npm - ai-database - Versions diffs - 2.1.1 → 2.3.0 - Mend

ai-database 2.1.1 → 2.3.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (268) hide show

package/CHANGELOG.md +47 -1
package/README.md +1063 -186
package/dist/actions.d.ts +2 -2
package/dist/actions.d.ts.map +1 -1
package/dist/actions.js +1 -1
package/dist/actions.js.map +1 -1
package/dist/ai-promise-db.d.ts +52 -23
package/dist/ai-promise-db.d.ts.map +1 -1
package/dist/ai-promise-db.js +185 -164
package/dist/ai-promise-db.js.map +1 -1
package/dist/authorization.d.ts.map +1 -1
package/dist/authorization.js +38 -30
package/dist/authorization.js.map +1 -1
package/dist/cascade-orchestrator.d.ts +404 -0
package/dist/cascade-orchestrator.d.ts.map +1 -0
package/dist/cascade-orchestrator.js +828 -0
package/dist/cascade-orchestrator.js.map +1 -0
package/dist/cascade-write-strategy.d.ts +584 -0
package/dist/cascade-write-strategy.d.ts.map +1 -0
package/dist/cascade-write-strategy.js +590 -0
package/dist/cascade-write-strategy.js.map +1 -0
package/dist/ch-adapter.d.ts +358 -0
package/dist/ch-adapter.d.ts.map +1 -0
package/dist/ch-adapter.js +929 -0
package/dist/ch-adapter.js.map +1 -0
package/dist/client/index.d.ts +42 -0
package/dist/client/index.d.ts.map +1 -0
package/dist/client/index.js +43 -0
package/dist/client/index.js.map +1 -0
package/dist/client.d.ts +266 -0
package/dist/client.d.ts.map +1 -0
package/dist/client.js +81 -0
package/dist/client.js.map +1 -0
package/dist/constants.d.ts +64 -1
package/dist/constants.d.ts.map +1 -1
package/dist/constants.js +52 -2
package/dist/constants.js.map +1 -1
package/dist/dataloader.d.ts +99 -0
package/dist/dataloader.d.ts.map +1 -0
package/dist/dataloader.js +225 -0
package/dist/dataloader.js.map +1 -0
package/dist/db-provider-port.d.ts +501 -0
package/dist/db-provider-port.d.ts.map +1 -0
package/dist/db-provider-port.js +113 -0
package/dist/db-provider-port.js.map +1 -0
package/dist/digital-objects-provider.d.ts +49 -0
package/dist/digital-objects-provider.d.ts.map +1 -0
package/dist/digital-objects-provider.js +55 -0
package/dist/digital-objects-provider.js.map +1 -0
package/dist/do-sqlite-adapter.d.ts +402 -0
package/dist/do-sqlite-adapter.d.ts.map +1 -0
package/dist/do-sqlite-adapter.js +745 -0
package/dist/do-sqlite-adapter.js.map +1 -0
package/dist/docs-rels/custom-types.d.ts +134 -0
package/dist/docs-rels/custom-types.d.ts.map +1 -0
package/dist/docs-rels/custom-types.js +70 -0
package/dist/docs-rels/custom-types.js.map +1 -0
package/dist/docs-rels/index.d.ts +16 -0
package/dist/docs-rels/index.d.ts.map +1 -0
package/dist/docs-rels/index.js +16 -0
package/dist/docs-rels/index.js.map +1 -0
package/dist/docs-rels/migrations/index.d.ts +30 -0
package/dist/docs-rels/migrations/index.d.ts.map +1 -0
package/dist/docs-rels/migrations/index.js +128 -0
package/dist/docs-rels/migrations/index.js.map +1 -0
package/dist/docs-rels/schema.d.ts +2961 -0
package/dist/docs-rels/schema.d.ts.map +1 -0
package/dist/docs-rels/schema.js +244 -0
package/dist/docs-rels/schema.js.map +1 -0
package/dist/durable-clickhouse.d.ts.map +1 -1
package/dist/durable-clickhouse.js +16 -13
package/dist/durable-clickhouse.js.map +1 -1
package/dist/durable-promise.d.ts.map +1 -1
package/dist/durable-promise.js +34 -15
package/dist/durable-promise.js.map +1 -1
package/dist/errors.d.ts +127 -0
package/dist/errors.d.ts.map +1 -0
package/dist/errors.js +210 -0
package/dist/errors.js.map +1 -0
package/dist/eventbridge.d.ts +117 -0
package/dist/eventbridge.d.ts.map +1 -0
package/dist/eventbridge.js +238 -0
package/dist/eventbridge.js.map +1 -0
package/dist/events.d.ts +2 -2
package/dist/events.d.ts.map +1 -1
package/dist/events.js +1 -1
package/dist/events.js.map +1 -1
package/dist/execution-queue.d.ts.map +1 -1
package/dist/execution-queue.js +4 -5
package/dist/execution-queue.js.map +1 -1
package/dist/index.d.ts +37 -8
package/dist/index.d.ts.map +1 -1
package/dist/index.js +112 -6
package/dist/index.js.map +1 -1
package/dist/linguistic.d.ts +3 -108
package/dist/linguistic.d.ts.map +1 -1
package/dist/linguistic.js +3 -372
package/dist/linguistic.js.map +1 -1
package/dist/logger.d.ts +132 -0
package/dist/logger.d.ts.map +1 -0
package/dist/logger.js +137 -0
package/dist/logger.js.map +1 -0
package/dist/memory-provider.d.ts +129 -0
package/dist/memory-provider.d.ts.map +1 -1
package/dist/memory-provider.js +592 -257
package/dist/memory-provider.js.map +1 -1
package/dist/pg-adapter.d.ts +424 -0
package/dist/pg-adapter.d.ts.map +1 -0
package/dist/pg-adapter.js +921 -0
package/dist/pg-adapter.js.map +1 -0
package/dist/pipelines-iceberg-emitter.d.ts +327 -0
package/dist/pipelines-iceberg-emitter.d.ts.map +1 -0
package/dist/pipelines-iceberg-emitter.js +351 -0
package/dist/pipelines-iceberg-emitter.js.map +1 -0
package/dist/provider-capabilities.d.ts +146 -0
package/dist/provider-capabilities.d.ts.map +1 -0
package/dist/provider-capabilities.js +214 -0
package/dist/provider-capabilities.js.map +1 -0
package/dist/rdb-provider-adapter.d.ts +195 -0
package/dist/rdb-provider-adapter.d.ts.map +1 -0
package/dist/rdb-provider-adapter.js +291 -0
package/dist/rdb-provider-adapter.js.map +1 -0
package/dist/schema/cascade.d.ts +49 -10
package/dist/schema/cascade.d.ts.map +1 -1
package/dist/schema/cascade.js +491 -273
package/dist/schema/cascade.js.map +1 -1
package/dist/schema/definition-caches.d.ts +24 -0
package/dist/schema/definition-caches.d.ts.map +1 -0
package/dist/schema/definition-caches.js +26 -0
package/dist/schema/definition-caches.js.map +1 -0
package/dist/schema/dependency-graph.d.ts +45 -0
package/dist/schema/dependency-graph.d.ts.map +1 -0
package/dist/schema/dependency-graph.js +47 -0
package/dist/schema/dependency-graph.js.map +1 -0
package/dist/schema/diff.d.ts +103 -0
package/dist/schema/diff.d.ts.map +1 -0
package/dist/schema/diff.js +329 -0
package/dist/schema/diff.js.map +1 -0
package/dist/schema/entity-operations.d.ts +99 -0
package/dist/schema/entity-operations.d.ts.map +1 -0
package/dist/schema/entity-operations.js +818 -0
package/dist/schema/entity-operations.js.map +1 -0
package/dist/schema/generation-context.d.ts +202 -0
package/dist/schema/generation-context.d.ts.map +1 -0
package/dist/schema/generation-context.js +393 -0
package/dist/schema/generation-context.js.map +1 -0
package/dist/schema/index.d.ts +32 -34
package/dist/schema/index.d.ts.map +1 -1
package/dist/schema/index.js +462 -519
package/dist/schema/index.js.map +1 -1
package/dist/schema/migration.d.ts +205 -0
package/dist/schema/migration.d.ts.map +1 -0
package/dist/schema/migration.js +327 -0
package/dist/schema/migration.js.map +1 -0
package/dist/schema/nl-query-generator.d.ts +68 -0
package/dist/schema/nl-query-generator.d.ts.map +1 -0
package/dist/schema/nl-query-generator.js +362 -0
package/dist/schema/nl-query-generator.js.map +1 -0
package/dist/schema/nl-query.d.ts +65 -0
package/dist/schema/nl-query.d.ts.map +1 -0
package/dist/schema/nl-query.js +178 -0
package/dist/schema/nl-query.js.map +1 -0
package/dist/schema/parse.d.ts.map +1 -1
package/dist/schema/parse.js +152 -89
package/dist/schema/parse.js.map +1 -1
package/dist/schema/provider.d.ts +38 -0
package/dist/schema/provider.d.ts.map +1 -1
package/dist/schema/provider.js +15 -7
package/dist/schema/provider.js.map +1 -1
package/dist/schema/resolve.d.ts +46 -5
package/dist/schema/resolve.d.ts.map +1 -1
package/dist/schema/resolve.js +334 -117
package/dist/schema/resolve.js.map +1 -1
package/dist/schema/search-utils.d.ts +76 -0
package/dist/schema/search-utils.d.ts.map +1 -0
package/dist/schema/search-utils.js +86 -0
package/dist/schema/search-utils.js.map +1 -0
package/dist/schema/seed.d.ts +53 -0
package/dist/schema/seed.d.ts.map +1 -0
package/dist/schema/seed.js +94 -0
package/dist/schema/seed.js.map +1 -0
package/dist/schema/semantic.d.ts +11 -0
package/dist/schema/semantic.d.ts.map +1 -1
package/dist/schema/semantic.js +262 -68
package/dist/schema/semantic.js.map +1 -1
package/dist/schema/sub-apis.d.ts +52 -0
package/dist/schema/sub-apis.d.ts.map +1 -0
package/dist/schema/sub-apis.js +216 -0
package/dist/schema/sub-apis.js.map +1 -0
package/dist/schema/system-entities.d.ts +42 -0
package/dist/schema/system-entities.d.ts.map +1 -0
package/dist/schema/system-entities.js +101 -0
package/dist/schema/system-entities.js.map +1 -0
package/dist/schema/types.d.ts +91 -9
package/dist/schema/types.d.ts.map +1 -1
package/dist/schema/union-fallback.d.ts +219 -0
package/dist/schema/union-fallback.d.ts.map +1 -0
package/dist/schema/union-fallback.js +331 -0
package/dist/schema/union-fallback.js.map +1 -0
package/dist/schema/value-generators/ai.d.ts +54 -0
package/dist/schema/value-generators/ai.d.ts.map +1 -0
package/dist/schema/value-generators/ai.js +136 -0
package/dist/schema/value-generators/ai.js.map +1 -0
package/dist/schema/value-generators/index.d.ts +126 -0
package/dist/schema/value-generators/index.d.ts.map +1 -0
package/dist/schema/value-generators/index.js +219 -0
package/dist/schema/value-generators/index.js.map +1 -0
package/dist/schema/value-generators/placeholder.d.ts +52 -0
package/dist/schema/value-generators/placeholder.d.ts.map +1 -0
package/dist/schema/value-generators/placeholder.js +328 -0
package/dist/schema/value-generators/placeholder.js.map +1 -0
package/dist/schema/value-generators/types.d.ts +116 -0
package/dist/schema/value-generators/types.d.ts.map +1 -0
package/dist/schema/value-generators/types.js +11 -0
package/dist/schema/value-generators/types.js.map +1 -0
package/dist/schema/verb-derivation.d.ts +167 -0
package/dist/schema/verb-derivation.d.ts.map +1 -0
package/dist/schema/verb-derivation.js +281 -0
package/dist/schema/verb-derivation.js.map +1 -0
package/dist/schema/version.d.ts +111 -0
package/dist/schema/version.d.ts.map +1 -0
package/dist/schema/version.js +190 -0
package/dist/schema/version.js.map +1 -0
package/dist/schema.d.ts +1095 -23
package/dist/schema.d.ts.map +1 -1
package/dist/schema.js +2854 -38
package/dist/schema.js.map +1 -1
package/dist/semantic-vectors.d.ts +39 -0
package/dist/semantic-vectors.d.ts.map +1 -0
package/dist/semantic-vectors.js +334 -0
package/dist/semantic-vectors.js.map +1 -0
package/dist/semantic.d.ts +29 -1
package/dist/semantic.d.ts.map +1 -1
package/dist/semantic.js +26 -16
package/dist/semantic.js.map +1 -1
package/dist/telemetry.d.ts +128 -0
package/dist/telemetry.d.ts.map +1 -0
package/dist/telemetry.js +305 -0
package/dist/telemetry.js.map +1 -0
package/dist/tests.d.ts.map +1 -1
package/dist/tests.js +30 -22
package/dist/tests.js.map +1 -1
package/dist/type-guards.d.ts +212 -0
package/dist/type-guards.d.ts.map +1 -0
package/dist/type-guards.js +318 -0
package/dist/type-guards.js.map +1 -0
package/dist/types.d.ts +33 -245
package/dist/types.d.ts.map +1 -1
package/dist/types.js +62 -72
package/dist/types.js.map +1 -1
package/dist/validation.d.ts +165 -0
package/dist/validation.d.ts.map +1 -0
package/dist/validation.js +639 -0
package/dist/validation.js.map +1 -0
package/dist/worker/db-provider.d.ts +168 -0
package/dist/worker/db-provider.d.ts.map +1 -0
package/dist/worker/db-provider.js +277 -0
package/dist/worker/db-provider.js.map +1 -0
package/dist/worker/index.d.ts +35 -0
package/dist/worker/index.d.ts.map +1 -0
package/dist/worker/index.js +37 -0
package/dist/worker/index.js.map +1 -0
package/dist/worker.d.ts +779 -0
package/dist/worker.d.ts.map +1 -0
package/dist/worker.js +2786 -0
package/dist/worker.js.map +1 -0
package/package.json +38 -8
package/src/docs-rels/migrations/0001-init.sql +125 -0

package/dist/validation.js ADDED Viewed

@@ -0,0 +1,639 @@
+/**
+ * Input Validation Module
+ *
+ * Security-focused validation for all provider inputs to prevent:
+ * - SQL injection attacks
+ * - NoSQL injection attacks
+ * - Path traversal attacks
+ * - Prototype pollution
+ * - Resource exhaustion (excessive length/depth)
+ *
+ * @packageDocumentation
+ */
+import { ValidationError } from './errors.js';
+// =============================================================================
+// Validation Constants
+// =============================================================================
+/** Maximum allowed length for type names */
+export const MAX_TYPE_LENGTH = 256;
+/** Maximum allowed length for entity IDs */
+export const MAX_ID_LENGTH = 512;
+/** Maximum allowed length for search queries */
+export const MAX_QUERY_LENGTH = 10000;
+/** Maximum allowed nesting depth for objects */
+export const MAX_OBJECT_DEPTH = 100;
+/** Maximum allowed length for relation names */
+export const MAX_RELATION_LENGTH = 256;
+/** Maximum allowed length for field names */
+export const MAX_FIELD_LENGTH = 256;
+// =============================================================================
+// Allowlist-Based Validation (Security Hardened)
+// =============================================================================
+/**
+ * Allowed characters for identifiers using allowlist approach.
+ * This is more secure than regex which can have bypass vulnerabilities.
+ */
+/** Allowed uppercase letters (A-Z) */
+const ALLOWED_UPPERCASE = new Set('ABCDEFGHIJKLMNOPQRSTUVWXYZ');
+/** Allowed lowercase letters (a-z) */
+const ALLOWED_LOWERCASE = new Set('abcdefghijklmnopqrstuvwxyz');
+/** Allowed digits (0-9) */
+const ALLOWED_DIGITS = new Set('0123456789');
+/** Allowed letters (a-z, A-Z) */
+const ALLOWED_LETTERS = new Set([...ALLOWED_UPPERCASE, ...ALLOWED_LOWERCASE]);
+/** Allowed identifier characters (letters, digits, underscore) */
+const ALLOWED_IDENTIFIER_CHARS = new Set([...ALLOWED_LETTERS, ...ALLOWED_DIGITS, '_']);
+/** Allowed ID characters (letters, digits, underscore, hyphen, dot, forward slash for path-like IDs) */
+const ALLOWED_ID_CHARS = new Set([...ALLOWED_LETTERS, ...ALLOWED_DIGITS, '_', '-', '.', '/']);
+/** Allowed action type characters (letters, digits, underscore, hyphen) */
+const ALLOWED_ACTION_CHARS = new Set([...ALLOWED_LETTERS, ...ALLOWED_DIGITS, '_', '-']);
+/**
+ * Check if a character is in the allowlist
+ * Uses code point to ensure we only accept ASCII characters
+ */
+function isAllowedChar(char, allowedSet) {
+    // Must be exactly one character
+    if (char.length !== 1)
+        return false;
+    // Must be ASCII (code point < 128)
+    const codePoint = char.charCodeAt(0);
+    if (codePoint >= 128)
+        return false;
+    // Must be in the allowed set
+    return allowedSet.has(char);
+}
+/**
+ * Check if a string contains only allowed characters
+ * This is the core allowlist validation function
+ */
+function containsOnlyAllowedChars(str, allowedSet) {
+    for (const char of str) {
+        if (!isAllowedChar(char, allowedSet)) {
+            return false;
+        }
+    }
+    return true;
+}
+/**
+ * Check if a character is a letter (ASCII only)
+ */
+function isLetter(char) {
+    return isAllowedChar(char, ALLOWED_LETTERS);
+}
+/**
+ * Validate type name format using allowlist approach
+ */
+function isValidTypeNameFormat(name) {
+    if (name.length === 0)
+        return false;
+    // First character must be a letter
+    if (!isLetter(name[0]))
+        return false;
+    // All characters must be in the allowed set
+    return containsOnlyAllowedChars(name, ALLOWED_IDENTIFIER_CHARS);
+}
+/**
+ * Validate entity ID format using allowlist approach
+ * IDs can contain letters, digits, underscores, and hyphens (for UUIDs and slugs)
+ */
+function isValidEntityIdFormat(id) {
+    if (id.length === 0)
+        return false;
+    // All characters must be in the allowed set
+    return containsOnlyAllowedChars(id, ALLOWED_ID_CHARS);
+}
+/**
+ * Validate relation name format using allowlist approach
+ */
+function isValidRelationNameFormat(name) {
+    if (name.length === 0)
+        return false;
+    // First character must be a letter
+    if (!isLetter(name[0]))
+        return false;
+    // All characters must be in the allowed set
+    return containsOnlyAllowedChars(name, ALLOWED_IDENTIFIER_CHARS);
+}
+/**
+ * Validate field name format using allowlist approach
+ * Field names can optionally start with $
+ */
+function isValidFieldNameFormat(name) {
+    if (name.length === 0)
+        return false;
+    let startIndex = 0;
+    // Handle optional $ prefix
+    if (name[0] === '$') {
+        if (name.length === 1)
+            return false;
+        startIndex = 1;
+    }
+    // Character after $ (or first char) must be a letter
+    if (!isLetter(name[startIndex]))
+        return false;
+    // All remaining characters must be in the allowed set
+    for (let i = startIndex; i < name.length; i++) {
+        if (!isAllowedChar(name[i], ALLOWED_IDENTIFIER_CHARS)) {
+            return false;
+        }
+    }
+    return true;
+}
+/**
+ * Validate action type format using allowlist approach
+ * Action types can contain letters, digits, underscores, and hyphens
+ */
+function isValidActionTypeFormat(name) {
+    if (name.length === 0)
+        return false;
+    // First character must be a letter
+    if (!isLetter(name[0]))
+        return false;
+    // All characters must be in the allowed set (including hyphens)
+    return containsOnlyAllowedChars(name, ALLOWED_ACTION_CHARS);
+}
+// =============================================================================
+// Validation Patterns (kept for event pattern validation only)
+// =============================================================================
+/**
+ * Pattern for valid event patterns: Type.action, type:action, or wildcards
+ * Supports both dot notation (Post.created) and colon notation (entity:created)
+ * This is kept as regex because it needs to validate pattern syntax,
+ * but the underlying type names are validated with allowlist
+ */
+const EVENT_PATTERN_REGEX = /^(\*|\*\.[A-Za-z_]+|[A-Za-z_]+\.\*|[A-Za-z_]+\.[A-Za-z_:]+|[A-Za-z_]+:[A-Za-z_]+)$/;
+// =============================================================================
+// SQL Injection Patterns
+// =============================================================================
+/**
+ * Common SQL injection patterns to detect
+ */
+const SQL_INJECTION_PATTERNS = [
+    /;\s*(DROP|DELETE|UPDATE|INSERT|ALTER|CREATE|TRUNCATE)/i,
+    /'\s*OR\s*'?\d*'?\s*=\s*'?\d*/i,
+    /"\s*OR\s*"?\d*"?\s*=\s*"?\d*/i,
+    /UNION\s+(ALL\s+)?SELECT/i,
+    /\/\*.*\*\//,
+    /--/,
+    /EXEC\s+/i,
+    /EXECUTE\s+/i,
+    /xp_cmdshell/i,
+    /WAITFOR\s+DELAY/i,
+    /SLEEP\s*\(/i,
+    /%27/i, // URL-encoded single quote
+    /%22/i, // URL-encoded double quote
+];
+/**
+ * Path traversal patterns to detect
+ */
+const PATH_TRAVERSAL_PATTERNS = [
+    /\.\.\//,
+    /\.\.\\/,
+    /%2e%2e%2f/i,
+    /%2e%2e\//i,
+    /\.\.%2f/i,
+    /%2e%2e%5c/i,
+];
+/**
+ * Protocol injection patterns to detect in URLs
+ */
+const PROTOCOL_INJECTION_PATTERNS = [
+    /^file:/i,
+    /^javascript:/i,
+    /^data:/i,
+    /^ftp:/i,
+    /^gopher:/i,
+    /^ldap:/i,
+];
+/**
+ * Dangerous control characters that should be rejected
+ */
+const CONTROL_CHARACTERS = /[\x00-\x08\x0B\x0C\x0E-\x1F\x7F]/;
+/**
+ * Prototype pollution property names to reject
+ */
+const DANGEROUS_PROPERTIES = new Set(['__proto__', 'constructor', 'prototype']);
+// =============================================================================
+// Re-export ValidationError from errors.ts for backwards compatibility
+// =============================================================================
+export { ValidationError };
+// =============================================================================
+// Validation Functions
+// =============================================================================
+/**
+ * Check if a string contains SQL injection patterns
+ */
+function containsSqlInjection(value) {
+    return SQL_INJECTION_PATTERNS.some((pattern) => pattern.test(value));
+}
+/**
+ * Check if a string contains path traversal patterns
+ */
+function containsPathTraversal(value) {
+    return PATH_TRAVERSAL_PATTERNS.some((pattern) => pattern.test(value));
+}
+/**
+ * Check if a string contains protocol injection patterns
+ */
+function containsProtocolInjection(value) {
+    return PROTOCOL_INJECTION_PATTERNS.some((pattern) => pattern.test(value));
+}
+/**
+ * Check if a string contains dangerous control characters
+ */
+function containsControlCharacters(value) {
+    return CONTROL_CHARACTERS.test(value);
+}
+/**
+ * Validate a type name
+ *
+ * Requirements:
+ * - Must be a string
+ * - Must not be empty
+ * - Must match alphanumeric pattern (with underscores)
+ * - Must not exceed max length
+ * - Must not contain SQL injection patterns
+ * - Must not contain control characters
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateTypeName(type) {
+    // Check string type
+    if (typeof type !== 'string') {
+        throw new ValidationError(`Invalid type: must be a string, got ${type === null ? 'null' : typeof type}`, 'Input', 'type', type);
+    }
+    // Check empty
+    if (type.length === 0) {
+        throw new ValidationError('Invalid type: must not be empty', 'Input', 'type', type);
+    }
+    // Check length
+    if (type.length > MAX_TYPE_LENGTH) {
+        throw new ValidationError(`Invalid type: exceeds maximum length of ${MAX_TYPE_LENGTH}`, 'Input', 'type', type);
+    }
+    // Check control characters
+    if (containsControlCharacters(type)) {
+        throw new ValidationError('Invalid type: contains special characters that are not allowed', 'Input', 'type', type);
+    }
+    // Check SQL injection
+    if (containsSqlInjection(type)) {
+        throw new ValidationError('Invalid type: contains injection patterns that are not allowed', 'Input', 'type', type);
+    }
+    // Check pattern (alphanumeric + underscore) using allowlist
+    if (!isValidTypeNameFormat(type)) {
+        throw new ValidationError('Invalid type: must be alphanumeric with underscores, starting with a letter', 'Input', 'type', type);
+    }
+}
+/**
+ * Validate an entity ID
+ *
+ * Requirements:
+ * - Must be a string
+ * - Must not be empty
+ * - Must match safe ID pattern
+ * - Must not exceed max length
+ * - Must not contain SQL injection patterns
+ * - Must not contain path traversal patterns
+ * - Must not contain control characters
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateEntityId(id) {
+    // Check string type
+    if (typeof id !== 'string') {
+        throw new ValidationError(`Invalid id: must be a string, got ${id === null ? 'null' : typeof id}`, 'Input', 'id', id);
+    }
+    // Check empty
+    if (id.length === 0) {
+        throw new ValidationError('Invalid id: must not be empty', 'Input', 'id', id);
+    }
+    // Check length
+    if (id.length > MAX_ID_LENGTH) {
+        throw new ValidationError(`Invalid id: exceeds maximum length of ${MAX_ID_LENGTH}`, 'Input', 'id', id);
+    }
+    // Check control characters
+    if (containsControlCharacters(id)) {
+        throw new ValidationError('Invalid id: contains special characters that are not allowed', 'Input', 'id', id);
+    }
+    // Check SQL injection
+    if (containsSqlInjection(id)) {
+        throw new ValidationError('Invalid id: contains injection patterns that are not allowed', 'Input', 'id', id);
+    }
+    // Check path traversal
+    if (containsPathTraversal(id)) {
+        throw new ValidationError('Invalid id: contains path traversal patterns that are not allowed', 'Input', 'id', id);
+    }
+    // Check pattern (alphanumeric + underscore + hyphen) using allowlist
+    if (!isValidEntityIdFormat(id)) {
+        throw new ValidationError('Invalid id: must contain only alphanumeric characters, underscores, and hyphens', 'Input', 'id', id);
+    }
+}
+/**
+ * Validate a search query
+ *
+ * Requirements:
+ * - Must be a string
+ * - Must not exceed max length
+ *
+ * Note: Search queries are more permissive since they're typically used
+ * for full-text search and the provider should handle them safely.
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateSearchQuery(query) {
+    if (typeof query !== 'string') {
+        throw new ValidationError(`Invalid query: must be a string, got ${query === null ? 'null' : typeof query}`, 'Input', 'query', query);
+    }
+    if (query.length > MAX_QUERY_LENGTH) {
+        throw new ValidationError(`Invalid query: exceeds maximum length of ${MAX_QUERY_LENGTH}`, 'Input', 'query', query);
+    }
+}
+/**
+ * Calculate the depth of a nested object
+ */
+function calculateObjectDepth(obj, currentDepth = 0) {
+    if (currentDepth > MAX_OBJECT_DEPTH) {
+        return currentDepth; // Stop early if we've exceeded max
+    }
+    if (obj === null || typeof obj !== 'object') {
+        return currentDepth;
+    }
+    if (Array.isArray(obj)) {
+        let maxDepth = currentDepth;
+        for (const item of obj) {
+            const depth = calculateObjectDepth(item, currentDepth + 1);
+            if (depth > maxDepth)
+                maxDepth = depth;
+        }
+        return maxDepth;
+    }
+    let maxDepth = currentDepth;
+    for (const value of Object.values(obj)) {
+        const depth = calculateObjectDepth(value, currentDepth + 1);
+        if (depth > maxDepth)
+            maxDepth = depth;
+    }
+    return maxDepth;
+}
+/**
+ * Check for prototype pollution in object data
+ */
+function containsPrototypePollution(obj) {
+    if (obj === null || typeof obj !== 'object') {
+        return false;
+    }
+    if (Array.isArray(obj)) {
+        return obj.some(containsPrototypePollution);
+    }
+    for (const key of Object.keys(obj)) {
+        if (DANGEROUS_PROPERTIES.has(key)) {
+            return true;
+        }
+        if (containsPrototypePollution(obj[key])) {
+            return true;
+        }
+    }
+    return false;
+}
+/**
+ * Validate entity data
+ *
+ * Requirements:
+ * - Must be an object
+ * - Must not exceed max nesting depth
+ * - Must not contain prototype pollution attempts
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateEntityData(data) {
+    if (data === null || typeof data !== 'object' || Array.isArray(data)) {
+        throw new ValidationError('Invalid data: must be an object', 'Input', 'data', data);
+    }
+    // Check depth
+    const depth = calculateObjectDepth(data);
+    if (depth > MAX_OBJECT_DEPTH) {
+        throw new ValidationError(`Invalid data: nested too deep, maximum depth is ${MAX_OBJECT_DEPTH}`, 'Input', 'data');
+    }
+    // Check for prototype pollution - but only reject 'constructor' at top level
+    // __proto__ is harmless in JSON.parse'd objects
+    const record = data;
+    if ('constructor' in record && typeof record['constructor'] === 'object') {
+        throw new ValidationError('Invalid data: constructor property not allowed', 'Input', 'data');
+    }
+}
+/**
+ * Validate a relation name
+ *
+ * Requirements:
+ * - Must be a string
+ * - Must not be empty
+ * - Must match alphanumeric pattern
+ * - Must not exceed max length
+ * - Must not contain SQL injection patterns
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateRelationName(relation) {
+    if (typeof relation !== 'string') {
+        throw new ValidationError(`Invalid relation: must be a string, got ${relation === null ? 'null' : typeof relation}`, 'Input', 'relation', relation);
+    }
+    if (relation.length === 0) {
+        throw new ValidationError('Invalid relation: must not be empty', 'Input', 'relation', relation);
+    }
+    if (relation.length > MAX_RELATION_LENGTH) {
+        throw new ValidationError(`Invalid relation: exceeds maximum length of ${MAX_RELATION_LENGTH}`, 'Input', 'relation', relation);
+    }
+    if (containsSqlInjection(relation)) {
+        throw new ValidationError('Invalid relation: contains injection patterns that are not allowed', 'Input', 'relation', relation);
+    }
+    // Check pattern using allowlist
+    if (!isValidRelationNameFormat(relation)) {
+        throw new ValidationError('Invalid relation: must be alphanumeric with underscores, starting with a letter', 'Input', 'relation', relation);
+    }
+}
+/**
+ * Validate an event pattern
+ *
+ * Requirements:
+ * - Must be a string
+ * - Must match valid event pattern format
+ * - Must not contain SQL injection patterns
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateEventPattern(pattern) {
+    if (typeof pattern !== 'string') {
+        throw new ValidationError(`Invalid pattern: must be a string, got ${pattern === null ? 'null' : typeof pattern}`, 'Input', 'pattern', pattern);
+    }
+    if (containsSqlInjection(pattern)) {
+        throw new ValidationError('Invalid pattern: contains injection patterns that are not allowed', 'Input', 'pattern', pattern);
+    }
+    if (!EVENT_PATTERN_REGEX.test(pattern)) {
+        throw new ValidationError('Invalid pattern: must be a valid event pattern (Type.action, *.action, Type.*, or *)', 'Input', 'pattern', pattern);
+    }
+}
+/**
+ * Validate an action type
+ *
+ * Requirements:
+ * - Must be a string
+ * - Must match alphanumeric pattern
+ * - Must not contain SQL injection patterns
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateActionType(actionType) {
+    if (typeof actionType !== 'string') {
+        throw new ValidationError(`Invalid type: must be a string, got ${actionType === null ? 'null' : typeof actionType}`, 'Input', 'type', actionType);
+    }
+    if (containsSqlInjection(actionType)) {
+        throw new ValidationError('Invalid type: contains injection patterns that are not allowed', 'Input', 'type', actionType);
+    }
+    // Check pattern using allowlist
+    if (!isValidActionTypeFormat(actionType)) {
+        throw new ValidationError('Invalid type: must be alphanumeric with underscores, starting with a letter', 'Input', 'type', actionType);
+    }
+}
+/**
+ * Validate an artifact URL
+ *
+ * Requirements:
+ * - Must be a string
+ * - Must not contain path traversal patterns
+ * - Must not contain protocol injection
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateArtifactUrl(url) {
+    if (typeof url !== 'string') {
+        throw new ValidationError(`Invalid url: must be a string, got ${url === null ? 'null' : typeof url}`, 'Input', 'url', url);
+    }
+    if (containsPathTraversal(url)) {
+        throw new ValidationError('Invalid url: path traversal not allowed', 'Input', 'url', url);
+    }
+    if (containsProtocolInjection(url)) {
+        throw new ValidationError('Invalid url: protocol not allowed', 'Input', 'url', url);
+    }
+}
+/**
+ * Validate a field name for search
+ *
+ * Requirements:
+ * - Must be a string
+ * - Must match valid field pattern or be $all
+ * - Must not contain SQL injection patterns
+ * - Must not be a dangerous property name
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateFieldName(field) {
+    if (typeof field !== 'string') {
+        throw new ValidationError(`Invalid field: must be a string, got ${field === null ? 'null' : typeof field}`, 'Input', 'field', field);
+    }
+    // $all is a special valid field name
+    if (field === '$all') {
+        return;
+    }
+    if (containsSqlInjection(field)) {
+        throw new ValidationError('Invalid field: contains injection patterns that are not allowed', 'Input', 'field', field);
+    }
+    if (field.length > MAX_FIELD_LENGTH) {
+        throw new ValidationError(`Invalid field: exceeds maximum length of ${MAX_FIELD_LENGTH}`, 'Input', 'field', field);
+    }
+    // Check pattern using allowlist
+    if (!isValidFieldNameFormat(field)) {
+        throw new ValidationError('Invalid field: must be alphanumeric with underscores', 'Input', 'field', field);
+    }
+}
+/**
+ * Check if a field name is a dangerous property
+ */
+export function isDangerousField(field) {
+    return DANGEROUS_PROPERTIES.has(field);
+}
+/**
+ * Validate list options
+ *
+ * Requirements:
+ * - limit must be a non-negative number if provided
+ * - offset must be a non-negative number if provided
+ * - orderBy must be a valid field name if provided
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateListOptions(options) {
+    if (options === null || options === undefined) {
+        return;
+    }
+    if (typeof options !== 'object') {
+        throw new ValidationError('Invalid options: must be an object', 'Input', 'options', options);
+    }
+    const opts = options;
+    // Validate limit
+    if (opts['limit'] !== undefined) {
+        if (typeof opts['limit'] !== 'number') {
+            throw new ValidationError(`Invalid limit: must be a number, got ${typeof opts['limit']}`, 'Input', 'limit', opts['limit']);
+        }
+        if (opts['limit'] < 0) {
+            throw new ValidationError('Invalid limit: must be positive or zero', 'Input', 'limit', opts['limit']);
+        }
+    }
+    // Validate offset
+    if (opts['offset'] !== undefined) {
+        if (typeof opts['offset'] !== 'number') {
+            throw new ValidationError(`Invalid offset: must be a number, got ${typeof opts['offset']}`, 'Input', 'offset', opts['offset']);
+        }
+        if (opts['offset'] < 0) {
+            throw new ValidationError('Invalid offset: must be positive or zero', 'Input', 'offset', opts['offset']);
+        }
+    }
+    // Validate orderBy
+    if (opts['orderBy'] !== undefined) {
+        if (typeof opts['orderBy'] !== 'string') {
+            throw new ValidationError(`Invalid orderBy: must be a string, got ${typeof opts['orderBy']}`, 'Input', 'orderBy', opts['orderBy']);
+        }
+        if (containsSqlInjection(opts['orderBy'])) {
+            throw new ValidationError('Invalid orderBy: contains injection patterns that are not allowed', 'Input', 'orderBy', opts['orderBy']);
+        }
+        // Check pattern using allowlist
+        if (!isValidFieldNameFormat(opts['orderBy'])) {
+            throw new ValidationError('Invalid orderBy field: must be alphanumeric with underscores', 'Input', 'orderBy', opts['orderBy']);
+        }
+    }
+}
+/**
+ * Validate search options including fields array
+ *
+ * @throws ValidationError if validation fails
+ */
+export function validateSearchOptions(options) {
+    if (options === null || options === undefined) {
+        return;
+    }
+    // First validate the base list options
+    validateListOptions(options);
+    const opts = options;
+    // Validate fields array
+    if (opts['fields'] !== undefined) {
+        if (!Array.isArray(opts['fields'])) {
+            throw new ValidationError('Invalid fields: must be an array', 'Input', 'fields', opts['fields']);
+        }
+        for (const field of opts['fields']) {
+            // Skip dangerous field names silently - they will be filtered out by the search method
+            // This allows the search to return empty results rather than throwing
+            if (typeof field === 'string' && DANGEROUS_PROPERTIES.has(field)) {
+                continue;
+            }
+            validateFieldName(field);
+        }
+    }
+}
+/**
+ * Sanitize a search query by escaping special regex characters
+ *
+ * This prevents regex injection in search operations.
+ */
+export function sanitizeSearchQuery(query) {
+    // Escape regex special characters for safe string matching
+    return query.replace(/[.*+?^${}()|[\]\\]/g, '\\$&');
+}
+//# sourceMappingURL=validation.js.map

package/dist/validation.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"validation.js","sourceRoot":"","sources":["../src/validation.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;GAWG;AAEH,OAAO,EAAE,eAAe,EAAE,MAAM,aAAa,CAAA;AAE7C,gFAAgF;AAChF,uBAAuB;AACvB,gFAAgF;AAEhF,4CAA4C;AAC5C,MAAM,CAAC,MAAM,eAAe,GAAG,GAAG,CAAA;AAElC,4CAA4C;AAC5C,MAAM,CAAC,MAAM,aAAa,GAAG,GAAG,CAAA;AAEhC,gDAAgD;AAChD,MAAM,CAAC,MAAM,gBAAgB,GAAG,KAAK,CAAA;AAErC,gDAAgD;AAChD,MAAM,CAAC,MAAM,gBAAgB,GAAG,GAAG,CAAA;AAEnC,gDAAgD;AAChD,MAAM,CAAC,MAAM,mBAAmB,GAAG,GAAG,CAAA;AAEtC,6CAA6C;AAC7C,MAAM,CAAC,MAAM,gBAAgB,GAAG,GAAG,CAAA;AAEnC,gFAAgF;AAChF,iDAAiD;AACjD,gFAAgF;AAEhF;;;GAGG;AAEH,sCAAsC;AACtC,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC,4BAA4B,CAAC,CAAA;AAE/D,sCAAsC;AACtC,MAAM,iBAAiB,GAAG,IAAI,GAAG,CAAC,4BAA4B,CAAC,CAAA;AAE/D,2BAA2B;AAC3B,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC,YAAY,CAAC,CAAA;AAE5C,iCAAiC;AACjC,MAAM,eAAe,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,iBAAiB,EAAE,GAAG,iBAAiB,CAAC,CAAC,CAAA;AAE7E,kEAAkE;AAClE,MAAM,wBAAwB,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,eAAe,EAAE,GAAG,cAAc,EAAE,GAAG,CAAC,CAAC,CAAA;AAEtF,wGAAwG;AACxG,MAAM,gBAAgB,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,eAAe,EAAE,GAAG,cAAc,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAA;AAE7F,2EAA2E;AAC3E,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC,CAAC,GAAG,eAAe,EAAE,GAAG,cAAc,EAAE,GAAG,EAAE,GAAG,CAAC,CAAC,CAAA;AAEvF;;;GAGG;AACH,SAAS,aAAa,CAAC,IAAY,EAAE,UAAuB;IAC1D,gCAAgC;IAChC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IACnC,mCAAmC;IACnC,MAAM,SAAS,GAAG,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC,CAAA;IACpC,IAAI,SAAS,IAAI,GAAG;QAAE,OAAO,KAAK,CAAA;IAClC,6BAA6B;IAC7B,OAAO,UAAU,CAAC,GAAG,CAAC,IAAI,CAAC,CAAA;AAC7B,CAAC;AAED;;;GAGG;AACH,SAAS,wBAAwB,CAAC,GAAW,EAAE,UAAuB;IACpE,KAAK,MAAM,IAAI,IAAI,GAAG,EAAE,CAAC;QACvB,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,UAAU,CAAC,EAAE,CAAC;YACrC,OAAO,KAAK,CAAA;QACd,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAA;AACb,CAAC;AAED;;GAEG;AACH,SAAS,QAAQ,CAAC,IAAY;IAC5B,OAAO,aAAa,CAAC,IAAI,EAAE,eAAe,CAAC,CAAA;AAC7C,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB,CAAC,IAAY;IACzC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IACnC,mCAAmC;IACnC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAE,CAAC;QAAE,OAAO,KAAK,CAAA;IACrC,4CAA4C;IAC5C,OAAO,wBAAwB,CAAC,IAAI,EAAE,wBAAwB,CAAC,CAAA;AACjE,CAAC;AAED;;;GAGG;AACH,SAAS,qBAAqB,CAAC,EAAU;IACvC,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IACjC,4CAA4C;IAC5C,OAAO,wBAAwB,CAAC,EAAE,EAAE,gBAAgB,CAAC,CAAA;AACvD,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAAC,IAAY;IAC7C,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IACnC,mCAAmC;IACnC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAE,CAAC;QAAE,OAAO,KAAK,CAAA;IACrC,4CAA4C;IAC5C,OAAO,wBAAwB,CAAC,IAAI,EAAE,wBAAwB,CAAC,CAAA;AACjE,CAAC;AAED;;;GAGG;AACH,SAAS,sBAAsB,CAAC,IAAY;IAC1C,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IACnC,IAAI,UAAU,GAAG,CAAC,CAAA;IAClB,2BAA2B;IAC3B,IAAI,IAAI,CAAC,CAAC,CAAC,KAAK,GAAG,EAAE,CAAC;QACpB,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,KAAK,CAAA;QACnC,UAAU,GAAG,CAAC,CAAA;IAChB,CAAC;IACD,qDAAqD;IACrD,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,UAAU,CAAE,CAAC;QAAE,OAAO,KAAK,CAAA;IAC9C,sDAAsD;IACtD,KAAK,IAAI,CAAC,GAAG,UAAU,EAAE,CAAC,GAAG,IAAI,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QAC9C,IAAI,CAAC,aAAa,CAAC,IAAI,CAAC,CAAC,CAAE,EAAE,wBAAwB,CAAC,EAAE,CAAC;YACvD,OAAO,KAAK,CAAA;QACd,CAAC;IACH,CAAC;IACD,OAAO,IAAI,CAAA;AACb,CAAC;AAED;;;GAGG;AACH,SAAS,uBAAuB,CAAC,IAAY;IAC3C,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,KAAK,CAAA;IACnC,mCAAmC;IACnC,IAAI,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAE,CAAC;QAAE,OAAO,KAAK,CAAA;IACrC,gEAAgE;IAChE,OAAO,wBAAwB,CAAC,IAAI,EAAE,oBAAoB,CAAC,CAAA;AAC7D,CAAC;AAED,gFAAgF;AAChF,+DAA+D;AAC/D,gFAAgF;AAEhF;;;;;GAKG;AACH,MAAM,mBAAmB,GACvB,oFAAoF,CAAA;AAEtF,gFAAgF;AAChF,yBAAyB;AACzB,gFAAgF;AAEhF;;GAEG;AACH,MAAM,sBAAsB,GAAG;IAC7B,wDAAwD;IACxD,+BAA+B;IAC/B,+BAA+B;IAC/B,0BAA0B;IAC1B,YAAY;IACZ,IAAI;IACJ,UAAU;IACV,aAAa;IACb,cAAc;IACd,kBAAkB;IAClB,aAAa;IACb,MAAM,EAAE,2BAA2B;IACnC,MAAM,EAAE,2BAA2B;CACpC,CAAA;AAED;;GAEG;AACH,MAAM,uBAAuB,GAAG;IAC9B,QAAQ;IACR,QAAQ;IACR,YAAY;IACZ,WAAW;IACX,UAAU;IACV,YAAY;CACb,CAAA;AAED;;GAEG;AACH,MAAM,2BAA2B,GAAG;IAClC,SAAS;IACT,eAAe;IACf,SAAS;IACT,QAAQ;IACR,WAAW;IACX,SAAS;CACV,CAAA;AAED;;GAEG;AACH,MAAM,kBAAkB,GAAG,kCAAkC,CAAA;AAE7D;;GAEG;AACH,MAAM,oBAAoB,GAAG,IAAI,GAAG,CAAC,CAAC,WAAW,EAAE,aAAa,EAAE,WAAW,CAAC,CAAC,CAAA;AAE/E,gFAAgF;AAChF,uEAAuE;AACvE,gFAAgF;AAEhF,OAAO,EAAE,eAAe,EAAE,CAAA;AAE1B,gFAAgF;AAChF,uBAAuB;AACvB,gFAAgF;AAEhF;;GAEG;AACH,SAAS,oBAAoB,CAAC,KAAa;IACzC,OAAO,sBAAsB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAA;AACtE,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB,CAAC,KAAa;IAC1C,OAAO,uBAAuB,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAA;AACvE,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAAC,KAAa;IAC9C,OAAO,2BAA2B,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAA;AAC3E,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAAC,KAAa;IAC9C,OAAO,kBAAkB,CAAC,IAAI,CAAC,KAAK,CAAC,CAAA;AACvC,CAAC;AAED;;;;;;;;;;;;GAYG;AACH,MAAM,UAAU,gBAAgB,CAAC,IAAa;IAC5C,oBAAoB;IACpB,IAAI,OAAO,IAAI,KAAK,QAAQ,EAAE,CAAC;QAC7B,MAAM,IAAI,eAAe,CACvB,uCAAuC,IAAI,KAAK,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,IAAI,EAAE,EAC7E,OAAO,EACP,MAAM,EACN,IAAI,CACL,CAAA;IACH,CAAC;IAED,cAAc;IACd,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACtB,MAAM,IAAI,eAAe,CAAC,iCAAiC,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,CAAA;IACrF,CAAC;IAED,eAAe;IACf,IAAI,IAAI,CAAC,MAAM,GAAG,eAAe,EAAE,CAAC;QAClC,MAAM,IAAI,eAAe,CACvB,2CAA2C,eAAe,EAAE,EAC5D,OAAO,EACP,MAAM,EACN,IAAI,CACL,CAAA;IACH,CAAC;IAED,2BAA2B;IAC3B,IAAI,yBAAyB,CAAC,IAAI,CAAC,EAAE,CAAC;QACpC,MAAM,IAAI,eAAe,CACvB,gEAAgE,EAChE,OAAO,EACP,MAAM,EACN,IAAI,CACL,CAAA;IACH,CAAC;IAED,sBAAsB;IACtB,IAAI,oBAAoB,CAAC,IAAI,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,eAAe,CACvB,gEAAgE,EAChE,OAAO,EACP,MAAM,EACN,IAAI,CACL,CAAA;IACH,CAAC;IAED,4DAA4D;IAC5D,IAAI,CAAC,qBAAqB,CAAC,IAAI,CAAC,EAAE,CAAC;QACjC,MAAM,IAAI,eAAe,CACvB,6EAA6E,EAC7E,OAAO,EACP,MAAM,EACN,IAAI,CACL,CAAA;IACH,CAAC;AACH,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,gBAAgB,CAAC,EAAW;IAC1C,oBAAoB;IACpB,IAAI,OAAO,EAAE,KAAK,QAAQ,EAAE,CAAC;QAC3B,MAAM,IAAI,eAAe,CACvB,qCAAqC,EAAE,KAAK,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,EAAE,EAAE,EACvE,OAAO,EACP,IAAI,EACJ,EAAE,CACH,CAAA;IACH,CAAC;IAED,cAAc;IACd,IAAI,EAAE,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpB,MAAM,IAAI,eAAe,CAAC,+BAA+B,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE,CAAC,CAAA;IAC/E,CAAC;IAED,eAAe;IACf,IAAI,EAAE,CAAC,MAAM,GAAG,aAAa,EAAE,CAAC;QAC9B,MAAM,IAAI,eAAe,CACvB,yCAAyC,aAAa,EAAE,EACxD,OAAO,EACP,IAAI,EACJ,EAAE,CACH,CAAA;IACH,CAAC;IAED,2BAA2B;IAC3B,IAAI,yBAAyB,CAAC,EAAE,CAAC,EAAE,CAAC;QAClC,MAAM,IAAI,eAAe,CACvB,8DAA8D,EAC9D,OAAO,EACP,IAAI,EACJ,EAAE,CACH,CAAA;IACH,CAAC;IAED,sBAAsB;IACtB,IAAI,oBAAoB,CAAC,EAAE,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,eAAe,CACvB,8DAA8D,EAC9D,OAAO,EACP,IAAI,EACJ,EAAE,CACH,CAAA;IACH,CAAC;IAED,uBAAuB;IACvB,IAAI,qBAAqB,CAAC,EAAE,CAAC,EAAE,CAAC;QAC9B,MAAM,IAAI,eAAe,CACvB,mEAAmE,EACnE,OAAO,EACP,IAAI,EACJ,EAAE,CACH,CAAA;IACH,CAAC;IAED,qEAAqE;IACrE,IAAI,CAAC,qBAAqB,CAAC,EAAE,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,eAAe,CACvB,iFAAiF,EACjF,OAAO,EACP,IAAI,EACJ,EAAE,CACH,CAAA;IACH,CAAC;AACH,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,mBAAmB,CAAC,KAAc;IAChD,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,MAAM,IAAI,eAAe,CACvB,wCAAwC,KAAK,KAAK,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,KAAK,EAAE,EAChF,OAAO,EACP,OAAO,EACP,KAAK,CACN,CAAA;IACH,CAAC;IAED,IAAI,KAAK,CAAC,MAAM,GAAG,gBAAgB,EAAE,CAAC;QACpC,MAAM,IAAI,eAAe,CACvB,4CAA4C,gBAAgB,EAAE,EAC9D,OAAO,EACP,OAAO,EACP,KAAK,CACN,CAAA;IACH,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,oBAAoB,CAAC,GAAY,EAAE,eAAuB,CAAC;IAClE,IAAI,YAAY,GAAG,gBAAgB,EAAE,CAAC;QACpC,OAAO,YAAY,CAAA,CAAC,mCAAmC;IACzD,CAAC;IAED,IAAI,GAAG,KAAK,IAAI,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QAC5C,OAAO,YAAY,CAAA;IACrB,CAAC;IAED,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QACvB,IAAI,QAAQ,GAAG,YAAY,CAAA;QAC3B,KAAK,MAAM,IAAI,IAAI,GAAG,EAAE,CAAC;YACvB,MAAM,KAAK,GAAG,oBAAoB,CAAC,IAAI,EAAE,YAAY,GAAG,CAAC,CAAC,CAAA;YAC1D,IAAI,KAAK,GAAG,QAAQ;gBAAE,QAAQ,GAAG,KAAK,CAAA;QACxC,CAAC;QACD,OAAO,QAAQ,CAAA;IACjB,CAAC;IAED,IAAI,QAAQ,GAAG,YAAY,CAAA;IAC3B,KAAK,MAAM,KAAK,IAAI,MAAM,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAAC;QACvC,MAAM,KAAK,GAAG,oBAAoB,CAAC,KAAK,EAAE,YAAY,GAAG,CAAC,CAAC,CAAA;QAC3D,IAAI,KAAK,GAAG,QAAQ;YAAE,QAAQ,GAAG,KAAK,CAAA;IACxC,CAAC;IACD,OAAO,QAAQ,CAAA;AACjB,CAAC;AAED;;GAEG;AACH,SAAS,0BAA0B,CAAC,GAAY;IAC9C,IAAI,GAAG,KAAK,IAAI,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QAC5C,OAAO,KAAK,CAAA;IACd,CAAC;IAED,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QACvB,OAAO,GAAG,CAAC,IAAI,CAAC,0BAA0B,CAAC,CAAA;IAC7C,CAAC;IAED,KAAK,MAAM,GAAG,IAAI,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;QACnC,IAAI,oBAAoB,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;YAClC,OAAO,IAAI,CAAA;QACb,CAAC;QACD,IAAI,0BAA0B,CAAE,GAA+B,CAAC,GAAG,CAAC,CAAC,EAAE,CAAC;YACtE,OAAO,IAAI,CAAA;QACb,CAAC;IACH,CAAC;IAED,OAAO,KAAK,CAAA;AACd,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,kBAAkB,CAAC,IAAa;IAC9C,IAAI,IAAI,KAAK,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QACrE,MAAM,IAAI,eAAe,CAAC,iCAAiC,EAAE,OAAO,EAAE,MAAM,EAAE,IAAI,CAAC,CAAA;IACrF,CAAC;IAED,cAAc;IACd,MAAM,KAAK,GAAG,oBAAoB,CAAC,IAAI,CAAC,CAAA;IACxC,IAAI,KAAK,GAAG,gBAAgB,EAAE,CAAC;QAC7B,MAAM,IAAI,eAAe,CACvB,mDAAmD,gBAAgB,EAAE,EACrE,OAAO,EACP,MAAM,CACP,CAAA;IACH,CAAC;IAED,6EAA6E;IAC7E,gDAAgD;IAChD,MAAM,MAAM,GAAG,IAA+B,CAAA;IAC9C,IAAI,aAAa,IAAI,MAAM,IAAI,OAAO,MAAM,CAAC,aAAa,CAAC,KAAK,QAAQ,EAAE,CAAC;QACzE,MAAM,IAAI,eAAe,CAAC,gDAAgD,EAAE,OAAO,EAAE,MAAM,CAAC,CAAA;IAC9F,CAAC;AACH,CAAC;AAED;;;;;;;;;;;GAWG;AACH,MAAM,UAAU,oBAAoB,CAAC,QAAiB;IACpD,IAAI,OAAO,QAAQ,KAAK,QAAQ,EAAE,CAAC;QACjC,MAAM,IAAI,eAAe,CACvB,2CAA2C,QAAQ,KAAK,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,QAAQ,EAAE,EACzF,OAAO,EACP,UAAU,EACV,QAAQ,CACT,CAAA;IACH,CAAC;IAED,IAAI,QAAQ,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1B,MAAM,IAAI,eAAe,CAAC,qCAAqC,EAAE,OAAO,EAAE,UAAU,EAAE,QAAQ,CAAC,CAAA;IACjG,CAAC;IAED,IAAI,QAAQ,CAAC,MAAM,GAAG,mBAAmB,EAAE,CAAC;QAC1C,MAAM,IAAI,eAAe,CACvB,+CAA+C,mBAAmB,EAAE,EACpE,OAAO,EACP,UAAU,EACV,QAAQ,CACT,CAAA;IACH,CAAC;IAED,IAAI,oBAAoB,CAAC,QAAQ,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,eAAe,CACvB,oEAAoE,EACpE,OAAO,EACP,UAAU,EACV,QAAQ,CACT,CAAA;IACH,CAAC;IAED,gCAAgC;IAChC,IAAI,CAAC,yBAAyB,CAAC,QAAQ,CAAC,EAAE,CAAC;QACzC,MAAM,IAAI,eAAe,CACvB,iFAAiF,EACjF,OAAO,EACP,UAAU,EACV,QAAQ,CACT,CAAA;IACH,CAAC;AACH,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,oBAAoB,CAAC,OAAgB;IACnD,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;QAChC,MAAM,IAAI,eAAe,CACvB,0CAA0C,OAAO,KAAK,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,OAAO,EAAE,EACtF,OAAO,EACP,SAAS,EACT,OAAO,CACR,CAAA;IACH,CAAC;IAED,IAAI,oBAAoB,CAAC,OAAO,CAAC,EAAE,CAAC;QAClC,MAAM,IAAI,eAAe,CACvB,mEAAmE,EACnE,OAAO,EACP,SAAS,EACT,OAAO,CACR,CAAA;IACH,CAAC;IAED,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;QACvC,MAAM,IAAI,eAAe,CACvB,sFAAsF,EACtF,OAAO,EACP,SAAS,EACT,OAAO,CACR,CAAA;IACH,CAAC;AACH,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,kBAAkB,CAAC,UAAmB;IACpD,IAAI,OAAO,UAAU,KAAK,QAAQ,EAAE,CAAC;QACnC,MAAM,IAAI,eAAe,CACvB,uCAAuC,UAAU,KAAK,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,UAAU,EAAE,EACzF,OAAO,EACP,MAAM,EACN,UAAU,CACX,CAAA;IACH,CAAC;IAED,IAAI,oBAAoB,CAAC,UAAU,CAAC,EAAE,CAAC;QACrC,MAAM,IAAI,eAAe,CACvB,gEAAgE,EAChE,OAAO,EACP,MAAM,EACN,UAAU,CACX,CAAA;IACH,CAAC;IAED,gCAAgC;IAChC,IAAI,CAAC,uBAAuB,CAAC,UAAU,CAAC,EAAE,CAAC;QACzC,MAAM,IAAI,eAAe,CACvB,6EAA6E,EAC7E,OAAO,EACP,MAAM,EACN,UAAU,CACX,CAAA;IACH,CAAC;AACH,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,mBAAmB,CAAC,GAAY;IAC9C,IAAI,OAAO,GAAG,KAAK,QAAQ,EAAE,CAAC;QAC5B,MAAM,IAAI,eAAe,CACvB,sCAAsC,GAAG,KAAK,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,GAAG,EAAE,EAC1E,OAAO,EACP,KAAK,EACL,GAAG,CACJ,CAAA;IACH,CAAC;IAED,IAAI,qBAAqB,CAAC,GAAG,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,eAAe,CAAC,yCAAyC,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,CAAC,CAAA;IAC3F,CAAC;IAED,IAAI,yBAAyB,CAAC,GAAG,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,eAAe,CAAC,mCAAmC,EAAE,OAAO,EAAE,KAAK,EAAE,GAAG,CAAC,CAAA;IACrF,CAAC;AACH,CAAC;AAED;;;;;;;;;;GAUG;AACH,MAAM,UAAU,iBAAiB,CAAC,KAAc;IAC9C,IAAI,OAAO,KAAK,KAAK,QAAQ,EAAE,CAAC;QAC9B,MAAM,IAAI,eAAe,CACvB,wCAAwC,KAAK,KAAK,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,KAAK,EAAE,EAChF,OAAO,EACP,OAAO,EACP,KAAK,CACN,CAAA;IACH,CAAC;IAED,qCAAqC;IACrC,IAAI,KAAK,KAAK,MAAM,EAAE,CAAC;QACrB,OAAM;IACR,CAAC;IAED,IAAI,oBAAoB,CAAC,KAAK,CAAC,EAAE,CAAC;QAChC,MAAM,IAAI,eAAe,CACvB,iEAAiE,EACjE,OAAO,EACP,OAAO,EACP,KAAK,CACN,CAAA;IACH,CAAC;IAED,IAAI,KAAK,CAAC,MAAM,GAAG,gBAAgB,EAAE,CAAC;QACpC,MAAM,IAAI,eAAe,CACvB,4CAA4C,gBAAgB,EAAE,EAC9D,OAAO,EACP,OAAO,EACP,KAAK,CACN,CAAA;IACH,CAAC;IAED,gCAAgC;IAChC,IAAI,CAAC,sBAAsB,CAAC,KAAK,CAAC,EAAE,CAAC;QACnC,MAAM,IAAI,eAAe,CACvB,sDAAsD,EACtD,OAAO,EACP,OAAO,EACP,KAAK,CACN,CAAA;IACH,CAAC;AACH,CAAC;AAED;;GAEG;AACH,MAAM,UAAU,gBAAgB,CAAC,KAAa;IAC5C,OAAO,oBAAoB,CAAC,GAAG,CAAC,KAAK,CAAC,CAAA;AACxC,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,mBAAmB,CAAC,OAAgB;IAClD,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC9C,OAAM;IACR,CAAC;IAED,IAAI,OAAO,OAAO,KAAK,QAAQ,EAAE,CAAC;QAChC,MAAM,IAAI,eAAe,CAAC,oCAAoC,EAAE,OAAO,EAAE,SAAS,EAAE,OAAO,CAAC,CAAA;IAC9F,CAAC;IAED,MAAM,IAAI,GAAG,OAAkC,CAAA;IAE/C,iBAAiB;IACjB,IAAI,IAAI,CAAC,OAAO,CAAC,KAAK,SAAS,EAAE,CAAC;QAChC,IAAI,OAAO,IAAI,CAAC,OAAO,CAAC,KAAK,QAAQ,EAAE,CAAC;YACtC,MAAM,IAAI,eAAe,CACvB,wCAAwC,OAAO,IAAI,CAAC,OAAO,CAAC,EAAE,EAC9D,OAAO,EACP,OAAO,EACP,IAAI,CAAC,OAAO,CAAC,CACd,CAAA;QACH,CAAC;QACD,IAAI,IAAI,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;YACtB,MAAM,IAAI,eAAe,CACvB,yCAAyC,EACzC,OAAO,EACP,OAAO,EACP,IAAI,CAAC,OAAO,CAAC,CACd,CAAA;QACH,CAAC;IACH,CAAC;IAED,kBAAkB;IAClB,IAAI,IAAI,CAAC,QAAQ,CAAC,KAAK,SAAS,EAAE,CAAC;QACjC,IAAI,OAAO,IAAI,CAAC,QAAQ,CAAC,KAAK,QAAQ,EAAE,CAAC;YACvC,MAAM,IAAI,eAAe,CACvB,yCAAyC,OAAO,IAAI,CAAC,QAAQ,CAAC,EAAE,EAChE,OAAO,EACP,QAAQ,EACR,IAAI,CAAC,QAAQ,CAAC,CACf,CAAA;QACH,CAAC;QACD,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE,CAAC;YACvB,MAAM,IAAI,eAAe,CACvB,0CAA0C,EAC1C,OAAO,EACP,QAAQ,EACR,IAAI,CAAC,QAAQ,CAAC,CACf,CAAA;QACH,CAAC;IACH,CAAC;IAED,mBAAmB;IACnB,IAAI,IAAI,CAAC,SAAS,CAAC,KAAK,SAAS,EAAE,CAAC;QAClC,IAAI,OAAO,IAAI,CAAC,SAAS,CAAC,KAAK,QAAQ,EAAE,CAAC;YACxC,MAAM,IAAI,eAAe,CACvB,0CAA0C,OAAO,IAAI,CAAC,SAAS,CAAC,EAAE,EAClE,OAAO,EACP,SAAS,EACT,IAAI,CAAC,SAAS,CAAC,CAChB,CAAA;QACH,CAAC;QAED,IAAI,oBAAoB,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;YAC1C,MAAM,IAAI,eAAe,CACvB,mEAAmE,EACnE,OAAO,EACP,SAAS,EACT,IAAI,CAAC,SAAS,CAAC,CAChB,CAAA;QACH,CAAC;QAED,gCAAgC;QAChC,IAAI,CAAC,sBAAsB,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC,EAAE,CAAC;YAC7C,MAAM,IAAI,eAAe,CACvB,8DAA8D,EAC9D,OAAO,EACP,SAAS,EACT,IAAI,CAAC,SAAS,CAAC,CAChB,CAAA;QACH,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,qBAAqB,CAAC,OAAgB;IACpD,IAAI,OAAO,KAAK,IAAI,IAAI,OAAO,KAAK,SAAS,EAAE,CAAC;QAC9C,OAAM;IACR,CAAC;IAED,uCAAuC;IACvC,mBAAmB,CAAC,OAAO,CAAC,CAAA;IAE5B,MAAM,IAAI,GAAG,OAAkC,CAAA;IAE/C,wBAAwB;IACxB,IAAI,IAAI,CAAC,QAAQ,CAAC,KAAK,SAAS,EAAE,CAAC;QACjC,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;YACnC,MAAM,IAAI,eAAe,CACvB,kCAAkC,EAClC,OAAO,EACP,QAAQ,EACR,IAAI,CAAC,QAAQ,CAAC,CACf,CAAA;QACH,CAAC;QAED,KAAK,MAAM,KAAK,IAAI,IAAI,CAAC,QAAQ,CAAC,EAAE,CAAC;YACnC,uFAAuF;YACvF,sEAAsE;YACtE,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,oBAAoB,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;gBACjE,SAAQ;YACV,CAAC;YACD,iBAAiB,CAAC,KAAK,CAAC,CAAA;QAC1B,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,mBAAmB,CAAC,KAAa;IAC/C,2DAA2D;IAC3D,OAAO,KAAK,CAAC,OAAO,CAAC,qBAAqB,EAAE,MAAM,CAAC,CAAA;AACrD,CAAC"}