@vorionsys/atsf-core 0.2.0 → 0.2.2

package/dist/phase6/provenance.js

@@ -0,0 +1,545 @@
+/**
+ * Q5: Provenance Capture + Policy Interpretation
+ *
+ * Separates immutable provenance (what) from mutable policy (how to interpret):
+ * - AgentProvenance: IMMUTABLE - captured at instantiation
+ * - CreationModifierPolicy: MUTABLE - can evolve independently
+ *
+ * Key Features:
+ * - Tamper-proof provenance records
+ * - Policy versioning with supersession chains
+ * - Condition-based modifier evaluation
+ * - Full audit trail for regulator review
+ *
+ * @packageDocumentation
+ */
+import { createLogger } from '../common/logger.js';
+import { CreationType, agentProvenanceSchema, creationModifierPolicySchema, modifierEvaluationRecordSchema, } from './types.js';
+const logger = createLogger({ component: 'phase6:provenance' });
+// =============================================================================
+// HASH UTILITIES
+// =============================================================================
+/**
+ * Calculate SHA-256 hash
+ */
+async function calculateHash(data) {
+    const encoder = new TextEncoder();
+    const dataBuffer = encoder.encode(data);
+    const hashBuffer = await crypto.subtle.digest('SHA-256', dataBuffer);
+    const hashArray = Array.from(new Uint8Array(hashBuffer));
+    return hashArray.map((b) => b.toString(16).padStart(2, '0')).join('');
+}
+/**
+ * Create immutable agent provenance record
+ * This captures the origin story of an agent and cannot be modified.
+ */
+export async function createProvenance(input) {
+    // Validate parent chain for cloned/evolved/promoted
+    if (input.creationType === CreationType.CLONED ||
+        input.creationType === CreationType.EVOLVED ||
+        input.creationType === CreationType.PROMOTED) {
+        if (!input.parentAgentId || !input.parentProvenance) {
+            throw new Error(`${input.creationType} agents must have parent provenance`);
+        }
+    }
+    const now = new Date();
+    // Create hash data
+    const hashData = {
+        agentId: input.agentId,
+        creationType: input.creationType,
+        parentAgentId: input.parentAgentId,
+        parentProvenanceHash: input.parentProvenance?.provenanceHash,
+        createdAt: now.toISOString(),
+        createdBy: input.createdBy,
+    };
+    const provenanceHash = await calculateHash(JSON.stringify(hashData));
+    const provenance = {
+        agentId: input.agentId,
+        creationType: input.creationType,
+        parentAgentId: input.parentAgentId,
+        parentProvenanceHash: input.parentProvenance?.provenanceHash,
+        createdAt: now,
+        createdBy: input.createdBy,
+        provenanceHash,
+    };
+    // Validate with Zod
+    const parsed = agentProvenanceSchema.safeParse(provenance);
+    if (!parsed.success) {
+        throw new Error(`Invalid provenance: ${parsed.error.message}`);
+    }
+    logger.info({
+        agentId: provenance.agentId,
+        creationType: provenance.creationType,
+        parentAgentId: input.parentAgentId,
+    }, 'Provenance created (immutable)');
+    return Object.freeze(provenance);
+}
+/**
+ * Verify provenance integrity
+ */
+export async function verifyProvenance(provenance) {
+    // Recalculate hash
+    const hashData = {
+        agentId: provenance.agentId,
+        creationType: provenance.creationType,
+        parentAgentId: provenance.parentAgentId,
+        parentProvenanceHash: provenance.parentProvenanceHash,
+        createdAt: provenance.createdAt.toISOString(),
+        createdBy: provenance.createdBy,
+    };
+    const expectedHash = await calculateHash(JSON.stringify(hashData));
+    if (provenance.provenanceHash !== expectedHash) {
+        return { valid: false, reason: 'Provenance hash mismatch - possible tampering' };
+    }
+    return { valid: true };
+}
+// =============================================================================
+// CREATION MODIFIER POLICIES (MUTABLE)
+// =============================================================================
+/**
+ * Default modifiers per creation type
+ */
+export const DEFAULT_CREATION_MODIFIERS = {
+    [CreationType.FRESH]: 0, // No modifier - baseline trust
+    [CreationType.CLONED]: -50, // Clone inherits parent concerns
+    [CreationType.EVOLVED]: 100, // Has verifiable history
+    [CreationType.PROMOTED]: 150, // Earned advancement
+    [CreationType.IMPORTED]: -100, // Unknown external provenance
+};
+/**
+ * Create a new creation modifier policy
+ */
+export async function createModifierPolicy(input) {
+    const now = new Date();
+    const baselineModifier = input.baselineModifier ?? DEFAULT_CREATION_MODIFIERS[input.creationType];
+    const policyData = {
+        policyId: input.policyId,
+        creationType: input.creationType,
+        baselineModifier,
+        conditions: input.conditions,
+        effectiveFrom: input.effectiveFrom ?? now,
+        createdAt: now,
+        createdBy: input.createdBy,
+        supersedes: input.supersedes,
+    };
+    const policyHash = await calculateHash(JSON.stringify(policyData));
+    const policy = {
+        policyId: input.policyId,
+        version: 1,
+        creationType: input.creationType,
+        baselineModifier,
+        conditions: input.conditions,
+        effectiveFrom: input.effectiveFrom ?? now,
+        effectiveUntil: input.effectiveUntil,
+        createdAt: now,
+        createdBy: input.createdBy,
+        policyHash,
+        supersedes: input.supersedes,
+    };
+    // Validate with Zod
+    const parsed = creationModifierPolicySchema.safeParse(policy);
+    if (!parsed.success) {
+        throw new Error(`Invalid policy: ${parsed.error.message}`);
+    }
+    logger.info({
+        policyId: policy.policyId,
+        creationType: policy.creationType,
+        baselineModifier,
+    }, 'Modifier policy created');
+    return policy;
+}
+/**
+ * Create a new version of an existing policy
+ */
+export async function updateModifierPolicy(existingPolicy, updates, updatedBy) {
+    const now = new Date();
+    const policyData = {
+        policyId: existingPolicy.policyId,
+        version: existingPolicy.version + 1,
+        creationType: existingPolicy.creationType,
+        baselineModifier: updates.baselineModifier ?? existingPolicy.baselineModifier,
+        conditions: updates.conditions ?? existingPolicy.conditions,
+        effectiveFrom: updates.effectiveFrom ?? now,
+        effectiveUntil: updates.effectiveUntil,
+        createdAt: now,
+        createdBy: updatedBy,
+        supersedes: existingPolicy.policyHash,
+    };
+    const policyHash = await calculateHash(JSON.stringify(policyData));
+    const newPolicy = {
+        ...policyData,
+        policyHash,
+    };
+    // Validate with Zod
+    const parsed = creationModifierPolicySchema.safeParse(newPolicy);
+    if (!parsed.success) {
+        throw new Error(`Invalid policy update: ${parsed.error.message}`);
+    }
+    logger.info({
+        policyId: newPolicy.policyId,
+        version: newPolicy.version,
+        supersedes: existingPolicy.policyHash,
+    }, 'Modifier policy updated');
+    return newPolicy;
+}
+/**
+ * Evaluate conditions against context
+ */
+function evaluateConditions(conditions, context) {
+    if (!conditions) {
+        return { matches: true, matchedConditions: ['baseline'] };
+    }
+    const matchedConditions = [];
+    // Check parent creation type
+    if (conditions.parentCreationType !== undefined) {
+        if (context.parentProvenance?.creationType === conditions.parentCreationType) {
+            matchedConditions.push(`parentCreationType:${conditions.parentCreationType}`);
+        }
+        else {
+            return { matches: false, matchedConditions };
+        }
+    }
+    // Check parent trust score range
+    if (conditions.parentTrustScore !== undefined) {
+        if (context.parentTrustScore !== undefined) {
+            if (context.parentTrustScore >= conditions.parentTrustScore.min &&
+                context.parentTrustScore <= conditions.parentTrustScore.max) {
+                matchedConditions.push(`parentTrustScore:${conditions.parentTrustScore.min}-${conditions.parentTrustScore.max}`);
+            }
+            else {
+                return { matches: false, matchedConditions };
+            }
+        }
+        else {
+            return { matches: false, matchedConditions };
+        }
+    }
+    // Check trusted sources
+    if (conditions.trustedSources !== undefined && conditions.trustedSources.length > 0) {
+        if (context.organizationId && conditions.trustedSources.includes(context.organizationId)) {
+            matchedConditions.push(`trustedSource:${context.organizationId}`);
+        }
+        else {
+            return { matches: false, matchedConditions };
+        }
+    }
+    // Check required attestations
+    if (conditions.requiredAttestations !== undefined && conditions.requiredAttestations.length > 0) {
+        const hasAll = conditions.requiredAttestations.every((required) => context.attestations?.includes(required));
+        if (hasAll) {
+            matchedConditions.push(`attestations:${conditions.requiredAttestations.join(',')}`);
+        }
+        else {
+            return { matches: false, matchedConditions };
+        }
+    }
+    return { matches: matchedConditions.length > 0, matchedConditions };
+}
+/**
+ * Evaluate modifier for a provenance record
+ */
+export async function evaluateModifier(context, policies) {
+    // Find applicable policy (matching creation type, currently effective)
+    const now = new Date();
+    const applicablePolicies = policies
+        .filter((p) => p.creationType === context.provenance.creationType)
+        .filter((p) => p.effectiveFrom <= now)
+        .filter((p) => !p.effectiveUntil || p.effectiveUntil > now)
+        .sort((a, b) => b.version - a.version); // Prefer latest version
+    if (applicablePolicies.length === 0) {
+        // Fall back to default modifier
+        const defaultModifier = DEFAULT_CREATION_MODIFIERS[context.provenance.creationType];
+        const hashData = {
+            agentId: context.provenance.agentId,
+            provenanceHash: context.provenance.provenanceHash,
+            computedModifier: defaultModifier,
+            evaluatedAt: now.toISOString(),
+        };
+        const record = {
+            evaluationId: crypto.randomUUID(),
+            agentId: context.provenance.agentId,
+            provenanceHash: context.provenance.provenanceHash,
+            policyId: 'default',
+            policyVersion: 0,
+            computedModifier: defaultModifier,
+            conditionsMatched: ['default'],
+            evaluatedAt: now,
+            evaluationHash: await calculateHash(JSON.stringify(hashData)),
+        };
+        return record;
+    }
+    // Use first matching policy
+    const policy = applicablePolicies[0];
+    const { matches, matchedConditions } = evaluateConditions(policy.conditions, context);
+    const computedModifier = matches ? policy.baselineModifier : 0;
+    const hashData = {
+        agentId: context.provenance.agentId,
+        provenanceHash: context.provenance.provenanceHash,
+        policyId: policy.policyId,
+        policyVersion: policy.version,
+        computedModifier,
+        conditionsMatched: matchedConditions,
+        evaluatedAt: now.toISOString(),
+    };
+    const record = {
+        evaluationId: crypto.randomUUID(),
+        agentId: context.provenance.agentId,
+        provenanceHash: context.provenance.provenanceHash,
+        policyId: policy.policyId,
+        policyVersion: policy.version,
+        computedModifier,
+        conditionsMatched: matchedConditions,
+        evaluatedAt: now,
+        evaluationHash: await calculateHash(JSON.stringify(hashData)),
+    };
+    // Validate with Zod
+    const parsed = modifierEvaluationRecordSchema.safeParse(record);
+    if (!parsed.success) {
+        throw new Error(`Invalid evaluation record: ${parsed.error.message}`);
+    }
+    logger.debug({
+        agentId: record.agentId,
+        policyId: record.policyId,
+        modifier: record.computedModifier,
+    }, 'Modifier evaluated');
+    return record;
+}
+// =============================================================================
+// PROVENANCE SERVICE
+// =============================================================================
+/**
+ * Service for managing agent provenance and modifier policies
+ */
+export class ProvenanceService {
+    provenances = new Map();
+    policies = new Map(); // policyId -> versions
+    evaluations = new Map(); // agentId -> evaluations
+    /**
+     * Create and register provenance for an agent
+     */
+    async createProvenance(input) {
+        // Validate parent if specified
+        if (input.parentAgentId) {
+            const parentProvenance = this.provenances.get(input.parentAgentId);
+            if (!parentProvenance) {
+                throw new Error(`Parent agent ${input.parentAgentId} not found`);
+            }
+            input.parentProvenance = parentProvenance;
+        }
+        const provenance = await createProvenance(input);
+        this.provenances.set(input.agentId, provenance);
+        return provenance;
+    }
+    /**
+     * Get provenance for an agent
+     */
+    getProvenance(agentId) {
+        return this.provenances.get(agentId);
+    }
+    /**
+     * Create a new modifier policy
+     */
+    async createPolicy(input) {
+        const policy = await createModifierPolicy(input);
+        const versions = this.policies.get(input.policyId) ?? [];
+        versions.push(policy);
+        this.policies.set(input.policyId, versions);
+        return policy;
+    }
+    /**
+     * Update an existing policy
+     */
+    async updatePolicy(policyId, updates, updatedBy) {
+        const versions = this.policies.get(policyId);
+        if (!versions || versions.length === 0) {
+            throw new Error(`Policy ${policyId} not found`);
+        }
+        const currentPolicy = versions[versions.length - 1];
+        const newPolicy = await updateModifierPolicy(currentPolicy, updates, updatedBy);
+        versions.push(newPolicy);
+        return newPolicy;
+    }
+    /**
+     * Get current version of a policy
+     */
+    getPolicy(policyId) {
+        const versions = this.policies.get(policyId);
+        return versions?.[versions.length - 1];
+    }
+    /**
+     * Get all policy versions
+     */
+    getPolicyVersions(policyId) {
+        return this.policies.get(policyId) ?? [];
+    }
+    /**
+     * Get all active policies
+     */
+    getActivePolicies() {
+        const now = new Date();
+        const active = [];
+        for (const versions of this.policies.values()) {
+            const current = versions[versions.length - 1];
+            if (current.effectiveFrom <= now && (!current.effectiveUntil || current.effectiveUntil > now)) {
+                active.push(current);
+            }
+        }
+        return active;
+    }
+    /**
+     * Evaluate modifier for an agent
+     */
+    async evaluateModifier(agentId) {
+        const provenance = this.provenances.get(agentId);
+        if (!provenance) {
+            throw new Error(`Agent ${agentId} not found`);
+        }
+        // Get parent provenance if exists
+        let parentProvenance;
+        if (provenance.parentAgentId) {
+            parentProvenance = this.provenances.get(provenance.parentAgentId);
+        }
+        const context = {
+            provenance,
+            parentProvenance,
+        };
+        const record = await evaluateModifier(context, this.getActivePolicies());
+        // Store evaluation
+        const agentEvaluations = this.evaluations.get(agentId) ?? [];
+        agentEvaluations.push(record);
+        this.evaluations.set(agentId, agentEvaluations);
+        return record;
+    }
+    /**
+     * Get evaluation history for an agent
+     */
+    getEvaluationHistory(agentId) {
+        return this.evaluations.get(agentId) ?? [];
+    }
+    /**
+     * Verify provenance chain for an agent
+     */
+    async verifyProvenanceChain(agentId) {
+        const chain = [];
+        const issues = [];
+        let currentId = agentId;
+        while (currentId) {
+            const provenance = this.provenances.get(currentId);
+            if (!provenance) {
+                issues.push(`Provenance for ${currentId} not found`);
+                break;
+            }
+            chain.push(currentId);
+            const result = await verifyProvenance(provenance);
+            if (!result.valid) {
+                issues.push(`${currentId}: ${result.reason}`);
+            }
+            currentId = provenance.parentAgentId;
+        }
+        return {
+            valid: issues.length === 0,
+            chain,
+            issues,
+        };
+    }
+    /**
+     * Get statistics
+     */
+    getStats() {
+        const byCreationType = {
+            [CreationType.FRESH]: 0,
+            [CreationType.CLONED]: 0,
+            [CreationType.EVOLVED]: 0,
+            [CreationType.PROMOTED]: 0,
+            [CreationType.IMPORTED]: 0,
+        };
+        for (const provenance of this.provenances.values()) {
+            byCreationType[provenance.creationType]++;
+        }
+        let evaluationCount = 0;
+        for (const evals of this.evaluations.values()) {
+            evaluationCount += evals.length;
+        }
+        return {
+            provenanceCount: this.provenances.size,
+            policyCount: this.policies.size,
+            evaluationCount,
+            byCreationType,
+        };
+    }
+}
+/**
+ * Create a new provenance service instance
+ */
+export function createProvenanceService() {
+    return new ProvenanceService();
+}
+/**
+ * Initialize default modifier policies
+ */
+export async function initializeDefaultPolicies(service) {
+    // Fresh agents - no modifier
+    await service.createPolicy({
+        policyId: 'default:fresh',
+        creationType: CreationType.FRESH,
+        baselineModifier: 0,
+        createdBy: 'system',
+    });
+    // Cloned agents - penalty for unknown inheritance
+    await service.createPolicy({
+        policyId: 'default:cloned',
+        creationType: CreationType.CLONED,
+        baselineModifier: -50,
+        conditions: {
+            parentTrustScore: { min: 0, max: 500 },
+        },
+        createdBy: 'system',
+    });
+    // Cloned from trusted parent - reduced penalty
+    await service.createPolicy({
+        policyId: 'trusted:cloned',
+        creationType: CreationType.CLONED,
+        baselineModifier: -20,
+        conditions: {
+            parentTrustScore: { min: 500, max: 1000 },
+        },
+        createdBy: 'system',
+    });
+    // Evolved agents - bonus for verifiable history
+    await service.createPolicy({
+        policyId: 'default:evolved',
+        creationType: CreationType.EVOLVED,
+        baselineModifier: 100,
+        createdBy: 'system',
+    });
+    // Promoted agents - significant bonus
+    await service.createPolicy({
+        policyId: 'default:promoted',
+        creationType: CreationType.PROMOTED,
+        baselineModifier: 150,
+        createdBy: 'system',
+    });
+    // Imported agents - penalty for unknown origin
+    await service.createPolicy({
+        policyId: 'default:imported',
+        creationType: CreationType.IMPORTED,
+        baselineModifier: -100,
+        createdBy: 'system',
+    });
+    // Imported from trusted source - reduced penalty
+    await service.createPolicy({
+        policyId: 'trusted:imported',
+        creationType: CreationType.IMPORTED,
+        baselineModifier: -30,
+        conditions: {
+            trustedSources: ['org:verified-partner', 'org:internal'],
+        },
+        createdBy: 'system',
+    });
+    logger.info('Default modifier policies initialized');
+}
+// =============================================================================
+// EXPORTS
+// =============================================================================
+export { CreationType, } from './types.js';
+//# sourceMappingURL=provenance.js.map

package/dist/phase6/provenance.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"provenance.js","sourceRoot":"","sources":["../../src/phase6/provenance.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;GAcG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,qBAAqB,CAAC;AACnD,OAAO,EAKL,YAAY,EACZ,qBAAqB,EACrB,4BAA4B,EAC5B,8BAA8B,GAC/B,MAAM,YAAY,CAAC;AAEpB,MAAM,MAAM,GAAG,YAAY,CAAC,EAAE,SAAS,EAAE,mBAAmB,EAAE,CAAC,CAAC;AAEhE,gFAAgF;AAChF,iBAAiB;AACjB,gFAAgF;AAEhF;;GAEG;AACH,KAAK,UAAU,aAAa,CAAC,IAAY;IACvC,MAAM,OAAO,GAAG,IAAI,WAAW,EAAE,CAAC;IAClC,MAAM,UAAU,GAAG,OAAO,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC;IACxC,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC;IACrE,MAAM,SAAS,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,UAAU,CAAC,UAAU,CAAC,CAAC,CAAC;IACzD,OAAO,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;AACxE,CAAC;AAiBD;;;GAGG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,KAA4B;IAE5B,oDAAoD;IACpD,IAAI,KAAK,CAAC,YAAY,KAAK,YAAY,CAAC,MAAM;QAC1C,KAAK,CAAC,YAAY,KAAK,YAAY,CAAC,OAAO;QAC3C,KAAK,CAAC,YAAY,KAAK,YAAY,CAAC,QAAQ,EAAE,CAAC;QACjD,IAAI,CAAC,KAAK,CAAC,aAAa,IAAI,CAAC,KAAK,CAAC,gBAAgB,EAAE,CAAC;YACpD,MAAM,IAAI,KAAK,CACb,GAAG,KAAK,CAAC,YAAY,qCAAqC,CAC3D,CAAC;QACJ,CAAC;IACH,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IAEvB,mBAAmB;IACnB,MAAM,QAAQ,GAAG;QACf,OAAO,EAAE,KAAK,CAAC,OAAO;QACtB,YAAY,EAAE,KAAK,CAAC,YAAY;QAChC,aAAa,EAAE,KAAK,CAAC,aAAa;QAClC,oBAAoB,EAAE,KAAK,CAAC,gBAAgB,EAAE,cAAc;QAC5D,SAAS,EAAE,GAAG,CAAC,WAAW,EAAE;QAC5B,SAAS,EAAE,KAAK,CAAC,SAAS;KAC3B,CAAC;IAEF,MAAM,cAAc,GAAG,MAAM,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC;IAErE,MAAM,UAAU,GAAoB;QAClC,OAAO,EAAE,KAAK,CAAC,OAAO;QACtB,YAAY,EAAE,KAAK,CAAC,YAAY;QAChC,aAAa,EAAE,KAAK,CAAC,aAAa;QAClC,oBAAoB,EAAE,KAAK,CAAC,gBAAgB,EAAE,cAAc;QAC5D,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,cAAc;KACf,CAAC;IAEF,oBAAoB;IACpB,MAAM,MAAM,GAAG,qBAAqB,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAC3D,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,uBAAuB,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IACjE,CAAC;IAED,MAAM,CAAC,IAAI,CACT;QACE,OAAO,EAAE,UAAU,CAAC,OAAO;QAC3B,YAAY,EAAE,UAAU,CAAC,YAAY;QACrC,aAAa,EAAE,KAAK,CAAC,aAAa;KACnC,EACD,gCAAgC,CACjC,CAAC;IAEF,OAAO,MAAM,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;AACnC,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,UAA2B;IAE3B,mBAAmB;IACnB,MAAM,QAAQ,GAAG;QACf,OAAO,EAAE,UAAU,CAAC,OAAO;QAC3B,YAAY,EAAE,UAAU,CAAC,YAAY;QACrC,aAAa,EAAE,UAAU,CAAC,aAAa;QACvC,oBAAoB,EAAE,UAAU,CAAC,oBAAoB;QACrD,SAAS,EAAE,UAAU,CAAC,SAAS,CAAC,WAAW,EAAE;QAC7C,SAAS,EAAE,UAAU,CAAC,SAAS;KAChC,CAAC;IAEF,MAAM,YAAY,GAAG,MAAM,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC,CAAC;IAEnE,IAAI,UAAU,CAAC,cAAc,KAAK,YAAY,EAAE,CAAC;QAC/C,OAAO,EAAE,KAAK,EAAE,KAAK,EAAE,MAAM,EAAE,+CAA+C,EAAE,CAAC;IACnF,CAAC;IAED,OAAO,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;AACzB,CAAC;AAED,gFAAgF;AAChF,uCAAuC;AACvC,gFAAgF;AAEhF;;GAEG;AACH,MAAM,CAAC,MAAM,0BAA0B,GAAiC;IACtE,CAAC,YAAY,CAAC,KAAK,CAAC,EAAE,CAAC,EAAQ,+BAA+B;IAC9D,CAAC,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC,EAAE,EAAK,iCAAiC;IAChE,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE,GAAG,EAAI,yBAAyB;IACxD,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,GAAG,EAAG,qBAAqB;IACpD,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC,GAAG,EAAE,8BAA8B;CAC9D,CAAC;AAgBF;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,KAAgC;IAEhC,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,gBAAgB,GAAG,KAAK,CAAC,gBAAgB,IAAI,0BAA0B,CAAC,KAAK,CAAC,YAAY,CAAC,CAAC;IAElG,MAAM,UAAU,GAAG;QACjB,QAAQ,EAAE,KAAK,CAAC,QAAQ;QACxB,YAAY,EAAE,KAAK,CAAC,YAAY;QAChC,gBAAgB;QAChB,UAAU,EAAE,KAAK,CAAC,UAAU;QAC5B,aAAa,EAAE,KAAK,CAAC,aAAa,IAAI,GAAG;QACzC,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,UAAU,EAAE,KAAK,CAAC,UAAU;KAC7B,CAAC;IAEF,MAAM,UAAU,GAAG,MAAM,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAC;IAEnE,MAAM,MAAM,GAA2B;QACrC,QAAQ,EAAE,KAAK,CAAC,QAAQ;QACxB,OAAO,EAAE,CAAC;QACV,YAAY,EAAE,KAAK,CAAC,YAAY;QAChC,gBAAgB;QAChB,UAAU,EAAE,KAAK,CAAC,UAAU;QAC5B,aAAa,EAAE,KAAK,CAAC,aAAa,IAAI,GAAG;QACzC,cAAc,EAAE,KAAK,CAAC,cAAc;QACpC,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,KAAK,CAAC,SAAS;QAC1B,UAAU;QACV,UAAU,EAAE,KAAK,CAAC,UAAU;KAC7B,CAAC;IAEF,oBAAoB;IACpB,MAAM,MAAM,GAAG,4BAA4B,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IAC9D,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,mBAAmB,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IAC7D,CAAC;IAED,MAAM,CAAC,IAAI,CACT;QACE,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,YAAY,EAAE,MAAM,CAAC,YAAY;QACjC,gBAAgB;KACjB,EACD,yBAAyB,CAC1B,CAAC;IAEF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,oBAAoB,CACxC,cAAsC,EACtC,OAA4F,EAC5F,SAAiB;IAEjB,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IAEvB,MAAM,UAAU,GAAG;QACjB,QAAQ,EAAE,cAAc,CAAC,QAAQ;QACjC,OAAO,EAAE,cAAc,CAAC,OAAO,GAAG,CAAC;QACnC,YAAY,EAAE,cAAc,CAAC,YAAY;QACzC,gBAAgB,EAAE,OAAO,CAAC,gBAAgB,IAAI,cAAc,CAAC,gBAAgB;QAC7E,UAAU,EAAE,OAAO,CAAC,UAAU,IAAI,cAAc,CAAC,UAAU;QAC3D,aAAa,EAAE,OAAO,CAAC,aAAa,IAAI,GAAG;QAC3C,cAAc,EAAE,OAAO,CAAC,cAAc;QACtC,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,SAAS;QACpB,UAAU,EAAE,cAAc,CAAC,UAAU;KACtC,CAAC;IAEF,MAAM,UAAU,GAAG,MAAM,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC,CAAC;IAEnE,MAAM,SAAS,GAA2B;QACxC,GAAG,UAAU;QACb,UAAU;KACX,CAAC;IAEF,oBAAoB;IACpB,MAAM,MAAM,GAAG,4BAA4B,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;IACjE,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,0BAA0B,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IACpE,CAAC;IAED,MAAM,CAAC,IAAI,CACT;QACE,QAAQ,EAAE,SAAS,CAAC,QAAQ;QAC5B,OAAO,EAAE,SAAS,CAAC,OAAO;QAC1B,UAAU,EAAE,cAAc,CAAC,UAAU;KACtC,EACD,yBAAyB,CAC1B,CAAC;IAEF,OAAO,SAAS,CAAC;AACnB,CAAC;AAiBD;;GAEG;AACH,SAAS,kBAAkB,CACzB,UAAkD,EAClD,OAAkC;IAElC,IAAI,CAAC,UAAU,EAAE,CAAC;QAChB,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,iBAAiB,EAAE,CAAC,UAAU,CAAC,EAAE,CAAC;IAC5D,CAAC;IAED,MAAM,iBAAiB,GAAa,EAAE,CAAC;IAEvC,6BAA6B;IAC7B,IAAI,UAAU,CAAC,kBAAkB,KAAK,SAAS,EAAE,CAAC;QAChD,IAAI,OAAO,CAAC,gBAAgB,EAAE,YAAY,KAAK,UAAU,CAAC,kBAAkB,EAAE,CAAC;YAC7E,iBAAiB,CAAC,IAAI,CAAC,sBAAsB,UAAU,CAAC,kBAAkB,EAAE,CAAC,CAAC;QAChF,CAAC;aAAM,CAAC;YACN,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,iBAAiB,EAAE,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,iCAAiC;IACjC,IAAI,UAAU,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;QAC9C,IAAI,OAAO,CAAC,gBAAgB,KAAK,SAAS,EAAE,CAAC;YAC3C,IACE,OAAO,CAAC,gBAAgB,IAAI,UAAU,CAAC,gBAAgB,CAAC,GAAG;gBAC3D,OAAO,CAAC,gBAAgB,IAAI,UAAU,CAAC,gBAAgB,CAAC,GAAG,EAC3D,CAAC;gBACD,iBAAiB,CAAC,IAAI,CAAC,oBAAoB,UAAU,CAAC,gBAAgB,CAAC,GAAG,IAAI,UAAU,CAAC,gBAAgB,CAAC,GAAG,EAAE,CAAC,CAAC;YACnH,CAAC;iBAAM,CAAC;gBACN,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,iBAAiB,EAAE,CAAC;YAC/C,CAAC;QACH,CAAC;aAAM,CAAC;YACN,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,iBAAiB,EAAE,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,wBAAwB;IACxB,IAAI,UAAU,CAAC,cAAc,KAAK,SAAS,IAAI,UAAU,CAAC,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QACpF,IAAI,OAAO,CAAC,cAAc,IAAI,UAAU,CAAC,cAAc,CAAC,QAAQ,CAAC,OAAO,CAAC,cAAc,CAAC,EAAE,CAAC;YACzF,iBAAiB,CAAC,IAAI,CAAC,iBAAiB,OAAO,CAAC,cAAc,EAAE,CAAC,CAAC;QACpE,CAAC;aAAM,CAAC;YACN,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,iBAAiB,EAAE,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,8BAA8B;IAC9B,IAAI,UAAU,CAAC,oBAAoB,KAAK,SAAS,IAAI,UAAU,CAAC,oBAAoB,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;QAChG,MAAM,MAAM,GAAG,UAAU,CAAC,oBAAoB,CAAC,KAAK,CAClD,CAAC,QAAQ,EAAE,EAAE,CAAC,OAAO,CAAC,YAAY,EAAE,QAAQ,CAAC,QAAQ,CAAC,CACvD,CAAC;QACF,IAAI,MAAM,EAAE,CAAC;YACX,iBAAiB,CAAC,IAAI,CAAC,gBAAgB,UAAU,CAAC,oBAAoB,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,CAAC;QACtF,CAAC;aAAM,CAAC;YACN,OAAO,EAAE,OAAO,EAAE,KAAK,EAAE,iBAAiB,EAAE,CAAC;QAC/C,CAAC;IACH,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,iBAAiB,CAAC,MAAM,GAAG,CAAC,EAAE,iBAAiB,EAAE,CAAC;AACtE,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,gBAAgB,CACpC,OAAkC,EAClC,QAAkC;IAElC,uEAAuE;IACvE,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,kBAAkB,GAAG,QAAQ;SAChC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,YAAY,KAAK,OAAO,CAAC,UAAU,CAAC,YAAY,CAAC;SACjE,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,aAAa,IAAI,GAAG,CAAC;SACrC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,cAAc,IAAI,CAAC,CAAC,cAAc,GAAG,GAAG,CAAC;SAC1D,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,OAAO,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,wBAAwB;IAElE,IAAI,kBAAkB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpC,gCAAgC;QAChC,MAAM,eAAe,GAAG,0BAA0B,CAAC,OAAO,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC;QAEpF,MAAM,QAAQ,GAAG;YACf,OAAO,EAAE,OAAO,CAAC,UAAU,CAAC,OAAO;YACnC,cAAc,EAAE,OAAO,CAAC,UAAU,CAAC,cAAc;YACjD,gBAAgB,EAAE,eAAe;YACjC,WAAW,EAAE,GAAG,CAAC,WAAW,EAAE;SAC/B,CAAC;QAEF,MAAM,MAAM,GAA6B;YACvC,YAAY,EAAE,MAAM,CAAC,UAAU,EAAE;YACjC,OAAO,EAAE,OAAO,CAAC,UAAU,CAAC,OAAO;YACnC,cAAc,EAAE,OAAO,CAAC,UAAU,CAAC,cAAc;YACjD,QAAQ,EAAE,SAAS;YACnB,aAAa,EAAE,CAAC;YAChB,gBAAgB,EAAE,eAAe;YACjC,iBAAiB,EAAE,CAAC,SAAS,CAAC;YAC9B,WAAW,EAAE,GAAG;YAChB,cAAc,EAAE,MAAM,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;SAC9D,CAAC;QAEF,OAAO,MAAM,CAAC;IAChB,CAAC;IAED,4BAA4B;IAC5B,MAAM,MAAM,GAAG,kBAAkB,CAAC,CAAC,CAAC,CAAC;IACrC,MAAM,EAAE,OAAO,EAAE,iBAAiB,EAAE,GAAG,kBAAkB,CAAC,MAAM,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;IAEtF,MAAM,gBAAgB,GAAG,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,CAAC;IAE/D,MAAM,QAAQ,GAAG;QACf,OAAO,EAAE,OAAO,CAAC,UAAU,CAAC,OAAO;QACnC,cAAc,EAAE,OAAO,CAAC,UAAU,CAAC,cAAc;QACjD,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,aAAa,EAAE,MAAM,CAAC,OAAO;QAC7B,gBAAgB;QAChB,iBAAiB,EAAE,iBAAiB;QACpC,WAAW,EAAE,GAAG,CAAC,WAAW,EAAE;KAC/B,CAAC;IAEF,MAAM,MAAM,GAA6B;QACvC,YAAY,EAAE,MAAM,CAAC,UAAU,EAAE;QACjC,OAAO,EAAE,OAAO,CAAC,UAAU,CAAC,OAAO;QACnC,cAAc,EAAE,OAAO,CAAC,UAAU,CAAC,cAAc;QACjD,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,aAAa,EAAE,MAAM,CAAC,OAAO;QAC7B,gBAAgB;QAChB,iBAAiB,EAAE,iBAAiB;QACpC,WAAW,EAAE,GAAG;QAChB,cAAc,EAAE,MAAM,aAAa,CAAC,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;KAC9D,CAAC;IAEF,oBAAoB;IACpB,MAAM,MAAM,GAAG,8BAA8B,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;IAChE,IAAI,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC;QACpB,MAAM,IAAI,KAAK,CAAC,8BAA8B,MAAM,CAAC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;IACxE,CAAC;IAED,MAAM,CAAC,KAAK,CACV;QACE,OAAO,EAAE,MAAM,CAAC,OAAO;QACvB,QAAQ,EAAE,MAAM,CAAC,QAAQ;QACzB,QAAQ,EAAE,MAAM,CAAC,gBAAgB;KAClC,EACD,oBAAoB,CACrB,CAAC;IAEF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,gFAAgF;AAChF,qBAAqB;AACrB,gFAAgF;AAEhF;;GAEG;AACH,MAAM,OAAO,iBAAiB;IACpB,WAAW,GAAiC,IAAI,GAAG,EAAE,CAAC;IACtD,QAAQ,GAA0C,IAAI,GAAG,EAAE,CAAC,CAAC,uBAAuB;IACpF,WAAW,GAA4C,IAAI,GAAG,EAAE,CAAC,CAAC,yBAAyB;IAEnG;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,KAA4B;QACjD,+BAA+B;QAC/B,IAAI,KAAK,CAAC,aAAa,EAAE,CAAC;YACxB,MAAM,gBAAgB,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,CAAC,aAAa,CAAC,CAAC;YACnE,IAAI,CAAC,gBAAgB,EAAE,CAAC;gBACtB,MAAM,IAAI,KAAK,CAAC,gBAAgB,KAAK,CAAC,aAAa,YAAY,CAAC,CAAC;YACnE,CAAC;YACD,KAAK,CAAC,gBAAgB,GAAG,gBAAgB,CAAC;QAC5C,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,gBAAgB,CAAC,KAAK,CAAC,CAAC;QACjD,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,KAAK,CAAC,OAAO,EAAE,UAAU,CAAC,CAAC;QAChD,OAAO,UAAU,CAAC;IACpB,CAAC;IAED;;OAEG;IACH,aAAa,CAAC,OAAe;QAC3B,OAAO,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;IACvC,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CAAC,KAAgC;QACjD,MAAM,MAAM,GAAG,MAAM,oBAAoB,CAAC,KAAK,CAAC,CAAC;QAEjD,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;QACzD,QAAQ,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QACtB,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,KAAK,CAAC,QAAQ,EAAE,QAAQ,CAAC,CAAC;QAE5C,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,YAAY,CAChB,QAAgB,EAChB,OAA4F,EAC5F,SAAiB;QAEjB,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAC7C,IAAI,CAAC,QAAQ,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YACvC,MAAM,IAAI,KAAK,CAAC,UAAU,QAAQ,YAAY,CAAC,CAAC;QAClD,CAAC;QAED,MAAM,aAAa,GAAG,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;QACpD,MAAM,SAAS,GAAG,MAAM,oBAAoB,CAAC,aAAa,EAAE,OAAO,EAAE,SAAS,CAAC,CAAC;QAEhF,QAAQ,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;QACzB,OAAO,SAAS,CAAC;IACnB,CAAC;IAED;;OAEG;IACH,SAAS,CAAC,QAAgB;QACxB,MAAM,QAAQ,GAAG,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QAC7C,OAAO,QAAQ,EAAE,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IACzC,CAAC;IAED;;OAEG;IACH,iBAAiB,CAAC,QAAgB;QAChC,OAAO,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,QAAQ,CAAC,IAAI,EAAE,CAAC;IAC3C,CAAC;IAED;;OAEG;IACH,iBAAiB;QACf,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;QACvB,MAAM,MAAM,GAA6B,EAAE,CAAC;QAE5C,KAAK,MAAM,QAAQ,IAAI,IAAI,CAAC,QAAQ,CAAC,MAAM,EAAE,EAAE,CAAC;YAC9C,MAAM,OAAO,GAAG,QAAQ,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;YAC9C,IAAI,OAAO,CAAC,aAAa,IAAI,GAAG,IAAI,CAAC,CAAC,OAAO,CAAC,cAAc,IAAI,OAAO,CAAC,cAAc,GAAG,GAAG,CAAC,EAAE,CAAC;gBAC9F,MAAM,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACvB,CAAC;QACH,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,gBAAgB,CAAC,OAAe;QACpC,MAAM,UAAU,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC;QACjD,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,MAAM,IAAI,KAAK,CAAC,SAAS,OAAO,YAAY,CAAC,CAAC;QAChD,CAAC;QAED,kCAAkC;QAClC,IAAI,gBAA6C,CAAC;QAClD,IAAI,UAAU,CAAC,aAAa,EAAE,CAAC;YAC7B,gBAAgB,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,UAAU,CAAC,aAAa,CAAC,CAAC;QACpE,CAAC;QAED,MAAM,OAAO,GAA8B;YACzC,UAAU;YACV,gBAAgB;SACjB,CAAC;QAEF,MAAM,MAAM,GAAG,MAAM,gBAAgB,CAAC,OAAO,EAAE,IAAI,CAAC,iBAAiB,EAAE,CAAC,CAAC;QAEzE,mBAAmB;QACnB,MAAM,gBAAgB,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;QAC7D,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC9B,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,EAAE,gBAAgB,CAAC,CAAC;QAEhD,OAAO,MAAM,CAAC;IAChB,CAAC;IAED;;OAEG;IACH,oBAAoB,CAAC,OAAe;QAClC,OAAO,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,OAAO,CAAC,IAAI,EAAE,CAAC;IAC7C,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,qBAAqB,CAAC,OAAe;QAKzC,MAAM,KAAK,GAAa,EAAE,CAAC;QAC3B,MAAM,MAAM,GAAa,EAAE,CAAC;QAE5B,IAAI,SAAS,GAAuB,OAAO,CAAC;QAE5C,OAAO,SAAS,EAAE,CAAC;YACjB,MAAM,UAAU,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,SAAS,CAAC,CAAC;YACnD,IAAI,CAAC,UAAU,EAAE,CAAC;gBAChB,MAAM,CAAC,IAAI,CAAC,kBAAkB,SAAS,YAAY,CAAC,CAAC;gBACrD,MAAM;YACR,CAAC;YAED,KAAK,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;YAEtB,MAAM,MAAM,GAAG,MAAM,gBAAgB,CAAC,UAAU,CAAC,CAAC;YAClD,IAAI,CAAC,MAAM,CAAC,KAAK,EAAE,CAAC;gBAClB,MAAM,CAAC,IAAI,CAAC,GAAG,SAAS,KAAK,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;YAChD,CAAC;YAED,SAAS,GAAG,UAAU,CAAC,aAAa,CAAC;QACvC,CAAC;QAED,OAAO;YACL,KAAK,EAAE,MAAM,CAAC,MAAM,KAAK,CAAC;YAC1B,KAAK;YACL,MAAM;SACP,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,QAAQ;QAMN,MAAM,cAAc,GAAiC;YACnD,CAAC,YAAY,CAAC,KAAK,CAAC,EAAE,CAAC;YACvB,CAAC,YAAY,CAAC,MAAM,CAAC,EAAE,CAAC;YACxB,CAAC,YAAY,CAAC,OAAO,CAAC,EAAE,CAAC;YACzB,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC1B,CAAC,YAAY,CAAC,QAAQ,CAAC,EAAE,CAAC;SAC3B,CAAC;QAEF,KAAK,MAAM,UAAU,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,EAAE,CAAC;YACnD,cAAc,CAAC,UAAU,CAAC,YAAY,CAAC,EAAE,CAAC;QAC5C,CAAC;QAED,IAAI,eAAe,GAAG,CAAC,CAAC;QACxB,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,WAAW,CAAC,MAAM,EAAE,EAAE,CAAC;YAC9C,eAAe,IAAI,KAAK,CAAC,MAAM,CAAC;QAClC,CAAC;QAED,OAAO;YACL,eAAe,EAAE,IAAI,CAAC,WAAW,CAAC,IAAI;YACtC,WAAW,EAAE,IAAI,CAAC,QAAQ,CAAC,IAAI;YAC/B,eAAe;YACf,cAAc;SACf,CAAC;IACJ,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,uBAAuB;IACrC,OAAO,IAAI,iBAAiB,EAAE,CAAC;AACjC,CAAC;AAED;;GAEG;AACH,MAAM,CAAC,KAAK,UAAU,yBAAyB,CAAC,OAA0B;IACxE,6BAA6B;IAC7B,MAAM,OAAO,CAAC,YAAY,CAAC;QACzB,QAAQ,EAAE,eAAe;QACzB,YAAY,EAAE,YAAY,CAAC,KAAK;QAChC,gBAAgB,EAAE,CAAC;QACnB,SAAS,EAAE,QAAQ;KACpB,CAAC,CAAC;IAEH,kDAAkD;IAClD,MAAM,OAAO,CAAC,YAAY,CAAC;QACzB,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,YAAY,CAAC,MAAM;QACjC,gBAAgB,EAAE,CAAC,EAAE;QACrB,UAAU,EAAE;YACV,gBAAgB,EAAE,EAAE,GAAG,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,EAAE;SACvC;QACD,SAAS,EAAE,QAAQ;KACpB,CAAC,CAAC;IAEH,+CAA+C;IAC/C,MAAM,OAAO,CAAC,YAAY,CAAC;QACzB,QAAQ,EAAE,gBAAgB;QAC1B,YAAY,EAAE,YAAY,CAAC,MAAM;QACjC,gBAAgB,EAAE,CAAC,EAAE;QACrB,UAAU,EAAE;YACV,gBAAgB,EAAE,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,IAAI,EAAE;SAC1C;QACD,SAAS,EAAE,QAAQ;KACpB,CAAC,CAAC;IAEH,gDAAgD;IAChD,MAAM,OAAO,CAAC,YAAY,CAAC;QACzB,QAAQ,EAAE,iBAAiB;QAC3B,YAAY,EAAE,YAAY,CAAC,OAAO;QAClC,gBAAgB,EAAE,GAAG;QACrB,SAAS,EAAE,QAAQ;KACpB,CAAC,CAAC;IAEH,sCAAsC;IACtC,MAAM,OAAO,CAAC,YAAY,CAAC;QACzB,QAAQ,EAAE,kBAAkB;QAC5B,YAAY,EAAE,YAAY,CAAC,QAAQ;QACnC,gBAAgB,EAAE,GAAG;QACrB,SAAS,EAAE,QAAQ;KACpB,CAAC,CAAC;IAEH,+CAA+C;IAC/C,MAAM,OAAO,CAAC,YAAY,CAAC;QACzB,QAAQ,EAAE,kBAAkB;QAC5B,YAAY,EAAE,YAAY,CAAC,QAAQ;QACnC,gBAAgB,EAAE,CAAC,GAAG;QACtB,SAAS,EAAE,QAAQ;KACpB,CAAC,CAAC;IAEH,iDAAiD;IACjD,MAAM,OAAO,CAAC,YAAY,CAAC;QACzB,QAAQ,EAAE,kBAAkB;QAC5B,YAAY,EAAE,YAAY,CAAC,QAAQ;QACnC,gBAAgB,EAAE,CAAC,EAAE;QACrB,UAAU,EAAE;YACV,cAAc,EAAE,CAAC,sBAAsB,EAAE,cAAc,CAAC;SACzD;QACD,SAAS,EAAE,QAAQ;KACpB,CAAC,CAAC;IAEH,MAAM,CAAC,IAAI,CAAC,uCAAuC,CAAC,CAAC;AACvD,CAAC;AAED,gFAAgF;AAChF,UAAU;AACV,gFAAgF;AAEhF,OAAO,EAKL,YAAY,GACb,MAAM,YAAY,CAAC"}

package/dist/phase6/role-gates/index.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Q3: Role Gates
+ * Dual-layer validation: kernel fast-path + BASIS policy engine
+ */
+export { AgentRole, TrustTier, ROLE_GATE_MATRIX, validateRoleAndTier, isValidRole, isValidTier, getMaxTierForRole, getMinRoleForTier, RoleGateValidationError, } from './kernel.js';
+export { BasisPolicyEngine, type PolicyRule, type PolicyException, type PolicyDecision, type PolicyAuditEntry, } from './policy.js';
+//# sourceMappingURL=index.d.ts.map

package/dist/phase6/role-gates/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/phase6/role-gates/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,SAAS,EACT,SAAS,EACT,gBAAgB,EAChB,mBAAmB,EACnB,WAAW,EACX,WAAW,EACX,iBAAiB,EACjB,iBAAiB,EACjB,uBAAuB,GACxB,MAAM,aAAa,CAAC;AAErB,OAAO,EACL,iBAAiB,EACjB,KAAK,UAAU,EACf,KAAK,eAAe,EACpB,KAAK,cAAc,EACnB,KAAK,gBAAgB,GACtB,MAAM,aAAa,CAAC"}

package/dist/phase6/role-gates/index.js

@@ -0,0 +1,7 @@
+/**
+ * Q3: Role Gates
+ * Dual-layer validation: kernel fast-path + BASIS policy engine
+ */
+export { AgentRole, TrustTier, ROLE_GATE_MATRIX, validateRoleAndTier, isValidRole, isValidTier, getMaxTierForRole, getMinRoleForTier, RoleGateValidationError, } from './kernel.js';
+export { BasisPolicyEngine, } from './policy.js';
+//# sourceMappingURL=index.js.map

package/dist/phase6/role-gates/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/phase6/role-gates/index.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EACL,SAAS,EACT,SAAS,EACT,gBAAgB,EAChB,mBAAmB,EACnB,WAAW,EACX,WAAW,EACX,iBAAiB,EACjB,iBAAiB,EACjB,uBAAuB,GACxB,MAAM,aAAa,CAAC;AAErB,OAAO,EACL,iBAAiB,GAKlB,MAAM,aAAa,CAAC"}

package/dist/phase6/role-gates/kernel.d.ts

@@ -0,0 +1,84 @@
+/**
+ * Q3: Role Gates - Kernel Validation Layer
+ * Fast-path role + tier combination validation with matrix lookups
+ *
+ * Architecture:
+ * - Fail-fast kernel validation (<0.5ms)
+ * - Pre-computed matrix for O(1) lookups
+ * - 9 roles (R-L0 to R-L8) × 6 tiers (T0 to T5) = 48 valid combinations
+ */
+/**
+ * Agent role enumeration (9 levels)
+ * Defines hierarchical responsibility and operational scope
+ */
+export declare enum AgentRole {
+    R_L0 = "R-L0",// Minimal autonomy, strict supervision
+    R_L1 = "R-L1",// Limited autonomy, high oversight
+    R_L2 = "R-L2",// Moderate autonomy, medium oversight
+    R_L3 = "R-L3",// Balanced autonomy, routine oversight
+    R_L4 = "R-L4",// Higher autonomy, conditional oversight
+    R_L5 = "R-L5",// Strong autonomy, rare oversight
+    R_L6 = "R-L6",// Very strong autonomy, minimal oversight
+    R_L7 = "R-L7",// Near-complete autonomy, exception handling
+    R_L8 = "R-L8"
+}
+/**
+ * Trust tier enumeration (6 levels)
+ * Defines operational authorization scope and resource access
+ */
+export declare enum TrustTier {
+    T0 = "T0",// Read-only, no state mutations
+    T1 = "T1",// Read + limited mutations, single domain
+    T2 = "T2",// Read + mutations, multiple domains
+    T3 = "T3",// Read + mutations + external API access
+    T4 = "T4",// Full resource access, regulatory compliance
+    T5 = "T5"
+}
+/**
+ * Role Gate Matrix: Valid role + tier combinations
+ * Rows: Roles (R-L0 to R-L8)
+ * Cols: Tiers (T0 to T5)
+ * Value: true if combination is valid
+ *
+ * Matrix structure:
+ * - R-L0 can reach: T0, T1
+ * - R-L1 can reach: T0, T1, T2
+ * - R-L2 can reach: T0, T1, T2, T3
+ * - R-L3 can reach: T0, T1, T2, T3, T4
+ * - R-L4 can reach: T0, T1, T2, T3, T4
+ * - R-L5 can reach: T0, T1, T2, T3, T4
+ * - R-L6 can reach: T0, T1, T2, T3, T4, T5
+ * - R-L7 can reach: T0, T1, T2, T3, T4, T5
+ * - R-L8 can reach: T0, T1, T2, T3, T4, T5
+ */
+export declare const ROLE_GATE_MATRIX: Record<AgentRole, Record<TrustTier, boolean>>;
+/**
+ * Validate role + tier combination
+ * O(1) matrix lookup, fail-fast validation
+ */
+export declare function validateRoleAndTier(role: AgentRole, tier: TrustTier): boolean;
+/**
+ * Check if value is a valid AgentRole
+ */
+export declare function isValidRole(role: unknown): role is AgentRole;
+/**
+ * Check if value is a valid TrustTier
+ */
+export declare function isValidTier(tier: unknown): tier is TrustTier;
+/**
+ * Get maximum tier reachable for a given role
+ */
+export declare function getMaxTierForRole(role: AgentRole): TrustTier;
+/**
+ * Get minimum role required for a given tier
+ */
+export declare function getMinRoleForTier(tier: TrustTier): AgentRole;
+/**
+ * Custom error for role gate validation failures
+ */
+export declare class RoleGateValidationError extends Error {
+    role: AgentRole;
+    tier: TrustTier;
+    constructor(role: AgentRole, tier: TrustTier, message?: string);
+}
+//# sourceMappingURL=kernel.d.ts.map