npm - postgresai - Versions diffs - 0.14.0-dev.42 → 0.14.0-dev.44 - Mend

postgresai 0.14.0-dev.42 → 0.14.0-dev.44

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (58) hide show

package/bin/postgres-ai.ts +649 -310
package/bun.lock +258 -0
package/dist/bin/postgres-ai.js +29491 -1910
package/dist/sql/01.role.sql +16 -0
package/dist/sql/02.permissions.sql +37 -0
package/dist/sql/03.optional_rds.sql +6 -0
package/dist/sql/04.optional_self_managed.sql +8 -0
package/dist/sql/05.helpers.sql +415 -0
package/lib/auth-server.ts +58 -97
package/lib/checkup-api.ts +175 -0
package/lib/checkup.ts +833 -0
package/lib/config.ts +3 -0
package/lib/init.ts +106 -74
package/lib/issues.ts +121 -194
package/lib/mcp-server.ts +6 -17
package/lib/metrics-loader.ts +156 -0
package/package.json +13 -9
package/sql/02.permissions.sql +9 -5
package/sql/05.helpers.sql +415 -0
package/test/checkup.test.ts +953 -0
package/test/init.integration.test.ts +396 -0
package/test/init.test.ts +345 -0
package/test/schema-validation.test.ts +188 -0
package/tsconfig.json +12 -20
package/dist/bin/postgres-ai.d.ts +0 -3
package/dist/bin/postgres-ai.d.ts.map +0 -1
package/dist/bin/postgres-ai.js.map +0 -1
package/dist/lib/auth-server.d.ts +0 -31
package/dist/lib/auth-server.d.ts.map +0 -1
package/dist/lib/auth-server.js +0 -263
package/dist/lib/auth-server.js.map +0 -1
package/dist/lib/config.d.ts +0 -45
package/dist/lib/config.d.ts.map +0 -1
package/dist/lib/config.js +0 -181
package/dist/lib/config.js.map +0 -1
package/dist/lib/init.d.ts +0 -85
package/dist/lib/init.d.ts.map +0 -1
package/dist/lib/init.js +0 -644
package/dist/lib/init.js.map +0 -1
package/dist/lib/issues.d.ts +0 -75
package/dist/lib/issues.d.ts.map +0 -1
package/dist/lib/issues.js +0 -336
package/dist/lib/issues.js.map +0 -1
package/dist/lib/mcp-server.d.ts +0 -9
package/dist/lib/mcp-server.d.ts.map +0 -1
package/dist/lib/mcp-server.js +0 -168
package/dist/lib/mcp-server.js.map +0 -1
package/dist/lib/pkce.d.ts +0 -32
package/dist/lib/pkce.d.ts.map +0 -1
package/dist/lib/pkce.js +0 -101
package/dist/lib/pkce.js.map +0 -1
package/dist/lib/util.d.ts +0 -27
package/dist/lib/util.d.ts.map +0 -1
package/dist/lib/util.js +0 -46
package/dist/lib/util.js.map +0 -1
package/dist/package.json +0 -46
package/test/init.integration.test.cjs +0 -382
package/test/init.test.cjs +0 -392

package/dist/lib/init.js DELETED Viewed

@@ -1,644 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || (function () {
-    var ownKeys = function(o) {
-        ownKeys = Object.getOwnPropertyNames || function (o) {
-            var ar = [];
-            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
-            return ar;
-        };
-        return ownKeys(o);
-    };
-    return function (mod) {
-        if (mod && mod.__esModule) return mod;
-        var result = {};
-        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
-        __setModuleDefault(result, mod);
-        return result;
-    };
-})();
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.DEFAULT_MONITORING_USER = void 0;
-exports.connectWithSslFallback = connectWithSslFallback;
-exports.redactPasswordsInSql = redactPasswordsInSql;
-exports.maskConnectionString = maskConnectionString;
-exports.parseLibpqConninfo = parseLibpqConninfo;
-exports.describePgConfig = describePgConfig;
-exports.resolveAdminConnection = resolveAdminConnection;
-exports.resolveMonitoringPassword = resolveMonitoringPassword;
-exports.buildInitPlan = buildInitPlan;
-exports.applyInitPlan = applyInitPlan;
-exports.verifyInitSetup = verifyInitSetup;
-const crypto_1 = require("crypto");
-const url_1 = require("url");
-const fs = __importStar(require("fs"));
-const path = __importStar(require("path"));
-exports.DEFAULT_MONITORING_USER = "postgres_ai_mon";
-/**
- * Convert PostgreSQL sslmode to node-postgres ssl config.
- */
-function sslModeToConfig(mode) {
-    if (mode.toLowerCase() === "disable")
-        return false;
-    if (mode.toLowerCase() === "verify-full" || mode.toLowerCase() === "verify-ca")
-        return true;
-    // For require/prefer/allow: encrypt without certificate verification
-    return { rejectUnauthorized: false };
-}
-/** Extract sslmode from a PostgreSQL connection URI. */
-function extractSslModeFromUri(uri) {
-    try {
-        return new url_1.URL(uri).searchParams.get("sslmode") ?? undefined;
-    }
-    catch {
-        return uri.match(/[?&]sslmode=([^&]+)/i)?.[1];
-    }
-}
-/** Remove sslmode parameter from a PostgreSQL connection URI. */
-function stripSslModeFromUri(uri) {
-    try {
-        const u = new url_1.URL(uri);
-        u.searchParams.delete("sslmode");
-        return u.toString();
-    }
-    catch {
-        // Fallback regex for malformed URIs
-        return uri
-            .replace(/[?&]sslmode=[^&]*/gi, "")
-            .replace(/\?&/, "?")
-            .replace(/\?$/, "");
-    }
-}
-/**
- * Check if an error indicates SSL negotiation failed and fallback to non-SSL should be attempted.
- * This mimics libpq's sslmode=prefer behavior.
- *
- * IMPORTANT: This should NOT match certificate errors (expired, invalid, self-signed)
- * as those are real errors the user needs to fix, not negotiation failures.
- */
-function isSslNegotiationError(err) {
-    if (!err || typeof err !== "object")
-        return false;
-    const e = err;
-    const msg = typeof e.message === "string" ? e.message.toLowerCase() : "";
-    const code = typeof e.code === "string" ? e.code : "";
-    // Specific patterns that indicate server doesn't support SSL (should fallback)
-    const fallbackPatterns = [
-        "the server does not support ssl",
-        "ssl off",
-        "server does not support ssl connections",
-    ];
-    for (const pattern of fallbackPatterns) {
-        if (msg.includes(pattern))
-            return true;
-    }
-    // PostgreSQL error code 08P01 (protocol violation) during initial connection
-    // often indicates SSL negotiation mismatch, but only if the message suggests it
-    if (code === "08P01" && (msg.includes("ssl") || msg.includes("unsupported"))) {
-        return true;
-    }
-    return false;
-}
-/**
- * Connect to PostgreSQL with sslmode=prefer-like behavior.
- * If sslFallbackEnabled is true, tries SSL first, then falls back to non-SSL on failure.
- */
-async function connectWithSslFallback(ClientClass, adminConn, verbose) {
-    const tryConnect = async (config) => {
-        const client = new ClientClass(config);
-        await client.connect();
-        return client;
-    };
-    // If SSL was explicitly set or no SSL configured, just try once
-    if (!adminConn.sslFallbackEnabled) {
-        const client = await tryConnect(adminConn.clientConfig);
-        return { client, usedSsl: !!adminConn.clientConfig.ssl };
-    }
-    // sslmode=prefer behavior: try SSL first, fallback to non-SSL
-    try {
-        const client = await tryConnect(adminConn.clientConfig);
-        return { client, usedSsl: true };
-    }
-    catch (sslErr) {
-        if (!isSslNegotiationError(sslErr)) {
-            // Not an SSL error, don't retry
-            throw sslErr;
-        }
-        if (verbose) {
-            console.log("SSL connection failed, retrying without SSL...");
-        }
-        // Retry without SSL
-        const noSslConfig = { ...adminConn.clientConfig, ssl: false };
-        try {
-            const client = await tryConnect(noSslConfig);
-            return { client, usedSsl: false };
-        }
-        catch (noSslErr) {
-            // If non-SSL also fails, check if it's "SSL required" - throw that instead
-            if (isSslNegotiationError(noSslErr)) {
-                const msg = noSslErr?.message || "";
-                if (msg.toLowerCase().includes("ssl") && msg.toLowerCase().includes("required")) {
-                    // Server requires SSL but SSL attempt failed - throw original SSL error
-                    throw sslErr;
-                }
-            }
-            // Throw the non-SSL error (it's more relevant since SSL attempt also failed)
-            throw noSslErr;
-        }
-    }
-}
-function packageRootDirFromCompiled() {
-    // dist/lib/init.js -> <pkg>/dist/lib ; package root is ../..
-    return path.resolve(__dirname, "..", "..");
-}
-function sqlDir() {
-    return path.join(packageRootDirFromCompiled(), "sql");
-}
-function loadSqlTemplate(filename) {
-    const p = path.join(sqlDir(), filename);
-    return fs.readFileSync(p, "utf8");
-}
-function applyTemplate(sql, vars) {
-    return sql.replace(/\{\{([A-Z0-9_]+)\}\}/g, (_, key) => {
-        const v = vars[key];
-        if (v === undefined)
-            throw new Error(`Missing SQL template var: ${key}`);
-        return v;
-    });
-}
-function quoteIdent(ident) {
-    // Always quote. Escape embedded quotes by doubling.
-    if (ident.includes("\0")) {
-        throw new Error("Identifier cannot contain null bytes");
-    }
-    return `"${ident.replace(/"/g, "\"\"")}"`;
-}
-function quoteLiteral(value) {
-    // Single-quote and escape embedded quotes by doubling.
-    // This is used where Postgres grammar requires a literal (e.g., CREATE/ALTER ROLE PASSWORD).
-    if (value.includes("\0")) {
-        throw new Error("Literal cannot contain null bytes");
-    }
-    return `'${value.replace(/'/g, "''")}'`;
-}
-function redactPasswordsInSql(sql) {
-    // Replace PASSWORD '<literal>' (handles doubled quotes inside).
-    return sql.replace(/password\s+'(?:''|[^'])*'/gi, "password '<redacted>'");
-}
-function maskConnectionString(dbUrl) {
-    // Hide password if present (postgresql://user:pass@host/db).
-    try {
-        const u = new url_1.URL(dbUrl);
-        if (u.password)
-            u.password = "*****";
-        return u.toString();
-    }
-    catch {
-        return dbUrl.replace(/\/\/([^:/?#]+):([^@/?#]+)@/g, "//$1:*****@");
-    }
-}
-function isLikelyUri(value) {
-    return /^postgres(ql)?:\/\//i.test(value.trim());
-}
-function tokenizeConninfo(input) {
-    const s = input.trim();
-    const tokens = [];
-    let i = 0;
-    const isSpace = (ch) => ch === " " || ch === "\t" || ch === "\n" || ch === "\r";
-    while (i < s.length) {
-        while (i < s.length && isSpace(s[i]))
-            i++;
-        if (i >= s.length)
-            break;
-        let tok = "";
-        let inSingle = false;
-        while (i < s.length) {
-            const ch = s[i];
-            if (!inSingle && isSpace(ch))
-                break;
-            if (ch === "'" && !inSingle) {
-                inSingle = true;
-                i++;
-                continue;
-            }
-            if (ch === "'" && inSingle) {
-                inSingle = false;
-                i++;
-                continue;
-            }
-            if (ch === "\\" && i + 1 < s.length) {
-                tok += s[i + 1];
-                i += 2;
-                continue;
-            }
-            tok += ch;
-            i++;
-        }
-        tokens.push(tok);
-        while (i < s.length && isSpace(s[i]))
-            i++;
-    }
-    return tokens;
-}
-function parseLibpqConninfo(input) {
-    const tokens = tokenizeConninfo(input);
-    const cfg = {};
-    let sslmode;
-    for (const t of tokens) {
-        const eq = t.indexOf("=");
-        if (eq <= 0)
-            continue;
-        const key = t.slice(0, eq).trim();
-        const rawVal = t.slice(eq + 1);
-        const val = rawVal.trim();
-        if (!key)
-            continue;
-        switch (key) {
-            case "host":
-                cfg.host = val;
-                break;
-            case "port": {
-                const p = Number(val);
-                if (Number.isFinite(p))
-                    cfg.port = p;
-                break;
-            }
-            case "user":
-                cfg.user = val;
-                break;
-            case "password":
-                cfg.password = val;
-                break;
-            case "dbname":
-            case "database":
-                cfg.database = val;
-                break;
-            case "sslmode":
-                sslmode = val;
-                break;
-            // ignore everything else (options, application_name, etc.)
-            default:
-                break;
-        }
-    }
-    // Apply SSL configuration based on sslmode
-    if (sslmode) {
-        cfg.ssl = sslModeToConfig(sslmode);
-    }
-    return cfg;
-}
-function describePgConfig(cfg) {
-    if (cfg.connectionString)
-        return maskConnectionString(cfg.connectionString);
-    const user = cfg.user ? cfg.user : "<user>";
-    const host = cfg.host ? cfg.host : "<host>";
-    const port = cfg.port ? String(cfg.port) : "<port>";
-    const db = cfg.database ? cfg.database : "<db>";
-    // Don't include password
-    return `postgresql://${user}:*****@${host}:${port}/${db}`;
-}
-function resolveAdminConnection(opts) {
-    const conn = (opts.conn || "").trim();
-    const dbUrlFlag = (opts.dbUrlFlag || "").trim();
-    // Resolve explicit SSL setting from environment (undefined = auto-detect)
-    const explicitSsl = process.env.PGSSLMODE;
-    // NOTE: passwords alone (PGPASSWORD / --admin-password) do NOT constitute a connection.
-    // We require at least some connection addressing (host/port/user/db) if no positional arg / --db-url is provided.
-    const hasConnDetails = !!(opts.host || opts.port || opts.username || opts.dbname);
-    if (conn && dbUrlFlag) {
-        throw new Error("Provide either positional connection string or --db-url, not both");
-    }
-    if (conn || dbUrlFlag) {
-        const v = conn || dbUrlFlag;
-        if (isLikelyUri(v)) {
-            const urlSslMode = extractSslModeFromUri(v);
-            const effectiveSslMode = explicitSsl || urlSslMode;
-            // SSL priority: PGSSLMODE env > URL param > auto (sslmode=prefer behavior)
-            const sslConfig = effectiveSslMode
-                ? sslModeToConfig(effectiveSslMode)
-                : { rejectUnauthorized: false }; // Default: try SSL (with fallback)
-            // Enable fallback for: no explicit mode OR explicit "prefer"/"allow"
-            const shouldFallback = !effectiveSslMode ||
-                effectiveSslMode.toLowerCase() === "prefer" ||
-                effectiveSslMode.toLowerCase() === "allow";
-            // Strip sslmode from URI so pg uses our ssl config object instead
-            const cleanUri = stripSslModeFromUri(v);
-            return {
-                clientConfig: { connectionString: cleanUri, ssl: sslConfig },
-                display: maskConnectionString(v),
-                sslFallbackEnabled: shouldFallback,
-            };
-        }
-        // libpq conninfo (dbname=... host=...)
-        const cfg = parseLibpqConninfo(v);
-        if (opts.envPassword && !cfg.password)
-            cfg.password = opts.envPassword;
-        const cfgHadSsl = cfg.ssl !== undefined;
-        if (cfg.ssl === undefined) {
-            if (explicitSsl)
-                cfg.ssl = sslModeToConfig(explicitSsl);
-            else
-                cfg.ssl = { rejectUnauthorized: false }; // Default: try SSL (with fallback)
-        }
-        // Enable fallback for: no explicit mode OR explicit "prefer"/"allow"
-        const shouldFallback = (!explicitSsl && !cfgHadSsl) ||
-            (!!explicitSsl && (explicitSsl.toLowerCase() === "prefer" || explicitSsl.toLowerCase() === "allow"));
-        return {
-            clientConfig: cfg,
-            display: describePgConfig(cfg),
-            sslFallbackEnabled: shouldFallback,
-        };
-    }
-    if (!hasConnDetails) {
-        // Keep this message short: the CLI prints full help (including examples) on this error.
-        throw new Error("Connection is required.");
-    }
-    const cfg = {};
-    if (opts.host)
-        cfg.host = opts.host;
-    if (opts.port !== undefined && opts.port !== "") {
-        const p = Number(opts.port);
-        if (!Number.isFinite(p) || !Number.isInteger(p) || p <= 0 || p > 65535) {
-            throw new Error(`Invalid port value: ${String(opts.port)}`);
-        }
-        cfg.port = p;
-    }
-    if (opts.username)
-        cfg.user = opts.username;
-    if (opts.dbname)
-        cfg.database = opts.dbname;
-    if (opts.adminPassword)
-        cfg.password = opts.adminPassword;
-    if (opts.envPassword && !cfg.password)
-        cfg.password = opts.envPassword;
-    if (explicitSsl) {
-        cfg.ssl = sslModeToConfig(explicitSsl);
-        // Enable fallback for explicit "prefer"/"allow"
-        const shouldFallback = explicitSsl.toLowerCase() === "prefer" || explicitSsl.toLowerCase() === "allow";
-        return { clientConfig: cfg, display: describePgConfig(cfg), sslFallbackEnabled: shouldFallback };
-    }
-    // Default: try SSL with fallback (sslmode=prefer behavior)
-    cfg.ssl = { rejectUnauthorized: false };
-    return { clientConfig: cfg, display: describePgConfig(cfg), sslFallbackEnabled: true };
-}
-function generateMonitoringPassword() {
-    // URL-safe and easy to copy/paste; 24 bytes => 32 base64url chars (no padding).
-    // Note: randomBytes() throws on failure; we add a tiny sanity check for unexpected output.
-    const password = (0, crypto_1.randomBytes)(24).toString("base64url");
-    if (password.length < 30) {
-        throw new Error("Password generation failed: unexpected output length");
-    }
-    return password;
-}
-async function resolveMonitoringPassword(opts) {
-    const fromFlag = (opts.passwordFlag || "").trim();
-    if (fromFlag)
-        return { password: fromFlag, generated: false };
-    const fromEnv = (opts.passwordEnv || "").trim();
-    if (fromEnv)
-        return { password: fromEnv, generated: false };
-    // Default: auto-generate (safer than prompting; works in non-interactive mode).
-    return { password: generateMonitoringPassword(), generated: true };
-}
-async function buildInitPlan(params) {
-    // NOTE: kept async for API stability / potential future async template loading.
-    const monitoringUser = params.monitoringUser || exports.DEFAULT_MONITORING_USER;
-    const database = params.database;
-    const qRole = quoteIdent(monitoringUser);
-    const qDb = quoteIdent(database);
-    const qPw = quoteLiteral(params.monitoringPassword);
-    const qRoleNameLit = quoteLiteral(monitoringUser);
-    const steps = [];
-    const vars = {
-        ROLE_IDENT: qRole,
-        DB_IDENT: qDb,
-    };
-    // Role creation/update is done in one template file.
-    // Always use a single DO block to avoid race conditions between "role exists?" checks and CREATE USER.
-    // We:
-    // - create role if missing (and handle duplicate_object in case another session created it concurrently),
-    // - then ALTER ROLE to ensure the password is set to the desired value.
-    const roleStmt = `do $$ begin
-  if not exists (select 1 from pg_catalog.pg_roles where rolname = ${qRoleNameLit}) then
-    begin
-      create user ${qRole} with password ${qPw};
-    exception when duplicate_object then
-      null;
-    end;
-  end if;
-  alter user ${qRole} with password ${qPw};
-end $$;`;
-    const roleSql = applyTemplate(loadSqlTemplate("01.role.sql"), { ...vars, ROLE_STMT: roleStmt });
-    steps.push({ name: "01.role", sql: roleSql });
-    steps.push({
-        name: "02.permissions",
-        sql: applyTemplate(loadSqlTemplate("02.permissions.sql"), vars),
-    });
-    if (params.includeOptionalPermissions) {
-        steps.push({
-            name: "03.optional_rds",
-            sql: applyTemplate(loadSqlTemplate("03.optional_rds.sql"), vars),
-            optional: true,
-        }, {
-            name: "04.optional_self_managed",
-            sql: applyTemplate(loadSqlTemplate("04.optional_self_managed.sql"), vars),
-            optional: true,
-        });
-    }
-    return { monitoringUser, database, steps };
-}
-async function applyInitPlan(params) {
-    const applied = [];
-    const skippedOptional = [];
-    // Apply non-optional steps in a single transaction.
-    await params.client.query("begin;");
-    try {
-        for (const step of params.plan.steps.filter((s) => !s.optional)) {
-            try {
-                await params.client.query(step.sql, step.params);
-                applied.push(step.name);
-            }
-            catch (e) {
-                const msg = e instanceof Error ? e.message : String(e);
-                const errAny = e;
-                const wrapped = new Error(`Failed at step "${step.name}": ${msg}`);
-                // Preserve useful Postgres error fields so callers can provide better hints / diagnostics.
-                const pgErrorFields = [
-                    "code",
-                    "detail",
-                    "hint",
-                    "position",
-                    "internalPosition",
-                    "internalQuery",
-                    "where",
-                    "schema",
-                    "table",
-                    "column",
-                    "dataType",
-                    "constraint",
-                    "file",
-                    "line",
-                    "routine",
-                ];
-                if (errAny && typeof errAny === "object") {
-                    for (const field of pgErrorFields) {
-                        if (errAny[field] !== undefined)
-                            wrapped[field] = errAny[field];
-                    }
-                }
-                if (e instanceof Error && e.stack) {
-                    wrapped.stack = e.stack;
-                }
-                throw wrapped;
-            }
-        }
-        await params.client.query("commit;");
-    }
-    catch (e) {
-        // Rollback errors should never mask the original failure.
-        try {
-            await params.client.query("rollback;");
-        }
-        catch {
-            // ignore
-        }
-        throw e;
-    }
-    // Apply optional steps outside of the transaction so a failure doesn't abort everything.
-    for (const step of params.plan.steps.filter((s) => s.optional)) {
-        try {
-            // Run each optional step in its own mini-transaction to avoid partial application.
-            await params.client.query("begin;");
-            try {
-                await params.client.query(step.sql, step.params);
-                await params.client.query("commit;");
-                applied.push(step.name);
-            }
-            catch {
-                try {
-                    await params.client.query("rollback;");
-                }
-                catch {
-                    // ignore rollback errors
-                }
-                skippedOptional.push(step.name);
-                // best-effort: ignore
-            }
-        }
-        catch {
-            // If we can't even begin/commit, treat as skipped.
-            skippedOptional.push(step.name);
-        }
-    }
-    return { applied, skippedOptional };
-}
-async function verifyInitSetup(params) {
-    // Use a repeatable-read snapshot so all checks see a consistent view.
-    await params.client.query("begin isolation level repeatable read;");
-    try {
-        const missingRequired = [];
-        const missingOptional = [];
-        const role = params.monitoringUser;
-        const db = params.database;
-        const roleRes = await params.client.query("select 1 from pg_catalog.pg_roles where rolname = $1", [role]);
-        const roleExists = (roleRes.rowCount ?? 0) > 0;
-        if (!roleExists) {
-            missingRequired.push(`role "${role}" does not exist`);
-            // If role is missing, other checks will error or be meaningless.
-            return { ok: false, missingRequired, missingOptional };
-        }
-        const connectRes = await params.client.query("select has_database_privilege($1, $2, 'CONNECT') as ok", [role, db]);
-        if (!connectRes.rows?.[0]?.ok) {
-            missingRequired.push(`CONNECT on database "${db}"`);
-        }
-        const pgMonitorRes = await params.client.query("select pg_has_role($1, 'pg_monitor', 'member') as ok", [role]);
-        if (!pgMonitorRes.rows?.[0]?.ok) {
-            missingRequired.push("membership in role pg_monitor");
-        }
-        const pgIndexRes = await params.client.query("select has_table_privilege($1, 'pg_catalog.pg_index', 'SELECT') as ok", [role]);
-        if (!pgIndexRes.rows?.[0]?.ok) {
-            missingRequired.push("SELECT on pg_catalog.pg_index");
-        }
-        const viewExistsRes = await params.client.query("select to_regclass('public.pg_statistic') is not null as ok");
-        if (!viewExistsRes.rows?.[0]?.ok) {
-            missingRequired.push("view public.pg_statistic exists");
-        }
-        else {
-            const viewPrivRes = await params.client.query("select has_table_privilege($1, 'public.pg_statistic', 'SELECT') as ok", [role]);
-            if (!viewPrivRes.rows?.[0]?.ok) {
-                missingRequired.push("SELECT on view public.pg_statistic");
-            }
-        }
-        const schemaUsageRes = await params.client.query("select has_schema_privilege($1, 'public', 'USAGE') as ok", [role]);
-        if (!schemaUsageRes.rows?.[0]?.ok) {
-            missingRequired.push("USAGE on schema public");
-        }
-        const rolcfgRes = await params.client.query("select rolconfig from pg_catalog.pg_roles where rolname = $1", [role]);
-        const rolconfig = rolcfgRes.rows?.[0]?.rolconfig;
-        const spLine = Array.isArray(rolconfig) ? rolconfig.find((v) => String(v).startsWith("search_path=")) : undefined;
-        if (typeof spLine !== "string" || !spLine) {
-            missingRequired.push("role search_path is set");
-        }
-        else {
-            // We accept any ordering as long as public and pg_catalog are included.
-            const sp = spLine.toLowerCase();
-            if (!sp.includes("public") || !sp.includes("pg_catalog")) {
-                missingRequired.push("role search_path includes public and pg_catalog");
-            }
-        }
-        if (params.includeOptionalPermissions) {
-            // Optional RDS/Aurora extras
-            {
-                const extRes = await params.client.query("select 1 from pg_extension where extname = 'rds_tools'");
-                if ((extRes.rowCount ?? 0) === 0) {
-                    missingOptional.push("extension rds_tools");
-                }
-                else {
-                    const fnRes = await params.client.query("select has_function_privilege($1, 'rds_tools.pg_ls_multixactdir()', 'EXECUTE') as ok", [role]);
-                    if (!fnRes.rows?.[0]?.ok) {
-                        missingOptional.push("EXECUTE on rds_tools.pg_ls_multixactdir()");
-                    }
-                }
-            }
-            // Optional self-managed extras
-            const optionalFns = [
-                "pg_catalog.pg_stat_file(text)",
-                "pg_catalog.pg_stat_file(text, boolean)",
-                "pg_catalog.pg_ls_dir(text)",
-                "pg_catalog.pg_ls_dir(text, boolean, boolean)",
-            ];
-            for (const fn of optionalFns) {
-                const fnRes = await params.client.query("select has_function_privilege($1, $2, 'EXECUTE') as ok", [role, fn]);
-                if (!fnRes.rows?.[0]?.ok) {
-                    missingOptional.push(`EXECUTE on ${fn}`);
-                }
-            }
-        }
-        return { ok: missingRequired.length === 0, missingRequired, missingOptional };
-    }
-    finally {
-        // Read-only: rollback to release snapshot; do not mask original errors.
-        try {
-            await params.client.query("rollback;");
-        }
-        catch {
-            // ignore
-        }
-    }
-}
-//# sourceMappingURL=init.js.map

package/dist/lib/init.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"init.js","sourceRoot":"","sources":["../../lib/init.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAiGA,wDAiDC;AAsDD,oDAGC;AAED,oDASC;AAmDD,gDA+CC;AAED,4CAQC;AAED,wDA0FC;AAYD,8DAaC;AAED,sCA8DC;AAED,sCAoFC;AAQD,0CA0HC;AA/sBD,mCAAqC;AACrC,6BAA0B;AAG1B,uCAAyB;AACzB,2CAA6B;AAEhB,QAAA,uBAAuB,GAAG,iBAAiB,CAAC;AAYzD;;GAEG;AACH,SAAS,eAAe,CAAC,IAAY;IACnC,IAAI,IAAI,CAAC,WAAW,EAAE,KAAK,SAAS;QAAE,OAAO,KAAK,CAAC;IACnD,IAAI,IAAI,CAAC,WAAW,EAAE,KAAK,aAAa,IAAI,IAAI,CAAC,WAAW,EAAE,KAAK,WAAW;QAAE,OAAO,IAAI,CAAC;IAC5F,qEAAqE;IACrE,OAAO,EAAE,kBAAkB,EAAE,KAAK,EAAE,CAAC;AACvC,CAAC;AAED,wDAAwD;AACxD,SAAS,qBAAqB,CAAC,GAAW;IACxC,IAAI,CAAC;QACH,OAAO,IAAI,SAAG,CAAC,GAAG,CAAC,CAAC,YAAY,CAAC,GAAG,CAAC,SAAS,CAAC,IAAI,SAAS,CAAC;IAC/D,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,GAAG,CAAC,KAAK,CAAC,sBAAsB,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC;IAChD,CAAC;AACH,CAAC;AAED,iEAAiE;AACjE,SAAS,mBAAmB,CAAC,GAAW;IACtC,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,IAAI,SAAG,CAAC,GAAG,CAAC,CAAC;QACvB,CAAC,CAAC,YAAY,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC;QACjC,OAAO,CAAC,CAAC,QAAQ,EAAE,CAAC;IACtB,CAAC;IAAC,MAAM,CAAC;QACP,oCAAoC;QACpC,OAAO,GAAG;aACP,OAAO,CAAC,qBAAqB,EAAE,EAAE,CAAC;aAClC,OAAO,CAAC,KAAK,EAAE,GAAG,CAAC;aACnB,OAAO,CAAC,KAAK,EAAE,EAAE,CAAC,CAAC;IACxB,CAAC;AACH,CAAC;AASD;;;;;;GAMG;AACH,SAAS,qBAAqB,CAAC,GAAY;IACzC,IAAI,CAAC,GAAG,IAAI,OAAO,GAAG,KAAK,QAAQ;QAAE,OAAO,KAAK,CAAC;IAClD,MAAM,CAAC,GAAG,GAAU,CAAC;IACrB,MAAM,GAAG,GAAG,OAAO,CAAC,CAAC,OAAO,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,WAAW,EAAE,CAAC,CAAC,CAAC,EAAE,CAAC;IACzE,MAAM,IAAI,GAAG,OAAO,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC;IAEtD,+EAA+E;IAC/E,MAAM,gBAAgB,GAAG;QACvB,iCAAiC;QACjC,SAAS;QACT,yCAAyC;KAC1C,CAAC;IAEF,KAAK,MAAM,OAAO,IAAI,gBAAgB,EAAE,CAAC;QACvC,IAAI,GAAG,CAAC,QAAQ,CAAC,OAAO,CAAC;YAAE,OAAO,IAAI,CAAC;IACzC,CAAC;IAED,6EAA6E;IAC7E,gFAAgF;IAChF,IAAI,IAAI,KAAK,OAAO,IAAI,CAAC,GAAG,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,QAAQ,CAAC,aAAa,CAAC,CAAC,EAAE,CAAC;QAC7E,OAAO,IAAI,CAAC;IACd,CAAC;IAED,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;GAGG;AACI,KAAK,UAAU,sBAAsB,CAC1C,WAAqD,EACrD,SAA0B,EAC1B,OAAiB;IAEjB,MAAM,UAAU,GAAG,KAAK,EAAE,MAAsB,EAAqB,EAAE;QACrE,MAAM,MAAM,GAAG,IAAI,WAAW,CAAC,MAAM,CAAC,CAAC;QACvC,MAAM,MAAM,CAAC,OAAO,EAAE,CAAC;QACvB,OAAO,MAAM,CAAC;IAChB,CAAC,CAAC;IAEF,gEAAgE;IAChE,IAAI,CAAC,SAAS,CAAC,kBAAkB,EAAE,CAAC;QAClC,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;QACxD,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC,CAAC,SAAS,CAAC,YAAY,CAAC,GAAG,EAAE,CAAC;IAC3D,CAAC;IAED,8DAA8D;IAC9D,IAAI,CAAC;QACH,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,SAAS,CAAC,YAAY,CAAC,CAAC;QACxD,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IACnC,CAAC;IAAC,OAAO,MAAM,EAAE,CAAC;QAChB,IAAI,CAAC,qBAAqB,CAAC,MAAM,CAAC,EAAE,CAAC;YACnC,gCAAgC;YAChC,MAAM,MAAM,CAAC;QACf,CAAC;QAED,IAAI,OAAO,EAAE,CAAC;YACZ,OAAO,CAAC,GAAG,CAAC,gDAAgD,CAAC,CAAC;QAChE,CAAC;QAED,oBAAoB;QACpB,MAAM,WAAW,GAAmB,EAAE,GAAG,SAAS,CAAC,YAAY,EAAE,GAAG,EAAE,KAAK,EAAE,CAAC;QAC9E,IAAI,CAAC;YACH,MAAM,MAAM,GAAG,MAAM,UAAU,CAAC,WAAW,CAAC,CAAC;YAC7C,OAAO,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC;QACpC,CAAC;QAAC,OAAO,QAAQ,EAAE,CAAC;YAClB,2EAA2E;YAC3E,IAAI,qBAAqB,CAAC,QAAQ,CAAC,EAAE,CAAC;gBACpC,MAAM,GAAG,GAAI,QAAgB,EAAE,OAAO,IAAI,EAAE,CAAC;gBAC7C,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,GAAG,CAAC,WAAW,EAAE,CAAC,QAAQ,CAAC,UAAU,CAAC,EAAE,CAAC;oBAChF,wEAAwE;oBACxE,MAAM,MAAM,CAAC;gBACf,CAAC;YACH,CAAC;YACD,6EAA6E;YAC7E,MAAM,QAAQ,CAAC;QACjB,CAAC;IACH,CAAC;AACH,CAAC;AAeD,SAAS,0BAA0B;IACjC,6DAA6D;IAC7D,OAAO,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,IAAI,EAAE,IAAI,CAAC,CAAC;AAC7C,CAAC;AAED,SAAS,MAAM;IACb,OAAO,IAAI,CAAC,IAAI,CAAC,0BAA0B,EAAE,EAAE,KAAK,CAAC,CAAC;AACxD,CAAC;AAED,SAAS,eAAe,CAAC,QAAgB;IACvC,MAAM,CAAC,GAAG,IAAI,CAAC,IAAI,CAAC,MAAM,EAAE,EAAE,QAAQ,CAAC,CAAC;IACxC,OAAO,EAAE,CAAC,YAAY,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;AACpC,CAAC;AAED,SAAS,aAAa,CAAC,GAAW,EAAE,IAA4B;IAC9D,OAAO,GAAG,CAAC,OAAO,CAAC,uBAAuB,EAAE,CAAC,CAAC,EAAE,GAAG,EAAE,EAAE;QACrD,MAAM,CAAC,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC;QACpB,IAAI,CAAC,KAAK,SAAS;YAAE,MAAM,IAAI,KAAK,CAAC,6BAA6B,GAAG,EAAE,CAAC,CAAC;QACzE,OAAO,CAAC,CAAC;IACX,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,UAAU,CAAC,KAAa;IAC/B,oDAAoD;IACpD,IAAI,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACzB,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;IAC1D,CAAC;IACD,OAAO,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,MAAM,CAAC,GAAG,CAAC;AAC5C,CAAC;AAED,SAAS,YAAY,CAAC,KAAa;IACjC,uDAAuD;IACvD,6FAA6F;IAC7F,IAAI,KAAK,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC;QACzB,MAAM,IAAI,KAAK,CAAC,mCAAmC,CAAC,CAAC;IACvD,CAAC;IACD,OAAO,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,EAAE,IAAI,CAAC,GAAG,CAAC;AAC1C,CAAC;AAED,SAAgB,oBAAoB,CAAC,GAAW;IAC9C,gEAAgE;IAChE,OAAO,GAAG,CAAC,OAAO,CAAC,6BAA6B,EAAE,uBAAuB,CAAC,CAAC;AAC7E,CAAC;AAED,SAAgB,oBAAoB,CAAC,KAAa;IAChD,6DAA6D;IAC7D,IAAI,CAAC;QACH,MAAM,CAAC,GAAG,IAAI,SAAG,CAAC,KAAK,CAAC,CAAC;QACzB,IAAI,CAAC,CAAC,QAAQ;YAAE,CAAC,CAAC,QAAQ,GAAG,OAAO,CAAC;QACrC,OAAO,CAAC,CAAC,QAAQ,EAAE,CAAC;IACtB,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,KAAK,CAAC,OAAO,CAAC,6BAA6B,EAAE,aAAa,CAAC,CAAC;IACrE,CAAC;AACH,CAAC;AAED,SAAS,WAAW,CAAC,KAAa;IAChC,OAAO,sBAAsB,CAAC,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC;AACnD,CAAC;AAED,SAAS,gBAAgB,CAAC,KAAa;IACrC,MAAM,CAAC,GAAG,KAAK,CAAC,IAAI,EAAE,CAAC;IACvB,MAAM,MAAM,GAAa,EAAE,CAAC;IAC5B,IAAI,CAAC,GAAG,CAAC,CAAC;IAEV,MAAM,OAAO,GAAG,CAAC,EAAU,EAAE,EAAE,CAAC,EAAE,KAAK,GAAG,IAAI,EAAE,KAAK,IAAI,IAAI,EAAE,KAAK,IAAI,IAAI,EAAE,KAAK,IAAI,CAAC;IAExF,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC;QACpB,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC,CAAE,CAAC;YAAE,CAAC,EAAE,CAAC;QAC3C,IAAI,CAAC,IAAI,CAAC,CAAC,MAAM;YAAE,MAAM;QAEzB,IAAI,GAAG,GAAG,EAAE,CAAC;QACb,IAAI,QAAQ,GAAG,KAAK,CAAC;QACrB,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC;YACpB,MAAM,EAAE,GAAG,CAAC,CAAC,CAAC,CAAE,CAAC;YACjB,IAAI,CAAC,QAAQ,IAAI,OAAO,CAAC,EAAE,CAAC;gBAAE,MAAM;YAEpC,IAAI,EAAE,KAAK,GAAG,IAAI,CAAC,QAAQ,EAAE,CAAC;gBAC5B,QAAQ,GAAG,IAAI,CAAC;gBAChB,CAAC,EAAE,CAAC;gBACJ,SAAS;YACX,CAAC;YACD,IAAI,EAAE,KAAK,GAAG,IAAI,QAAQ,EAAE,CAAC;gBAC3B,QAAQ,GAAG,KAAK,CAAC;gBACjB,CAAC,EAAE,CAAC;gBACJ,SAAS;YACX,CAAC;YAED,IAAI,EAAE,KAAK,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,CAAC;gBACpC,GAAG,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,CAAE,CAAC;gBACjB,CAAC,IAAI,CAAC,CAAC;gBACP,SAAS;YACX,CAAC;YAED,GAAG,IAAI,EAAE,CAAC;YACV,CAAC,EAAE,CAAC;QACN,CAAC;QAED,MAAM,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QACjB,OAAO,CAAC,GAAG,CAAC,CAAC,MAAM,IAAI,OAAO,CAAC,CAAC,CAAC,CAAC,CAAE,CAAC;YAAE,CAAC,EAAE,CAAC;IAC7C,CAAC;IAED,OAAO,MAAM,CAAC;AAChB,CAAC;AAED,SAAgB,kBAAkB,CAAC,KAAa;IAC9C,MAAM,MAAM,GAAG,gBAAgB,CAAC,KAAK,CAAC,CAAC;IACvC,MAAM,GAAG,GAAmB,EAAE,CAAC;IAC/B,IAAI,OAA2B,CAAC;IAEhC,KAAK,MAAM,CAAC,IAAI,MAAM,EAAE,CAAC;QACvB,MAAM,EAAE,GAAG,CAAC,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QAC1B,IAAI,EAAE,IAAI,CAAC;YAAE,SAAS;QACtB,MAAM,GAAG,GAAG,CAAC,CAAC,KAAK,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;QAClC,MAAM,MAAM,GAAG,CAAC,CAAC,KAAK,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC;QAC/B,MAAM,GAAG,GAAG,MAAM,CAAC,IAAI,EAAE,CAAC;QAC1B,IAAI,CAAC,GAAG;YAAE,SAAS;QAEnB,QAAQ,GAAG,EAAE,CAAC;YACZ,KAAK,MAAM;gBACT,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC;gBACf,MAAM;YACR,KAAK,MAAM,CAAC,CAAC,CAAC;gBACZ,MAAM,CAAC,GAAG,MAAM,CAAC,GAAG,CAAC,CAAC;gBACtB,IAAI,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC;oBAAE,GAAG,CAAC,IAAI,GAAG,CAAC,CAAC;gBACrC,MAAM;YACR,CAAC;YACD,KAAK,MAAM;gBACT,GAAG,CAAC,IAAI,GAAG,GAAG,CAAC;gBACf,MAAM;YACR,KAAK,UAAU;gBACb,GAAG,CAAC,QAAQ,GAAG,GAAG,CAAC;gBACnB,MAAM;YACR,KAAK,QAAQ,CAAC;YACd,KAAK,UAAU;gBACb,GAAG,CAAC,QAAQ,GAAG,GAAG,CAAC;gBACnB,MAAM;YACR,KAAK,SAAS;gBACZ,OAAO,GAAG,GAAG,CAAC;gBACd,MAAM;YACR,2DAA2D;YAC3D;gBACE,MAAM;QACV,CAAC;IACH,CAAC;IAED,2CAA2C;IAC3C,IAAI,OAAO,EAAE,CAAC;QACZ,GAAG,CAAC,GAAG,GAAG,eAAe,CAAC,OAAO,CAAC,CAAC;IACrC,CAAC;IAED,OAAO,GAAG,CAAC;AACb,CAAC;AAED,SAAgB,gBAAgB,CAAC,GAAmB;IAClD,IAAI,GAAG,CAAC,gBAAgB;QAAE,OAAO,oBAAoB,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;IAC5E,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC;IAC5C,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,QAAQ,CAAC;IAC5C,MAAM,IAAI,GAAG,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC;IACpD,MAAM,EAAE,GAAG,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,MAAM,CAAC;IAChD,yBAAyB;IACzB,OAAO,gBAAgB,IAAI,UAAU,IAAI,IAAI,IAAI,IAAI,EAAE,EAAE,CAAC;AAC5D,CAAC;AAED,SAAgB,sBAAsB,CAAC,IAStC;IACC,MAAM,IAAI,GAAG,CAAC,IAAI,CAAC,IAAI,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IACtC,MAAM,SAAS,GAAG,CAAC,IAAI,CAAC,SAAS,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IAEhD,0EAA0E;IAC1E,MAAM,WAAW,GAAG,OAAO,CAAC,GAAG,CAAC,SAAS,CAAC;IAE1C,wFAAwF;IACxF,kHAAkH;IAClH,MAAM,cAAc,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,QAAQ,IAAI,IAAI,CAAC,MAAM,CAAC,CAAC;IAElF,IAAI,IAAI,IAAI,SAAS,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CAAC,mEAAmE,CAAC,CAAC;IACvF,CAAC;IAED,IAAI,IAAI,IAAI,SAAS,EAAE,CAAC;QACtB,MAAM,CAAC,GAAG,IAAI,IAAI,SAAS,CAAC;QAC5B,IAAI,WAAW,CAAC,CAAC,CAAC,EAAE,CAAC;YACnB,MAAM,UAAU,GAAG,qBAAqB,CAAC,CAAC,CAAC,CAAC;YAC5C,MAAM,gBAAgB,GAAG,WAAW,IAAI,UAAU,CAAC;YACnD,2EAA2E;YAC3E,MAAM,SAAS,GAAG,gBAAgB;gBAChC,CAAC,CAAC,eAAe,CAAC,gBAAgB,CAAC;gBACnC,CAAC,CAAC,EAAE,kBAAkB,EAAE,KAAK,EAAE,CAAC,CAAC,mCAAmC;YACtE,qEAAqE;YACrE,MAAM,cAAc,GAAG,CAAC,gBAAgB;gBACtC,gBAAgB,CAAC,WAAW,EAAE,KAAK,QAAQ;gBAC3C,gBAAgB,CAAC,WAAW,EAAE,KAAK,OAAO,CAAC;YAC7C,kEAAkE;YAClE,MAAM,QAAQ,GAAG,mBAAmB,CAAC,CAAC,CAAC,CAAC;YACxC,OAAO;gBACL,YAAY,EAAE,EAAE,gBAAgB,EAAE,QAAQ,EAAE,GAAG,EAAE,SAAS,EAAE;gBAC5D,OAAO,EAAE,oBAAoB,CAAC,CAAC,CAAC;gBAChC,kBAAkB,EAAE,cAAc;aACnC,CAAC;QACJ,CAAC;QACD,uCAAuC;QACvC,MAAM,GAAG,GAAG,kBAAkB,CAAC,CAAC,CAAC,CAAC;QAClC,IAAI,IAAI,CAAC,WAAW,IAAI,CAAC,GAAG,CAAC,QAAQ;YAAE,GAAG,CAAC,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC;QACvE,MAAM,SAAS,GAAG,GAAG,CAAC,GAAG,KAAK,SAAS,CAAC;QACxC,IAAI,GAAG,CAAC,GAAG,KAAK,SAAS,EAAE,CAAC;YAC1B,IAAI,WAAW;gBAAE,GAAG,CAAC,GAAG,GAAG,eAAe,CAAC,WAAW,CAAC,CAAC;;gBACnD,GAAG,CAAC,GAAG,GAAG,EAAE,kBAAkB,EAAE,KAAK,EAAE,CAAC,CAAC,mCAAmC;QACnF,CAAC;QACD,qEAAqE;QACrE,MAAM,cAAc,GAAG,CAAC,CAAC,WAAW,IAAI,CAAC,SAAS,CAAC;YACjD,CAAC,CAAC,CAAC,WAAW,IAAI,CAAC,WAAW,CAAC,WAAW,EAAE,KAAK,QAAQ,IAAI,WAAW,CAAC,WAAW,EAAE,KAAK,OAAO,CAAC,CAAC,CAAC;QACvG,OAAO;YACL,YAAY,EAAE,GAAG;YACjB,OAAO,EAAE,gBAAgB,CAAC,GAAG,CAAC;YAC9B,kBAAkB,EAAE,cAAc;SACnC,CAAC;IACJ,CAAC;IAED,IAAI,CAAC,cAAc,EAAE,CAAC;QACpB,wFAAwF;QACxF,MAAM,IAAI,KAAK,CAAC,yBAAyB,CAAC,CAAC;IAC7C,CAAC;IAED,MAAM,GAAG,GAAmB,EAAE,CAAC;IAC/B,IAAI,IAAI,CAAC,IAAI;QAAE,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC;IACpC,IAAI,IAAI,CAAC,IAAI,KAAK,SAAS,IAAI,IAAI,CAAC,IAAI,KAAK,EAAE,EAAE,CAAC;QAChD,MAAM,CAAC,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC5B,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,SAAS,CAAC,CAAC,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,GAAG,KAAK,EAAE,CAAC;YACvE,MAAM,IAAI,KAAK,CAAC,uBAAuB,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;QAC9D,CAAC;QACD,GAAG,CAAC,IAAI,GAAG,CAAC,CAAC;IACf,CAAC;IACD,IAAI,IAAI,CAAC,QAAQ;QAAE,GAAG,CAAC,IAAI,GAAG,IAAI,CAAC,QAAQ,CAAC;IAC5C,IAAI,IAAI,CAAC,MAAM;QAAE,GAAG,CAAC,QAAQ,GAAG,IAAI,CAAC,MAAM,CAAC;IAC5C,IAAI,IAAI,CAAC,aAAa;QAAE,GAAG,CAAC,QAAQ,GAAG,IAAI,CAAC,aAAa,CAAC;IAC1D,IAAI,IAAI,CAAC,WAAW,IAAI,CAAC,GAAG,CAAC,QAAQ;QAAE,GAAG,CAAC,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC;IACvE,IAAI,WAAW,EAAE,CAAC;QAChB,GAAG,CAAC,GAAG,GAAG,eAAe,CAAC,WAAW,CAAC,CAAC;QACvC,gDAAgD;QAChD,MAAM,cAAc,GAAG,WAAW,CAAC,WAAW,EAAE,KAAK,QAAQ,IAAI,WAAW,CAAC,WAAW,EAAE,KAAK,OAAO,CAAC;QACvG,OAAO,EAAE,YAAY,EAAE,GAAG,EAAE,OAAO,EAAE,gBAAgB,CAAC,GAAG,CAAC,EAAE,kBAAkB,EAAE,cAAc,EAAE,CAAC;IACnG,CAAC;IACD,2DAA2D;IAC3D,GAAG,CAAC,GAAG,GAAG,EAAE,kBAAkB,EAAE,KAAK,EAAE,CAAC;IACxC,OAAO,EAAE,YAAY,EAAE,GAAG,EAAE,OAAO,EAAE,gBAAgB,CAAC,GAAG,CAAC,EAAE,kBAAkB,EAAE,IAAI,EAAE,CAAC;AACzF,CAAC;AAED,SAAS,0BAA0B;IACjC,gFAAgF;IAChF,2FAA2F;IAC3F,MAAM,QAAQ,GAAG,IAAA,oBAAW,EAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,WAAW,CAAC,CAAC;IACvD,IAAI,QAAQ,CAAC,MAAM,GAAG,EAAE,EAAE,CAAC;QACzB,MAAM,IAAI,KAAK,CAAC,sDAAsD,CAAC,CAAC;IAC1E,CAAC;IACD,OAAO,QAAQ,CAAC;AAClB,CAAC;AAEM,KAAK,UAAU,yBAAyB,CAAC,IAI/C;IACC,MAAM,QAAQ,GAAG,CAAC,IAAI,CAAC,YAAY,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IAClD,IAAI,QAAQ;QAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IAE9D,MAAM,OAAO,GAAG,CAAC,IAAI,CAAC,WAAW,IAAI,EAAE,CAAC,CAAC,IAAI,EAAE,CAAC;IAChD,IAAI,OAAO;QAAE,OAAO,EAAE,QAAQ,EAAE,OAAO,EAAE,SAAS,EAAE,KAAK,EAAE,CAAC;IAE5D,gFAAgF;IAChF,OAAO,EAAE,QAAQ,EAAE,0BAA0B,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC;AACrE,CAAC;AAEM,KAAK,UAAU,aAAa,CAAC,MAKnC;IACC,gFAAgF;IAChF,MAAM,cAAc,GAAG,MAAM,CAAC,cAAc,IAAI,+BAAuB,CAAC;IACxE,MAAM,QAAQ,GAAG,MAAM,CAAC,QAAQ,CAAC;IAEjC,MAAM,KAAK,GAAG,UAAU,CAAC,cAAc,CAAC,CAAC;IACzC,MAAM,GAAG,GAAG,UAAU,CAAC,QAAQ,CAAC,CAAC;IACjC,MAAM,GAAG,GAAG,YAAY,CAAC,MAAM,CAAC,kBAAkB,CAAC,CAAC;IACpD,MAAM,YAAY,GAAG,YAAY,CAAC,cAAc,CAAC,CAAC;IAElD,MAAM,KAAK,GAAe,EAAE,CAAC;IAE7B,MAAM,IAAI,GAA2B;QACnC,UAAU,EAAE,KAAK;QACjB,QAAQ,EAAE,GAAG;KACd,CAAC;IAEF,qDAAqD;IACrD,uGAAuG;IACvG,MAAM;IACN,0GAA0G;IAC1G,wEAAwE;IACxE,MAAM,QAAQ,GAAG;qEACkD,YAAY;;oBAE7D,KAAK,kBAAkB,GAAG;;;;;eAK/B,KAAK,kBAAkB,GAAG;QACjC,CAAC;IAEP,MAAM,OAAO,GAAG,aAAa,CAAC,eAAe,CAAC,aAAa,CAAC,EAAE,EAAE,GAAG,IAAI,EAAE,SAAS,EAAE,QAAQ,EAAE,CAAC,CAAC;IAChG,KAAK,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,SAAS,EAAE,GAAG,EAAE,OAAO,EAAE,CAAC,CAAC;IAE9C,KAAK,CAAC,IAAI,CAAC;QACT,IAAI,EAAE,gBAAgB;QACtB,GAAG,EAAE,aAAa,CAAC,eAAe,CAAC,oBAAoB,CAAC,EAAE,IAAI,CAAC;KAChE,CAAC,CAAC;IAEH,IAAI,MAAM,CAAC,0BAA0B,EAAE,CAAC;QACtC,KAAK,CAAC,IAAI,CACR;YACE,IAAI,EAAE,iBAAiB;YACvB,GAAG,EAAE,aAAa,CAAC,eAAe,CAAC,qBAAqB,CAAC,EAAE,IAAI,CAAC;YAChE,QAAQ,EAAE,IAAI;SACf,EACD;YACE,IAAI,EAAE,0BAA0B;YAChC,GAAG,EAAE,aAAa,CAAC,eAAe,CAAC,8BAA8B,CAAC,EAAE,IAAI,CAAC;YACzE,QAAQ,EAAE,IAAI;SACf,CACF,CAAC;IACJ,CAAC;IAED,OAAO,EAAE,cAAc,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;AAC7C,CAAC;AAEM,KAAK,UAAU,aAAa,CAAC,MAInC;IACC,MAAM,OAAO,GAAa,EAAE,CAAC;IAC7B,MAAM,eAAe,GAAa,EAAE,CAAC;IAErC,oDAAoD;IACpD,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;IACpC,IAAI,CAAC;QACH,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC;YAChE,IAAI,CAAC;gBACH,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,IAAI,CAAC,MAAa,CAAC,CAAC;gBACxD,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1B,CAAC;YAAC,OAAO,CAAC,EAAE,CAAC;gBACX,MAAM,GAAG,GAAG,CAAC,YAAY,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC;gBACvD,MAAM,MAAM,GAAG,CAAQ,CAAC;gBACxB,MAAM,OAAO,GAAQ,IAAI,KAAK,CAAC,mBAAmB,IAAI,CAAC,IAAI,MAAM,GAAG,EAAE,CAAC,CAAC;gBACxE,2FAA2F;gBAC3F,MAAM,aAAa,GAAG;oBACpB,MAAM;oBACN,QAAQ;oBACR,MAAM;oBACN,UAAU;oBACV,kBAAkB;oBAClB,eAAe;oBACf,OAAO;oBACP,QAAQ;oBACR,OAAO;oBACP,QAAQ;oBACR,UAAU;oBACV,YAAY;oBACZ,MAAM;oBACN,MAAM;oBACN,SAAS;iBACD,CAAC;gBACX,IAAI,MAAM,IAAI,OAAO,MAAM,KAAK,QAAQ,EAAE,CAAC;oBACzC,KAAK,MAAM,KAAK,IAAI,aAAa,EAAE,CAAC;wBAClC,IAAI,MAAM,CAAC,KAAK,CAAC,KAAK,SAAS;4BAAE,OAAO,CAAC,KAAK,CAAC,GAAG,MAAM,CAAC,KAAK,CAAC,CAAC;oBAClE,CAAC;gBACH,CAAC;gBACD,IAAI,CAAC,YAAY,KAAK,IAAI,CAAC,CAAC,KAAK,EAAE,CAAC;oBAClC,OAAO,CAAC,KAAK,GAAG,CAAC,CAAC,KAAK,CAAC;gBAC1B,CAAC;gBACD,MAAM,OAAO,CAAC;YAChB,CAAC;QACH,CAAC;QACD,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;IACvC,CAAC;IAAC,OAAO,CAAC,EAAE,CAAC;QACX,0DAA0D;QAC1D,IAAI,CAAC;YACH,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;QACzC,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;QACD,MAAM,CAAC,CAAC;IACV,CAAC;IAED,yFAAyF;IACzF,KAAK,MAAM,IAAI,IAAI,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC/D,IAAI,CAAC;YACH,mFAAmF;YACnF,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;YACpC,IAAI,CAAC;gBACH,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,IAAI,CAAC,MAAa,CAAC,CAAC;gBACxD,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,SAAS,CAAC,CAAC;gBACrC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC1B,CAAC;YAAC,MAAM,CAAC;gBACP,IAAI,CAAC;oBACH,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;gBACzC,CAAC;gBAAC,MAAM,CAAC;oBACP,yBAAyB;gBAC3B,CAAC;gBACD,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;gBAChC,sBAAsB;YACxB,CAAC;QACH,CAAC;QAAC,MAAM,CAAC;YACP,mDAAmD;YACnD,eAAe,CAAC,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAClC,CAAC;IACH,CAAC;IAED,OAAO,EAAE,OAAO,EAAE,eAAe,EAAE,CAAC;AACtC,CAAC;AAQM,KAAK,UAAU,eAAe,CAAC,MAKrC;IACC,sEAAsE;IACtE,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,wCAAwC,CAAC,CAAC;IACpE,IAAI,CAAC;QACH,MAAM,eAAe,GAAa,EAAE,CAAC;QACrC,MAAM,eAAe,GAAa,EAAE,CAAC;QAErC,MAAM,IAAI,GAAG,MAAM,CAAC,cAAc,CAAC;QACnC,MAAM,EAAE,GAAG,MAAM,CAAC,QAAQ,CAAC;QAE3B,MAAM,OAAO,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,sDAAsD,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC;QAC1G,MAAM,UAAU,GAAG,CAAC,OAAO,CAAC,QAAQ,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC;QAC/C,IAAI,CAAC,UAAU,EAAE,CAAC;YAChB,eAAe,CAAC,IAAI,CAAC,SAAS,IAAI,kBAAkB,CAAC,CAAC;YACtD,iEAAiE;YACjE,OAAO,EAAE,EAAE,EAAE,KAAK,EAAE,eAAe,EAAE,eAAe,EAAE,CAAC;QACzD,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAC1C,wDAAwD,EACxD,CAAC,IAAI,EAAE,EAAE,CAAC,CACX,CAAC;QACF,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC;YAC9B,eAAe,CAAC,IAAI,CAAC,wBAAwB,EAAE,GAAG,CAAC,CAAC;QACtD,CAAC;QAED,MAAM,YAAY,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAC5C,sDAAsD,EACtD,CAAC,IAAI,CAAC,CACP,CAAC;QACF,IAAI,CAAC,YAAY,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC;YAChC,eAAe,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;QACxD,CAAC;QAED,MAAM,UAAU,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAC1C,uEAAuE,EACvE,CAAC,IAAI,CAAC,CACP,CAAC;QACF,IAAI,CAAC,UAAU,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC;YAC9B,eAAe,CAAC,IAAI,CAAC,+BAA+B,CAAC,CAAC;QACxD,CAAC;QAED,MAAM,aAAa,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,6DAA6D,CAAC,CAAC;QAC/G,IAAI,CAAC,aAAa,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC;YACjC,eAAe,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;QAC1D,CAAC;aAAM,CAAC;YACN,MAAM,WAAW,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAC3C,uEAAuE,EACvE,CAAC,IAAI,CAAC,CACP,CAAC;YACF,IAAI,CAAC,WAAW,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC;gBAC/B,eAAe,CAAC,IAAI,CAAC,oCAAoC,CAAC,CAAC;YAC7D,CAAC;QACH,CAAC;QAED,MAAM,cAAc,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAC9C,0DAA0D,EAC1D,CAAC,IAAI,CAAC,CACP,CAAC;QACF,IAAI,CAAC,cAAc,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC;YAClC,eAAe,CAAC,IAAI,CAAC,wBAAwB,CAAC,CAAC;QACjD,CAAC;QAED,MAAM,SAAS,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,8DAA8D,EAAE,CAAC,IAAI,CAAC,CAAC,CAAC;QACpH,MAAM,SAAS,GAAG,SAAS,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,SAAS,CAAC;QACjD,MAAM,MAAM,GAAG,KAAK,CAAC,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC,CAAM,EAAE,EAAE,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,cAAc,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;QACvH,IAAI,OAAO,MAAM,KAAK,QAAQ,IAAI,CAAC,MAAM,EAAE,CAAC;YAC1C,eAAe,CAAC,IAAI,CAAC,yBAAyB,CAAC,CAAC;QAClD,CAAC;aAAM,CAAC;YACN,wEAAwE;YACxE,MAAM,EAAE,GAAG,MAAM,CAAC,WAAW,EAAE,CAAC;YAChC,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,IAAI,CAAC,EAAE,CAAC,QAAQ,CAAC,YAAY,CAAC,EAAE,CAAC;gBACzD,eAAe,CAAC,IAAI,CAAC,iDAAiD,CAAC,CAAC;YAC1E,CAAC;QACH,CAAC;QAED,IAAI,MAAM,CAAC,0BAA0B,EAAE,CAAC;YACtC,6BAA6B;YAC7B,CAAC;gBACC,MAAM,MAAM,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,wDAAwD,CAAC,CAAC;gBACnG,IAAI,CAAC,MAAM,CAAC,QAAQ,IAAI,CAAC,CAAC,KAAK,CAAC,EAAE,CAAC;oBACjC,eAAe,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;gBAC9C,CAAC;qBAAM,CAAC;oBACN,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CACrC,sFAAsF,EACtF,CAAC,IAAI,CAAC,CACP,CAAC;oBACF,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC;wBACzB,eAAe,CAAC,IAAI,CAAC,2CAA2C,CAAC,CAAC;oBACpE,CAAC;gBACH,CAAC;YACH,CAAC;YAED,+BAA+B;YAC/B,MAAM,WAAW,GAAG;gBAClB,+BAA+B;gBAC/B,wCAAwC;gBACxC,4BAA4B;gBAC5B,8CAA8C;aAC/C,CAAC;YACF,KAAK,MAAM,EAAE,IAAI,WAAW,EAAE,CAAC;gBAC7B,MAAM,KAAK,GAAG,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,wDAAwD,EAAE,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC,CAAC;gBAC9G,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC;oBACzB,eAAe,CAAC,IAAI,CAAC,cAAc,EAAE,EAAE,CAAC,CAAC;gBAC3C,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,EAAE,EAAE,EAAE,eAAe,CAAC,MAAM,KAAK,CAAC,EAAE,eAAe,EAAE,eAAe,EAAE,CAAC;IAChF,CAAC;YAAS,CAAC;QACT,wEAAwE;QACxE,IAAI,CAAC;YACH,MAAM,MAAM,CAAC,MAAM,CAAC,KAAK,CAAC,WAAW,CAAC,CAAC;QACzC,CAAC;QAAC,MAAM,CAAC;YACP,SAAS;QACX,CAAC;IACH,CAAC;AACH,CAAC"}