burrow-sdk 0.5.0

package/dist/integrations/claude-sdk.js

@@ -0,0 +1,127 @@
+/**
+ * Burrow adapter for the Anthropic Claude Agent SDK (TypeScript).
+ *
+ * Provides hook callbacks for PreToolUse and PostToolUse events that scan
+ * tool inputs/outputs through Burrow for prompt injection detection.
+ *
+ * @example
+ * ```ts
+ * import { BurrowGuard } from "burrow-sdk";
+ * import { createBurrowHooks } from "burrow-sdk/integrations/claude-sdk";
+ * import { query } from "@anthropic-ai/claude-agent-sdk";
+ *
+ * const guard = new BurrowGuard({ clientId: "...", clientSecret: "..." });
+ * const hooks = createBurrowHooks(guard);
+ *
+ * for await (const message of query({
+ *   prompt: "Your prompt",
+ *   options: { hooks },
+ * })) {
+ *   console.log(message);
+ * }
+ * ```
+ */
+/** Thrown when Burrow blocks a Claude SDK tool call. */
+export class BurrowBlockedError extends Error {
+    result;
+    constructor(result) {
+        super(`Burrow blocked: ${result.category} (${Math.round(result.confidence * 100)}% confidence)`);
+        this.name = "BurrowBlockedError";
+        this.result = result;
+    }
+}
+/**
+ * Extract scannable text from tool input arguments.
+ * Prioritizes known text-bearing fields, falls back to JSON serialization.
+ */
+function extractToolInputText(toolInput) {
+    const textFields = ["command", "content", "query", "text", "url", "file_path", "pattern"];
+    const parts = [];
+    for (const key of textFields) {
+        if (key in toolInput && toolInput[key] != null) {
+            parts.push(String(toolInput[key]));
+        }
+    }
+    return parts.length > 0 ? parts.join(" ").trim() : JSON.stringify(toolInput);
+}
+/**
+ * Create Claude Agent SDK hooks that scan tool calls with Burrow.
+ *
+ * Returns a hooks configuration object compatible with the `query()` function
+ * from `@anthropic-ai/claude-agent-sdk`. The hooks intercept PreToolUse
+ * and PostToolUse events to scan for prompt injection.
+ *
+ * **Per-agent identity limitation:** The Claude Agent SDK hook context does
+ * not currently carry agent identity. For multi-agent setups, create
+ * separate hooks with different `agentName` values:
+ *
+ * ```ts
+ * const orchestratorHooks = createBurrowHooks(guard, { agentName: "claude-sdk:orchestrator" });
+ * const researcherHooks = createBurrowHooks(guard, { agentName: "claude-sdk:researcher" });
+ * ```
+ */
+export function createBurrowHooks(guard, options = {}) {
+    const agentName = options.agentName ?? "claude-sdk";
+    const blockOnWarn = options.blockOnWarn ?? false;
+    const scanToolCalls = options.scanToolCalls ?? true;
+    const scanToolResults = options.scanToolResults ?? true;
+    function shouldBlock(result) {
+        return result.action === "block" || (blockOnWarn && result.action === "warn");
+    }
+    const hooks = {};
+    if (scanToolCalls) {
+        const preToolCallback = async (input, _toolUseId, _context) => {
+            const toolInput = input.tool_input ?? {};
+            const text = extractToolInputText(toolInput);
+            if (!text.trim())
+                return {};
+            const result = await guard.scan(text, {
+                contentType: "tool_call",
+                agent: agentName,
+                toolName: input.tool_name,
+            });
+            if (shouldBlock(result)) {
+                return {
+                    hookSpecificOutput: {
+                        hookEventName: input.hook_event_name,
+                        permissionDecision: "deny",
+                        permissionDecisionReason: `Blocked by Burrow: ${result.category} ` +
+                            `(${Math.round(result.confidence * 100)}% confidence)`,
+                    },
+                };
+            }
+            return {};
+        };
+        hooks.PreToolUse = [{ matcher: ".*", hooks: [preToolCallback] }];
+    }
+    if (scanToolResults) {
+        const postToolCallback = async (input, _toolUseId, _context) => {
+            // PostToolUse events include the tool output in tool_input
+            const output = input.tool_input ?? {};
+            const text = typeof output === "string" ? output : JSON.stringify(output);
+            if (!text.trim())
+                return {};
+            const result = await guard.scan(text.slice(0, 4096), {
+                contentType: "tool_response",
+                agent: agentName,
+                toolName: input.tool_name,
+            });
+            if (shouldBlock(result)) {
+                // Log warning but don't block post-execution — the tool already ran.
+                // The deny signal tells the agent to treat the result with caution.
+                return {
+                    hookSpecificOutput: {
+                        hookEventName: input.hook_event_name,
+                        burrowAction: result.action,
+                        burrowCategory: result.category,
+                        burrowConfidence: result.confidence,
+                    },
+                };
+            }
+            return {};
+        };
+        hooks.PostToolUse = [{ matcher: ".*", hooks: [postToolCallback] }];
+    }
+    return hooks;
+}
+//# sourceMappingURL=claude-sdk.js.map

package/dist/integrations/claude-sdk.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"claude-sdk.js","sourceRoot":"","sources":["../../src/integrations/claude-sdk.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;GAsBG;AAKH,wDAAwD;AACxD,MAAM,OAAO,kBAAmB,SAAQ,KAAK;IAC3B,MAAM,CAAa;IAEnC,YAAY,MAAkB;QAC5B,KAAK,CACH,mBAAmB,MAAM,CAAC,QAAQ,KAAK,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,GAAG,GAAG,CAAC,eAAe,CAC1F,CAAC;QACF,IAAI,CAAC,IAAI,GAAG,oBAAoB,CAAC;QACjC,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;CACF;AAkCD;;;GAGG;AACH,SAAS,oBAAoB,CAAC,SAAkC;IAC9D,MAAM,UAAU,GAAG,CAAC,SAAS,EAAE,SAAS,EAAE,OAAO,EAAE,MAAM,EAAE,KAAK,EAAE,WAAW,EAAE,SAAS,CAAC,CAAC;IAC1F,MAAM,KAAK,GAAa,EAAE,CAAC;IAC3B,KAAK,MAAM,GAAG,IAAI,UAAU,EAAE,CAAC;QAC7B,IAAI,GAAG,IAAI,SAAS,IAAI,SAAS,CAAC,GAAG,CAAC,IAAI,IAAI,EAAE,CAAC;YAC/C,KAAK,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;QACrC,CAAC;IACH,CAAC;IACD,OAAO,KAAK,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;AAC/E,CAAC;AAED;;;;;;;;;;;;;;;GAeG;AACH,MAAM,UAAU,iBAAiB,CAC/B,KAAkB,EAClB,UAA8B,EAAE;IAEhC,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,YAAY,CAAC;IACpD,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,KAAK,CAAC;IACjD,MAAM,aAAa,GAAG,OAAO,CAAC,aAAa,IAAI,IAAI,CAAC;IACpD,MAAM,eAAe,GAAG,OAAO,CAAC,eAAe,IAAI,IAAI,CAAC;IAExD,SAAS,WAAW,CAAC,MAAkB;QACrC,OAAO,MAAM,CAAC,MAAM,KAAK,OAAO,IAAI,CAAC,WAAW,IAAI,MAAM,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IAChF,CAAC;IAED,MAAM,KAAK,GAAkC,EAAE,CAAC;IAEhD,IAAI,aAAa,EAAE,CAAC;QAClB,MAAM,eAAe,GAAiB,KAAK,EAAE,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,EAAE;YAC1E,MAAM,SAAS,GAAG,KAAK,CAAC,UAAU,IAAI,EAAE,CAAC;YACzC,MAAM,IAAI,GAAG,oBAAoB,CAAC,SAAS,CAAC,CAAC;YAC7C,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE;gBAAE,OAAO,EAAE,CAAC;YAE5B,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE;gBACpC,WAAW,EAAE,WAAW;gBACxB,KAAK,EAAE,SAAS;gBAChB,QAAQ,EAAE,KAAK,CAAC,SAAS;aAC1B,CAAC,CAAC;YAEH,IAAI,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC;gBACxB,OAAO;oBACL,kBAAkB,EAAE;wBAClB,aAAa,EAAE,KAAK,CAAC,eAAe;wBACpC,kBAAkB,EAAE,MAAM;wBAC1B,wBAAwB,EACtB,sBAAsB,MAAM,CAAC,QAAQ,GAAG;4BACxC,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,GAAG,GAAG,CAAC,eAAe;qBACzD;iBACF,CAAC;YACJ,CAAC;YAED,OAAO,EAAE,CAAC;QACZ,CAAC,CAAC;QAEF,KAAK,CAAC,UAAU,GAAG,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,eAAe,CAAC,EAAE,CAAC,CAAC;IACnE,CAAC;IAED,IAAI,eAAe,EAAE,CAAC;QACpB,MAAM,gBAAgB,GAAiB,KAAK,EAAE,KAAK,EAAE,UAAU,EAAE,QAAQ,EAAE,EAAE;YAC3E,2DAA2D;YAC3D,MAAM,MAAM,GAAG,KAAK,CAAC,UAAU,IAAI,EAAE,CAAC;YACtC,MAAM,IAAI,GAAG,OAAO,MAAM,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;YAC1E,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE;gBAAE,OAAO,EAAE,CAAC;YAE5B,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,EAAE,IAAI,CAAC,EAAE;gBACnD,WAAW,EAAE,eAAe;gBAC5B,KAAK,EAAE,SAAS;gBAChB,QAAQ,EAAE,KAAK,CAAC,SAAS;aAC1B,CAAC,CAAC;YAEH,IAAI,WAAW,CAAC,MAAM,CAAC,EAAE,CAAC;gBACxB,qEAAqE;gBACrE,oEAAoE;gBACpE,OAAO;oBACL,kBAAkB,EAAE;wBAClB,aAAa,EAAE,KAAK,CAAC,eAAe;wBACpC,YAAY,EAAE,MAAM,CAAC,MAAM;wBAC3B,cAAc,EAAE,MAAM,CAAC,QAAQ;wBAC/B,gBAAgB,EAAE,MAAM,CAAC,UAAU;qBACpC;iBACF,CAAC;YACJ,CAAC;YAED,OAAO,EAAE,CAAC;QACZ,CAAC,CAAC;QAEF,KAAK,CAAC,WAAW,GAAG,CAAC,EAAE,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,gBAAgB,CAAC,EAAE,CAAC,CAAC;IACrE,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC"}

package/dist/integrations/langchain.d.ts

@@ -0,0 +1,88 @@
+/**
+ * Burrow adapter for LangChain.js.
+ *
+ * Provides a callback handler that scans messages before they reach the LLM.
+ *
+ * @example
+ * ```ts
+ * import { BurrowGuard } from "burrow-sdk";
+ * import { createBurrowCallback } from "burrow-sdk/integrations/langchain";
+ *
+ * const guard = new BurrowGuard({ clientId: "...", clientSecret: "..." });
+ * const callback = createBurrowCallback(guard);
+ *
+ * const model = new ChatOpenAI({ model: "gpt-4", callbacks: [callback] });
+ * ```
+ */
+import type { BurrowGuard } from "../index.js";
+/** Thrown when Burrow blocks a LangChain message. */
+export declare class BurrowScanError extends Error {
+    readonly result: {
+        action: string;
+        category: string;
+        confidence: number;
+    };
+    constructor(result: {
+        action: string;
+        category: string;
+        confidence: number;
+    });
+}
+export interface BurrowCallbackOptions {
+    /** Agent name for scan context. */
+    agent?: string;
+    /** If true, also block on "warn" verdicts. */
+    blockOnWarn?: boolean;
+}
+/**
+ * Create a LangChain.js callback handler that scans messages with Burrow.
+ *
+ * Returns an object implementing the BaseCallbackHandler interface from
+ * `@langchain/core/callbacks`. Pass it to any LangChain model or chain
+ * via the `callbacks` option.
+ *
+ * The handler is framework-agnostic — it only uses the callback method
+ * signatures so you don't need `@langchain/core` installed to import this
+ * module. The actual types are resolved at runtime by LangChain.
+ */
+export declare function createBurrowCallback(guard: BurrowGuard, options?: BurrowCallbackOptions): {
+    name: string;
+    /**
+     * Scan prompts before a completion-style LLM call.
+     */
+    handleLLMStart(_serialized: Record<string, unknown>, prompts: string[]): Promise<void>;
+    /**
+     * Scan messages before a chat-style LLM call.
+     */
+    handleChatModelStart(_serialized: Record<string, unknown>, messages: Array<Array<{
+        content?: string;
+        type?: string;
+    }>>): Promise<void>;
+    /**
+     * Scan tool output after execution.
+     */
+    handleToolEnd(output: string, kwargs?: Record<string, unknown>): Promise<void>;
+};
+export interface BurrowCallbackV2Options {
+    /** Fallback agent name when LangGraph node is unavailable. */
+    defaultAgent?: string;
+    /** If true, also block on "warn" verdicts. */
+    blockOnWarn?: boolean;
+}
+/**
+ * Create a LangChain.js callback handler with per-agent identity.
+ *
+ * Automatically extracts the LangGraph node name from callback metadata,
+ * producing agent names like `langchain:retriever` or `langchain:writer`.
+ * Falls back to `defaultAgent` when no node name is available.
+ */
+export declare function createBurrowCallbackV2(guard: BurrowGuard, options?: BurrowCallbackV2Options): {
+    name: string;
+    handleLLMStart(_serialized: Record<string, unknown>, prompts: string[], kwargs?: Record<string, unknown>): Promise<void>;
+    handleChatModelStart(_serialized: Record<string, unknown>, messages: Array<Array<{
+        content?: string;
+        type?: string;
+    }>>, kwargs?: Record<string, unknown>): Promise<void>;
+    handleToolEnd(output: string, kwargs?: Record<string, unknown>): Promise<void>;
+};
+//# sourceMappingURL=langchain.d.ts.map

package/dist/integrations/langchain.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"langchain.d.ts","sourceRoot":"","sources":["../../src/integrations/langchain.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE/C,qDAAqD;AACrD,qBAAa,eAAgB,SAAQ,KAAK;IACxC,SAAgB,MAAM,EAAE;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAC;QAAC,UAAU,EAAE,MAAM,CAAA;KAAE,CAAC;gBAErE,MAAM,EAAE;QAAE,MAAM,EAAE,MAAM,CAAC;QAAC,QAAQ,EAAE,MAAM,CAAC;QAAC,UAAU,EAAE,MAAM,CAAA;KAAE;CAO7E;AAED,MAAM,WAAW,qBAAqB;IACpC,mCAAmC;IACnC,KAAK,CAAC,EAAE,MAAM,CAAC;IACf,8CAA8C;IAC9C,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAED;;;;;;;;;;GAUG;AACH,wBAAgB,oBAAoB,CAClC,KAAK,EAAE,WAAW,EAClB,OAAO,GAAE,qBAA0B;;IAYjC;;OAEG;gCAEY,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,WAC3B,MAAM,EAAE,GAChB,OAAO,CAAC,IAAI,CAAC;IAWhB;;OAEG;sCAEY,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,YAC1B,KAAK,CAAC,KAAK,CAAC;QAAE,OAAO,CAAC,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC,GAC1D,OAAO,CAAC,IAAI,CAAC;IAgBhB;;OAEG;0BACyB,MAAM,WAAW,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;EAWvF;AAED,MAAM,WAAW,uBAAuB;IACtC,8DAA8D;IAC9D,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,8CAA8C;IAC9C,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAED;;;;;;GAMG;AACH,wBAAgB,sBAAsB,CACpC,KAAK,EAAE,WAAW,EAClB,OAAO,GAAE,uBAA4B;;gCAsBpB,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,WAC3B,MAAM,EAAE,WACR,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC/B,OAAO,CAAC,IAAI,CAAC;sCAaD,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,YAC1B,KAAK,CAAC,KAAK,CAAC;QAAE,OAAO,CAAC,EAAE,MAAM,CAAC;QAAC,IAAI,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,CAAC,WAClD,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAC/B,OAAO,CAAC,IAAI,CAAC;0BAiBY,MAAM,WAAW,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,GAAG,OAAO,CAAC,IAAI,CAAC;EAYvF"}

package/dist/integrations/langchain.js

@@ -0,0 +1,162 @@
+/**
+ * Burrow adapter for LangChain.js.
+ *
+ * Provides a callback handler that scans messages before they reach the LLM.
+ *
+ * @example
+ * ```ts
+ * import { BurrowGuard } from "burrow-sdk";
+ * import { createBurrowCallback } from "burrow-sdk/integrations/langchain";
+ *
+ * const guard = new BurrowGuard({ clientId: "...", clientSecret: "..." });
+ * const callback = createBurrowCallback(guard);
+ *
+ * const model = new ChatOpenAI({ model: "gpt-4", callbacks: [callback] });
+ * ```
+ */
+/** Thrown when Burrow blocks a LangChain message. */
+export class BurrowScanError extends Error {
+    result;
+    constructor(result) {
+        super(`Burrow blocked message: ${result.category} (${Math.round(result.confidence * 100)}% confidence)`);
+        this.name = "BurrowScanError";
+        this.result = result;
+    }
+}
+/**
+ * Create a LangChain.js callback handler that scans messages with Burrow.
+ *
+ * Returns an object implementing the BaseCallbackHandler interface from
+ * `@langchain/core/callbacks`. Pass it to any LangChain model or chain
+ * via the `callbacks` option.
+ *
+ * The handler is framework-agnostic — it only uses the callback method
+ * signatures so you don't need `@langchain/core` installed to import this
+ * module. The actual types are resolved at runtime by LangChain.
+ */
+export function createBurrowCallback(guard, options = {}) {
+    const agent = options.agent ?? "langchain";
+    const blockOnWarn = options.blockOnWarn ?? false;
+    function shouldBlock(result) {
+        return result.action === "block" || (blockOnWarn && result.action === "warn");
+    }
+    return {
+        name: "burrow_guard",
+        /**
+         * Scan prompts before a completion-style LLM call.
+         */
+        async handleLLMStart(_serialized, prompts) {
+            for (const prompt of prompts) {
+                if (!prompt.trim())
+                    continue;
+                const result = await guard.scan(prompt, {
+                    contentType: "user_prompt",
+                    agent,
+                });
+                if (shouldBlock(result))
+                    throw new BurrowScanError(result);
+            }
+        },
+        /**
+         * Scan messages before a chat-style LLM call.
+         */
+        async handleChatModelStart(_serialized, messages) {
+            for (const batch of messages) {
+                for (const msg of batch) {
+                    const content = typeof msg.content === "string" ? msg.content : String(msg.content ?? "");
+                    if (!content.trim())
+                        continue;
+                    const contentType = msg.type === "tool" ? "tool_response" : "user_prompt";
+                    const result = await guard.scan(content, {
+                        contentType: contentType,
+                        agent,
+                    });
+                    if (shouldBlock(result))
+                        throw new BurrowScanError(result);
+                }
+            }
+        },
+        /**
+         * Scan tool output after execution.
+         */
+        async handleToolEnd(output, kwargs) {
+            if (typeof output === "string" && output.trim()) {
+                const result = await guard.scan(output, {
+                    contentType: "tool_response",
+                    agent,
+                    toolName: kwargs?.name,
+                });
+                if (shouldBlock(result))
+                    throw new BurrowScanError(result);
+            }
+        },
+    };
+}
+/**
+ * Create a LangChain.js callback handler with per-agent identity.
+ *
+ * Automatically extracts the LangGraph node name from callback metadata,
+ * producing agent names like `langchain:retriever` or `langchain:writer`.
+ * Falls back to `defaultAgent` when no node name is available.
+ */
+export function createBurrowCallbackV2(guard, options = {}) {
+    const defaultAgent = options.defaultAgent ?? "langchain";
+    const blockOnWarn = options.blockOnWarn ?? false;
+    function shouldBlock(result) {
+        return result.action === "block" || (blockOnWarn && result.action === "warn");
+    }
+    function resolveAgent(kwargs) {
+        const metadata = kwargs?.metadata;
+        const node = metadata?.langgraph_node;
+        if (typeof node === "string" && node) {
+            return `langchain:${node}`;
+        }
+        return defaultAgent;
+    }
+    return {
+        name: "burrow_guard_v2",
+        async handleLLMStart(_serialized, prompts, kwargs) {
+            const agent = resolveAgent(kwargs);
+            for (const prompt of prompts) {
+                if (!prompt.trim())
+                    continue;
+                const result = await guard.scan(prompt, {
+                    contentType: "user_prompt",
+                    agent,
+                });
+                if (shouldBlock(result))
+                    throw new BurrowScanError(result);
+            }
+        },
+        async handleChatModelStart(_serialized, messages, kwargs) {
+            const agent = resolveAgent(kwargs);
+            for (const batch of messages) {
+                for (const msg of batch) {
+                    const content = typeof msg.content === "string" ? msg.content : String(msg.content ?? "");
+                    if (!content.trim())
+                        continue;
+                    const contentType = msg.type === "tool" ? "tool_response" : "user_prompt";
+                    const result = await guard.scan(content, {
+                        contentType: contentType,
+                        agent,
+                    });
+                    if (shouldBlock(result))
+                        throw new BurrowScanError(result);
+                }
+            }
+        },
+        async handleToolEnd(output, kwargs) {
+            if (typeof output === "string" && output.trim()) {
+                const agent = resolveAgent(kwargs);
+                const result = await guard.scan(output, {
+                    contentType: "tool_response",
+                    agent,
+                    toolName: kwargs?.name,
+                });
+                if (shouldBlock(result))
+                    throw new BurrowScanError(result);
+            }
+        },
+    };
+}
+//# sourceMappingURL=langchain.js.map

package/dist/integrations/langchain.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"langchain.js","sourceRoot":"","sources":["../../src/integrations/langchain.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;GAeG;AAIH,qDAAqD;AACrD,MAAM,OAAO,eAAgB,SAAQ,KAAK;IACxB,MAAM,CAA2D;IAEjF,YAAY,MAAgE;QAC1E,KAAK,CACH,2BAA2B,MAAM,CAAC,QAAQ,KAAK,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,UAAU,GAAG,GAAG,CAAC,eAAe,CAClG,CAAC;QACF,IAAI,CAAC,IAAI,GAAG,iBAAiB,CAAC;QAC9B,IAAI,CAAC,MAAM,GAAG,MAAM,CAAC;IACvB,CAAC;CACF;AASD;;;;;;;;;;GAUG;AACH,MAAM,UAAU,oBAAoB,CAClC,KAAkB,EAClB,UAAiC,EAAE;IAEnC,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,WAAW,CAAC;IAC3C,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,KAAK,CAAC;IAEjD,SAAS,WAAW,CAAC,MAA8C;QACjE,OAAO,MAAM,CAAC,MAAM,KAAK,OAAO,IAAI,CAAC,WAAW,IAAI,MAAM,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IAChF,CAAC;IAED,OAAO;QACL,IAAI,EAAE,cAAc;QAEpB;;WAEG;QACH,KAAK,CAAC,cAAc,CAClB,WAAoC,EACpC,OAAiB;YAEjB,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;gBAC7B,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE;oBAAE,SAAS;gBAC7B,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE;oBACtC,WAAW,EAAE,aAAa;oBAC1B,KAAK;iBACN,CAAC,CAAC;gBACH,IAAI,WAAW,CAAC,MAAM,CAAC;oBAAE,MAAM,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;YAC7D,CAAC;QACH,CAAC;QAED;;WAEG;QACH,KAAK,CAAC,oBAAoB,CACxB,WAAoC,EACpC,QAA2D;YAE3D,KAAK,MAAM,KAAK,IAAI,QAAQ,EAAE,CAAC;gBAC7B,KAAK,MAAM,GAAG,IAAI,KAAK,EAAE,CAAC;oBACxB,MAAM,OAAO,GACX,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC;oBAC5E,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE;wBAAE,SAAS;oBAC9B,MAAM,WAAW,GAAG,GAAG,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,aAAa,CAAC;oBAC1E,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,OAAO,EAAE;wBACvC,WAAW,EAAE,WAA8C;wBAC3D,KAAK;qBACN,CAAC,CAAC;oBACH,IAAI,WAAW,CAAC,MAAM,CAAC;wBAAE,MAAM,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;gBAC7D,CAAC;YACH,CAAC;QACH,CAAC;QAED;;WAEG;QACH,KAAK,CAAC,aAAa,CAAC,MAAc,EAAE,MAAgC;YAClE,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC;gBAChD,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE;oBACtC,WAAW,EAAE,eAAe;oBAC5B,KAAK;oBACL,QAAQ,EAAG,MAA8C,EAAE,IAA0B;iBACtF,CAAC,CAAC;gBACH,IAAI,WAAW,CAAC,MAAM,CAAC;oBAAE,MAAM,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;YAC7D,CAAC;QACH,CAAC;KACF,CAAC;AACJ,CAAC;AASD;;;;;;GAMG;AACH,MAAM,UAAU,sBAAsB,CACpC,KAAkB,EAClB,UAAmC,EAAE;IAErC,MAAM,YAAY,GAAG,OAAO,CAAC,YAAY,IAAI,WAAW,CAAC;IACzD,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,KAAK,CAAC;IAEjD,SAAS,WAAW,CAAC,MAA8C;QACjE,OAAO,MAAM,CAAC,MAAM,KAAK,OAAO,IAAI,CAAC,WAAW,IAAI,MAAM,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IAChF,CAAC;IAED,SAAS,YAAY,CAAC,MAAgC;QACpD,MAAM,QAAQ,GAAG,MAAM,EAAE,QAA+C,CAAC;QACzE,MAAM,IAAI,GAAG,QAAQ,EAAE,cAAc,CAAC;QACtC,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,IAAI,EAAE,CAAC;YACrC,OAAO,aAAa,IAAI,EAAE,CAAC;QAC7B,CAAC;QACD,OAAO,YAAY,CAAC;IACtB,CAAC;IAED,OAAO;QACL,IAAI,EAAE,iBAAiB;QAEvB,KAAK,CAAC,cAAc,CAClB,WAAoC,EACpC,OAAiB,EACjB,MAAgC;YAEhC,MAAM,KAAK,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;YACnC,KAAK,MAAM,MAAM,IAAI,OAAO,EAAE,CAAC;gBAC7B,IAAI,CAAC,MAAM,CAAC,IAAI,EAAE;oBAAE,SAAS;gBAC7B,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE;oBACtC,WAAW,EAAE,aAAa;oBAC1B,KAAK;iBACN,CAAC,CAAC;gBACH,IAAI,WAAW,CAAC,MAAM,CAAC;oBAAE,MAAM,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;YAC7D,CAAC;QACH,CAAC;QAED,KAAK,CAAC,oBAAoB,CACxB,WAAoC,EACpC,QAA2D,EAC3D,MAAgC;YAEhC,MAAM,KAAK,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;YACnC,KAAK,MAAM,KAAK,IAAI,QAAQ,EAAE,CAAC;gBAC7B,KAAK,MAAM,GAAG,IAAI,KAAK,EAAE,CAAC;oBACxB,MAAM,OAAO,GACX,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,OAAO,IAAI,EAAE,CAAC,CAAC;oBAC5E,IAAI,CAAC,OAAO,CAAC,IAAI,EAAE;wBAAE,SAAS;oBAC9B,MAAM,WAAW,GAAG,GAAG,CAAC,IAAI,KAAK,MAAM,CAAC,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,aAAa,CAAC;oBAC1E,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,OAAO,EAAE;wBACvC,WAAW,EAAE,WAA8C;wBAC3D,KAAK;qBACN,CAAC,CAAC;oBACH,IAAI,WAAW,CAAC,MAAM,CAAC;wBAAE,MAAM,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;gBAC7D,CAAC;YACH,CAAC;QACH,CAAC;QAED,KAAK,CAAC,aAAa,CAAC,MAAc,EAAE,MAAgC;YAClE,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,MAAM,CAAC,IAAI,EAAE,EAAE,CAAC;gBAChD,MAAM,KAAK,GAAG,YAAY,CAAC,MAAM,CAAC,CAAC;gBACnC,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,MAAM,EAAE;oBACtC,WAAW,EAAE,eAAe;oBAC5B,KAAK;oBACL,QAAQ,EAAG,MAA8C,EAAE,IAA0B;iBACtF,CAAC,CAAC;gBACH,IAAI,WAAW,CAAC,MAAM,CAAC;oBAAE,MAAM,IAAI,eAAe,CAAC,MAAM,CAAC,CAAC;YAC7D,CAAC;QACH,CAAC;KACF,CAAC;AACJ,CAAC"}

package/dist/integrations/openai-agents.d.ts

@@ -0,0 +1,112 @@
+/**
+ * Burrow adapter for the OpenAI Agents SDK (JavaScript/TypeScript).
+ *
+ * Provides InputGuardrail and OutputGuardrail objects that scan messages
+ * with Burrow before/after agent processing.
+ *
+ * **Tool-level scanning limitation:** The OpenAI Agents SDK guardrails
+ * operate at the input/output level only — they see the full agent input
+ * or output text, but do **not** have access to individual `toolName` or
+ * `toolArgs`. This is an architectural limitation of the Agents SDK
+ * guardrail system.
+ *
+ * For tool-level scanning, call `guard.scan()` directly inside your tool
+ * implementations:
+ *
+ * ```ts
+ * const result = await guard.scan(query, {
+ *   contentType: "tool_call",
+ *   toolName: "my_tool",
+ * });
+ * if (result.action === "block") throw new Error("Blocked by security policy.");
+ * ```
+ *
+ * @example
+ * ```ts
+ * import { BurrowGuard } from "burrow-sdk";
+ * import { createBurrowGuardrail } from "burrow-sdk/integrations/openai-agents";
+ * import { Agent } from "@openai/agents";
+ *
+ * const guard = new BurrowGuard({ clientId: "...", clientSecret: "..." });
+ * const burrowRail = createBurrowGuardrail(guard);
+ *
+ * const agent = new Agent({
+ *   name: "my-agent",
+ *   inputGuardrails: [burrowRail],
+ * });
+ * ```
+ */
+import type { BurrowGuard } from "../index.js";
+export interface GuardrailFunctionOutput {
+    outputInfo: Record<string, unknown>;
+    tripwireTriggered: boolean;
+}
+export interface BurrowGuardrailOptions {
+    /** Agent name for scan context. */
+    agentName?: string;
+    /** If true, also trigger on "warn" verdicts. */
+    blockOnWarn?: boolean;
+}
+/**
+ * Create an OpenAI Agents SDK input guardrail powered by Burrow.
+ *
+ * The returned object conforms to the `InputGuardrail` interface from
+ * `@openai/agents`. It scans the input text and triggers if injection
+ * is detected.
+ */
+export declare function createBurrowGuardrail(guard: BurrowGuard, options?: BurrowGuardrailOptions): {
+    name: string;
+    execute({ input, }: {
+        input: unknown;
+        context: unknown;
+    }): Promise<GuardrailFunctionOutput>;
+};
+/**
+ * Create an OpenAI Agents SDK output guardrail powered by Burrow.
+ *
+ * Scans agent outputs for injection content that may have been
+ * triggered by indirect injection in tool results.
+ */
+export declare function createBurrowOutputGuardrail(guard: BurrowGuard, options?: BurrowGuardrailOptions): {
+    name: string;
+    execute({ agentOutput, }: {
+        agentOutput: unknown;
+        context: unknown;
+    }): Promise<GuardrailFunctionOutput>;
+};
+export interface BurrowGuardrailV2Options {
+    /** If true, also trigger on "warn" verdicts. */
+    blockOnWarn?: boolean;
+}
+/**
+ * Create an OpenAI Agents SDK input guardrail with per-agent identity.
+ *
+ * Automatically reads `agent.name` from the guardrail context to produce
+ * agent names like `openai-agents:research-agent`.
+ */
+export declare function createBurrowGuardrailV2(guard: BurrowGuard, options?: BurrowGuardrailV2Options): {
+    name: string;
+    execute({ input, agent, }: {
+        input: unknown;
+        agent?: {
+            name?: string;
+        };
+        context: unknown;
+    }): Promise<GuardrailFunctionOutput>;
+};
+/**
+ * Create an OpenAI Agents SDK output guardrail with per-agent identity.
+ *
+ * Automatically reads `agent.name` from the guardrail context.
+ */
+export declare function createBurrowOutputGuardrailV2(guard: BurrowGuard, options?: BurrowGuardrailV2Options): {
+    name: string;
+    execute({ agentOutput, agent, }: {
+        agentOutput: unknown;
+        agent?: {
+            name?: string;
+        };
+        context: unknown;
+    }): Promise<GuardrailFunctionOutput>;
+};
+//# sourceMappingURL=openai-agents.d.ts.map

package/dist/integrations/openai-agents.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"openai-agents.d.ts","sourceRoot":"","sources":["../../src/integrations/openai-agents.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAqCG;AAEH,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,aAAa,CAAC;AAE/C,MAAM,WAAW,uBAAuB;IACtC,UAAU,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACpC,iBAAiB,EAAE,OAAO,CAAC;CAC5B;AAED,MAAM,WAAW,sBAAsB;IACrC,mCAAmC;IACnC,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,gDAAgD;IAChD,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAsCD;;;;;;GAMG;AACH,wBAAgB,qBAAqB,CACnC,KAAK,EAAE,WAAW,EAClB,OAAO,GAAE,sBAA2B;;wBAS/B;QACD,KAAK,EAAE,OAAO,CAAC;QACf,OAAO,EAAE,OAAO,CAAC;KAClB,GAAG,OAAO,CAAC,uBAAuB,CAAC;EAIvC;AAED;;;;;GAKG;AACH,wBAAgB,2BAA2B,CACzC,KAAK,EAAE,WAAW,EAClB,OAAO,GAAE,sBAA2B;;8BAS/B;QACD,WAAW,EAAE,OAAO,CAAC;QACrB,OAAO,EAAE,OAAO,CAAC;KAClB,GAAG,OAAO,CAAC,uBAAuB,CAAC;EAQvC;AAED,MAAM,WAAW,wBAAwB;IACvC,gDAAgD;IAChD,WAAW,CAAC,EAAE,OAAO,CAAC;CACvB;AAED;;;;;GAKG;AACH,wBAAgB,uBAAuB,CACrC,KAAK,EAAE,WAAW,EAClB,OAAO,GAAE,wBAA6B;;+BASjC;QACD,KAAK,EAAE,OAAO,CAAC;QACf,KAAK,CAAC,EAAE;YAAE,IAAI,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QAC1B,OAAO,EAAE,OAAO,CAAC;KAClB,GAAG,OAAO,CAAC,uBAAuB,CAAC;EAOvC;AAED;;;;GAIG;AACH,wBAAgB,6BAA6B,CAC3C,KAAK,EAAE,WAAW,EAClB,OAAO,GAAE,wBAA6B;;qCASjC;QACD,WAAW,EAAE,OAAO,CAAC;QACrB,KAAK,CAAC,EAAE;YAAE,IAAI,CAAC,EAAE,MAAM,CAAA;SAAE,CAAC;QAC1B,OAAO,EAAE,OAAO,CAAC;KAClB,GAAG,OAAO,CAAC,uBAAuB,CAAC;EAWvC"}

package/dist/integrations/openai-agents.js

@@ -0,0 +1,139 @@
+/**
+ * Burrow adapter for the OpenAI Agents SDK (JavaScript/TypeScript).
+ *
+ * Provides InputGuardrail and OutputGuardrail objects that scan messages
+ * with Burrow before/after agent processing.
+ *
+ * **Tool-level scanning limitation:** The OpenAI Agents SDK guardrails
+ * operate at the input/output level only — they see the full agent input
+ * or output text, but do **not** have access to individual `toolName` or
+ * `toolArgs`. This is an architectural limitation of the Agents SDK
+ * guardrail system.
+ *
+ * For tool-level scanning, call `guard.scan()` directly inside your tool
+ * implementations:
+ *
+ * ```ts
+ * const result = await guard.scan(query, {
+ *   contentType: "tool_call",
+ *   toolName: "my_tool",
+ * });
+ * if (result.action === "block") throw new Error("Blocked by security policy.");
+ * ```
+ *
+ * @example
+ * ```ts
+ * import { BurrowGuard } from "burrow-sdk";
+ * import { createBurrowGuardrail } from "burrow-sdk/integrations/openai-agents";
+ * import { Agent } from "@openai/agents";
+ *
+ * const guard = new BurrowGuard({ clientId: "...", clientSecret: "..." });
+ * const burrowRail = createBurrowGuardrail(guard);
+ *
+ * const agent = new Agent({
+ *   name: "my-agent",
+ *   inputGuardrails: [burrowRail],
+ * });
+ * ```
+ */
+/**
+ * Shared guardrail execution logic for input and output guardrails.
+ */
+async function executeGuardrail(guard, data, contentType, agentName, blockOnWarn) {
+    const text = typeof data === "string" ? data : String(data ?? "");
+    if (!text.trim()) {
+        return {
+            outputInfo: { action: "allow", reason: "empty" },
+            tripwireTriggered: false,
+        };
+    }
+    const result = await guard.scan(text, {
+        contentType,
+        agent: agentName,
+    });
+    const triggered = result.action === "block" || (blockOnWarn && result.action === "warn");
+    return {
+        outputInfo: {
+            action: result.action,
+            category: result.category,
+            confidence: result.confidence,
+            request_id: result.request_id,
+        },
+        tripwireTriggered: triggered,
+    };
+}
+/**
+ * Create an OpenAI Agents SDK input guardrail powered by Burrow.
+ *
+ * The returned object conforms to the `InputGuardrail` interface from
+ * `@openai/agents`. It scans the input text and triggers if injection
+ * is detected.
+ */
+export function createBurrowGuardrail(guard, options = {}) {
+    const agentName = options.agentName ?? "openai-agents";
+    const blockOnWarn = options.blockOnWarn ?? false;
+    return {
+        name: "Burrow Injection Guard",
+        async execute({ input, }) {
+            return executeGuardrail(guard, input, "user_prompt", agentName, blockOnWarn);
+        },
+    };
+}
+/**
+ * Create an OpenAI Agents SDK output guardrail powered by Burrow.
+ *
+ * Scans agent outputs for injection content that may have been
+ * triggered by indirect injection in tool results.
+ */
+export function createBurrowOutputGuardrail(guard, options = {}) {
+    const agentName = options.agentName ?? "openai-agents";
+    const blockOnWarn = options.blockOnWarn ?? false;
+    return {
+        name: "Burrow Output Guard",
+        async execute({ agentOutput, }) {
+            const text = typeof agentOutput === "object" && agentOutput !== null
+                ? JSON.stringify(agentOutput)
+                : String(agentOutput ?? "");
+            return executeGuardrail(guard, text, "tool_response", agentName, blockOnWarn);
+        },
+    };
+}
+/**
+ * Create an OpenAI Agents SDK input guardrail with per-agent identity.
+ *
+ * Automatically reads `agent.name` from the guardrail context to produce
+ * agent names like `openai-agents:research-agent`.
+ */
+export function createBurrowGuardrailV2(guard, options = {}) {
+    const blockOnWarn = options.blockOnWarn ?? false;
+    return {
+        name: "Burrow Injection Guard v2",
+        async execute({ input, agent, }) {
+            const agentName = agent?.name
+                ? `openai-agents:${agent.name}`
+                : "openai-agents";
+            return executeGuardrail(guard, input, "user_prompt", agentName, blockOnWarn);
+        },
+    };
+}
+/**
+ * Create an OpenAI Agents SDK output guardrail with per-agent identity.
+ *
+ * Automatically reads `agent.name` from the guardrail context.
+ */
+export function createBurrowOutputGuardrailV2(guard, options = {}) {
+    const blockOnWarn = options.blockOnWarn ?? false;
+    return {
+        name: "Burrow Output Guard v2",
+        async execute({ agentOutput, agent, }) {
+            const agentName = agent?.name
+                ? `openai-agents:${agent.name}`
+                : "openai-agents";
+            const text = typeof agentOutput === "object" && agentOutput !== null
+                ? JSON.stringify(agentOutput)
+                : String(agentOutput ?? "");
+            return executeGuardrail(guard, text, "tool_response", agentName, blockOnWarn);
+        },
+    };
+}
+//# sourceMappingURL=openai-agents.js.map

package/dist/integrations/openai-agents.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"openai-agents.js","sourceRoot":"","sources":["../../src/integrations/openai-agents.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAqCG;AAgBH;;GAEG;AACH,KAAK,UAAU,gBAAgB,CAC7B,KAAkB,EAClB,IAAa,EACb,WAA4C,EAC5C,SAAiB,EACjB,WAAoB;IAEpB,MAAM,IAAI,GAAG,OAAO,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC;IAClE,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC;QACjB,OAAO;YACL,UAAU,EAAE,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE;YAChD,iBAAiB,EAAE,KAAK;SACzB,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAG,MAAM,KAAK,CAAC,IAAI,CAAC,IAAI,EAAE;QACpC,WAAW;QACX,KAAK,EAAE,SAAS;KACjB,CAAC,CAAC;IAEH,MAAM,SAAS,GAAG,MAAM,CAAC,MAAM,KAAK,OAAO,IAAI,CAAC,WAAW,IAAI,MAAM,CAAC,MAAM,KAAK,MAAM,CAAC,CAAC;IAEzF,OAAO;QACL,UAAU,EAAE;YACV,MAAM,EAAE,MAAM,CAAC,MAAM;YACrB,QAAQ,EAAE,MAAM,CAAC,QAAQ;YACzB,UAAU,EAAE,MAAM,CAAC,UAAU;YAC7B,UAAU,EAAE,MAAM,CAAC,UAAU;SAC9B;QACD,iBAAiB,EAAE,SAAS;KAC7B,CAAC;AACJ,CAAC;AAED;;;;;;GAMG;AACH,MAAM,UAAU,qBAAqB,CACnC,KAAkB,EAClB,UAAkC,EAAE;IAEpC,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,eAAe,CAAC;IACvD,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,KAAK,CAAC;IAEjD,OAAO;QACL,IAAI,EAAE,wBAAwB;QAC9B,KAAK,CAAC,OAAO,CAAC,EACZ,KAAK,GAIN;YACC,OAAO,gBAAgB,CAAC,KAAK,EAAE,KAAK,EAAE,aAAa,EAAE,SAAS,EAAE,WAAW,CAAC,CAAC;QAC/E,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;;;;GAKG;AACH,MAAM,UAAU,2BAA2B,CACzC,KAAkB,EAClB,UAAkC,EAAE;IAEpC,MAAM,SAAS,GAAG,OAAO,CAAC,SAAS,IAAI,eAAe,CAAC;IACvD,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,KAAK,CAAC;IAEjD,OAAO;QACL,IAAI,EAAE,qBAAqB;QAC3B,KAAK,CAAC,OAAO,CAAC,EACZ,WAAW,GAIZ;YACC,MAAM,IAAI,GACR,OAAO,WAAW,KAAK,QAAQ,IAAI,WAAW,KAAK,IAAI;gBACrD,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC;gBAC7B,CAAC,CAAC,MAAM,CAAC,WAAW,IAAI,EAAE,CAAC,CAAC;YAChC,OAAO,gBAAgB,CAAC,KAAK,EAAE,IAAI,EAAE,eAAe,EAAE,SAAS,EAAE,WAAW,CAAC,CAAC;QAChF,CAAC;KACF,CAAC;AACJ,CAAC;AAOD;;;;;GAKG;AACH,MAAM,UAAU,uBAAuB,CACrC,KAAkB,EAClB,UAAoC,EAAE;IAEtC,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,KAAK,CAAC;IAEjD,OAAO;QACL,IAAI,EAAE,2BAA2B;QACjC,KAAK,CAAC,OAAO,CAAC,EACZ,KAAK,EACL,KAAK,GAKN;YACC,MAAM,SAAS,GAAG,KAAK,EAAE,IAAI;gBAC3B,CAAC,CAAC,iBAAiB,KAAK,CAAC,IAAI,EAAE;gBAC/B,CAAC,CAAC,eAAe,CAAC;YACpB,OAAO,gBAAgB,CAAC,KAAK,EAAE,KAAK,EAAE,aAAa,EAAE,SAAS,EAAE,WAAW,CAAC,CAAC;QAC/E,CAAC;KACF,CAAC;AACJ,CAAC;AAED;;;;GAIG;AACH,MAAM,UAAU,6BAA6B,CAC3C,KAAkB,EAClB,UAAoC,EAAE;IAEtC,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,KAAK,CAAC;IAEjD,OAAO;QACL,IAAI,EAAE,wBAAwB;QAC9B,KAAK,CAAC,OAAO,CAAC,EACZ,WAAW,EACX,KAAK,GAKN;YACC,MAAM,SAAS,GAAG,KAAK,EAAE,IAAI;gBAC3B,CAAC,CAAC,iBAAiB,KAAK,CAAC,IAAI,EAAE;gBAC/B,CAAC,CAAC,eAAe,CAAC;YACpB,MAAM,IAAI,GACR,OAAO,WAAW,KAAK,QAAQ,IAAI,WAAW,KAAK,IAAI;gBACrD,CAAC,CAAC,IAAI,CAAC,SAAS,CAAC,WAAW,CAAC;gBAC7B,CAAC,CAAC,MAAM,CAAC,WAAW,IAAI,EAAE,CAAC,CAAC;YAChC,OAAO,gBAAgB,CAAC,KAAK,EAAE,IAAI,EAAE,eAAe,EAAE,SAAS,EAAE,WAAW,CAAC,CAAC;QAChF,CAAC;KACF,CAAC;AACJ,CAAC"}