ssh-mcp-pro 1.0.0

package/dist/rate-limiter.js

@@ -0,0 +1,141 @@
+import { logger } from "./logging.js";
+/**
+ * Rate limiter using the Sliding Window Log algorithm.
+ */
+export class RateLimiter {
+    logs = new Map();
+    keyWindowMs = new Map();
+    config;
+    cleanupTimer;
+    destroyed = false;
+    constructor(config = {}) {
+        this.config = {
+            maxRequests: config.maxRequests ?? 100,
+            windowMs: config.windowMs ?? 60_000,
+            blockOnLimit: config.blockOnLimit ?? true,
+        };
+        this.cleanupTimer = setInterval(() => this.pruneExpiredLogs(), this.config.windowMs);
+        this.cleanupTimer.unref?.();
+    }
+    /**
+     * Check if request is allowed under the rate limit
+     */
+    check(key, options = {}) {
+        if (this.destroyed) {
+            logger.warn("Rate limit check attempted after limiter destroy", { key });
+            return {
+                allowed: false,
+                remaining: 0,
+                resetIn: 0,
+                blocked: true,
+            };
+        }
+        const maxRequests = options.maxRequests ?? this.config.maxRequests;
+        const windowMs = options.windowMs ?? this.config.windowMs;
+        const now = Date.now();
+        const cutoff = now - windowMs;
+        this.keyWindowMs.set(key, windowMs);
+        let log = this.logs.get(key);
+        if (!log) {
+            log = [];
+            this.logs.set(key, log);
+        }
+        let index = 0;
+        while (index < log.length && (log[index] ?? 0) <= cutoff) {
+            index++;
+        }
+        if (index > 0) {
+            log.splice(0, index);
+        }
+        const count = log.length;
+        if (count >= maxRequests) {
+            const oldestInWindow = log[0] ?? now;
+            const resetIn = oldestInWindow + windowMs - now;
+            logger.warn("Rate limit exceeded (sliding window)", {
+                key,
+                count,
+                max: maxRequests,
+                resetIn,
+            });
+            return {
+                allowed: !this.config.blockOnLimit,
+                remaining: 0,
+                resetIn,
+                blocked: this.config.blockOnLimit,
+            };
+        }
+        log.push(now);
+        return {
+            allowed: true,
+            remaining: Math.max(0, maxRequests - log.length),
+            resetIn: windowMs,
+            blocked: false,
+        };
+    }
+    /**
+     * Reset rate limit for a specific key
+     */
+    reset(key) {
+        this.logs.delete(key);
+        this.keyWindowMs.delete(key);
+        logger.debug("Rate limit reset", { key });
+    }
+    /**
+     * Get current usage for a key
+     */
+    getUsage(key, options = {}) {
+        const maxRequests = options.maxRequests ?? this.config.maxRequests;
+        const windowMs = options.windowMs ?? this.keyWindowMs.get(key) ?? this.config.windowMs;
+        const now = Date.now();
+        const cutoff = now - windowMs;
+        const log = this.logs.get(key);
+        if (!log) {
+            return null;
+        }
+        const activeLog = log.filter((timestamp) => timestamp > cutoff);
+        if (activeLog.length === 0) {
+            return null;
+        }
+        const oldestInWindow = activeLog[0] ?? now;
+        return {
+            count: activeLog.length,
+            remaining: Math.max(0, maxRequests - activeLog.length),
+            resetIn: oldestInWindow + windowMs - now,
+        };
+    }
+    /**
+     * Cleanup expired logs
+     */
+    pruneExpiredLogs() {
+        const now = Date.now();
+        let cleaned = 0;
+        for (const [key, log] of this.logs) {
+            const windowMs = this.keyWindowMs.get(key) ?? this.config.windowMs;
+            const keyCutoff = now - windowMs;
+            const activeLog = log.filter((timestamp) => timestamp > keyCutoff);
+            if (activeLog.length === 0) {
+                this.logs.delete(key);
+                this.keyWindowMs.delete(key);
+                cleaned++;
+                continue;
+            }
+            this.logs.set(key, activeLog);
+        }
+        if (cleaned > 0) {
+            logger.debug("Rate limiter cleanup", { cleaned });
+        }
+    }
+    /**
+     * Destroy the rate limiter
+     */
+    destroy() {
+        if (this.cleanupTimer) {
+            clearInterval(this.cleanupTimer);
+            this.cleanupTimer = undefined;
+        }
+        this.logs.clear();
+        this.keyWindowMs.clear();
+        this.destroyed = true;
+    }
+}
+//# sourceMappingURL=rate-limiter.js.map

package/dist/rate-limiter.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rate-limiter.js","sourceRoot":"","sources":["../src/rate-limiter.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,MAAM,EAAE,MAAM,cAAc,CAAC;AA0BtC;;GAEG;AACH,MAAM,OAAO,WAAW;IACL,IAAI,GAAG,IAAI,GAAG,EAAoB,CAAC;IACnC,WAAW,GAAG,IAAI,GAAG,EAAkB,CAAC;IACxC,MAAM,CAAoB;IACnC,YAAY,CAA6B;IACzC,SAAS,GAAG,KAAK,CAAC;IAE1B,YAAY,SAAqC,EAAE;QACjD,IAAI,CAAC,MAAM,GAAG;YACZ,WAAW,EAAE,MAAM,CAAC,WAAW,IAAI,GAAG;YACtC,QAAQ,EAAE,MAAM,CAAC,QAAQ,IAAI,MAAM;YACnC,YAAY,EAAE,MAAM,CAAC,YAAY,IAAI,IAAI;SAC1C,CAAC;QAEF,IAAI,CAAC,YAAY,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,gBAAgB,EAAE,EAAE,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC;QACrF,IAAI,CAAC,YAAY,CAAC,KAAK,EAAE,EAAE,CAAC;IAC9B,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,GAAW,EAAE,UAAiC,EAAE;QACpD,IAAI,IAAI,CAAC,SAAS,EAAE,CAAC;YACnB,MAAM,CAAC,IAAI,CAAC,kDAAkD,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;YACzE,OAAO;gBACL,OAAO,EAAE,KAAK;gBACd,SAAS,EAAE,CAAC;gBACZ,OAAO,EAAE,CAAC;gBACV,OAAO,EAAE,IAAI;aACd,CAAC;QACJ,CAAC;QAED,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC;QACnE,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC;QAC1D,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,MAAM,GAAG,GAAG,GAAG,QAAQ,CAAC;QAC9B,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,EAAE,QAAQ,CAAC,CAAC;QAEpC,IAAI,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC7B,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,GAAG,GAAG,EAAE,CAAC;YACT,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,GAAG,CAAC,CAAC;QAC1B,CAAC;QAED,IAAI,KAAK,GAAG,CAAC,CAAC;QACd,OAAO,KAAK,GAAG,GAAG,CAAC,MAAM,IAAI,CAAC,GAAG,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,IAAI,MAAM,EAAE,CAAC;YACzD,KAAK,EAAE,CAAC;QACV,CAAC;QACD,IAAI,KAAK,GAAG,CAAC,EAAE,CAAC;YACd,GAAG,CAAC,MAAM,CAAC,CAAC,EAAE,KAAK,CAAC,CAAC;QACvB,CAAC;QAED,MAAM,KAAK,GAAG,GAAG,CAAC,MAAM,CAAC;QACzB,IAAI,KAAK,IAAI,WAAW,EAAE,CAAC;YACzB,MAAM,cAAc,GAAG,GAAG,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC;YACrC,MAAM,OAAO,GAAG,cAAc,GAAG,QAAQ,GAAG,GAAG,CAAC;YAEhD,MAAM,CAAC,IAAI,CAAC,sCAAsC,EAAE;gBAClD,GAAG;gBACH,KAAK;gBACL,GAAG,EAAE,WAAW;gBAChB,OAAO;aACR,CAAC,CAAC;YAEH,OAAO;gBACL,OAAO,EAAE,CAAC,IAAI,CAAC,MAAM,CAAC,YAAY;gBAClC,SAAS,EAAE,CAAC;gBACZ,OAAO;gBACP,OAAO,EAAE,IAAI,CAAC,MAAM,CAAC,YAAY;aAClC,CAAC;QACJ,CAAC;QAED,GAAG,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;QAEd,OAAO;YACL,OAAO,EAAE,IAAI;YACb,SAAS,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,GAAG,GAAG,CAAC,MAAM,CAAC;YAChD,OAAO,EAAE,QAAQ;YACjB,OAAO,EAAE,KAAK;SACf,CAAC;IACJ,CAAC;IAED;;OAEG;IACH,KAAK,CAAC,GAAW;QACf,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QACtB,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;QAC7B,MAAM,CAAC,KAAK,CAAC,kBAAkB,EAAE,EAAE,GAAG,EAAE,CAAC,CAAC;IAC5C,CAAC;IAED;;OAEG;IACH,QAAQ,CACN,GAAW,EACX,UAAiC,EAAE;QAEnC,MAAM,WAAW,GAAG,OAAO,CAAC,WAAW,IAAI,IAAI,CAAC,MAAM,CAAC,WAAW,CAAC;QACnE,MAAM,QAAQ,GAAG,OAAO,CAAC,QAAQ,IAAI,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC;QACvF,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,MAAM,MAAM,GAAG,GAAG,GAAG,QAAQ,CAAC;QAC9B,MAAM,GAAG,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC;QAC/B,IAAI,CAAC,GAAG,EAAE,CAAC;YACT,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,SAAS,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,GAAG,MAAM,CAAC,CAAC;QAChE,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC3B,OAAO,IAAI,CAAC;QACd,CAAC;QAED,MAAM,cAAc,GAAG,SAAS,CAAC,CAAC,CAAC,IAAI,GAAG,CAAC;QAC3C,OAAO;YACL,KAAK,EAAE,SAAS,CAAC,MAAM;YACvB,SAAS,EAAE,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,WAAW,GAAG,SAAS,CAAC,MAAM,CAAC;YACtD,OAAO,EAAE,cAAc,GAAG,QAAQ,GAAG,GAAG;SACzC,CAAC;IACJ,CAAC;IAED;;OAEG;IACK,gBAAgB;QACtB,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,IAAI,OAAO,GAAG,CAAC,CAAC;QAEhB,KAAK,MAAM,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC;YACnC,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC;YACnE,MAAM,SAAS,GAAG,GAAG,GAAG,QAAQ,CAAC;YACjC,MAAM,SAAS,GAAG,GAAG,CAAC,MAAM,CAAC,CAAC,SAAS,EAAE,EAAE,CAAC,SAAS,GAAG,SAAS,CAAC,CAAC;YACnE,IAAI,SAAS,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;gBAC3B,IAAI,CAAC,IAAI,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;gBACtB,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC;gBAC7B,OAAO,EAAE,CAAC;gBACV,SAAS;YACX,CAAC;YACD,IAAI,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,SAAS,CAAC,CAAC;QAChC,CAAC;QAED,IAAI,OAAO,GAAG,CAAC,EAAE,CAAC;YAChB,MAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE,EAAE,OAAO,EAAE,CAAC,CAAC;QACpD,CAAC;IACH,CAAC;IAED;;OAEG;IACH,OAAO;QACL,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,aAAa,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;YACjC,IAAI,CAAC,YAAY,GAAG,SAAS,CAAC;QAChC,CAAC;QACD,IAAI,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC;QAClB,IAAI,CAAC,WAAW,CAAC,KAAK,EAAE,CAAC;QACzB,IAAI,CAAC,SAAS,GAAG,IAAI,CAAC;IACxB,CAAC;CACF"}

package/dist/remote/agent-cli.d.ts

@@ -0,0 +1,2 @@
+export declare function runAgentCli(argv: string[]): Promise<void>;
+//# sourceMappingURL=agent-cli.d.ts.map

package/dist/remote/agent-cli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"agent-cli.d.ts","sourceRoot":"","sources":["../../src/remote/agent-cli.ts"],"names":[],"mappings":"AA2TA,wBAAsB,WAAW,CAAC,IAAI,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,IAAI,CAAC,CA0B/D"}

package/dist/remote/agent-cli.js

@@ -0,0 +1,270 @@
+import { existsSync, mkdirSync, readFileSync, writeFileSync } from "node:fs";
+import os from "node:os";
+import path from "node:path";
+import { AgentExecutor, defaultHostMetadata } from "./agent-executor.js";
+import { ensurePemKeyPair, nowIso, randomToken, signEnvelope, verifyEnvelope, } from "./crypto.js";
+import { parseControlPlaneEnvelope, parseAgentPolicy } from "./schemas.js";
+function output(line) {
+    process.stdout.write(`${line}\n`);
+}
+function configPath() {
+    return (process.env.SSHAUTOMATOR_AGENT_CONFIG ?? path.join(os.homedir(), ".sshautomator", "agent.json"));
+}
+function keyPath() {
+    return path.join(path.dirname(configPath()), "agent-ed25519.json");
+}
+function loadConfig() {
+    return JSON.parse(readFileSync(configPath(), "utf8"));
+}
+function requireConfig() {
+    if (!existsSync(configPath())) {
+        throw new Error([
+            "Agent is not enrolled.",
+            "Enroll this host first with:",
+            "  npx --yes --package ssh-mcp-pro@latest ssh-mcp-pro-agent enroll --server <url> --token <one-time-token> --alias <alias>",
+        ].join("\n"));
+    }
+    return loadConfig();
+}
+function saveConfig(config) {
+    const target = configPath();
+    mkdirSync(path.dirname(target), { recursive: true });
+    writeFileSync(target, JSON.stringify(config, null, 2), { mode: 0o600 });
+}
+function parseFlag(argv, name) {
+    const index = argv.indexOf(name);
+    return index >= 0 ? argv[index + 1] : undefined;
+}
+async function postJson(url, payload) {
+    const response = await fetch(url, {
+        method: "POST",
+        headers: { "Content-Type": "application/json" },
+        body: JSON.stringify(payload),
+    });
+    const data = await response.json();
+    if (!response.ok) {
+        throw new Error(`HTTP ${response.status}: ${JSON.stringify(data)}`);
+    }
+    if (!data || typeof data !== "object" || Array.isArray(data)) {
+        throw new Error("Expected JSON object response");
+    }
+    return data;
+}
+function requireString(value, name) {
+    if (typeof value !== "string" || value.length === 0) {
+        throw new Error(`${name} is required`);
+    }
+    return value;
+}
+function requirePolicy(value) {
+    try {
+        return parseAgentPolicy(value);
+    }
+    catch {
+        throw new Error("Agent policy is missing from enrollment response");
+    }
+}
+function runtimeWebSocket() {
+    const candidate = globalThis
+        .WebSocket;
+    if (!candidate) {
+        throw new Error("This Node.js runtime does not expose WebSocket. Use Node 22.22+ or Node 24.");
+    }
+    return candidate;
+}
+async function enroll(argv) {
+    const server = parseFlag(argv, "--server")?.replace(/\/+$/u, "");
+    const token = parseFlag(argv, "--token");
+    const alias = parseFlag(argv, "--alias") ?? os.hostname();
+    if (!server || !token) {
+        throw new Error("Usage: ssh-mcp-pro-agent enroll --server <url> --token <token> --alias <alias>");
+    }
+    const keyPair = ensurePemKeyPair(keyPath());
+    const response = await postJson(`${server}/api/agents/enroll`, {
+        token,
+        public_key: keyPair.publicKeyPem,
+        alias,
+        agent_version: process.env.npm_package_version ?? "unknown",
+        host: defaultHostMetadata(),
+    });
+    const config = {
+        server,
+        agentId: requireString(response.agent_id, "agent_id"),
+        alias: requireString(response.alias, "alias"),
+        publicKeyPem: keyPair.publicKeyPem,
+        privateKeyPem: keyPair.privateKeyPem,
+        controlPlanePublicKeyPem: requireString(response.control_plane_public_key, "control_plane_public_key"),
+        policy: requirePolicy(response.policy),
+        websocketUrl: requireString(response.websocket_url, "websocket_url"),
+        enrolledAt: nowIso(),
+    };
+    saveConfig(config);
+    output(`Agent enrolled: ${config.agentId} (${config.alias})`);
+    output(`Config: ${configPath()}`);
+}
+async function runAgent() {
+    const config = requireConfig();
+    const WebSocketCtor = runtimeWebSocket();
+    const executor = new AgentExecutor(config.policy, config.privateKeyPem);
+    const seenActions = new Map();
+    function rememberAction(actionId, deadline) {
+        const now = Date.now();
+        for (const [seenActionId, expiresAt] of seenActions.entries()) {
+            if (expiresAt <= now) {
+                seenActions.delete(seenActionId);
+            }
+        }
+        if (seenActions.has(actionId)) {
+            return false;
+        }
+        seenActions.set(actionId, new Date(deadline).getTime());
+        while (seenActions.size > 10_000) {
+            const oldest = seenActions.keys().next().value;
+            if (!oldest) {
+                break;
+            }
+            seenActions.delete(oldest);
+        }
+        return true;
+    }
+    await new Promise((resolve, reject) => {
+        const ws = new WebSocketCtor(config.websocketUrl);
+        ws.onopen = () => {
+            const hello = {
+                type: "agent.hello",
+                agent_id: config.agentId,
+                timestamp: nowIso(),
+                nonce: randomToken(16),
+                capabilities: Object.entries(config.policy.capabilities)
+                    .filter(([, enabled]) => enabled)
+                    .map(([capability]) => capability),
+                agent_version: process.env.npm_package_version ?? "unknown",
+                host: defaultHostMetadata(),
+                signature: "",
+            };
+            hello.signature = signEnvelope(hello, config.privateKeyPem);
+            ws.send(JSON.stringify(hello));
+            output(`Agent connected: ${config.agentId}`);
+        };
+        ws.onmessage = (event) => {
+            void (async () => {
+                const raw = typeof event.data === "string"
+                    ? event.data
+                    : Buffer.from(event.data).toString("utf8");
+                const payload = JSON.parse(raw);
+                if (!payload || typeof payload !== "object" || Array.isArray(payload)) {
+                    return;
+                }
+                let envelope;
+                try {
+                    envelope = parseControlPlaneEnvelope(payload);
+                }
+                catch {
+                    return;
+                }
+                if (envelope.agent_id !== config.agentId) {
+                    return;
+                }
+                if (!verifyEnvelope(envelope, config.controlPlanePublicKeyPem)) {
+                    return;
+                }
+                if (envelope.type === "policy.update") {
+                    const update = envelope;
+                    config.policy = update.policy;
+                    executor.updatePolicy(update.policy);
+                    saveConfig(config);
+                    return;
+                }
+                const action = envelope;
+                if (seenActions.has(action.action_id)) {
+                    return;
+                }
+                if (new Date(action.deadline).getTime() < Date.now()) {
+                    return;
+                }
+                if (action.policy_version !== config.policy.version &&
+                    action.policy_version !== config.policy.version + 1) {
+                    return;
+                }
+                rememberAction(action.action_id, action.deadline);
+                const result = await executor.execute(action);
+                ws.send(JSON.stringify(result));
+            })().catch((error) => {
+                process.stderr.write(`Agent action failed: ${error instanceof Error ? error.message : String(error)}\n`);
+            });
+        };
+        ws.onerror = (event) => reject(new Error(`WebSocket error: ${String(event)}`));
+        ws.onclose = () => resolve();
+    });
+}
+function status() {
+    if (!existsSync(configPath())) {
+        output("Agent is not enrolled.");
+        return;
+    }
+    const config = loadConfig();
+    output(`Agent ID: ${config.agentId}`);
+    output(`Alias: ${config.alias}`);
+    output(`Server: ${config.server}`);
+    output(`Profile: ${config.policy.profile}`);
+    output(`Config: ${configPath()}`);
+}
+function installService() {
+    const config = existsSync(configPath()) ? loadConfig() : undefined;
+    const command = `ssh-mcp-pro-agent run`;
+    if (process.platform === "win32") {
+        output("Windows service installation requires an elevated PowerShell session.");
+        output(`Use a service manager such as NSSM or PowerShell Scheduled Task to run: ${command}`);
+        output(`Agent config: ${configPath()}`);
+        return;
+    }
+    if (process.platform === "darwin") {
+        output("Create a launchd plist that runs:");
+        output(command);
+        output(`Agent config: ${configPath()}`);
+        return;
+    }
+    output("Create a systemd service with ExecStart:");
+    output(command);
+    output(`User=${process.env.USER ?? "sshautomator"}`);
+    output(`Agent=${config?.agentId ?? "not-enrolled"}`);
+}
+function uninstallService() {
+    if (process.platform === "win32") {
+        output("Remove the Windows service or scheduled task that runs ssh-mcp-pro-agent run.");
+        return;
+    }
+    if (process.platform === "darwin") {
+        output("Unload and remove the launchd plist that runs ssh-mcp-pro-agent run.");
+        return;
+    }
+    output("Disable and remove the systemd service that runs ssh-mcp-pro-agent run.");
+}
+export async function runAgentCli(argv) {
+    const command = argv[0] ?? "help";
+    switch (command) {
+        case "enroll":
+            await enroll(argv.slice(1));
+            break;
+        case "run":
+            await runAgent();
+            break;
+        case "status":
+            status();
+            break;
+        case "install-service":
+            installService();
+            break;
+        case "uninstall-service":
+            uninstallService();
+            break;
+        default:
+            output("Usage:");
+            output("  ssh-mcp-pro-agent enroll --server <url> --token <token> --alias <alias>");
+            output("  ssh-mcp-pro-agent run");
+            output("  ssh-mcp-pro-agent status");
+            output("  ssh-mcp-pro-agent install-service");
+            output("  ssh-mcp-pro-agent uninstall-service");
+    }
+}
+//# sourceMappingURL=agent-cli.js.map

package/dist/remote/agent-cli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"agent-cli.js","sourceRoot":"","sources":["../../src/remote/agent-cli.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,UAAU,EAAE,SAAS,EAAE,YAAY,EAAE,aAAa,EAAE,MAAM,SAAS,CAAC;AAC7E,OAAO,EAAE,MAAM,SAAS,CAAC;AACzB,OAAO,IAAI,MAAM,WAAW,CAAC;AAC7B,OAAO,EAAE,aAAa,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AACzE,OAAO,EACL,gBAAgB,EAChB,MAAM,EACN,WAAW,EACX,YAAY,EACZ,cAAc,GAEf,MAAM,aAAa,CAAC;AACrB,OAAO,EAAE,yBAAyB,EAAE,gBAAgB,EAAE,MAAM,cAAc,CAAC;AA0B3E,SAAS,MAAM,CAAC,IAAY;IAC1B,OAAO,CAAC,MAAM,CAAC,KAAK,CAAC,GAAG,IAAI,IAAI,CAAC,CAAC;AACpC,CAAC;AAED,SAAS,UAAU;IACjB,OAAO,CACL,OAAO,CAAC,GAAG,CAAC,yBAAyB,IAAI,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC,OAAO,EAAE,EAAE,eAAe,EAAE,YAAY,CAAC,CAChG,CAAC;AACJ,CAAC;AAED,SAAS,OAAO;IACd,OAAO,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,UAAU,EAAE,CAAC,EAAE,oBAAoB,CAAC,CAAC;AACrE,CAAC;AAED,SAAS,UAAU;IACjB,OAAO,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,UAAU,EAAE,EAAE,MAAM,CAAC,CAAoB,CAAC;AAC3E,CAAC;AAED,SAAS,aAAa;IACpB,IAAI,CAAC,UAAU,CAAC,UAAU,EAAE,CAAC,EAAE,CAAC;QAC9B,MAAM,IAAI,KAAK,CACb;YACE,wBAAwB;YACxB,8BAA8B;YAC9B,2HAA2H;SAC5H,CAAC,IAAI,CAAC,IAAI,CAAC,CACb,CAAC;IACJ,CAAC;IACD,OAAO,UAAU,EAAE,CAAC;AACtB,CAAC;AAED,SAAS,UAAU,CAAC,MAAuB;IACzC,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,SAAS,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,CAAC,EAAE,EAAE,SAAS,EAAE,IAAI,EAAE,CAAC,CAAC;IACrD,aAAa,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,EAAE,CAAC,CAAC,EAAE,EAAE,IAAI,EAAE,KAAK,EAAE,CAAC,CAAC;AAC1E,CAAC;AAED,SAAS,SAAS,CAAC,IAAc,EAAE,IAAY;IAC7C,MAAM,KAAK,GAAG,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC;IACjC,OAAO,KAAK,IAAI,CAAC,CAAC,CAAC,CAAC,IAAI,CAAC,KAAK,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,SAAS,CAAC;AAClD,CAAC;AAED,KAAK,UAAU,QAAQ,CACrB,GAAW,EACX,OAAgC;IAEhC,MAAM,QAAQ,GAAG,MAAM,KAAK,CAAC,GAAG,EAAE;QAChC,MAAM,EAAE,MAAM;QACd,OAAO,EAAE,EAAE,cAAc,EAAE,kBAAkB,EAAE;QAC/C,IAAI,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;KAC9B,CAAC,CAAC;IACH,MAAM,IAAI,GAAG,MAAM,QAAQ,CAAC,IAAI,EAAE,CAAC;IACnC,IAAI,CAAC,QAAQ,CAAC,EAAE,EAAE,CAAC;QACjB,MAAM,IAAI,KAAK,CAAC,QAAQ,QAAQ,CAAC,MAAM,KAAK,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IACtE,CAAC;IACD,IAAI,CAAC,IAAI,IAAI,OAAO,IAAI,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,CAAC;QAC7D,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;IACnD,CAAC;IACD,OAAO,IAA+B,CAAC;AACzC,CAAC;AAED,SAAS,aAAa,CAAC,KAAc,EAAE,IAAY;IACjD,IAAI,OAAO,KAAK,KAAK,QAAQ,IAAI,KAAK,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QACpD,MAAM,IAAI,KAAK,CAAC,GAAG,IAAI,cAAc,CAAC,CAAC;IACzC,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED,SAAS,aAAa,CAAC,KAAc;IACnC,IAAI,CAAC;QACH,OAAO,gBAAgB,CAAC,KAAK,CAAC,CAAC;IACjC,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;IACtE,CAAC;AACH,CAAC;AAED,SAAS,gBAAgB;IACvB,MAAM,SAAS,GAAI,UAAqE;SACrF,SAAS,CAAC;IACb,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,KAAK,CAAC,6EAA6E,CAAC,CAAC;IACjG,CAAC;IACD,OAAO,SAAS,CAAC;AACnB,CAAC;AAED,KAAK,UAAU,MAAM,CAAC,IAAc;IAClC,MAAM,MAAM,GAAG,SAAS,CAAC,IAAI,EAAE,UAAU,CAAC,EAAE,OAAO,CAAC,OAAO,EAAE,EAAE,CAAC,CAAC;IACjE,MAAM,KAAK,GAAG,SAAS,CAAC,IAAI,EAAE,SAAS,CAAC,CAAC;IACzC,MAAM,KAAK,GAAG,SAAS,CAAC,IAAI,EAAE,SAAS,CAAC,IAAI,EAAE,CAAC,QAAQ,EAAE,CAAC;IAC1D,IAAI,CAAC,MAAM,IAAI,CAAC,KAAK,EAAE,CAAC;QACtB,MAAM,IAAI,KAAK,CACb,gFAAgF,CACjF,CAAC;IACJ,CAAC;IACD,MAAM,OAAO,GAAe,gBAAgB,CAAC,OAAO,EAAE,CAAC,CAAC;IACxD,MAAM,QAAQ,GAAG,MAAM,QAAQ,CAAC,GAAG,MAAM,oBAAoB,EAAE;QAC7D,KAAK;QACL,UAAU,EAAE,OAAO,CAAC,YAAY;QAChC,KAAK;QACL,aAAa,EAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,SAAS;QAC3D,IAAI,EAAE,mBAAmB,EAA8B;KACxD,CAAC,CAAC;IACH,MAAM,MAAM,GAAoB;QAC9B,MAAM;QACN,OAAO,EAAE,aAAa,CAAC,QAAQ,CAAC,QAAQ,EAAE,UAAU,CAAC;QACrD,KAAK,EAAE,aAAa,CAAC,QAAQ,CAAC,KAAK,EAAE,OAAO,CAAC;QAC7C,YAAY,EAAE,OAAO,CAAC,YAAY;QAClC,aAAa,EAAE,OAAO,CAAC,aAAa;QACpC,wBAAwB,EAAE,aAAa,CACrC,QAAQ,CAAC,wBAAwB,EACjC,0BAA0B,CAC3B;QACD,MAAM,EAAE,aAAa,CAAC,QAAQ,CAAC,MAAM,CAAC;QACtC,YAAY,EAAE,aAAa,CAAC,QAAQ,CAAC,aAAa,EAAE,eAAe,CAAC;QACpE,UAAU,EAAE,MAAM,EAAE;KACrB,CAAC;IACF,UAAU,CAAC,MAAM,CAAC,CAAC;IACnB,MAAM,CAAC,mBAAmB,MAAM,CAAC,OAAO,KAAK,MAAM,CAAC,KAAK,GAAG,CAAC,CAAC;IAC9D,MAAM,CAAC,WAAW,UAAU,EAAE,EAAE,CAAC,CAAC;AACpC,CAAC;AAED,KAAK,UAAU,QAAQ;IACrB,MAAM,MAAM,GAAG,aAAa,EAAE,CAAC;IAC/B,MAAM,aAAa,GAAG,gBAAgB,EAAE,CAAC;IACzC,MAAM,QAAQ,GAAG,IAAI,aAAa,CAAC,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,aAAa,CAAC,CAAC;IACxE,MAAM,WAAW,GAAG,IAAI,GAAG,EAAkB,CAAC;IAE9C,SAAS,cAAc,CAAC,QAAgB,EAAE,QAAgB;QACxD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;QACvB,KAAK,MAAM,CAAC,YAAY,EAAE,SAAS,CAAC,IAAI,WAAW,CAAC,OAAO,EAAE,EAAE,CAAC;YAC9D,IAAI,SAAS,IAAI,GAAG,EAAE,CAAC;gBACrB,WAAW,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;YACnC,CAAC;QACH,CAAC;QACD,IAAI,WAAW,CAAC,GAAG,CAAC,QAAQ,CAAC,EAAE,CAAC;YAC9B,OAAO,KAAK,CAAC;QACf,CAAC;QACD,WAAW,CAAC,GAAG,CAAC,QAAQ,EAAE,IAAI,IAAI,CAAC,QAAQ,CAAC,CAAC,OAAO,EAAE,CAAC,CAAC;QACxD,OAAO,WAAW,CAAC,IAAI,GAAG,MAAM,EAAE,CAAC;YACjC,MAAM,MAAM,GAAG,WAAW,CAAC,IAAI,EAAE,CAAC,IAAI,EAAE,CAAC,KAAK,CAAC;YAC/C,IAAI,CAAC,MAAM,EAAE,CAAC;gBACZ,MAAM;YACR,CAAC;YACD,WAAW,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;QAC7B,CAAC;QACD,OAAO,IAAI,CAAC;IACd,CAAC;IAED,MAAM,IAAI,OAAO,CAAO,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;QAC1C,MAAM,EAAE,GAAG,IAAI,aAAa,CAAC,MAAM,CAAC,YAAY,CAAC,CAAC;QAClD,EAAE,CAAC,MAAM,GAAG,GAAG,EAAE;YACf,MAAM,KAAK,GAAuB;gBAChC,IAAI,EAAE,aAAa;gBACnB,QAAQ,EAAE,MAAM,CAAC,OAAO;gBACxB,SAAS,EAAE,MAAM,EAAE;gBACnB,KAAK,EAAE,WAAW,CAAC,EAAE,CAAC;gBACtB,YAAY,EAAE,MAAM,CAAC,OAAO,CAAC,MAAM,CAAC,MAAM,CAAC,YAAY,CAAC;qBACrD,MAAM,CAAC,CAAC,CAAC,EAAE,OAAO,CAAC,EAAE,EAAE,CAAC,OAAO,CAAC;qBAChC,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,EAAE,EAAE,CAAC,UAAwD,CAAC;gBAClF,aAAa,EAAE,OAAO,CAAC,GAAG,CAAC,mBAAmB,IAAI,SAAS;gBAC3D,IAAI,EAAE,mBAAmB,EAAE;gBAC3B,SAAS,EAAE,EAAE;aACd,CAAC;YACF,KAAK,CAAC,SAAS,GAAG,YAAY,CAC5B,KAA2C,EAC3C,MAAM,CAAC,aAAa,CACrB,CAAC;YACF,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC,CAAC;YAC/B,MAAM,CAAC,oBAAoB,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;QAC/C,CAAC,CAAC;QACF,EAAE,CAAC,SAAS,GAAG,CAAC,KAAK,EAAE,EAAE;YACvB,KAAK,CAAC,KAAK,IAAI,EAAE;gBACf,MAAM,GAAG,GACP,OAAO,KAAK,CAAC,IAAI,KAAK,QAAQ;oBAC5B,CAAC,CAAC,KAAK,CAAC,IAAI;oBACZ,CAAC,CAAC,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,IAAmB,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;gBAC9D,MAAM,OAAO,GAAG,IAAI,CAAC,KAAK,CAAC,GAAG,CAAY,CAAC;gBAC3C,IAAI,CAAC,OAAO,IAAI,OAAO,OAAO,KAAK,QAAQ,IAAI,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;oBACtE,OAAO;gBACT,CAAC;gBACD,IAAI,QAAsD,CAAC;gBAC3D,IAAI,CAAC;oBACH,QAAQ,GAAG,yBAAyB,CAAC,OAAO,CAAC,CAAC;gBAChD,CAAC;gBAAC,MAAM,CAAC;oBACP,OAAO;gBACT,CAAC;gBACD,IAAI,QAAQ,CAAC,QAAQ,KAAK,MAAM,CAAC,OAAO,EAAE,CAAC;oBACzC,OAAO;gBACT,CAAC;gBACD,IACE,CAAC,cAAc,CACb,QAA8C,EAC9C,MAAM,CAAC,wBAAwB,CAChC,EACD,CAAC;oBACD,OAAO;gBACT,CAAC;gBACD,IAAI,QAAQ,CAAC,IAAI,KAAK,eAAe,EAAE,CAAC;oBACtC,MAAM,MAAM,GAAG,QAAQ,CAAC;oBACxB,MAAM,CAAC,MAAM,GAAG,MAAM,CAAC,MAAM,CAAC;oBAC9B,QAAQ,CAAC,YAAY,CAAC,MAAM,CAAC,MAAM,CAAC,CAAC;oBACrC,UAAU,CAAC,MAAM,CAAC,CAAC;oBACnB,OAAO;gBACT,CAAC;gBACD,MAAM,MAAM,GAAG,QAAQ,CAAC;gBACxB,IAAI,WAAW,CAAC,GAAG,CAAC,MAAM,CAAC,SAAS,CAAC,EAAE,CAAC;oBACtC,OAAO;gBACT,CAAC;gBACD,IAAI,IAAI,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,OAAO,EAAE,GAAG,IAAI,CAAC,GAAG,EAAE,EAAE,CAAC;oBACrD,OAAO;gBACT,CAAC;gBACD,IACE,MAAM,CAAC,cAAc,KAAK,MAAM,CAAC,MAAM,CAAC,OAAO;oBAC/C,MAAM,CAAC,cAAc,KAAK,MAAM,CAAC,MAAM,CAAC,OAAO,GAAG,CAAC,EACnD,CAAC;oBACD,OAAO;gBACT,CAAC;gBACD,cAAc,CAAC,MAAM,CAAC,SAAS,EAAE,MAAM,CAAC,QAAQ,CAAC,CAAC;gBAClD,MAAM,MAAM,GAAG,MAAM,QAAQ,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;gBAC9C,EAAE,CAAC,IAAI,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,CAAC;YAClC,CAAC,CAAC,EAAE,CAAC,KAAK,CAAC,CAAC,KAAK,EAAE,EAAE;gBACnB,OAAO,CAAC,MAAM,CAAC,KAAK,CAClB,wBAAwB,KAAK,YAAY,KAAK,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,MAAM,CAAC,KAAK,CAAC,IAAI,CACnF,CAAC;YACJ,CAAC,CAAC,CAAC;QACL,CAAC,CAAC;QACF,EAAE,CAAC,OAAO,GAAG,CAAC,KAAK,EAAE,EAAE,CAAC,MAAM,CAAC,IAAI,KAAK,CAAC,oBAAoB,MAAM,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,CAAC;QAC/E,EAAE,CAAC,OAAO,GAAG,GAAG,EAAE,CAAC,OAAO,EAAE,CAAC;IAC/B,CAAC,CAAC,CAAC;AACL,CAAC;AAED,SAAS,MAAM;IACb,IAAI,CAAC,UAAU,CAAC,UAAU,EAAE,CAAC,EAAE,CAAC;QAC9B,MAAM,CAAC,wBAAwB,CAAC,CAAC;QACjC,OAAO;IACT,CAAC;IACD,MAAM,MAAM,GAAG,UAAU,EAAE,CAAC;IAC5B,MAAM,CAAC,aAAa,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;IACtC,MAAM,CAAC,UAAU,MAAM,CAAC,KAAK,EAAE,CAAC,CAAC;IACjC,MAAM,CAAC,WAAW,MAAM,CAAC,MAAM,EAAE,CAAC,CAAC;IACnC,MAAM,CAAC,YAAY,MAAM,CAAC,MAAM,CAAC,OAAO,EAAE,CAAC,CAAC;IAC5C,MAAM,CAAC,WAAW,UAAU,EAAE,EAAE,CAAC,CAAC;AACpC,CAAC;AAED,SAAS,cAAc;IACrB,MAAM,MAAM,GAAG,UAAU,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,CAAC,UAAU,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC;IACnE,MAAM,OAAO,GAAG,uBAAuB,CAAC;IACxC,IAAI,OAAO,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;QACjC,MAAM,CAAC,uEAAuE,CAAC,CAAC;QAChF,MAAM,CAAC,2EAA2E,OAAO,EAAE,CAAC,CAAC;QAC7F,MAAM,CAAC,iBAAiB,UAAU,EAAE,EAAE,CAAC,CAAC;QACxC,OAAO;IACT,CAAC;IACD,IAAI,OAAO,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAClC,MAAM,CAAC,mCAAmC,CAAC,CAAC;QAC5C,MAAM,CAAC,OAAO,CAAC,CAAC;QAChB,MAAM,CAAC,iBAAiB,UAAU,EAAE,EAAE,CAAC,CAAC;QACxC,OAAO;IACT,CAAC;IACD,MAAM,CAAC,0CAA0C,CAAC,CAAC;IACnD,MAAM,CAAC,OAAO,CAAC,CAAC;IAChB,MAAM,CAAC,QAAQ,OAAO,CAAC,GAAG,CAAC,IAAI,IAAI,cAAc,EAAE,CAAC,CAAC;IACrD,MAAM,CAAC,SAAS,MAAM,EAAE,OAAO,IAAI,cAAc,EAAE,CAAC,CAAC;AACvD,CAAC;AAED,SAAS,gBAAgB;IACvB,IAAI,OAAO,CAAC,QAAQ,KAAK,OAAO,EAAE,CAAC;QACjC,MAAM,CAAC,+EAA+E,CAAC,CAAC;QACxF,OAAO;IACT,CAAC;IACD,IAAI,OAAO,CAAC,QAAQ,KAAK,QAAQ,EAAE,CAAC;QAClC,MAAM,CAAC,sEAAsE,CAAC,CAAC;QAC/E,OAAO;IACT,CAAC;IACD,MAAM,CAAC,yEAAyE,CAAC,CAAC;AACpF,CAAC;AAED,MAAM,CAAC,KAAK,UAAU,WAAW,CAAC,IAAc;IAC9C,MAAM,OAAO,GAAG,IAAI,CAAC,CAAC,CAAC,IAAI,MAAM,CAAC;IAClC,QAAQ,OAAO,EAAE,CAAC;QAChB,KAAK,QAAQ;YACX,MAAM,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC,CAAC;YAC5B,MAAM;QACR,KAAK,KAAK;YACR,MAAM,QAAQ,EAAE,CAAC;YACjB,MAAM;QACR,KAAK,QAAQ;YACX,MAAM,EAAE,CAAC;YACT,MAAM;QACR,KAAK,iBAAiB;YACpB,cAAc,EAAE,CAAC;YACjB,MAAM;QACR,KAAK,mBAAmB;YACtB,gBAAgB,EAAE,CAAC;YACnB,MAAM;QACR;YACE,MAAM,CAAC,QAAQ,CAAC,CAAC;YACjB,MAAM,CAAC,2EAA2E,CAAC,CAAC;YACpF,MAAM,CAAC,yBAAyB,CAAC,CAAC;YAClC,MAAM,CAAC,4BAA4B,CAAC,CAAC;YACrC,MAAM,CAAC,qCAAqC,CAAC,CAAC;YAC9C,MAAM,CAAC,uCAAuC,CAAC,CAAC;IACpD,CAAC;AACH,CAAC"}

package/dist/remote/agent-executor.d.ts

@@ -0,0 +1,26 @@
+import type { ActionRequestEnvelope, ActionResultEnvelope, AgentPolicy } from "./types.js";
+export declare class AgentExecutor {
+    private policy;
+    private readonly privateKeyPem;
+    constructor(policy: AgentPolicy, privateKeyPem: string);
+    updatePolicy(policy: AgentPolicy): void;
+    execute(action: ActionRequestEnvelope): Promise<ActionResultEnvelope>;
+    private executeAllowed;
+    private getSystemStatus;
+    private tailLogs;
+    private restartService;
+    private dockerLogs;
+    private dockerRestart;
+    private fileRead;
+    private fileWrite;
+    private runShell;
+    private runShellAsRoot;
+    private signResult;
+}
+export declare function defaultHostMetadata(): {
+    hostname: string;
+    os: string;
+    arch: NodeJS.Architecture;
+    platform: NodeJS.Platform;
+};
+//# sourceMappingURL=agent-executor.d.ts.map

package/dist/remote/agent-executor.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"agent-executor.d.ts","sourceRoot":"","sources":["../../src/remote/agent-executor.ts"],"names":[],"mappings":"AAKA,OAAO,KAAK,EACV,qBAAqB,EACrB,oBAAoB,EACpB,WAAW,EAEZ,MAAM,YAAY,CAAC;AAiNpB,qBAAa,aAAa;IAEtB,OAAO,CAAC,MAAM;IACd,OAAO,CAAC,QAAQ,CAAC,aAAa;gBADtB,MAAM,EAAE,WAAW,EACV,aAAa,EAAE,MAAM;IAGxC,YAAY,CAAC,MAAM,EAAE,WAAW,GAAG,IAAI;IAIjC,OAAO,CAAC,MAAM,EAAE,qBAAqB,GAAG,OAAO,CAAC,oBAAoB,CAAC;YAwC7D,cAAc;IAsD5B,OAAO,CAAC,eAAe;IAYvB,OAAO,CAAC,QAAQ;IA2ChB,OAAO,CAAC,cAAc;IAiBtB,OAAO,CAAC,UAAU;IAiBlB,OAAO,CAAC,aAAa;YAaP,QAAQ;YAeR,SAAS;YAUT,QAAQ;IAgBtB,OAAO,CAAC,cAAc;IAqBtB,OAAO,CAAC,UAAU;CAMnB;AAED,wBAAgB,mBAAmB;;;;;EAOlC"}