hackmyagent 0.7.2 → 0.8.1

package/dist/agent-scan/scanner.js

@@ -0,0 +1,484 @@
+"use strict";
+/**
+ * Agent card security scanner.
+ *
+ * Evaluates A2A agent cards (/.well-known/agent.json) against
+ * 12 security controls covering structure, identity, trust,
+ * capabilities, transport, and metadata.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.parseAgentCard = parseAgentCard;
+exports.fetchAgentCard = fetchAgentCard;
+exports.loadAgentCard = loadAgentCard;
+exports.scanAgentCard = scanAgentCard;
+const fs = __importStar(require("fs"));
+const checks_1 = require("./checks");
+/** Severity weights for scoring (matches hardening scanner convention). */
+const SEVERITY_WEIGHTS = {
+    critical: 5,
+    high: 3,
+    medium: 2,
+    low: 1,
+};
+/** Dangerous capability keywords that indicate excessive permissions. */
+const DANGEROUS_CAPABILITIES = [
+    'shell', 'admin', 'root', 'sudo', 'execute',
+    'rm', 'delete', 'drop', 'truncate', 'kill',
+];
+/** Semver pattern (loose -- allows optional pre-release / build). */
+const SEMVER_RE = /^\d+\.\d+\.\d+(-[\w.]+)?(\+[\w.]+)?$/;
+/**
+ * Parse raw JSON string into an AgentCard.
+ * Throws if JSON is invalid or required fields are missing.
+ */
+function parseAgentCard(content) {
+    let raw;
+    try {
+        raw = JSON.parse(content);
+    }
+    catch {
+        throw new Error('Invalid JSON: unable to parse agent card');
+    }
+    if (typeof raw !== 'object' || raw === null || Array.isArray(raw)) {
+        throw new Error('Invalid agent card: expected a JSON object');
+    }
+    const obj = raw;
+    // Coerce required string fields with sensible defaults for scanning
+    const card = {
+        agentId: typeof obj.agentId === 'string' ? obj.agentId : '',
+        name: typeof obj.name === 'string' ? obj.name : '',
+        url: typeof obj.url === 'string' ? obj.url : '',
+        version: typeof obj.version === 'string' ? obj.version : '',
+        skills: Array.isArray(obj.skills) ? obj.skills : [],
+    };
+    if (typeof obj.cardUrl === 'string')
+        card.cardUrl = obj.cardUrl;
+    if (typeof obj.description === 'string')
+        card.description = obj.description;
+    if (Array.isArray(obj.capabilities))
+        card.capabilities = obj.capabilities;
+    if (typeof obj.publicKey === 'string')
+        card.publicKey = obj.publicKey;
+    if (typeof obj.aimAttestation === 'object' && obj.aimAttestation !== null) {
+        card.aimAttestation = obj.aimAttestation;
+    }
+    return card;
+}
+/**
+ * Fetch an agent card from a URL.
+ * If the URL does not end with `.json`, appends `/.well-known/agent.json`.
+ */
+async function fetchAgentCard(url) {
+    let target = url;
+    if (!target.endsWith('.json')) {
+        target = target.replace(/\/+$/, '') + '/.well-known/agent.json';
+    }
+    const response = await fetch(target);
+    if (!response.ok) {
+        throw new Error(`Failed to fetch agent card: HTTP ${response.status} from ${target}`);
+    }
+    const text = await response.text();
+    return parseAgentCard(text);
+}
+/**
+ * Load an agent card from a local file.
+ */
+function loadAgentCard(filePath) {
+    if (!fs.existsSync(filePath)) {
+        throw new Error(`File not found: ${filePath}`);
+    }
+    const content = fs.readFileSync(filePath, 'utf-8');
+    return parseAgentCard(content);
+}
+/**
+ * Run all 12 security checks against an agent card.
+ */
+function scanAgentCard(card, options) {
+    const minTrust = options?.minTrustScore ?? 0.6;
+    const findings = [];
+    findings.push(checkWellFormedness(card));
+    findings.push(checkCryptoIdentity(card));
+    findings.push(checkAttestationPresent(card));
+    findings.push(checkAttestationNotExpired(card));
+    findings.push(checkTrustScore(card, minTrust));
+    findings.push(checkSkillSchemas(card));
+    findings.push(checkSkillsVerified(card));
+    findings.push(checkExcessiveCapabilities(card));
+    findings.push(checkHttpsTransport(card));
+    findings.push(checkUrlConsistency(card));
+    findings.push(checkVersionFormat(card));
+    findings.push(checkAgentIdFormat(card));
+    // Scoring
+    let earned = 0;
+    let total = 0;
+    const criticalFailures = [];
+    for (const f of findings) {
+        const weight = SEVERITY_WEIGHTS[f.severity] ?? 1;
+        total += weight;
+        if (f.passed) {
+            earned += weight;
+        }
+        if (!f.passed && f.severity === 'critical') {
+            criticalFailures.push(f.checkId);
+        }
+    }
+    const rawScore = total > 0 ? Math.round((earned / total) * 100) : 0;
+    const grade = computeGrade(rawScore, criticalFailures.length > 0);
+    return {
+        card,
+        findings,
+        score: rawScore,
+        maxScore: 100,
+        grade,
+        criticalFailures,
+        source: 'file',
+    };
+}
+// --- Grade computation ---
+function computeGrade(score, hasCritical) {
+    let grade;
+    if (score >= 90)
+        grade = 'A';
+    else if (score >= 75)
+        grade = 'B';
+    else if (score >= 60)
+        grade = 'C';
+    else if (score >= 40)
+        grade = 'D';
+    else
+        grade = 'F';
+    // Critical floor: any critical failure caps grade at C
+    if (hasCritical && grade < 'C') {
+        // grade < 'C' means A or B (alphabetical)
+        grade = 'C';
+    }
+    return grade;
+}
+// --- Individual checks ---
+function checkWellFormedness(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[0]; // AGENT-001
+    const missing = [];
+    if (!card.agentId)
+        missing.push('agentId');
+    if (!card.name)
+        missing.push('name');
+    if (!card.url)
+        missing.push('url');
+    if (!card.version)
+        missing.push('version');
+    if (!card.skills || card.skills.length === 0)
+        missing.push('skills');
+    const passed = missing.length === 0;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? 'All required fields present'
+            : `Missing required fields: ${missing.join(', ')}`,
+        remediation: passed ? undefined : 'Add the missing fields to the agent card JSON.',
+    };
+}
+function checkCryptoIdentity(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[1]; // AGENT-002
+    const passed = typeof card.publicKey === 'string' && card.publicKey.length > 0;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? 'Public key present'
+            : 'No publicKey field -- agent has no cryptographic identity',
+        remediation: passed ? undefined : 'Generate an Ed25519 key pair and add the public key to the agent card.',
+    };
+}
+function checkAttestationPresent(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[2]; // AGENT-003
+    const att = card.aimAttestation;
+    const missing = [];
+    if (!att) {
+        return {
+            checkId: meta.checkId,
+            name: meta.name,
+            severity: meta.severity,
+            passed: false,
+            message: 'No aimAttestation field present',
+            remediation: 'Register this agent with an AIM service to obtain an attestation.',
+        };
+    }
+    if (!att.agentId)
+        missing.push('agentId');
+    if (!att.attestedAt)
+        missing.push('attestedAt');
+    if (!att.expiresAt)
+        missing.push('expiresAt');
+    if (att.trustScore === undefined || att.trustScore === null)
+        missing.push('trustScore');
+    const passed = missing.length === 0;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? 'AIM attestation present with required subfields'
+            : `AIM attestation missing subfields: ${missing.join(', ')}`,
+        remediation: passed ? undefined : 'Ensure the attestation includes agentId, attestedAt, expiresAt, and trustScore.',
+    };
+}
+function checkAttestationNotExpired(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[3]; // AGENT-004
+    if (!card.aimAttestation?.expiresAt) {
+        return {
+            checkId: meta.checkId,
+            name: meta.name,
+            severity: meta.severity,
+            passed: false,
+            message: 'No attestation expiry to evaluate',
+            remediation: 'Add an aimAttestation with a valid expiresAt timestamp.',
+        };
+    }
+    const expiresAt = new Date(card.aimAttestation.expiresAt);
+    const now = new Date();
+    const passed = expiresAt > now;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? `Attestation valid until ${card.aimAttestation.expiresAt}`
+            : `Attestation expired at ${card.aimAttestation.expiresAt}`,
+        remediation: passed ? undefined : 'Renew the attestation through the AIM service.',
+        details: { expiresAt: card.aimAttestation.expiresAt },
+    };
+}
+function checkTrustScore(card, minTrust) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[4]; // AGENT-005
+    if (!card.aimAttestation || card.aimAttestation.trustScore === undefined) {
+        return {
+            checkId: meta.checkId,
+            name: meta.name,
+            severity: meta.severity,
+            passed: false,
+            message: 'No trust score available',
+            remediation: 'Obtain an AIM attestation with a trustScore field.',
+        };
+    }
+    const score = card.aimAttestation.trustScore;
+    const passed = score >= minTrust;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? `Trust score ${score} meets threshold (>= ${minTrust})`
+            : `Trust score ${score} below threshold (< ${minTrust})`,
+        remediation: passed ? undefined : 'Improve agent security posture to increase trust score.',
+        details: { trustScore: score, threshold: minTrust },
+    };
+}
+function checkSkillSchemas(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[5]; // AGENT-006
+    if (!card.skills || card.skills.length === 0) {
+        return {
+            checkId: meta.checkId,
+            name: meta.name,
+            severity: meta.severity,
+            passed: false,
+            message: 'No skills declared',
+            remediation: 'Declare skills with inputSchema definitions.',
+        };
+    }
+    const withoutSchema = card.skills.filter(s => !s.inputSchema);
+    const passed = withoutSchema.length === 0;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? `All ${card.skills.length} skills have inputSchema`
+            : `${withoutSchema.length}/${card.skills.length} skills missing inputSchema`,
+        remediation: passed ? undefined : 'Add inputSchema to all skills for type-safe invocation.',
+        details: passed ? undefined : { missing: withoutSchema.map(s => s.id || s.name) },
+    };
+}
+function checkSkillsVerified(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[6]; // AGENT-007
+    if (!card.skills || card.skills.length === 0) {
+        return {
+            checkId: meta.checkId,
+            name: meta.name,
+            severity: meta.severity,
+            passed: false,
+            message: 'No skills declared',
+            remediation: 'Declare skills and have at least one verified through the registry.',
+        };
+    }
+    const verified = card.skills.filter(s => s.isVerified === true);
+    const passed = verified.length > 0;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? `${verified.length}/${card.skills.length} skills verified`
+            : 'No verified skills found',
+        remediation: passed ? undefined : 'Submit skills for verification through the OpenA2A registry.',
+    };
+}
+function checkExcessiveCapabilities(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[7]; // AGENT-008
+    if (!card.capabilities || card.capabilities.length === 0) {
+        // No capabilities declared -- passes (nothing excessive)
+        return {
+            checkId: meta.checkId,
+            name: meta.name,
+            severity: meta.severity,
+            passed: true,
+            message: 'No capabilities declared',
+        };
+    }
+    const dangerous = card.capabilities.filter(cap => DANGEROUS_CAPABILITIES.some(d => cap.toLowerCase().includes(d)));
+    const passed = dangerous.length === 0;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? `${card.capabilities.length} capabilities declared, none dangerous`
+            : `Dangerous capabilities found: ${dangerous.join(', ')}`,
+        remediation: passed ? undefined : 'Remove dangerous capabilities or scope them with least-privilege constraints.',
+        details: passed ? undefined : { dangerous },
+    };
+}
+function checkHttpsTransport(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[8]; // AGENT-009
+    const issues = [];
+    if (card.url && card.url.startsWith('http://')) {
+        issues.push(`url uses http: ${card.url}`);
+    }
+    if (card.cardUrl && card.cardUrl.startsWith('http://')) {
+        issues.push(`cardUrl uses http: ${card.cardUrl}`);
+    }
+    const passed = issues.length === 0;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? 'All URLs use HTTPS'
+            : `Insecure HTTP transport: ${issues.join('; ')}`,
+        remediation: passed ? undefined : 'Use https:// for all URLs in the agent card.',
+    };
+}
+function checkUrlConsistency(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[9]; // AGENT-010
+    if (!card.cardUrl || !card.url) {
+        return {
+            checkId: meta.checkId,
+            name: meta.name,
+            severity: meta.severity,
+            passed: true,
+            message: card.cardUrl ? 'Only cardUrl present, no url to compare' : 'No cardUrl declared (skipped)',
+        };
+    }
+    let urlDomain;
+    let cardDomain;
+    try {
+        urlDomain = new URL(card.url).hostname;
+        cardDomain = new URL(card.cardUrl).hostname;
+    }
+    catch {
+        return {
+            checkId: meta.checkId,
+            name: meta.name,
+            severity: meta.severity,
+            passed: false,
+            message: 'Unable to parse URL or cardUrl',
+            remediation: 'Ensure url and cardUrl are valid URLs.',
+        };
+    }
+    const passed = urlDomain === cardDomain;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? `Both URLs on same domain: ${urlDomain}`
+            : `Domain mismatch: url=${urlDomain}, cardUrl=${cardDomain}`,
+        remediation: passed ? undefined : 'Ensure url and cardUrl share the same domain to prevent impersonation.',
+        details: { urlDomain, cardDomain },
+    };
+}
+function checkVersionFormat(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[10]; // AGENT-011
+    const passed = typeof card.version === 'string' && SEMVER_RE.test(card.version);
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? `Version ${card.version} is valid semver`
+            : `Version "${card.version || '(empty)'}" is not valid semver`,
+        remediation: passed ? undefined : 'Use semantic versioning (e.g., 1.0.0) for the version field.',
+    };
+}
+function checkAgentIdFormat(card) {
+    const meta = checks_1.AGENT_SCAN_CHECKS[11]; // AGENT-012
+    const id = card.agentId || '';
+    const passed = id.length > 0 && id.length < 256;
+    return {
+        checkId: meta.checkId,
+        name: meta.name,
+        severity: meta.severity,
+        passed,
+        message: passed
+            ? `Agent ID is valid (${id.length} chars)`
+            : id.length === 0 ? 'Agent ID is empty' : `Agent ID too long (${id.length} chars)`,
+        remediation: passed ? undefined : 'Use a concise, unique agent identifier (< 256 characters).',
+    };
+}
+//# sourceMappingURL=scanner.js.map

package/dist/agent-scan/scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"scanner.js","sourceRoot":"","sources":["../../src/agent-scan/scanner.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAoCH,wCAgCC;AAMD,wCAaC;AAKD,sCAMC;AAKD,sCAgDC;AArJD,uCAAyB;AACzB,qCAA6C;AAO7C,2EAA2E;AAC3E,MAAM,gBAAgB,GAA2B;IAC/C,QAAQ,EAAE,CAAC;IACX,IAAI,EAAE,CAAC;IACP,MAAM,EAAE,CAAC;IACT,GAAG,EAAE,CAAC;CACP,CAAC;AAEF,yEAAyE;AACzE,MAAM,sBAAsB,GAAG;IAC7B,OAAO,EAAE,OAAO,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS;IAC3C,IAAI,EAAE,QAAQ,EAAE,MAAM,EAAE,UAAU,EAAE,MAAM;CAC3C,CAAC;AAEF,qEAAqE;AACrE,MAAM,SAAS,GAAG,sCAAsC,CAAC;AAOzD;;;GAGG;AACH,SAAgB,cAAc,CAAC,OAAe;IAC5C,IAAI,GAAY,CAAC;IACjB,IAAI,CAAC;QACH,GAAG,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC;IAC5B,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CAAC,0CAA0C,CAAC,CAAC;IAC9D,CAAC;IAED,IAAI,OAAO,GAAG,KAAK,QAAQ,IAAI,GAAG,KAAK,IAAI,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,EAAE,CAAC;QAClE,MAAM,IAAI,KAAK,CAAC,4CAA4C,CAAC,CAAC;IAChE,CAAC;IAED,MAAM,GAAG,GAAG,GAA8B,CAAC;IAE3C,oEAAoE;IACpE,MAAM,IAAI,GAAc;QACtB,OAAO,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE;QAC3D,IAAI,EAAE,OAAO,GAAG,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE;QAClD,GAAG,EAAE,OAAO,GAAG,CAAC,GAAG,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE;QAC/C,OAAO,EAAE,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE;QAC3D,MAAM,EAAE,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,MAA6B,CAAC,CAAC,CAAC,EAAE;KAC3E,CAAC;IAEF,IAAI,OAAO,GAAG,CAAC,OAAO,KAAK,QAAQ;QAAE,IAAI,CAAC,OAAO,GAAG,GAAG,CAAC,OAAO,CAAC;IAChE,IAAI,OAAO,GAAG,CAAC,WAAW,KAAK,QAAQ;QAAE,IAAI,CAAC,WAAW,GAAG,GAAG,CAAC,WAAW,CAAC;IAC5E,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,YAAY,CAAC;QAAE,IAAI,CAAC,YAAY,GAAG,GAAG,CAAC,YAAwB,CAAC;IACtF,IAAI,OAAO,GAAG,CAAC,SAAS,KAAK,QAAQ;QAAE,IAAI,CAAC,SAAS,GAAG,GAAG,CAAC,SAAS,CAAC;IACtE,IAAI,OAAO,GAAG,CAAC,cAAc,KAAK,QAAQ,IAAI,GAAG,CAAC,cAAc,KAAK,IAAI,EAAE,CAAC;QAC1E,IAAI,CAAC,cAAc,GAAG,GAAG,CAAC,cAA6C,CAAC;IAC1E,CAAC;IAED,OAAO,IAAI,CAAC;AACd,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,cAAc,CAAC,GAAW;IAC9C,IAAI,MAAM,GAAG,GAAG,CAAC;IACjB,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,OAAO,CAAC,EAAE,CAAC;QAC9B,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,CAAC,GAAG,yBAAyB,CAAC;IAClE,CAAC;IAED,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,oCAAoC,QAAQ,CAAC,MAAM,SAAS,MAAM,EAAE,CAAC,CAAC;IACxF,CAAC;IAED,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,OAAO,cAAc,CAAC,IAAI,CAAC,CAAC;AAC9B,CAAC;AAED;;GAEG;AACH,SAAgB,aAAa,CAAC,QAAgB;IAC5C,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC7B,MAAM,IAAI,KAAK,CAAC,mBAAmB,QAAQ,EAAE,CAAC,CAAC;IACjD,CAAC;IACD,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;IACnD,OAAO,cAAc,CAAC,OAAO,CAAC,CAAC;AACjC,CAAC;AAED;;GAEG;AACH,SAAgB,aAAa,CAC3B,IAAe,EACf,OAA0B;IAE1B,MAAM,QAAQ,GAAG,OAAO,EAAE,aAAa,IAAI,GAAG,CAAC;IAC/C,MAAM,QAAQ,GAAuB,EAAE,CAAC;IAExC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,uBAAuB,CAAC,IAAI,CAAC,CAAC,CAAC;IAC7C,QAAQ,CAAC,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAC,CAAC;IAChD,QAAQ,CAAC,IAAI,CAAC,eAAe,CAAC,IAAI,EAAE,QAAQ,CAAC,CAAC,CAAC;IAC/C,QAAQ,CAAC,IAAI,CAAC,iBAAiB,CAAC,IAAI,CAAC,CAAC,CAAC;IACvC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,0BAA0B,CAAC,IAAI,CAAC,CAAC,CAAC;IAChD,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,CAAC,CAAC;IACzC,QAAQ,CAAC,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC;IACxC,QAAQ,CAAC,IAAI,CAAC,kBAAkB,CAAC,IAAI,CAAC,CAAC,CAAC;IAExC,UAAU;IACV,IAAI,MAAM,GAAG,CAAC,CAAC;IACf,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,MAAM,gBAAgB,GAAa,EAAE,CAAC;IAEtC,KAAK,MAAM,CAAC,IAAI,QAAQ,EAAE,CAAC;QACzB,MAAM,MAAM,GAAG,gBAAgB,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;QACjD,KAAK,IAAI,MAAM,CAAC;QAChB,IAAI,CAAC,CAAC,MAAM,EAAE,CAAC;YACb,MAAM,IAAI,MAAM,CAAC;QACnB,CAAC;QACD,IAAI,CAAC,CAAC,CAAC,MAAM,IAAI,CAAC,CAAC,QAAQ,KAAK,UAAU,EAAE,CAAC;YAC3C,gBAAgB,CAAC,IAAI,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC;QACnC,CAAC;IACH,CAAC;IAED,MAAM,QAAQ,GAAG,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,MAAM,GAAG,KAAK,CAAC,GAAG,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;IACpE,MAAM,KAAK,GAAG,YAAY,CAAC,QAAQ,EAAE,gBAAgB,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;IAElE,OAAO;QACL,IAAI;QACJ,QAAQ;QACR,KAAK,EAAE,QAAQ;QACf,QAAQ,EAAE,GAAG;QACb,KAAK;QACL,gBAAgB;QAChB,MAAM,EAAE,MAAM;KACf,CAAC;AACJ,CAAC;AAED,4BAA4B;AAE5B,SAAS,YAAY,CAAC,KAAa,EAAE,WAAoB;IACvD,IAAI,KAAa,CAAC;IAClB,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,GAAG,CAAC;SACxB,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,GAAG,CAAC;SAC7B,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,GAAG,CAAC;SAC7B,IAAI,KAAK,IAAI,EAAE;QAAE,KAAK,GAAG,GAAG,CAAC;;QAC7B,KAAK,GAAG,GAAG,CAAC;IAEjB,uDAAuD;IACvD,IAAI,WAAW,IAAI,KAAK,GAAG,GAAG,EAAE,CAAC;QAC/B,0CAA0C;QAC1C,KAAK,GAAG,GAAG,CAAC;IACd,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED,4BAA4B;AAE5B,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAC/C,MAAM,OAAO,GAAa,EAAE,CAAC;IAE7B,IAAI,CAAC,IAAI,CAAC,OAAO;QAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC3C,IAAI,CAAC,IAAI,CAAC,IAAI;QAAE,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACrC,IAAI,CAAC,IAAI,CAAC,GAAG;QAAE,OAAO,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACnC,IAAI,CAAC,IAAI,CAAC,OAAO;QAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC3C,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAErE,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,KAAK,CAAC,CAAC;IACpC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,6BAA6B;YAC/B,CAAC,CAAC,4BAA4B,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;QACpD,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,gDAAgD;KACnF,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAC/C,MAAM,MAAM,GAAG,OAAO,IAAI,CAAC,SAAS,KAAK,QAAQ,IAAI,IAAI,CAAC,SAAS,CAAC,MAAM,GAAG,CAAC,CAAC;IAE/E,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,oBAAoB;YACtB,CAAC,CAAC,2DAA2D;QAC/D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,wEAAwE;KAC3G,CAAC;AACJ,CAAC;AAED,SAAS,uBAAuB,CAAC,IAAe;IAC9C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAC/C,MAAM,GAAG,GAAG,IAAI,CAAC,cAAc,CAAC;IAChC,MAAM,OAAO,GAAa,EAAE,CAAC;IAE7B,IAAI,CAAC,GAAG,EAAE,CAAC;QACT,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,iCAAiC;YAC1C,WAAW,EAAE,mEAAmE;SACjF,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,GAAG,CAAC,OAAO;QAAE,OAAO,CAAC,IAAI,CAAC,SAAS,CAAC,CAAC;IAC1C,IAAI,CAAC,GAAG,CAAC,UAAU;QAAE,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IAChD,IAAI,CAAC,GAAG,CAAC,SAAS;QAAE,OAAO,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;IAC9C,IAAI,GAAG,CAAC,UAAU,KAAK,SAAS,IAAI,GAAG,CAAC,UAAU,KAAK,IAAI;QAAE,OAAO,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;IAExF,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,KAAK,CAAC,CAAC;IACpC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,iDAAiD;YACnD,CAAC,CAAC,sCAAsC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;QAC9D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,iFAAiF;KACpH,CAAC;AACJ,CAAC;AAED,SAAS,0BAA0B,CAAC,IAAe;IACjD,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,cAAc,EAAE,SAAS,EAAE,CAAC;QACpC,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,mCAAmC;YAC5C,WAAW,EAAE,yDAAyD;SACvE,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,IAAI,CAAC,IAAI,CAAC,cAAc,CAAC,SAAS,CAAC,CAAC;IAC1D,MAAM,GAAG,GAAG,IAAI,IAAI,EAAE,CAAC;IACvB,MAAM,MAAM,GAAG,SAAS,GAAG,GAAG,CAAC;IAE/B,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,2BAA2B,IAAI,CAAC,cAAc,CAAC,SAAS,EAAE;YAC5D,CAAC,CAAC,0BAA0B,IAAI,CAAC,cAAc,CAAC,SAAS,EAAE;QAC7D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,gDAAgD;QAClF,OAAO,EAAE,EAAE,SAAS,EAAE,IAAI,CAAC,cAAc,CAAC,SAAS,EAAE;KACtD,CAAC;AACJ,CAAC;AAED,SAAS,eAAe,CAAC,IAAe,EAAE,QAAgB;IACxD,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,cAAc,IAAI,IAAI,CAAC,cAAc,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;QACzE,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,0BAA0B;YACnC,WAAW,EAAE,oDAAoD;SAClE,CAAC;IACJ,CAAC;IAED,MAAM,KAAK,GAAG,IAAI,CAAC,cAAc,CAAC,UAAU,CAAC;IAC7C,MAAM,MAAM,GAAG,KAAK,IAAI,QAAQ,CAAC;IAEjC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,eAAe,KAAK,wBAAwB,QAAQ,GAAG;YACzD,CAAC,CAAC,eAAe,KAAK,uBAAuB,QAAQ,GAAG;QAC1D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,yDAAyD;QAC3F,OAAO,EAAE,EAAE,UAAU,EAAE,KAAK,EAAE,SAAS,EAAE,QAAQ,EAAE;KACpD,CAAC;AACJ,CAAC;AAED,SAAS,iBAAiB,CAAC,IAAe;IACxC,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC7C,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,oBAAoB;YAC7B,WAAW,EAAE,8CAA8C;SAC5D,CAAC;IACJ,CAAC;IAED,MAAM,aAAa,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,WAAW,CAAC,CAAC;IAC9D,MAAM,MAAM,GAAG,aAAa,CAAC,MAAM,KAAK,CAAC,CAAC;IAE1C,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,OAAO,IAAI,CAAC,MAAM,CAAC,MAAM,0BAA0B;YACrD,CAAC,CAAC,GAAG,aAAa,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,6BAA6B;QAC9E,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,yDAAyD;QAC3F,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,OAAO,EAAE,aAAa,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC,CAAC,IAAI,CAAC,EAAE;KAClF,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC7C,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,oBAAoB;YAC7B,WAAW,EAAE,qEAAqE;SACnF,CAAC;IACJ,CAAC;IAED,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,UAAU,KAAK,IAAI,CAAC,CAAC;IAChE,MAAM,MAAM,GAAG,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC;IAEnC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,GAAG,QAAQ,CAAC,MAAM,IAAI,IAAI,CAAC,MAAM,CAAC,MAAM,kBAAkB;YAC5D,CAAC,CAAC,0BAA0B;QAC9B,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,8DAA8D;KACjG,CAAC;AACJ,CAAC;AAED,SAAS,0BAA0B,CAAC,IAAe;IACjD,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,YAAY,IAAI,IAAI,CAAC,YAAY,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACzD,yDAAyD;QACzD,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,IAAI;YACZ,OAAO,EAAE,0BAA0B;SACpC,CAAC;IACJ,CAAC;IAED,MAAM,SAAS,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,CAAC,GAAG,CAAC,EAAE,CAC/C,sBAAsB,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,CAAC,CAAC,CAAC,CAChE,CAAC;IACF,MAAM,MAAM,GAAG,SAAS,CAAC,MAAM,KAAK,CAAC,CAAC;IAEtC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,GAAG,IAAI,CAAC,YAAY,CAAC,MAAM,wCAAwC;YACrE,CAAC,CAAC,iCAAiC,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;QAC3D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,+EAA+E;QACjH,OAAO,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,EAAE,SAAS,EAAE;KAC5C,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAC/C,MAAM,MAAM,GAAa,EAAE,CAAC;IAE5B,IAAI,IAAI,CAAC,GAAG,IAAI,IAAI,CAAC,GAAG,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QAC/C,MAAM,CAAC,IAAI,CAAC,kBAAkB,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC;IAC5C,CAAC;IACD,IAAI,IAAI,CAAC,OAAO,IAAI,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QACvD,MAAM,CAAC,IAAI,CAAC,sBAAsB,IAAI,CAAC,OAAO,EAAE,CAAC,CAAC;IACpD,CAAC;IAED,MAAM,MAAM,GAAG,MAAM,CAAC,MAAM,KAAK,CAAC,CAAC;IAEnC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,oBAAoB;YACtB,CAAC,CAAC,4BAA4B,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE;QACnD,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,8CAA8C;KACjF,CAAC;AACJ,CAAC;AAED,SAAS,mBAAmB,CAAC,IAAe;IAC1C,MAAM,IAAI,GAAG,0BAAiB,CAAC,CAAC,CAAC,CAAC,CAAC,YAAY;IAE/C,IAAI,CAAC,IAAI,CAAC,OAAO,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC;QAC/B,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,IAAI;YACZ,OAAO,EAAE,IAAI,CAAC,OAAO,CAAC,CAAC,CAAC,yCAAyC,CAAC,CAAC,CAAC,+BAA+B;SACpG,CAAC;IACJ,CAAC;IAED,IAAI,SAAiB,CAAC;IACtB,IAAI,UAAkB,CAAC;IAEvB,IAAI,CAAC;QACH,SAAS,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,QAAQ,CAAC;QACvC,UAAU,GAAG,IAAI,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC,QAAQ,CAAC;IAC9C,CAAC;IAAC,MAAM,CAAC;QACP,OAAO;YACL,OAAO,EAAE,IAAI,CAAC,OAAO;YACrB,IAAI,EAAE,IAAI,CAAC,IAAI;YACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;YACvB,MAAM,EAAE,KAAK;YACb,OAAO,EAAE,gCAAgC;YACzC,WAAW,EAAE,wCAAwC;SACtD,CAAC;IACJ,CAAC;IAED,MAAM,MAAM,GAAG,SAAS,KAAK,UAAU,CAAC;IAExC,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,6BAA6B,SAAS,EAAE;YAC1C,CAAC,CAAC,wBAAwB,SAAS,aAAa,UAAU,EAAE;QAC9D,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,wEAAwE;QAC1G,OAAO,EAAE,EAAE,SAAS,EAAE,UAAU,EAAE;KACnC,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB,CAAC,IAAe;IACzC,MAAM,IAAI,GAAG,0BAAiB,CAAC,EAAE,CAAC,CAAC,CAAC,YAAY;IAChD,MAAM,MAAM,GAAG,OAAO,IAAI,CAAC,OAAO,KAAK,QAAQ,IAAI,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;IAEhF,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,WAAW,IAAI,CAAC,OAAO,kBAAkB;YAC3C,CAAC,CAAC,YAAY,IAAI,CAAC,OAAO,IAAI,SAAS,uBAAuB;QAChE,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,8DAA8D;KACjG,CAAC;AACJ,CAAC;AAED,SAAS,kBAAkB,CAAC,IAAe;IACzC,MAAM,IAAI,GAAG,0BAAiB,CAAC,EAAE,CAAC,CAAC,CAAC,YAAY;IAChD,MAAM,EAAE,GAAG,IAAI,CAAC,OAAO,IAAI,EAAE,CAAC;IAC9B,MAAM,MAAM,GAAG,EAAE,CAAC,MAAM,GAAG,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,GAAG,CAAC;IAEhD,OAAO;QACL,OAAO,EAAE,IAAI,CAAC,OAAO;QACrB,IAAI,EAAE,IAAI,CAAC,IAAI;QACf,QAAQ,EAAE,IAAI,CAAC,QAAQ;QACvB,MAAM;QACN,OAAO,EAAE,MAAM;YACb,CAAC,CAAC,sBAAsB,EAAE,CAAC,MAAM,SAAS;YAC1C,CAAC,CAAC,EAAE,CAAC,MAAM,KAAK,CAAC,CAAC,CAAC,CAAC,mBAAmB,CAAC,CAAC,CAAC,sBAAsB,EAAE,CAAC,MAAM,SAAS;QACpF,WAAW,EAAE,MAAM,CAAC,CAAC,CAAC,SAAS,CAAC,CAAC,CAAC,4DAA4D;KAC/F,CAAC;AACJ,CAAC"}

package/dist/agent-scan/types.d.ts

@@ -0,0 +1,63 @@
+/**
+ * Agent card types for A2A agent card security scanning.
+ *
+ * Types are defined locally (not imported from AIM SDK) to keep
+ * HMA self-contained. They are structurally compatible with
+ * AIM's A2AAgentCard interface.
+ */
+import type { Severity } from '../hardening/security-check';
+export interface AgentSkill {
+    id: string;
+    name: string;
+    description?: string;
+    inputSchema?: Record<string, unknown>;
+    outputSchema?: Record<string, unknown>;
+    isVerified?: boolean;
+    attestationCount?: number;
+}
+export interface AgentAttestation {
+    agentId: string;
+    attestedAt: string;
+    expiresAt: string;
+    trustScore: number;
+    signature?: string;
+    attestationType?: string;
+}
+export interface AgentCard {
+    agentId: string;
+    name: string;
+    url: string;
+    cardUrl?: string;
+    version: string;
+    description?: string;
+    capabilities?: string[];
+    skills: AgentSkill[];
+    publicKey?: string;
+    aimAttestation?: AgentAttestation;
+}
+export interface AgentScanCheck {
+    checkId: string;
+    name: string;
+    description: string;
+    severity: Severity;
+    category: string;
+}
+export interface AgentScanFinding {
+    checkId: string;
+    name: string;
+    severity: Severity;
+    passed: boolean;
+    message: string;
+    details?: Record<string, unknown>;
+    remediation?: string;
+}
+export interface AgentScanResult {
+    card: AgentCard;
+    findings: AgentScanFinding[];
+    score: number;
+    maxScore: number;
+    grade: string;
+    criticalFailures: string[];
+    source: 'url' | 'file';
+}
+//# sourceMappingURL=types.d.ts.map

package/dist/agent-scan/types.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../src/agent-scan/types.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG;AAEH,OAAO,KAAK,EAAE,QAAQ,EAAE,MAAM,6BAA6B,CAAC;AAI5D,MAAM,WAAW,UAAU;IACzB,EAAE,EAAE,MAAM,CAAC;IACX,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACtC,YAAY,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IACvC,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,EAAE,MAAM,CAAC;IAClB,UAAU,EAAE,MAAM,CAAC;IACnB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,MAAM,WAAW,SAAS;IACxB,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,GAAG,EAAE,MAAM,CAAC;IACZ,OAAO,CAAC,EAAE,MAAM,CAAC;IACjB,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,YAAY,CAAC,EAAE,MAAM,EAAE,CAAC;IACxB,MAAM,EAAE,UAAU,EAAE,CAAC;IACrB,SAAS,CAAC,EAAE,MAAM,CAAC;IACnB,cAAc,CAAC,EAAE,gBAAgB,CAAC;CACnC;AAID,MAAM,WAAW,cAAc;IAC7B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,QAAQ,CAAC;IACnB,QAAQ,EAAE,MAAM,CAAC;CAClB;AAED,MAAM,WAAW,gBAAgB;IAC/B,OAAO,EAAE,MAAM,CAAC;IAChB,IAAI,EAAE,MAAM,CAAC;IACb,QAAQ,EAAE,QAAQ,CAAC;IACnB,MAAM,EAAE,OAAO,CAAC;IAChB,OAAO,EAAE,MAAM,CAAC;IAChB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,OAAO,CAAC,CAAC;IAClC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,SAAS,CAAC;IAChB,QAAQ,EAAE,gBAAgB,EAAE,CAAC;IAC7B,KAAK,EAAE,MAAM,CAAC;IACd,QAAQ,EAAE,MAAM,CAAC;IACjB,KAAK,EAAE,MAAM,CAAC;IACd,gBAAgB,EAAE,MAAM,EAAE,CAAC;IAC3B,MAAM,EAAE,KAAK,GAAG,MAAM,CAAC;CACxB"}

package/dist/agent-scan/types.js

@@ -0,0 +1,10 @@
+"use strict";
+/**
+ * Agent card types for A2A agent card security scanning.
+ *
+ * Types are defined locally (not imported from AIM SDK) to keep
+ * HMA self-contained. They are structurally compatible with
+ * AIM's A2AAgentCard interface.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=types.js.map

package/dist/agent-scan/types.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"types.js","sourceRoot":"","sources":["../../src/agent-scan/types.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG"}

package/dist/arp/cli/index.d.ts

@@ -0,0 +1,3 @@
+#!/usr/bin/env node
+export {};
+//# sourceMappingURL=index.d.ts.map

package/dist/arp/cli/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/arp/cli/index.ts"],"names":[],"mappings":""}