secure-scan 1.2.2

package/dist/analyzers/javascript/taintAnalyzer.js

@@ -0,0 +1,526 @@
+"use strict";
+/**
+ * Taint Analysis Module for JavaScript/TypeScript
+ * Tracks data flow from untrusted sources to dangerous sinks
+ *
+ * Inspired by CodeQL's taint tracking methodology
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.TaintAnalyzer = exports.TAINT_SINKS = exports.TAINT_SOURCES = void 0;
+const types_1 = require("../../types");
+/**
+ * Taint sources - entry points for untrusted data
+ */
+exports.TAINT_SOURCES = [
+    // Express/Node.js request data
+    {
+        type: 'request_body',
+        pattern: /\breq(?:uest)?\.body(?:\[['"`](\w+)['"`]\]|\.(\w+))?/g,
+        description: 'User input from request body',
+        contextHints: ['express', 'http', 'request']
+    },
+    {
+        type: 'request_query',
+        pattern: /\breq(?:uest)?\.query(?:\[['"`](\w+)['"`]\]|\.(\w+))?/g,
+        description: 'User input from query string',
+        contextHints: ['express', 'http', 'request']
+    },
+    {
+        type: 'request_params',
+        pattern: /\breq(?:uest)?\.params(?:\[['"`](\w+)['"`]\]|\.(\w+))?/g,
+        description: 'User input from URL parameters',
+        contextHints: ['express', 'http', 'request']
+    },
+    {
+        type: 'request_headers',
+        pattern: /\breq(?:uest)?\.headers(?:\[['"`](\w+)['"`]\]|\.(\w+))?/g,
+        description: 'User-controlled HTTP headers',
+        contextHints: ['express', 'http', 'request']
+    },
+    {
+        type: 'request_cookies',
+        pattern: /\breq(?:uest)?\.cookies(?:\[['"`](\w+)['"`]\]|\.(\w+))?/g,
+        description: 'User-controlled cookies',
+        contextHints: ['express', 'cookie']
+    },
+    // Browser APIs
+    {
+        type: 'url_location',
+        pattern: /\b(?:window\.)?location\.(?:href|search|hash|pathname)/g,
+        description: 'Browser URL location (user-controllable)',
+        contextHints: ['browser', 'window', 'document']
+    },
+    {
+        type: 'document_url',
+        pattern: /\bdocument\.(?:URL|documentURI|referrer)/g,
+        description: 'Document URL properties',
+        contextHints: ['browser', 'document']
+    },
+    {
+        type: 'url_search_params',
+        pattern: /new\s+URLSearchParams\s*\([^)]*\)\.get\s*\(/g,
+        description: 'URL search parameters',
+        contextHints: ['browser', 'URL']
+    },
+    {
+        type: 'local_storage',
+        pattern: /\b(?:localStorage|sessionStorage)\.getItem\s*\(['"`](\w+)['"`]\)/g,
+        description: 'Browser storage (potentially attacker-controlled)',
+        contextHints: ['browser', 'storage']
+    },
+    {
+        type: 'post_message',
+        pattern: /\bevent\.data\b|\bmessage\.data\b/g,
+        description: 'PostMessage data (cross-origin)',
+        contextHints: ['postMessage', 'addEventListener', 'message']
+    },
+    // Environment variables
+    {
+        type: 'env_variable',
+        pattern: /\bprocess\.env(?:\[['"`](\w+)['"`]\]|\.(\w+))/g,
+        description: 'Environment variable (may contain sensitive data)',
+        contextHints: ['node', 'process', 'env']
+    },
+    // Form data
+    {
+        type: 'form_data',
+        pattern: /\b(?:formData|form)\.get\s*\(['"`](\w+)['"`]\)/g,
+        description: 'Form input data',
+        contextHints: ['form', 'FormData']
+    },
+    // File uploads
+    {
+        type: 'file_upload',
+        pattern: /\breq(?:uest)?\.files?(?:\[['"`](\w+)['"`]\]|\.(\w+))?/g,
+        description: 'Uploaded file data',
+        contextHints: ['multer', 'upload', 'file']
+    }
+];
+/**
+ * Taint sinks - dangerous operations
+ */
+exports.TAINT_SINKS = [
+    // Code Execution (RCE)
+    {
+        type: 'eval',
+        pattern: /\beval\s*\(/g,
+        threatType: types_1.ThreatType.COMMAND_INJECTION,
+        severity: types_1.Severity.CRITICAL,
+        description: 'Direct code execution via eval()',
+        remediation: 'Never use eval() with user input. Use safer alternatives like JSON.parse() for data.'
+    },
+    {
+        type: 'function_constructor',
+        pattern: /\bnew\s+Function\s*\(/g,
+        threatType: types_1.ThreatType.COMMAND_INJECTION,
+        severity: types_1.Severity.CRITICAL,
+        description: 'Dynamic function creation (equivalent to eval)',
+        remediation: 'Avoid new Function() with dynamic input. Use predefined functions instead.'
+    },
+    {
+        type: 'setTimeout_string',
+        pattern: /\bsetTimeout\s*\(\s*['"`]/g,
+        threatType: types_1.ThreatType.COMMAND_INJECTION,
+        severity: types_1.Severity.HIGH,
+        description: 'setTimeout with string argument (eval-like)',
+        remediation: 'Pass a function reference to setTimeout instead of a string.'
+    },
+    {
+        type: 'setInterval_string',
+        pattern: /\bsetInterval\s*\(\s*['"`]/g,
+        threatType: types_1.ThreatType.COMMAND_INJECTION,
+        severity: types_1.Severity.HIGH,
+        description: 'setInterval with string argument (eval-like)',
+        remediation: 'Pass a function reference to setInterval instead of a string.'
+    },
+    // Command Injection (OS)
+    {
+        type: 'child_process_exec',
+        pattern: /\b(?:child_process\.)?exec\s*\(/g,
+        threatType: types_1.ThreatType.COMMAND_INJECTION,
+        severity: types_1.Severity.CRITICAL,
+        description: 'OS command execution via exec()',
+        remediation: 'Use execFile() with argument arrays instead of exec(). Validate and sanitize all inputs.'
+    },
+    {
+        type: 'child_process_spawn_shell',
+        pattern: /\bspawn\s*\([^)]+,\s*\{[^}]*shell\s*:\s*true/g,
+        threatType: types_1.ThreatType.COMMAND_INJECTION,
+        severity: types_1.Severity.CRITICAL,
+        description: 'spawn() with shell option (vulnerable to injection)',
+        remediation: 'Avoid shell: true in spawn(). Pass arguments as an array.'
+    },
+    {
+        type: 'exec_sync',
+        pattern: /\b(?:execSync|spawnSync)\s*\(/g,
+        threatType: types_1.ThreatType.COMMAND_INJECTION,
+        severity: types_1.Severity.CRITICAL,
+        description: 'Synchronous command execution',
+        remediation: 'Use execFileSync() with argument arrays. Never pass user input directly.'
+    },
+    // XSS Sinks
+    {
+        type: 'innerHTML',
+        pattern: /\.innerHTML\s*=/g,
+        threatType: types_1.ThreatType.XSS,
+        severity: types_1.Severity.HIGH,
+        description: 'DOM XSS via innerHTML assignment',
+        remediation: 'Use textContent for text, or sanitize HTML with DOMPurify before innerHTML.'
+    },
+    {
+        type: 'outerHTML',
+        pattern: /\.outerHTML\s*=/g,
+        threatType: types_1.ThreatType.XSS,
+        severity: types_1.Severity.HIGH,
+        description: 'DOM XSS via outerHTML assignment',
+        remediation: 'Use textContent for text, or sanitize HTML with DOMPurify.'
+    },
+    {
+        type: 'document_write',
+        pattern: /\bdocument\.(?:write|writeln)\s*\(/g,
+        threatType: types_1.ThreatType.XSS,
+        severity: types_1.Severity.HIGH,
+        description: 'DOM XSS via document.write()',
+        remediation: 'Avoid document.write(). Use DOM methods like createElement() and textContent.'
+    },
+    {
+        type: 'insertAdjacentHTML',
+        pattern: /\.insertAdjacentHTML\s*\(/g,
+        threatType: types_1.ThreatType.XSS,
+        severity: types_1.Severity.HIGH,
+        description: 'DOM XSS via insertAdjacentHTML()',
+        remediation: 'Sanitize HTML content with DOMPurify before insertion.'
+    },
+    {
+        type: 'jquery_html',
+        pattern: /\$\([^)]+\)\.html\s*\(/g,
+        threatType: types_1.ThreatType.XSS,
+        severity: types_1.Severity.HIGH,
+        description: 'DOM XSS via jQuery .html()',
+        remediation: 'Use .text() for plain text, or sanitize with DOMPurify before .html().'
+    },
+    {
+        type: 'jquery_append',
+        pattern: /\$\([^)]+\)\.(?:append|prepend|after|before)\s*\(/g,
+        threatType: types_1.ThreatType.XSS,
+        severity: types_1.Severity.MEDIUM,
+        description: 'Potential DOM XSS via jQuery DOM manipulation',
+        remediation: 'Ensure HTML content is sanitized before DOM insertion.'
+    },
+    // SSRF Sinks
+    {
+        type: 'fetch',
+        pattern: /\bfetch\s*\(/g,
+        threatType: types_1.ThreatType.SECURITY_MISCONFIGURATION,
+        severity: types_1.Severity.HIGH,
+        description: 'Potential SSRF via fetch() with user-controlled URL',
+        remediation: 'Validate and whitelist URLs before making requests. Block internal IP ranges.'
+    },
+    {
+        type: 'axios_request',
+        pattern: /\baxios(?:\.(?:get|post|put|delete|patch|request))?\s*\(/g,
+        threatType: types_1.ThreatType.SECURITY_MISCONFIGURATION,
+        severity: types_1.Severity.HIGH,
+        description: 'Potential SSRF via axios with user-controlled URL',
+        remediation: 'Validate and whitelist URLs before making requests.'
+    },
+    {
+        type: 'http_request',
+        pattern: /\b(?:http|https)\.(?:get|request)\s*\(/g,
+        threatType: types_1.ThreatType.SECURITY_MISCONFIGURATION,
+        severity: types_1.Severity.HIGH,
+        description: 'Potential SSRF via Node.js HTTP module',
+        remediation: 'Validate and whitelist URLs. Block requests to internal networks.'
+    },
+    // SQL Injection
+    {
+        type: 'sql_query',
+        pattern: /\.query\s*\(\s*['"`](?:SELECT|INSERT|UPDATE|DELETE)/gi,
+        threatType: types_1.ThreatType.SQL_INJECTION,
+        severity: types_1.Severity.CRITICAL,
+        description: 'Potential SQL injection via raw query',
+        remediation: 'Use parameterized queries or prepared statements. Never concatenate user input.'
+    },
+    {
+        type: 'sql_raw',
+        pattern: /\.raw\s*\(\s*['"`]|\.unsafeRaw\s*\(/g,
+        threatType: types_1.ThreatType.SQL_INJECTION,
+        severity: types_1.Severity.CRITICAL,
+        description: 'Raw SQL query execution',
+        remediation: 'Avoid raw SQL. Use ORM methods or parameterized queries.'
+    },
+    // Path Traversal
+    {
+        type: 'fs_read',
+        pattern: /\b(?:fs\.)?(?:readFile|readFileSync|createReadStream)\s*\(/g,
+        threatType: types_1.ThreatType.PATH_TRAVERSAL,
+        severity: types_1.Severity.HIGH,
+        description: 'File read with potentially user-controlled path',
+        remediation: 'Validate file paths. Use path.resolve() and check against base directory.'
+    },
+    {
+        type: 'fs_write',
+        pattern: /\b(?:fs\.)?(?:writeFile|writeFileSync|createWriteStream|appendFile)\s*\(/g,
+        threatType: types_1.ThreatType.PATH_TRAVERSAL,
+        severity: types_1.Severity.HIGH,
+        description: 'File write with potentially user-controlled path',
+        remediation: 'Validate file paths. Never use user input directly in file operations.'
+    },
+    // Deserialization
+    {
+        type: 'json_parse',
+        pattern: /\bJSON\.parse\s*\(/g,
+        threatType: types_1.ThreatType.INSECURE_DESERIALIZATION,
+        severity: types_1.Severity.MEDIUM,
+        description: 'JSON parsing (safe by itself, but check usage)',
+        remediation: 'Validate JSON structure after parsing. Be careful with prototype pollution.'
+    },
+    {
+        type: 'unserialize',
+        pattern: /\b(?:unserialize|deserialize)\s*\(/g,
+        threatType: types_1.ThreatType.INSECURE_DESERIALIZATION,
+        severity: types_1.Severity.HIGH,
+        description: 'Object deserialization (potential RCE)',
+        remediation: 'Avoid deserializing untrusted data. Use safe serialization formats.'
+    },
+    // Header Injection
+    {
+        type: 'set_header',
+        pattern: /\.setHeader\s*\(/g,
+        threatType: types_1.ThreatType.SECURITY_MISCONFIGURATION,
+        severity: types_1.Severity.MEDIUM,
+        description: 'HTTP header injection if value is user-controlled',
+        remediation: 'Validate header values. Remove newlines and control characters.'
+    },
+    // Redirect
+    {
+        type: 'redirect',
+        pattern: /\.redirect\s*\(/g,
+        threatType: types_1.ThreatType.SECURITY_MISCONFIGURATION,
+        severity: types_1.Severity.MEDIUM,
+        description: 'Open redirect if URL is user-controlled',
+        remediation: 'Validate redirect URLs. Only allow relative paths or whitelisted domains.'
+    }
+];
+/**
+ * Taint Analyzer Class
+ * Performs intra-procedural taint analysis for JavaScript/TypeScript
+ */
+class TaintAnalyzer {
+    taintedVariables = new Map();
+    lines = [];
+    filePath = '';
+    /**
+     * Analyze code for taint flows
+     */
+    analyze(content, filePath) {
+        this.lines = content.split('\n');
+        this.filePath = filePath;
+        this.taintedVariables.clear();
+        const flows = [];
+        // Phase 1: Identify taint sources
+        this.identifySources();
+        // Phase 2: Track taint propagation
+        this.trackPropagation();
+        // Phase 3: Check sinks
+        flows.push(...this.checkSinks());
+        return flows;
+    }
+    /**
+     * Phase 1: Identify all taint sources in the code
+     */
+    identifySources() {
+        for (let i = 0; i < this.lines.length; i++) {
+            const line = this.lines[i];
+            const lineNum = i + 1;
+            // Check each source pattern
+            for (const source of exports.TAINT_SOURCES) {
+                // Reset regex lastIndex
+                source.pattern.lastIndex = 0;
+                // Check for variable assignment from source
+                const assignmentPatterns = [
+                    // const/let/var x = source
+                    new RegExp(`(?:const|let|var)\\s+(\\w+)\\s*=\\s*${source.pattern.source}`, 'g'),
+                    // x = source (reassignment)
+                    new RegExp(`(\\w+)\\s*=\\s*${source.pattern.source}`, 'g'),
+                    // destructuring: const { x } = req.body
+                    new RegExp(`(?:const|let|var)\\s*\\{([^}]+)\\}\\s*=\\s*${source.pattern.source.replace(/\(\?:[^)]+\)?\?/g, '')}`, 'g')
+                ];
+                for (const pattern of assignmentPatterns) {
+                    pattern.lastIndex = 0;
+                    let match;
+                    while ((match = pattern.exec(line)) !== null) {
+                        const varNames = match[1].split(',').map(v => v.trim().split(':')[0].trim());
+                        for (const varName of varNames) {
+                            if (varName && /^\w+$/.test(varName)) {
+                                this.taintedVariables.set(varName, {
+                                    name: varName,
+                                    sourceType: source.type,
+                                    sourceLine: lineNum,
+                                    sourceCode: line.trim(),
+                                    assignments: []
+                                });
+                            }
+                        }
+                    }
+                }
+            }
+        }
+    }
+    /**
+     * Phase 2: Track taint propagation through assignments
+     */
+    trackPropagation() {
+        for (let i = 0; i < this.lines.length; i++) {
+            const line = this.lines[i];
+            const lineNum = i + 1;
+            // Check for propagation: y = taintedVar or y = something(taintedVar)
+            for (const [taintedVar, taintInfo] of this.taintedVariables) {
+                // Skip the original source line
+                if (lineNum === taintInfo.sourceLine)
+                    continue;
+                // Check if tainted variable is used in an assignment
+                const propagationPattern = new RegExp(`(?:const|let|var)?\\s*(\\w+)\\s*=\\s*(?:[^;]*\\b${taintedVar}\\b[^;]*)`, 'g');
+                let match;
+                while ((match = propagationPattern.exec(line)) !== null) {
+                    const newVar = match[1];
+                    if (newVar && newVar !== taintedVar && /^\w+$/.test(newVar)) {
+                        // Propagate taint to new variable
+                        if (!this.taintedVariables.has(newVar)) {
+                            this.taintedVariables.set(newVar, {
+                                name: newVar,
+                                sourceType: taintInfo.sourceType,
+                                sourceLine: taintInfo.sourceLine,
+                                sourceCode: taintInfo.sourceCode,
+                                assignments: [{ line: lineNum, code: line.trim() }]
+                            });
+                        }
+                        else {
+                            // Add to existing tainted variable's propagation
+                            const existing = this.taintedVariables.get(newVar);
+                            existing.assignments.push({ line: lineNum, code: line.trim() });
+                        }
+                    }
+                }
+            }
+        }
+    }
+    /**
+     * Phase 3: Check if tainted data reaches sinks
+     */
+    checkSinks() {
+        const flows = [];
+        for (let i = 0; i < this.lines.length; i++) {
+            const line = this.lines[i];
+            const lineNum = i + 1;
+            // Check each sink pattern
+            for (const sink of exports.TAINT_SINKS) {
+                sink.pattern.lastIndex = 0;
+                if (sink.pattern.test(line)) {
+                    // Check if any tainted variable is used in this line
+                    for (const [varName, taintInfo] of this.taintedVariables) {
+                        const varPattern = new RegExp(`\\b${varName}\\b`);
+                        if (varPattern.test(line)) {
+                            // Found taint flow!
+                            flows.push({
+                                source: {
+                                    type: taintInfo.sourceType,
+                                    variable: taintInfo.name,
+                                    line: taintInfo.sourceLine,
+                                    code: taintInfo.sourceCode
+                                },
+                                sink: {
+                                    type: sink.type,
+                                    line: lineNum,
+                                    code: line.trim(),
+                                    threatType: sink.threatType,
+                                    severity: sink.severity
+                                },
+                                propagation: taintInfo.assignments.map(a => ({ ...a, variable: taintInfo.name })),
+                                confidence: this.calculateConfidence(taintInfo, sink, lineNum)
+                            });
+                        }
+                    }
+                    // Also check for direct source-to-sink (no intermediate variable)
+                    for (const source of exports.TAINT_SOURCES) {
+                        source.pattern.lastIndex = 0;
+                        if (source.pattern.test(line)) {
+                            flows.push({
+                                source: {
+                                    type: source.type,
+                                    variable: 'direct',
+                                    line: lineNum,
+                                    code: line.trim()
+                                },
+                                sink: {
+                                    type: sink.type,
+                                    line: lineNum,
+                                    code: line.trim(),
+                                    threatType: sink.threatType,
+                                    severity: sink.severity
+                                },
+                                propagation: [],
+                                confidence: 95 // High confidence for direct flows
+                            });
+                        }
+                    }
+                }
+            }
+        }
+        // Deduplicate flows
+        return this.deduplicateFlows(flows);
+    }
+    /**
+     * Calculate confidence score for a taint flow
+     */
+    calculateConfidence(taintInfo, sink, sinkLine) {
+        let confidence = 70; // Base confidence
+        // Higher confidence for shorter flows
+        const distance = Math.abs(sinkLine - taintInfo.sourceLine);
+        if (distance < 5)
+            confidence += 15;
+        else if (distance < 20)
+            confidence += 10;
+        else if (distance > 100)
+            confidence -= 10;
+        // Higher confidence for fewer propagation steps
+        if (taintInfo.assignments.length === 0)
+            confidence += 10;
+        else if (taintInfo.assignments.length > 5)
+            confidence -= 15;
+        // Adjust based on sink severity
+        if (sink.severity === types_1.Severity.CRITICAL)
+            confidence += 5;
+        // Cap confidence
+        return Math.max(50, Math.min(100, confidence));
+    }
+    /**
+     * Remove duplicate flows
+     */
+    deduplicateFlows(flows) {
+        const seen = new Set();
+        return flows.filter(flow => {
+            const key = `${flow.source.type}:${flow.source.line}:${flow.sink.type}:${flow.sink.line}`;
+            if (seen.has(key))
+                return false;
+            seen.add(key);
+            return true;
+        });
+    }
+    /**
+     * Get human-readable description for a source type
+     */
+    static getSourceDescription(sourceType) {
+        const source = exports.TAINT_SOURCES.find(s => s.type === sourceType);
+        return source?.description || 'User-controlled input';
+    }
+    /**
+     * Get sink information
+     */
+    static getSinkInfo(sinkType) {
+        return exports.TAINT_SINKS.find(s => s.type === sinkType);
+    }
+}
+exports.TaintAnalyzer = TaintAnalyzer;
+exports.default = TaintAnalyzer;
+//# sourceMappingURL=taintAnalyzer.js.map

package/dist/analyzers/javascript/taintAnalyzer.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"taintAnalyzer.js","sourceRoot":"","sources":["../../../src/analyzers/javascript/taintAnalyzer.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;AAEH,uCAAsG;AAoEtG;;GAEG;AACU,QAAA,aAAa,GAAkB;IAC1C,+BAA+B;IAC/B;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,uDAAuD;QAChE,WAAW,EAAE,8BAA8B;QAC3C,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,CAAC;KAC7C;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,wDAAwD;QACjE,WAAW,EAAE,8BAA8B;QAC3C,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,CAAC;KAC7C;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,yDAAyD;QAClE,WAAW,EAAE,gCAAgC;QAC7C,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,CAAC;KAC7C;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,0DAA0D;QACnE,WAAW,EAAE,8BAA8B;QAC3C,YAAY,EAAE,CAAC,SAAS,EAAE,MAAM,EAAE,SAAS,CAAC;KAC7C;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,0DAA0D;QACnE,WAAW,EAAE,yBAAyB;QACtC,YAAY,EAAE,CAAC,SAAS,EAAE,QAAQ,CAAC;KACpC;IACD,eAAe;IACf;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,yDAAyD;QAClE,WAAW,EAAE,0CAA0C;QACvD,YAAY,EAAE,CAAC,SAAS,EAAE,QAAQ,EAAE,UAAU,CAAC;KAChD;IACD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,2CAA2C;QACpD,WAAW,EAAE,yBAAyB;QACtC,YAAY,EAAE,CAAC,SAAS,EAAE,UAAU,CAAC;KACtC;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,8CAA8C;QACvD,WAAW,EAAE,uBAAuB;QACpC,YAAY,EAAE,CAAC,SAAS,EAAE,KAAK,CAAC;KACjC;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,mEAAmE;QAC5E,WAAW,EAAE,mDAAmD;QAChE,YAAY,EAAE,CAAC,SAAS,EAAE,SAAS,CAAC;KACrC;IACD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,oCAAoC;QAC7C,WAAW,EAAE,iCAAiC;QAC9C,YAAY,EAAE,CAAC,aAAa,EAAE,kBAAkB,EAAE,SAAS,CAAC;KAC7D;IACD,wBAAwB;IACxB;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,gDAAgD;QACzD,WAAW,EAAE,mDAAmD;QAChE,YAAY,EAAE,CAAC,MAAM,EAAE,SAAS,EAAE,KAAK,CAAC;KACzC;IACD,YAAY;IACZ;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,iDAAiD;QAC1D,WAAW,EAAE,iBAAiB;QAC9B,YAAY,EAAE,CAAC,MAAM,EAAE,UAAU,CAAC;KACnC;IACD,eAAe;IACf;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,yDAAyD;QAClE,WAAW,EAAE,oBAAoB;QACjC,YAAY,EAAE,CAAC,QAAQ,EAAE,QAAQ,EAAE,MAAM,CAAC;KAC3C;CACF,CAAC;AAEF;;GAEG;AACU,QAAA,WAAW,GAAgB;IACtC,uBAAuB;IACvB;QACE,IAAI,EAAE,MAAM;QACZ,OAAO,EAAE,cAAc;QACvB,UAAU,EAAE,kBAAU,CAAC,iBAAiB;QACxC,QAAQ,EAAE,gBAAQ,CAAC,QAAQ;QAC3B,WAAW,EAAE,kCAAkC;QAC/C,WAAW,EAAE,sFAAsF;KACpG;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,wBAAwB;QACjC,UAAU,EAAE,kBAAU,CAAC,iBAAiB;QACxC,QAAQ,EAAE,gBAAQ,CAAC,QAAQ;QAC3B,WAAW,EAAE,gDAAgD;QAC7D,WAAW,EAAE,4EAA4E;KAC1F;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,4BAA4B;QACrC,UAAU,EAAE,kBAAU,CAAC,iBAAiB;QACxC,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,6CAA6C;QAC1D,WAAW,EAAE,8DAA8D;KAC5E;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,6BAA6B;QACtC,UAAU,EAAE,kBAAU,CAAC,iBAAiB;QACxC,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,8CAA8C;QAC3D,WAAW,EAAE,+DAA+D;KAC7E;IACD,yBAAyB;IACzB;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,kCAAkC;QAC3C,UAAU,EAAE,kBAAU,CAAC,iBAAiB;QACxC,QAAQ,EAAE,gBAAQ,CAAC,QAAQ;QAC3B,WAAW,EAAE,iCAAiC;QAC9C,WAAW,EAAE,0FAA0F;KACxG;IACD;QACE,IAAI,EAAE,2BAA2B;QACjC,OAAO,EAAE,+CAA+C;QACxD,UAAU,EAAE,kBAAU,CAAC,iBAAiB;QACxC,QAAQ,EAAE,gBAAQ,CAAC,QAAQ;QAC3B,WAAW,EAAE,qDAAqD;QAClE,WAAW,EAAE,2DAA2D;KACzE;IACD;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,gCAAgC;QACzC,UAAU,EAAE,kBAAU,CAAC,iBAAiB;QACxC,QAAQ,EAAE,gBAAQ,CAAC,QAAQ;QAC3B,WAAW,EAAE,+BAA+B;QAC5C,WAAW,EAAE,0EAA0E;KACxF;IACD,YAAY;IACZ;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,kBAAkB;QAC3B,UAAU,EAAE,kBAAU,CAAC,GAAG;QAC1B,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,kCAAkC;QAC/C,WAAW,EAAE,6EAA6E;KAC3F;IACD;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,kBAAkB;QAC3B,UAAU,EAAE,kBAAU,CAAC,GAAG;QAC1B,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,kCAAkC;QAC/C,WAAW,EAAE,4DAA4D;KAC1E;IACD;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,qCAAqC;QAC9C,UAAU,EAAE,kBAAU,CAAC,GAAG;QAC1B,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,8BAA8B;QAC3C,WAAW,EAAE,+EAA+E;KAC7F;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,4BAA4B;QACrC,UAAU,EAAE,kBAAU,CAAC,GAAG;QAC1B,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,kCAAkC;QAC/C,WAAW,EAAE,wDAAwD;KACtE;IACD;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,yBAAyB;QAClC,UAAU,EAAE,kBAAU,CAAC,GAAG;QAC1B,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,4BAA4B;QACzC,WAAW,EAAE,wEAAwE;KACtF;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,oDAAoD;QAC7D,UAAU,EAAE,kBAAU,CAAC,GAAG;QAC1B,QAAQ,EAAE,gBAAQ,CAAC,MAAM;QACzB,WAAW,EAAE,+CAA+C;QAC5D,WAAW,EAAE,wDAAwD;KACtE;IACD,aAAa;IACb;QACE,IAAI,EAAE,OAAO;QACb,OAAO,EAAE,eAAe;QACxB,UAAU,EAAE,kBAAU,CAAC,yBAAyB;QAChD,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,qDAAqD;QAClE,WAAW,EAAE,+EAA+E;KAC7F;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,2DAA2D;QACpE,UAAU,EAAE,kBAAU,CAAC,yBAAyB;QAChD,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,mDAAmD;QAChE,WAAW,EAAE,qDAAqD;KACnE;IACD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,yCAAyC;QAClD,UAAU,EAAE,kBAAU,CAAC,yBAAyB;QAChD,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,wCAAwC;QACrD,WAAW,EAAE,mEAAmE;KACjF;IACD,gBAAgB;IAChB;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,uDAAuD;QAChE,UAAU,EAAE,kBAAU,CAAC,aAAa;QACpC,QAAQ,EAAE,gBAAQ,CAAC,QAAQ;QAC3B,WAAW,EAAE,uCAAuC;QACpD,WAAW,EAAE,iFAAiF;KAC/F;IACD;QACE,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,sCAAsC;QAC/C,UAAU,EAAE,kBAAU,CAAC,aAAa;QACpC,QAAQ,EAAE,gBAAQ,CAAC,QAAQ;QAC3B,WAAW,EAAE,yBAAyB;QACtC,WAAW,EAAE,0DAA0D;KACxE;IACD,iBAAiB;IACjB;QACE,IAAI,EAAE,SAAS;QACf,OAAO,EAAE,6DAA6D;QACtE,UAAU,EAAE,kBAAU,CAAC,cAAc;QACrC,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,iDAAiD;QAC9D,WAAW,EAAE,2EAA2E;KACzF;IACD;QACE,IAAI,EAAE,UAAU;QAChB,OAAO,EAAE,2EAA2E;QACpF,UAAU,EAAE,kBAAU,CAAC,cAAc;QACrC,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,kDAAkD;QAC/D,WAAW,EAAE,wEAAwE;KACtF;IACD,kBAAkB;IAClB;QACE,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,qBAAqB;QAC9B,UAAU,EAAE,kBAAU,CAAC,wBAAwB;QAC/C,QAAQ,EAAE,gBAAQ,CAAC,MAAM;QACzB,WAAW,EAAE,gDAAgD;QAC7D,WAAW,EAAE,6EAA6E;KAC3F;IACD;QACE,IAAI,EAAE,aAAa;QACnB,OAAO,EAAE,qCAAqC;QAC9C,UAAU,EAAE,kBAAU,CAAC,wBAAwB;QAC/C,QAAQ,EAAE,gBAAQ,CAAC,IAAI;QACvB,WAAW,EAAE,wCAAwC;QACrD,WAAW,EAAE,qEAAqE;KACnF;IACD,mBAAmB;IACnB;QACE,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,mBAAmB;QAC5B,UAAU,EAAE,kBAAU,CAAC,yBAAyB;QAChD,QAAQ,EAAE,gBAAQ,CAAC,MAAM;QACzB,WAAW,EAAE,mDAAmD;QAChE,WAAW,EAAE,iEAAiE;KAC/E;IACD,WAAW;IACX;QACE,IAAI,EAAE,UAAU;QAChB,OAAO,EAAE,kBAAkB;QAC3B,UAAU,EAAE,kBAAU,CAAC,yBAAyB;QAChD,QAAQ,EAAE,gBAAQ,CAAC,MAAM;QACzB,WAAW,EAAE,yCAAyC;QACtD,WAAW,EAAE,2EAA2E;KACzF;CACF,CAAC;AAaF;;;GAGG;AACH,MAAa,aAAa;IAChB,gBAAgB,GAAiC,IAAI,GAAG,EAAE,CAAC;IAC3D,KAAK,GAAa,EAAE,CAAC;IACrB,QAAQ,GAAW,EAAE,CAAC;IAE9B;;OAEG;IACH,OAAO,CAAC,OAAe,EAAE,QAAgB;QACvC,IAAI,CAAC,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;QACjC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,gBAAgB,CAAC,KAAK,EAAE,CAAC;QAE9B,MAAM,KAAK,GAAgB,EAAE,CAAC;QAE9B,kCAAkC;QAClC,IAAI,CAAC,eAAe,EAAE,CAAC;QAEvB,mCAAmC;QACnC,IAAI,CAAC,gBAAgB,EAAE,CAAC;QAExB,uBAAuB;QACvB,KAAK,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,UAAU,EAAE,CAAC,CAAC;QAEjC,OAAO,KAAK,CAAC;IACf,CAAC;IAED;;OAEG;IACK,eAAe;QACrB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC3C,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAC3B,MAAM,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC;YAEtB,4BAA4B;YAC5B,KAAK,MAAM,MAAM,IAAI,qBAAa,EAAE,CAAC;gBACnC,wBAAwB;gBACxB,MAAM,CAAC,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;gBAE7B,4CAA4C;gBAC5C,MAAM,kBAAkB,GAAG;oBACzB,2BAA2B;oBAC3B,IAAI,MAAM,CAAC,uCAAuC,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,GAAG,CAAC;oBAC/E,4BAA4B;oBAC5B,IAAI,MAAM,CAAC,kBAAkB,MAAM,CAAC,OAAO,CAAC,MAAM,EAAE,EAAE,GAAG,CAAC;oBAC1D,wCAAwC;oBACxC,IAAI,MAAM,CAAC,8CAA8C,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,OAAO,CAAC,kBAAkB,EAAE,EAAE,CAAC,EAAE,EAAE,GAAG,CAAC;iBACvH,CAAC;gBAEF,KAAK,MAAM,OAAO,IAAI,kBAAkB,EAAE,CAAC;oBACzC,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;oBACtB,IAAI,KAAK,CAAC;oBACV,OAAO,CAAC,KAAK,GAAG,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;wBAC7C,MAAM,QAAQ,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC;wBAE7E,KAAK,MAAM,OAAO,IAAI,QAAQ,EAAE,CAAC;4BAC/B,IAAI,OAAO,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;gCACrC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,OAAO,EAAE;oCACjC,IAAI,EAAE,OAAO;oCACb,UAAU,EAAE,MAAM,CAAC,IAAI;oCACvB,UAAU,EAAE,OAAO;oCACnB,UAAU,EAAE,IAAI,CAAC,IAAI,EAAE;oCACvB,WAAW,EAAE,EAAE;iCAChB,CAAC,CAAC;4BACL,CAAC;wBACH,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACK,gBAAgB;QACtB,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC3C,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAC3B,MAAM,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC;YAEtB,qEAAqE;YACrE,KAAK,MAAM,CAAC,UAAU,EAAE,SAAS,CAAC,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;gBAC5D,gCAAgC;gBAChC,IAAI,OAAO,KAAK,SAAS,CAAC,UAAU;oBAAE,SAAS;gBAE/C,qDAAqD;gBACrD,MAAM,kBAAkB,GAAG,IAAI,MAAM,CACnC,mDAAmD,UAAU,WAAW,EACxE,GAAG,CACJ,CAAC;gBAEF,IAAI,KAAK,CAAC;gBACV,OAAO,CAAC,KAAK,GAAG,kBAAkB,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC,KAAK,IAAI,EAAE,CAAC;oBACxD,MAAM,MAAM,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;oBACxB,IAAI,MAAM,IAAI,MAAM,KAAK,UAAU,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC;wBAC5D,kCAAkC;wBAClC,IAAI,CAAC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,MAAM,CAAC,EAAE,CAAC;4BACvC,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,MAAM,EAAE;gCAChC,IAAI,EAAE,MAAM;gCACZ,UAAU,EAAE,SAAS,CAAC,UAAU;gCAChC,UAAU,EAAE,SAAS,CAAC,UAAU;gCAChC,UAAU,EAAE,SAAS,CAAC,UAAU;gCAChC,WAAW,EAAE,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC;6BACpD,CAAC,CAAC;wBACL,CAAC;6BAAM,CAAC;4BACN,iDAAiD;4BACjD,MAAM,QAAQ,GAAG,IAAI,CAAC,gBAAgB,CAAC,GAAG,CAAC,MAAM,CAAE,CAAC;4BACpD,QAAQ,CAAC,WAAW,CAAC,IAAI,CAAC,EAAE,IAAI,EAAE,OAAO,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,EAAE,CAAC,CAAC;wBAClE,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED;;OAEG;IACK,UAAU;QAChB,MAAM,KAAK,GAAgB,EAAE,CAAC;QAE9B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YAC3C,MAAM,IAAI,GAAG,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;YAC3B,MAAM,OAAO,GAAG,CAAC,GAAG,CAAC,CAAC;YAEtB,0BAA0B;YAC1B,KAAK,MAAM,IAAI,IAAI,mBAAW,EAAE,CAAC;gBAC/B,IAAI,CAAC,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;gBAE3B,IAAI,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;oBAC5B,qDAAqD;oBACrD,KAAK,MAAM,CAAC,OAAO,EAAE,SAAS,CAAC,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;wBACzD,MAAM,UAAU,GAAG,IAAI,MAAM,CAAC,MAAM,OAAO,KAAK,CAAC,CAAC;wBAClD,IAAI,UAAU,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;4BAC1B,oBAAoB;4BACpB,KAAK,CAAC,IAAI,CAAC;gCACT,MAAM,EAAE;oCACN,IAAI,EAAE,SAAS,CAAC,UAAU;oCAC1B,QAAQ,EAAE,SAAS,CAAC,IAAI;oCACxB,IAAI,EAAE,SAAS,CAAC,UAAU;oCAC1B,IAAI,EAAE,SAAS,CAAC,UAAU;iCAC3B;gCACD,IAAI,EAAE;oCACJ,IAAI,EAAE,IAAI,CAAC,IAAI;oCACf,IAAI,EAAE,OAAO;oCACb,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE;oCACjB,UAAU,EAAE,IAAI,CAAC,UAAU;oCAC3B,QAAQ,EAAE,IAAI,CAAC,QAAQ;iCACxB;gCACD,WAAW,EAAE,SAAS,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,EAAE,GAAG,CAAC,EAAE,QAAQ,EAAE,SAAS,CAAC,IAAI,EAAE,CAAC,CAAC;gCACjF,UAAU,EAAE,IAAI,CAAC,mBAAmB,CAAC,SAAS,EAAE,IAAI,EAAE,OAAO,CAAC;6BAC/D,CAAC,CAAC;wBACL,CAAC;oBACH,CAAC;oBAED,kEAAkE;oBAClE,KAAK,MAAM,MAAM,IAAI,qBAAa,EAAE,CAAC;wBACnC,MAAM,CAAC,OAAO,CAAC,SAAS,GAAG,CAAC,CAAC;wBAC7B,IAAI,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;4BAC9B,KAAK,CAAC,IAAI,CAAC;gCACT,MAAM,EAAE;oCACN,IAAI,EAAE,MAAM,CAAC,IAAI;oCACjB,QAAQ,EAAE,QAAQ;oCAClB,IAAI,EAAE,OAAO;oCACb,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE;iCAClB;gCACD,IAAI,EAAE;oCACJ,IAAI,EAAE,IAAI,CAAC,IAAI;oCACf,IAAI,EAAE,OAAO;oCACb,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE;oCACjB,UAAU,EAAE,IAAI,CAAC,UAAU;oCAC3B,QAAQ,EAAE,IAAI,CAAC,QAAQ;iCACxB;gCACD,WAAW,EAAE,EAAE;gCACf,UAAU,EAAE,EAAE,CAAC,mCAAmC;6BACnD,CAAC,CAAC;wBACL,CAAC;oBACH,CAAC;gBACH,CAAC;YACH,CAAC;QACH,CAAC;QAED,oBAAoB;QACpB,OAAO,IAAI,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC;IACtC,CAAC;IAED;;OAEG;IACK,mBAAmB,CACzB,SAA0B,EAC1B,IAAe,EACf,QAAgB;QAEhB,IAAI,UAAU,GAAG,EAAE,CAAC,CAAC,kBAAkB;QAEvC,sCAAsC;QACtC,MAAM,QAAQ,GAAG,IAAI,CAAC,GAAG,CAAC,QAAQ,GAAG,SAAS,CAAC,UAAU,CAAC,CAAC;QAC3D,IAAI,QAAQ,GAAG,CAAC;YAAE,UAAU,IAAI,EAAE,CAAC;aAC9B,IAAI,QAAQ,GAAG,EAAE;YAAE,UAAU,IAAI,EAAE,CAAC;aACpC,IAAI,QAAQ,GAAG,GAAG;YAAE,UAAU,IAAI,EAAE,CAAC;QAE1C,gDAAgD;QAChD,IAAI,SAAS,CAAC,WAAW,CAAC,MAAM,KAAK,CAAC;YAAE,UAAU,IAAI,EAAE,CAAC;aACpD,IAAI,SAAS,CAAC,WAAW,CAAC,MAAM,GAAG,CAAC;YAAE,UAAU,IAAI,EAAE,CAAC;QAE5D,gCAAgC;QAChC,IAAI,IAAI,CAAC,QAAQ,KAAK,gBAAQ,CAAC,QAAQ;YAAE,UAAU,IAAI,CAAC,CAAC;QAEzD,iBAAiB;QACjB,OAAO,IAAI,CAAC,GAAG,CAAC,EAAE,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,UAAU,CAAC,CAAC,CAAC;IACjD,CAAC;IAED;;OAEG;IACK,gBAAgB,CAAC,KAAkB;QACzC,MAAM,IAAI,GAAG,IAAI,GAAG,EAAU,CAAC;QAC/B,OAAO,KAAK,CAAC,MAAM,CAAC,IAAI,CAAC,EAAE;YACzB,MAAM,GAAG,GAAG,GAAG,IAAI,CAAC,MAAM,CAAC,IAAI,IAAI,IAAI,CAAC,MAAM,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,CAAC,IAAI,IAAI,IAAI,CAAC,IAAI,CAAC,IAAI,EAAE,CAAC;YAC1F,IAAI,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;gBAAE,OAAO,KAAK,CAAC;YAChC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;YACd,OAAO,IAAI,CAAC;QACd,CAAC,CAAC,CAAC;IACL,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,oBAAoB,CAAC,UAAkB;QAC5C,MAAM,MAAM,GAAG,qBAAa,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,UAAU,CAAC,CAAC;QAC9D,OAAO,MAAM,EAAE,WAAW,IAAI,uBAAuB,CAAC;IACxD,CAAC;IAED;;OAEG;IACH,MAAM,CAAC,WAAW,CAAC,QAAgB;QACjC,OAAO,mBAAW,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,IAAI,KAAK,QAAQ,CAAC,CAAC;IACpD,CAAC;CACF;AAjPD,sCAiPC;AAED,kBAAe,aAAa,CAAC"}

package/dist/analyzers/php/index.d.ts

@@ -0,0 +1,5 @@
+/**
+ * PHP Analyzer Exports
+ */
+export * from './phpAnalyzer';
+//# sourceMappingURL=index.d.ts.map

package/dist/analyzers/php/index.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/analyzers/php/index.ts"],"names":[],"mappings":"AAAA;;GAEG;AAEH,cAAc,eAAe,CAAC"}

package/dist/analyzers/php/index.js

@@ -0,0 +1,21 @@
+"use strict";
+/**
+ * PHP Analyzer Exports
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __exportStar = (this && this.__exportStar) || function(m, exports) {
+    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+__exportStar(require("./phpAnalyzer"), exports);
+//# sourceMappingURL=index.js.map

package/dist/analyzers/php/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/analyzers/php/index.ts"],"names":[],"mappings":";AAAA;;GAEG;;;;;;;;;;;;;;;;AAEH,gDAA8B"}

package/dist/analyzers/php/phpAnalyzer.d.ts

@@ -0,0 +1,56 @@
+/**
+ * PHP Analyzer
+ * Specialized analyzer for PHP code
+ */
+import { BaseAnalyzer } from '../base';
+import { ScannedFile, Finding, Rule, SupportedLanguage } from '../../types';
+/**
+ * PHP Analyzer Class
+ */
+export declare class PHPAnalyzer extends BaseAnalyzer {
+    name: string;
+    languages: SupportedLanguage[];
+    version: string;
+    /**
+     * Analyze PHP file
+     */
+    analyze(file: ScannedFile, rules: Rule[]): Promise<Finding[]>;
+    /**
+     * Custom PHP-specific analysis
+     */
+    private customAnalysis;
+    /**
+     * Check for dangerous functions
+     */
+    private checkDangerousFunctions;
+    /**
+     * Check for file inclusion vulnerabilities
+     */
+    private checkFileInclusion;
+    /**
+     * Check for SQL injection
+     */
+    private checkSqlInjection;
+    /**
+     * Check for XSS
+     */
+    private checkXss;
+    /**
+     * Check for insecure session configuration
+     */
+    private checkInsecureSession;
+    /**
+     * Check for security bypass attempts
+     */
+    private checkBypassAttempts;
+    /**
+     * Check for web shell patterns
+     */
+    private checkWebShell;
+    /**
+     * Create generic finding
+     */
+    private createFinding;
+}
+export default PHPAnalyzer;
+//# sourceMappingURL=phpAnalyzer.d.ts.map

package/dist/analyzers/php/phpAnalyzer.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"phpAnalyzer.d.ts","sourceRoot":"","sources":["../../../src/analyzers/php/phpAnalyzer.ts"],"names":[],"mappings":"AAAA;;;GAGG;AAEH,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AACvC,OAAO,EAAE,WAAW,EAAE,OAAO,EAAE,IAAI,EAAE,iBAAiB,EAAyC,MAAM,aAAa,CAAC;AAInH;;GAEG;AACH,qBAAa,WAAY,SAAQ,YAAY;IAC3C,IAAI,SAAkB;IACtB,SAAS,EAAE,iBAAiB,EAAE,CAAW;IACzC,OAAO,SAAW;IAElB;;OAEG;IACG,OAAO,CAAC,IAAI,EAAE,WAAW,EAAE,KAAK,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,OAAO,EAAE,CAAC;IAiBnE;;OAEG;YACW,cAAc;IAgG5B;;OAEG;IACH,OAAO,CAAC,uBAAuB;IAc/B;;OAEG;IACH,OAAO,CAAC,kBAAkB;IAW1B;;OAEG;IACH,OAAO,CAAC,iBAAiB;IAczB;;OAEG;IACH,OAAO,CAAC,QAAQ;IAUhB;;OAEG;IACH,OAAO,CAAC,oBAAoB;IAU5B;;OAEG;IACH,OAAO,CAAC,mBAAmB;IAW3B;;OAEG;IACH,OAAO,CAAC,aAAa;IAWrB;;OAEG;IACH,OAAO,CAAC,aAAa;CAmCtB;AAED,eAAe,WAAW,CAAC"}