtB,GAAG,EAAE,IAAI,CAAC,GAAG;YACb,WAAW,EAAE,EAAE,IAAI,EAAE;YACrB,OAAO,EAAE,eAAe,CAAC,OAAO,CAAC;SAClC,CAAC;QAEF,cAAc,CAAC,IAAI,CAAC,OAAO,EAAE,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC,CAAC;QAEpE,oBAAoB;QACpB,IAAI,IAAI,CAAC,aAAa,IAAI,EAAE,EAAE,CAAC;YAC7B,IAAI,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC;QAC3B,CAAC;QAED,OAAO,IAAI,CAAC,GAAG,CAAC;IAClB,CAAC;IAED;;;OAGG;IACH,WAAW,CAAC,OAAe;QACzB,IAAI,OAAO,IAAI,IAAI,CAAC,UAAU;YAAE,OAAO;QACvC,IAAI,CAAC,UAAU,GAAG,OAAO,CAAC;QAE1B,0CAA0C;QAC1C,MAAM,GAAG,GAAG,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC;QACzC,aAAa,CAAC,GAAG,EAAE,MAAM,CAAC,IAAI,CAAC,UAAU,CAAC,EAAE,OAAO,CAAC,CAAC;QACrD,UAAU,CAAC,GAAG,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;QAErC,6CAA6C;QAC7C,IAAI,CAAC,YAAY,EAAE,CAAC;IACtB,CAAC;IAED;;;OAGG;IACH,OAAO;QACL,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,OAAO,EAAE,CAAC;QAEzC,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QACpC,MAAM,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC;QAEjE,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;YACzB,OAAO,CAAC,IAAI,CACV,2BAA2B,SAAS,CAAC,MAAM,yCAAyC,IAAI,CAAC,UAAU,cAAc,IAAI,CAAC,GAAG,GAAG,CAC7H,CAAC;QACJ,CAAC;QAED,OAAO,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAoC,CAAC,CAAC;IACtE,CAAC;IAED;;OAEG;IACH,WAAW,CAAC,WAAmB;QAC7B,IAAI,CAAC,IAAI,CAAC,aAAa,IAAI,CAAC,WAAW;YAAE,OAAO,KAAK,CAAC;QACtD,OAAO,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;IACzC,CAAC;IAED,+BAA+B;IAC/B,IAAI,UAAU;QACZ,OAAO,IAAI,CAAC,GAAG,CAAC;IAClB,CAAC;IAED,+BAA+B;IAC/B,IAAI,iBAAiB;QACnB,OAAO,IAAI,CAAC,UAAU,CAAC;IACzB,CAAC;IAED,gDAAgD;IAChD,IAAI,aAAa;QACf,OAAO,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC;IAC7B,CAAC;IAED,gEAAgE;IAChE,OAAO;QACL,IAAI,CAAC;YAAC,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAAC,CAAC;QAAC,MAAM,CAAC,CAAC,UAAU,CAAC,CAAC;QACtD,IAAI,CAAC;YAAC,UAAU,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QAAC,CAAC;QAAC,MAAM,CAAC,CAAC,UAAU,CAAC,CAAC;QAC7D,IAAI,CAAC;YAAC,UAAU,CAAC,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC,CAAC;QAAC,CAAC;QAAC,MAAM,CAAC,CAAC,UAAU,CAAC,CAAC;QAC/D,IAAI,CAAC;YAAC,UAAU,CAAC,IAAI,CAAC,cAAc,GAAG,MAAM,CAAC,CAAC;QAAC,CAAC;QAAC,MAAM,CAAC,CAAC,UAAU,CAAC,CAAC;IACxE,CAAC;IAED,iBAAiB;IAET,QAAQ;QACd,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QACpC,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;YAC5B,IAAI,KAAK,CAAC,GAAG,GAAG,IAAI,CAAC,GAAG;gBAAE,IAAI,CAAC,GAAG,GAAG,KAAK,CAAC,GAAG,CAAC;YAC/C,IAAI,IAAI,CAAC,aAAa,IAAI,KAAK,CAAC,WAAW,EAAE,CAAC;gBAC5C,IAAI,CAAC,eAAe,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;YAC1C,CAAC;QACH,CAAC;IACH,CAAC;IAEO,YAAY;QAClB,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,OAAO,EAAE,CAAC;QACzC,MAAM,GAAG,GAAG,YAAY,CAAC,IAAI,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC;QAChD,MAAM,OAAO,GAAe,EAAE,CAAC;QAC/B,KAAK,MAAM,IAAI,IAAI,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,EAAE,CAAC;YACnC,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE;gBAAE,SAAS;YAC3B,IAAI,CAAC;gBACH,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,CAAa,CAAC,CAAC;YAC7C,CAAC;YAAC,MAAM,CAAC;gBACP,oDAAoD;YACtD,CAAC;QACH,CAAC;QACD,OAAO,OAAO,CAAC;IACjB,CAAC;IAEO,eAAe,CAAC,EAAU;QAChC,IAAI,CAAC,SAAS,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACvB,uEAAuE;QACvE,IAAI,IAAI,CAAC,SAAS,CAAC,IAAI,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;YAC5C,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,IAAI,GAAG,IAAI,CAAC,YAAY,CAAC;YACzD,MAAM,IAAI,GAAG,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,CAAC;YACrC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,QAAQ,EAAE,CAAC,EAAE,EAAE,CAAC;gBAClC,MAAM,MAAM,GAAG,IAAI,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC;gBACjC,IAAI,MAAM,KAAK,SAAS;oBAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;YAC1D,CAAC;QACH,CAAC;IACH,CAAC;IAEO,YAAY;QAClB,IAAI,CAAC,UAAU,CAAC,IAAI,CAAC,OAAO,CAAC;YAAE,OAAO;QACtC,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACpC,IAAI,IAAI,CAAC,IAAI,GAAG,kBAAkB;gBAAE,OAAO;QAC7C,CAAC;QAAC,MAAM,CAAC;YACP,OAAO;QACT,CAAC;QAED,oCAAoC;QACpC,MAAM,OAAO,GAAG,IAAI,CAAC,YAAY,EAAE,CAAC;QACpC,MAAM,SAAS,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,GAAG,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC;QAEjE,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3B,0BAA0B;YAC1B,aAAa,CAAC,IAAI,CAAC,OAAO,EAAE,EAAE,EAAE,OAAO,CAAC,CAAC;QAC3C,CAAC;aAAM,CAAC;YACN,sCAAsC;YACtC,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,GAAG,MAAM,CAAC;YAClC,aAAa,CAAC,GAAG,EAAE,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,IAAI,EAAE,OAAO,CAAC,CAAC;YACvF,UAAU,CAAC,GAAG,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC;QAChC,CAAC;IACH,CAAC;CACF;AAED,uEAAuE;AACvE,SAAS,eAAe,CAAC,CAAiB;IACxC,MAAM,CAAC,GAA4B,EAAE,CAAC;IACtC,KAAK,MAAM,CAAC,CAAC,EAAE,CAAC,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC;QACvC,IAAI,CAAC,KAAK,SAAS,IAAI,CAAC,KAAK,IAAI;YAAE,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,CAAC;IAC9C,CAAC;IACD,OAAO,CAAC,CAAC;AACX,CAAC"}

package/dist/witness.d.ts

@@ -19,8 +19,48 @@
  *
  * Copyright (c) 2026 Tenable Nova LLC. Apache 2.0. Patent pending.
  */
+import type { TPMSnapshot } from "./hardware.js";
+import type { EnvironmentSnapshot } from "./environment.js";
+import { TrustRegistry, type TrustCredential, type TrustResult } from "./trust.js";
 import { type VercelOnFinishOptions } from "./adapters/vercel-ai.js";
-import type { WitnessPayload, WitnessReceipt, InferenceRecord } from "./types.js";
+import type { WitnessPayload, WitnessReceipt, InferenceRecord, RagContextOptions, ModelWeightInfo, AdapterInfo, SkillInfo, MemorySource } from "./types.js";
+import type { DensityPolicyConfig, McpPolicyConfig, MerkleConfig, ChainPolicyViolation } from "./types.js";
+import { MerkleAccumulator } from "./merkle.js";
+export declare class PolicyViolationError extends Error {
+    violation: ChainPolicyViolation;
+    constructor(violation: ChainPolicyViolation);
+}
+/**
+ * Chain density enforcement engine.
+ *
+ * Evaluates tool calls against rate limits, depth limits, allow/blocklists,
+ * and custom rules. All checks are in-memory, zero network calls.
+ * Instantiated from McpPolicyConfig by Witness.fromConfig().
+ */
+export declare class ChainEnforcer {
+    private velocityWindow;
+    private velocityLimit;
+    private velocityWindowMs;
+    private chainDepth;
+    private maxChainDepth;
+    private allowPatterns;
+    private blockPatterns;
+    private failSecure;
+    private customRules;
+    private lastToolName;
+    private tokenCount;
+    private maxTokensPerSession;
+    private _violations;
+    constructor(policy: McpPolicyConfig);
+    check(toolName: string): ChainPolicyViolation | null;
+    resetDepth(): void;
+    recordTokens(count: number): void;
+    resetTokens(): void;
+    get currentTokenCount(): number;
+    get violations(): readonly ChainPolicyViolation[];
+    clearViolations(): void;
+    private violation;
+}
 export interface WitnessOptions {
     endpoint: string;
     apiKey: string;
@@ -45,7 +85,10 @@ export interface WitnessOptions {
     legalBasis?: string;
     purposeClass?: string;
     onFlush?: (payloads: WitnessPayload[], receipts: WitnessReceipt[]) => void;
+    tokenBudget?: number;
     gatewayMode?: boolean;
+    walPath?: string;
+    replayWindow?: number;
 }
 /**
  * Raised when strict (gatekeeper) mode blocks an inference due to
@@ -77,6 +120,28 @@ export declare class Witness {
      * Requires: `npm install yaml`
      */
     static fromConfig(path?: string, overrides?: Partial<WitnessOptions>): Witness;
+    private _configHash?;
+    private _hardwareConfig?;
+    private _densityPolicy?;
+    private _mcpPolicy?;
+    private _merkleConfig?;
+    private _merkleAccumulator?;
+    private _chainEnforcer?;
+    get configHash(): string | undefined;
+    /** Density policy from YAML config (null if not configured). */
+    get densityPolicy(): DensityPolicyConfig | undefined;
+    /** MCP tool witnessing policy from YAML config (null if not configured). */
+    get mcpPolicy(): McpPolicyConfig | undefined;
+    /** Merkle accumulator config from YAML config (null if not configured). */
+    get merkleConfig(): MerkleConfig | undefined;
+    /** SDK-side Merkle accumulator (created when merkle.enabled is true). */
+    get merkleAccumulator(): MerkleAccumulator | undefined;
+    /** Chain density enforcer (created when chain density fields are configured). */
+    get chainEnforcer(): ChainEnforcer | undefined;
+    /** Record token usage against the chain enforcer's session budget. */
+    recordSessionTokens(count: number): void;
+    private _recordChainViolation;
+    private _configureTrustMesh;
     constructor(options: WitnessOptions);
     /**
      * Wrap an AI client with transparent witnessing.
@@ -164,6 +229,86 @@ export declare class Witness {
     witnessInputValidation(passed: boolean, options?: {
         sanitized?: boolean;
     }): void;
+    /**
+     * Witness a RAG retrieval step (AI-RAG.1 + optional AI-RAG.2).
+     *
+     * Records what context chunks were retrieved and from which corpus.
+     * Chunk text is NEVER transmitted -- only SHA-256 hashes.
+     *
+     * Automatically emits AI-RAG.2 (Context Relevance) when
+     * similarityThreshold is set and chunks have similarityScore.
+     *
+     * @param options.chunks - Raw strings (auto-hashed) or RagChunk objects.
+     * @param options.corpusId - Identifier for the retrieval corpus/index.
+     * @param options.similarityThreshold - When set and chunks have scores,
+     *   AI-RAG.2 is emitted alongside AI-RAG.1.
+     * @returns Array of WitnessPayload objects (1-2 payloads).
+     *
+     * @example
+     *   witness.witnessRagContext({
+     *     chunks: ["chunk text 1", "chunk text 2"],
+     *     corpusId: "legal-docs-v3",
+     *   });
+     */
+    witnessRagContext(options: RagContextOptions): WitnessPayload[];
+    /**
+     * Hash a model weight file and return a ModelWeightInfo.
+     *
+     * Call ONCE at startup, not per-inference. File I/O is synchronous.
+     *
+     * @example
+     *   const info = Witness.hashModelFile("/models/llama-3.1-70b.safetensors");
+     *   witness.witnessModelWeights(info);
+     */
+    static hashModelFile(filePath: string, format?: string): ModelWeightInfo;
+    /**
+     * Witness model weight file integrity (AI-MDL.5).
+     *
+     * @param weights - ModelWeightInfo (from hashModelFile() or manual),
+     *   or file path string (blocks for large files -- prefer hashModelFile()).
+     * @param options.expectedHash - If provided and matches, PASS. If mismatches, FAIL.
+     */
+    witnessModelWeights(weights: ModelWeightInfo | string, options?: {
+        expectedHash?: string;
+    }): WitnessPayload;
+    /**
+     * Witness active LoRA/QLoRA/PEFT adapter stack (AI-MDL.6).
+     */
+    witnessAdapterStack(adapters: AdapterInfo[], baseModelId?: string): WitnessPayload;
+    /**
+     * Witness model quantization method (AI-MDL.7).
+     *
+     * @param method - fp32, fp16, bf16, int8, int4, gptq, awq, gguf.
+     */
+    witnessQuantization(method: string, options?: {
+        bits?: number;
+        groupSize?: number;
+    }): WitnessPayload;
+    /**
+     * Witness active skill/tool/plugin manifest (AI-SKILL.1).
+     *
+     * @param skills - Skill name strings (auto-hashed) or SkillInfo objects.
+     * @param options.expectedManifestHash - Expected hash of the full manifest.
+     *
+     * @example
+     *   witness.witnessSkillManifest(["code_exec", "web_search", "file_read"]);
+     */
+    witnessSkillManifest(skills: (string | SkillInfo)[], options?: {
+        expectedManifestHash?: string;
+    }): WitnessPayload;
+    /**
+     * Witness persistent memory sources influencing a decision (AI-SKILL.2).
+     */
+    witnessMemoryContext(sources: MemorySource[]): WitnessPayload;
+    /**
+     * Witness RLHF/DPO reward model binding (AI-SKILL.3).
+     */
+    witnessRewardModel(modelId: string, options?: {
+        modelHash?: string;
+        method?: string;
+    }): WitnessPayload;
+    /** Apply operational metadata (agent_id, signing, CJT fields) to a payload. */
+    private _applyOperationalMetadata;
     /**
      * Revoke a previously-issued witness anchor (AI-REV.1).
      *
@@ -176,6 +321,153 @@ export declare class Witness {
      *   error_correction, or unspecified.
      * @returns The fingerprint of the revocation anchor itself.
      */
+    /**
+     * Witness accelerator hardware inventory (AI-HW.1).
+     *
+     * Records what GPU/accelerator hardware is present. Call ONCE at
+     * service startup, not per-inference. If no GPUs are detectable,
+     * returns a payload with factor_a=0, factor_b=0 (graceful no-op).
+     *
+     * @param options.snapshot - Pre-computed HardwareSnapshot (from queryHardware()).
+     *   If omitted, auto-detects via nvidia-smi.
+     * @param options.expectedTopology - Expected topology (e.g., "NVL72").
+     *   If provided and doesn't match detected topology, factor_b=0.
+     */
+    witnessHardware(options?: {
+        snapshot?: import("./hardware.js").HardwareSnapshot;
+        expectedTopology?: string;
+    }): WitnessPayload;
+    /**
+     * Witness TPM 2.0 platform attestation (AI-HW.3).
+     *
+     * Reads PCR registers 0-7 via tpm2-tools and mints an anchor proving
+     * host firmware integrity. All raw PCR digests are SHA-256 hashed
+     * before leaving the module.
+     *
+     * @param options.snapshot - Pre-computed TPMSnapshot (from queryTPM()).
+     */
+    witnessTPMAttestation(options?: {
+        snapshot?: TPMSnapshot;
+    }): WitnessPayload;
+    /**
+     * Witness thermal integrity of the compute environment (AI-ENV.1).
+     *
+     * Call at service startup or on a periodic schedule, not per-inference.
+     * Auto-detects Linux thermal zones. Pass manual values for XFRA/Span nodes.
+     *
+     * @param options.temperatureCelsius - Measured temperature (auto-detected if omitted)
+     * @param options.thresholdCelsius - Safe maximum (default 85)
+     * @param options.snapshot - Pre-computed EnvironmentSnapshot
+     * @param options.nodeType - Node type: datacenter, edge, residential, mobile
+     */
+    witnessEnvironment(options?: {
+        temperatureCelsius?: number;
+        thresholdCelsius?: number;
+        snapshot?: EnvironmentSnapshot;
+        nodeType?: string;
+    }): WitnessPayload;
+    /**
+     * Witness power integrity of the compute environment (AI-ENV.2).
+     *
+     * Call at service startup or on a periodic schedule, not per-inference.
+     * Pass manual values from Span panel API, IPMI, or other power monitoring.
+     *
+     * @param options.powerWatts - Current power draw in watts
+     * @param options.capacityWatts - Total available capacity in watts
+     * @param options.throttled - Whether power throttling is active
+     * @param options.snapshot - Pre-computed EnvironmentSnapshot
+     * @param options.nodeType - Node type: datacenter, edge, residential, mobile
+     */
+    witnessEnergyDraw(options?: {
+        powerWatts?: number;
+        capacityWatts?: number;
+        throttled?: boolean;
+        snapshot?: EnvironmentSnapshot;
+        nodeType?: string;
+    }): WitnessPayload;
+    /**
+     * Witness a multi-agent chain handoff (AI-CHAIN.1).
+     */
+    witnessChainHandoff(depth: number, targetAgent: string, options?: {
+        accepted?: boolean;
+    }): WitnessPayload;
+    /**
+     * Witness a policy violation (AI-VIO.1).
+     */
+    witnessViolation(severity: number, description: string, options?: {
+        autoDetected?: boolean;
+        policyCategory?: string;
+    }): WitnessPayload;
+    /**
+     * Witness an agent charter or system prompt hash (AI-CHR.1).
+     */
+    witnessCharter(options: {
+        charterText?: string;
+        charterHash?: string;
+        expectedHash?: string;
+    }): WitnessPayload;
+    /**
+     * Witness a model registry check (AI-MDL.8).
+     */
+    witnessModelRegistry(modelId: string, registryId: string, options?: {
+        found?: boolean;
+        status?: string;
+    }): WitnessPayload;
+    /**
+     * Witness reviewer identity binding (AI-HITL.3).
+     */
+    witnessReviewerIdentity(required: number, actual: number, options?: {
+        method?: string;
+        reviewerIdHash?: string;
+    }): WitnessPayload;
+    /**
+     * Witness safe state attestation (AI-SAFE.1).
+     */
+    witnessSafeState(options?: {
+        mechanismExists?: boolean;
+        safeStateConfirmed?: boolean;
+        mechanismType?: string;
+    }): WitnessPayload;
+    /**
+     * Witness training dataset summary statistics (AI-DATA.3).
+     */
+    witnessTrainingStats(rowCount: number, featureCount: number, options?: {
+        classBalanceRatio?: number;
+        distributionHash?: string;
+        classLabels?: string[];
+        summary?: string;
+    }): WitnessPayload;
+    /**
+     * Witness a training data PII lifecycle event (AI-DATA.4).
+     */
+    witnessTrainingPiiLifecycle(recordsAffected: number, options?: {
+        completed?: boolean;
+        eventType?: string;
+        datasetId?: string;
+        scope?: string;
+    }): WitnessPayload;
+    /**
+     * Witness a bias assessment (AI-FAIR.3).
+     * Records that a bias assessment was conducted, how many protected
+     * attributes were tested, and whether all fairness thresholds were met.
+     *
+     * @param protectedAttributeCount - Number of demographic dimensions tested
+     * @param allThresholdsMet - true if all fairness thresholds passed
+     * @param options.maxDisparityPct - Worst-case disparity percentage (0-100)
+     * @param options.methodology - Assessment methodology name
+     * @param options.protectedAttributes - List of protected attributes tested
+     */
+    witnessBiasAssessment(protectedAttributeCount: number, allThresholdsMet: boolean, options?: {
+        maxDisparityPct?: number;
+        methodology?: string;
+        protectedAttributes?: string[];
+    }): WitnessPayload;
+    private _trustRegistry?;
+    private _witnessedProcedures;
+    get trustRegistry(): TrustRegistry;
+    set trustRegistry(registry: TrustRegistry);
+    presentCredential(): TrustCredential;
+    verifyTrust(credential: TrustCredential): TrustResult;
     revoke(fingerprint: string, reason?: string): string;
     /**
      * Query the Compliance Manifest API for this tenant's anchors.

package/dist/witness.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"witness.d.ts","sourceRoot":"","sources":["../src/witness.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;GAoBG;AAaH,OAAO,EAAwB,KAAK,qBAAqB,EAAE,MAAM,yBAAyB,CAAC;AAC3F,OAAO,KAAK,EAAiB,cAAc,EAAE,cAAc,EAAE,eAAe,EAAE,MAAM,YAAY,CAAC;AAGjG,MAAM,WAAW,cAAc;IAC7B,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,aAAa,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,cAAc,EAAE,EAAE,QAAQ,EAAE,cAAc,EAAE,KAAK,IAAI,CAAC;IAC3E,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAED;;;GAGG;AACH,qBAAa,eAAgB,SAAQ,KAAK;IACxC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;IAC1B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,YAAY,EAAE,MAAM,EAAE,CAAC;gBAEpB,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY,GAAE,MAAM,EAAO;CAS1E;AAED,qBAAa,OAAO;IAClB,OAAO,CAAC,MAAM,CAAgB;IAC9B,OAAO,CAAC,MAAM,CAAgB;IAC9B,OAAO,CAAC,aAAa,CAAS;IAC9B,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,YAAY,CAAU;IAE9B,kEAAkE;IAClE,IAAI,WAAW,IAAI,OAAO,CAEzB;IAED;;;;;;;;;;OAUG;IACH,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,OAAO,CAAC,cAAc,CAAC,GAAG,OAAO;gBAKlE,OAAO,EAAE,cAAc;IA8CnC;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAM,EAAE,OAAO,GAAG,OAAO;IA6B9B,qEAAqE;IACrE,IAAI,MAAM,IAAI,OAAO,CAEpB;IAED;;;;;;;;;;;OAWG;IACH,SAAS,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM;IAkCvD;;;;;;;;;;;OAWG;IACH,QAAQ,CAAC,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,CAAC;IAiExE;;;;;;;;;;;OAWG;IACH,UAAU,CAAC,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,GAAG,EAC1C,EAAE,EAAE,CAAC,EACL,YAAY,CAAC,EAAE,MAAM,EACrB,KAAK,CAAC,EAAE,MAAM,GACb,CAAC;IAiEJ;;;;;;;;;;;;;;OAcG;IACH,mBAAmB,CACjB,WAAW,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE;QAAE,SAAS,CAAC,EAAE,MAAM,CAAC;QAAC,UAAU,CAAC,EAAE,MAAM,CAAA;KAAE,GACpD,IAAI;IA+CP;;;;;;;;;;;OAWG;IACH,sBAAsB,CACpB,MAAM,EAAE,OAAO,EACf,OAAO,CAAC,EAAE;QAAE,SAAS,CAAC,EAAE,OAAO,CAAA;KAAE,GAChC,IAAI;IA0CP;;;;;;;;;;;OAWG;IACH,MAAM,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,GAAE,MAAsB,GAAG,MAAM;IAiCnE;;;;;OAKG;IACG,QAAQ,CAAC,OAAO,GAAE;QACtB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,KAAK,CAAC,EAAE,MAAM,CAAC;KACX,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IA2BzC;;;;;;;OAOG;IACH,MAAM,CAAC,SAAS,EAAE,eAAe,EAAE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI;IAkDlE;;;;;;;;;OASG;IACH,cAAc,CAAC,OAAO,CAAC,EAAE,qBAAqB,GAAG,CAAC,MAAM,EAAE,OAAO,KAAK,IAAI;IAI1E,yCAAyC;IACnC,KAAK,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;IAIxC,qDAAqD;IAC/C,IAAI,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;IAIvC,kCAAkC;IAClC,IAAI,OAAO,IAAI,MAAM,CAEpB;IAED,2CAA2C;IAC3C,IAAI,QAAQ,IAAI,cAAc,EAAE,CAE/B;CACF"}
+{"version":3,"file":"witness.d.ts","sourceRoot":"","sources":["../src/witness.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;GAoBG;AAeH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,eAAe,CAAC;AAEjD,OAAO,KAAK,EAAE,mBAAmB,EAAE,MAAM,kBAAkB,CAAC;AAC5D,OAAO,EACL,aAAa,EACb,KAAK,eAAe,EAAE,KAAK,WAAW,EACvC,MAAM,YAAY,CAAC;AACpB,OAAO,EAAwB,KAAK,qBAAqB,EAAE,MAAM,yBAAyB,CAAC;AAC3F,OAAO,KAAK,EACK,cAAc,EAAE,cAAc,EAAE,eAAe,EACpD,iBAAiB,EAAE,eAAe,EAAE,WAAW,EAAE,SAAS,EAAE,YAAY,EACnF,MAAM,YAAY,CAAC;AAGpB,OAAO,KAAK,EAAmC,mBAAmB,EAAE,eAAe,EAAE,YAAY,EAAa,oBAAoB,EAAE,MAAM,YAAY,CAAC;AACvJ,OAAO,EAAE,iBAAiB,EAAE,MAAM,aAAa,CAAC;AAkBhD,qBAAa,oBAAqB,SAAQ,KAAK;IAC7C,SAAS,EAAE,oBAAoB,CAAC;gBACpB,SAAS,EAAE,oBAAoB;CAK5C;AAED;;;;;;GAMG;AACH,qBAAa,aAAa;IACxB,OAAO,CAAC,cAAc,CAAgB;IACtC,OAAO,CAAC,aAAa,CAAK;IAC1B,OAAO,CAAC,gBAAgB,CAAK;IAC7B,OAAO,CAAC,UAAU,CAAK;IACvB,OAAO,CAAC,aAAa,CAAS;IAC9B,OAAO,CAAC,aAAa,CAAkB;IACvC,OAAO,CAAC,aAAa,CAAW;IAChC,OAAO,CAAC,UAAU,CAAU;IAC5B,OAAO,CAAC,WAAW,CAAuC;IAC1D,OAAO,CAAC,YAAY,CAAuB;IAC3C,OAAO,CAAC,UAAU,CAAK;IACvB,OAAO,CAAC,mBAAmB,CAAS;IACpC,OAAO,CAAC,WAAW,CAA8B;gBAErC,MAAM,EAAE,eAAe;IAmBnC,KAAK,CAAC,QAAQ,EAAE,MAAM,GAAG,oBAAoB,GAAG,IAAI;IAyEpD,UAAU,IAAI,IAAI;IAKlB,YAAY,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI;IAIjC,WAAW,IAAI,IAAI;IAInB,IAAI,iBAAiB,IAAI,MAAM,CAE9B;IAED,IAAI,UAAU,IAAI,SAAS,oBAAoB,EAAE,CAEhD;IAED,eAAe,IAAI,IAAI;IAIvB,OAAO,CAAC,SAAS;CAQlB;AAED,MAAM,WAAW,cAAc;IAC7B,QAAQ,EAAE,MAAM,CAAC;IACjB,MAAM,EAAE,MAAM,CAAC;IACf,QAAQ,EAAE,MAAM,CAAC;IACjB,aAAa,CAAC,EAAE,CAAC,GAAG,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;IAC9B,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAC5B,cAAc,CAAC,EAAE,MAAM,EAAE,CAAC;IAC1B,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,OAAO,CAAC;IACjB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,OAAO,CAAC,EAAE,CAAC,QAAQ,EAAE,cAAc,EAAE,EAAE,QAAQ,EAAE,cAAc,EAAE,KAAK,IAAI,CAAC;IAC3E,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,OAAO,CAAC;IACtB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;CACvB;AAED;;;GAGG;AACH,qBAAa,eAAgB,SAAQ,KAAK;IACxC,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;IAC1B,QAAQ,CAAC,MAAM,EAAE,MAAM,CAAC;IACxB,QAAQ,CAAC,YAAY,EAAE,MAAM,EAAE,CAAC;gBAEpB,QAAQ,EAAE,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,YAAY,GAAE,MAAM,EAAO;CAS1E;AAED,qBAAa,OAAO;IAClB,OAAO,CAAC,MAAM,CAAgB;IAC9B,OAAO,CAAC,MAAM,CAAgB;IAC9B,OAAO,CAAC,aAAa,CAAS;IAC9B,OAAO,CAAC,OAAO,CAAU;IACzB,OAAO,CAAC,YAAY,CAAU;IAE9B,kEAAkE;IAClE,IAAI,WAAW,IAAI,OAAO,CAEzB;IAED;;;;;;;;;;OAUG;IACH,MAAM,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,SAAS,CAAC,EAAE,OAAO,CAAC,cAAc,CAAC,GAAG,OAAO;IAyD9E,OAAO,CAAC,WAAW,CAAC,CAAS;IAC7B,OAAO,CAAC,eAAe,CAAC,CAAiB;IACzC,OAAO,CAAC,cAAc,CAAC,CAAsB;IAC7C,OAAO,CAAC,UAAU,CAAC,CAAkB;IACrC,OAAO,CAAC,aAAa,CAAC,CAAe;IACrC,OAAO,CAAC,kBAAkB,CAAC,CAAoB;IAC/C,OAAO,CAAC,cAAc,CAAC,CAAgB;IAEvC,IAAI,UAAU,IAAI,MAAM,GAAG,SAAS,CAEnC;IAED,gEAAgE;IAChE,IAAI,aAAa,IAAI,mBAAmB,GAAG,SAAS,CAEnD;IAED,4EAA4E;IAC5E,IAAI,SAAS,IAAI,eAAe,GAAG,SAAS,CAE3C;IAED,2EAA2E;IAC3E,IAAI,YAAY,IAAI,YAAY,GAAG,SAAS,CAE3C;IAED,yEAAyE;IACzE,IAAI,iBAAiB,IAAI,iBAAiB,GAAG,SAAS,CAErD;IAED,iFAAiF;IACjF,IAAI,aAAa,IAAI,aAAa,GAAG,SAAS,CAE7C;IAED,sEAAsE;IACtE,mBAAmB,CAAC,KAAK,EAAE,MAAM,GAAG,IAAI;IAMxC,OAAO,CAAC,qBAAqB;IAmB7B,OAAO,CAAC,mBAAmB;gBAoBf,OAAO,EAAE,cAAc;IAiEnC;;;;;;;;;OASG;IACH,IAAI,CAAC,MAAM,EAAE,OAAO,GAAG,OAAO;IA6B9B,qEAAqE;IACrE,IAAI,MAAM,IAAI,OAAO,CAEpB;IAED;;;;;;;;;;;OAWG;IACH,SAAS,CAAC,SAAS,CAAC,EAAE,OAAO,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,MAAM;IAkCvD;;;;;;;;;;;OAWG;IACH,QAAQ,CAAC,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,GAAG,EAAE,EAAE,EAAE,CAAC,EAAE,QAAQ,CAAC,EAAE,MAAM,GAAG,CAAC;IA4ExE;;;;;;;;;;;OAWG;IACH,UAAU,CAAC,CAAC,SAAS,CAAC,GAAG,IAAI,EAAE,GAAG,EAAE,KAAK,GAAG,EAC1C,EAAE,EAAE,CAAC,EACL,YAAY,CAAC,EAAE,MAAM,EACrB,KAAK,CAAC,EAAE,MAAM,GACb,CAAC;IAiEJ;;;;;;;;;;;;;;OAcG;IACH,mBAAmB,CACjB,WAAW,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE;QAAE,SAAS,CAAC,EAAE,MAAM,CAAC;QAAC,UAAU,CAAC,EAAE,MAAM,CAAA;KAAE,GACpD,IAAI;IA+CP;;;;;;;;;;;OAWG;IACH,sBAAsB,CACpB,MAAM,EAAE,OAAO,EACf,OAAO,CAAC,EAAE;QAAE,SAAS,CAAC,EAAE,OAAO,CAAA;KAAE,GAChC,IAAI;IA0CP;;;;;;;;;;;;;;;;;;;;OAoBG;IACH,iBAAiB,CAAC,OAAO,EAAE,iBAAiB,GAAG,cAAc,EAAE;IAkG/D;;;;;;;;OAQG;IACH,MAAM,CAAC,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,eAAe;IAgBxE;;;;;;OAMG;IACH,mBAAmB,CACjB,OAAO,EAAE,eAAe,GAAG,MAAM,EACjC,OAAO,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,MAAM,CAAA;KAAE,GAClC,cAAc;IA8BjB;;OAEG;IACH,mBAAmB,CAAC,QAAQ,EAAE,WAAW,EAAE,EAAE,WAAW,CAAC,EAAE,MAAM,GAAG,cAAc;IA2BlF;;;;OAIG;IACH,mBAAmB,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC,EAAE;QAAE,IAAI,CAAC,EAAE,MAAM,CAAC;QAAC,SAAS,CAAC,EAAE,MAAM,CAAA;KAAE,GAAG,cAAc;IA0BpG;;;;;;;;OAQG;IACH,oBAAoB,CAClB,MAAM,EAAE,CAAC,MAAM,GAAG,SAAS,CAAC,EAAE,EAC9B,OAAO,CAAC,EAAE;QAAE,oBAAoB,CAAC,EAAE,MAAM,CAAA;KAAE,GAC1C,cAAc;IAuCjB;;OAEG;IACH,oBAAoB,CAAC,OAAO,EAAE,YAAY,EAAE,GAAG,cAAc;IA8B7D;;OAEG;IACH,kBAAkB,CAChB,OAAO,EAAE,MAAM,EACf,OAAO,CAAC,EAAE;QAAE,SAAS,CAAC,EAAE,MAAM,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,GAChD,cAAc;IAwBjB,+EAA+E;IAC/E,OAAO,CAAC,yBAAyB;IAejC;;;;;;;;;;;OAWG;IACH;;;;;;;;;;;OAWG;IACH,eAAe,CAAC,OAAO,CAAC,EAAE;QACxB,QAAQ,CAAC,EAAE,OAAO,eAAe,EAAE,gBAAgB,CAAC;QACpD,gBAAgB,CAAC,EAAE,MAAM,CAAC;KAC3B,GAAG,cAAc;IAyDlB;;;;;;;;OAQG;IACH,qBAAqB,CAAC,OAAO,CAAC,EAAE;QAC9B,QAAQ,CAAC,EAAE,WAAW,CAAC;KACxB,GAAG,cAAc;IAuDlB;;;;;;;;;;OAUG;IACH,kBAAkB,CAAC,OAAO,CAAC,EAAE;QAC3B,kBAAkB,CAAC,EAAE,MAAM,CAAC;QAC5B,gBAAgB,CAAC,EAAE,MAAM,CAAC;QAC1B,QAAQ,CAAC,EAAE,mBAAmB,CAAC;QAC/B,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,GAAG,cAAc;IAuClB;;;;;;;;;;;OAWG;IACH,iBAAiB,CAAC,OAAO,CAAC,EAAE;QAC1B,UAAU,CAAC,EAAE,MAAM,CAAC;QACpB,aAAa,CAAC,EAAE,MAAM,CAAC;QACvB,SAAS,CAAC,EAAE,OAAO,CAAC;QACpB,QAAQ,CAAC,EAAE,mBAAmB,CAAC;QAC/B,QAAQ,CAAC,EAAE,MAAM,CAAC;KACnB,GAAG,cAAc;IA6ClB;;OAEG;IACH,mBAAmB,CACjB,KAAK,EAAE,MAAM,EACb,WAAW,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE;QAAE,QAAQ,CAAC,EAAE,OAAO,CAAA;KAAE,GAC/B,cAAc;IAyBjB;;OAEG;IACH,gBAAgB,CACd,QAAQ,EAAE,MAAM,EAChB,WAAW,EAAE,MAAM,EACnB,OAAO,CAAC,EAAE;QAAE,YAAY,CAAC,EAAE,OAAO,CAAC;QAAC,cAAc,CAAC,EAAE,MAAM,CAAA;KAAE,GAC5D,cAAc;IA0BjB;;OAEG;IACH,cAAc,CAAC,OAAO,EAAE;QACtB,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,YAAY,CAAC,EAAE,MAAM,CAAC;KACvB,GAAG,cAAc;IA2BlB;;OAEG;IACH,oBAAoB,CAClB,OAAO,EAAE,MAAM,EACf,UAAU,EAAE,MAAM,EAClB,OAAO,CAAC,EAAE;QAAE,KAAK,CAAC,EAAE,OAAO,CAAC;QAAC,MAAM,CAAC,EAAE,MAAM,CAAA;KAAE,GAC7C,cAAc;IAwBjB;;OAEG;IACH,uBAAuB,CACrB,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,MAAM,EACd,OAAO,CAAC,EAAE;QAAE,MAAM,CAAC,EAAE,MAAM,CAAC;QAAC,cAAc,CAAC,EAAE,MAAM,CAAA;KAAE,GACrD,cAAc;IAyBjB;;OAEG;IACH,gBAAgB,CAAC,OAAO,CAAC,EAAE;QACzB,eAAe,CAAC,EAAE,OAAO,CAAC;QAC1B,kBAAkB,CAAC,EAAE,OAAO,CAAC;QAC7B,aAAa,CAAC,EAAE,MAAM,CAAC;KACxB,GAAG,cAAc;IA4BlB;;OAEG;IACH,oBAAoB,CAClB,QAAQ,EAAE,MAAM,EAChB,YAAY,EAAE,MAAM,EACpB,OAAO,CAAC,EAAE;QACR,iBAAiB,CAAC,EAAE,MAAM,CAAC;QAC3B,gBAAgB,CAAC,EAAE,MAAM,CAAC;QAC1B,WAAW,CAAC,EAAE,MAAM,EAAE,CAAC;QACvB,OAAO,CAAC,EAAE,MAAM,CAAC;KAClB,GACA,cAAc;IA6BjB;;OAEG;IACH,2BAA2B,CACzB,eAAe,EAAE,MAAM,EACvB,OAAO,CAAC,EAAE;QACR,SAAS,CAAC,EAAE,OAAO,CAAC;QACpB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,KAAK,CAAC,EAAE,MAAM,CAAC;KAChB,GACA,cAAc;IAgCjB;;;;;;;;;;OAUG;IACH,qBAAqB,CACnB,uBAAuB,EAAE,MAAM,EAC/B,gBAAgB,EAAE,OAAO,EACzB,OAAO,CAAC,EAAE;QACR,eAAe,CAAC,EAAE,MAAM,CAAC;QACzB,WAAW,CAAC,EAAE,MAAM,CAAC;QACrB,mBAAmB,CAAC,EAAE,MAAM,EAAE,CAAC;KAChC,GACA,cAAc;IAgCjB,OAAO,CAAC,cAAc,CAAC,CAAgB;IACvC,OAAO,CAAC,oBAAoB,CAAqB;IAEjD,IAAI,aAAa,IAAI,aAAa,CAGjC;IAED,IAAI,aAAa,CAAC,QAAQ,EAAE,aAAa,EAExC;IAED,iBAAiB,IAAI,eAAe;IAoBpC,WAAW,CAAC,UAAU,EAAE,eAAe,GAAG,WAAW;IA8DrD,MAAM,CAAC,WAAW,EAAE,MAAM,EAAE,MAAM,GAAE,MAAsB,GAAG,MAAM;IAiCnE;;;;;OAKG;IACG,QAAQ,CAAC,OAAO,GAAE;QACtB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,SAAS,CAAC,EAAE,MAAM,CAAC;QACnB,OAAO,CAAC,EAAE,MAAM,CAAC;QACjB,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,KAAK,CAAC,EAAE,MAAM,CAAC;QACf,QAAQ,CAAC,EAAE,MAAM,CAAC;QAClB,KAAK,CAAC,EAAE,MAAM,CAAC;KACX,GAAG,OAAO,CAAC,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IA2BzC;;;;;;;OAOG;IACH,MAAM,CAAC,SAAS,EAAE,eAAe,EAAE,eAAe,CAAC,EAAE,MAAM,GAAG,IAAI;IAkDlE;;;;;;;;;OASG;IACH,cAAc,CAAC,OAAO,CAAC,EAAE,qBAAqB,GAAG,CAAC,MAAM,EAAE,OAAO,KAAK,IAAI;IAI1E,yCAAyC;IACnC,KAAK,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;IAIxC,qDAAqD;IAC/C,IAAI,IAAI,OAAO,CAAC,cAAc,EAAE,CAAC;IAIvC,kCAAkC;IAClC,IAAI,OAAO,IAAI,MAAM,CAEpB;IAED,2CAA2C;IAC3C,IAAI,QAAQ,IAAI,cAAc,EAAE,CAE/B;CACF"}