npm - driftdetect-core - Versions diffs - 0.4.0 → 0.4.2 - Mend

driftdetect-core 0.4.0 → 0.4.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (237) hide show

package/dist/boundaries/boundary-scanner.d.ts +76 -0
package/dist/boundaries/boundary-scanner.d.ts.map +1 -0
package/dist/boundaries/boundary-scanner.js +801 -0
package/dist/boundaries/boundary-scanner.js.map +1 -0
package/dist/boundaries/data-access-learner.d.ts +126 -0
package/dist/boundaries/data-access-learner.d.ts.map +1 -0
package/dist/boundaries/data-access-learner.js +486 -0
package/dist/boundaries/data-access-learner.js.map +1 -0
package/dist/boundaries/index.d.ts +6 -0
package/dist/boundaries/index.d.ts.map +1 -1
package/dist/boundaries/index.js +6 -0
package/dist/boundaries/index.js.map +1 -1
package/dist/boundaries/security-prioritizer.d.ts +118 -0
package/dist/boundaries/security-prioritizer.d.ts.map +1 -0
package/dist/boundaries/security-prioritizer.js +316 -0
package/dist/boundaries/security-prioritizer.js.map +1 -0
package/dist/call-graph/analysis/coverage-analyzer.d.ts +201 -0
package/dist/call-graph/analysis/coverage-analyzer.d.ts.map +1 -0
package/dist/call-graph/analysis/coverage-analyzer.js +553 -0
package/dist/call-graph/analysis/coverage-analyzer.js.map +1 -0
package/dist/call-graph/analysis/dead-code-detector.d.ts +145 -0
package/dist/call-graph/analysis/dead-code-detector.d.ts.map +1 -0
package/dist/call-graph/analysis/dead-code-detector.js +391 -0
package/dist/call-graph/analysis/dead-code-detector.js.map +1 -0
package/dist/call-graph/analysis/graph-builder.d.ts +142 -0
package/dist/call-graph/analysis/graph-builder.d.ts.map +1 -0
package/dist/call-graph/analysis/graph-builder.js +624 -0
package/dist/call-graph/analysis/graph-builder.js.map +1 -0
package/dist/call-graph/analysis/impact-analyzer.d.ts +150 -0
package/dist/call-graph/analysis/impact-analyzer.d.ts.map +1 -0
package/dist/call-graph/analysis/impact-analyzer.js +329 -0
package/dist/call-graph/analysis/impact-analyzer.js.map +1 -0
package/dist/call-graph/analysis/index.d.ts +11 -0
package/dist/call-graph/analysis/index.d.ts.map +1 -0
package/dist/call-graph/analysis/index.js +9 -0
package/dist/call-graph/analysis/index.js.map +1 -0
package/dist/call-graph/analysis/path-finder.d.ts +117 -0
package/dist/call-graph/analysis/path-finder.d.ts.map +1 -0
package/dist/call-graph/analysis/path-finder.js +360 -0
package/dist/call-graph/analysis/path-finder.js.map +1 -0
package/dist/call-graph/analysis/reachability.d.ts +56 -0
package/dist/call-graph/analysis/reachability.d.ts.map +1 -0
package/dist/call-graph/analysis/reachability.js +357 -0
package/dist/call-graph/analysis/reachability.js.map +1 -0
package/dist/call-graph/demo.d.ts +11 -0
package/dist/call-graph/demo.d.ts.map +1 -0
package/dist/call-graph/demo.js +339 -0
package/dist/call-graph/demo.js.map +1 -0
package/dist/call-graph/enrichment/enrichment-engine.d.ts +126 -0
package/dist/call-graph/enrichment/enrichment-engine.d.ts.map +1 -0
package/dist/call-graph/enrichment/enrichment-engine.js +760 -0
package/dist/call-graph/enrichment/enrichment-engine.js.map +1 -0
package/dist/call-graph/enrichment/impact-scorer.d.ts +59 -0
package/dist/call-graph/enrichment/impact-scorer.d.ts.map +1 -0
package/dist/call-graph/enrichment/impact-scorer.js +328 -0
package/dist/call-graph/enrichment/impact-scorer.js.map +1 -0
package/dist/call-graph/enrichment/index.d.ts +12 -0
package/dist/call-graph/enrichment/index.d.ts.map +1 -0
package/dist/call-graph/enrichment/index.js +15 -0
package/dist/call-graph/enrichment/index.js.map +1 -0
package/dist/call-graph/enrichment/remediation-generator.d.ts +41 -0
package/dist/call-graph/enrichment/remediation-generator.d.ts.map +1 -0
package/dist/call-graph/enrichment/remediation-generator.js +609 -0
package/dist/call-graph/enrichment/remediation-generator.js.map +1 -0
package/dist/call-graph/enrichment/sensitivity-classifier.d.ts +71 -0
package/dist/call-graph/enrichment/sensitivity-classifier.d.ts.map +1 -0
package/dist/call-graph/enrichment/sensitivity-classifier.js +454 -0
package/dist/call-graph/enrichment/sensitivity-classifier.js.map +1 -0
package/dist/call-graph/enrichment/types.d.ts +402 -0
package/dist/call-graph/enrichment/types.d.ts.map +1 -0
package/dist/call-graph/enrichment/types.js +9 -0
package/dist/call-graph/enrichment/types.js.map +1 -0
package/dist/call-graph/extractors/base-extractor.d.ts +112 -0
package/dist/call-graph/extractors/base-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/base-extractor.js +140 -0
package/dist/call-graph/extractors/base-extractor.js.map +1 -0
package/dist/call-graph/extractors/csharp-data-access-extractor.d.ts +76 -0
package/dist/call-graph/extractors/csharp-data-access-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/csharp-data-access-extractor.js +387 -0
package/dist/call-graph/extractors/csharp-data-access-extractor.js.map +1 -0
package/dist/call-graph/extractors/csharp-extractor.d.ts +87 -0
package/dist/call-graph/extractors/csharp-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/csharp-extractor.js +470 -0
package/dist/call-graph/extractors/csharp-extractor.js.map +1 -0
package/dist/call-graph/extractors/data-access-extractor.d.ts +76 -0
package/dist/call-graph/extractors/data-access-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/data-access-extractor.js +234 -0
package/dist/call-graph/extractors/data-access-extractor.js.map +1 -0
package/dist/call-graph/extractors/index.d.ts +26 -0
package/dist/call-graph/extractors/index.d.ts.map +1 -0
package/dist/call-graph/extractors/index.js +36 -0
package/dist/call-graph/extractors/index.js.map +1 -0
package/dist/call-graph/extractors/java-data-access-extractor.d.ts +101 -0
package/dist/call-graph/extractors/java-data-access-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/java-data-access-extractor.js +611 -0
package/dist/call-graph/extractors/java-data-access-extractor.js.map +1 -0
package/dist/call-graph/extractors/java-extractor.d.ts +87 -0
package/dist/call-graph/extractors/java-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/java-extractor.js +510 -0
package/dist/call-graph/extractors/java-extractor.js.map +1 -0
package/dist/call-graph/extractors/php-data-access-extractor.d.ts +93 -0
package/dist/call-graph/extractors/php-data-access-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/php-data-access-extractor.js +589 -0
package/dist/call-graph/extractors/php-data-access-extractor.js.map +1 -0
package/dist/call-graph/extractors/php-extractor.d.ts +104 -0
package/dist/call-graph/extractors/php-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/php-extractor.js +619 -0
package/dist/call-graph/extractors/php-extractor.js.map +1 -0
package/dist/call-graph/extractors/python-data-access-extractor.d.ts +90 -0
package/dist/call-graph/extractors/python-data-access-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/python-data-access-extractor.js +537 -0
package/dist/call-graph/extractors/python-data-access-extractor.js.map +1 -0
package/dist/call-graph/extractors/python-extractor.d.ts +98 -0
package/dist/call-graph/extractors/python-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/python-extractor.js +681 -0
package/dist/call-graph/extractors/python-extractor.js.map +1 -0
package/dist/call-graph/extractors/semantic-data-access-scanner.d.ts +91 -0
package/dist/call-graph/extractors/semantic-data-access-scanner.d.ts.map +1 -0
package/dist/call-graph/extractors/semantic-data-access-scanner.js +498 -0
package/dist/call-graph/extractors/semantic-data-access-scanner.js.map +1 -0
package/dist/call-graph/extractors/typescript-data-access-extractor.d.ts +122 -0
package/dist/call-graph/extractors/typescript-data-access-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/typescript-data-access-extractor.js +788 -0
package/dist/call-graph/extractors/typescript-data-access-extractor.js.map +1 -0
package/dist/call-graph/extractors/typescript-extractor.d.ts +145 -0
package/dist/call-graph/extractors/typescript-extractor.d.ts.map +1 -0
package/dist/call-graph/extractors/typescript-extractor.js +904 -0
package/dist/call-graph/extractors/typescript-extractor.js.map +1 -0
package/dist/call-graph/index.d.ts +127 -0
package/dist/call-graph/index.d.ts.map +1 -0
package/dist/call-graph/index.js +247 -0
package/dist/call-graph/index.js.map +1 -0
package/dist/call-graph/store/call-graph-store.d.ts +70 -0
package/dist/call-graph/store/call-graph-store.d.ts.map +1 -0
package/dist/call-graph/store/call-graph-store.js +210 -0
package/dist/call-graph/store/call-graph-store.js.map +1 -0
package/dist/call-graph/store/index.d.ts +7 -0
package/dist/call-graph/store/index.d.ts.map +1 -0
package/dist/call-graph/store/index.js +7 -0
package/dist/call-graph/store/index.js.map +1 -0
package/dist/call-graph/types.d.ts +376 -0
package/dist/call-graph/types.d.ts.map +1 -0
package/dist/call-graph/types.js +8 -0
package/dist/call-graph/types.js.map +1 -0
package/dist/index.d.ts +8 -0
package/dist/index.d.ts.map +1 -1
package/dist/index.js +12 -0
package/dist/index.js.map +1 -1
package/dist/lake/callgraph-shard-store.d.ts +168 -0
package/dist/lake/callgraph-shard-store.d.ts.map +1 -0
package/dist/lake/callgraph-shard-store.js +466 -0
package/dist/lake/callgraph-shard-store.js.map +1 -0
package/dist/lake/examples-store.d.ts +127 -0
package/dist/lake/examples-store.d.ts.map +1 -0
package/dist/lake/examples-store.js +389 -0
package/dist/lake/examples-store.js.map +1 -0
package/dist/lake/index-store.d.ts +82 -0
package/dist/lake/index-store.d.ts.map +1 -0
package/dist/lake/index-store.js +359 -0
package/dist/lake/index-store.js.map +1 -0
package/dist/lake/index.d.ts +93 -0
package/dist/lake/index.d.ts.map +1 -0
package/dist/lake/index.js +138 -0
package/dist/lake/index.js.map +1 -0
package/dist/lake/lake.bak/index-store.d.ts +82 -0
package/dist/lake/lake.bak/index-store.d.ts.map +1 -0
package/dist/lake/lake.bak/index-store.js +357 -0
package/dist/lake/lake.bak/index-store.js.map +1 -0
package/dist/lake/lake.bak/index.d.ts +81 -0
package/dist/lake/lake.bak/index.d.ts.map +1 -0
package/dist/lake/lake.bak/index.js +114 -0
package/dist/lake/lake.bak/index.js.map +1 -0
package/dist/lake/lake.bak/manifest-store.d.ts +51 -0
package/dist/lake/lake.bak/manifest-store.d.ts.map +1 -0
package/dist/lake/lake.bak/manifest-store.js +347 -0
package/dist/lake/lake.bak/manifest-store.js.map +1 -0
package/dist/lake/lake.bak/query-engine.d.ts +112 -0
package/dist/lake/lake.bak/query-engine.d.ts.map +1 -0
package/dist/lake/lake.bak/query-engine.js +370 -0
package/dist/lake/lake.bak/query-engine.js.map +1 -0
package/dist/lake/lake.bak/types.d.ts +428 -0
package/dist/lake/lake.bak/types.d.ts.map +1 -0
package/dist/lake/lake.bak/types.js +46 -0
package/dist/lake/lake.bak/types.js.map +1 -0
package/dist/lake/lake.bak/view-materializer.d.ts +70 -0
package/dist/lake/lake.bak/view-materializer.d.ts.map +1 -0
package/dist/lake/lake.bak/view-materializer.js +314 -0
package/dist/lake/lake.bak/view-materializer.js.map +1 -0
package/dist/lake/lake.bak/view-store.d.ts +57 -0
package/dist/lake/lake.bak/view-store.d.ts.map +1 -0
package/dist/lake/lake.bak/view-store.js +348 -0
package/dist/lake/lake.bak/view-store.js.map +1 -0
package/dist/lake/manifest-store.d.ts +51 -0
package/dist/lake/manifest-store.d.ts.map +1 -0
package/dist/lake/manifest-store.js +348 -0
package/dist/lake/manifest-store.js.map +1 -0
package/dist/lake/pattern-shard-store.d.ts +87 -0
package/dist/lake/pattern-shard-store.d.ts.map +1 -0
package/dist/lake/pattern-shard-store.js +347 -0
package/dist/lake/pattern-shard-store.js.map +1 -0
package/dist/lake/query-engine.d.ts +124 -0
package/dist/lake/query-engine.d.ts.map +1 -0
package/dist/lake/query-engine.js +453 -0
package/dist/lake/query-engine.js.map +1 -0
package/dist/lake/security-shard-store.d.ts +156 -0
package/dist/lake/security-shard-store.d.ts.map +1 -0
package/dist/lake/security-shard-store.js +498 -0
package/dist/lake/security-shard-store.js.map +1 -0
package/dist/lake/types.d.ts +428 -0
package/dist/lake/types.d.ts.map +1 -0
package/dist/lake/types.js +46 -0
package/dist/lake/types.js.map +1 -0
package/dist/lake/view-materializer.d.ts +70 -0
package/dist/lake/view-materializer.d.ts.map +1 -0
package/dist/lake/view-materializer.js +314 -0
package/dist/lake/view-materializer.js.map +1 -0
package/dist/lake/view-store.d.ts +57 -0
package/dist/lake/view-store.d.ts.map +1 -0
package/dist/lake/view-store.js +348 -0
package/dist/lake/view-store.js.map +1 -0
package/dist/parsers/tree-sitter/index.d.ts +1 -0
package/dist/parsers/tree-sitter/index.d.ts.map +1 -1
package/dist/parsers/tree-sitter/index.js +4 -0
package/dist/parsers/tree-sitter/index.js.map +1 -1
package/dist/parsers/tree-sitter/typescript-loader.d.ts +58 -0
package/dist/parsers/tree-sitter/typescript-loader.d.ts.map +1 -0
package/dist/parsers/tree-sitter/typescript-loader.js +250 -0
package/dist/parsers/tree-sitter/typescript-loader.js.map +1 -0
package/dist/store/project-config.d.ts +154 -0
package/dist/store/project-config.d.ts.map +1 -0
package/dist/store/project-config.js +235 -0
package/dist/store/project-config.js.map +1 -0
package/dist/store/project-registry.d.ts +241 -0
package/dist/store/project-registry.d.ts.map +1 -0
package/dist/store/project-registry.js +557 -0
package/dist/store/project-registry.js.map +1 -0
package/package.json +7 -7

package/dist/call-graph/enrichment/sensitivity-classifier.d.ts ADDED Viewed

@@ -0,0 +1,71 @@
+/**
+ * Sensitivity Classifier
+ *
+ * Enterprise-grade classification of data sensitivity.
+ * Maps fields to sensitivity types and regulatory implications.
+ */
+import type { SensitivityType } from '../../boundaries/types.js';
+import type { DataSensitivityProfile, DataRegulation } from './types.js';
+/**
+ * Pattern-based sensitivity detection
+ */
+interface SensitivityPattern {
+    /** Regex patterns to match field names */
+    patterns: RegExp[];
+    /** Sensitivity type */
+    type: SensitivityType;
+    /** Applicable regulations */
+    regulations: DataRegulation[];
+    /** Base impact score */
+    baseScore: number;
+    /** Rationale for classification */
+    rationale: string;
+}
+/**
+ * Classifies data sensitivity based on field names and context
+ */
+export declare class SensitivityClassifier {
+    private customPatterns;
+    private fieldOverrides;
+    /**
+     * Add custom sensitivity patterns
+     */
+    addPattern(pattern: SensitivityPattern): void;
+    /**
+     * Override classification for a specific field
+     */
+    overrideField(fieldKey: string, profile: DataSensitivityProfile): void;
+    /**
+     * Classify a field's sensitivity
+     */
+    classify(field: string, table?: string): DataSensitivityProfile;
+    /**
+     * Classify multiple fields and return aggregated regulations
+     */
+    classifyMultiple(fields: Array<{
+        field: string;
+        table?: string;
+    }>): {
+        profiles: DataSensitivityProfile[];
+        regulations: DataRegulation[];
+        maxScore: number;
+    };
+    /**
+     * Get all regulations that apply to a sensitivity type
+     */
+    getRegulationsForType(type: SensitivityType): DataRegulation[];
+    /**
+     * Check if a field matches any of the patterns
+     */
+    private matchesPattern;
+}
+/**
+ * Create a new sensitivity classifier
+ */
+export declare function createSensitivityClassifier(): SensitivityClassifier;
+/**
+ * Get the default sensitivity classifier
+ */
+export declare function getDefaultClassifier(): SensitivityClassifier;
+export {};
+//# sourceMappingURL=sensitivity-classifier.d.ts.map

package/dist/call-graph/enrichment/sensitivity-classifier.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"sensitivity-classifier.d.ts","sourceRoot":"","sources":["../../../src/call-graph/enrichment/sensitivity-classifier.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,eAAe,EAAE,MAAM,2BAA2B,CAAC;AACjE,OAAO,KAAK,EACV,sBAAsB,EACtB,cAAc,EACf,MAAM,YAAY,CAAC;AAMpB;;GAEG;AACH,UAAU,kBAAkB;IAC1B,0CAA0C;IAC1C,QAAQ,EAAE,MAAM,EAAE,CAAC;IACnB,uBAAuB;IACvB,IAAI,EAAE,eAAe,CAAC;IACtB,6BAA6B;IAC7B,WAAW,EAAE,cAAc,EAAE,CAAC;IAC9B,wBAAwB;IACxB,SAAS,EAAE,MAAM,CAAC;IAClB,mCAAmC;IACnC,SAAS,EAAE,MAAM,CAAC;CACnB;AA8UD;;GAEG;AACH,qBAAa,qBAAqB;IAChC,OAAO,CAAC,cAAc,CAA4B;IAClD,OAAO,CAAC,cAAc,CAAkD;IAExE;;OAEG;IACH,UAAU,CAAC,OAAO,EAAE,kBAAkB,GAAG,IAAI;IAI7C;;OAEG;IACH,aAAa,CAAC,QAAQ,EAAE,MAAM,EAAE,OAAO,EAAE,sBAAsB,GAAG,IAAI;IAItE;;OAEG;IACH,QAAQ,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,CAAC,EAAE,MAAM,GAAG,sBAAsB;IAyC/D;;OAEG;IACH,gBAAgB,CAAC,MAAM,EAAE,KAAK,CAAC;QAAE,KAAK,EAAE,MAAM,CAAC;QAAC,KAAK,CAAC,EAAE,MAAM,CAAA;KAAE,CAAC,GAAG;QAClE,QAAQ,EAAE,sBAAsB,EAAE,CAAC;QACnC,WAAW,EAAE,cAAc,EAAE,CAAC;QAC9B,QAAQ,EAAE,MAAM,CAAC;KAClB;IAqBD;;OAEG;IACH,qBAAqB,CAAC,IAAI,EAAE,eAAe,GAAG,cAAc,EAAE;IAc9D;;OAEG;IACH,OAAO,CAAC,cAAc;CAIvB;AAED;;GAEG;AACH,wBAAgB,2BAA2B,IAAI,qBAAqB,CAEnE;AAOD;;GAEG;AACH,wBAAgB,oBAAoB,IAAI,qBAAqB,CAK5D"}

package/dist/call-graph/enrichment/sensitivity-classifier.js ADDED Viewed

@@ -0,0 +1,454 @@
+/**
+ * Sensitivity Classifier
+ *
+ * Enterprise-grade classification of data sensitivity.
+ * Maps fields to sensitivity types and regulatory implications.
+ */
+/**
+ * Comprehensive sensitivity patterns based on industry standards
+ */
+const SENSITIVITY_PATTERNS = [
+    // ============================================================================
+    // CREDENTIALS - Highest sensitivity (authentication/authorization)
+    // ============================================================================
+    {
+        patterns: [
+            /^password$/i,
+            /password[_-]?hash$/i,
+            /hashed[_-]?password$/i,
+            /pwd$/i,
+            /passwd$/i,
+            /pass[_-]?phrase$/i,
+        ],
+        type: 'credentials',
+        regulations: ['pci-dss', 'gdpr', 'ccpa', 'hipaa'],
+        baseScore: 100,
+        rationale: 'Password hashes enable account takeover if exposed',
+    },
+    {
+        patterns: [
+            /api[_-]?key$/i,
+            /api[_-]?secret$/i,
+            /secret[_-]?key$/i,
+            /access[_-]?key$/i,
+            /private[_-]?key$/i,
+        ],
+        type: 'credentials',
+        regulations: ['pci-dss', 'sox'],
+        baseScore: 95,
+        rationale: 'API keys provide system access and must be protected',
+    },
+    {
+        patterns: [
+            /^token$/i,
+            /auth[_-]?token$/i,
+            /access[_-]?token$/i,
+            /refresh[_-]?token$/i,
+            /session[_-]?token$/i,
+            /jwt$/i,
+            /bearer[_-]?token$/i,
+        ],
+        type: 'credentials',
+        regulations: ['pci-dss', 'gdpr'],
+        baseScore: 90,
+        rationale: 'Authentication tokens enable session hijacking',
+    },
+    {
+        patterns: [
+            /^secret$/i,
+            /client[_-]?secret$/i,
+            /encryption[_-]?key$/i,
+            /signing[_-]?key$/i,
+            /master[_-]?key$/i,
+        ],
+        type: 'credentials',
+        regulations: ['pci-dss', 'hipaa', 'sox'],
+        baseScore: 98,
+        rationale: 'Cryptographic secrets compromise entire system security',
+    },
+    {
+        patterns: [
+            /mfa[_-]?secret$/i,
+            /totp[_-]?secret$/i,
+            /two[_-]?factor[_-]?secret$/i,
+            /recovery[_-]?code/i,
+            /backup[_-]?code/i,
+        ],
+        type: 'credentials',
+        regulations: ['pci-dss', 'gdpr'],
+        baseScore: 92,
+        rationale: 'MFA secrets bypass two-factor authentication',
+    },
+    // ============================================================================
+    // FINANCIAL - Payment and financial data
+    // ============================================================================
+    {
+        patterns: [
+            /credit[_-]?card/i,
+            /card[_-]?number/i,
+            /cc[_-]?number/i,
+            /pan$/i,
+            /primary[_-]?account[_-]?number/i,
+        ],
+        type: 'financial',
+        regulations: ['pci-dss', 'gdpr', 'ccpa'],
+        baseScore: 100,
+        rationale: 'Credit card numbers are PCI-DSS regulated cardholder data',
+    },
+    {
+        patterns: [
+            /^cvv$/i,
+            /^cvc$/i,
+            /^cvv2$/i,
+            /security[_-]?code$/i,
+            /card[_-]?verification/i,
+        ],
+        type: 'financial',
+        regulations: ['pci-dss'],
+        baseScore: 100,
+        rationale: 'CVV codes must never be stored per PCI-DSS',
+    },
+    {
+        patterns: [
+            /bank[_-]?account/i,
+            /account[_-]?number/i,
+            /routing[_-]?number/i,
+            /iban$/i,
+            /swift[_-]?code/i,
+            /bic$/i,
+        ],
+        type: 'financial',
+        regulations: ['pci-dss', 'glba', 'gdpr'],
+        baseScore: 90,
+        rationale: 'Bank account details enable financial fraud',
+    },
+    {
+        patterns: [
+            /^salary$/i,
+            /^income$/i,
+            /^wage$/i,
+            /wage[_-]?rate/i,
+            /wage[_-]?override/i,
+            /wage[_-]?cents/i,
+            /hourly[_-]?rate/i,
+            /rate[_-]?cents/i,
+            /compensation/i,
+            /net[_-]?worth/i,
+            /tax[_-]?return/i,
+            /pay[_-]?rate/i,
+            /payroll/i,
+        ],
+        type: 'financial',
+        regulations: ['gdpr', 'ccpa', 'glba'],
+        baseScore: 75,
+        rationale: 'Wage and compensation data is sensitive financial information',
+    },
+    // ============================================================================
+    // PII - Personally Identifiable Information
+    // ============================================================================
+    {
+        patterns: [
+            /^ssn$/i,
+            /social[_-]?security/i,
+            /national[_-]?id/i,
+            /national[_-]?insurance/i,
+            /tax[_-]?id/i,
+            /tin$/i,
+            /ein$/i,
+        ],
+        type: 'pii',
+        regulations: ['gdpr', 'ccpa', 'hipaa', 'glba'],
+        baseScore: 100,
+        rationale: 'Government IDs enable identity theft',
+    },
+    {
+        patterns: [
+            /passport[_-]?number/i,
+            /driver[_-]?license/i,
+            /license[_-]?number/i,
+            /id[_-]?number/i,
+        ],
+        type: 'pii',
+        regulations: ['gdpr', 'ccpa'],
+        baseScore: 90,
+        rationale: 'Government-issued ID numbers are high-value PII',
+    },
+    {
+        patterns: [
+            /date[_-]?of[_-]?birth/i,
+            /^dob$/i,
+            /birth[_-]?date/i,
+            /birthday/i,
+        ],
+        type: 'pii',
+        regulations: ['gdpr', 'ccpa', 'coppa', 'hipaa'],
+        baseScore: 70,
+        rationale: 'Date of birth is a key identity verification element',
+    },
+    {
+        patterns: [
+            /^email$/i,
+            /email[_-]?address/i,
+            /e[_-]?mail/i,
+        ],
+        type: 'pii',
+        regulations: ['gdpr', 'ccpa', 'coppa'],
+        baseScore: 50,
+        rationale: 'Email addresses are personal identifiers',
+    },
+    {
+        patterns: [
+            /phone[_-]?number/i,
+            /mobile[_-]?number/i,
+            /cell[_-]?phone/i,
+            /telephone/i,
+        ],
+        type: 'pii',
+        regulations: ['gdpr', 'ccpa', 'coppa'],
+        baseScore: 55,
+        rationale: 'Phone numbers are personal contact information',
+    },
+    {
+        patterns: [
+            /^address$/i,
+            /street[_-]?address/i,
+            /home[_-]?address/i,
+            /mailing[_-]?address/i,
+            /postal[_-]?address/i,
+        ],
+        type: 'pii',
+        regulations: ['gdpr', 'ccpa'],
+        baseScore: 60,
+        rationale: 'Physical addresses reveal location and enable stalking',
+    },
+    {
+        patterns: [
+            /^ip[_-]?address$/i,
+            /client[_-]?ip/i,
+            /user[_-]?ip/i,
+        ],
+        type: 'pii',
+        regulations: ['gdpr'],
+        baseScore: 40,
+        rationale: 'IP addresses are personal data under GDPR',
+    },
+    {
+        patterns: [
+            /biometric/i,
+            /fingerprint/i,
+            /face[_-]?id/i,
+            /retina/i,
+            /voice[_-]?print/i,
+        ],
+        type: 'pii',
+        regulations: ['gdpr', 'ccpa', 'hipaa'],
+        baseScore: 95,
+        rationale: 'Biometric data is immutable and highly sensitive',
+    },
+    {
+        patterns: [
+            /^race$/i,
+            /ethnicity/i,
+            /religion/i,
+            /political[_-]?affiliation/i,
+            /sexual[_-]?orientation/i,
+            /gender[_-]?identity/i,
+        ],
+        type: 'pii',
+        regulations: ['gdpr', 'ccpa'],
+        baseScore: 85,
+        rationale: 'Special category data under GDPR Article 9',
+    },
+    // ============================================================================
+    // HEALTH - Protected Health Information
+    // ============================================================================
+    {
+        patterns: [
+            /diagnosis/i,
+            /medical[_-]?condition/i,
+            /health[_-]?condition/i,
+            /disease/i,
+            /illness/i,
+        ],
+        type: 'health',
+        regulations: ['hipaa', 'gdpr'],
+        baseScore: 95,
+        rationale: 'Medical diagnoses are protected health information',
+    },
+    {
+        patterns: [
+            /prescription/i,
+            /medication/i,
+            /drug[_-]?name/i,
+            /dosage/i,
+        ],
+        type: 'health',
+        regulations: ['hipaa', 'gdpr'],
+        baseScore: 90,
+        rationale: 'Prescription data reveals health conditions',
+    },
+    {
+        patterns: [
+            /medical[_-]?record/i,
+            /health[_-]?record/i,
+            /patient[_-]?record/i,
+            /ehr$/i,
+            /emr$/i,
+        ],
+        type: 'health',
+        regulations: ['hipaa', 'gdpr'],
+        baseScore: 100,
+        rationale: 'Medical records are core PHI under HIPAA',
+    },
+    {
+        patterns: [
+            /insurance[_-]?id/i,
+            /insurance[_-]?member[_-]?id/i,
+            /policy[_-]?number/i,
+            /group[_-]?number/i,
+            /health[_-]?plan[_-]?id/i,
+            /beneficiary[_-]?id/i,
+        ],
+        type: 'health',
+        regulations: ['hipaa', 'gdpr'],
+        baseScore: 75,
+        rationale: 'Insurance identifiers are PHI under HIPAA',
+    },
+    {
+        patterns: [
+            /lab[_-]?result/i,
+            /test[_-]?result/i,
+            /blood[_-]?type/i,
+            /genetic/i,
+            /dna/i,
+        ],
+        type: 'health',
+        regulations: ['hipaa', 'gdpr'],
+        baseScore: 95,
+        rationale: 'Lab results and genetic data are highly sensitive PHI',
+    },
+];
+// ============================================================================
+// Sensitivity Classifier
+// ============================================================================
+/**
+ * Classifies data sensitivity based on field names and context
+ */
+export class SensitivityClassifier {
+    customPatterns = [];
+    fieldOverrides = new Map();
+    /**
+     * Add custom sensitivity patterns
+     */
+    addPattern(pattern) {
+        this.customPatterns.push(pattern);
+    }
+    /**
+     * Override classification for a specific field
+     */
+    overrideField(fieldKey, profile) {
+        this.fieldOverrides.set(fieldKey.toLowerCase(), profile);
+    }
+    /**
+     * Classify a field's sensitivity
+     */
+    classify(field, table) {
+        // Check for explicit override first
+        const fieldKey = table ? `${table}.${field}`.toLowerCase() : field.toLowerCase();
+        const override = this.fieldOverrides.get(fieldKey);
+        if (override) {
+            return override;
+        }
+        // Check custom patterns first (higher priority)
+        for (const pattern of this.customPatterns) {
+            if (this.matchesPattern(field, pattern.patterns)) {
+                return {
+                    type: pattern.type,
+                    regulations: pattern.regulations,
+                    baseScore: pattern.baseScore,
+                    rationale: pattern.rationale,
+                };
+            }
+        }
+        // Check built-in patterns
+        for (const pattern of SENSITIVITY_PATTERNS) {
+            if (this.matchesPattern(field, pattern.patterns)) {
+                return {
+                    type: pattern.type,
+                    regulations: pattern.regulations,
+                    baseScore: pattern.baseScore,
+                    rationale: pattern.rationale,
+                };
+            }
+        }
+        // Default: unknown sensitivity
+        return {
+            type: 'unknown',
+            regulations: [],
+            baseScore: 10,
+            rationale: 'No sensitive data patterns detected',
+        };
+    }
+    /**
+     * Classify multiple fields and return aggregated regulations
+     */
+    classifyMultiple(fields) {
+        const profiles = [];
+        const regulationsSet = new Set();
+        let maxScore = 0;
+        for (const { field, table } of fields) {
+            const profile = this.classify(field, table);
+            profiles.push(profile);
+            maxScore = Math.max(maxScore, profile.baseScore);
+            for (const reg of profile.regulations) {
+                regulationsSet.add(reg);
+            }
+        }
+        return {
+            profiles,
+            regulations: Array.from(regulationsSet),
+            maxScore,
+        };
+    }
+    /**
+     * Get all regulations that apply to a sensitivity type
+     */
+    getRegulationsForType(type) {
+        const regulations = new Set();
+        for (const pattern of [...SENSITIVITY_PATTERNS, ...this.customPatterns]) {
+            if (pattern.type === type) {
+                for (const reg of pattern.regulations) {
+                    regulations.add(reg);
+                }
+            }
+        }
+        return Array.from(regulations);
+    }
+    /**
+     * Check if a field matches any of the patterns
+     */
+    matchesPattern(field, patterns) {
+        const normalizedField = field.toLowerCase();
+        return patterns.some((pattern) => pattern.test(normalizedField));
+    }
+}
+/**
+ * Create a new sensitivity classifier
+ */
+export function createSensitivityClassifier() {
+    return new SensitivityClassifier();
+}
+/**
+ * Default singleton instance
+ */
+let defaultClassifier = null;
+/**
+ * Get the default sensitivity classifier
+ */
+export function getDefaultClassifier() {
+    if (!defaultClassifier) {
+        defaultClassifier = createSensitivityClassifier();
+    }
+    return defaultClassifier;
+}
+//# sourceMappingURL=sensitivity-classifier.js.map

package/dist/call-graph/enrichment/sensitivity-classifier.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"sensitivity-classifier.js","sourceRoot":"","sources":["../../../src/call-graph/enrichment/sensitivity-classifier.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AA4BH;;GAEG;AACH,MAAM,oBAAoB,GAAyB;IACjD,+EAA+E;IAC/E,mEAAmE;IACnE,+EAA+E;IAC/E;QACE,QAAQ,EAAE;YACR,aAAa;YACb,qBAAqB;YACrB,uBAAuB;YACvB,OAAO;YACP,UAAU;YACV,mBAAmB;SACpB;QACD,IAAI,EAAE,aAAa;QACnB,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC;QACjD,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,oDAAoD;KAChE;IACD;QACE,QAAQ,EAAE;YACR,eAAe;YACf,kBAAkB;YAClB,kBAAkB;YAClB,kBAAkB;YAClB,mBAAmB;SACpB;QACD,IAAI,EAAE,aAAa;QACnB,WAAW,EAAE,CAAC,SAAS,EAAE,KAAK,CAAC;QAC/B,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,sDAAsD;KAClE;IACD;QACE,QAAQ,EAAE;YACR,UAAU;YACV,kBAAkB;YAClB,oBAAoB;YACpB,qBAAqB;YACrB,qBAAqB;YACrB,OAAO;YACP,oBAAoB;SACrB;QACD,IAAI,EAAE,aAAa;QACnB,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;QAChC,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,gDAAgD;KAC5D;IACD;QACE,QAAQ,EAAE;YACR,WAAW;YACX,qBAAqB;YACrB,sBAAsB;YACtB,mBAAmB;YACnB,kBAAkB;SACnB;QACD,IAAI,EAAE,aAAa;QACnB,WAAW,EAAE,CAAC,SAAS,EAAE,OAAO,EAAE,KAAK,CAAC;QACxC,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,yDAAyD;KACrE;IACD;QACE,QAAQ,EAAE;YACR,kBAAkB;YAClB,mBAAmB;YACnB,6BAA6B;YAC7B,oBAAoB;YACpB,kBAAkB;SACnB;QACD,IAAI,EAAE,aAAa;QACnB,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,CAAC;QAChC,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,8CAA8C;KAC1D;IAED,+EAA+E;IAC/E,yCAAyC;IACzC,+EAA+E;IAC/E;QACE,QAAQ,EAAE;YACR,kBAAkB;YAClB,kBAAkB;YAClB,gBAAgB;YAChB,OAAO;YACP,iCAAiC;SAClC;QACD,IAAI,EAAE,WAAW;QACjB,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,CAAC;QACxC,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,2DAA2D;KACvE;IACD;QACE,QAAQ,EAAE;YACR,QAAQ;YACR,QAAQ;YACR,SAAS;YACT,qBAAqB;YACrB,wBAAwB;SACzB;QACD,IAAI,EAAE,WAAW;QACjB,WAAW,EAAE,CAAC,SAAS,CAAC;QACxB,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,4CAA4C;KACxD;IACD;QACE,QAAQ,EAAE;YACR,mBAAmB;YACnB,qBAAqB;YACrB,qBAAqB;YACrB,QAAQ;YACR,iBAAiB;YACjB,OAAO;SACR;QACD,IAAI,EAAE,WAAW;QACjB,WAAW,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,MAAM,CAAC;QACxC,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,6CAA6C;KACzD;IACD;QACE,QAAQ,EAAE;YACR,WAAW;YACX,WAAW;YACX,SAAS;YACT,gBAAgB;YAChB,oBAAoB;YACpB,iBAAiB;YACjB,kBAAkB;YAClB,iBAAiB;YACjB,eAAe;YACf,gBAAgB;YAChB,iBAAiB;YACjB,eAAe;YACf,UAAU;SACX;QACD,IAAI,EAAE,WAAW;QACjB,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,MAAM,CAAC;QACrC,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,+DAA+D;KAC3E;IAED,+EAA+E;IAC/E,4CAA4C;IAC5C,+EAA+E;IAC/E;QACE,QAAQ,EAAE;YACR,QAAQ;YACR,sBAAsB;YACtB,kBAAkB;YAClB,yBAAyB;YACzB,aAAa;YACb,OAAO;YACP,OAAO;SACR;QACD,IAAI,EAAE,KAAK;QACX,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,MAAM,CAAC;QAC9C,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,sCAAsC;KAClD;IACD;QACE,QAAQ,EAAE;YACR,sBAAsB;YACtB,qBAAqB;YACrB,qBAAqB;YACrB,gBAAgB;SACjB;QACD,IAAI,EAAE,KAAK;QACX,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC;QAC7B,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,iDAAiD;KAC7D;IACD;QACE,QAAQ,EAAE;YACR,wBAAwB;YACxB,QAAQ;YACR,iBAAiB;YACjB,WAAW;SACZ;QACD,IAAI,EAAE,KAAK;QACX,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,CAAC;QAC/C,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,sDAAsD;KAClE;IACD;QACE,QAAQ,EAAE;YACR,UAAU;YACV,oBAAoB;YACpB,aAAa;SACd;QACD,IAAI,EAAE,KAAK;QACX,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC;QACtC,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,0CAA0C;KACtD;IACD;QACE,QAAQ,EAAE;YACR,mBAAmB;YACnB,oBAAoB;YACpB,iBAAiB;YACjB,YAAY;SACb;QACD,IAAI,EAAE,KAAK;QACX,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC;QACtC,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,gDAAgD;KAC5D;IACD;QACE,QAAQ,EAAE;YACR,YAAY;YACZ,qBAAqB;YACrB,mBAAmB;YACnB,sBAAsB;YACtB,qBAAqB;SACtB;QACD,IAAI,EAAE,KAAK;QACX,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC;QAC7B,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,wDAAwD;KACpE;IACD;QACE,QAAQ,EAAE;YACR,mBAAmB;YACnB,gBAAgB;YAChB,cAAc;SACf;QACD,IAAI,EAAE,KAAK;QACX,WAAW,EAAE,CAAC,MAAM,CAAC;QACrB,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,2CAA2C;KACvD;IACD;QACE,QAAQ,EAAE;YACR,YAAY;YACZ,cAAc;YACd,cAAc;YACd,SAAS;YACT,kBAAkB;SACnB;QACD,IAAI,EAAE,KAAK;QACX,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,EAAE,OAAO,CAAC;QACtC,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,kDAAkD;KAC9D;IACD;QACE,QAAQ,EAAE;YACR,SAAS;YACT,YAAY;YACZ,WAAW;YACX,4BAA4B;YAC5B,yBAAyB;YACzB,sBAAsB;SACvB;QACD,IAAI,EAAE,KAAK;QACX,WAAW,EAAE,CAAC,MAAM,EAAE,MAAM,CAAC;QAC7B,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,4CAA4C;KACxD;IAED,+EAA+E;IAC/E,wCAAwC;IACxC,+EAA+E;IAC/E;QACE,QAAQ,EAAE;YACR,YAAY;YACZ,wBAAwB;YACxB,uBAAuB;YACvB,UAAU;YACV,UAAU;SACX;QACD,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC;QAC9B,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,oDAAoD;KAChE;IACD;QACE,QAAQ,EAAE;YACR,eAAe;YACf,aAAa;YACb,gBAAgB;YAChB,SAAS;SACV;QACD,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC;QAC9B,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,6CAA6C;KACzD;IACD;QACE,QAAQ,EAAE;YACR,qBAAqB;YACrB,oBAAoB;YACpB,qBAAqB;YACrB,OAAO;YACP,OAAO;SACR;QACD,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC;QAC9B,SAAS,EAAE,GAAG;QACd,SAAS,EAAE,0CAA0C;KACtD;IACD;QACE,QAAQ,EAAE;YACR,mBAAmB;YACnB,8BAA8B;YAC9B,oBAAoB;YACpB,mBAAmB;YACnB,yBAAyB;YACzB,qBAAqB;SACtB;QACD,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC;QAC9B,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,2CAA2C;KACvD;IACD;QACE,QAAQ,EAAE;YACR,iBAAiB;YACjB,kBAAkB;YAClB,iBAAiB;YACjB,UAAU;YACV,MAAM;SACP;QACD,IAAI,EAAE,QAAQ;QACd,WAAW,EAAE,CAAC,OAAO,EAAE,MAAM,CAAC;QAC9B,SAAS,EAAE,EAAE;QACb,SAAS,EAAE,uDAAuD;KACnE;CACF,CAAC;AAEF,+EAA+E;AAC/E,yBAAyB;AACzB,+EAA+E;AAE/E;;GAEG;AACH,MAAM,OAAO,qBAAqB;IACxB,cAAc,GAAyB,EAAE,CAAC;IAC1C,cAAc,GAAwC,IAAI,GAAG,EAAE,CAAC;IAExE;;OAEG;IACH,UAAU,CAAC,OAA2B;QACpC,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IACpC,CAAC;IAED;;OAEG;IACH,aAAa,CAAC,QAAgB,EAAE,OAA+B;QAC7D,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,WAAW,EAAE,EAAE,OAAO,CAAC,CAAC;IAC3D,CAAC;IAED;;OAEG;IACH,QAAQ,CAAC,KAAa,EAAE,KAAc;QACpC,oCAAoC;QACpC,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,CAAC,GAAG,KAAK,IAAI,KAAK,EAAE,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,KAAK,CAAC,WAAW,EAAE,CAAC;QACjF,MAAM,QAAQ,GAAG,IAAI,CAAC,cAAc,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;QACnD,IAAI,QAAQ,EAAE,CAAC;YACb,OAAO,QAAQ,CAAC;QAClB,CAAC;QAED,gDAAgD;QAChD,KAAK,MAAM,OAAO,IAAI,IAAI,CAAC,cAAc,EAAE,CAAC;YAC1C,IAAI,IAAI,CAAC,cAAc,CAAC,KAAK,EAAE,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACjD,OAAO;oBACL,IAAI,EAAE,OAAO,CAAC,IAAI;oBAClB,WAAW,EAAE,OAAO,CAAC,WAAW;oBAChC,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,SAAS,EAAE,OAAO,CAAC,SAAS;iBAC7B,CAAC;YACJ,CAAC;QACH,CAAC;QAED,0BAA0B;QAC1B,KAAK,MAAM,OAAO,IAAI,oBAAoB,EAAE,CAAC;YAC3C,IAAI,IAAI,CAAC,cAAc,CAAC,KAAK,EAAE,OAAO,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACjD,OAAO;oBACL,IAAI,EAAE,OAAO,CAAC,IAAI;oBAClB,WAAW,EAAE,OAAO,CAAC,WAAW;oBAChC,SAAS,EAAE,OAAO,CAAC,SAAS;oBAC5B,SAAS,EAAE,OAAO,CAAC,SAAS;iBAC7B,CAAC;YACJ,CAAC;QACH,CAAC;QAED,+BAA+B;QAC/B,OAAO;YACL,IAAI,EAAE,SAAS;YACf,WAAW,EAAE,EAAE;YACf,SAAS,EAAE,EAAE;YACb,SAAS,EAAE,qCAAqC;SACjD,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,gBAAgB,CAAC,MAAgD;QAK/D,MAAM,QAAQ,GAA6B,EAAE,CAAC;QAC9C,MAAM,cAAc,GAAG,IAAI,GAAG,EAAkB,CAAC;QACjD,IAAI,QAAQ,GAAG,CAAC,CAAC;QAEjB,KAAK,MAAM,EAAE,KAAK,EAAE,KAAK,EAAE,IAAI,MAAM,EAAE,CAAC;YACtC,MAAM,OAAO,GAAG,IAAI,CAAC,QAAQ,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;YAC5C,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;YACvB,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;YACjD,KAAK,MAAM,GAAG,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;gBACtC,cAAc,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YAC1B,CAAC;QACH,CAAC;QAED,OAAO;YACL,QAAQ;YACR,WAAW,EAAE,KAAK,CAAC,IAAI,CAAC,cAAc,CAAC;YACvC,QAAQ;SACT,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,qBAAqB,CAAC,IAAqB;QACzC,MAAM,WAAW,GAAG,IAAI,GAAG,EAAkB,CAAC;QAE9C,KAAK,MAAM,OAAO,IAAI,CAAC,GAAG,oBAAoB,EAAE,GAAG,IAAI,CAAC,cAAc,CAAC,EAAE,CAAC;YACxE,IAAI,OAAO,CAAC,IAAI,KAAK,IAAI,EAAE,CAAC;gBAC1B,KAAK,MAAM,GAAG,IAAI,OAAO,CAAC,WAAW,EAAE,CAAC;oBACtC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;gBACvB,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,KAAK,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IACjC,CAAC;IAED;;OAEG;IACK,cAAc,CAAC,KAAa,EAAE,QAAkB;QACtD,MAAM,eAAe,GAAG,KAAK,CAAC,WAAW,EAAE,CAAC;QAC5C,OAAO,QAAQ,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC,CAAC;IACnE,CAAC;CACF;AAED;;GAEG;AACH,MAAM,UAAU,2BAA2B;IACzC,OAAO,IAAI,qBAAqB,EAAE,CAAC;AACrC,CAAC;AAED;;GAEG;AACH,IAAI,iBAAiB,GAAiC,IAAI,CAAC;AAE3D;;GAEG;AACH,MAAM,UAAU,oBAAoB;IAClC,IAAI,CAAC,iBAAiB,EAAE,CAAC;QACvB,iBAAiB,GAAG,2BAA2B,EAAE,CAAC;IACpD,CAAC;IACD,OAAO,iBAAiB,CAAC;AAC3B,CAAC"}