appsec-agent 2.8.0 → 3.1.0

package/README.md

@@ -9,7 +9,7 @@ A TypeScript package that provides AI-powered agents for Application Security (A
 ## 🚀 Features
 
 - **AI-Powered AppSec Automation**: Leverage Claude's capabilities for application security
-- **Multiple Agent Types**: Simple query agent, code review agent, and threat modeler for different use cases
+- **Multiple Agent Types**: Simple query, code review, PR review, threat modeling (with adversarial second pass), code fixing, QA verification, and more
 - **Tool Permission Management**: Advanced tool permission callbacks with bypass mode for trusted operations
 - **Code Review Capabilities**: Automated security and privacy issue detection in code
 - **Modular Agent Architecture**: Easy to extend and customize agents for specific use cases
@@ -92,29 +92,26 @@ $ npx agent-run -r simple_query_agent
 
 The agents can be configured through environment variables and configuration files. Key configuration options include:
 
-- `ANTHROPIC_API_KEY`: Your Anthropic API key (required)
+- `ANTHROPIC_API_KEY`: Your Anthropic API key (required for the Claude provider)
 - `ANTHROPIC_BASE_URL`: API endpoint URL (default: https://api.anthropic.com)
-- `MAX_TURNS`: Maximum conversation turns (default: 1)
+- `AGENT_PROVIDER`: Model provider — `claude` (default) or `codex` (opt-in). Override with `--provider`.
+- Per-role `max_turns` in `conf/appsec_agent.yaml` (e.g. **100** for `threat_modeler`). Override any role with `--max-turns <n>`.
 
 Configuration file: `conf/appsec_agent.yaml`
 
-### Optional: LLM failover (Anthropic → OpenAI)
+### Model providers (v3.0.0+)
 
-**Failover is off by default.** The agent uses Anthropic only unless you enable failover. When enabled, if the Anthropic call fails (e.g. API outage or rate limit), the agent will retry using the OpenAI API so the parent app gets a single response path.
+All roles run through a provider-neutral `RoleSpec`. Choose the backend at runtime:
 
-To enable failover, set:
-
-- `FAILOVER_ENABLED`: set to `true` to enable (default is disabled).
-- `OPENAI_API_KEY`: your OpenAI API key (required when failover is enabled).
-- `OPENAI_BASE_URL`: (optional) custom OpenAI endpoint.
-- `OPENAI_FALLBACK_MODEL`: (optional) model to use for fallback (e.g. `gpt-4o`); default is `gpt-4o`.
-
-**CLI overrides env overrides config.** You can use:
+```bash
+# Claude (default) — uses Anthropic API / Claude Agent SDK
+$ npx agent-run -r code_reviewer -s ./src -m sonnet
 
-- `--failover`: enable failover for this run.
-- `--openai-api-key <key>`: OpenAI API key for this run (overrides `OPENAI_API_KEY`).
+# Codex (opt-in) — uses @openai/codex-sdk; accepts gpt-* / o* model ids
+$ npx agent-run -r threat_modeler -s ./src -f json --provider codex -m gpt-4.1
+```
 
-When failover runs, all agents (simple query, code reviewer, threat modeler, diff reviewer) use the same prompt and system message; tooled agents do not run tools on the fallback path. The response shape is unchanged so the parent app is unaffected.
+Set `AGENT_PROVIDER=codex` or pass `--provider codex`. MCP server wiring (`--mcp-server-url`) works on both providers for supported roles.
 
 ## 🤖 Available Agents
 
@@ -155,13 +152,28 @@ A specialized agent for verifying security fixes that can:
 - Support custom test commands, setup commands, and environment variables
 - Accept deployment context for environment-aware verification
 
+### PR Reviewer (`pr_reviewer`)
+A PR-focused variant of the code reviewer optimized for diff context:
+- Same security analysis capabilities as `code_reviewer`, tuned for Pull Request diffs
+- **PR diff chunking enabled by default** when using `-d/--diff-context` (see [PR chunking](#pr-chunking-large-prs))
+- MCP-aware when `--mcp-server-url` is provided (`queryFindingsHistory`, `queryImportGraph`, `queryCodebaseGraph`, `queryRuntimeEnrichment`)
+
 ### Threat Modeler (`threat_modeler`)
 A specialized agent for comprehensive threat modeling that can:
-- Generate ASCII text-based Data Flow Diagrams (DFD)
+- Produce a structured **`threat_model_report` JSON** (DFD + STRIDE threats + risk registry) or legacy multi-file ASCII deliverables
 - Perform STRIDE methodology threat modeling on DFDs
 - Create detailed risk registry reports with remediation plans
+- Anchor DFD nodes, threats, and risks to source code via optional **`source_locations`** (`file`, `line_numbers`, `symbol`, `snippet`) when evidence is confirmed (v3.1.0)
 - Analyze codebases for security threats and vulnerabilities
-- Generate multiple deliverable reports
+- Run up to **100 tool-use turns by default** (configurable in yaml or via `--max-turns`)
+
+### Threat Adversary (`threat_adversary`, v3.1.0)
+Adversarial second pass for threat modeling — filters ungrounded threats from a first-pass report:
+- Input: first-pass `threat_model_report` JSON via `--adversarial-context`
+- Output: filtered `threat_model_report` JSON (same schema) to an explicit `-o` path
+- Keeps only threats with a concrete attack path and confirmed `source_locations`; drops generic, mitigated, or ungrounded items
+- Reconciles the risk registry and `metadata` counts after filtering
+- Uses the same model provider and `max_turns` defaults as `threat_modeler`
 
 ## 📖 Usage Examples
 
@@ -469,13 +481,74 @@ The agent returns a structured `QaVerdict`:
 
 ### Threat Modeler Example
 ```bash
-# Run threat modeler on current directory
-$ npx agent-run -r threat_modeler
+# Structured JSON report (recommended for integrations)
+$ npx agent-run -r threat_modeler -s /path/to/source -f json -o threat_model_report.json
 
-# Run threat modeler on specific source directory
+# Legacy multi-file ASCII deliverables (markdown default)
 $ npx agent-run -r threat_modeler -s /path/to/source
+
+# With deployment context for environment-specific threats
+$ npx agent-run -r threat_modeler -s ./api -f json \
+  -c "AWS Lambda in VPC, handles PII, SOC2 Type II scope"
+
+# Override max tool-use turns (default 100 for threat_modeler)
+$ npx agent-run -r threat_modeler -s ./src -f json --max-turns 50
 ```
 
+JSON reports may include optional `source_locations` on DFD nodes, threats, and risks when the agent can ground them in Read/Grep evidence:
+
+```json
+{
+  "threat_model_report": {
+    "threat_model": {
+      "threats": [
+        {
+          "id": "THREAT-001",
+          "title": "SQL injection in user lookup",
+          "source_locations": [
+            {
+              "file": "src/db/users.ts",
+              "line_numbers": "42-44",
+              "symbol": "findUserById",
+              "snippet": "const q = `SELECT * FROM users WHERE id = ${id}`;"
+            }
+          ]
+        }
+      ]
+    }
+  }
+}
+```
+
+#### Threat adversarial second pass (`threat_adversary`, v3.1.0)
+
+After a `threat_modeler` run, invoke a **second pass** that drops threats without a concrete, code-grounded attack path. Input is the first-pass report; output is a filtered `threat_model_report` (same schema).
+
+```bash
+# Filter candidate threats (JSON in → JSON out)
+$ npx agent-run -r threat_adversary --adversarial-context threat_model_report.json \
+  -s ./repo -f json -o threat_model_adversary_report.json
+
+# Optional: same deployment context as the first pass
+$ npx agent-run -r threat_adversary --adversarial-context threat_model_report.json \
+  -s ./repo -f json -c "AWS Lambda, handles PII"
+```
+
+**Input shape** (minimum: wrap the first-pass report):
+
+```json
+{
+  "threat_model_report": {
+    "data_flow_diagram": { "nodes": [], "flows": [], "trust_boundaries": [] },
+    "threat_model": { "executive_summary": "…", "threats": [] },
+    "risk_registry": { "summary": "…", "risks": [] },
+    "metadata": { "total_threats_identified": 0, "total_risks_identified": 0 }
+  }
+}
+```
+
+Empty `threats` arrays short-circuit without calling the model; the input is written unchanged to `-o`.
+
 ### List Available Roles
 ```bash
 $ npx agent-run -l
@@ -570,10 +643,12 @@ appsec-agent/
 │   ├── main.ts               # Main application logic
 │   ├── utils.ts              # Utility functions
 │   ├── schemas/
-│   │   ├── security_report.ts # JSON schema for code review reports
-│   │   ├── threat_model_report.ts # JSON schema for threat model reports
-│   │   └── security_fix.ts    # JSON schema for code fixer output
-│   │   └── qa_context.ts      # JSON schema for QA verifier verdict
+│   │   ├── security_report.ts       # JSON schema for code review reports
+│   │   ├── threat_model_report.ts   # JSON schema for threat model reports (incl. source_locations)
+│   │   ├── threat_adversary_pass.ts # Input/prompt helpers for threat_adversary second pass
+│   │   ├── fp_adversary_pass.ts     # Input/output schema for fp_adversary role
+│   │   ├── security_fix.ts          # JSON schema for code fixer output
+│   │   └── qa_context.ts            # JSON schema for QA verifier verdict
 │   ├── tools/
 │   │   └── bash_tool.ts       # Restricted Bash tool for QA verifier
 │   └── __tests__/
@@ -602,6 +677,7 @@ appsec-agent/
 - `getSimpleQueryAgentOptions()`: Gets options for simple query agent
 - `getCodeReviewerOptions()`: Gets options for code reviewer
 - `getThreatModelerOptions()`: Gets options for threat modeler
+- `getThreatAdversaryOptions()`: Gets options for threat adversary second pass
 - `getDiffReviewerOptions()`: Gets options for PR diff-focused code reviewer
 - `getCodeFixerOptions()`: Gets options for code fixer agent (always uses JSON schema output)
 - `getQaVerifierOptions()`: Gets options for QA verifier agent (Read, Grep, Bash tools + JSON schema output)
@@ -698,11 +774,9 @@ $ npm test -- concurrency.test.ts
 ### Test Results
 
 All tests pass including:
-- ✅ 235 total tests across 11 suites
-- ✅ 11 concurrency tests
-- ✅ 51 diff context validation tests
-- ✅ 9 code fixer tests (main + agent options)
-- ✅ 5 QA verifier tests
+- ✅ 644 total tests across 40 suites
+- ✅ Concurrency and thread-safety coverage for web application usage
+- ✅ Diff context validation, threat model / threat adversary schema, and provider parity tests
 - ✅ Full coverage of core functionality
 
 ## 🔗 Related Projects
@@ -715,7 +789,7 @@ Highlights:
 
 - 🐳 **One-command setup** with `docker-compose up -d --build`
 - 🖥️ **Next.js web dashboard** with authentication (JWT, bcrypt, role-based access) and admin-managed Anthropic API credentials
-- 🧵 **Threat Modeling workflow** — upload a repository ZIP and get a structured JSON threat model (powered by `appsec-agent` v1.6+) with:
+- 🧵 **Threat Modeling workflow** — upload a repository ZIP and get a structured JSON threat model (powered by `appsec-agent` v1.6+) with code-grounded `source_locations` and optional adversarial filtering (`threat_adversary`, v3.1.0+):
   - Interactive threat-aware **Data Flow Diagrams** (React Flow canvas with pan/zoom, search, filters, trust boundaries)
   - Sortable threat tables with STRIDE category and severity badges
   - Risk Registry with cross-referenced threat IDs

package/conf/appsec_agent.yaml

@@ -21,8 +21,15 @@ default: &default
   threat_modeler:
     options:
       system_prompt: "You are an Application Security (AppSec) expert assistant. You are responsible for performing risk assessment on the source code repository for SOC2 type 2 compliance audit: 1. Start with drawing the ASCII text based Data Flow Diagrm (DFD), with output format as <codebase_data_flow_diagram_text_timestamp>; 2. then proceeding to use STRIDE methodology to perform threat modeling on the DFD, without output report in the format <codebase_threat_model_timestamp>; 3. finally, provide a seperate risk registry report including proposed remediation plan in the format <codebase_risk_registry_text_timestamp>. We're looking for 3 reports in the current working directory as the deliverable."
+      max_turns: 100
     output_format: "markdown"
     verbose: True
+  threat_adversary:
+    options:
+      system_prompt: "You are a senior application security engineer performing an adversarial second pass on a STRIDE threat model. Skeptically verify each threat against the real codebase using Read and Grep. Keep only threats with a concrete, demonstrable attack path and confirmed source_locations. Drop generic, mitigated, or ungrounded threats. Reconcile risks and metadata counts. Output the full filtered threat_model_report JSON."
+      output_format: "json"
+      max_turns: 100
+      verbose: True
   pr_reviewer:
     options:
       diff_reviewer_system_prompt: null  # Use enhanced hardcoded prompt; set here to override

package/dist/bin/agent-run.js

@@ -75,9 +75,7 @@ program
     .option('--diff-max-files <n>', 'Max files to include in PR review; rest skipped. Overrides config.')
     .option('--diff-exclude <pattern>', 'Exclude path pattern (repeatable). Overrides config.', (v, acc) => { acc.push(v); return acc; }, [])
     .option('-m, --model <model>', 'Claude model: family alias (sonnet, opus, haiku), SDK model ID (claude-sonnet-4-6), or version prefix (sonnet-4-6) - default to "opus"', 'opus')
-    .option('-F, --failover', 'Enable failover to OpenAI when Anthropic fails (optional feature, off by default). Overrides FAILOVER_ENABLED env.')
-    .option('-K, --openai-api-key <key>', 'OpenAI API key for failover (overrides OPENAI_API_KEY env). Only used when failover is enabled.')
-    .option('-U, --openai-base-url <url>', 'OpenAI API base URL for failover (overrides OPENAI_BASE_URL env). Only used when failover is enabled.')
+    .option('--provider <provider>', 'Model provider: claude (default) or codex (opt-in; all roles via RoleSpec)', 'claude')
     .option('--max-turns <n>', 'Max agent turns (tool-use iterations). Overrides per-role default.')
     .option('--no-tools', 'Disable Read/Grep tools for single-turn analysis (use with --diff-context for fastest mode)')
     .option('--mcp-server-url <url>', 'URL of a parent-app-managed per-scan MCP server exposing queryFindingsHistory / queryImportGraph / queryRuntimeEnrichment / queryCodebaseGraph (v2.4.0 wire + v2.7.0 fourth tool). When set, agents call these tools live instead of (or in addition to) the front-loaded JSON paths.')
@@ -119,26 +117,25 @@ if (options.anthropicApiKey) {
 if (options.anthropicBaseUrl) {
     process.env.ANTHROPIC_BASE_URL = options.anthropicBaseUrl;
 }
-// Failover: CLI overrides env. Set env so adapter reads them.
-if (options.failover !== undefined) {
-    process.env.FAILOVER_ENABLED = options.failover ? 'true' : 'false';
-}
-if (options.openaiApiKey !== undefined) {
-    console.warn('⚠️  SECURITY WARNING: OpenAI API key provided via command line argument.');
-    console.warn('   For better security, use the OPENAI_API_KEY environment variable instead.\n');
-    process.env.OPENAI_API_KEY = options.openaiApiKey;
-}
-if (options.openaiBaseUrl !== undefined) {
-    process.env.OPENAI_BASE_URL = options.openaiBaseUrl;
+const providerId = (options.provider ?? 'claude').toLowerCase().trim();
+if (providerId !== 'claude' && providerId !== 'codex') {
+    console.error(`Error: Invalid provider "${options.provider}". Valid values: claude, codex`);
+    process.exit(1);
 }
-// Validate model option: accept family aliases, SDK model IDs, or version prefixes
+process.env.AGENT_PROVIDER = providerId;
+// Validate model option: provider-aware (Claude aliases/IDs vs Codex/OpenAI ids)
 const FAMILY_ALIASES = ['sonnet', 'opus', 'haiku'];
 const model = options.model.toLowerCase().trim();
-const isValidModel = FAMILY_ALIASES.includes(model)
+const isClaudeModel = FAMILY_ALIASES.includes(model)
     || model.startsWith('claude-')
     || FAMILY_ALIASES.some(f => model.startsWith(`${f}-`));
+const isCodexModel = model.startsWith('gpt-') || model.startsWith('o');
+const isValidModel = providerId === 'codex' ? (isCodexModel || isClaudeModel) : isClaudeModel;
 if (!isValidModel) {
-    console.error(`Error: Invalid model "${options.model}". Valid formats: family alias (sonnet, opus, haiku), SDK model ID (claude-sonnet-4-6), or version prefix (sonnet-4-6)`);
+    const hint = providerId === 'codex'
+        ? 'Codex/OpenAI id (gpt-*, o*) or Claude alias (sonnet, opus, haiku)'
+        : 'family alias (sonnet, opus, haiku), SDK model ID (claude-sonnet-4-6), or version prefix (sonnet-4-6)';
+    console.error(`Error: Invalid model "${options.model}". Valid formats for ${providerId}: ${hint}`);
     process.exit(1);
 }
 // Prepare args (chunking: CLI overrides config; main will merge with conf)

package/dist/bin/agent-run.js.map

@@ -1 +1 @@
-{"version":3,"file":"agent-run.js","sourceRoot":"","sources":["../../bin/agent-run.ts"],"names":[],"mappings":";;AACA;;;;GAIG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,2CAA6B;AAC7B,yCAAoC;AAEpC,yCAAyC;AACzC,0FAA0F;AAC1F,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,gBAAgB,EAAE,cAAc,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC,CAAC;AAChH,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,aAAa,CAAC,CAAC,CAAC;AAC9D,MAAM,EAAE,wBAAwB,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,8BAA8B,CAAC,CAAC,CAAC;AAEnG,MAAM,OAAO,GAAG,IAAI,mBAAO,EAAE,CAAC;AAE9B,OAAO;KACJ,IAAI,CAAC,WAAW,CAAC;KACjB,WAAW,CAAC,uCAAuC,CAAC;KACpD,MAAM,CAAC,mBAAmB,EAAE,gFAAgF,CAAC;KAC7G,MAAM,CAAC,yBAAyB,EAAE,wDAAwD,EAAE,aAAa,CAAC;KAC1G,MAAM,CAAC,mBAAmB,EAAE,0GAA0G,EAAE,oBAAoB,CAAC;KAC7J,MAAM,CAAC,qBAAqB,EAAE,wEAAwE,CAAC;KACvG,MAAM,CAAC,0BAA0B,EAAE,gFAAgF,CAAC;KACpH,MAAM,CAAC,8BAA8B,EAAE,uEAAuE,EAAE,UAAU,CAAC;KAC3H,MAAM,CAAC,+BAA+B,EAAE,sEAAsE,CAAC;KAC/G,MAAM,CAAC,gCAAgC,EAAE,4EAA4E,CAAC;KACtH,MAAM,CAAC,yBAAyB,EAAE,8GAA8G,CAAC;KACjJ,MAAM,CAAC,uBAAuB,EAAE,gFAAgF,CAAC;KACjH,MAAM,CAAC,sBAAsB,EAAE,yEAAyE,CAAC;KACzG,MAAM,CAAC,qBAAqB,EAAE,8EAA8E,CAAC;KAC7G,MAAM,CAAC,yBAAyB,EAAE,mFAAmF,CAAC;KACtH,MAAM,CACL,8BAA8B,EAC9B,mGAAmG,CACpG;KACA,MAAM,CACL,+BAA+B,EAC/B,gHAAgH,CACjH;KACA,MAAM,CACL,qCAAqC,EACrC,kIAAkI,CACnI;KACA,MAAM,CACL,iCAAiC,EACjC,4LAA4L,CAC7L;KACA,MAAM,CACL,iBAAiB,EACjB,4JAA4J,CAC7J;KACA,MAAM,CACL,sBAAsB,EACtB,sGAAsG,CACvG;KACA,MAAM,CAAC,0BAA0B,EAAE,sFAAsF,CAAC;KAC1H,MAAM,CAAC,uBAAuB,EAAE,wEAAwE,CAAC;KACzG,MAAM,CAAC,wBAAwB,EAAE,oDAAoD,CAAC;KACtF,MAAM,CAAC,sBAAsB,EAAE,oEAAoE,CAAC;KACpG,MAAM,CAAC,0BAA0B,EAAE,sDAAsD,EAAE,CAAC,CAAS,EAAE,GAAa,EAAE,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;KAC1J,MAAM,CAAC,qBAAqB,EAAE,wIAAwI,EAAE,MAAM,CAAC;KAC/K,MAAM,CAAC,gBAAgB,EAAE,oHAAoH,CAAC;KAC9I,MAAM,CAAC,4BAA4B,EAAE,iGAAiG,CAAC;KACvI,MAAM,CAAC,6BAA6B,EAAE,uGAAuG,CAAC;KAC9I,MAAM,CAAC,iBAAiB,EAAE,oEAAoE,CAAC;KAC/F,MAAM,CAAC,YAAY,EAAE,6FAA6F,CAAC;KACnH,MAAM,CACL,wBAAwB,EACxB,uRAAuR,CACxR;KACA,MAAM,CACL,0BAA0B,EAC1B,uUAAuU,CACxU;KACA,MAAM,CAAC,kBAAkB,EAAE,0BAA0B,CAAC;KACtD,MAAM,CAAC,eAAe,EAAE,iBAAiB,CAAC;KAC1C,MAAM,CAAC,eAAe,EAAE,cAAc,CAAC,CAAC;AAE3C,OAAO,CAAC,KAAK,EAAE,CAAC;AAEhB,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;AAE/B,sBAAsB;AACtB,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;IACpB,gBAAgB,EAAE,CAAC;IACnB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,sCAAsC;AACtC,MAAM,QAAQ,GAAG,OAAO,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,mBAAmB,CAAC,CAAC;AAE1F,OAAO,CAAC,GAAG,CAAC,6CAA6C,EAAE,QAAQ,CAAC,CAAC;AACrE,MAAM,QAAQ,GAAG,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC;AAErD,IAAI,CAAC,QAAQ,EAAE,CAAC;IACd,OAAO,CAAC,KAAK,CAAC,mCAAmC,CAAC,CAAC;IACnD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,OAAO,CAAC,GAAG,CAAC,sDAAsD,CAAC,CAAC;AAEpE,yBAAyB;AACzB,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;IACvB,OAAO,CAAC,GAAG,CAAC,6CAA6C,CAAC,CAAC;IAC3D,SAAS,CAAC,QAAQ,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC;IACzC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,uEAAuE;AACvE,yFAAyF;AACzF,0EAA0E;AAC1E,IAAI,OAAO,CAAC,eAAe,EAAE,CAAC;IAC5B,OAAO,CAAC,IAAI,CAAC,mEAAmE,CAAC,CAAC;IAClF,OAAO,CAAC,IAAI,CAAC,8EAA8E,CAAC,CAAC;IAC7F,OAAO,CAAC,IAAI,CAAC,mFAAmF,CAAC,CAAC;IAClG,OAAO,CAAC,GAAG,CAAC,iBAAiB,GAAG,OAAO,CAAC,eAAe,CAAC;AAC1D,CAAC;AACD,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;IAC7B,OAAO,CAAC,GAAG,CAAC,kBAAkB,GAAG,OAAO,CAAC,gBAAgB,CAAC;AAC5D,CAAC;AAED,8DAA8D;AAC9D,IAAI,OAAO,CAAC,QAAQ,KAAK,SAAS,EAAE,CAAC;IACnC,OAAO,CAAC,GAAG,CAAC,gBAAgB,GAAG,OAAO,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC;AACrE,CAAC;AACD,IAAI,OAAO,CAAC,YAAY,KAAK,SAAS,EAAE,CAAC;IACvC,OAAO,CAAC,IAAI,CAAC,0EAA0E,CAAC,CAAC;IACzF,OAAO,CAAC,IAAI,CAAC,gFAAgF,CAAC,CAAC;IAC/F,OAAO,CAAC,GAAG,CAAC,cAAc,GAAG,OAAO,CAAC,YAAY,CAAC;AACpD,CAAC;AACD,IAAI,OAAO,CAAC,aAAa,KAAK,SAAS,EAAE,CAAC;IACxC,OAAO,CAAC,GAAG,CAAC,eAAe,GAAG,OAAO,CAAC,aAAa,CAAC;AACtD,CAAC;AAED,mFAAmF;AACnF,MAAM,cAAc,GAAG,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;AACnD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;AACjD,MAAM,YAAY,GAAG,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC;OAC9C,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC;OAC3B,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;AACzD,IAAI,CAAC,YAAY,EAAE,CAAC;IAClB,OAAO,CAAC,KAAK,CAAC,yBAAyB,OAAO,CAAC,KAAK,wHAAwH,CAAC,CAAC;IAC9K,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,2EAA2E;AAC3E,MAAM,SAAS,GAAG,wBAAwB,CAAC;IACzC,YAAY,EAAE,OAAO,CAAC,YAAY;IAClC,aAAa,EAAE,OAAO,CAAC,aAAa;CACrC,CAAC,CAAC;AAEH,MAAM,IAAI,GAAG;IACX,IAAI,EAAE,OAAO,CAAC,IAAI;IAClB,WAAW,EAAE,OAAO,CAAC,WAAW;IAChC,OAAO,EAAE,OAAO,CAAC,OAAO;IACxB,WAAW,EAAE,OAAO,CAAC,WAAW;IAChC,aAAa,EAAE,OAAO,CAAC,aAAa;IACpC,OAAO,EAAE,OAAO,CAAC,OAAO;IACxB,OAAO,EAAE,OAAO,CAAC,OAAO;IACxB,YAAY,EAAE,OAAO,CAAC,WAAW;IACjC,WAAW,EAAE,OAAO,CAAC,UAAU;IAC/B,UAAU,EAAE,OAAO,CAAC,SAAS;IAC7B,cAAc,EAAE,OAAO,CAAC,aAAa;IACrC,eAAe,EAAE,OAAO,CAAC,cAAc;IACvC,mBAAmB,EAAE,OAAO,CAAC,kBAAkB;IAC/C,oBAAoB,EAAE,OAAO,CAAC,kBAAkB;IAChD,0BAA0B,EAAE,OAAO,CAAC,wBAAwB;IAC5D,sBAAsB,EAAE,OAAO,CAAC,oBAAoB;IACpD,MAAM,EAAE,OAAO,CAAC,MAAM;IACtB,kBAAkB,EAAE,OAAO,CAAC,iBAAiB,KAAK,IAAI;IACtD,KAAK,EAAE,KAAK;IACZ,yBAAyB,EAAE,OAAO,CAAC,aAAa,KAAK,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;IAChH,gBAAgB,EAAE,OAAO,CAAC,cAAc,KAAK,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;IACzG,cAAc,EAAE,OAAO,CAAC,YAAY,KAAK,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;IACnG,YAAY,EAAE,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,WAAW,CAAC,IAAI,OAAO,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;IACpH,SAAS,EAAE,OAAO,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;IACtF,QAAQ,EAAE,OAAO,CAAC,OAAO,KAAK,IAAI;IAClC,GAAG,SAAS;CACb,CAAC;AAEF,0BAA0B;AAC1B,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;IACjB,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;AACzG,CAAC;AAED,+DAA+D;AAC/D,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;IACtB,OAAO,CAAC,GAAG,CAAC,0BAA0B,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC;IAC3D,IAAI,IAAI,CAAC,IAAI,KAAK,eAAe,IAAI,IAAI,CAAC,IAAI,KAAK,aAAa,EAAE,CAAC;QACjE,OAAO,CAAC,IAAI,CAAC,sFAAsF,CAAC,CAAC;QACrG,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,qCAAqC,CAAC,CAAC;QACjF,OAAO,CAAC,IAAI,CAAC,oFAAoF,CAAC,CAAC;IACrG,CAAC;AACH,CAAC;AAED,2EAA2E;AAC3E,0EAA0E;AAC1E,IAAI,IAAI,CAAC,oBAAoB,EAAE,CAAC;IAC9B,OAAO,CAAC,GAAG,CAAC,kCAAkC,EAAE,IAAI,CAAC,oBAAoB,CAAC,CAAC;IAC3E,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,KAAK,aAAa,IAAI,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;QACxD,OAAO,CAAC,IAAI,CAAC,2FAA2F,CAAC,CAAC;QAC1G,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,+BAA+B,6CAA6C,CAAC,CAAC;QACpJ,OAAO,CAAC,IAAI,CAAC,qFAAqF,CAAC,CAAC;IACtG,CAAC;AACH,CAAC;AAED,0EAA0E;AAC1E,kEAAkE;AAClE,qEAAqE;AACrE,IAAI,IAAI,CAAC,0BAA0B,EAAE,CAAC;IACpC,OAAO,CAAC,GAAG,CAAC,wCAAwC,EAAE,IAAI,CAAC,0BAA0B,CAAC,CAAC;IACvF,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,KAAK,aAAa,IAAI,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;QACxD,OAAO,CAAC,IAAI,CAAC,iGAAiG,CAAC,CAAC;QAChH,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,+BAA+B,mDAAmD,CAAC,CAAC;QAC1J,OAAO,CAAC,IAAI,CAAC,4EAA4E,CAAC,CAAC;IAC7F,CAAC;AACH,CAAC;AAED,yEAAyE;AACzE,kEAAkE;AAClE,sEAAsE;AACtE,gCAAgC;AAChC,IAAI,IAAI,CAAC,sBAAsB,EAAE,CAAC;IAChC,OAAO,CAAC,GAAG,CAAC,oCAAoC,EAAE,IAAI,CAAC,sBAAsB,CAAC,CAAC;IAC/E,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,KAAK,aAAa,IAAI,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;QACxD,OAAO,CAAC,IAAI,CAAC,6FAA6F,CAAC,CAAC;QAC5G,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,+BAA+B,+CAA+C,CAAC,CAAC;QACtJ,OAAO,CAAC,IAAI,CAAC,+FAA+F,CAAC,CAAC;IAChH,CAAC;AACH,CAAC;AAED,kEAAkE;AAClE,oEAAoE;AACpE,eAAe;AACf,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;IAChB,OAAO,CAAC,GAAG,CAAC,qCAAqC,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;IAChE,IAAI,IAAI,CAAC,IAAI,KAAK,8BAA8B,EAAE,CAAC;QACjD,OAAO,CAAC,IAAI,CAAC,yEAAyE,CAAC,CAAC;QACxF,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,oCAAoC,CAAC,CAAC;QAChF,OAAO,CAAC,IAAI,CAAC,yEAAyE,CAAC,CAAC;IAC1F,CAAC;AACH,CAAC;AAED,qEAAqE;AACrE,iEAAiE;AACjE,wEAAwE;AACxE,qEAAqE;AACrE,uEAAuE;AACvE,mDAAmD;AACnD,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;IACxB,OAAO,CAAC,GAAG,CAAC,uBAAuB,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;IAC1D,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;QACzB,OAAO,CAAC,GAAG,CAAC,iCAAiC,EAAE,IAAI,CAAC,eAAe,CAAC,CAAC;IACvE,CAAC;IACD,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC;QAC5B,aAAa;QACb,eAAe;QACf,cAAc;QACd,cAAc;QACd,mBAAmB;QACnB,YAAY;KACb,CAAC,CAAC;IACH,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAClC,OAAO,CAAC,IAAI,CAAC,+IAA+I,CAAC,CAAC;QAC9J,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,4CAA4C,CAAC,CAAC;IAC1F,CAAC;AACH,CAAC;KAAM,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;IAChC,uEAAuE;IACvE,oEAAoE;IACpE,8BAA8B;IAC9B,OAAO,CAAC,IAAI,CACV,yHAAyH,CAC1H,CAAC;AACJ,CAAC;AAED,oBAAoB;AACpB,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,KAAY,EAAE,EAAE;IAC1C,OAAO,CAAC,KAAK,CAAC,sBAAsB,EAAE,KAAK,CAAC,CAAC;IAC7C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}
+{"version":3,"file":"agent-run.js","sourceRoot":"","sources":["../../bin/agent-run.ts"],"names":[],"mappings":";;AACA;;;;GAIG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAEH,2CAA6B;AAC7B,yCAAoC;AAEpC,yCAAyC;AACzC,0FAA0F;AAC1F,MAAM,EAAE,QAAQ,EAAE,SAAS,EAAE,gBAAgB,EAAE,cAAc,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC,CAAC;AAChH,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,aAAa,CAAC,CAAC,CAAC;AAC9D,MAAM,EAAE,wBAAwB,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,8BAA8B,CAAC,CAAC,CAAC;AAEnG,MAAM,OAAO,GAAG,IAAI,mBAAO,EAAE,CAAC;AAE9B,OAAO;KACJ,IAAI,CAAC,WAAW,CAAC;KACjB,WAAW,CAAC,uCAAuC,CAAC;KACpD,MAAM,CAAC,mBAAmB,EAAE,gFAAgF,CAAC;KAC7G,MAAM,CAAC,yBAAyB,EAAE,wDAAwD,EAAE,aAAa,CAAC;KAC1G,MAAM,CAAC,mBAAmB,EAAE,0GAA0G,EAAE,oBAAoB,CAAC;KAC7J,MAAM,CAAC,qBAAqB,EAAE,wEAAwE,CAAC;KACvG,MAAM,CAAC,0BAA0B,EAAE,gFAAgF,CAAC;KACpH,MAAM,CAAC,8BAA8B,EAAE,uEAAuE,EAAE,UAAU,CAAC;KAC3H,MAAM,CAAC,+BAA+B,EAAE,sEAAsE,CAAC;KAC/G,MAAM,CAAC,gCAAgC,EAAE,4EAA4E,CAAC;KACtH,MAAM,CAAC,yBAAyB,EAAE,8GAA8G,CAAC;KACjJ,MAAM,CAAC,uBAAuB,EAAE,gFAAgF,CAAC;KACjH,MAAM,CAAC,sBAAsB,EAAE,yEAAyE,CAAC;KACzG,MAAM,CAAC,qBAAqB,EAAE,8EAA8E,CAAC;KAC7G,MAAM,CAAC,yBAAyB,EAAE,mFAAmF,CAAC;KACtH,MAAM,CACL,8BAA8B,EAC9B,mGAAmG,CACpG;KACA,MAAM,CACL,+BAA+B,EAC/B,gHAAgH,CACjH;KACA,MAAM,CACL,qCAAqC,EACrC,kIAAkI,CACnI;KACA,MAAM,CACL,iCAAiC,EACjC,4LAA4L,CAC7L;KACA,MAAM,CACL,iBAAiB,EACjB,4JAA4J,CAC7J;KACA,MAAM,CACL,sBAAsB,EACtB,sGAAsG,CACvG;KACA,MAAM,CAAC,0BAA0B,EAAE,sFAAsF,CAAC;KAC1H,MAAM,CAAC,uBAAuB,EAAE,wEAAwE,CAAC;KACzG,MAAM,CAAC,wBAAwB,EAAE,oDAAoD,CAAC;KACtF,MAAM,CAAC,sBAAsB,EAAE,oEAAoE,CAAC;KACpG,MAAM,CAAC,0BAA0B,EAAE,sDAAsD,EAAE,CAAC,CAAS,EAAE,GAAa,EAAE,EAAE,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC;KAC1J,MAAM,CAAC,qBAAqB,EAAE,wIAAwI,EAAE,MAAM,CAAC;KAC/K,MAAM,CACL,uBAAuB,EACvB,4EAA4E,EAC5E,QAAQ,CACT;KACA,MAAM,CAAC,iBAAiB,EAAE,oEAAoE,CAAC;KAC/F,MAAM,CAAC,YAAY,EAAE,6FAA6F,CAAC;KACnH,MAAM,CACL,wBAAwB,EACxB,uRAAuR,CACxR;KACA,MAAM,CACL,0BAA0B,EAC1B,uUAAuU,CACxU;KACA,MAAM,CAAC,kBAAkB,EAAE,0BAA0B,CAAC;KACtD,MAAM,CAAC,eAAe,EAAE,iBAAiB,CAAC;KAC1C,MAAM,CAAC,eAAe,EAAE,cAAc,CAAC,CAAC;AAE3C,OAAO,CAAC,KAAK,EAAE,CAAC;AAEhB,MAAM,OAAO,GAAG,OAAO,CAAC,IAAI,EAAE,CAAC;AAE/B,sBAAsB;AACtB,IAAI,OAAO,CAAC,OAAO,EAAE,CAAC;IACpB,gBAAgB,EAAE,CAAC;IACnB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,sCAAsC;AACtC,MAAM,QAAQ,GAAG,OAAO,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,MAAM,EAAE,mBAAmB,CAAC,CAAC;AAE1F,OAAO,CAAC,GAAG,CAAC,6CAA6C,EAAE,QAAQ,CAAC,CAAC;AACrE,MAAM,QAAQ,GAAG,QAAQ,CAAC,QAAQ,EAAE,OAAO,CAAC,OAAO,CAAC,CAAC;AAErD,IAAI,CAAC,QAAQ,EAAE,CAAC;IACd,OAAO,CAAC,KAAK,CAAC,mCAAmC,CAAC,CAAC;IACnD,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,OAAO,CAAC,GAAG,CAAC,sDAAsD,CAAC,CAAC;AAEpE,yBAAyB;AACzB,IAAI,OAAO,CAAC,UAAU,EAAE,CAAC;IACvB,OAAO,CAAC,GAAG,CAAC,6CAA6C,CAAC,CAAC;IAC3D,SAAS,CAAC,QAAQ,EAAE,OAAO,CAAC,WAAW,CAAC,CAAC;IACzC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,uEAAuE;AACvE,yFAAyF;AACzF,0EAA0E;AAC1E,IAAI,OAAO,CAAC,eAAe,EAAE,CAAC;IAC5B,OAAO,CAAC,IAAI,CAAC,mEAAmE,CAAC,CAAC;IAClF,OAAO,CAAC,IAAI,CAAC,8EAA8E,CAAC,CAAC;IAC7F,OAAO,CAAC,IAAI,CAAC,mFAAmF,CAAC,CAAC;IAClG,OAAO,CAAC,GAAG,CAAC,iBAAiB,GAAG,OAAO,CAAC,eAAe,CAAC;AAC1D,CAAC;AACD,IAAI,OAAO,CAAC,gBAAgB,EAAE,CAAC;IAC7B,OAAO,CAAC,GAAG,CAAC,kBAAkB,GAAG,OAAO,CAAC,gBAAgB,CAAC;AAC5D,CAAC;AAED,MAAM,UAAU,GAAG,CAAC,OAAO,CAAC,QAAQ,IAAI,QAAQ,CAAC,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;AACvE,IAAI,UAAU,KAAK,QAAQ,IAAI,UAAU,KAAK,OAAO,EAAE,CAAC;IACtD,OAAO,CAAC,KAAK,CAAC,4BAA4B,OAAO,CAAC,QAAQ,gCAAgC,CAAC,CAAC;IAC5F,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AACD,OAAO,CAAC,GAAG,CAAC,cAAc,GAAG,UAAU,CAAC;AAExC,iFAAiF;AACjF,MAAM,cAAc,GAAG,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,CAAC,CAAC;AACnD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC,IAAI,EAAE,CAAC;AACjD,MAAM,aAAa,GACjB,cAAc,CAAC,QAAQ,CAAC,KAAK,CAAC;OAC3B,KAAK,CAAC,UAAU,CAAC,SAAS,CAAC;OAC3B,cAAc,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC;AACzD,MAAM,YAAY,GAAG,KAAK,CAAC,UAAU,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,UAAU,CAAC,GAAG,CAAC,CAAC;AACvE,MAAM,YAAY,GAAG,UAAU,KAAK,OAAO,CAAC,CAAC,CAAC,CAAC,YAAY,IAAI,aAAa,CAAC,CAAC,CAAC,CAAC,aAAa,CAAC;AAC9F,IAAI,CAAC,YAAY,EAAE,CAAC;IAClB,MAAM,IAAI,GAAG,UAAU,KAAK,OAAO;QACjC,CAAC,CAAC,mEAAmE;QACrE,CAAC,CAAC,sGAAsG,CAAC;IAC3G,OAAO,CAAC,KAAK,CAAC,yBAAyB,OAAO,CAAC,KAAK,wBAAwB,UAAU,KAAK,IAAI,EAAE,CAAC,CAAC;IACnG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC;AAED,2EAA2E;AAC3E,MAAM,SAAS,GAAG,wBAAwB,CAAC;IACzC,YAAY,EAAE,OAAO,CAAC,YAAY;IAClC,aAAa,EAAE,OAAO,CAAC,aAAa;CACrC,CAAC,CAAC;AAEH,MAAM,IAAI,GAAG;IACX,IAAI,EAAE,OAAO,CAAC,IAAI;IAClB,WAAW,EAAE,OAAO,CAAC,WAAW;IAChC,OAAO,EAAE,OAAO,CAAC,OAAO;IACxB,WAAW,EAAE,OAAO,CAAC,WAAW;IAChC,aAAa,EAAE,OAAO,CAAC,aAAa;IACpC,OAAO,EAAE,OAAO,CAAC,OAAO;IACxB,OAAO,EAAE,OAAO,CAAC,OAAO;IACxB,YAAY,EAAE,OAAO,CAAC,WAAW;IACjC,WAAW,EAAE,OAAO,CAAC,UAAU;IAC/B,UAAU,EAAE,OAAO,CAAC,SAAS;IAC7B,cAAc,EAAE,OAAO,CAAC,aAAa;IACrC,eAAe,EAAE,OAAO,CAAC,cAAc;IACvC,mBAAmB,EAAE,OAAO,CAAC,kBAAkB;IAC/C,oBAAoB,EAAE,OAAO,CAAC,kBAAkB;IAChD,0BAA0B,EAAE,OAAO,CAAC,wBAAwB;IAC5D,sBAAsB,EAAE,OAAO,CAAC,oBAAoB;IACpD,MAAM,EAAE,OAAO,CAAC,MAAM;IACtB,kBAAkB,EAAE,OAAO,CAAC,iBAAiB,KAAK,IAAI;IACtD,KAAK,EAAE,KAAK;IACZ,yBAAyB,EAAE,OAAO,CAAC,aAAa,KAAK,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,aAAa,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;IAChH,gBAAgB,EAAE,OAAO,CAAC,cAAc,KAAK,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;IACzG,cAAc,EAAE,OAAO,CAAC,YAAY,KAAK,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,YAAY,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;IACnG,YAAY,EAAE,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,WAAW,CAAC,IAAI,OAAO,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,WAAW,CAAC,CAAC,CAAC,SAAS;IACpH,SAAS,EAAE,OAAO,CAAC,QAAQ,KAAK,SAAS,CAAC,CAAC,CAAC,QAAQ,CAAC,OAAO,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,SAAS;IACtF,QAAQ,EAAE,OAAO,CAAC,OAAO,KAAK,IAAI;IAClC,GAAG,SAAS;CACb,CAAC;AAEF,0BAA0B;AAC1B,IAAI,IAAI,CAAC,OAAO,EAAE,CAAC;IACjB,OAAO,CAAC,GAAG,CAAC,gBAAgB,EAAE,IAAI,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,EAAE,EAAE,CAAC,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,GAAG,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC;AACzG,CAAC;AAED,+DAA+D;AAC/D,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;IACtB,OAAO,CAAC,GAAG,CAAC,0BAA0B,EAAE,IAAI,CAAC,YAAY,CAAC,CAAC;IAC3D,IAAI,IAAI,CAAC,IAAI,KAAK,eAAe,IAAI,IAAI,CAAC,IAAI,KAAK,aAAa,EAAE,CAAC;QACjE,OAAO,CAAC,IAAI,CAAC,sFAAsF,CAAC,CAAC;QACrG,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,qCAAqC,CAAC,CAAC;QACjF,OAAO,CAAC,IAAI,CAAC,oFAAoF,CAAC,CAAC;IACrG,CAAC;AACH,CAAC;AAED,2EAA2E;AAC3E,0EAA0E;AAC1E,IAAI,IAAI,CAAC,oBAAoB,EAAE,CAAC;IAC9B,OAAO,CAAC,GAAG,CAAC,kCAAkC,EAAE,IAAI,CAAC,oBAAoB,CAAC,CAAC;IAC3E,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,KAAK,aAAa,IAAI,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;QACxD,OAAO,CAAC,IAAI,CAAC,2FAA2F,CAAC,CAAC;QAC1G,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,+BAA+B,6CAA6C,CAAC,CAAC;QACpJ,OAAO,CAAC,IAAI,CAAC,qFAAqF,CAAC,CAAC;IACtG,CAAC;AACH,CAAC;AAED,0EAA0E;AAC1E,kEAAkE;AAClE,qEAAqE;AACrE,IAAI,IAAI,CAAC,0BAA0B,EAAE,CAAC;IACpC,OAAO,CAAC,GAAG,CAAC,wCAAwC,EAAE,IAAI,CAAC,0BAA0B,CAAC,CAAC;IACvF,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,KAAK,aAAa,IAAI,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;QACxD,OAAO,CAAC,IAAI,CAAC,iGAAiG,CAAC,CAAC;QAChH,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,+BAA+B,mDAAmD,CAAC,CAAC;QAC1J,OAAO,CAAC,IAAI,CAAC,4EAA4E,CAAC,CAAC;IAC7F,CAAC;AACH,CAAC;AAED,yEAAyE;AACzE,kEAAkE;AAClE,sEAAsE;AACtE,gCAAgC;AAChC,IAAI,IAAI,CAAC,sBAAsB,EAAE,CAAC;IAChC,OAAO,CAAC,GAAG,CAAC,oCAAoC,EAAE,IAAI,CAAC,sBAAsB,CAAC,CAAC;IAC/E,IAAI,CAAC,CAAC,IAAI,CAAC,IAAI,KAAK,aAAa,IAAI,IAAI,CAAC,YAAY,CAAC,EAAE,CAAC;QACxD,OAAO,CAAC,IAAI,CAAC,6FAA6F,CAAC,CAAC;QAC5G,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,+BAA+B,+CAA+C,CAAC,CAAC;QACtJ,OAAO,CAAC,IAAI,CAAC,+FAA+F,CAAC,CAAC;IAChH,CAAC;AACH,CAAC;AAED,kEAAkE;AAClE,oEAAoE;AACpE,eAAe;AACf,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC;IAChB,OAAO,CAAC,GAAG,CAAC,qCAAqC,EAAE,IAAI,CAAC,MAAM,CAAC,CAAC;IAChE,IAAI,IAAI,CAAC,IAAI,KAAK,8BAA8B,EAAE,CAAC;QACjD,OAAO,CAAC,IAAI,CAAC,yEAAyE,CAAC,CAAC;QACxF,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,oCAAoC,CAAC,CAAC;QAChF,OAAO,CAAC,IAAI,CAAC,yEAAyE,CAAC,CAAC;IAC1F,CAAC;AACH,CAAC;AAED,qEAAqE;AACrE,iEAAiE;AACjE,wEAAwE;AACxE,qEAAqE;AACrE,uEAAuE;AACvE,mDAAmD;AACnD,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;IACxB,OAAO,CAAC,GAAG,CAAC,uBAAuB,EAAE,IAAI,CAAC,cAAc,CAAC,CAAC;IAC1D,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;QACzB,OAAO,CAAC,GAAG,CAAC,iCAAiC,EAAE,IAAI,CAAC,eAAe,CAAC,CAAC;IACvE,CAAC;IACD,MAAM,aAAa,GAAG,IAAI,GAAG,CAAC;QAC5B,aAAa;QACb,eAAe;QACf,cAAc;QACd,cAAc;QACd,mBAAmB;QACnB,YAAY;KACb,CAAC,CAAC;IACH,IAAI,CAAC,aAAa,CAAC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAClC,OAAO,CAAC,IAAI,CAAC,+IAA+I,CAAC,CAAC;QAC9J,OAAO,CAAC,IAAI,CAAC,oBAAoB,IAAI,CAAC,IAAI,4CAA4C,CAAC,CAAC;IAC1F,CAAC;AACH,CAAC;KAAM,IAAI,IAAI,CAAC,eAAe,EAAE,CAAC;IAChC,uEAAuE;IACvE,oEAAoE;IACpE,8BAA8B;IAC9B,OAAO,CAAC,IAAI,CACV,yHAAyH,CAC1H,CAAC;AACJ,CAAC;AAED,oBAAoB;AACpB,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAC,KAAK,CAAC,CAAC,KAAY,EAAE,EAAE;IAC1C,OAAO,CAAC,KAAK,CAAC,sBAAsB,EAAE,KAAK,CAAC,CAAC;IAC7C,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;AAClB,CAAC,CAAC,CAAC"}

package/dist/conf/appsec_agent.yaml

@@ -21,8 +21,15 @@ default: &default
   threat_modeler:
     options:
       system_prompt: "You are an Application Security (AppSec) expert assistant. You are responsible for performing risk assessment on the source code repository for SOC2 type 2 compliance audit: 1. Start with drawing the ASCII text based Data Flow Diagrm (DFD), with output format as <codebase_data_flow_diagram_text_timestamp>; 2. then proceeding to use STRIDE methodology to perform threat modeling on the DFD, without output report in the format <codebase_threat_model_timestamp>; 3. finally, provide a seperate risk registry report including proposed remediation plan in the format <codebase_risk_registry_text_timestamp>. We're looking for 3 reports in the current working directory as the deliverable."
+      max_turns: 100
     output_format: "markdown"
     verbose: True
+  threat_adversary:
+    options:
+      system_prompt: "You are a senior application security engineer performing an adversarial second pass on a STRIDE threat model. Skeptically verify each threat against the real codebase using Read and Grep. Keep only threats with a concrete, demonstrable attack path and confirmed source_locations. Drop generic, mitigated, or ungrounded threats. Reconcile risks and metadata counts. Output the full filtered threat_model_report JSON."
+      output_format: "json"
+      max_turns: 100
+      verbose: True
   pr_reviewer:
     options:
       diff_reviewer_system_prompt: null  # Use enhanced hardcoded prompt; set here to override

package/dist/src/__tests__/mocks/codex_sdk.d.ts

@@ -0,0 +1,53 @@
+/**
+ * Jest stub for @openai/codex-sdk (ESM-only; CI stays mock-only).
+ */
+export declare const Codex: jest.Mock<any, any, any>;
+export type CodexOptions = {
+    codexPathOverride?: string;
+    baseUrl?: string;
+    apiKey?: string;
+    config?: Record<string, unknown>;
+    env?: Record<string, string>;
+};
+export type Input = string | Array<{
+    type: string;
+    text?: string;
+    path?: string;
+}>;
+export type ThreadOptions = Record<string, unknown>;
+export type TurnOptions = {
+    outputSchema?: unknown;
+    signal?: AbortSignal;
+};
+export type ThreadEvent = {
+    type: 'item.updated';
+    item: {
+        id: string;
+        type: string;
+        text?: string;
+    };
+} | {
+    type: 'item.completed';
+    item: {
+        id: string;
+        type: string;
+        text?: string;
+    };
+} | {
+    type: 'turn.completed';
+    usage: {
+        input_tokens: number;
+        output_tokens: number;
+        cached_input_tokens: number;
+        reasoning_output_tokens: number;
+    };
+} | {
+    type: 'turn.failed';
+    error: {
+        message: string;
+    };
+} | {
+    type: 'error';
+    message: string;
+};
+//# sourceMappingURL=codex_sdk.d.ts.map

package/dist/src/__tests__/mocks/codex_sdk.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"codex_sdk.d.ts","sourceRoot":"","sources":["../../../../src/__tests__/mocks/codex_sdk.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,eAAO,MAAM,KAAK,0BAAY,CAAC;AAE/B,MAAM,MAAM,YAAY,GAAG;IACzB,iBAAiB,CAAC,EAAE,MAAM,CAAC;IAC3B,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACjC,GAAG,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAC9B,CAAC;AAEF,MAAM,MAAM,KAAK,GAAG,MAAM,GAAG,KAAK,CAAC;IAAE,IAAI,EAAE,MAAM,CAAC;IAAC,IAAI,CAAC,EAAE,MAAM,CAAC;IAAC,IAAI,CAAC,EAAE,MAAM,CAAA;CAAE,CAAC,CAAC;AAEnF,MAAM,MAAM,aAAa,GAAG,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;AACpD,MAAM,MAAM,WAAW,GAAG;IAAE,YAAY,CAAC,EAAE,OAAO,CAAC;IAAC,MAAM,CAAC,EAAE,WAAW,CAAA;CAAE,CAAC;AAE3E,MAAM,MAAM,WAAW,GACnB;IAAE,IAAI,EAAE,cAAc,CAAC;IAAC,IAAI,EAAE;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,CAAA;CAAE,GAC3E;IAAE,IAAI,EAAE,gBAAgB,CAAC;IAAC,IAAI,EAAE;QAAE,EAAE,EAAE,MAAM,CAAC;QAAC,IAAI,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,CAAA;CAAE,GAC7E;IACE,IAAI,EAAE,gBAAgB,CAAC;IACvB,KAAK,EAAE;QACL,YAAY,EAAE,MAAM,CAAC;QACrB,aAAa,EAAE,MAAM,CAAC;QACtB,mBAAmB,EAAE,MAAM,CAAC;QAC5B,uBAAuB,EAAE,MAAM,CAAC;KACjC,CAAC;CACH,GACD;IAAE,IAAI,EAAE,aAAa,CAAC;IAAC,KAAK,EAAE;QAAE,OAAO,EAAE,MAAM,CAAA;KAAE,CAAA;CAAE,GACnD;IAAE,IAAI,EAAE,OAAO,CAAC;IAAC,OAAO,EAAE,MAAM,CAAA;CAAE,CAAC"}

package/dist/src/__tests__/mocks/codex_sdk.js

@@ -0,0 +1,8 @@
+"use strict";
+/**
+ * Jest stub for @openai/codex-sdk (ESM-only; CI stays mock-only).
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.Codex = void 0;
+exports.Codex = jest.fn();
+//# sourceMappingURL=codex_sdk.js.map

package/dist/src/__tests__/mocks/codex_sdk.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"codex_sdk.js","sourceRoot":"","sources":["../../../../src/__tests__/mocks/codex_sdk.ts"],"names":[],"mappings":";AAAA;;GAEG;;;AAEU,QAAA,KAAK,GAAG,IAAI,CAAC,EAAE,EAAE,CAAC"}

package/dist/src/agent_actions.d.ts

@@ -95,7 +95,7 @@ export declare class AgentActions {
     /**
      * Threat modeler agent with options
      */
-    threatModelerAgentWithOptions(userPrompt: string): Promise<string>;
+    threatModelerAgentWithOptions(userPrompt: string, srcDir?: string | null): Promise<string>;
     /**
      * Code fixer agent with structured JSON output.
      * Returns the structured fix JSON and prints cost to stdout.
@@ -142,6 +142,10 @@ export declare class AgentActions {
      * pr_adversary: batch adversarial pass over candidate findings (structured security report out).
      */
     prAdversaryWithOptions(userPrompt: string, srcDir?: string | null): Promise<string>;
+    /**
+     * threat_adversary: adversarial second pass over first-pass threat model (filtered report out).
+     */
+    threatAdversaryWithOptions(userPrompt: string, srcDir?: string | null): Promise<string>;
     /**
      * PR diff-focused code reviewer with options
      * Optimized for reviewing only changed code from a pull request

package/dist/src/agent_actions.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"agent_actions.d.ts","sourceRoot":"","sources":["../../src/agent_actions.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAKH,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAGrC,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,yGAAyG;IACzG,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,6FAA6F;IAC7F,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,yGAAyG;IACzG,0BAA0B,CAAC,EAAE,MAAM,CAAC;IACpC,gJAAgJ;IAChJ,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,+GAA+G;IAC/G,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,iFAAiF;IACjF,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,yBAAyB,CAAC,EAAE,MAAM,CAAC;IACnC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB;;;;;;;;;;;;;OAaG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB;;;;;;;;;;;;OAYG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB;;;OAGG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;CAC5B;AAOD,qBAAa,YAAY;IACvB,OAAO,CAAC,QAAQ,CAAa;IAC7B,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,IAAI,CAAY;IACxB,OAAO,CAAC,mBAAmB,CAA2B;gBAC1C,QAAQ,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS;IAMtE;;OAEG;IACG,4BAA4B,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IAiJ/F;;;;;;;;;OASG;IACG,uBAAuB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAuHlE;;OAEG;IACG,6BAA6B,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IA4DxE;;;OAGG;IACG,oBAAoB,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IA2DvF;;;OAGG;IACG,qBAAqB,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IAqDxF;;;OAGG;IACG,2BAA2B,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAqDtE;;;OAGG;IACG,2BAA2B,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IA2D9F;;;;;;;OAOG;IACG,qCAAqC,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAsEhF;;;;;;;;;;;OAWG;IACG,sBAAsB,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IAyFzF;;OAEG;IACG,sBAAsB,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IA6DzF;;;;OAIG;IACG,uBAAuB,CAC3B,UAAU,EAAE,MAAM,EAClB,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,EACtB,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE;QAAE,cAAc,CAAC,EAAE,MAAM,CAAA;KAAE,KAAK,IAAI,EACxD,OAAO,CAAC,EAAE,OAAO,GAChB,OAAO,CAAC,MAAM,CAAC;CAsInB"}
+{"version":3,"file":"agent_actions.d.ts","sourceRoot":"","sources":["../../src/agent_actions.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAKH,OAAO,EAAE,UAAU,EAAE,MAAM,SAAS,CAAC;AAGrC,MAAM,WAAW,SAAS;IACxB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,OAAO,CAAC,EAAE,OAAO,CAAC;IAClB,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB,yGAAyG;IACzG,mBAAmB,CAAC,EAAE,MAAM,CAAC;IAC7B,6FAA6F;IAC7F,oBAAoB,CAAC,EAAE,MAAM,CAAC;IAC9B,yGAAyG;IACzG,0BAA0B,CAAC,EAAE,MAAM,CAAC;IACpC,gJAAgJ;IAChJ,sBAAsB,CAAC,EAAE,MAAM,CAAC;IAChC,+GAA+G;IAC/G,MAAM,CAAC,EAAE,MAAM,CAAC;IAChB,iFAAiF;IACjF,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,yBAAyB,CAAC,EAAE,MAAM,CAAC;IACnC,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB;;;;;;;;;;;;;OAaG;IACH,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB;;;;;;;;;;;;OAYG;IACH,eAAe,CAAC,EAAE,MAAM,CAAC;IACzB;;;OAGG;IACH,iBAAiB,CAAC,EAAE,MAAM,CAAC;CAC5B;AAOD,qBAAa,YAAY;IACvB,OAAO,CAAC,QAAQ,CAAa;IAC7B,OAAO,CAAC,WAAW,CAAS;IAC5B,OAAO,CAAC,IAAI,CAAY;IACxB,OAAO,CAAC,mBAAmB,CAA2B;gBAC1C,QAAQ,EAAE,UAAU,EAAE,WAAW,EAAE,MAAM,EAAE,IAAI,EAAE,SAAS;IAMtE;;OAEG;IACG,4BAA4B,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IAiJ/F;;;;;;;;;OASG;IACG,uBAAuB,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAuHlE;;OAEG;IACG,6BAA6B,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IA6EhG;;;OAGG;IACG,oBAAoB,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IA2DvF;;;OAGG;IACG,qBAAqB,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IAqDxF;;;OAGG;IACG,2BAA2B,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAqDtE;;;OAGG;IACG,2BAA2B,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IA2D9F;;;;;;;OAOG;IACG,qCAAqC,CAAC,UAAU,EAAE,MAAM,GAAG,OAAO,CAAC,MAAM,CAAC;IAsEhF;;;;;;;;;;;OAWG;IACG,sBAAsB,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IAyFzF;;OAEG;IACG,sBAAsB,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IA6DzF;;OAEG;IACG,0BAA0B,CAAC,UAAU,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC;IAyD7F;;;;OAIG;IACG,uBAAuB,CAC3B,UAAU,EAAE,MAAM,EAClB,MAAM,CAAC,EAAE,MAAM,GAAG,IAAI,EACtB,QAAQ,CAAC,EAAE,CAAC,MAAM,EAAE;QAAE,cAAc,CAAC,EAAE,MAAM,CAAA;KAAE,KAAK,IAAI,EACxD,OAAO,CAAC,EAAE,OAAO,GAChB,OAAO,CAAC,MAAM,CAAC;CAsInB"}