hackmyagent 0.14.0 → 0.14.2

package/dist/agent-scan/scanner.js

@@ -1,484 +0,0 @@
-"use strict";
-/**
- * Agent card security scanner.
- *
- * Evaluates A2A agent cards (/.well-known/agent.json) against
- * 12 security controls covering structure, identity, trust,
- * capabilities, transport, and metadata.
- */
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.parseAgentCard = parseAgentCard;
-exports.fetchAgentCard = fetchAgentCard;
-exports.loadAgentCard = loadAgentCard;
-exports.scanAgentCard = scanAgentCard;
-const fs = __importStar(require("fs"));
-const checks_1 = require("./checks");
-/** Severity weights for scoring (matches hardening scanner convention). */
-const SEVERITY_WEIGHTS = {
-    critical: 5,
-    high: 3,
-    medium: 2,
-    low: 1,
-};
-/** Dangerous capability keywords that indicate excessive permissions. */
-const DANGEROUS_CAPABILITIES = [
-    'shell', 'admin', 'root', 'sudo', 'execute',
-    'rm', 'delete', 'drop', 'truncate', 'kill',
-];
-/** Semver pattern (loose -- allows optional pre-release / build). */
-const SEMVER_RE = /^\d+\.\d+\.\d+(-[\w.]+)?(\+[\w.]+)?$/;
-/**
- * Parse raw JSON string into an AgentCard.
- * Throws if JSON is invalid or required fields are missing.
- */
-function parseAgentCard(content) {
-    let raw;
-    try {
-        raw = JSON.parse(content);
-    }
-    catch {
-        throw new Error('Invalid JSON: unable to parse agent card');
-    }
-    if (typeof raw !== 'object' || raw === null || Array.isArray(raw)) {
-        throw new Error('Invalid agent card: expected a JSON object');
-    }
-    const obj = raw;
-    // Coerce required string fields with sensible defaults for scanning
-    const card = {
-        agentId: typeof obj.agentId === 'string' ? obj.agentId : '',
-        name: typeof obj.name === 'string' ? obj.name : '',
-        url: typeof obj.url === 'string' ? obj.url : '',
-        version: typeof obj.version === 'string' ? obj.version : '',
-        skills: Array.isArray(obj.skills) ? obj.skills : [],
-    };
-    if (typeof obj.cardUrl === 'string')
-        card.cardUrl = obj.cardUrl;
-    if (typeof obj.description === 'string')
-        card.description = obj.description;
-    if (Array.isArray(obj.capabilities))
-        card.capabilities = obj.capabilities;
-    if (typeof obj.publicKey === 'string')
-        card.publicKey = obj.publicKey;
-    if (typeof obj.aimAttestation === 'object' && obj.aimAttestation !== null) {
-        card.aimAttestation = obj.aimAttestation;
-    }
-    return card;
-}
-/**
- * Fetch an agent card from a URL.
- * If the URL does not end with `.json`, appends `/.well-known/agent.json`.
- */
-async function fetchAgentCard(url) {
-    let target = url;
-    if (!target.endsWith('.json')) {
-        target = target.replace(/\/+$/, '') + '/.well-known/agent.json';
-    }
-    const response = await fetch(target);
-    if (!response.ok) {
-        throw new Error(`Failed to fetch agent card: HTTP ${response.status} from ${target}`);
-    }
-    const text = await response.text();
-    return parseAgentCard(text);
-}
-/**
- * Load an agent card from a local file.
- */
-function loadAgentCard(filePath) {
-    if (!fs.existsSync(filePath)) {
-        throw new Error(`File not found: ${filePath}`);
-    }
-    const content = fs.readFileSync(filePath, 'utf-8');
-    return parseAgentCard(content);
-}
-/**
- * Run all 12 security checks against an agent card.
- */
-function scanAgentCard(card, options) {
-    const minTrust = options?.minTrustScore ?? 0.6;
-    const findings = [];
-    findings.push(checkWellFormedness(card));
-    findings.push(checkCryptoIdentity(card));
-    findings.push(checkAttestationPresent(card));
-    findings.push(checkAttestationNotExpired(card));
-    findings.push(checkTrustScore(card, minTrust));
-    findings.push(checkSkillSchemas(card));
-    findings.push(checkSkillsVerified(card));
-    findings.push(checkExcessiveCapabilities(card));
-    findings.push(checkHttpsTransport(card));
-    findings.push(checkUrlConsistency(card));
-    findings.push(checkVersionFormat(card));
-    findings.push(checkAgentIdFormat(card));
-    // Scoring
-    let earned = 0;
-    let total = 0;
-    const criticalFailures = [];
-    for (const f of findings) {
-        const weight = SEVERITY_WEIGHTS[f.severity] ?? 1;
-        total += weight;
-        if (f.passed) {
-            earned += weight;
-        }
-        if (!f.passed && f.severity === 'critical') {
-            criticalFailures.push(f.checkId);
-        }
-    }
-    const rawScore = total > 0 ? Math.round((earned / total) * 100) : 0;
-    const grade = computeGrade(rawScore, criticalFailures.length > 0);
-    return {
-        card,
-        findings,
-        score: rawScore,
-        maxScore: 100,
-        grade,
-        criticalFailures,
-        source: 'file',
-    };
-}
-// --- Grade computation ---
-function computeGrade(score, hasCritical) {
-    let grade;
-    if (score >= 90)
-        grade = 'A';
-    else if (score >= 75)
-        grade = 'B';
-    else if (score >= 60)
-        grade = 'C';
-    else if (score >= 40)
-        grade = 'D';
-    else
-        grade = 'F';
-    // Critical floor: any critical failure caps grade at C
-    if (hasCritical && grade < 'C') {
-        // grade < 'C' means A or B (alphabetical)
-        grade = 'C';
-    }
-    return grade;
-}
-// --- Individual checks ---
-function checkWellFormedness(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[0]; // AGENT-001
-    const missing = [];
-    if (!card.agentId)
-        missing.push('agentId');
-    if (!card.name)
-        missing.push('name');
-    if (!card.url)
-        missing.push('url');
-    if (!card.version)
-        missing.push('version');
-    if (!card.skills || card.skills.length === 0)
-        missing.push('skills');
-    const passed = missing.length === 0;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? 'All required fields present'
-            : `Missing required fields: ${missing.join(', ')}`,
-        remediation: passed ? undefined : 'Add the missing fields to the agent card JSON.',
-    };
-}
-function checkCryptoIdentity(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[1]; // AGENT-002
-    const passed = typeof card.publicKey === 'string' && card.publicKey.length > 0;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? 'Public key present'
-            : 'No publicKey field -- agent has no cryptographic identity',
-        remediation: passed ? undefined : 'Generate an Ed25519 key pair and add the public key to the agent card.',
-    };
-}
-function checkAttestationPresent(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[2]; // AGENT-003
-    const att = card.aimAttestation;
-    const missing = [];
-    if (!att) {
-        return {
-            checkId: meta.checkId,
-            name: meta.name,
-            severity: meta.severity,
-            passed: false,
-            message: 'No aimAttestation field present',
-            remediation: 'Register this agent with an AIM service to obtain an attestation.',
-        };
-    }
-    if (!att.agentId)
-        missing.push('agentId');
-    if (!att.attestedAt)
-        missing.push('attestedAt');
-    if (!att.expiresAt)
-        missing.push('expiresAt');
-    if (att.trustScore === undefined || att.trustScore === null)
-        missing.push('trustScore');
-    const passed = missing.length === 0;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? 'AIM attestation present with required subfields'
-            : `AIM attestation missing subfields: ${missing.join(', ')}`,
-        remediation: passed ? undefined : 'Ensure the attestation includes agentId, attestedAt, expiresAt, and trustScore.',
-    };
-}
-function checkAttestationNotExpired(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[3]; // AGENT-004
-    if (!card.aimAttestation?.expiresAt) {
-        return {
-            checkId: meta.checkId,
-            name: meta.name,
-            severity: meta.severity,
-            passed: false,
-            message: 'No attestation expiry to evaluate',
-            remediation: 'Add an aimAttestation with a valid expiresAt timestamp.',
-        };
-    }
-    const expiresAt = new Date(card.aimAttestation.expiresAt);
-    const now = new Date();
-    const passed = expiresAt > now;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? `Attestation valid until ${card.aimAttestation.expiresAt}`
-            : `Attestation expired at ${card.aimAttestation.expiresAt}`,
-        remediation: passed ? undefined : 'Renew the attestation through the AIM service.',
-        details: { expiresAt: card.aimAttestation.expiresAt },
-    };
-}
-function checkTrustScore(card, minTrust) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[4]; // AGENT-005
-    if (!card.aimAttestation || card.aimAttestation.trustScore === undefined) {
-        return {
-            checkId: meta.checkId,
-            name: meta.name,
-            severity: meta.severity,
-            passed: false,
-            message: 'No trust score available',
-            remediation: 'Obtain an AIM attestation with a trustScore field.',
-        };
-    }
-    const score = card.aimAttestation.trustScore;
-    const passed = score >= minTrust;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? `Trust score ${score} meets threshold (>= ${minTrust})`
-            : `Trust score ${score} below threshold (< ${minTrust})`,
-        remediation: passed ? undefined : 'Improve agent security posture to increase trust score.',
-        details: { trustScore: score, threshold: minTrust },
-    };
-}
-function checkSkillSchemas(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[5]; // AGENT-006
-    if (!card.skills || card.skills.length === 0) {
-        return {
-            checkId: meta.checkId,
-            name: meta.name,
-            severity: meta.severity,
-            passed: false,
-            message: 'No skills declared',
-            remediation: 'Declare skills with inputSchema definitions.',
-        };
-    }
-    const withoutSchema = card.skills.filter(s => !s.inputSchema);
-    const passed = withoutSchema.length === 0;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? `All ${card.skills.length} skills have inputSchema`
-            : `${withoutSchema.length}/${card.skills.length} skills missing inputSchema`,
-        remediation: passed ? undefined : 'Add inputSchema to all skills for type-safe invocation.',
-        details: passed ? undefined : { missing: withoutSchema.map(s => s.id || s.name) },
-    };
-}
-function checkSkillsVerified(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[6]; // AGENT-007
-    if (!card.skills || card.skills.length === 0) {
-        return {
-            checkId: meta.checkId,
-            name: meta.name,
-            severity: meta.severity,
-            passed: false,
-            message: 'No skills declared',
-            remediation: 'Declare skills and have at least one verified through the registry.',
-        };
-    }
-    const verified = card.skills.filter(s => s.isVerified === true);
-    const passed = verified.length > 0;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? `${verified.length}/${card.skills.length} skills verified`
-            : 'No verified skills found',
-        remediation: passed ? undefined : 'Submit skills for verification through the OpenA2A registry.',
-    };
-}
-function checkExcessiveCapabilities(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[7]; // AGENT-008
-    if (!card.capabilities || card.capabilities.length === 0) {
-        // No capabilities declared -- passes (nothing excessive)
-        return {
-            checkId: meta.checkId,
-            name: meta.name,
-            severity: meta.severity,
-            passed: true,
-            message: 'No capabilities declared',
-        };
-    }
-    const dangerous = card.capabilities.filter(cap => DANGEROUS_CAPABILITIES.some(d => cap.toLowerCase().includes(d)));
-    const passed = dangerous.length === 0;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? `${card.capabilities.length} capabilities declared, none dangerous`
-            : `Dangerous capabilities found: ${dangerous.join(', ')}`,
-        remediation: passed ? undefined : 'Remove dangerous capabilities or scope them with least-privilege constraints.',
-        details: passed ? undefined : { dangerous },
-    };
-}
-function checkHttpsTransport(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[8]; // AGENT-009
-    const issues = [];
-    if (card.url && card.url.startsWith('http://')) {
-        issues.push(`url uses http: ${card.url}`);
-    }
-    if (card.cardUrl && card.cardUrl.startsWith('http://')) {
-        issues.push(`cardUrl uses http: ${card.cardUrl}`);
-    }
-    const passed = issues.length === 0;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? 'All URLs use HTTPS'
-            : `Insecure HTTP transport: ${issues.join('; ')}`,
-        remediation: passed ? undefined : 'Use https:// for all URLs in the agent card.',
-    };
-}
-function checkUrlConsistency(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[9]; // AGENT-010
-    if (!card.cardUrl || !card.url) {
-        return {
-            checkId: meta.checkId,
-            name: meta.name,
-            severity: meta.severity,
-            passed: true,
-            message: card.cardUrl ? 'Only cardUrl present, no url to compare' : 'No cardUrl declared (skipped)',
-        };
-    }
-    let urlDomain;
-    let cardDomain;
-    try {
-        urlDomain = new URL(card.url).hostname;
-        cardDomain = new URL(card.cardUrl).hostname;
-    }
-    catch {
-        return {
-            checkId: meta.checkId,
-            name: meta.name,
-            severity: meta.severity,
-            passed: false,
-            message: 'Unable to parse URL or cardUrl',
-            remediation: 'Ensure url and cardUrl are valid URLs.',
-        };
-    }
-    const passed = urlDomain === cardDomain;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? `Both URLs on same domain: ${urlDomain}`
-            : `Domain mismatch: url=${urlDomain}, cardUrl=${cardDomain}`,
-        remediation: passed ? undefined : 'Ensure url and cardUrl share the same domain to prevent impersonation.',
-        details: { urlDomain, cardDomain },
-    };
-}
-function checkVersionFormat(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[10]; // AGENT-011
-    const passed = typeof card.version === 'string' && SEMVER_RE.test(card.version);
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? `Version ${card.version} is valid semver`
-            : `Version "${card.version || '(empty)'}" is not valid semver`,
-        remediation: passed ? undefined : 'Use semantic versioning (e.g., 1.0.0) for the version field.',
-    };
-}
-function checkAgentIdFormat(card) {
-    const meta = checks_1.AGENT_SCAN_CHECKS[11]; // AGENT-012
-    const id = card.agentId || '';
-    const passed = id.length > 0 && id.length < 256;
-    return {
-        checkId: meta.checkId,
-        name: meta.name,
-        severity: meta.severity,
-        passed,
-        message: passed
-            ? `Agent ID is valid (${id.length} chars)`
-            : id.length === 0 ? 'Agent ID is empty' : `Agent ID too long (${id.length} chars)`,
-        remediation: passed ? undefined : 'Use a concise, unique agent identifier (< 256 characters).',
-    };
-}
-//# sourceMappingURL=scanner.js.map

package/dist/agent-scan/scanner.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"scanner.js","sourceRoot":"","sources":["../../src/agent-scan/scanner.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAoCH,wCAgCC;AAMD,wCAaC;AAKD,sCAMC;AAKD,sCAgDC;AArJD,uCAAyB;AACzB,qCAA6C;AAO7C,2EAA2E;AAC3E,MAAM,gBAAgB,GAA2B;IAC/C,QAAQ,EAAE,CAAC;IACX,IAAI,EAAE,CAAC;IACP,MAAM,EAAE,CAAC;IACT,GAAG,EAAE,CAAC;CACP,CAAC;AAEF,yEAAyE;AACzE,MAAM,sBAAsB,GAAG;IAC7B,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS;IAC3C,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM;CAC3C,CAAC;AAEF,qEAAqE;AACrE,MAAM,SAAS,GAAG,sCAAsC,CAAC;AAOzD;;;GAGG;AACH,SAAgB,cAAc,CAAC,OAAe;IAC5C,IAAI,GAAY,CAAC;IACjB,IAAI,CAAC;QACH,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;IAC9D,CAAC;IAED,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QAClE,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;IAChE,CAAC;IAED,MAAM,GAAG,GAAG,GAA8B,CAAC;IAE3C,oEAAoE;IACpE,MAAM,IAAI,GAAc;QACtB,OAAO,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE;QAC3D,IAAI,EAAE,OAAO,GAAG,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE;QAClD,GAAG,EAAE,OAAO,GAAG,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE;QAC/C,OAAO,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE;QAC3D,MAAM,EAAE,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAA6B,CAAC,CAAC,CAAC,EAAE;KAC3E,CAAC;IAEF,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ;QAAE,IAAI,CAAC,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC;IAChE,IAAI,OAAO,GAAG,CAAC,WAAW,KAAK,QAAQ;QAAE,IAAI,CAAC,WAAW,GAAG,GAAG,CAAC,WAAW,CAAC;IAC5E,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC;QAAE,IAAI,CAAC,YAAY,GAAG,GAAG,CAAC,YAAwB,CAAC;IACtF,IAAI,OAAO,GAAG,CAAC,SAAS,KAAK,QAAQ;QAAE,IAAI,CAAC,SAAS,GAAG,GAAG,CAAC,SAAS,CAAC;IACtE,IAAI,OAAO,GAAG,CAAC,cAAc,KAAK,QAAQ,IAAI,GAAG,CAAC,cAAc,KAAK,IAAI,EAAE,CAAC;QAC1E,IAAI,CAAC,cAAc,GAAG,GAAG,CAAC,cAA6C,CAAC;IAC1E,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,cAAc,CAAC,GAAW;IAC9C,IAAI,MAAM,GAAG,GAAG,CAAC;IACjB,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC9B,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,GAAG,yBAAyB,CAAC;IAClE,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,oCAAoC,QAAQ,CAAC,MAAM,SAAS,MAAM,EAAE,CAAC,CAAC;IACxF,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,OAAO,cAAc,CAAC,IAAI,CAAC,CAAC;AAC9B,CAAC;AAED;;GAEG;AACH,SAAgB,aAAa,CAAC,QAAgB;IAC5C,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CAAC,mBAAmB,QAAQ,EAAE,CAAC,CAAC;IACjD,CAAC;IACD,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IACnD,OAAO,cAAc,CAAC,OAAO,CAAC,CAAC;AACjC,CAAC;AAED;;GAEG;AACH,SAAgB,aAAa,CAC3B,IAAe,EACf,OAA0B;IAE1B,MAAM,QAAQ,GAAG,OAAO,EAAE,aAAa,IAAI,GAAG,CAAC;IAC/C,MAAM,QAAQ,GAAuB,EAAE,CAAC;IAExC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,uBAAuB,CAAC,IAAI,CAAC,CAAC,CAAC;IAC7C,QAAQ,CAAC,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAC,CAAC;IAChD,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC;IAC/C,QAAQ,CAAC,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC;IACvC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAC,CAAC;IAChD,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC;IACxC,QAAQ,CAAC,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC;IAExC,UAAU;IACV,IAAI,MAAM,GAAG,CAAC,CAAC;IACf,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,MAAM,gBAAgB,GAAa,EAAE,CAAC;IAEtC,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACzB,MAAM,MAAM,GAAG,gBAAgB,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QACjD,KAAK,IAAI,MAAM,CAAC;QAChB,IAAI,CAAC,CAAC,MAAM,EAAE,CAAC;YACb,MAAM,IAAI,MAAM,CAAC;QACnB,CAAC;QACD,IAAI,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,QAAQ,KAAK,UAAU,EAAE,CAAC;YAC3C,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;QACnC,CAAC;IACH,CAAC;IAED,MAAM,QAAQ,GAAG,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM,GAAG,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACpE,MAAM,KAAK,GAAG,YAAY,CAAC,QAAQ,EAAE,gBAAgB,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IAElE,OAAO;QACL,IAAI;QACJ,QAAQ;QACR,KAAK,EAAE,QAAQ;QACf,QAAQ,EAAE,GAAG;QACb,KAAK;QACL,gBAAgB;QAChB,MAAM,EAAE,MAAM;KACf,CAAC;AACJ,CAAC;AAED,4BAA4B;AAE5B,SAAS,YAAY,CAAC,KAAa,EAAE,WAAoB;IACvD,IAAI,KAAa,CAAC;IAClB,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,GAAG,CAAC;SACxB,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,GAAG,CAAC;SAC7B,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,GAAG,CAAC;SAC7B,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,GAAG,CAAC;;QAC7B,KAAK,GAAG,GAAG,CAAC;IAEjB,uDAAuD;IACvD,IAAI,WAAW,IAAI,KAAK,GAAG,GAAG,EAAE,CAAC;QAC/B,0CAA0C;QAC1C,KAAK,GAAG,GAAG,CAAC;IACd,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,4BAA4B;AAE5B,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAC/C,MAAM,OAAO,GAAa,EAAE,CAAC;IAE7B,IAAI,CAAC,IAAI,CAAC,OAAO;QAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC3C,IAAI,CAAC,IAAI,CAAC,IAAI;QAAE,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,CAAC,IAAI,CAAC,GAAG;QAAE,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACnC,IAAI,CAAC,IAAI,CAAC,OAAO;QAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC3C,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAErE,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,KAAK,CAAC,CAAC;IACpC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,6BAA6B;YAC/B,CAAC,CAAC,4BAA4B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;QACpD,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,gDAAgD;KACnF,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAC/C,MAAM,MAAM,GAAG,OAAO,IAAI,CAAC,SAAS,KAAK,QAAQ,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC;IAE/E,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,oBAAoB;YACtB,CAAC,CAAC,2DAA2D;QAC/D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,wEAAwE;KAC3G,CAAC;AACJ,CAAC;AAED,SAAS,uBAAuB,CAAC,IAAe;IAC9C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAC/C,MAAM,GAAG,GAAG,IAAI,CAAC,cAAc,CAAC;IAChC,MAAM,OAAO,GAAa,EAAE,CAAC;IAE7B,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,iCAAiC;YAC1C,WAAW,EAAE,mEAAmE;SACjF,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,GAAG,CAAC,OAAO;QAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC1C,IAAI,CAAC,GAAG,CAAC,UAAU;QAAE,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IAChD,IAAI,CAAC,GAAG,CAAC,SAAS;QAAE,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IAC9C,IAAI,GAAG,CAAC,UAAU,KAAK,SAAS,IAAI,GAAG,CAAC,UAAU,KAAK,IAAI;QAAE,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IAExF,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,KAAK,CAAC,CAAC;IACpC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,iDAAiD;YACnD,CAAC,CAAC,sCAAsC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;QAC9D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,iFAAiF;KACpH,CAAC;AACJ,CAAC;AAED,SAAS,0BAA0B,CAAC,IAAe;IACjD,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,SAAS,EAAE,CAAC;QACpC,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,mCAAmC;YAC5C,WAAW,EAAE,yDAAyD;SACvE,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC;IAC1D,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,MAAM,GAAG,SAAS,GAAG,GAAG,CAAC;IAE/B,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,2BAA2B,IAAI,CAAC,cAAc,CAAC,SAAS,EAAE;YAC5D,CAAC,CAAC,0BAA0B,IAAI,CAAC,cAAc,CAAC,SAAS,EAAE;QAC7D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,gDAAgD;QAClF,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,CAAC,cAAc,CAAC,SAAS,EAAE;KACtD,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CAAC,IAAe,EAAE,QAAgB;IACxD,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,cAAc,IAAI,IAAI,CAAC,cAAc,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;QACzE,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,0BAA0B;YACnC,WAAW,EAAE,oDAAoD;SAClE,CAAC;IACJ,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,CAAC,cAAc,CAAC,UAAU,CAAC;IAC7C,MAAM,MAAM,GAAG,KAAK,IAAI,QAAQ,CAAC;IAEjC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,eAAe,KAAK,wBAAwB,QAAQ,GAAG;YACzD,CAAC,CAAC,eAAe,KAAK,uBAAuB,QAAQ,GAAG;QAC1D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,yDAAyD;QAC3F,OAAO,EAAE,EAAE,UAAU,EAAE,KAAK,EAAE,SAAS,EAAE,QAAQ,EAAE;KACpD,CAAC;AACJ,CAAC;AAED,SAAS,iBAAiB,CAAC,IAAe;IACxC,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC7C,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,oBAAoB;YAC7B,WAAW,EAAE,8CAA8C;SAC5D,CAAC;IACJ,CAAC;IAED,MAAM,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC;IAC9D,MAAM,MAAM,GAAG,aAAa,CAAC,MAAM,KAAK,CAAC,CAAC;IAE1C,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,0BAA0B;YACrD,CAAC,CAAC,GAAG,aAAa,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,6BAA6B;QAC9E,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,yDAAyD;QAC3F,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,IAAI,CAAC,EAAE;KAClF,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC7C,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,oBAAoB;YAC7B,WAAW,EAAE,qEAAqE;SACnF,CAAC;IACJ,CAAC;IAED,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,IAAI,CAAC,CAAC;IAChE,MAAM,MAAM,GAAG,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC;IAEnC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,GAAG,QAAQ,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,kBAAkB;YAC5D,CAAC,CAAC,0BAA0B;QAC9B,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,8DAA8D;KACjG,CAAC;AACJ,CAAC;AAED,SAAS,0BAA0B,CAAC,IAAe;IACjD,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,YAAY,IAAI,IAAI,CAAC,YAAY,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzD,yDAAyD;QACzD,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,IAAI;YACZ,OAAO,EAAE,0BAA0B;SACpC,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAC/C,sBAAsB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAChE,CAAC;IACF,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,KAAK,CAAC,CAAC;IAEtC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,wCAAwC;YACrE,CAAC,CAAC,iCAAiC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;QAC3D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,+EAA+E;QACjH,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE;KAC5C,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAC/C,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,IAAI,IAAI,CAAC,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC/C,MAAM,CAAC,IAAI,CAAC,kBAAkB,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IAC5C,CAAC;IACD,IAAI,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QACvD,MAAM,CAAC,IAAI,CAAC,sBAAsB,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC;IAEnC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,oBAAoB;YACtB,CAAC,CAAC,4BAA4B,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;QACnD,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,8CAA8C;KACjF,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC;QAC/B,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,IAAI;YACZ,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,yCAAyC,CAAC,CAAC,CAAC,+BAA+B;SACpG,CAAC;IACJ,CAAC;IAED,IAAI,SAAiB,CAAC;IACtB,IAAI,UAAkB,CAAC;IAEvB,IAAI,CAAC;QACH,SAAS,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;QACvC,UAAU,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,QAAQ,CAAC;IAC9C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,gCAAgC;YACzC,WAAW,EAAE,wCAAwC;SACtD,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAG,SAAS,KAAK,UAAU,CAAC;IAExC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,6BAA6B,SAAS,EAAE;YAC1C,CAAC,CAAC,wBAAwB,SAAS,aAAa,UAAU,EAAE;QAC9D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,wEAAwE;QAC1G,OAAO,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE;KACnC,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB,CAAC,IAAe;IACzC,MAAM,IAAI,GAAG,0BAAiB,CAAC,EAAE,CAAC,CAAC,CAAC,YAAY;IAChD,MAAM,MAAM,GAAG,OAAO,IAAI,CAAC,OAAO,KAAK,QAAQ,IAAI,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAEhF,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,WAAW,IAAI,CAAC,OAAO,kBAAkB;YAC3C,CAAC,CAAC,YAAY,IAAI,CAAC,OAAO,IAAI,SAAS,uBAAuB;QAChE,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,8DAA8D;KACjG,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB,CAAC,IAAe;IACzC,MAAM,IAAI,GAAG,0BAAiB,CAAC,EAAE,CAAC,CAAC,CAAC,YAAY;IAChD,MAAM,EAAE,GAAG,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC;IAC9B,MAAM,MAAM,GAAG,EAAE,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,GAAG,CAAC;IAEhD,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,sBAAsB,EAAE,CAAC,MAAM,SAAS;YAC1C,CAAC,CAAC,EAAE,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,sBAAsB,EAAE,CAAC,MAAM,SAAS;QACpF,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,4DAA4D;KAC/F,CAAC;AACJ,CAAC"}

package/dist/agent-scan/types.d.ts

@@ -1,63 +0,0 @@
-/**
- * Agent card types for A2A agent card security scanning.
- *
- * Types are defined locally (not imported from AIM SDK) to keep
- * HMA self-contained. They are structurally compatible with
- * AIM's A2AAgentCard interface.
- */
-import type { Severity } from '../hardening/security-check';
-export interface AgentSkill {
-    id: string;
-    name: string;
-    description?: string;
-    inputSchema?: Record<string, unknown>;
-    outputSchema?: Record<string, unknown>;
-    isVerified?: boolean;
-    attestationCount?: number;
-}
-export interface AgentAttestation {
-    agentId: string;
-    attestedAt: string;
-    expiresAt: string;
-    trustScore: number;
-    signature?: string;
-    attestationType?: string;
-}
-export interface AgentCard {
-    agentId: string;
-    name: string;
-    url: string;
-    cardUrl?: string;
-    version: string;
-    description?: string;
-    capabilities?: string[];
-    skills: AgentSkill[];
-    publicKey?: string;
-    aimAttestation?: AgentAttestation;
-}
-export interface AgentScanCheck {
-    checkId: string;
-    name: string;
-    description: string;
-    severity: Severity;
-    category: string;
-}
-export interface AgentScanFinding {
-    checkId: string;
-    name: string;
-    severity: Severity;
-    passed: boolean;
-    message: string;
-    details?: Record<string, unknown>;
-    remediation?: string;
-}
-export interface AgentScanResult {
-    card: AgentCard;
-    findings: AgentScanFinding[];
-    score: number;
-    maxScore: number;
-    grade: string;
-    criticalFailures: string[];
-    source: 'url' | 'file';
-}
-//# sourceMappingURL=types.d.ts.map

package/dist/agent-scan/types.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/agent-scan/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,6BAA6B,CAAC;AAI5D,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACtC,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACvC,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,MAAM,WAAW,SAAS;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,MAAM,EAAE,UAAU,EAAE,CAAC;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,cAAc,CAAC,EAAE,gBAAgB,CAAC;CACnC;AAID,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,QAAQ,CAAC;IACnB,MAAM,EAAE,OAAO,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,SAAS,CAAC;IAChB,QAAQ,EAAE,gBAAgB,EAAE,CAAC;IAC7B,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,MAAM,EAAE,KAAK,GAAG,MAAM,CAAC;CACxB"}

package/dist/agent-scan/types.js

@@ -1,10 +0,0 @@
-"use strict";
-/**
- * Agent card types for A2A agent card security scanning.
- *
- * Types are defined locally (not imported from AIM SDK) to keep
- * HMA self-contained. They are structurally compatible with
- * AIM's A2AAgentCard interface.
- */
-Object.defineProperty(exports, "__esModule", { value: true });
-//# sourceMappingURL=types.js.map

package/dist/agent-scan/types.js.map

@@ -1 +0,0 @@
-{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/agent-scan/types.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG"}

package/dist/hardening/llm-checks.d.ts

@@ -1,18 +0,0 @@
-/**
- * Local LLM server detection and security checks.
- * Detects running LLM inference servers (Ollama, LM Studio, vLLM, LocalAI,
- * text-generation-webui) and checks for insecure defaults: no auth, bound to
- * 0.0.0.0, no TLS, permissive CORS, unsafe model formats, secrets in configs.
- */
-import type { SecurityFinding } from './security-check';
-/**
- * Detect running local LLM servers and check for security issues.
- * Returns findings for LLM-001 through LLM-006.
- */
-export declare function checkLocalLLMServers(): Promise<SecurityFinding[]>;
-/**
- * Scan local LLM config directories for secrets and unsafe model files.
- * Returns findings for LLM-007 and LLM-008.
- */
-export declare function checkLLMConfigs(): Promise<SecurityFinding[]>;
-//# sourceMappingURL=llm-checks.d.ts.map

package/dist/hardening/llm-checks.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"llm-checks.d.ts","sourceRoot":"","sources":["../../src/hardening/llm-checks.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAMH,OAAO,KAAK,EAAE,eAAe,EAAY,MAAM,kBAAkB,CAAC;AA2HlE;;;GAGG;AACH,wBAAsB,oBAAoB,IAAI,OAAO,CAAC,eAAe,EAAE,CAAC,CA8JvE;AAED;;;GAGG;AACH,wBAAsB,eAAe,IAAI,OAAO,CAAC,eAAe,EAAE,CAAC,CA2BlE"}