@uniforge/testing 0.1.0-alpha.2

package/dist/rbac/index.mjs

@@ -0,0 +1,150 @@
+// src/rbac/mock-rbac-service.ts
+import { ROLE_HIERARCHY } from "@uniforge/platform-core/rbac";
+var MOCK_ROLE_PERMISSIONS = {
+  owner: [],
+  admin: [
+    "products:read",
+    "products:write",
+    "orders:read",
+    "orders:write",
+    "customers:read",
+    "customers:write",
+    "analytics:read",
+    "settings:read",
+    "settings:write",
+    "settings:manage",
+    "staff:read",
+    "staff:write"
+  ],
+  staff: [
+    "products:read",
+    "products:write",
+    "orders:read",
+    "orders:write",
+    "customers:read",
+    "analytics:read",
+    "settings:read"
+  ],
+  collaborator: [
+    "products:read",
+    "orders:read",
+    "analytics:read"
+  ]
+};
+function makeKey(shopDomain, userId) {
+  return `${shopDomain}:${userId}`;
+}
+function createMockRBACService() {
+  const _members = /* @__PURE__ */ new Map();
+  function _reset() {
+    _members.clear();
+  }
+  async function upsertMember(input) {
+    const key = makeKey(input.shopDomain, input.userId);
+    const existing = _members.get(key);
+    const now = /* @__PURE__ */ new Date();
+    const member = {
+      id: existing?.id ?? `mock-member-${Date.now()}-${Math.random().toString(36).slice(2)}`,
+      shopDomain: input.shopDomain,
+      userId: input.userId,
+      email: input.email,
+      role: input.role,
+      customPermissions: input.customPermissions ?? null,
+      createdAt: existing?.createdAt ?? now,
+      updatedAt: now
+    };
+    _members.set(key, member);
+    return member;
+  }
+  async function getMember(shopDomain, userId) {
+    return _members.get(makeKey(shopDomain, userId)) ?? null;
+  }
+  async function listMembers(shopDomain) {
+    const result = [];
+    for (const member of _members.values()) {
+      if (member.shopDomain === shopDomain) {
+        result.push(member);
+      }
+    }
+    return result;
+  }
+  async function updateMember(shopDomain, userId, input) {
+    const key = makeKey(shopDomain, userId);
+    const existing = _members.get(key);
+    if (!existing) {
+      throw new Error(`Member not found: ${shopDomain}:${userId}`);
+    }
+    if (input.role !== void 0) {
+      existing.role = input.role;
+    }
+    if (input.email !== void 0) {
+      existing.email = input.email;
+    }
+    if (input.customPermissions !== void 0) {
+      existing.customPermissions = input.customPermissions;
+    }
+    existing.updatedAt = /* @__PURE__ */ new Date();
+    return existing;
+  }
+  async function removeMember(shopDomain, userId) {
+    _members.delete(makeKey(shopDomain, userId));
+  }
+  async function hasPermission(shopDomain, userId, permission) {
+    const member = _members.get(makeKey(shopDomain, userId));
+    if (!member) return false;
+    if (member.role === "owner") return true;
+    const perms = resolvePerms(member.role, member.customPermissions);
+    return perms.includes(permission);
+  }
+  async function getEffectivePermissions(shopDomain, userId) {
+    const member = _members.get(makeKey(shopDomain, userId));
+    if (!member) return [];
+    if (member.role === "owner") return ["*"];
+    return resolvePerms(member.role, member.customPermissions);
+  }
+  function isRoleAtLeast(role, minimumRole) {
+    const roleIndex = ROLE_HIERARCHY.indexOf(role);
+    const minIndex = ROLE_HIERARCHY.indexOf(minimumRole);
+    if (roleIndex === -1 || minIndex === -1) return false;
+    return roleIndex <= minIndex;
+  }
+  function resolvePerms(role, custom) {
+    const rolePerms = MOCK_ROLE_PERMISSIONS[role] ?? [];
+    if (!custom || custom.length === 0) return [...rolePerms];
+    const combined = /* @__PURE__ */ new Set([...rolePerms, ...custom]);
+    return [...combined];
+  }
+  return {
+    _members,
+    _reset,
+    upsertMember,
+    getMember,
+    listMembers,
+    updateMember,
+    removeMember,
+    hasPermission,
+    getEffectivePermissions,
+    isRoleAtLeast
+  };
+}
+
+// src/rbac/factories.ts
+function createTestShopMember(overrides) {
+  const now = /* @__PURE__ */ new Date();
+  const defaults = {
+    id: `member-${Date.now()}`,
+    shopDomain: "test-shop.myshopify.com",
+    userId: 12345,
+    email: "staff@test-shop.com",
+    role: "staff",
+    customPermissions: null,
+    createdAt: now,
+    updatedAt: now
+  };
+  return { ...defaults, ...overrides };
+}
+export {
+  createMockRBACService,
+  createTestShopMember
+};
+//# sourceMappingURL=index.mjs.map

package/dist/rbac/index.mjs.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/rbac/mock-rbac-service.ts","../../src/rbac/factories.ts"],"sourcesContent":["/**\n * Mock RBACService for unit testing.\n *\n * Provides an in-memory implementation with internal Maps.\n */\n\nimport type {\n  RBACService,\n  Role,\n  ShopMember,\n  UpsertShopMemberInput,\n  UpdateShopMemberInput,\n} from '@uniforge/platform-core/rbac';\nimport { ROLE_HIERARCHY } from '@uniforge/platform-core/rbac';\n\nexport type MockRBACService = RBACService & {\n  _members: Map<string, ShopMember>;\n  _reset(): void;\n};\n\n// Default permissions for each role (mirrors core implementation)\nconst MOCK_ROLE_PERMISSIONS: Record<Role, string[]> = {\n  owner: [],\n  admin: [\n    'products:read', 'products:write',\n    'orders:read', 'orders:write',\n    'customers:read', 'customers:write',\n    'analytics:read',\n    'settings:read', 'settings:write', 'settings:manage',\n    'staff:read', 'staff:write',\n  ],\n  staff: [\n    'products:read', 'products:write',\n    'orders:read', 'orders:write',\n    'customers:read',\n    'analytics:read',\n    'settings:read',\n  ],\n  collaborator: [\n    'products:read',\n    'orders:read',\n    'analytics:read',\n  ],\n};\n\nfunction makeKey(shopDomain: string, userId: number): string {\n  return `${shopDomain}:${userId}`;\n}\n\nexport function createMockRBACService(): MockRBACService {\n  const _members = new Map<string, ShopMember>();\n\n  function _reset(): void {\n    _members.clear();\n  }\n\n  async function upsertMember(input: UpsertShopMemberInput): Promise<ShopMember> {\n    const key = makeKey(input.shopDomain, input.userId);\n    const existing = _members.get(key);\n    const now = new Date();\n    const member: ShopMember = {\n      id: existing?.id ?? `mock-member-${Date.now()}-${Math.random().toString(36).slice(2)}`,\n      shopDomain: input.shopDomain,\n      userId: input.userId,\n      email: input.email,\n      role: input.role,\n      customPermissions: input.customPermissions ?? null,\n      createdAt: existing?.createdAt ?? now,\n      updatedAt: now,\n    };\n    _members.set(key, member);\n    return member;\n  }\n\n  async function getMember(shopDomain: string, userId: number): Promise<ShopMember | null> {\n    return _members.get(makeKey(shopDomain, userId)) ?? null;\n  }\n\n  async function listMembers(shopDomain: string): Promise<ShopMember[]> {\n    const result: ShopMember[] = [];\n    for (const member of _members.values()) {\n      if (member.shopDomain === shopDomain) {\n        result.push(member);\n      }\n    }\n    return result;\n  }\n\n  async function updateMember(\n    shopDomain: string,\n    userId: number,\n    input: UpdateShopMemberInput,\n  ): Promise<ShopMember> {\n    const key = makeKey(shopDomain, userId);\n    const existing = _members.get(key);\n    if (!existing) {\n      throw new Error(`Member not found: ${shopDomain}:${userId}`);\n    }\n    if (input.role !== undefined) {\n      existing.role = input.role;\n    }\n    if (input.email !== undefined) {\n      existing.email = input.email;\n    }\n    if (input.customPermissions !== undefined) {\n      existing.customPermissions = input.customPermissions;\n    }\n    existing.updatedAt = new Date();\n    return existing;\n  }\n\n  async function removeMember(shopDomain: string, userId: number): Promise<void> {\n    _members.delete(makeKey(shopDomain, userId));\n  }\n\n  async function hasPermission(\n    shopDomain: string,\n    userId: number,\n    permission: string,\n  ): Promise<boolean> {\n    const member = _members.get(makeKey(shopDomain, userId));\n    if (!member) return false;\n    if (member.role === 'owner') return true;\n    const perms = resolvePerms(member.role, member.customPermissions);\n    return perms.includes(permission);\n  }\n\n  async function getEffectivePermissions(\n    shopDomain: string,\n    userId: number,\n  ): Promise<string[]> {\n    const member = _members.get(makeKey(shopDomain, userId));\n    if (!member) return [];\n    if (member.role === 'owner') return ['*'];\n    return resolvePerms(member.role, member.customPermissions);\n  }\n\n  function isRoleAtLeast(role: Role, minimumRole: Role): boolean {\n    const roleIndex = ROLE_HIERARCHY.indexOf(role);\n    const minIndex = ROLE_HIERARCHY.indexOf(minimumRole);\n    if (roleIndex === -1 || minIndex === -1) return false;\n    return roleIndex <= minIndex;\n  }\n\n  function resolvePerms(role: Role, custom: string[] | null): string[] {\n    const rolePerms = MOCK_ROLE_PERMISSIONS[role] ?? [];\n    if (!custom || custom.length === 0) return [...rolePerms];\n    const combined = new Set([...rolePerms, ...custom]);\n    return [...combined];\n  }\n\n  return {\n    _members,\n    _reset,\n    upsertMember,\n    getMember,\n    listMembers,\n    updateMember,\n    removeMember,\n    hasPermission,\n    getEffectivePermissions,\n    isRoleAtLeast,\n  };\n}\n","/**\n * Test data factories for RBAC types.\n */\n\nimport type { ShopMember } from '@uniforge/platform-core/rbac';\n\nexport function createTestShopMember(overrides?: Partial<ShopMember>): ShopMember {\n  const now = new Date();\n  const defaults: ShopMember = {\n    id: `member-${Date.now()}`,\n    shopDomain: 'test-shop.myshopify.com',\n    userId: 12345,\n    email: 'staff@test-shop.com',\n    role: 'staff',\n    customPermissions: null,\n    createdAt: now,\n    updatedAt: now,\n  };\n  return { ...defaults, ...overrides };\n}\n"],"mappings":";AAaA,SAAS,sBAAsB;AAQ/B,IAAM,wBAAgD;AAAA,EACpD,OAAO,CAAC;AAAA,EACR,OAAO;AAAA,IACL;AAAA,IAAiB;AAAA,IACjB;AAAA,IAAe;AAAA,IACf;AAAA,IAAkB;AAAA,IAClB;AAAA,IACA;AAAA,IAAiB;AAAA,IAAkB;AAAA,IACnC;AAAA,IAAc;AAAA,EAChB;AAAA,EACA,OAAO;AAAA,IACL;AAAA,IAAiB;AAAA,IACjB;AAAA,IAAe;AAAA,IACf;AAAA,IACA;AAAA,IACA;AAAA,EACF;AAAA,EACA,cAAc;AAAA,IACZ;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;AAEA,SAAS,QAAQ,YAAoB,QAAwB;AAC3D,SAAO,GAAG,UAAU,IAAI,MAAM;AAChC;AAEO,SAAS,wBAAyC;AACvD,QAAM,WAAW,oBAAI,IAAwB;AAE7C,WAAS,SAAe;AACtB,aAAS,MAAM;AAAA,EACjB;AAEA,iBAAe,aAAa,OAAmD;AAC7E,UAAM,MAAM,QAAQ,MAAM,YAAY,MAAM,MAAM;AAClD,UAAM,WAAW,SAAS,IAAI,GAAG;AACjC,UAAM,MAAM,oBAAI,KAAK;AACrB,UAAM,SAAqB;AAAA,MACzB,IAAI,UAAU,MAAM,eAAe,KAAK,IAAI,CAAC,IAAI,KAAK,OAAO,EAAE,SAAS,EAAE,EAAE,MAAM,CAAC,CAAC;AAAA,MACpF,YAAY,MAAM;AAAA,MAClB,QAAQ,MAAM;AAAA,MACd,OAAO,MAAM;AAAA,MACb,MAAM,MAAM;AAAA,MACZ,mBAAmB,MAAM,qBAAqB;AAAA,MAC9C,WAAW,UAAU,aAAa;AAAA,MAClC,WAAW;AAAA,IACb;AACA,aAAS,IAAI,KAAK,MAAM;AACxB,WAAO;AAAA,EACT;AAEA,iBAAe,UAAU,YAAoB,QAA4C;AACvF,WAAO,SAAS,IAAI,QAAQ,YAAY,MAAM,CAAC,KAAK;AAAA,EACtD;AAEA,iBAAe,YAAY,YAA2C;AACpE,UAAM,SAAuB,CAAC;AAC9B,eAAW,UAAU,SAAS,OAAO,GAAG;AACtC,UAAI,OAAO,eAAe,YAAY;AACpC,eAAO,KAAK,MAAM;AAAA,MACpB;AAAA,IACF;AACA,WAAO;AAAA,EACT;AAEA,iBAAe,aACb,YACA,QACA,OACqB;AACrB,UAAM,MAAM,QAAQ,YAAY,MAAM;AACtC,UAAM,WAAW,SAAS,IAAI,GAAG;AACjC,QAAI,CAAC,UAAU;AACb,YAAM,IAAI,MAAM,qBAAqB,UAAU,IAAI,MAAM,EAAE;AAAA,IAC7D;AACA,QAAI,MAAM,SAAS,QAAW;AAC5B,eAAS,OAAO,MAAM;AAAA,IACxB;AACA,QAAI,MAAM,UAAU,QAAW;AAC7B,eAAS,QAAQ,MAAM;AAAA,IACzB;AACA,QAAI,MAAM,sBAAsB,QAAW;AACzC,eAAS,oBAAoB,MAAM;AAAA,IACrC;AACA,aAAS,YAAY,oBAAI,KAAK;AAC9B,WAAO;AAAA,EACT;AAEA,iBAAe,aAAa,YAAoB,QAA+B;AAC7E,aAAS,OAAO,QAAQ,YAAY,MAAM,CAAC;AAAA,EAC7C;AAEA,iBAAe,cACb,YACA,QACA,YACkB;AAClB,UAAM,SAAS,SAAS,IAAI,QAAQ,YAAY,MAAM,CAAC;AACvD,QAAI,CAAC,OAAQ,QAAO;AACpB,QAAI,OAAO,SAAS,QAAS,QAAO;AACpC,UAAM,QAAQ,aAAa,OAAO,MAAM,OAAO,iBAAiB;AAChE,WAAO,MAAM,SAAS,UAAU;AAAA,EAClC;AAEA,iBAAe,wBACb,YACA,QACmB;AACnB,UAAM,SAAS,SAAS,IAAI,QAAQ,YAAY,MAAM,CAAC;AACvD,QAAI,CAAC,OAAQ,QAAO,CAAC;AACrB,QAAI,OAAO,SAAS,QAAS,QAAO,CAAC,GAAG;AACxC,WAAO,aAAa,OAAO,MAAM,OAAO,iBAAiB;AAAA,EAC3D;AAEA,WAAS,cAAc,MAAY,aAA4B;AAC7D,UAAM,YAAY,eAAe,QAAQ,IAAI;AAC7C,UAAM,WAAW,eAAe,QAAQ,WAAW;AACnD,QAAI,cAAc,MAAM,aAAa,GAAI,QAAO;AAChD,WAAO,aAAa;AAAA,EACtB;AAEA,WAAS,aAAa,MAAY,QAAmC;AACnE,UAAM,YAAY,sBAAsB,IAAI,KAAK,CAAC;AAClD,QAAI,CAAC,UAAU,OAAO,WAAW,EAAG,QAAO,CAAC,GAAG,SAAS;AACxD,UAAM,WAAW,oBAAI,IAAI,CAAC,GAAG,WAAW,GAAG,MAAM,CAAC;AAClD,WAAO,CAAC,GAAG,QAAQ;AAAA,EACrB;AAEA,SAAO;AAAA,IACL;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,IACA;AAAA,EACF;AACF;;;AC7JO,SAAS,qBAAqB,WAA6C;AAChF,QAAM,MAAM,oBAAI,KAAK;AACrB,QAAM,WAAuB;AAAA,IAC3B,IAAI,UAAU,KAAK,IAAI,CAAC;AAAA,IACxB,YAAY;AAAA,IACZ,QAAQ;AAAA,IACR,OAAO;AAAA,IACP,MAAM;AAAA,IACN,mBAAmB;AAAA,IACnB,WAAW;AAAA,IACX,WAAW;AAAA,EACb;AACA,SAAO,EAAE,GAAG,UAAU,GAAG,UAAU;AACrC;","names":[]}

package/dist/security/index.d.cts

@@ -0,0 +1,73 @@
+import { SecurityHeadersConfig, CSPDirectives, RateLimitConfig, SecurityAuditFinding, SecurityAuditResult, InputValidationRule, SanitizeOptions, InputValidator, InputValidationResult, RequestRateLimiter, RateLimitResult } from '@uniforge/platform-core/security';
+
+/**
+ * Test data factories for security types.
+ *
+ * Each factory provides sensible defaults that can be overridden.
+ */
+
+declare function createTestSecurityHeadersConfig(overrides?: Partial<SecurityHeadersConfig>): SecurityHeadersConfig;
+declare function createTestCSPDirectives(overrides?: Partial<CSPDirectives>): CSPDirectives;
+declare function createTestRateLimitConfig(overrides?: Partial<RateLimitConfig>): RateLimitConfig;
+declare function createTestAuditFinding(overrides?: Partial<SecurityAuditFinding>): SecurityAuditFinding;
+declare function createTestAuditResult(overrides?: Partial<SecurityAuditResult>): SecurityAuditResult;
+declare function createTestValidationRule(overrides?: Partial<InputValidationRule>): InputValidationRule;
+declare function createTestSanitizeOptions(overrides?: Partial<SanitizeOptions>): SanitizeOptions;
+
+/**
+ * Mock InputValidator for unit testing.
+ *
+ * Provides a configurable in-memory implementation of InputValidator
+ * that tracks all calls for test assertions.
+ */
+
+interface ValidateCallRecord {
+    input: Record<string, unknown>;
+    rules: InputValidationRule[];
+}
+interface SanitizeCallRecord {
+    value: string;
+    options?: SanitizeOptions;
+}
+declare class MockInputValidator implements InputValidator {
+    /** Recorded validate() calls for assertions. */
+    validateCalls: ValidateCallRecord[];
+    /** Recorded sanitize() calls for assertions. */
+    sanitizeCalls: SanitizeCallRecord[];
+    /** Configurable return value for validate(). */
+    validateResult: InputValidationResult;
+    /** Configurable return value for sanitize(). When set, overrides the default passthrough. */
+    sanitizeReturnValue: string | undefined;
+    validate(input: Record<string, unknown>, rules: InputValidationRule[]): InputValidationResult;
+    sanitize(value: string, options?: SanitizeOptions): string;
+    isValidShopDomain(domain: string): boolean;
+    isValidEmail(email: string): boolean;
+    isValidUrl(url: string): boolean;
+    isValidApiKey(key: string): boolean;
+    /** Reset all recorded calls and configurable values. */
+    _reset(): void;
+}
+
+/**
+ * Mock RequestRateLimiter for unit testing.
+ *
+ * Provides an in-memory rate limiter that can be configured to
+ * allow or deny all requests, with call tracking for assertions.
+ */
+
+declare class MockRateLimiter implements RequestRateLimiter {
+    readonly config: RateLimitConfig;
+    /** Recorded keys passed to check(). */
+    checkCalls: string[];
+    /** Recorded keys passed to reset(). */
+    resetCalls: string[];
+    /** When true, all requests are allowed. When false, all are denied. */
+    allowAll: boolean;
+    constructor(config?: Partial<RateLimitConfig>);
+    check(key: string): Promise<RateLimitResult>;
+    reset(key: string): Promise<void>;
+    /** Reset all recorded calls and restore default behavior. */
+    _reset(): void;
+}
+
+export { MockInputValidator, MockRateLimiter, type SanitizeCallRecord, type ValidateCallRecord, createTestAuditFinding, createTestAuditResult, createTestCSPDirectives, createTestRateLimitConfig, createTestSanitizeOptions, createTestSecurityHeadersConfig, createTestValidationRule };

package/dist/security/index.d.ts

@@ -0,0 +1,73 @@
+import { SecurityHeadersConfig, CSPDirectives, RateLimitConfig, SecurityAuditFinding, SecurityAuditResult, InputValidationRule, SanitizeOptions, InputValidator, InputValidationResult, RequestRateLimiter, RateLimitResult } from '@uniforge/platform-core/security';
+
+/**
+ * Test data factories for security types.
+ *
+ * Each factory provides sensible defaults that can be overridden.
+ */
+
+declare function createTestSecurityHeadersConfig(overrides?: Partial<SecurityHeadersConfig>): SecurityHeadersConfig;
+declare function createTestCSPDirectives(overrides?: Partial<CSPDirectives>): CSPDirectives;
+declare function createTestRateLimitConfig(overrides?: Partial<RateLimitConfig>): RateLimitConfig;
+declare function createTestAuditFinding(overrides?: Partial<SecurityAuditFinding>): SecurityAuditFinding;
+declare function createTestAuditResult(overrides?: Partial<SecurityAuditResult>): SecurityAuditResult;
+declare function createTestValidationRule(overrides?: Partial<InputValidationRule>): InputValidationRule;
+declare function createTestSanitizeOptions(overrides?: Partial<SanitizeOptions>): SanitizeOptions;
+
+/**
+ * Mock InputValidator for unit testing.
+ *
+ * Provides a configurable in-memory implementation of InputValidator
+ * that tracks all calls for test assertions.
+ */
+
+interface ValidateCallRecord {
+    input: Record<string, unknown>;
+    rules: InputValidationRule[];
+}
+interface SanitizeCallRecord {
+    value: string;
+    options?: SanitizeOptions;
+}
+declare class MockInputValidator implements InputValidator {
+    /** Recorded validate() calls for assertions. */
+    validateCalls: ValidateCallRecord[];
+    /** Recorded sanitize() calls for assertions. */
+    sanitizeCalls: SanitizeCallRecord[];
+    /** Configurable return value for validate(). */
+    validateResult: InputValidationResult;
+    /** Configurable return value for sanitize(). When set, overrides the default passthrough. */
+    sanitizeReturnValue: string | undefined;
+    validate(input: Record<string, unknown>, rules: InputValidationRule[]): InputValidationResult;
+    sanitize(value: string, options?: SanitizeOptions): string;
+    isValidShopDomain(domain: string): boolean;
+    isValidEmail(email: string): boolean;
+    isValidUrl(url: string): boolean;
+    isValidApiKey(key: string): boolean;
+    /** Reset all recorded calls and configurable values. */
+    _reset(): void;
+}
+
+/**
+ * Mock RequestRateLimiter for unit testing.
+ *
+ * Provides an in-memory rate limiter that can be configured to
+ * allow or deny all requests, with call tracking for assertions.
+ */
+
+declare class MockRateLimiter implements RequestRateLimiter {
+    readonly config: RateLimitConfig;
+    /** Recorded keys passed to check(). */
+    checkCalls: string[];
+    /** Recorded keys passed to reset(). */
+    resetCalls: string[];
+    /** When true, all requests are allowed. When false, all are denied. */
+    allowAll: boolean;
+    constructor(config?: Partial<RateLimitConfig>);
+    check(key: string): Promise<RateLimitResult>;
+    reset(key: string): Promise<void>;
+    /** Reset all recorded calls and restore default behavior. */
+    _reset(): void;
+}
+
+export { MockInputValidator, MockRateLimiter, type SanitizeCallRecord, type ValidateCallRecord, createTestAuditFinding, createTestAuditResult, createTestCSPDirectives, createTestRateLimitConfig, createTestSanitizeOptions, createTestSecurityHeadersConfig, createTestValidationRule };

package/dist/security/index.js

@@ -0,0 +1,246 @@
+"use strict";
+var __defProp = Object.defineProperty;
+var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
+var __getOwnPropNames = Object.getOwnPropertyNames;
+var __hasOwnProp = Object.prototype.hasOwnProperty;
+var __export = (target, all) => {
+  for (var name in all)
+    __defProp(target, name, { get: all[name], enumerable: true });
+};
+var __copyProps = (to, from, except, desc) => {
+  if (from && typeof from === "object" || typeof from === "function") {
+    for (let key of __getOwnPropNames(from))
+      if (!__hasOwnProp.call(to, key) && key !== except)
+        __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable });
+  }
+  return to;
+};
+var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+
+// src/security/index.ts
+var security_exports = {};
+__export(security_exports, {
+  MockInputValidator: () => MockInputValidator,
+  MockRateLimiter: () => MockRateLimiter,
+  createTestAuditFinding: () => createTestAuditFinding,
+  createTestAuditResult: () => createTestAuditResult,
+  createTestCSPDirectives: () => createTestCSPDirectives,
+  createTestRateLimitConfig: () => createTestRateLimitConfig,
+  createTestSanitizeOptions: () => createTestSanitizeOptions,
+  createTestSecurityHeadersConfig: () => createTestSecurityHeadersConfig,
+  createTestValidationRule: () => createTestValidationRule
+});
+module.exports = __toCommonJS(security_exports);
+
+// src/security/factories.ts
+function createTestSecurityHeadersConfig(overrides) {
+  const defaults = {
+    hsts: true,
+    noSniff: true,
+    frameOptions: "DENY",
+    xssProtection: true,
+    referrerPolicy: "strict-origin-when-cross-origin"
+  };
+  const result = { ...defaults, ...overrides };
+  return result;
+}
+function createTestCSPDirectives(overrides) {
+  const defaults = {
+    defaultSrc: ["'self'"],
+    scriptSrc: ["'self'"],
+    styleSrc: ["'self'"],
+    imgSrc: ["'self'"],
+    connectSrc: ["'self'"],
+    fontSrc: ["'self'"],
+    frameSrc: ["'self'"],
+    frameAncestors: ["'self'"]
+  };
+  return { ...defaults, ...overrides };
+}
+function createTestRateLimitConfig(overrides) {
+  const defaults = {
+    windowMs: 6e4,
+    maxRequests: 100
+  };
+  const result = { ...defaults };
+  if (overrides?.windowMs !== void 0) {
+    result.windowMs = overrides.windowMs;
+  }
+  if (overrides?.maxRequests !== void 0) {
+    result.maxRequests = overrides.maxRequests;
+  }
+  if (overrides?.keyPrefix !== void 0) {
+    result.keyPrefix = overrides.keyPrefix;
+  }
+  return result;
+}
+function createTestAuditFinding(overrides) {
+  const defaults = {
+    id: "TEST-001",
+    severity: "medium",
+    category: "test",
+    title: "Test finding",
+    description: "A test security finding for unit tests.",
+    recommendation: "Address this finding in a test environment."
+  };
+  return { ...defaults, ...overrides };
+}
+function createTestAuditResult(overrides) {
+  const defaults = {
+    passed: true,
+    score: 100,
+    findings: [],
+    timestamp: (/* @__PURE__ */ new Date()).toISOString()
+  };
+  return { ...defaults, ...overrides };
+}
+function createTestValidationRule(overrides) {
+  const defaults = {
+    field: "testField",
+    type: "string"
+  };
+  const result = { ...defaults };
+  if (overrides?.field !== void 0) {
+    result.field = overrides.field;
+  }
+  if (overrides?.type !== void 0) {
+    result.type = overrides.type;
+  }
+  if (overrides?.required !== void 0) {
+    result.required = overrides.required;
+  }
+  if (overrides?.maxLength !== void 0) {
+    result.maxLength = overrides.maxLength;
+  }
+  if (overrides?.pattern !== void 0) {
+    result.pattern = overrides.pattern;
+  }
+  if (overrides?.message !== void 0) {
+    result.message = overrides.message;
+  }
+  return result;
+}
+function createTestSanitizeOptions(overrides) {
+  const defaults = {
+    stripHtml: true
+  };
+  const result = { ...defaults };
+  if (overrides?.stripHtml !== void 0) {
+    result.stripHtml = overrides.stripHtml;
+  }
+  if (overrides?.maxLength !== void 0) {
+    result.maxLength = overrides.maxLength;
+  }
+  if (overrides?.allowedPattern !== void 0) {
+    result.allowedPattern = overrides.allowedPattern;
+  }
+  return result;
+}
+
+// src/security/mock-input-validator.ts
+var MockInputValidator = class {
+  /** Recorded validate() calls for assertions. */
+  validateCalls = [];
+  /** Recorded sanitize() calls for assertions. */
+  sanitizeCalls = [];
+  /** Configurable return value for validate(). */
+  validateResult = {
+    valid: true,
+    errors: [],
+    sanitized: {}
+  };
+  /** Configurable return value for sanitize(). When set, overrides the default passthrough. */
+  sanitizeReturnValue;
+  validate(input, rules) {
+    this.validateCalls.push({ input, rules });
+    return this.validateResult;
+  }
+  sanitize(value, options) {
+    const callRecord = { value };
+    if (options) {
+      callRecord.options = options;
+    }
+    this.sanitizeCalls.push(callRecord);
+    if (this.sanitizeReturnValue !== void 0) {
+      return this.sanitizeReturnValue;
+    }
+    return value;
+  }
+  isValidShopDomain(domain) {
+    return domain.endsWith(".myshopify.com");
+  }
+  isValidEmail(email) {
+    return email.includes("@");
+  }
+  isValidUrl(url) {
+    return url.startsWith("http");
+  }
+  isValidApiKey(key) {
+    return key.length >= 32;
+  }
+  /** Reset all recorded calls and configurable values. */
+  _reset() {
+    this.validateCalls = [];
+    this.sanitizeCalls = [];
+    this.validateResult = { valid: true, errors: [], sanitized: {} };
+    this.sanitizeReturnValue = void 0;
+  }
+};
+
+// src/security/mock-rate-limiter.ts
+var MockRateLimiter = class {
+  config;
+  /** Recorded keys passed to check(). */
+  checkCalls = [];
+  /** Recorded keys passed to reset(). */
+  resetCalls = [];
+  /** When true, all requests are allowed. When false, all are denied. */
+  allowAll = true;
+  constructor(config) {
+    this.config = {
+      windowMs: config?.windowMs ?? 6e4,
+      maxRequests: config?.maxRequests ?? 100
+    };
+    if (config?.keyPrefix !== void 0) {
+      this.config.keyPrefix = config.keyPrefix;
+    }
+  }
+  async check(key) {
+    this.checkCalls.push(key);
+    if (this.allowAll) {
+      return {
+        allowed: true,
+        remaining: 10,
+        resetAt: Date.now() + 6e4
+      };
+    }
+    return {
+      allowed: false,
+      remaining: 0,
+      resetAt: Date.now() + 6e4,
+      retryAfter: 3e4
+    };
+  }
+  async reset(key) {
+    this.resetCalls.push(key);
+  }
+  /** Reset all recorded calls and restore default behavior. */
+  _reset() {
+    this.checkCalls = [];
+    this.resetCalls = [];
+    this.allowAll = true;
+  }
+};
+// Annotate the CommonJS export names for ESM import in node:
+0 && (module.exports = {
+  MockInputValidator,
+  MockRateLimiter,
+  createTestAuditFinding,
+  createTestAuditResult,
+  createTestCSPDirectives,
+  createTestRateLimitConfig,
+  createTestSanitizeOptions,
+  createTestSecurityHeadersConfig,
+  createTestValidationRule
+});
+//# sourceMappingURL=index.js.map

package/dist/security/index.js.map

@@ -0,0 +1 @@
+{"version":3,"sources":["../../src/security/index.ts","../../src/security/factories.ts","../../src/security/mock-input-validator.ts","../../src/security/mock-rate-limiter.ts"],"sourcesContent":["/**\n * @uniforge/testing - Security\n *\n * Mock security utilities and test data factories for security testing.\n */\n\nexport {\n  createTestSecurityHeadersConfig,\n  createTestCSPDirectives,\n  createTestRateLimitConfig,\n  createTestAuditFinding,\n  createTestAuditResult,\n  createTestValidationRule,\n  createTestSanitizeOptions,\n} from './factories';\n\nexport { MockInputValidator } from './mock-input-validator';\nexport type { ValidateCallRecord, SanitizeCallRecord } from './mock-input-validator';\n\nexport { MockRateLimiter } from './mock-rate-limiter';\n","/**\n * Test data factories for security types.\n *\n * Each factory provides sensible defaults that can be overridden.\n */\n\nimport type {\n  SecurityHeadersConfig,\n  CSPDirectives,\n  RateLimitConfig,\n  SecurityAuditFinding,\n  SecurityAuditResult,\n  InputValidationRule,\n  SanitizeOptions,\n} from '@uniforge/platform-core/security';\n\nexport function createTestSecurityHeadersConfig(\n  overrides?: Partial<SecurityHeadersConfig>,\n): SecurityHeadersConfig {\n  const defaults: SecurityHeadersConfig = {\n    hsts: true,\n    noSniff: true,\n    frameOptions: 'DENY',\n    xssProtection: true,\n    referrerPolicy: 'strict-origin-when-cross-origin',\n  };\n\n  const result: SecurityHeadersConfig = { ...defaults, ...overrides };\n  return result;\n}\n\nexport function createTestCSPDirectives(\n  overrides?: Partial<CSPDirectives>,\n): CSPDirectives {\n  const defaults: CSPDirectives = {\n    defaultSrc: [\"'self'\"],\n    scriptSrc: [\"'self'\"],\n    styleSrc: [\"'self'\"],\n    imgSrc: [\"'self'\"],\n    connectSrc: [\"'self'\"],\n    fontSrc: [\"'self'\"],\n    frameSrc: [\"'self'\"],\n    frameAncestors: [\"'self'\"],\n  };\n\n  return { ...defaults, ...overrides };\n}\n\nexport function createTestRateLimitConfig(\n  overrides?: Partial<RateLimitConfig>,\n): RateLimitConfig {\n  const defaults: RateLimitConfig = {\n    windowMs: 60000,\n    maxRequests: 100,\n  };\n\n  const result: RateLimitConfig = { ...defaults };\n\n  if (overrides?.windowMs !== undefined) {\n    result.windowMs = overrides.windowMs;\n  }\n  if (overrides?.maxRequests !== undefined) {\n    result.maxRequests = overrides.maxRequests;\n  }\n  if (overrides?.keyPrefix !== undefined) {\n    result.keyPrefix = overrides.keyPrefix;\n  }\n\n  return result;\n}\n\nexport function createTestAuditFinding(\n  overrides?: Partial<SecurityAuditFinding>,\n): SecurityAuditFinding {\n  const defaults: SecurityAuditFinding = {\n    id: 'TEST-001',\n    severity: 'medium',\n    category: 'test',\n    title: 'Test finding',\n    description: 'A test security finding for unit tests.',\n    recommendation: 'Address this finding in a test environment.',\n  };\n\n  return { ...defaults, ...overrides };\n}\n\nexport function createTestAuditResult(\n  overrides?: Partial<SecurityAuditResult>,\n): SecurityAuditResult {\n  const defaults: SecurityAuditResult = {\n    passed: true,\n    score: 100,\n    findings: [],\n    timestamp: new Date().toISOString(),\n  };\n\n  return { ...defaults, ...overrides };\n}\n\nexport function createTestValidationRule(\n  overrides?: Partial<InputValidationRule>,\n): InputValidationRule {\n  const defaults: InputValidationRule = {\n    field: 'testField',\n    type: 'string',\n  };\n\n  const result: InputValidationRule = { ...defaults };\n\n  if (overrides?.field !== undefined) {\n    result.field = overrides.field;\n  }\n  if (overrides?.type !== undefined) {\n    result.type = overrides.type;\n  }\n  if (overrides?.required !== undefined) {\n    result.required = overrides.required;\n  }\n  if (overrides?.maxLength !== undefined) {\n    result.maxLength = overrides.maxLength;\n  }\n  if (overrides?.pattern !== undefined) {\n    result.pattern = overrides.pattern;\n  }\n  if (overrides?.message !== undefined) {\n    result.message = overrides.message;\n  }\n\n  return result;\n}\n\nexport function createTestSanitizeOptions(\n  overrides?: Partial<SanitizeOptions>,\n): SanitizeOptions {\n  const defaults: SanitizeOptions = {\n    stripHtml: true,\n  };\n\n  const result: SanitizeOptions = { ...defaults };\n\n  if (overrides?.stripHtml !== undefined) {\n    result.stripHtml = overrides.stripHtml;\n  }\n  if (overrides?.maxLength !== undefined) {\n    result.maxLength = overrides.maxLength;\n  }\n  if (overrides?.allowedPattern !== undefined) {\n    result.allowedPattern = overrides.allowedPattern;\n  }\n\n  return result;\n}\n","/**\n * Mock InputValidator for unit testing.\n *\n * Provides a configurable in-memory implementation of InputValidator\n * that tracks all calls for test assertions.\n */\n\nimport type {\n  InputValidator,\n  InputValidationRule,\n  InputValidationResult,\n  SanitizeOptions,\n} from '@uniforge/platform-core/security';\n\nexport interface ValidateCallRecord {\n  input: Record<string, unknown>;\n  rules: InputValidationRule[];\n}\n\nexport interface SanitizeCallRecord {\n  value: string;\n  options?: SanitizeOptions;\n}\n\nexport class MockInputValidator implements InputValidator {\n  /** Recorded validate() calls for assertions. */\n  validateCalls: ValidateCallRecord[] = [];\n\n  /** Recorded sanitize() calls for assertions. */\n  sanitizeCalls: SanitizeCallRecord[] = [];\n\n  /** Configurable return value for validate(). */\n  validateResult: InputValidationResult = {\n    valid: true,\n    errors: [],\n    sanitized: {},\n  };\n\n  /** Configurable return value for sanitize(). When set, overrides the default passthrough. */\n  sanitizeReturnValue: string | undefined;\n\n  validate(\n    input: Record<string, unknown>,\n    rules: InputValidationRule[],\n  ): InputValidationResult {\n    this.validateCalls.push({ input, rules });\n    return this.validateResult;\n  }\n\n  sanitize(value: string, options?: SanitizeOptions): string {\n    const callRecord: SanitizeCallRecord = { value };\n    if (options) {\n      callRecord.options = options;\n    }\n    this.sanitizeCalls.push(callRecord);\n    if (this.sanitizeReturnValue !== undefined) {\n      return this.sanitizeReturnValue;\n    }\n    return value;\n  }\n\n  isValidShopDomain(domain: string): boolean {\n    return domain.endsWith('.myshopify.com');\n  }\n\n  isValidEmail(email: string): boolean {\n    return email.includes('@');\n  }\n\n  isValidUrl(url: string): boolean {\n    return url.startsWith('http');\n  }\n\n  isValidApiKey(key: string): boolean {\n    return key.length >= 32;\n  }\n\n  /** Reset all recorded calls and configurable values. */\n  _reset(): void {\n    this.validateCalls = [];\n    this.sanitizeCalls = [];\n    this.validateResult = { valid: true, errors: [], sanitized: {} };\n    this.sanitizeReturnValue = undefined;\n  }\n}\n","/**\n * Mock RequestRateLimiter for unit testing.\n *\n * Provides an in-memory rate limiter that can be configured to\n * allow or deny all requests, with call tracking for assertions.\n */\n\nimport type {\n  RequestRateLimiter,\n  RateLimitConfig,\n  RateLimitResult,\n} from '@uniforge/platform-core/security';\n\nexport class MockRateLimiter implements RequestRateLimiter {\n  readonly config: RateLimitConfig;\n\n  /** Recorded keys passed to check(). */\n  checkCalls: string[] = [];\n\n  /** Recorded keys passed to reset(). */\n  resetCalls: string[] = [];\n\n  /** When true, all requests are allowed. When false, all are denied. */\n  allowAll = true;\n\n  constructor(config?: Partial<RateLimitConfig>) {\n    this.config = {\n      windowMs: config?.windowMs ?? 60000,\n      maxRequests: config?.maxRequests ?? 100,\n    };\n    if (config?.keyPrefix !== undefined) {\n      (this.config as { keyPrefix: string }).keyPrefix = config.keyPrefix;\n    }\n  }\n\n  async check(key: string): Promise<RateLimitResult> {\n    this.checkCalls.push(key);\n\n    if (this.allowAll) {\n      return {\n        allowed: true,\n        remaining: 10,\n        resetAt: Date.now() + 60000,\n      };\n    }\n\n    return {\n      allowed: false,\n      remaining: 0,\n      resetAt: Date.now() + 60000,\n      retryAfter: 30000,\n    };\n  }\n\n  async reset(key: string): Promise<void> {\n    this.resetCalls.push(key);\n  }\n\n  /** Reset all recorded calls and restore default behavior. */\n  _reset(): void {\n    this.checkCalls = [];\n    this.resetCalls = [];\n    this.allowAll = true;\n  }\n}\n"],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;;;ACgBO,SAAS,gCACd,WACuB;AACvB,QAAM,WAAkC;AAAA,IACtC,MAAM;AAAA,IACN,SAAS;AAAA,IACT,cAAc;AAAA,IACd,eAAe;AAAA,IACf,gBAAgB;AAAA,EAClB;AAEA,QAAM,SAAgC,EAAE,GAAG,UAAU,GAAG,UAAU;AAClE,SAAO;AACT;AAEO,SAAS,wBACd,WACe;AACf,QAAM,WAA0B;AAAA,IAC9B,YAAY,CAAC,QAAQ;AAAA,IACrB,WAAW,CAAC,QAAQ;AAAA,IACpB,UAAU,CAAC,QAAQ;AAAA,IACnB,QAAQ,CAAC,QAAQ;AAAA,IACjB,YAAY,CAAC,QAAQ;AAAA,IACrB,SAAS,CAAC,QAAQ;AAAA,IAClB,UAAU,CAAC,QAAQ;AAAA,IACnB,gBAAgB,CAAC,QAAQ;AAAA,EAC3B;AAEA,SAAO,EAAE,GAAG,UAAU,GAAG,UAAU;AACrC;AAEO,SAAS,0BACd,WACiB;AACjB,QAAM,WAA4B;AAAA,IAChC,UAAU;AAAA,IACV,aAAa;AAAA,EACf;AAEA,QAAM,SAA0B,EAAE,GAAG,SAAS;AAE9C,MAAI,WAAW,aAAa,QAAW;AACrC,WAAO,WAAW,UAAU;AAAA,EAC9B;AACA,MAAI,WAAW,gBAAgB,QAAW;AACxC,WAAO,cAAc,UAAU;AAAA,EACjC;AACA,MAAI,WAAW,cAAc,QAAW;AACtC,WAAO,YAAY,UAAU;AAAA,EAC/B;AAEA,SAAO;AACT;AAEO,SAAS,uBACd,WACsB;AACtB,QAAM,WAAiC;AAAA,IACrC,IAAI;AAAA,IACJ,UAAU;AAAA,IACV,UAAU;AAAA,IACV,OAAO;AAAA,IACP,aAAa;AAAA,IACb,gBAAgB;AAAA,EAClB;AAEA,SAAO,EAAE,GAAG,UAAU,GAAG,UAAU;AACrC;AAEO,SAAS,sBACd,WACqB;AACrB,QAAM,WAAgC;AAAA,IACpC,QAAQ;AAAA,IACR,OAAO;AAAA,IACP,UAAU,CAAC;AAAA,IACX,YAAW,oBAAI,KAAK,GAAE,YAAY;AAAA,EACpC;AAEA,SAAO,EAAE,GAAG,UAAU,GAAG,UAAU;AACrC;AAEO,SAAS,yBACd,WACqB;AACrB,QAAM,WAAgC;AAAA,IACpC,OAAO;AAAA,IACP,MAAM;AAAA,EACR;AAEA,QAAM,SAA8B,EAAE,GAAG,SAAS;AAElD,MAAI,WAAW,UAAU,QAAW;AAClC,WAAO,QAAQ,UAAU;AAAA,EAC3B;AACA,MAAI,WAAW,SAAS,QAAW;AACjC,WAAO,OAAO,UAAU;AAAA,EAC1B;AACA,MAAI,WAAW,aAAa,QAAW;AACrC,WAAO,WAAW,UAAU;AAAA,EAC9B;AACA,MAAI,WAAW,cAAc,QAAW;AACtC,WAAO,YAAY,UAAU;AAAA,EAC/B;AACA,MAAI,WAAW,YAAY,QAAW;AACpC,WAAO,UAAU,UAAU;AAAA,EAC7B;AACA,MAAI,WAAW,YAAY,QAAW;AACpC,WAAO,UAAU,UAAU;AAAA,EAC7B;AAEA,SAAO;AACT;AAEO,SAAS,0BACd,WACiB;AACjB,QAAM,WAA4B;AAAA,IAChC,WAAW;AAAA,EACb;AAEA,QAAM,SAA0B,EAAE,GAAG,SAAS;AAE9C,MAAI,WAAW,cAAc,QAAW;AACtC,WAAO,YAAY,UAAU;AAAA,EAC/B;AACA,MAAI,WAAW,cAAc,QAAW;AACtC,WAAO,YAAY,UAAU;AAAA,EAC/B;AACA,MAAI,WAAW,mBAAmB,QAAW;AAC3C,WAAO,iBAAiB,UAAU;AAAA,EACpC;AAEA,SAAO;AACT;;;AC/HO,IAAM,qBAAN,MAAmD;AAAA;AAAA,EAExD,gBAAsC,CAAC;AAAA;AAAA,EAGvC,gBAAsC,CAAC;AAAA;AAAA,EAGvC,iBAAwC;AAAA,IACtC,OAAO;AAAA,IACP,QAAQ,CAAC;AAAA,IACT,WAAW,CAAC;AAAA,EACd;AAAA;AAAA,EAGA;AAAA,EAEA,SACE,OACA,OACuB;AACvB,SAAK,cAAc,KAAK,EAAE,OAAO,MAAM,CAAC;AACxC,WAAO,KAAK;AAAA,EACd;AAAA,EAEA,SAAS,OAAe,SAAmC;AACzD,UAAM,aAAiC,EAAE,MAAM;AAC/C,QAAI,SAAS;AACX,iBAAW,UAAU;AAAA,IACvB;AACA,SAAK,cAAc,KAAK,UAAU;AAClC,QAAI,KAAK,wBAAwB,QAAW;AAC1C,aAAO,KAAK;AAAA,IACd;AACA,WAAO;AAAA,EACT;AAAA,EAEA,kBAAkB,QAAyB;AACzC,WAAO,OAAO,SAAS,gBAAgB;AAAA,EACzC;AAAA,EAEA,aAAa,OAAwB;AACnC,WAAO,MAAM,SAAS,GAAG;AAAA,EAC3B;AAAA,EAEA,WAAW,KAAsB;AAC/B,WAAO,IAAI,WAAW,MAAM;AAAA,EAC9B;AAAA,EAEA,cAAc,KAAsB;AAClC,WAAO,IAAI,UAAU;AAAA,EACvB;AAAA;AAAA,EAGA,SAAe;AACb,SAAK,gBAAgB,CAAC;AACtB,SAAK,gBAAgB,CAAC;AACtB,SAAK,iBAAiB,EAAE,OAAO,MAAM,QAAQ,CAAC,GAAG,WAAW,CAAC,EAAE;AAC/D,SAAK,sBAAsB;AAAA,EAC7B;AACF;;;ACvEO,IAAM,kBAAN,MAAoD;AAAA,EAChD;AAAA;AAAA,EAGT,aAAuB,CAAC;AAAA;AAAA,EAGxB,aAAuB,CAAC;AAAA;AAAA,EAGxB,WAAW;AAAA,EAEX,YAAY,QAAmC;AAC7C,SAAK,SAAS;AAAA,MACZ,UAAU,QAAQ,YAAY;AAAA,MAC9B,aAAa,QAAQ,eAAe;AAAA,IACtC;AACA,QAAI,QAAQ,cAAc,QAAW;AACnC,MAAC,KAAK,OAAiC,YAAY,OAAO;AAAA,IAC5D;AAAA,EACF;AAAA,EAEA,MAAM,MAAM,KAAuC;AACjD,SAAK,WAAW,KAAK,GAAG;AAExB,QAAI,KAAK,UAAU;AACjB,aAAO;AAAA,QACL,SAAS;AAAA,QACT,WAAW;AAAA,QACX,SAAS,KAAK,IAAI,IAAI;AAAA,MACxB;AAAA,IACF;AAEA,WAAO;AAAA,MACL,SAAS;AAAA,MACT,WAAW;AAAA,MACX,SAAS,KAAK,IAAI,IAAI;AAAA,MACtB,YAAY;AAAA,IACd;AAAA,EACF;AAAA,EAEA,MAAM,MAAM,KAA4B;AACtC,SAAK,WAAW,KAAK,GAAG;AAAA,EAC1B;AAAA;AAAA,EAGA,SAAe;AACb,SAAK,aAAa,CAAC;AACnB,SAAK,aAAa,CAAC;AACnB,SAAK,WAAW;AAAA,EAClB;AACF;","names":[]}