@treenity/mods 3.0.3 → 3.0.5

package/dist/agent/client.d.ts

@@ -0,0 +1,3 @@
+import './types';
+import './view';
+//# sourceMappingURL=client.d.ts.map

package/dist/agent/client.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.d.ts","sourceRoot":"","sources":["../../agent/client.ts"],"names":[],"mappings":"AAAA,OAAO,SAAS,CAAC;AACjB,OAAO,QAAQ,CAAC"}

package/dist/agent/client.js

@@ -0,0 +1,3 @@
+import './types';
+import './view';
+//# sourceMappingURL=client.js.map

package/dist/agent/client.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"client.js","sourceRoot":"","sources":["../../agent/client.ts"],"names":[],"mappings":"AAAA,OAAO,SAAS,CAAC;AACjB,OAAO,QAAQ,CAAC"}

package/dist/agent/guardian.d.ts

@@ -0,0 +1,47 @@
+import { type PermissionRule } from '#metatron/permissions';
+import type { PermissionResult } from '@anthropic-ai/claude-agent-sdk';
+import type { Tree } from '@treenity/core/tree';
+export declare class AiApproval {
+    agentPath: string;
+    agentRole: string;
+    tool: string;
+    /** @format textarea */
+    input: string;
+    status: 'pending' | 'approved' | 'denied';
+    reason: string;
+    createdAt: number;
+    resolvedAt: number;
+    /** @description Approve this tool usage */
+    approve(data?: {
+        /** Remember this decision for future calls */
+        remember?: 'agent' | 'global';
+    }): void;
+    /** @description Deny this tool usage */
+    deny(data?: {
+        /** Remember this decision for future calls */
+        remember?: 'agent' | 'global';
+    }): void;
+}
+export type ToolPolicy = {
+    allow: string[];
+    deny: string[];
+    escalate: string[];
+};
+/** Static fallback rules for SDK upfront hints. Real enforcement in canUseTool. */
+export declare function buildPermissionRules(_role: string): PermissionRule[];
+export declare function splitBashParts(cmd: string): string[];
+export declare function requestApproval(store: Tree, opts: {
+    agentPath: string;
+    role: string;
+    tool: string;
+    input: string;
+    reason: string;
+}): Promise<boolean>;
+/** Result of reconciliation — agents that should be resumed */
+export type ResumableAgent = {
+    agentPath: string;
+    taskPath: string;
+};
+export declare function reconcileOnStartup(store: Tree): Promise<ResumableAgent[]>;
+export declare function createCanUseTool(role: string, agentPath: string, store?: Tree): (toolName: string, input: Record<string, unknown>) => Promise<PermissionResult>;
+//# sourceMappingURL=guardian.d.ts.map

package/dist/agent/guardian.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"guardian.d.ts","sourceRoot":"","sources":["../../agent/guardian.ts"],"names":[],"mappings":"AAIA,OAAO,EAA2C,KAAK,cAAc,EAAqB,MAAM,uBAAuB,CAAC;AAExH,OAAO,KAAK,EAAE,gBAAgB,EAAE,MAAM,gCAAgC,CAAC;AAIvE,OAAO,KAAK,EAAE,IAAI,EAAE,MAAM,qBAAqB,CAAC;AAKhD,qBAAa,UAAU;IACrB,SAAS,SAAM;IACf,SAAS,SAAM;IACf,IAAI,SAAM;IACV,uBAAuB;IACvB,KAAK,SAAM;IACX,MAAM,EAAE,SAAS,GAAG,UAAU,GAAG,QAAQ,CAAa;IACtD,MAAM,SAAM;IACZ,SAAS,SAAK;IACd,UAAU,SAAK;IAEf,2CAA2C;IAC3C,OAAO,CAAC,IAAI,CAAC,EAAE;QACb,8CAA8C;QAC9C,QAAQ,CAAC,EAAE,OAAO,GAAG,QAAQ,CAAA;KAC9B;IAaD,wCAAwC;IACxC,IAAI,CAAC,IAAI,CAAC,EAAE;QACV,8CAA8C;QAC9C,QAAQ,CAAC,EAAE,OAAO,GAAG,QAAQ,CAAA;KAC9B;CAYF;AAMD,MAAM,MAAM,UAAU,GAAG;IACvB,KAAK,EAAE,MAAM,EAAE,CAAC;IAChB,IAAI,EAAE,MAAM,EAAE,CAAC;IACf,QAAQ,EAAE,MAAM,EAAE,CAAC;CACpB,CAAC;AAyEF,mFAAmF;AACnF,wBAAgB,oBAAoB,CAAC,KAAK,EAAE,MAAM,GAAG,cAAc,EAAE,CASpE;AAeD,wBAAgB,cAAc,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,EAAE,CA0BpD;AAMD,wBAAsB,eAAe,CACnC,KAAK,EAAE,IAAI,EACX,IAAI,EAAE;IAAE,SAAS,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,IAAI,EAAE,MAAM,CAAC;IAAC,KAAK,EAAE,MAAM,CAAC;IAAC,MAAM,EAAE,MAAM,CAAA;CAAE,GACrF,OAAO,CAAC,OAAO,CAAC,CAsClB;AAwCD,+DAA+D;AAC/D,MAAM,MAAM,cAAc,GAAG;IAC3B,SAAS,EAAE,MAAM,CAAC;IAClB,QAAQ,EAAE,MAAM,CAAC;CAClB,CAAC;AAEF,wBAAsB,kBAAkB,CAAC,KAAK,EAAE,IAAI,GAAG,OAAO,CAAC,cAAc,EAAE,CAAC,CA4E/E;AAID,wBAAgB,gBAAgB,CAC9B,IAAI,EAAE,MAAM,EACZ,SAAS,EAAE,MAAM,EACjB,KAAK,CAAC,EAAE,IAAI,IASV,UAAU,MAAM,EAChB,OAAO,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,KAC7B,OAAO,CAAC,gBAAgB,CAAC,CA+G7B"}

package/dist/agent/guardian.js

@@ -0,0 +1,452 @@
+// Guardian — extensible tool policy for AI agents.
+// Cascade: agent ai.policy → global ai.policy (/agents/guardian) → hardcoded fallback.
+// Escalation: creates ai.approval node → Promise resolution via pendingPermissions.
+import { pendingPermissions, resolvePermission } from '#metatron/permissions';
+import { MetatronConfig } from '#metatron/types';
+import { createNode, getComponent } from '@treenity/core';
+import { registerType, setComponent } from '@treenity/core/comp';
+import { matchesAny } from '@treenity/core/glob';
+import { AiPolicy } from './types';
+// ── Approval type — lives in /agents/approvals/{id} ──
+export class AiApproval {
+    agentPath = '';
+    agentRole = '';
+    tool = '';
+    /** @format textarea */
+    input = '';
+    status = 'pending';
+    reason = '';
+    createdAt = 0;
+    resolvedAt = 0;
+    /** @description Approve this tool usage */
+    approve(data) {
+        if (this.status !== 'pending')
+            throw new Error('already resolved');
+        this.status = 'approved';
+        this.resolvedAt = Date.now();
+        const id = this.$path?.split('/').pop();
+        if (id)
+            resolvePermission(id, true, {
+                tool: this.tool,
+                input: this.input,
+                agentPath: this.agentPath,
+                scope: data?.remember,
+            });
+    }
+    /** @description Deny this tool usage */
+    deny(data) {
+        if (this.status !== 'pending')
+            throw new Error('already resolved');
+        this.status = 'denied';
+        this.resolvedAt = Date.now();
+        const id = this.$path?.split('/').pop();
+        if (id)
+            resolvePermission(id, false, {
+                tool: this.tool,
+                input: this.input,
+                agentPath: this.agentPath,
+                scope: data?.remember,
+            });
+    }
+}
+registerType('ai.approval', AiApproval);
+// ── Minimal fallback — read-only, everything else escalated ──
+const FALLBACK_POLICY = {
+    allow: [
+        'mcp__treenity__get_node', 'mcp__treenity__list_children',
+        'mcp__treenity__catalog', 'mcp__treenity__describe_type',
+        'mcp__treenity__search_types',
+    ],
+    deny: [],
+    escalate: ['mcp__treenity__set_node', 'mcp__treenity__execute', 'mcp__treenity__remove_node'],
+};
+// ── Convert ai.policy node data → runtime ToolPolicy ──
+function policyFromNode(p) {
+    return {
+        allow: [...p.allow],
+        deny: [...p.deny],
+        escalate: [...p.escalate],
+    };
+}
+/** Merge two policies: b overrides a (more specific wins) */
+function mergePolicies(base, override) {
+    const allow = [...new Set([...base.allow, ...override.allow])];
+    const deny = [...new Set([...base.deny, ...override.deny])];
+    const escalate = [...new Set([...base.escalate, ...override.escalate])];
+    // Remove from escalate/deny if explicitly allowed in override
+    const cleanEscalate = escalate.filter(t => !override.allow.includes(t));
+    const cleanDeny = deny.filter(t => !override.allow.includes(t));
+    return {
+        allow,
+        deny: cleanDeny,
+        escalate: cleanEscalate,
+    };
+}
+const GUARDIAN_PATH = '/agents/guardian';
+/** Resolve policy cascade: agent → global → fallback */
+async function resolvePolicy(store, agentPath) {
+    const hardcoded = FALLBACK_POLICY;
+    // Global policy from /agents/guardian
+    let base = hardcoded;
+    try {
+        const guardianNode = await store.get(GUARDIAN_PATH);
+        if (guardianNode) {
+            const globalPolicy = getComponent(guardianNode, AiPolicy);
+            if (globalPolicy && (globalPolicy.allow.length || globalPolicy.deny.length || globalPolicy.escalate.length)) {
+                base = mergePolicies(hardcoded, policyFromNode(globalPolicy));
+            }
+        }
+    }
+    catch { /* no guardian node yet */ }
+    // Agent-level policy
+    try {
+        const agentNode = await store.get(agentPath);
+        if (agentNode) {
+            const agentPolicy = getComponent(agentNode, AiPolicy);
+            if (agentPolicy && (agentPolicy.allow.length || agentPolicy.deny.length || agentPolicy.escalate.length)) {
+                return mergePolicies(base, policyFromNode(agentPolicy));
+            }
+        }
+    }
+    catch { /* agent has no policy component */ }
+    return base;
+}
+// ── Build metatron-compatible PermissionRule[] ──
+/** Static fallback rules for SDK upfront hints. Real enforcement in canUseTool. */
+export function buildPermissionRules(_role) {
+    const policy = FALLBACK_POLICY;
+    const rules = [];
+    for (const tool of policy.deny)
+        rules.push({ tool, pathPattern: '', policy: 'deny' });
+    for (const tool of policy.escalate)
+        rules.push({ tool, pathPattern: '', policy: 'ask-once' });
+    for (const tool of policy.allow)
+        rules.push({ tool, pathPattern: '', policy: 'allow' });
+    return rules;
+}
+// ── Always-deny bash patterns ──
+const DANGEROUS_BASH = [
+    /rm\s+-rf/, /push\s+--force/, /reset\s+--hard/, /--no-verify/,
+    /curl\b.*\|\s*(?:ba)?sh/, /wget\b.*\|\s*(?:ba)?sh/, // pipe-to-shell
+    /\beval\s+/, // arbitrary eval
+    /chmod\s+777/, /chmod\s+\+s/, // permission escalation
+    /\bdd\s+.*of=\/dev\//, /\bmkfs\b/, // disk destruction
+];
+// ── Split bash command by operators, respecting quotes ──
+export function splitBashParts(cmd) {
+    const parts = [];
+    let cur = '';
+    let inSingle = false;
+    let inDouble = false;
+    let escaped = false;
+    for (let i = 0; i < cmd.length; i++) {
+        const ch = cmd[i];
+        if (escaped) {
+            cur += ch;
+            escaped = false;
+            continue;
+        }
+        if (ch === '\\' && !inSingle) {
+            cur += ch;
+            escaped = true;
+            continue;
+        }
+        if (ch === "'" && !inDouble) {
+            cur += ch;
+            inSingle = !inSingle;
+            continue;
+        }
+        if (ch === '"' && !inSingle) {
+            cur += ch;
+            inDouble = !inDouble;
+            continue;
+        }
+        if (!inSingle && !inDouble) {
+            if (ch === '|' && cmd[i + 1] === '|') {
+                parts.push(cur);
+                cur = '';
+                i++;
+                continue;
+            }
+            if (ch === '|') {
+                parts.push(cur);
+                cur = '';
+                continue;
+            }
+            if (ch === '&' && cmd[i + 1] === '&') {
+                parts.push(cur);
+                cur = '';
+                i++;
+                continue;
+            }
+            if (ch === ';') {
+                parts.push(cur);
+                cur = '';
+                continue;
+            }
+        }
+        cur += ch;
+    }
+    if (cur)
+        parts.push(cur);
+    return parts.map(p => p.trim()).filter(Boolean);
+}
+// ── Escalation via tree nodes + Promise resolution ──
+const APPROVAL_TIMEOUT = 60 * 60 * 1000; // 1 hour
+export async function requestApproval(store, opts) {
+    const id = `a-${Date.now()}-${Math.random().toString(36).slice(2, 6)}`;
+    const path = `/agents/approvals/${id}`;
+    await store.set(createNode(path, 'ai.approval', {
+        agentPath: opts.agentPath,
+        agentRole: opts.role,
+        tool: opts.tool,
+        input: opts.input.slice(0, 1000),
+        status: 'pending',
+        reason: opts.reason,
+        createdAt: Date.now(),
+    }));
+    console.log(`[guardian] escalation: ${opts.role} wants ${opts.tool} → ${path}`);
+    return new Promise((resolve) => {
+        const timer = setTimeout(() => {
+            pendingPermissions.delete(id);
+            console.log(`[guardian] escalation timed out: ${path}`);
+            resolve(false);
+        }, APPROVAL_TIMEOUT);
+        pendingPermissions.set(id, async (allow, meta) => {
+            clearTimeout(timer);
+            // "Remember" — persist rule to tree policy
+            if (meta?.scope && meta.tool) {
+                try {
+                    await rememberRule(store, meta.tool, meta.input ?? '', allow, meta.agentPath ?? '', meta.scope);
+                }
+                catch (err) {
+                    console.error(`[guardian] failed to persist rule: ${err}`);
+                }
+            }
+            resolve(allow);
+        });
+    });
+}
+/** Write a persistent rule to agent or global policy (with OCC retry) */
+async function rememberRule(store, tool, _input, allow, agentPath, scope) {
+    const targetPath = scope === 'agent' ? agentPath : GUARDIAN_PATH;
+    const MAX_RETRIES = 3;
+    for (let attempt = 0; attempt < MAX_RETRIES; attempt++) {
+        const node = await store.get(targetPath);
+        if (!node)
+            return;
+        const policy = getComponent(node, AiPolicy) ?? Object.assign(new AiPolicy(), { $type: 'ai.policy' });
+        if (allow) {
+            if (!policy.allow.includes(tool))
+                policy.allow.push(tool);
+            policy.deny = policy.deny.filter(d => d !== tool);
+            policy.escalate = policy.escalate.filter(e => e !== tool);
+        }
+        else {
+            if (!policy.deny.includes(tool))
+                policy.deny.push(tool);
+            policy.allow = policy.allow.filter(a => a !== tool);
+            policy.escalate = policy.escalate.filter(e => e !== tool);
+        }
+        setComponent(node, AiPolicy, policy);
+        try {
+            await store.set(node);
+            console.log(`[guardian] remembered: ${allow ? 'allow' : 'deny'} ${tool} → ${targetPath}`);
+            return;
+        }
+        catch (err) {
+            if (err instanceof Error && err.message.startsWith('OptimisticConcurrencyError') && attempt < MAX_RETRIES - 1) {
+                console.warn(`[guardian] OCC conflict on ${targetPath}, retry ${attempt + 1}`);
+                continue;
+            }
+            throw err;
+        }
+    }
+}
+export async function reconcileOnStartup(store) {
+    const resumable = [];
+    // Expire orphaned approvals
+    try {
+        const { items } = await store.getChildren('/agents/approvals');
+        for (const approval of items) {
+            if (approval.$type !== 'ai.approval' || approval.status !== 'pending')
+                continue;
+            await store.set({ ...approval, status: 'denied', reason: 'expired: server restart', resolvedAt: Date.now() });
+            console.log(`[guardian] expired orphaned approval: ${approval.$path}`);
+        }
+    }
+    catch { /* no approvals dir */ }
+    // Reconcile agents — resume those with sessionId, reset the rest
+    try {
+        const { items } = await store.getChildren('/agents');
+        const resumablePaths = [];
+        for (const node of items) {
+            if (node.$type !== 'ai.agent')
+                continue;
+            if (node.status !== 'working' && node.status !== 'blocked')
+                continue;
+            // Check if agent has a session to resume
+            const config = getComponent(node, MetatronConfig);
+            const hasSession = config && typeof config.sessionId === 'string' && config.sessionId.length > 0;
+            const taskPath = typeof node.currentTask === 'string' ? node.currentTask : '';
+            if (hasSession && taskPath) {
+                // Agent can resume — keep working status, collect for re-launch
+                resumable.push({ agentPath: node.$path, taskPath });
+                resumablePaths.push(node.$path);
+                console.log(`[guardian] resumable agent: ${node.$path} → ${taskPath} (session ${config.sessionId.slice(0, 8)}...)`);
+            }
+            else {
+                // No session — reset to idle
+                await store.set({ ...node, status: 'idle', currentTask: '', taskRef: '' });
+                console.log(`[guardian] reset stuck agent: ${node.$path}`);
+                // Reset stuck metatron.tasks under this agent
+                try {
+                    const { items: tasks } = await store.getChildren(`${node.$path}/tasks`);
+                    for (const task of tasks) {
+                        if (task.$type !== 'metatron.task' || task.status !== 'running')
+                            continue;
+                        await store.set({ ...task, status: 'error', result: 'interrupted: server restart' });
+                        console.log(`[guardian] reset stuck agent task: ${task.$path}`);
+                    }
+                }
+                catch { /* no tasks dir yet */ }
+            }
+        }
+        // Update pool — keep resumable agents in active, clear the rest
+        const poolNode = await store.get('/agents');
+        if (poolNode && poolNode.$type === 'ai.pool') {
+            await store.set({ ...poolNode, active: resumablePaths, queue: [] });
+            if (resumablePaths.length) {
+                console.log(`[guardian] pool active: [${resumablePaths.join(', ')}]`);
+            }
+            else {
+                console.log(`[guardian] cleared pool active/queue`);
+            }
+        }
+    }
+    catch { /* */ }
+    // Reset stuck task aiStatus — but skip tasks being resumed
+    const resumedTaskPaths = new Set(resumable.map(r => r.taskPath));
+    try {
+        const { items } = await store.getChildren('/board/data');
+        for (const task of items) {
+            if (task.$type !== 'board.task')
+                continue;
+            if (resumedTaskPaths.has(task.$path))
+                continue;
+            if (typeof task.aiStatus === 'string' && task.aiStatus) {
+                await store.set({ ...task, aiStatus: '' });
+                console.log(`[guardian] cleared aiStatus on: ${task.$path}`);
+            }
+        }
+    }
+    catch { /* no board */ }
+    return resumable;
+}
+// ── canUseTool callback for Agent SDK ──
+export function createCanUseTool(role, agentPath, store) {
+    const allow = () => ({ behavior: 'allow' });
+    const deny = (message) => ({ behavior: 'deny', message });
+    // Cache resolved policy (per agent run)
+    let cachedPolicy = null;
+    return async (toolName, input) => {
+        // Lazy-resolve policy from tree on first call
+        if (!cachedPolicy) {
+            cachedPolicy = store
+                ? await resolvePolicy(store, agentPath)
+                : FALLBACK_POLICY;
+        }
+        const policy = cachedPolicy;
+        // Deny-list check first (bare tool name)
+        if (matchesAny(policy.deny, toolName)) {
+            return deny(`${role}: denied: ${toolName}`);
+        }
+        // Bash → split by pipes/operators, check each sub-command independently
+        if (toolName === 'Bash') {
+            const cmd = typeof input.command === 'string' ? input.command.trim() : '';
+            // C14: normalize backslash escapes before safety check — prevents bypass via `git\ reset\ --hard`
+            const normalized = cmd.replace(/\\(.)/g, '$1');
+            // Hardcoded safety net — check full command (both raw and normalized)
+            for (const pattern of DANGEROUS_BASH) {
+                if (pattern.test(cmd) || pattern.test(normalized))
+                    return deny(`blocked: ${cmd.slice(0, 60)}`);
+            }
+            // Split by newlines first, then by pipes/operators
+            const lines = cmd.split(/\n/).map(l => l.trim()).filter(Boolean);
+            // Check each line against safety net (belt-and-suspenders with full-string check above)
+            for (const line of lines) {
+                const normLine = line.replace(/\\(.)/g, '$1');
+                for (const pattern of DANGEROUS_BASH) {
+                    if (pattern.test(line) || pattern.test(normLine))
+                        return deny(`blocked: ${line.slice(0, 60)}`);
+                }
+            }
+            // Split into sub-commands and check each
+            const parts = lines.length > 0 ? lines.flatMap(l => splitBashParts(l)) : [];
+            const effectiveNames = parts.map(p => `Bash:${p}`);
+            // Any sub-command denied → deny entire command
+            for (const eName of effectiveNames) {
+                if (matchesAny(policy.deny, eName)) {
+                    return deny(`${role}: denied: ${eName}`);
+                }
+            }
+            // Escalate BEFORE allow: explicit escalate beats wildcard allow
+            const escalated = effectiveNames.filter(e => matchesAny(policy.escalate, e));
+            if (escalated.length > 0) {
+                if (store) {
+                    const approved = await requestApproval(store, {
+                        agentPath, role, tool: escalated[0], input: cmd.slice(0, 200),
+                        reason: 'requires approval',
+                    });
+                    return approved ? allow() : deny('denied by human');
+                }
+                return deny(`${role}: escalated but no store: ${escalated[0]}`);
+            }
+            // All sub-commands must be allowed — if any isn't, escalate as unknown
+            const notAllowed = effectiveNames.filter(e => !matchesAny(policy.allow, e));
+            if (notAllowed.length === 0 && effectiveNames.length > 0) {
+                return allow();
+            }
+            // Unknown sub-commands → escalate
+            const unknownName = notAllowed[0] ?? `Bash:${cmd}`;
+            if (store) {
+                const approved = await requestApproval(store, {
+                    agentPath, role, tool: unknownName, input: cmd.slice(0, 200),
+                    reason: 'unknown tool',
+                });
+                return approved ? allow() : deny('denied by human');
+            }
+            return deny(`${role}: not allowed: ${unknownName}`);
+        }
+        // Non-Bash tools — deny → escalate → allow → unknown
+        // Escalate BEFORE allow: explicit "requires approval" beats wildcard allow.
+        if (matchesAny(policy.deny, toolName)) {
+            return deny(`${role}: denied: ${toolName}`);
+        }
+        if (matchesAny(policy.escalate, toolName)) {
+            if (store) {
+                const inputStr = JSON.stringify(input).slice(0, 500);
+                const approved = await requestApproval(store, {
+                    agentPath, role, tool: toolName, input: inputStr,
+                    reason: 'requires approval',
+                });
+                return approved ? allow() : deny('denied by human');
+            }
+            return deny(`${role}: escalated but no store: ${toolName}`);
+        }
+        if (matchesAny(policy.allow, toolName)) {
+            return allow();
+        }
+        // Unknown tool — escalate to human
+        if (store) {
+            const inputStr = JSON.stringify(input).slice(0, 500);
+            const approved = await requestApproval(store, {
+                agentPath, role, tool: toolName, input: inputStr,
+                reason: 'unknown tool',
+            });
+            return approved ? allow() : deny('denied by human');
+        }
+        return deny(`${role}: not allowed: ${toolName}`);
+    };
+}
+//# sourceMappingURL=guardian.js.map

package/dist/agent/guardian.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"guardian.js","sourceRoot":"","sources":["../../agent/guardian.ts"],"names":[],"mappings":"AAAA,mDAAmD;AACnD,uFAAuF;AACvF,oFAAoF;AAEpF,OAAO,EAAE,kBAAkB,EAA4C,iBAAiB,EAAE,MAAM,uBAAuB,CAAC;AACxH,OAAO,EAAE,cAAc,EAAE,MAAM,iBAAiB,CAAC;AAEjD,OAAO,EAAE,UAAU,EAAE,YAAY,EAAE,MAAM,gBAAgB,CAAC;AAC1D,OAAO,EAAE,YAAY,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACjE,OAAO,EAAE,UAAU,EAAE,MAAM,qBAAqB,CAAC;AAEjD,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAC;AAEnC,wDAAwD;AAExD,MAAM,OAAO,UAAU;IACrB,SAAS,GAAG,EAAE,CAAC;IACf,SAAS,GAAG,EAAE,CAAC;IACf,IAAI,GAAG,EAAE,CAAC;IACV,uBAAuB;IACvB,KAAK,GAAG,EAAE,CAAC;IACX,MAAM,GAAsC,SAAS,CAAC;IACtD,MAAM,GAAG,EAAE,CAAC;IACZ,SAAS,GAAG,CAAC,CAAC;IACd,UAAU,GAAG,CAAC,CAAC;IAEf,2CAA2C;IAC3C,OAAO,CAAC,IAGP;QACC,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,kBAAkB,CAAC,CAAC;QACnE,IAAI,CAAC,MAAM,GAAG,UAAU,CAAC;QACzB,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,MAAM,EAAE,GAAI,IAAY,CAAC,KAAK,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC;QACjD,IAAI,EAAE;YAAE,iBAAiB,CAAC,EAAE,EAAE,IAAI,EAAE;gBAClC,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,SAAS,EAAE,IAAI,CAAC,SAAS;gBACzB,KAAK,EAAE,IAAI,EAAE,QAAQ;aACtB,CAAC,CAAC;IACL,CAAC;IAED,wCAAwC;IACxC,IAAI,CAAC,IAGJ;QACC,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,kBAAkB,CAAC,CAAC;QACnE,IAAI,CAAC,MAAM,GAAG,QAAQ,CAAC;QACvB,IAAI,CAAC,UAAU,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QAC7B,MAAM,EAAE,GAAI,IAAY,CAAC,KAAK,EAAE,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,EAAE,CAAC;QACjD,IAAI,EAAE;YAAE,iBAAiB,CAAC,EAAE,EAAE,KAAK,EAAE;gBACnC,IAAI,EAAE,IAAI,CAAC,IAAI;gBACf,KAAK,EAAE,IAAI,CAAC,KAAK;gBACjB,SAAS,EAAE,IAAI,CAAC,SAAS;gBACzB,KAAK,EAAE,IAAI,EAAE,QAAQ;aACtB,CAAC,CAAC;IACL,CAAC;CACF;AAED,YAAY,CAAC,aAAa,EAAE,UAAU,CAAC,CAAC;AAUxC,gEAAgE;AAEhE,MAAM,eAAe,GAAe;IAClC,KAAK,EAAE;QACL,yBAAyB,EAAE,8BAA8B;QACzD,wBAAwB,EAAE,8BAA8B;QACxD,6BAA6B;KAC9B;IACD,IAAI,EAAE,EAAE;IACR,QAAQ,EAAE,CAAC,yBAAyB,EAAE,wBAAwB,EAAE,4BAA4B,CAAC;CAC9F,CAAC;AAEF,yDAAyD;AAEzD,SAAS,cAAc,CAAC,CAAW;IACjC,OAAO;QACL,KAAK,EAAE,CAAC,GAAG,CAAC,CAAC,KAAK,CAAC;QACnB,IAAI,EAAE,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC;QACjB,QAAQ,EAAE,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;KAC1B,CAAC;AACJ,CAAC;AAED,6DAA6D;AAC7D,SAAS,aAAa,CAAC,IAAgB,EAAE,QAAoB;IAC3D,MAAM,KAAK,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,KAAK,EAAE,GAAG,QAAQ,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;IAC/D,MAAM,IAAI,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,IAAI,EAAE,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAC5D,MAAM,QAAQ,GAAG,CAAC,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,IAAI,CAAC,QAAQ,EAAE,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC;IACxE,8DAA8D;IAC9D,MAAM,aAAa,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IACxE,MAAM,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC;IAChE,OAAO;QACL,KAAK;QACL,IAAI,EAAE,SAAS;QACf,QAAQ,EAAE,aAAa;KACxB,CAAC;AACJ,CAAC;AAED,MAAM,aAAa,GAAG,kBAAkB,CAAC;AAEzC,wDAAwD;AACxD,KAAK,UAAU,aAAa,CAAC,KAAW,EAAE,SAAiB;IACzD,MAAM,SAAS,GAAG,eAAe,CAAC;IAElC,sCAAsC;IACtC,IAAI,IAAI,GAAG,SAAS,CAAC;IACrB,IAAI,CAAC;QACH,MAAM,YAAY,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,aAAa,CAAC,CAAC;QACpD,IAAI,YAAY,EAAE,CAAC;YACjB,MAAM,YAAY,GAAG,YAAY,CAAC,YAAY,EAAE,QAAQ,CAAC,CAAC;YAC1D,IAAI,YAAY,IAAI,CAAC,YAAY,CAAC,KAAK,CAAC,MAAM,IAAI,YAAY,CAAC,IAAI,CAAC,MAAM,IAAI,YAAY,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gBAC5G,IAAI,GAAG,aAAa,CAAC,SAAS,EAAE,cAAc,CAAC,YAAY,CAAC,CAAC,CAAC;YAChE,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC,CAAC,0BAA0B,CAAC,CAAC;IAEtC,qBAAqB;IACrB,IAAI,CAAC;QACH,MAAM,SAAS,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAC7C,IAAI,SAAS,EAAE,CAAC;YACd,MAAM,WAAW,GAAG,YAAY,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;YACtD,IAAI,WAAW,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,MAAM,IAAI,WAAW,CAAC,IAAI,CAAC,MAAM,IAAI,WAAW,CAAC,QAAQ,CAAC,MAAM,CAAC,EAAE,CAAC;gBACxG,OAAO,aAAa,CAAC,IAAI,EAAE,cAAc,CAAC,WAAW,CAAC,CAAC,CAAC;YAC1D,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC,CAAC,mCAAmC,CAAC,CAAC;IAE/C,OAAO,IAAI,CAAC;AACd,CAAC;AAED,mDAAmD;AAEnD,mFAAmF;AACnF,MAAM,UAAU,oBAAoB,CAAC,KAAa;IAChD,MAAM,MAAM,GAAG,eAAe,CAAC;IAC/B,MAAM,KAAK,GAAqB,EAAE,CAAC;IAEnC,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,IAAI;QAAE,KAAK,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,EAAE,CAAC,CAAC;IACtF,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,QAAQ;QAAE,KAAK,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,EAAE,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC,CAAC;IAC9F,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,KAAK;QAAE,KAAK,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,WAAW,EAAE,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;IAExF,OAAO,KAAK,CAAC;AACf,CAAC;AAGD,kCAAkC;AAElC,MAAM,cAAc,GAAG;IACrB,UAAU,EAAE,gBAAgB,EAAE,gBAAgB,EAAE,aAAa;IAC7D,wBAAwB,EAAE,wBAAwB,EAAI,gBAAgB;IACtE,WAAW,EAA8C,iBAAiB;IAC1E,aAAa,EAAE,aAAa,EAA6B,wBAAwB;IACjF,qBAAqB,EAAE,UAAU,EAAuB,mBAAmB;CAC5E,CAAC;AAEF,2DAA2D;AAE3D,MAAM,UAAU,cAAc,CAAC,GAAW;IACxC,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,IAAI,GAAG,GAAG,EAAE,CAAC;IACb,IAAI,QAAQ,GAAG,KAAK,CAAC;IACrB,IAAI,QAAQ,GAAG,KAAK,CAAC;IACrB,IAAI,OAAO,GAAG,KAAK,CAAC;IAEpB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACpC,MAAM,EAAE,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC;QAElB,IAAI,OAAO,EAAE,CAAC;YAAC,GAAG,IAAI,EAAE,CAAC;YAAC,OAAO,GAAG,KAAK,CAAC;YAAC,SAAS;QAAC,CAAC;QACtD,IAAI,EAAE,KAAK,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;YAAC,GAAG,IAAI,EAAE,CAAC;YAAC,OAAO,GAAG,IAAI,CAAC;YAAC,SAAS;QAAC,CAAC;QACtE,IAAI,EAAE,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;YAAC,GAAG,IAAI,EAAE,CAAC;YAAC,QAAQ,GAAG,CAAC,QAAQ,CAAC;YAAC,SAAS;QAAC,CAAC;QAC3E,IAAI,EAAE,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;YAAC,GAAG,IAAI,EAAE,CAAC;YAAC,QAAQ,GAAG,CAAC,QAAQ,CAAC;YAAC,SAAS;QAAC,CAAC;QAE3E,IAAI,CAAC,QAAQ,IAAI,CAAC,QAAQ,EAAE,CAAC;YAC3B,IAAI,EAAE,KAAK,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,GAAG,EAAE,CAAC;gBAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAAC,GAAG,GAAG,EAAE,CAAC;gBAAC,CAAC,EAAE,CAAC;gBAAC,SAAS;YAAC,CAAC;YACnF,IAAI,EAAE,KAAK,GAAG,EAAE,CAAC;gBAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAAC,GAAG,GAAG,EAAE,CAAC;gBAAC,SAAS;YAAC,CAAC;YACxD,IAAI,EAAE,KAAK,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,KAAK,GAAG,EAAE,CAAC;gBAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAAC,GAAG,GAAG,EAAE,CAAC;gBAAC,CAAC,EAAE,CAAC;gBAAC,SAAS;YAAC,CAAC;YACnF,IAAI,EAAE,KAAK,GAAG,EAAE,CAAC;gBAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;gBAAC,GAAG,GAAG,EAAE,CAAC;gBAAC,SAAS;YAAC,CAAC;QAC1D,CAAC;QAED,GAAG,IAAI,EAAE,CAAC;IACZ,CAAC;IACD,IAAI,GAAG;QAAE,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;IACzB,OAAO,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;AAClD,CAAC;AAED,uDAAuD;AAEvD,MAAM,gBAAgB,GAAG,EAAE,GAAG,EAAE,GAAG,IAAI,CAAC,CAAC,SAAS;AAElD,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,KAAW,EACX,IAAsF;IAEtF,MAAM,EAAE,GAAG,KAAK,IAAI,CAAC,GAAG,EAAE,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,CAAC;IACvE,MAAM,IAAI,GAAG,qBAAqB,EAAE,EAAE,CAAC;IAEvC,MAAM,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,EAAE,aAAa,EAAE;QAC9C,SAAS,EAAE,IAAI,CAAC,SAAS;QACzB,SAAS,EAAE,IAAI,CAAC,IAAI;QACpB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,KAAK,EAAE,IAAI,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC;QAChC,MAAM,EAAE,SAAS;QACjB,MAAM,EAAE,IAAI,CAAC,MAAM;QACnB,SAAS,EAAE,IAAI,CAAC,GAAG,EAAE;KACtB,CAAC,CAAC,CAAC;IAEJ,OAAO,CAAC,GAAG,CAAC,0BAA0B,IAAI,CAAC,IAAI,UAAU,IAAI,CAAC,IAAI,MAAM,IAAI,EAAE,CAAC,CAAC;IAEhF,OAAO,IAAI,OAAO,CAAU,CAAC,OAAO,EAAE,EAAE;QACtC,MAAM,KAAK,GAAG,UAAU,CAAC,GAAG,EAAE;YAC5B,kBAAkB,CAAC,MAAM,CAAC,EAAE,CAAC,CAAC;YAC9B,OAAO,CAAC,GAAG,CAAC,oCAAoC,IAAI,EAAE,CAAC,CAAC;YACxD,OAAO,CAAC,KAAK,CAAC,CAAC;QACjB,CAAC,EAAE,gBAAgB,CAAC,CAAC;QAErB,kBAAkB,CAAC,GAAG,CAAC,EAAE,EAAE,KAAK,EAAE,KAAc,EAAE,IAAqB,EAAE,EAAE;YACzE,YAAY,CAAC,KAAK,CAAC,CAAC;YAEpB,2CAA2C;YAC3C,IAAI,IAAI,EAAE,KAAK,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;gBAC7B,IAAI,CAAC;oBACH,MAAM,YAAY,CAAC,KAAK,EAAE,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,KAAK,IAAI,EAAE,EAAE,KAAK,EAAE,IAAI,CAAC,SAAS,IAAI,EAAE,EAAE,IAAI,CAAC,KAAK,CAAC,CAAC;gBAClG,CAAC;gBAAC,OAAO,GAAG,EAAE,CAAC;oBACb,OAAO,CAAC,KAAK,CAAC,sCAAsC,GAAG,EAAE,CAAC,CAAC;gBAC7D,CAAC;YACH,CAAC;YAED,OAAO,CAAC,KAAK,CAAC,CAAC;QACjB,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC;AAED,yEAAyE;AACzE,KAAK,UAAU,YAAY,CAAC,KAAW,EAAE,IAAY,EAAE,MAAc,EAAE,KAAc,EAAE,SAAiB,EAAE,KAAa;IACrH,MAAM,UAAU,GAAG,KAAK,KAAK,OAAO,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,aAAa,CAAC;IACjE,MAAM,WAAW,GAAG,CAAC,CAAC;IAEtB,KAAK,IAAI,OAAO,GAAG,CAAC,EAAE,OAAO,GAAG,WAAW,EAAE,OAAO,EAAE,EAAE,CAAC;QACvD,MAAM,IAAI,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,UAAU,CAAC,CAAC;QACzC,IAAI,CAAC,IAAI;YAAE,OAAO;QAElB,MAAM,MAAM,GAAG,YAAY,CAAC,IAAI,EAAE,QAAQ,CAAC,IAAI,MAAM,CAAC,MAAM,CAAC,IAAI,QAAQ,EAAE,EAAE,EAAE,KAAK,EAAE,WAAW,EAAE,CAAC,CAAC;QAErG,IAAI,KAAK,EAAE,CAAC;YACV,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC;gBAAE,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1D,MAAM,CAAC,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;YAClD,MAAM,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;QAC5D,CAAC;aAAM,CAAC;YACN,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC;gBAAE,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACxD,MAAM,CAAC,KAAK,GAAG,MAAM,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;YACpD,MAAM,CAAC,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,KAAK,IAAI,CAAC,CAAC;QAC5D,CAAC;QAED,YAAY,CAAC,IAAI,EAAE,QAAQ,EAAE,MAAM,CAAC,CAAC;QACrC,IAAI,CAAC;YACH,MAAM,KAAK,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC;YACtB,OAAO,CAAC,GAAG,CAAC,0BAA0B,KAAK,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,IAAI,IAAI,MAAM,UAAU,EAAE,CAAC,CAAC;YAC1F,OAAO;QACT,CAAC;QAAC,OAAO,GAAG,EAAE,CAAC;YACb,IAAI,GAAG,YAAY,KAAK,IAAI,GAAG,CAAC,OAAO,CAAC,UAAU,CAAC,4BAA4B,CAAC,IAAI,OAAO,GAAG,WAAW,GAAG,CAAC,EAAE,CAAC;gBAC9G,OAAO,CAAC,IAAI,CAAC,8BAA8B,UAAU,WAAW,OAAO,GAAG,CAAC,EAAE,CAAC,CAAC;gBAC/E,SAAS;YACX,CAAC;YACD,MAAM,GAAG,CAAC;QACZ,CAAC;IACH,CAAC;AACH,CAAC;AAUD,MAAM,CAAC,KAAK,UAAU,kBAAkB,CAAC,KAAW;IAClD,MAAM,SAAS,GAAqB,EAAE,CAAC;IAEvC,4BAA4B;IAC5B,IAAI,CAAC;QACH,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,mBAAmB,CAAC,CAAC;QAC/D,KAAK,MAAM,QAAQ,IAAI,KAAK,EAAE,CAAC;YAC7B,IAAI,QAAQ,CAAC,KAAK,KAAK,aAAa,IAAI,QAAQ,CAAC,MAAM,KAAK,SAAS;gBAAE,SAAS;YAChF,MAAM,KAAK,CAAC,GAAG,CAAC,EAAE,GAAG,QAAQ,EAAE,MAAM,EAAE,QAAiB,EAAE,MAAM,EAAE,yBAAyB,EAAE,UAAU,EAAE,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC,CAAC;YACvH,OAAO,CAAC,GAAG,CAAC,yCAAyC,QAAQ,CAAC,KAAK,EAAE,CAAC,CAAC;QACzE,CAAC;IACH,CAAC;IAAC,MAAM,CAAC,CAAC,sBAAsB,CAAC,CAAC;IAElC,iEAAiE;IACjE,IAAI,CAAC;QACH,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,SAAS,CAAC,CAAC;QACrD,MAAM,cAAc,GAAa,EAAE,CAAC;QAEpC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,IAAI,CAAC,KAAK,KAAK,UAAU;gBAAE,SAAS;YACxC,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS;gBAAE,SAAS;YAErE,yCAAyC;YACzC,MAAM,MAAM,GAAG,YAAY,CAAC,IAAI,EAAE,cAAc,CAAC,CAAC;YAClD,MAAM,UAAU,GAAG,MAAM,IAAI,OAAO,MAAM,CAAC,SAAS,KAAK,QAAQ,IAAI,MAAM,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC;YACjG,MAAM,QAAQ,GAAG,OAAO,IAAI,CAAC,WAAW,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC;YAE9E,IAAI,UAAU,IAAI,QAAQ,EAAE,CAAC;gBAC3B,gEAAgE;gBAChE,SAAS,CAAC,IAAI,CAAC,EAAE,SAAS,EAAE,IAAI,CAAC,KAAK,EAAE,QAAQ,EAAE,CAAC,CAAC;gBACpD,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBAChC,OAAO,CAAC,GAAG,CAAC,+BAA+B,IAAI,CAAC,KAAK,MAAM,QAAQ,aAAa,MAAM,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC;YACtH,CAAC;iBAAM,CAAC;gBACN,6BAA6B;gBAC7B,MAAM,KAAK,CAAC,GAAG,CAAC,EAAE,GAAG,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,WAAW,EAAE,EAAE,EAAE,OAAO,EAAE,EAAE,EAAE,CAAC,CAAC;gBAC3E,OAAO,CAAC,GAAG,CAAC,iCAAiC,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;gBAE3D,8CAA8C;gBAC9C,IAAI,CAAC;oBACH,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,GAAG,IAAI,CAAC,KAAK,QAAQ,CAAC,CAAC;oBACxE,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;wBACzB,IAAI,IAAI,CAAC,KAAK,KAAK,eAAe,IAAI,IAAI,CAAC,MAAM,KAAK,SAAS;4BAAE,SAAS;wBAC1E,MAAM,KAAK,CAAC,GAAG,CAAC,EAAE,GAAG,IAAI,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,6BAA6B,EAAE,CAAC,CAAC;wBACrF,OAAO,CAAC,GAAG,CAAC,sCAAsC,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;oBAClE,CAAC;gBACH,CAAC;gBAAC,MAAM,CAAC,CAAC,sBAAsB,CAAC,CAAC;YACpC,CAAC;QACH,CAAC;QAED,gEAAgE;QAChE,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;QAC5C,IAAI,QAAQ,IAAI,QAAQ,CAAC,KAAK,KAAK,SAAS,EAAE,CAAC;YAC7C,MAAM,KAAK,CAAC,GAAG,CAAC,EAAE,GAAG,QAAQ,EAAE,MAAM,EAAE,cAAc,EAAE,KAAK,EAAE,EAAE,EAAE,CAAC,CAAC;YACpE,IAAI,cAAc,CAAC,MAAM,EAAE,CAAC;gBAC1B,OAAO,CAAC,GAAG,CAAC,4BAA4B,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACxE,CAAC;iBAAM,CAAC;gBACN,OAAO,CAAC,GAAG,CAAC,sCAAsC,CAAC,CAAC;YACtD,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC,CAAC,KAAK,CAAC,CAAC;IAEjB,2DAA2D;IAC3D,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,CAAC;IACjE,IAAI,CAAC;QACH,MAAM,EAAE,KAAK,EAAE,GAAG,MAAM,KAAK,CAAC,WAAW,CAAC,aAAa,CAAC,CAAC;QACzD,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,IAAI,CAAC,KAAK,KAAK,YAAY;gBAAE,SAAS;YAC1C,IAAI,gBAAgB,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,CAAC;gBAAE,SAAS;YAC/C,IAAI,OAAO,IAAI,CAAC,QAAQ,KAAK,QAAQ,IAAI,IAAI,CAAC,QAAQ,EAAE,CAAC;gBACvD,MAAM,KAAK,CAAC,GAAG,CAAC,EAAE,GAAG,IAAI,EAAE,QAAQ,EAAE,EAAE,EAAE,CAAC,CAAC;gBAC3C,OAAO,CAAC,GAAG,CAAC,mCAAmC,IAAI,CAAC,KAAK,EAAE,CAAC,CAAC;YAC/D,CAAC;QACH,CAAC;IACH,CAAC;IAAC,MAAM,CAAC,CAAC,cAAc,CAAC,CAAC;IAE1B,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,0CAA0C;AAE1C,MAAM,UAAU,gBAAgB,CAC9B,IAAY,EACZ,SAAiB,EACjB,KAAY;IAEZ,MAAM,KAAK,GAAG,GAAqB,EAAE,CAAC,CAAC,EAAE,QAAQ,EAAE,OAAO,EAAE,CAAC,CAAC;IAC9D,MAAM,IAAI,GAAG,CAAC,OAAe,EAAoB,EAAE,CAAC,CAAC,EAAE,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC;IAEpF,wCAAwC;IACxC,IAAI,YAAY,GAAsB,IAAI,CAAC;IAE3C,OAAO,KAAK,EACV,QAAgB,EAChB,KAA8B,EACH,EAAE;QAE7B,8CAA8C;QAC9C,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,YAAY,GAAG,KAAK;gBAClB,CAAC,CAAC,MAAM,aAAa,CAAC,KAAK,EAAE,SAAS,CAAC;gBACvC,CAAC,CAAC,eAAe,CAAC;QACtB,CAAC;QACD,MAAM,MAAM,GAAG,YAAY,CAAC;QAE5B,yCAAyC;QACzC,IAAI,UAAU,CAAC,MAAM,CAAC,IAAI,EAAE,QAAQ,CAAC,EAAE,CAAC;YACtC,OAAO,IAAI,CAAC,GAAG,IAAI,aAAa,QAAQ,EAAE,CAAC,CAAC;QAC9C,CAAC;QAED,wEAAwE;QACxE,IAAI,QAAQ,KAAK,MAAM,EAAE,CAAC;YACxB,MAAM,GAAG,GAAG,OAAO,KAAK,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;YAE1E,kGAAkG;YAClG,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;YAE/C,sEAAsE;YACtE,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;gBACrC,IAAI,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,UAAU,CAAC;oBAAE,OAAO,IAAI,CAAC,YAAY,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC;YACjG,CAAC;YAED,mDAAmD;YACnD,MAAM,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC,OAAO,CAAC,CAAC;YAEjE,wFAAwF;YACxF,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,QAAQ,GAAG,IAAI,CAAC,OAAO,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC;gBAC9C,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;oBACrC,IAAI,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC;wBAAE,OAAO,IAAI,CAAC,YAAY,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,EAAE,CAAC,CAAC;gBACjG,CAAC;YACH,CAAC;YAED,yCAAyC;YACzC,MAAM,KAAK,GAAG,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,EAAE,CAAC;YAC5E,MAAM,cAAc,GAAG,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC;YAEnD,+CAA+C;YAC/C,KAAK,MAAM,KAAK,IAAI,cAAc,EAAE,CAAC;gBACnC,IAAI,UAAU,CAAC,MAAM,CAAC,IAAI,EAAE,KAAK,CAAC,EAAE,CAAC;oBACnC,OAAO,IAAI,CAAC,GAAG,IAAI,aAAa,KAAK,EAAE,CAAC,CAAC;gBAC3C,CAAC;YACH,CAAC;YAED,gEAAgE;YAChE,MAAM,SAAS,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,UAAU,CAAC,MAAM,CAAC,QAAQ,EAAE,CAAC,CAAC,CAAC,CAAC;YAC7E,IAAI,SAAS,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACzB,IAAI,KAAK,EAAE,CAAC;oBACV,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE;wBAC5C,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,SAAS,CAAC,CAAC,CAAC,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;wBAC7D,MAAM,EAAE,mBAAmB;qBAC5B,CAAC,CAAC;oBACH,OAAO,QAAQ,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;gBACtD,CAAC;gBACD,OAAO,IAAI,CAAC,GAAG,IAAI,6BAA6B,SAAS,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC;YAClE,CAAC;YAED,uEAAuE;YACvE,MAAM,UAAU,GAAG,cAAc,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,UAAU,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,CAAC;YAC5E,IAAI,UAAU,CAAC,MAAM,KAAK,CAAC,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;gBACzD,OAAO,KAAK,EAAE,CAAC;YACjB,CAAC;YAED,kCAAkC;YAClC,MAAM,WAAW,GAAG,UAAU,CAAC,CAAC,CAAC,IAAI,QAAQ,GAAG,EAAE,CAAC;YACnD,IAAI,KAAK,EAAE,CAAC;gBACV,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE;oBAC5C,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC;oBAC5D,MAAM,EAAE,cAAc;iBACvB,CAAC,CAAC;gBACH,OAAO,QAAQ,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;YACtD,CAAC;YACD,OAAO,IAAI,CAAC,GAAG,IAAI,kBAAkB,WAAW,EAAE,CAAC,CAAC;QACtD,CAAC;QAED,qDAAqD;QACrD,4EAA4E;QAC5E,IAAI,UAAU,CAAC,MAAM,CAAC,IAAI,EAAE,QAAQ,CAAC,EAAE,CAAC;YACtC,OAAO,IAAI,CAAC,GAAG,IAAI,aAAa,QAAQ,EAAE,CAAC,CAAC;QAC9C,CAAC;QACD,IAAI,UAAU,CAAC,MAAM,CAAC,QAAQ,EAAE,QAAQ,CAAC,EAAE,CAAC;YAC1C,IAAI,KAAK,EAAE,CAAC;gBACV,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;gBACrD,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE;oBAC5C,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ;oBAChD,MAAM,EAAE,mBAAmB;iBAC5B,CAAC,CAAC;gBACH,OAAO,QAAQ,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;YACtD,CAAC;YACD,OAAO,IAAI,CAAC,GAAG,IAAI,6BAA6B,QAAQ,EAAE,CAAC,CAAC;QAC9D,CAAC;QACD,IAAI,UAAU,CAAC,MAAM,CAAC,KAAK,EAAE,QAAQ,CAAC,EAAE,CAAC;YACvC,OAAO,KAAK,EAAE,CAAC;QACjB,CAAC;QAED,mCAAmC;QACnC,IAAI,KAAK,EAAE,CAAC;YACV,MAAM,QAAQ,GAAG,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC;YACrD,MAAM,QAAQ,GAAG,MAAM,eAAe,CAAC,KAAK,EAAE;gBAC5C,SAAS,EAAE,IAAI,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,QAAQ;gBAChD,MAAM,EAAE,cAAc;aACvB,CAAC,CAAC;YACH,OAAO,QAAQ,CAAC,CAAC,CAAC,KAAK,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QACtD,CAAC;QACD,OAAO,IAAI,CAAC,GAAG,IAAI,kBAAkB,QAAQ,EAAE,CAAC,CAAC;IACnD,CAAC,CAAC;AACJ,CAAC"}

package/dist/agent/seed.d.ts

@@ -0,0 +1,2 @@
+export {};
+//# sourceMappingURL=seed.d.ts.map

package/dist/agent/seed.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"seed.d.ts","sourceRoot":"","sources":["../../agent/seed.ts"],"names":[],"mappings":""}

package/dist/agent/seed.js

@@ -0,0 +1,68 @@
+// Agent Office seed — /agents pool + agents + guardian policies
+import { registerPrefab } from '@treenity/core/mod';
+registerPrefab('agent', 'seed', [
+    // Pool node — orchestrator service lives here
+    { $path: 'agents', $type: 'ai.pool',
+        maxConcurrent: 2, active: [], queue: [] },
+    // Guardian — global base policy (applies to ALL agents)
+    // Read-only by default. Destructive ops denied. Writes require approval.
+    { $path: 'agents/guardian', $type: 'dir',
+        policy: {
+            $type: 'ai.policy',
+            allow: [
+                'mcp__treenity__get_node', 'mcp__treenity__list_children',
+                'mcp__treenity__catalog', 'mcp__treenity__describe_type',
+                'mcp__treenity__search_types', 'mcp__treenity__compile_view',
+            ],
+            deny: [
+                'mcp__treenity__remove_node',
+                'Bash:git checkout *', 'Bash:git checkout -- *',
+                'Bash:git reset --hard*', 'Bash:git push --force*', 'Bash:git clean*',
+                'Bash:rm -rf *', 'Bash:rm -r *', 'Bash:cat *.env*',
+            ],
+            escalate: [
+                'mcp__treenity__set_node', 'mcp__treenity__execute', 'mcp__treenity__deploy_prefab',
+                'Bash:git add *', 'Bash:git commit *', 'Bash:git push *',
+                'Bash:sed *', 'Bash:mv *', 'Bash:cp *',
+            ],
+        },
+    },
+    // Approvals queue
+    { $path: 'agents/approvals', $type: 'ai.approvals' },
+    // ── QA agent (ECS: ai.agent + metatron.config) ──
+    { $path: 'agents/qa', $type: 'ai.agent',
+        role: 'qa',
+        status: 'idle',
+        currentTask: '',
+        taskRef: '',
+        lastRunAt: 0,
+        totalTokens: 0,
+        // LLM runtime config — metatron.config component (D29)
+        config: {
+            $type: 'metatron.config',
+            model: 'claude-opus-4-6',
+            systemPrompt: `You are a QA agent for the Treenity project.
+Your job: run tests, check for errors, verify code quality.
+
+## QA Checklist
+1. Run \`npm test\` and report results (use Bash tool)
+2. Check for TypeScript errors
+3. Report any failing tests with details
+4. Summarize: PASS (all green) or FAIL (with specifics)
+
+Be concise. Facts only.`,
+            sessionId: '',
+        },
+        // Agent-level policy: only ALLOW overrides (deny/escalate inherited from global guardian)
+        policy: {
+            $type: 'ai.policy',
+            allow: ['Bash:npm *', 'Bash:ls *', 'Bash:cat *', 'Bash:git status*', 'Bash:git diff*', 'Bash:git log*'],
+            deny: [],
+            escalate: [],
+        },
+    },
+    { $path: 'agents/qa/tasks', $type: 'dir' },
+    // Autostart — orchestrator starts on server boot
+    { $path: '/sys/autostart/agents', $type: 'ref', $ref: '/agents' },
+]);
+//# sourceMappingURL=seed.js.map

package/dist/agent/seed.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"seed.js","sourceRoot":"","sources":["../../agent/seed.ts"],"names":[],"mappings":"AAAA,gEAAgE;AAGhE,OAAO,EAAE,cAAc,EAAE,MAAM,oBAAoB,CAAC;AAEpD,cAAc,CAAC,OAAO,EAAE,MAAM,EAAE;IAC9B,8CAA8C;IAC9C,EAAE,KAAK,EAAE,QAAQ,EAAE,KAAK,EAAE,SAAS;QACjC,aAAa,EAAE,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,KAAK,EAAE,EAAE,EAAE;IAE3C,wDAAwD;IACxD,yEAAyE;IACzE,EAAE,KAAK,EAAE,iBAAiB,EAAE,KAAK,EAAE,KAAK;QACtC,MAAM,EAAE;YACN,KAAK,EAAE,WAAW;YAClB,KAAK,EAAE;gBACL,yBAAyB,EAAE,8BAA8B;gBACzD,wBAAwB,EAAE,8BAA8B;gBACxD,6BAA6B,EAAE,6BAA6B;aAC7D;YACD,IAAI,EAAE;gBACJ,4BAA4B;gBAC5B,qBAAqB,EAAE,wBAAwB;gBAC/C,wBAAwB,EAAE,wBAAwB,EAAE,iBAAiB;gBACrE,eAAe,EAAE,cAAc,EAAE,iBAAiB;aACnD;YACD,QAAQ,EAAE;gBACR,yBAAyB,EAAE,wBAAwB,EAAE,8BAA8B;gBACnF,gBAAgB,EAAE,mBAAmB,EAAE,iBAAiB;gBACxD,YAAY,EAAE,WAAW,EAAE,WAAW;aACvC;SACF;KACF;IAED,kBAAkB;IAClB,EAAE,KAAK,EAAE,kBAAkB,EAAE,KAAK,EAAE,cAAc,EAAE;IAEpD,mDAAmD;IACnD,EAAE,KAAK,EAAE,WAAW,EAAE,KAAK,EAAE,UAAU;QACrC,IAAI,EAAE,IAAI;QACV,MAAM,EAAE,MAAM;QACd,WAAW,EAAE,EAAE;QACf,OAAO,EAAE,EAAE;QACX,SAAS,EAAE,CAAC;QACZ,WAAW,EAAE,CAAC;QACd,uDAAuD;QACvD,MAAM,EAAE;YACN,KAAK,EAAE,iBAAiB;YACxB,KAAK,EAAE,iBAAiB;YACxB,YAAY,EAAE;;;;;;;;;wBASI;YAClB,SAAS,EAAE,EAAE;SACd;QACD,0FAA0F;QAC1F,MAAM,EAAE;YACN,KAAK,EAAE,WAAW;YAClB,KAAK,EAAE,CAAC,YAAY,EAAE,WAAW,EAAE,YAAY,EAAE,kBAAkB,EAAE,gBAAgB,EAAE,eAAe,CAAC;YACvG,IAAI,EAAE,EAAE;YACR,QAAQ,EAAE,EAAE;SACb;KACF;IACD,EAAE,KAAK,EAAE,iBAAiB,EAAE,KAAK,EAAE,KAAK,EAAE;IAE1C,iDAAiD;IACjD,EAAE,KAAK,EAAE,uBAAuB,EAAE,KAAK,EAAE,KAAK,EAAE,IAAI,EAAE,SAAS,EAAE;CACpD,CAAC,CAAC"}

package/dist/agent/server.d.ts

@@ -0,0 +1,5 @@
+import './types';
+import './guardian';
+import './service';
+import './seed';
+//# sourceMappingURL=server.d.ts.map

package/dist/agent/server.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.d.ts","sourceRoot":"","sources":["../../agent/server.ts"],"names":[],"mappings":"AAAA,OAAO,SAAS,CAAC;AACjB,OAAO,YAAY,CAAC;AACpB,OAAO,WAAW,CAAC;AACnB,OAAO,QAAQ,CAAC"}

package/dist/agent/server.js

@@ -0,0 +1,5 @@
+import './types';
+import './guardian';
+import './service';
+import './seed';
+//# sourceMappingURL=server.js.map

package/dist/agent/server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"server.js","sourceRoot":"","sources":["../../agent/server.ts"],"names":[],"mappings":"AAAA,OAAO,SAAS,CAAC;AACjB,OAAO,YAAY,CAAC;AACpB,OAAO,WAAW,CAAC;AACnB,OAAO,QAAQ,CAAC"}