openchrome-mcp 1.10.2 → 1.10.3

package/README.md

@@ -14,6 +14,7 @@
   <a href="https://github.com/shaun0927/openchrome/releases/latest"><img src="https://img.shields.io/github/v/release/shaun0927/openchrome" alt="Latest Release"></a>
   <a href="https://github.com/shaun0927/openchrome/releases/latest"><img src="https://img.shields.io/github/release-date/shaun0927/openchrome" alt="Release Date"></a>
   <a href="https://opensource.org/licenses/MIT"><img src="https://img.shields.io/badge/License-MIT-yellow.svg" alt="MIT"></a>
+  <a href="https://mseep.ai/app/shaun0927-openchrome"><img src="assets/badges/mseep.png" alt="Listed on MseeP.ai" height="20"></a>
 </p>
 
 <p align="center">
@@ -208,6 +209,11 @@ npx openchrome-mcp setup
 npx openchrome-mcp setup --client codex
 ```
 
+**OpenCode**
+```bash
+npx openchrome-mcp setup --client opencode
+```
+
 One command. Configures the MCP server for the selected client.
 Restart your MCP client after setup completes.
 
@@ -244,6 +250,20 @@ claude mcp add openchrome -- npx -y openchrome-mcp@latest serve --auto-launch
 }
 ```
 
+
+**OpenCode** (`~/.config/opencode/opencode.json`):
+```json
+{
+  "$schema": "https://opencode.ai/config.json",
+  "mcp": {
+    "openchrome": {
+      "type": "local",
+      "command": ["npx", "--prefer-online", "-y", "openchrome-mcp@latest", "serve", "--auto-launch"]
+    }
+  }
+}
+```
+
 **Cursor / Windsurf / Other stdio MCP clients:**
 ```json
 {
@@ -397,9 +417,11 @@ When a navigation is blocked by CDN/WAF systems (Akamai, Cloudflare, etc.), Open
 Tier 3 launches a real headed Chrome window with a genuine user-agent (`Chrome/...` instead of `HeadlessChrome/...`) and a different TLS fingerprint, bypassing binary-level detection that no JavaScript injection can fix.
 
 **Parameters:**
-- `autoFallback: false` — disable all automatic retry
-- `headed: true` — skip directly to Tier 3 (headed Chrome)
-- `stealth: true` — use stealth mode (Tier 2) explicitly
+- `autoFallback: false` — disable automatic CDN/WAF retry. This does not log in for you or bypass normal authentication redirects.
+- `headed: true` — skip directly to headed Chrome for user-visible login, 2FA, CAPTCHA, or sites that require a real browser window.
+- `stealth: true` — use stealth mode (Tier 2) explicitly.
+
+**Authentication note:** Auto-fallback is for detected CDN/WAF blocking. If a protected app redirects from the requested URL to a same-site login page, treat that as an authentication handoff: retry with `headed: true` and the same persistent profile, let the user complete login, then verify whether headless can reuse that profile state.
 
 **Environment:** Tier 3 requires a display (macOS/Windows desktop, or Linux with `$DISPLAY`). In server/container environments without a display, Tier 3 is gracefully skipped.
 
@@ -426,15 +448,22 @@ If client A opens five tabs and client B opens five tabs, all ten `tabId`s are d
 
 ### How do I handle sites that require interactive login (password, 2FA, CAPTCHA)?
 
-Two mechanisms, used together in practice:
+Use two mechanisms, but keep their guarantees separate:
+
+**1. Persistent-profile headless — reuse an already-authenticated profile.**
+Point OpenChrome at a persistent `userDataDir` (+ optional `profileDirectory`) so cookies / `localStorage` / IndexedDB can survive across runs. If that persistent profile already contains a valid session, subsequent **headless** runs stay logged in until the site invalidates the session.
 
-**1. Persistent-profile headless — log in once, automate forever.**
-Point OpenChrome at a persistent `userDataDir` (+ optional `profileDirectory`) and cookies / `localStorage` / IndexedDB survive across runs. After the first login, subsequent **headless** runs stay logged in until the site invalidates the session.
+**2. Headed-by-default / headed fallback — let the user complete an interactive step.**
+Since #657 the launcher runs headed by default, so first-time login, 2FA, CAPTCHA, and WebAuthn can use a real visible window without extra flags. CI / Docker users opt into headless via `--headless` or `OPENCHROME_HEADLESS=1` after their persistent profile is bootstrapped. When a Tier-1/Tier-2 headless attempt is blocked by a CDN/WAF, OpenChrome can also lazy-launch a separate headed Chrome on a different debug port and register the headed page back into the same logical session.
 
-**2. Headed fallback for the initial login or WAF-blocked sites.**
-When a human action is genuinely required (first-time login, 2FA, CAPTCHA, WebAuthn) or when a Tier-1/Tier-2 headless attempt is blocked by a CDN/WAF, OpenChrome lazy-launches a separate headed Chrome on a different debug port. Cookies are sync'd from the real Chrome profile before launch, and the headed page is registered back into the same logical session so the surrounding workflow continues seamlessly.
+**Important:** a headed tab being authenticated does not automatically prove that a new headless tab can reuse the session after the headed tab is closed. Sites differ in how they bind cookies, storage, browser fingerprints, and session freshness. Always verify the handoff by closing/restarting the headed path you plan to stop using and navigating headless to the protected URL with the same persistent profile.
 
-**Typical pattern:** bootstrap the login once via the headed path → the persistent profile carries the cookies → all subsequent automation runs headless without a window.
+**Recommended flow:**
+1. Start with the persistent `userDataDir` / `profileDirectory` you intend to keep using.
+2. Navigate to the protected URL. If it resolves to `/login` or another auth page, do not keep retrying unauthenticated headless navigation.
+3. Use the visible headed window (default) or navigate with `headed: true` and the same profile context, then let the user complete login/2FA/CAPTCHA.
+4. Retry the protected URL with the same profile in the mode you intend to automate.
+5. If headless still lands on the login page, keep the headed tab open for that site or reconfigure persistence; do not assume the headed auth state transferred.
 
 ### Does OpenChrome steal focus with popup windows?
 
@@ -442,12 +471,12 @@ When a human action is genuinely required (first-time login, 2FA, CAPTCHA, WebAu
 
 The headed-browser focus-stealing pattern that users encounter with some MCP servers (cross-Space jumps on macOS, un-minimizable popups, per-tool-call window raises) comes from designs where the MCP drives a user-visible browser and creates OS windows as it works. OpenChrome is architected differently:
 
-- **Default mode is headless** — no window exists, so there is nothing to take focus.
 - **`tabs_create` opens a tab, not an OS window.** New tabs are created via CDP inside the already-running Chrome, and OpenChrome never calls `page.bringToFront()` anywhere in the codebase.
-- **The headed fallback is lazy and reused.** When it is needed, it launches **once** per server lifetime; every later navigation/tab runs inside that same instance. At worst you see one focus grab the very first time the fallback activates — not one per action, never one per tab.
-- **The headed fallback is optional.** If persistent-profile headless is sufficient for your sites, you will never see a browser window.
+- **No per-call window raises.** Each navigation/click/tool call runs against the existing window without `bringToFront()`, `focus()`, or any other stealing primitive. After the initial Chrome launch you keep working in your other apps without interruption.
+- **One Chrome per server lifetime.** Auto-launch creates Chrome **once** at startup and reuses it for every later tool call — no popup-per-action loop.
+- **Headless opt-in available.** For CI/server use, `--headless` or `OPENCHROME_HEADLESS=1` runs without any window at all. The default is headed since #657 because headless mode is materially more prone to silent hangs and login failures on real-world sites.
 
-The only scenario in which a window appears at all is the first time the Tier-3 headed fallback activates in a given session.
+The only scenario in which a focus grab can happen is the very first Chrome launch — not one per tool call, never one per tab.
 
 ---
 
@@ -538,6 +567,7 @@ docker run openchrome
 | `OPENCHROME_PPID_WATCH` | Set to `0` to disable the parent-process watcher in stdio mode. Default: enabled. The watcher exits the server when its launching MCP-client parent dies, so abrupt parent termination (force-quit, `kill -9`, tmux teardown) does not orphan the openchrome process. HTTP and `both` transport modes ignore this flag — they remain daemon-capable. |
 | `OPENCHROME_PPID_WATCH_INTERVAL_MS` | Polling interval for the parent watcher in milliseconds. Default: `2000`. Clamped to `[500, 60000]`. |
 | `OPENCHROME_HEALTH_ENDPOINT` | Force-enable (`1`/`true`) or force-disable (`0`/`false`) the `/health` and `/metrics` HTTP listener. Default: on for `--transport http` / `both`, off for `--transport stdio`. Stdio-mode instances usually talk to a single MCP client over the pipe and do not need an external monitoring port; disabling it saves ~200-300 KB heap + one file descriptor per instance. Operators who run stdio under a supervisor can opt in with `OPENCHROME_HEALTH_ENDPOINT=1`; daemon-mode operators who run the health check externally can opt out with `OPENCHROME_HEALTH_ENDPOINT=0`. Invalid values (e.g. `yes`, `2`) fall through to the transport-mode default. |
+| `OPENCHROME_HEADLESS` | Opt into headless Chrome from CI / Docker without `--headless`. Accepts `1`/`true`/`yes` (headless) or `0`/`false`/`no` (headed). Lower precedence than the CLI flag, higher than persisted config. Default since #657 is headed. |
 
 ### Individual flags
 
@@ -553,9 +583,10 @@ openchrome serve \
 | Flag | Default | Description |
 |------|---------|-------------|
 | `--auto-launch` | `false` | Auto-launch Chrome if not running |
+| `--headless` | `false` | Run Chrome headless. Also: `OPENCHROME_HEADLESS=1`. Default since #657 is headed. |
 | `--headless-shell` | `false` | Use chrome-headless-shell binary |
-| `--visible` | `false` | Show Chrome window (disables headless) |
-| `--server-mode` | `false` | Compound flag for server deployment |
+| `--visible` | (deprecated) | No-op alias for headed; the new default is headed since #657. Will be removed in a future release. |
+| `--server-mode` | `false` | Compound flag for server deployment (forces `--headless` + auto-launch) |
 
 ---
 

package/dist/chrome/exit-classifier.d.ts

@@ -0,0 +1,66 @@
+/**
+ * Chrome exit classifier (#660).
+ *
+ * Distinguishes user-initiated close from a crash so the watchdog can stop
+ * silently re-launching Chrome that the user just told the OS to close.
+ *
+ * Inputs are the Node `exit` event fields plus how long Chrome was alive
+ * before the exit fired:
+ *   - code   — process exit code, or `null` if killed by a signal
+ *   - signal — POSIX signal name, or `null` if exited normally
+ *   - uptimeMs — wall time from spawn to exit
+ *   - intentionalStop — set by the launcher when oc_stop / shutdown ran
+ *
+ * Anti-flap: Chrome cold-start typically takes 1-3 s. A "clean" exit within
+ * a few seconds overwhelmingly indicates a misconfigured launch (bad
+ * --user-data-dir, missing binary) rather than a deliberate user action.
+ * The threshold defaults to 5 s and is configurable via
+ * OPENCHROME_ANTIFLAP_SECONDS.
+ */
+export type ExitClassification = 'intentional' | 'clean' | 'crash';
+export interface ClassifyExitInput {
+    /** Process exit code (number) or null if killed by a signal. */
+    code: number | null;
+    /** Signal name (e.g. 'SIGTERM') or null. */
+    signal: NodeJS.Signals | null;
+    /** Milliseconds Chrome was alive before exit. */
+    uptimeMs: number;
+    /** True if openchrome itself initiated the stop (oc_stop or MCP shutdown). */
+    intentionalStop: boolean;
+}
+/**
+ * Read the anti-flap threshold (in milliseconds) from
+ * OPENCHROME_ANTIFLAP_SECONDS, with a 5-second default.
+ *
+ * `0` means "disable anti-flap entirely" (gemini medium review on #668).
+ * Negative / non-numeric values fall back to the default. Callers can
+ * pass an override for tests.
+ */
+export declare function antiFlapMs(envValue?: string | undefined): number;
+/**
+ * Read the watchdog quiesce duration (ms) from OPENCHROME_QUIESCE_MS.
+ * Default is 60 s. `0` disables quiesce entirely (gemini high review on #668).
+ */
+export declare function quiesceMs(envValue?: string | undefined): number;
+/**
+ * Classify a Chrome exit.
+ *
+ * Decision matrix (highest priority first):
+ *   1. intentionalStop=true   → 'intentional'
+ *   2. uptimeMs < anti-flap   → 'crash' (Chrome failed to start cleanly)
+ *   3. code===0               → 'clean' (user closed window normally)
+ *   4. SIGTERM / SIGINT       → 'clean' (red dot / Cmd+Q / WM close)
+ *   5. otherwise              → 'crash' (segfault, OOM, abort, …)
+ */
+export declare function classifyExit(input: ClassifyExitInput, opts?: {
+    antiFlapMs?: number;
+}): ExitClassification;
+/**
+ * Should the watchdog rate-limit relaunches because Chrome has been
+ * crashing repeatedly? Returns true after `threshold` crashes inside
+ * `windowMs`.
+ *
+ * Pure function: caller provides the timestamps array.
+ */
+export declare function shouldRateLimitRelaunch(recentCrashTimestampsMs: ReadonlyArray<number>, now?: number, windowMs?: number, threshold?: number): boolean;
+//# sourceMappingURL=exit-classifier.d.ts.map

package/dist/chrome/exit-classifier.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"exit-classifier.d.ts","sourceRoot":"","sources":["../../src/chrome/exit-classifier.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;GAkBG;AAEH,MAAM,MAAM,kBAAkB,GAAG,aAAa,GAAG,OAAO,GAAG,OAAO,CAAC;AAEnE,MAAM,WAAW,iBAAiB;IAChC,gEAAgE;IAChE,IAAI,EAAE,MAAM,GAAG,IAAI,CAAC;IACpB,4CAA4C;IAC5C,MAAM,EAAE,MAAM,CAAC,OAAO,GAAG,IAAI,CAAC;IAC9B,iDAAiD;IACjD,QAAQ,EAAE,MAAM,CAAC;IACjB,8EAA8E;IAC9E,eAAe,EAAE,OAAO,CAAC;CAC1B;AAED;;;;;;;GAOG;AACH,wBAAgB,UAAU,CAAC,QAAQ,GAAE,MAAM,GAAG,SAAmD,GAAG,MAAM,CAKzG;AAED;;;GAGG;AACH,wBAAgB,SAAS,CAAC,QAAQ,GAAE,MAAM,GAAG,SAA6C,GAAG,MAAM,CAKlG;AAED;;;;;;;;;GASG;AACH,wBAAgB,YAAY,CAC1B,KAAK,EAAE,iBAAiB,EACxB,IAAI,GAAE;IAAE,UAAU,CAAC,EAAE,MAAM,CAAA;CAAO,GACjC,kBAAkB,CAiBpB;AAED;;;;;;GAMG;AACH,wBAAgB,uBAAuB,CACrC,uBAAuB,EAAE,aAAa,CAAC,MAAM,CAAC,EAC9C,GAAG,GAAE,MAAmB,EACxB,QAAQ,GAAE,MAAe,EACzB,SAAS,GAAE,MAAU,GACpB,OAAO,CAMT"}

package/dist/chrome/exit-classifier.js

@@ -0,0 +1,97 @@
+"use strict";
+/**
+ * Chrome exit classifier (#660).
+ *
+ * Distinguishes user-initiated close from a crash so the watchdog can stop
+ * silently re-launching Chrome that the user just told the OS to close.
+ *
+ * Inputs are the Node `exit` event fields plus how long Chrome was alive
+ * before the exit fired:
+ *   - code   — process exit code, or `null` if killed by a signal
+ *   - signal — POSIX signal name, or `null` if exited normally
+ *   - uptimeMs — wall time from spawn to exit
+ *   - intentionalStop — set by the launcher when oc_stop / shutdown ran
+ *
+ * Anti-flap: Chrome cold-start typically takes 1-3 s. A "clean" exit within
+ * a few seconds overwhelmingly indicates a misconfigured launch (bad
+ * --user-data-dir, missing binary) rather than a deliberate user action.
+ * The threshold defaults to 5 s and is configurable via
+ * OPENCHROME_ANTIFLAP_SECONDS.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.antiFlapMs = antiFlapMs;
+exports.quiesceMs = quiesceMs;
+exports.classifyExit = classifyExit;
+exports.shouldRateLimitRelaunch = shouldRateLimitRelaunch;
+/**
+ * Read the anti-flap threshold (in milliseconds) from
+ * OPENCHROME_ANTIFLAP_SECONDS, with a 5-second default.
+ *
+ * `0` means "disable anti-flap entirely" (gemini medium review on #668).
+ * Negative / non-numeric values fall back to the default. Callers can
+ * pass an override for tests.
+ */
+function antiFlapMs(envValue = process.env.OPENCHROME_ANTIFLAP_SECONDS) {
+    if (envValue === undefined || envValue === '')
+        return 5_000;
+    const parsed = parseInt(envValue, 10);
+    if (!Number.isFinite(parsed) || parsed < 0)
+        return 5_000;
+    return parsed * 1000;
+}
+/**
+ * Read the watchdog quiesce duration (ms) from OPENCHROME_QUIESCE_MS.
+ * Default is 60 s. `0` disables quiesce entirely (gemini high review on #668).
+ */
+function quiesceMs(envValue = process.env.OPENCHROME_QUIESCE_MS) {
+    if (envValue === undefined || envValue === '')
+        return 60_000;
+    const parsed = parseInt(envValue, 10);
+    if (!Number.isFinite(parsed) || parsed < 0)
+        return 60_000;
+    return parsed;
+}
+/**
+ * Classify a Chrome exit.
+ *
+ * Decision matrix (highest priority first):
+ *   1. intentionalStop=true   → 'intentional'
+ *   2. uptimeMs < anti-flap   → 'crash' (Chrome failed to start cleanly)
+ *   3. code===0               → 'clean' (user closed window normally)
+ *   4. SIGTERM / SIGINT       → 'clean' (red dot / Cmd+Q / WM close)
+ *   5. otherwise              → 'crash' (segfault, OOM, abort, …)
+ */
+function classifyExit(input, opts = {}) {
+    if (input.intentionalStop)
+        return 'intentional';
+    const flapMs = opts.antiFlapMs ?? antiFlapMs();
+    // Negative uptime can't physically happen but we still treat it as "no
+    // uptime info" rather than auto-crashing on clock-skew weirdness.
+    if (input.uptimeMs < flapMs)
+        return 'crash';
+    if (input.code === 0)
+        return 'clean';
+    // Signal-based clean exits (POSIX user close → SIGTERM, Ctrl+C → SIGINT).
+    // Node guarantees at least one of (code, signal) is non-null on the
+    // 'exit' event, so we don't re-handle the all-null case here.
+    const cleanSignals = ['SIGTERM', 'SIGINT'];
+    if (input.signal !== null && cleanSignals.includes(input.signal))
+        return 'clean';
+    return 'crash';
+}
+/**
+ * Should the watchdog rate-limit relaunches because Chrome has been
+ * crashing repeatedly? Returns true after `threshold` crashes inside
+ * `windowMs`.
+ *
+ * Pure function: caller provides the timestamps array.
+ */
+function shouldRateLimitRelaunch(recentCrashTimestampsMs, now = Date.now(), windowMs = 60_000, threshold = 3) {
+    let count = 0;
+    for (const t of recentCrashTimestampsMs) {
+        if (now - t <= windowMs)
+            count++;
+    }
+    return count >= threshold;
+}
+//# sourceMappingURL=exit-classifier.js.map

package/dist/chrome/exit-classifier.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"exit-classifier.js","sourceRoot":"","sources":["../../src/chrome/exit-classifier.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;GAkBG;;AAuBH,gCAKC;AAMD,8BAKC;AAYD,oCAoBC;AASD,0DAWC;AA5ED;;;;;;;GAOG;AACH,SAAgB,UAAU,CAAC,WAA+B,OAAO,CAAC,GAAG,CAAC,2BAA2B;IAC/F,IAAI,QAAQ,KAAK,SAAS,IAAI,QAAQ,KAAK,EAAE;QAAE,OAAO,KAAK,CAAC;IAC5D,MAAM,MAAM,GAAG,QAAQ,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,MAAM,GAAG,CAAC;QAAE,OAAO,KAAK,CAAC;IACzD,OAAO,MAAM,GAAG,IAAI,CAAC;AACvB,CAAC;AAED;;;GAGG;AACH,SAAgB,SAAS,CAAC,WAA+B,OAAO,CAAC,GAAG,CAAC,qBAAqB;IACxF,IAAI,QAAQ,KAAK,SAAS,IAAI,QAAQ,KAAK,EAAE;QAAE,OAAO,MAAM,CAAC;IAC7D,MAAM,MAAM,GAAG,QAAQ,CAAC,QAAQ,EAAE,EAAE,CAAC,CAAC;IACtC,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,IAAI,MAAM,GAAG,CAAC;QAAE,OAAO,MAAM,CAAC;IAC1D,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;;;GASG;AACH,SAAgB,YAAY,CAC1B,KAAwB,EACxB,OAAgC,EAAE;IAElC,IAAI,KAAK,CAAC,eAAe;QAAE,OAAO,aAAa,CAAC;IAEhD,MAAM,MAAM,GAAG,IAAI,CAAC,UAAU,IAAI,UAAU,EAAE,CAAC;IAC/C,uEAAuE;IACvE,kEAAkE;IAClE,IAAI,KAAK,CAAC,QAAQ,GAAG,MAAM;QAAE,OAAO,OAAO,CAAC;IAE5C,IAAI,KAAK,CAAC,IAAI,KAAK,CAAC;QAAE,OAAO,OAAO,CAAC;IAErC,0EAA0E;IAC1E,oEAAoE;IACpE,8DAA8D;IAC9D,MAAM,YAAY,GAAkC,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;IAC1E,IAAI,KAAK,CAAC,MAAM,KAAK,IAAI,IAAI,YAAY,CAAC,QAAQ,CAAC,KAAK,CAAC,MAAM,CAAC;QAAE,OAAO,OAAO,CAAC;IAEjF,OAAO,OAAO,CAAC;AACjB,CAAC;AAED;;;;;;GAMG;AACH,SAAgB,uBAAuB,CACrC,uBAA8C,EAC9C,MAAc,IAAI,CAAC,GAAG,EAAE,EACxB,WAAmB,MAAM,EACzB,YAAoB,CAAC;IAErB,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,KAAK,MAAM,CAAC,IAAI,uBAAuB,EAAE,CAAC;QACxC,IAAI,GAAG,GAAG,CAAC,IAAI,QAAQ;YAAE,KAAK,EAAE,CAAC;IACnC,CAAC;IACD,OAAO,KAAK,IAAI,SAAS,CAAC;AAC5B,CAAC"}

package/dist/chrome/launch-mode-resolver.d.ts

@@ -0,0 +1,78 @@
+/**
+ * Launch mode resolver (#659).
+ *
+ * Decides how openchrome should obtain a Chrome to drive when the user
+ * specifies a profile.
+ *
+ * Three modes:
+ *
+ *   'auto'      — default; openchrome probes the configured remote-debugging
+ *                 port first and attaches if Chrome is already there;
+ *                 otherwise spawns its own Chrome. (Existing behavior — no
+ *                 change for users who don't set anything.)
+ *
+ *   'attach'    — opt-in; openchrome MUST attach to an existing Chrome that
+ *                 the user pre-launched with `--remote-debugging-port`. If
+ *                 nothing is listening, the launcher returns a structured
+ *                 error (`AttachConsentRequiredError`) so the agent can
+ *                 surface a helpful next-step message instead of silently
+ *                 spawning a clean-room copy.
+ *
+ *   'isolated'  — opt-in; openchrome ALWAYS spawns its own Chrome with the
+ *                 isolated `--user-data-dir` even if a Chrome is already
+ *                 listening on the debug port. Useful for clean-room
+ *                 scraping where you want a guaranteed fresh profile.
+ *
+ * Important policy decisions baked in here (see #659 PR description):
+ *   1. Default stays 'auto'. No behavior change for existing users.
+ *   2. We NEVER auto-restart the user's Chrome to enable a debug port.
+ *      If the user wants attach mode, they must launch Chrome themselves
+ *      with `--remote-debugging-port=NNNN`. The follow-up "automatic
+ *      restart with consent" workflow is deferred to a separate issue.
+ *   3. When attach mode is on AND the port isn't listening, we surface a
+ *      loud, structured error rather than silently falling back —
+ *      otherwise the user would never realise their attach attempt
+ *      didn't take.
+ */
+export type LaunchMode = 'auto' | 'attach' | 'isolated';
+export interface LaunchModeOptions {
+    /** Per-call override (highest priority). */
+    launchMode?: LaunchMode | string;
+}
+export interface LaunchModeEnv {
+    OPENCHROME_LAUNCH_MODE?: string;
+}
+export interface LaunchModeConfig {
+    chromeLaunchMode?: LaunchMode | string;
+}
+export declare class InvalidLaunchModeError extends Error {
+    constructor(value: string, source: 'cli' | 'env' | 'config');
+}
+/**
+ * Resolves the launch mode from CLI options, env, and config.
+ * Precedence (highest first):
+ *   1. options.launchMode    (per-call override)
+ *   2. OPENCHROME_LAUNCH_MODE env var
+ *   3. globalConfig.chromeLaunchMode
+ *   4. 'auto'                 (default)
+ *
+ * Throws `InvalidLaunchModeError` for unrecognised values rather than
+ * silently coercing — surfaces typos in env vars and config files.
+ */
+export declare function resolveLaunchMode(options?: LaunchModeOptions, env?: LaunchModeEnv, config?: LaunchModeConfig): LaunchMode;
+/**
+ * Structured error: surface to the agent when attach is required but no
+ * Chrome is listening on the debug port. The agent's logs / tool output
+ * carry the helpful next steps so the user can react out-of-band.
+ *
+ * NOTE: openchrome runs as an MCP server over stdio with no human at the
+ * other end, so we cannot interactively prompt. The error message is the
+ * UX surface.
+ */
+export declare class AttachConsentRequiredError extends Error {
+    readonly errorCode: "attach_consent_required";
+    readonly port: number;
+    readonly hint: string;
+    constructor(port: number);
+}
+//# sourceMappingURL=launch-mode-resolver.d.ts.map

package/dist/chrome/launch-mode-resolver.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"launch-mode-resolver.d.ts","sourceRoot":"","sources":["../../src/chrome/launch-mode-resolver.ts"],"names":[],"mappings":"AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;AAEH,MAAM,MAAM,UAAU,GAAG,MAAM,GAAG,QAAQ,GAAG,UAAU,CAAC;AAExD,MAAM,WAAW,iBAAiB;IAChC,4CAA4C;IAC5C,UAAU,CAAC,EAAE,UAAU,GAAG,MAAM,CAAC;CAClC;AAED,MAAM,WAAW,aAAa;IAC5B,sBAAsB,CAAC,EAAE,MAAM,CAAC;CACjC;AAED,MAAM,WAAW,gBAAgB;IAC/B,gBAAgB,CAAC,EAAE,UAAU,GAAG,MAAM,CAAC;CACxC;AAED,qBAAa,sBAAuB,SAAQ,KAAK;gBACnC,KAAK,EAAE,MAAM,EAAE,MAAM,EAAE,KAAK,GAAG,KAAK,GAAG,QAAQ;CAI5D;AAeD;;;;;;;;;;GAUG;AACH,wBAAgB,iBAAiB,CAC/B,OAAO,GAAE,iBAAsB,EAC/B,GAAG,GAAE,aAAkB,EACvB,MAAM,GAAE,gBAAqB,GAC5B,UAAU,CAWZ;AAED;;;;;;;;GAQG;AACH,qBAAa,0BAA2B,SAAQ,KAAK;IACnD,QAAQ,CAAC,SAAS,EAAG,yBAAyB,CAAU;IACxD,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;gBAEV,IAAI,EAAE,MAAM;CAYzB"}

package/dist/chrome/launch-mode-resolver.js

@@ -0,0 +1,108 @@
+"use strict";
+/**
+ * Launch mode resolver (#659).
+ *
+ * Decides how openchrome should obtain a Chrome to drive when the user
+ * specifies a profile.
+ *
+ * Three modes:
+ *
+ *   'auto'      — default; openchrome probes the configured remote-debugging
+ *                 port first and attaches if Chrome is already there;
+ *                 otherwise spawns its own Chrome. (Existing behavior — no
+ *                 change for users who don't set anything.)
+ *
+ *   'attach'    — opt-in; openchrome MUST attach to an existing Chrome that
+ *                 the user pre-launched with `--remote-debugging-port`. If
+ *                 nothing is listening, the launcher returns a structured
+ *                 error (`AttachConsentRequiredError`) so the agent can
+ *                 surface a helpful next-step message instead of silently
+ *                 spawning a clean-room copy.
+ *
+ *   'isolated'  — opt-in; openchrome ALWAYS spawns its own Chrome with the
+ *                 isolated `--user-data-dir` even if a Chrome is already
+ *                 listening on the debug port. Useful for clean-room
+ *                 scraping where you want a guaranteed fresh profile.
+ *
+ * Important policy decisions baked in here (see #659 PR description):
+ *   1. Default stays 'auto'. No behavior change for existing users.
+ *   2. We NEVER auto-restart the user's Chrome to enable a debug port.
+ *      If the user wants attach mode, they must launch Chrome themselves
+ *      with `--remote-debugging-port=NNNN`. The follow-up "automatic
+ *      restart with consent" workflow is deferred to a separate issue.
+ *   3. When attach mode is on AND the port isn't listening, we surface a
+ *      loud, structured error rather than silently falling back —
+ *      otherwise the user would never realise their attach attempt
+ *      didn't take.
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.AttachConsentRequiredError = exports.InvalidLaunchModeError = void 0;
+exports.resolveLaunchMode = resolveLaunchMode;
+class InvalidLaunchModeError extends Error {
+    constructor(value, source) {
+        super(`Invalid launch mode "${value}" (from ${source}); expected 'auto' | 'attach' | 'isolated'.`);
+        this.name = 'InvalidLaunchModeError';
+    }
+}
+exports.InvalidLaunchModeError = InvalidLaunchModeError;
+const VALID = new Set(['auto', 'attach', 'isolated']);
+function parse(value, source) {
+    if (value === undefined)
+        return undefined;
+    const trimmed = value.trim();
+    if (trimmed === '')
+        return undefined;
+    const normalized = trimmed.toLowerCase();
+    if (!VALID.has(normalized)) {
+        throw new InvalidLaunchModeError(trimmed, source);
+    }
+    return normalized;
+}
+/**
+ * Resolves the launch mode from CLI options, env, and config.
+ * Precedence (highest first):
+ *   1. options.launchMode    (per-call override)
+ *   2. OPENCHROME_LAUNCH_MODE env var
+ *   3. globalConfig.chromeLaunchMode
+ *   4. 'auto'                 (default)
+ *
+ * Throws `InvalidLaunchModeError` for unrecognised values rather than
+ * silently coercing — surfaces typos in env vars and config files.
+ */
+function resolveLaunchMode(options = {}, env = {}, config = {}) {
+    const fromCli = parse(typeof options.launchMode === 'string' ? options.launchMode : undefined, 'cli');
+    if (fromCli)
+        return fromCli;
+    const fromEnv = parse(env.OPENCHROME_LAUNCH_MODE, 'env');
+    if (fromEnv)
+        return fromEnv;
+    const fromConfig = parse(typeof config.chromeLaunchMode === 'string' ? config.chromeLaunchMode : undefined, 'config');
+    if (fromConfig)
+        return fromConfig;
+    return 'auto';
+}
+/**
+ * Structured error: surface to the agent when attach is required but no
+ * Chrome is listening on the debug port. The agent's logs / tool output
+ * carry the helpful next steps so the user can react out-of-band.
+ *
+ * NOTE: openchrome runs as an MCP server over stdio with no human at the
+ * other end, so we cannot interactively prompt. The error message is the
+ * UX surface.
+ */
+class AttachConsentRequiredError extends Error {
+    errorCode = 'attach_consent_required';
+    port;
+    hint;
+    constructor(port) {
+        const hint = `Set OPENCHROME_LAUNCH_MODE=auto (default) to spawn a fresh Chrome instead, ` +
+            `OR launch Chrome yourself with --remote-debugging-port=${port} so openchrome can attach to it. ` +
+            `openchrome will NOT close or restart your existing Chrome automatically.`;
+        super(`attach mode is enabled but no Chrome is listening on debug port ${port}. ${hint}`);
+        this.name = 'AttachConsentRequiredError';
+        this.port = port;
+        this.hint = hint;
+    }
+}
+exports.AttachConsentRequiredError = AttachConsentRequiredError;
+//# sourceMappingURL=launch-mode-resolver.js.map

package/dist/chrome/launch-mode-resolver.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"launch-mode-resolver.js","sourceRoot":"","sources":["../../src/chrome/launch-mode-resolver.ts"],"names":[],"mappings":";AAAA;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;GAmCG;;;AAgDH,8CAeC;AA9CD,MAAa,sBAAuB,SAAQ,KAAK;IAC/C,YAAY,KAAa,EAAE,MAAgC;QACzD,KAAK,CAAC,wBAAwB,KAAK,WAAW,MAAM,6CAA6C,CAAC,CAAC;QACnG,IAAI,CAAC,IAAI,GAAG,wBAAwB,CAAC;IACvC,CAAC;CACF;AALD,wDAKC;AAED,MAAM,KAAK,GAA4B,IAAI,GAAG,CAAC,CAAC,MAAM,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAC,CAAC;AAE/E,SAAS,KAAK,CAAC,KAAyB,EAAE,MAAgC;IACxE,IAAI,KAAK,KAAK,SAAS;QAAE,OAAO,SAAS,CAAC;IAC1C,MAAM,OAAO,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IAC7B,IAAI,OAAO,KAAK,EAAE;QAAE,OAAO,SAAS,CAAC;IACrC,MAAM,UAAU,GAAG,OAAO,CAAC,WAAW,EAAE,CAAC;IACzC,IAAI,CAAC,KAAK,CAAC,GAAG,CAAC,UAAwB,CAAC,EAAE,CAAC;QACzC,MAAM,IAAI,sBAAsB,CAAC,OAAO,EAAE,MAAM,CAAC,CAAC;IACpD,CAAC;IACD,OAAO,UAAwB,CAAC;AAClC,CAAC;AAED;;;;;;;;;;GAUG;AACH,SAAgB,iBAAiB,CAC/B,UAA6B,EAAE,EAC/B,MAAqB,EAAE,EACvB,SAA2B,EAAE;IAE7B,MAAM,OAAO,GAAG,KAAK,CAAC,OAAO,OAAO,CAAC,UAAU,KAAK,QAAQ,CAAC,CAAC,CAAC,OAAO,CAAC,UAAU,CAAC,CAAC,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;IACtG,IAAI,OAAO;QAAE,OAAO,OAAO,CAAC;IAE5B,MAAM,OAAO,GAAG,KAAK,CAAC,GAAG,CAAC,sBAAsB,EAAE,KAAK,CAAC,CAAC;IACzD,IAAI,OAAO;QAAE,OAAO,OAAO,CAAC;IAE5B,MAAM,UAAU,GAAG,KAAK,CAAC,OAAO,MAAM,CAAC,gBAAgB,KAAK,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;IACtH,IAAI,UAAU;QAAE,OAAO,UAAU,CAAC;IAElC,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;;GAQG;AACH,MAAa,0BAA2B,SAAQ,KAAK;IAC1C,SAAS,GAAG,yBAAkC,CAAC;IAC/C,IAAI,CAAS;IACb,IAAI,CAAS;IAEtB,YAAY,IAAY;QACtB,MAAM,IAAI,GACR,6EAA6E;YAC7E,0DAA0D,IAAI,mCAAmC;YACjG,0EAA0E,CAAC;QAC7E,KAAK,CACH,mEAAmE,IAAI,KAAK,IAAI,EAAE,CACnF,CAAC;QACF,IAAI,CAAC,IAAI,GAAG,4BAA4B,CAAC;QACzC,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;IACnB,CAAC;CACF;AAjBD,gEAiBC"}

package/dist/chrome/launcher.d.ts

@@ -3,13 +3,34 @@
  */
 import { ChildProcess } from 'child_process';
 import type { ProfileType } from './profile-manager';
+import { ExitClassification } from './exit-classifier';
 export type { ProfileType } from './profile-manager';
+/**
+ * Lifecycle ownership of a Chrome process (#661).
+ * - 'isolated': openchrome spawned this Chrome and owns its lifecycle. Eligible for sync-kill on exit.
+ * - 'attach': we connected to a Chrome the user was already running. NEVER killed by openchrome.
+ *
+ * Distinct from `LaunchMode` (#659 — auto/attach/isolated launch *strategy*),
+ * exported below from launch-mode-resolver. To avoid the name shadow noted in
+ * gemini's review of #670, the runtime ownership tag is named `LifecycleMode`.
+ *
+ * Note: the field on `ChromeInstance` is still called `launchMode` for source
+ * compatibility with consumers like the watchdog and sync-shutdown that
+ * already reference it.
+ */
+export type LifecycleMode = 'isolated' | 'attach';
+/** @deprecated Use `LifecycleMode`. Retained for source compatibility. */
+export type LaunchMode = LifecycleMode;
 export interface ChromeInstance {
     wsEndpoint: string;
     httpEndpoint: string;
     process?: ChildProcess;
     userDataDir?: string;
     profileType?: ProfileType;
+    /** Lifecycle ownership (#661). Defaults to 'isolated' for our spawn-based path. */
+    launchMode?: LifecycleMode;
+    /** Random per-launch UUID written into the ownership marker file. */
+    ownershipMarker?: string;
 }
 export interface LaunchOptions {
     port?: number;
@@ -26,6 +47,9 @@ export interface LaunchOptions {
     /** If true, restore Chrome's previous session tabs after crash (default: false).
      *  Enable for long-running sessions where tab preservation matters. */
     restoreLastSession?: boolean;
+    /** #659 launch-mode override (per-call). One of: 'auto' | 'attach' | 'isolated'.
+     *  Highest precedence; falls back to OPENCHROME_LAUNCH_MODE then config then 'auto'. */
+    launchMode?: 'auto' | 'attach' | 'isolated';
 }
 /**
  * Error thrown when the Chrome debug port fails to become available
@@ -75,7 +99,23 @@ export declare class ChromeLauncher {
     private currentProfileType;
     private profileState;
     private _intentionalStop;
+    /** ms timestamp of the most recent successful spawn, for #660 anti-flap. */
+    private _chromeStartedAt;
+    /** Most recent exit classification (#660). 'intentional' | 'clean' | 'crash'. */
+    private _lastExitClassification;
+    /** ms epoch until which the watchdog should skip relaunch (#660). 0 = no quiesce. */
+    private _quiesceUntil;
+    /** Crash timestamps for the watchdog rate-limit check (#660 Phase 3). */
+    private _recentCrashesMs;
     get intentionalStop(): boolean;
+    /** Last exit classification recorded by the spawn-side exit handler. */
+    get lastExitClassification(): ExitClassification | null;
+    /** Watchdog reads this; if `Date.now() < quiesceUntil` it skips relaunch. */
+    get quiesceUntil(): number;
+    /** Recent Chrome crash timestamps (last ~minute). */
+    get recentCrashesMs(): readonly number[];
+    /** Tools call this when they need Chrome — clears any pending quiesce. */
+    clearQuiesce(): void;
     constructor(port?: number);
     /**
      * Ensure Chrome with remote debugging is available

package/dist/chrome/launcher.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"launcher.d.ts","sourceRoot":"","sources":["../../src/chrome/launcher.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAS,YAAY,EAA0B,MAAM,eAAe,CAAC;AAU5E,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AACrD,YAAY,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAErD,MAAM,WAAW,cAAc;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,YAAY,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,WAAW,CAAC;CAC3B;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,2EAA2E;IAC3E,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,2EAA2E;IAC3E,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,0GAA0G;IAC1G,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,4FAA4F;IAC5F,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B;2EACuE;IACvE,kBAAkB,CAAC,EAAE,OAAO,CAAC;CAC9B;AAoFD;;;;;GAKG;AACH,qBAAa,qBAAsB,SAAQ,KAAK;IAC9C,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;gBAEd,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM;CAW9D;AA+DD;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAsB,gBAAgB,CACpC,IAAI,EAAE,MAAM,EACZ,OAAO,SAAQ,EACf,aAAa,CAAC,EAAE,YAAY,GAC3B,OAAO,CAAC,MAAM,CAAC,CA8DjB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,WAAW,CAAC;IAClB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,mBAAmB,EAAE,OAAO,CAAC;IAC7B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAED,qBAAa,cAAc;IACzB,OAAO,CAAC,QAAQ,CAA+B;IAC/C,OAAO,CAAC,cAAc,CAA6B;IACnD,OAAO,CAAC,cAAc,CAAwC;IAC9D,OAAO,CAAC,IAAI,CAAS;IACrB,OAAO,CAAC,cAAc,CAAwB;IAC9C,OAAO,CAAC,kBAAkB,CAA0B;IACpD,OAAO,CAAC,YAAY,CAGlB;IACF,OAAO,CAAC,gBAAgB,CAAS;IAEjC,IAAI,eAAe,IAAI,OAAO,CAAkC;gBAEpD,IAAI,GAAE,MAAqB;IAIvC;;OAEG;IACG,YAAY,CAAC,OAAO,GAAE,aAAkB,GAAG,OAAO,CAAC,cAAc,CAAC;IA8BxE;;OAEG;YACW,YAAY;IAkV1B;;;OAGG;IACH,WAAW,IAAI,cAAc,GAAG,IAAI;IAIpC;;OAEG;IACH,WAAW,IAAI,OAAO;IAItB;;;;;;;OAOG;IACH,kBAAkB,IAAI,IAAI;IAO1B;;OAEG;IACG,aAAa,IAAI,OAAO,CAAC,MAAM,CAAC;IAOtC;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAwE5B;;;OAGG;IACH,YAAY,IAAI,MAAM,GAAG,SAAS;IAIlC;;OAEG;IACH,WAAW,IAAI,OAAO;IAItB;;OAEG;IACH,OAAO,IAAI,MAAM;IAIjB;;;OAGG;IACH,cAAc,IAAI,WAAW,GAAG,SAAS;IAIzC;;;OAGG;IACH,eAAe,IAAI,YAAY;IAI/B;;OAEG;IACH,OAAO,CAAC,uBAAuB;IA0B/B;;;;OAIG;IACH,OAAO,CAAC,eAAe;IAgHvB;;OAEG;IACH,OAAO,CAAC,eAAe;IA6BvB;;;OAGG;YACW,iBAAiB;IA+B/B;;;OAGG;YACW,oBAAoB;CAkBnC;AAKD,wBAAgB,iBAAiB,CAAC,IAAI,CAAC,EAAE,MAAM,GAAG,cAAc,CAS/D"}
+{"version":3,"file":"launcher.d.ts","sourceRoot":"","sources":["../../src/chrome/launcher.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,OAAO,EAAS,YAAY,EAA0B,MAAM,eAAe,CAAC;AAU5E,OAAO,KAAK,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAGrD,OAAO,EAAgB,kBAAkB,EAAa,MAAM,mBAAmB,CAAC;AAOhF,YAAY,EAAE,WAAW,EAAE,MAAM,mBAAmB,CAAC;AAErD;;;;;;;;;;;;GAYG;AACH,MAAM,MAAM,aAAa,GAAG,UAAU,GAAG,QAAQ,CAAC;AAClD,0EAA0E;AAC1E,MAAM,MAAM,UAAU,GAAG,aAAa,CAAC;AAEvC,MAAM,WAAW,cAAc;IAC7B,UAAU,EAAE,MAAM,CAAC;IACnB,YAAY,EAAE,MAAM,CAAC;IACrB,OAAO,CAAC,EAAE,YAAY,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,WAAW,CAAC,EAAE,WAAW,CAAC;IAC1B,mFAAmF;IACnF,UAAU,CAAC,EAAE,aAAa,CAAC;IAC3B,qEAAqE;IACrE,eAAe,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED,MAAM,WAAW,aAAa;IAC5B,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,QAAQ,CAAC,EAAE,OAAO,CAAC;IACnB,2EAA2E;IAC3E,UAAU,CAAC,EAAE,OAAO,CAAC;IACrB,2EAA2E;IAC3E,cAAc,CAAC,EAAE,OAAO,CAAC;IACzB,0GAA0G;IAC1G,aAAa,CAAC,EAAE,OAAO,CAAC;IACxB,4FAA4F;IAC5F,gBAAgB,CAAC,EAAE,MAAM,CAAC;IAC1B;2EACuE;IACvE,kBAAkB,CAAC,EAAE,OAAO,CAAC;IAC7B;4FACwF;IACxF,UAAU,CAAC,EAAE,MAAM,GAAG,QAAQ,GAAG,UAAU,CAAC;CAC7C;AAoFD;;;;;GAKG;AACH,qBAAa,qBAAsB,SAAQ,KAAK;IAC9C,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,SAAS,EAAE,MAAM,CAAC;IAC3B,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;gBAEd,IAAI,EAAE,MAAM,EAAE,SAAS,EAAE,MAAM,EAAE,QAAQ,EAAE,MAAM;CAW9D;AA+DD;;;;;;;;;;;;;;;;;GAiBG;AACH,wBAAsB,gBAAgB,CACpC,IAAI,EAAE,MAAM,EACZ,OAAO,SAAQ,EACf,aAAa,CAAC,EAAE,YAAY,GAC3B,OAAO,CAAC,MAAM,CAAC,CA8DjB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,WAAW,CAAC;IAClB,cAAc,CAAC,EAAE,MAAM,CAAC;IACxB,mBAAmB,EAAE,OAAO,CAAC;IAC7B,aAAa,CAAC,EAAE,MAAM,CAAC;IACvB,WAAW,CAAC,EAAE,MAAM,CAAC;IACrB,gBAAgB,CAAC,EAAE,MAAM,CAAC;CAC3B;AAED,qBAAa,cAAc;IACzB,OAAO,CAAC,QAAQ,CAA+B;IAC/C,OAAO,CAAC,cAAc,CAA6B;IACnD,OAAO,CAAC,cAAc,CAAwC;IAC9D,OAAO,CAAC,IAAI,CAAS;IACrB,OAAO,CAAC,cAAc,CAAwB;IAC9C,OAAO,CAAC,kBAAkB,CAA0B;IACpD,OAAO,CAAC,YAAY,CAGlB;IACF,OAAO,CAAC,gBAAgB,CAAS;IACjC,4EAA4E;IAC5E,OAAO,CAAC,gBAAgB,CAAK;IAC7B,iFAAiF;IACjF,OAAO,CAAC,uBAAuB,CAAmC;IAClE,qFAAqF;IACrF,OAAO,CAAC,aAAa,CAAK;IAC1B,yEAAyE;IACzE,OAAO,CAAC,gBAAgB,CAAgB;IAExC,IAAI,eAAe,IAAI,OAAO,CAAkC;IAChE,wEAAwE;IACxE,IAAI,sBAAsB,IAAI,kBAAkB,GAAG,IAAI,CAAyC;IAChG,6EAA6E;IAC7E,IAAI,YAAY,IAAI,MAAM,CAA+B;IACzD,qDAAqD;IACrD,IAAI,eAAe,IAAI,SAAS,MAAM,EAAE,CAAkC;IAC1E,0EAA0E;IAC1E,YAAY,IAAI,IAAI;gBAER,IAAI,GAAE,MAAqB;IAIvC;;OAEG;IACG,YAAY,CAAC,OAAO,GAAE,aAAkB,GAAG,OAAO,CAAC,cAAc,CAAC;IA8BxE;;OAEG;YACW,YAAY;IA4d1B;;;OAGG;IACH,WAAW,IAAI,cAAc,GAAG,IAAI;IAIpC;;OAEG;IACH,WAAW,IAAI,OAAO;IAItB;;;;;;;OAOG;IACH,kBAAkB,IAAI,IAAI;IAO1B;;OAEG;IACG,aAAa,IAAI,OAAO,CAAC,MAAM,CAAC;IAOtC;;OAEG;IACG,KAAK,IAAI,OAAO,CAAC,IAAI,CAAC;IAqF5B;;;OAGG;IACH,YAAY,IAAI,MAAM,GAAG,SAAS;IAIlC;;OAEG;IACH,WAAW,IAAI,OAAO;IAItB;;OAEG;IACH,OAAO,IAAI,MAAM;IAIjB;;;OAGG;IACH,cAAc,IAAI,WAAW,GAAG,SAAS;IAIzC;;;OAGG;IACH,eAAe,IAAI,YAAY;IAI/B;;OAEG;IACH,OAAO,CAAC,uBAAuB;IA0B/B;;;;OAIG;IACH,OAAO,CAAC,eAAe;IAgHvB;;OAEG;IACH,OAAO,CAAC,eAAe;IA6BvB;;;OAGG;YACW,iBAAiB;IA+B/B;;;OAGG;YACW,oBAAoB;CAkBnC;AAKD,wBAAgB,iBAAiB,CAAC,IAAI,CAAC,EAAE,MAAM,GAAG,cAAc,CAS/D"}