npm - stringray-ai - Versions diffs - 1.0.38 → 1.0.39 - Mend

stringray-ai 1.0.38 → 1.0.39

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (113) hide show

package/dist/plugin/security/security-auditor.js ADDED Viewed

@@ -0,0 +1,583 @@
+/**
+ * StringRay Framework v1.0.0 - Security Audit Tool
+ *
+ * Comprehensive security auditing for the framework and its components.
+ * Identifies vulnerabilities, misconfigurations, and security weaknesses.
+ *
+ * @version 1.0.0
+ * @since 2026-01-07
+ */
+import { readFileSync, readdirSync, statSync } from "fs";
+import { join } from "path";
+export class SecurityAuditor {
+    dangerousPatterns = [
+        // Code injection
+        {
+            pattern: /eval\s*\(/g,
+            severity: "critical",
+            category: "code-injection",
+            cwe: "CWE-95",
+        },
+        {
+            pattern: /Function\s*\(/g,
+            severity: "critical",
+            category: "code-injection",
+            cwe: "CWE-95",
+        },
+        {
+            pattern: /new\s+Function\s*\(/g,
+            severity: "critical",
+            category: "code-injection",
+            cwe: "CWE-95",
+        },
+        // Command injection
+        {
+            pattern: /child_process\.exec\s*\(/g,
+            severity: "high",
+            category: "command-injection",
+            cwe: "CWE-78",
+        },
+        {
+            pattern: /child_process\.spawn\s*\(/g,
+            severity: "high",
+            category: "command-injection",
+            cwe: "CWE-78",
+        },
+        {
+            pattern: /execSync\s*\(/g,
+            severity: "high",
+            category: "command-injection",
+            cwe: "CWE-78",
+        },
+        // SQL injection (if applicable)
+        {
+            pattern: /SELECT.*\+/g,
+            severity: "high",
+            category: "sql-injection",
+            cwe: "CWE-89",
+        },
+        {
+            pattern: /INSERT.*\+/g,
+            severity: "high",
+            category: "sql-injection",
+            cwe: "CWE-89",
+        },
+        // Path traversal
+        {
+            pattern: /\.\.[\/\\]/g,
+            severity: "high",
+            category: "path-traversal",
+            cwe: "CWE-22",
+        },
+        {
+            pattern: /path\.join\s*\(\s*\.\./g,
+            severity: "high",
+            category: "path-traversal",
+            cwe: "CWE-22",
+        },
+        // Hardcoded secrets
+        {
+            pattern: /password\s*[:=]\s*['"][^'"]*['"]/gi,
+            severity: "high",
+            category: "hardcoded-secrets",
+            cwe: "CWE-798",
+        },
+        {
+            pattern: /api[_-]?key\s*[:=]\s*['"][^'"]*['"]/gi,
+            severity: "high",
+            category: "hardcoded-secrets",
+            cwe: "CWE-798",
+        },
+        {
+            pattern: /secret\s*[:=]\s*['"][^'"]*['"]/gi,
+            severity: "high",
+            category: "hardcoded-secrets",
+            cwe: "CWE-798",
+        },
+        // Insecure random
+        {
+            pattern: /Math\.random\s*\(\)/g,
+            severity: "medium",
+            category: "weak-cryptography",
+            cwe: "CWE-338",
+        },
+        // Console logging sensitive data
+        {
+            pattern: /console\.log\s*\([^)]*password[^)]*\)/gi,
+            severity: "medium",
+            category: "information-disclosure",
+            cwe: "CWE-532",
+        },
+        {
+            pattern: /console\.log\s*\([^)]*secret[^)]*\)/gi,
+            severity: "medium",
+            category: "information-disclosure",
+            cwe: "CWE-532",
+        },
+        // Missing input validation
+        {
+            pattern: /req\.body\./g,
+            severity: "medium",
+            category: "input-validation",
+            cwe: "CWE-20",
+        },
+        {
+            pattern: /req\.query\./g,
+            severity: "medium",
+            category: "input-validation",
+            cwe: "CWE-20",
+        },
+        // Insecure deserialization
+        {
+            pattern: /JSON\.parse\s*\([^)]*req\./g,
+            severity: "medium",
+            category: "deserialization",
+            cwe: "CWE-502",
+        },
+        // Race conditions
+        {
+            pattern: /setTimeout.*0/g,
+            severity: "low",
+            category: "race-conditions",
+            cwe: "CWE-362",
+        },
+        // Information disclosure in errors
+        {
+            pattern: /throw\s+new\s+Error\s*\([^)]*stack[^)]*\)/gi,
+            severity: "low",
+            category: "information-disclosure",
+            cwe: "CWE-209",
+        },
+    ];
+    dangerousImports = [
+        "child_process",
+        "fs",
+        "net",
+        "http",
+        "https",
+        "crypto",
+        "tls",
+        "cluster",
+        "worker_threads",
+        "vm",
+    ];
+    /**
+     * Run comprehensive security audit
+     */
+    async auditProject(projectPath = ".") {
+        const issues = [];
+        const files = this.getAllFiles(projectPath);
+        console.log(`🔍 Security Auditor: Scanning ${files.length} files...`);
+        for (const file of files) {
+            if (this.shouldAuditFile(file)) {
+                const fileIssues = await this.auditFile(file);
+                issues.push(...fileIssues);
+            }
+        }
+        // Additional checks
+        issues.push(...this.auditPackageJson(projectPath));
+        issues.push(...this.auditConfiguration(projectPath));
+        issues.push(...this.auditDependencies(projectPath));
+        const summary = this.generateSummary(issues);
+        const score = this.calculateSecurityScore(issues, files.length);
+        return {
+            totalFiles: files.length,
+            issues,
+            summary,
+            score,
+        };
+    }
+    getAllFiles(dirPath) {
+        const files = [];
+        const traverse = (currentPath) => {
+            const items = readdirSync(currentPath);
+            for (const item of items) {
+                const fullPath = join(currentPath, item);
+                const stat = statSync(fullPath);
+                if (stat.isDirectory() && !this.shouldSkipDirectory(item)) {
+                    traverse(fullPath);
+                }
+                else if (stat.isFile()) {
+                    files.push(fullPath);
+                }
+            }
+        };
+        traverse(dirPath);
+        return files;
+    }
+    shouldSkipDirectory(dirName) {
+        const skipDirs = [
+            "node_modules",
+            ".git",
+            "dist",
+            "build",
+            ".next",
+            ".nuxt",
+            "coverage",
+        ];
+        return skipDirs.includes(dirName);
+    }
+    shouldAuditFile(filePath) {
+        const auditExtensions = [".ts", ".tsx", ".js", ".jsx", ".json", ".md"];
+        const excludePatterns = [/__tests__/, /test\.ts$/, /spec\.ts$/];
+        // Check if file should be excluded from security audit
+        if (excludePatterns.some((pattern) => pattern.test(filePath))) {
+            return false;
+        }
+        return auditExtensions.some((ext) => filePath.endsWith(ext));
+    }
+    async auditFile(filePath) {
+        const issues = [];
+        try {
+            const content = readFileSync(filePath, "utf-8");
+            const lines = content.split("\n");
+            // Pattern-based security checks
+            for (let i = 0; i < lines.length; i++) {
+                const line = lines[i];
+                const lineNumber = i + 1;
+                for (const { pattern, severity, category, cwe } of this
+                    .dangerousPatterns) {
+                    const matches = line?.match(pattern);
+                    if (matches && line) {
+                        // Skip false positives in security validation and test code
+                        if (this.isFalsePositive(filePath, line, category)) {
+                            continue;
+                        }
+                        issues.push({
+                            severity,
+                            category,
+                            file: filePath,
+                            line: lineNumber,
+                            description: `Potentially dangerous pattern detected: ${pattern}`,
+                            recommendation: this.getRecommendationForCategory(category),
+                            cwe,
+                        });
+                    }
+                }
+            }
+            // Import security checks
+            if (filePath.endsWith(".ts") || filePath.endsWith(".js")) {
+                issues.push(...this.auditImports(content, filePath));
+            }
+            // File permission checks
+            issues.push(...this.auditFilePermissions(filePath));
+        }
+        catch (error) {
+            issues.push({
+                severity: "medium",
+                category: "file-access",
+                file: filePath,
+                description: `Failed to audit file: ${error}`,
+                recommendation: "Ensure file is readable and not corrupted",
+            });
+        }
+        return issues;
+    }
+    isFalsePositive(filePath, line, category) {
+        if (!line)
+            return false;
+        const safeLine = line;
+        // Security validation code that legitimately uses dangerous patterns for detection
+        if (filePath.includes("security-auditor.ts") &&
+            category === "code-injection") {
+            return true;
+        }
+        // Test code that uses eval in string literals for testing purposes
+        if (filePath.includes("__tests__") &&
+            category === "code-injection" &&
+            safeLine.includes("eval(")) {
+            return (safeLine.includes("'eval('") ||
+                safeLine.includes('"eval(') ||
+                safeLine.includes("`eval("));
+        }
+        // Security validation modules that check for dangerous patterns
+        if (filePath.includes("codex-parser.ts") && category === "code-injection") {
+            return (safeLine.includes("content.includes('eval(')") ||
+                safeLine.includes("content.includes('Function(')"));
+        }
+        return false;
+    }
+    auditImports(content, filePath) {
+        const issues = [];
+        for (const dangerousImport of this.dangerousImports) {
+            const importPatterns = [
+                new RegExp(`import.*from.*['"]${dangerousImport}['"]`, "g"),
+                new RegExp(`require\\s*\\(\\s*['"]${dangerousImport}['"]\\s*\\)`, "g"),
+                new RegExp(`import.*${dangerousImport}`, "g"),
+            ];
+            for (const pattern of importPatterns) {
+                if (pattern.test(content)) {
+                    issues.push({
+                        severity: "medium",
+                        category: "dangerous-imports",
+                        file: filePath,
+                        description: `Potentially dangerous import detected: ${dangerousImport}`,
+                        recommendation: "Review usage and ensure proper sandboxing/validation",
+                        cwe: "CWE-350",
+                    });
+                    break; // Only report once per import per file
+                }
+            }
+        }
+        return issues;
+    }
+    auditFilePermissions(filePath) {
+        const issues = [];
+        try {
+            const stat = statSync(filePath);
+            const mode = stat.mode;
+            // Check for world-writable files
+            if (mode & parseInt("2", 8)) {
+                issues.push({
+                    severity: "high",
+                    category: "file-permissions",
+                    file: filePath,
+                    description: "File is world-writable",
+                    recommendation: "Restrict file permissions to prevent unauthorized modification",
+                    cwe: "CWE-732",
+                });
+            }
+            // Check for executable scripts in sensitive directories
+            if (mode & parseInt("111", 8) && filePath.includes("config")) {
+                issues.push({
+                    severity: "medium",
+                    category: "file-permissions",
+                    file: filePath,
+                    description: "Executable file in configuration directory",
+                    recommendation: "Review if this file needs execute permissions",
+                    cwe: "CWE-732",
+                });
+            }
+        }
+        catch (error) {
+            // File permission check failed
+        }
+        return issues;
+    }
+    auditPackageJson(projectPath) {
+        const issues = [];
+        try {
+            const packagePath = join(projectPath, "package.json");
+            const packageJson = JSON.parse(readFileSync(packagePath, "utf-8"));
+            // Check for vulnerable dependencies
+            const allDeps = {
+                ...packageJson.dependencies,
+                ...packageJson.devDependencies,
+            };
+            for (const [dep, version] of Object.entries(allDeps)) {
+                if (typeof version === "string" &&
+                    (version.includes("*") || version.includes("latest"))) {
+                    issues.push({
+                        severity: "medium",
+                        category: "dependency-management",
+                        file: packagePath,
+                        description: `Insecure version constraint for ${dep}: ${version}`,
+                        recommendation: "Use specific version ranges to avoid vulnerable versions",
+                        cwe: "CWE-1104",
+                    });
+                }
+            }
+            // Check for missing security scripts
+            const scripts = packageJson.scripts || {};
+            if (!scripts["audit"] || !scripts["security-audit"]) {
+                issues.push({
+                    severity: "low",
+                    category: "security-practices",
+                    file: packagePath,
+                    description: "Missing security audit scripts",
+                    recommendation: "Add npm audit and security audit scripts to package.json",
+                });
+            }
+        }
+        catch (error) {
+            issues.push({
+                severity: "medium",
+                category: "configuration",
+                file: join(projectPath, "package.json"),
+                description: "Failed to audit package.json",
+                recommendation: "Ensure package.json is valid and accessible",
+            });
+        }
+        return issues;
+    }
+    auditConfiguration(projectPath) {
+        const issues = [];
+        const configFiles = [
+            ".opencode/oh-my-opencode.json",
+            "config.json",
+            ".env",
+        ];
+        for (const configFile of configFiles) {
+            const configPath = join(projectPath, configFile);
+            try {
+                const content = readFileSync(configPath, "utf-8");
+                // Check for hardcoded secrets
+                const secretPatterns = [
+                    /password\s*[:=]\s*['"][^'"]*['"]/gi,
+                    /api[_-]?key\s*[:=]\s*['"][^'"]*['"]/gi,
+                    /secret\s*[:=]\s*['"][^'"]*['"]/gi,
+                    /token\s*[:=]\s*['"][^'"]*['"]/gi,
+                ];
+                for (const pattern of secretPatterns) {
+                    if (pattern.test(content)) {
+                        issues.push({
+                            severity: "high",
+                            category: "hardcoded-secrets",
+                            file: configPath,
+                            description: "Potential hardcoded secrets detected in configuration",
+                            recommendation: "Move secrets to environment variables or secure vault",
+                            cwe: "CWE-798",
+                        });
+                        break;
+                    }
+                }
+            }
+            catch (error) {
+                // Config file doesn't exist or can't be read
+            }
+        }
+        return issues;
+    }
+    auditDependencies(projectPath) {
+        const issues = [];
+        try {
+            const packageLockPath = join(projectPath, "package-lock.json");
+            const yarnLockPath = join(projectPath, "yarn.lock");
+            if (!statSync(packageLockPath).isFile() &&
+                !statSync(yarnLockPath).isFile()) {
+                issues.push({
+                    severity: "medium",
+                    category: "dependency-management",
+                    file: join(projectPath, "package.json"),
+                    description: "Missing lockfile (package-lock.json or yarn.lock)",
+                    recommendation: "Use lockfiles to ensure reproducible and secure dependency versions",
+                    cwe: "CWE-1104",
+                });
+            }
+        }
+        catch (error) {
+            // Lockfile check failed
+        }
+        return issues;
+    }
+    getRecommendationForCategory(category) {
+        const recommendations = {
+            "code-injection": "Use static code analysis and avoid dynamic code execution",
+            "command-injection": "Validate and sanitize all user inputs, use parameterized commands",
+            "sql-injection": "Use parameterized queries or ORM with built-in protection",
+            "path-traversal": "Validate paths, use allowlists, resolve to absolute paths",
+            "hardcoded-secrets": "Use environment variables or secure credential management",
+            "weak-cryptography": "Use cryptographically secure random number generators",
+            "information-disclosure": "Avoid logging sensitive information, use proper log levels",
+            "input-validation": "Implement comprehensive input validation and sanitization",
+            deserialization: "Validate serialized data, use safe deserialization libraries",
+            "race-conditions": "Use proper synchronization primitives",
+            "dangerous-imports": "Review usage and implement proper access controls",
+            "file-permissions": "Restrict file permissions to minimum required access",
+        };
+        return (recommendations[category] ||
+            "Review and implement appropriate security measures");
+    }
+    generateSummary(issues) {
+        const summary = {
+            critical: 0,
+            high: 0,
+            medium: 0,
+            low: 0,
+            info: 0,
+        };
+        for (const issue of issues) {
+            summary[issue.severity]++;
+        }
+        return summary;
+    }
+    calculateSecurityScore(issues, totalFiles) {
+        let score = 100;
+        // Weight issues by severity
+        const weights = {
+            critical: 20,
+            high: 10,
+            medium: 5,
+            low: 2,
+            info: 1,
+        };
+        for (const issue of issues) {
+            score -= weights[issue.severity];
+        }
+        // Bonus for having many files (indicates thorough codebase)
+        if (totalFiles > 50) {
+            score += 5;
+        }
+        return Math.max(0, Math.min(100, score));
+    }
+    /**
+     * Generate security audit report
+     */
+    generateReport(result) {
+        let report = `# 🔒 StringRay Framework Security Audit Report
+**Audit Date:** ${new Date().toISOString()}
+**Framework Version:** v1.0.0
+**Files Scanned:** ${result.totalFiles}
+**Security Score:** ${result.score}/100
+## 📊 Summary
+- **Critical Issues:** ${result.summary.critical}
+- **High Severity:** ${result.summary.high}
+- **Medium Severity:** ${result.summary.medium}
+- **Low Severity:** ${result.summary.low}
+- **Informational:** ${result.summary.info}
+## 🚨 Issues Found
+`;
+        if (result.issues.length === 0) {
+            report += "✅ No security issues found!\n\n";
+        }
+        else {
+            // Group issues by severity
+            const groupedIssues = result.issues.reduce((groups, issue) => {
+                if (!groups[issue.severity])
+                    groups[issue.severity] = [];
+                groups[issue.severity].push(issue);
+                return groups;
+            }, {});
+            for (const [severity, issues] of Object.entries(groupedIssues)) {
+                report += `### ${severity.toUpperCase()} SEVERITY (${issues.length})\n\n`;
+                for (const issue of issues) {
+                    report += `**${issue.category.toUpperCase()}** in \`${issue.file}\`${issue.line ? `:${issue.line}` : ""}\n`;
+                    report += `${issue.description}\n`;
+                    report += `💡 ${issue.recommendation}\n`;
+                    if (issue.cwe) {
+                        report += `🔗 CWE: ${issue.cwe}\n`;
+                    }
+                    report += "\n";
+                }
+            }
+        }
+        report += `## 🛡️ Security Recommendations
+1. **Address all Critical and High severity issues immediately**
+2. **Implement automated security scanning in CI/CD pipeline**
+3. **Regular security audits and dependency updates**
+4. **Use security headers and secure coding practices**
+5. **Monitor for new vulnerabilities in dependencies**
+## 📈 Score Interpretation
+- **90-100:** Excellent security posture
+- **80-89:** Good security with minor issues
+- **70-79:** Adequate security, address high-priority issues
+- **60-69:** Security concerns present, immediate action required
+- **<60:** Critical security issues, immediate remediation needed
+---
+*Generated by StringRay Security Auditor v1.0.0*
+`;
+        return report;
+    }
+}
+// Export singleton instance
+export const securityAuditor = new SecurityAuditor();
+//# sourceMappingURL=security-auditor.js.map

package/dist/plugin/security/security-auditor.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"security-auditor.js","sourceRoot":"","sources":["../../../src/security/security-auditor.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,YAAY,EAAE,WAAW,EAAE,QAAQ,EAAE,MAAM,IAAI,CAAC;AACzD,OAAO,EAAE,IAAI,EAAW,MAAM,MAAM,CAAC;AA0BrC,MAAM,OAAO,eAAe;IACT,iBAAiB,GAAG;QACnC,iBAAiB;QACjB;YACE,OAAO,EAAE,YAAY;YACrB,QAAQ,EAAE,UAAmB;YAC7B,QAAQ,EAAE,gBAAgB;YAC1B,GAAG,EAAE,QAAQ;SACd;QACD;YACE,OAAO,EAAE,gBAAgB;YACzB,QAAQ,EAAE,UAAmB;YAC7B,QAAQ,EAAE,gBAAgB;YAC1B,GAAG,EAAE,QAAQ;SACd;QACD;YACE,OAAO,EAAE,sBAAsB;YAC/B,QAAQ,EAAE,UAAmB;YAC7B,QAAQ,EAAE,gBAAgB;YAC1B,GAAG,EAAE,QAAQ;SACd;QAED,oBAAoB;QACpB;YACE,OAAO,EAAE,2BAA2B;YACpC,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,mBAAmB;YAC7B,GAAG,EAAE,QAAQ;SACd;QACD;YACE,OAAO,EAAE,4BAA4B;YACrC,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,mBAAmB;YAC7B,GAAG,EAAE,QAAQ;SACd;QACD;YACE,OAAO,EAAE,gBAAgB;YACzB,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,mBAAmB;YAC7B,GAAG,EAAE,QAAQ;SACd;QAED,gCAAgC;QAChC;YACE,OAAO,EAAE,aAAa;YACtB,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,eAAe;YACzB,GAAG,EAAE,QAAQ;SACd;QACD;YACE,OAAO,EAAE,aAAa;YACtB,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,eAAe;YACzB,GAAG,EAAE,QAAQ;SACd;QAED,iBAAiB;QACjB;YACE,OAAO,EAAE,aAAa;YACtB,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,gBAAgB;YAC1B,GAAG,EAAE,QAAQ;SACd;QACD;YACE,OAAO,EAAE,yBAAyB;YAClC,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,gBAAgB;YAC1B,GAAG,EAAE,QAAQ;SACd;QAED,oBAAoB;QACpB;YACE,OAAO,EAAE,oCAAoC;YAC7C,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,mBAAmB;YAC7B,GAAG,EAAE,SAAS;SACf;QACD;YACE,OAAO,EAAE,uCAAuC;YAChD,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,mBAAmB;YAC7B,GAAG,EAAE,SAAS;SACf;QACD;YACE,OAAO,EAAE,kCAAkC;YAC3C,QAAQ,EAAE,MAAe;YACzB,QAAQ,EAAE,mBAAmB;YAC7B,GAAG,EAAE,SAAS;SACf;QAED,kBAAkB;QAClB;YACE,OAAO,EAAE,sBAAsB;YAC/B,QAAQ,EAAE,QAAiB;YAC3B,QAAQ,EAAE,mBAAmB;YAC7B,GAAG,EAAE,SAAS;SACf;QAED,iCAAiC;QACjC;YACE,OAAO,EAAE,yCAAyC;YAClD,QAAQ,EAAE,QAAiB;YAC3B,QAAQ,EAAE,wBAAwB;YAClC,GAAG,EAAE,SAAS;SACf;QACD;YACE,OAAO,EAAE,uCAAuC;YAChD,QAAQ,EAAE,QAAiB;YAC3B,QAAQ,EAAE,wBAAwB;YAClC,GAAG,EAAE,SAAS;SACf;QAED,2BAA2B;QAC3B;YACE,OAAO,EAAE,cAAc;YACvB,QAAQ,EAAE,QAAiB;YAC3B,QAAQ,EAAE,kBAAkB;YAC5B,GAAG,EAAE,QAAQ;SACd;QACD;YACE,OAAO,EAAE,eAAe;YACxB,QAAQ,EAAE,QAAiB;YAC3B,QAAQ,EAAE,kBAAkB;YAC5B,GAAG,EAAE,QAAQ;SACd;QAED,2BAA2B;QAC3B;YACE,OAAO,EAAE,6BAA6B;YACtC,QAAQ,EAAE,QAAiB;YAC3B,QAAQ,EAAE,iBAAiB;YAC3B,GAAG,EAAE,SAAS;SACf;QAED,kBAAkB;QAClB;YACE,OAAO,EAAE,gBAAgB;YACzB,QAAQ,EAAE,KAAc;YACxB,QAAQ,EAAE,iBAAiB;YAC3B,GAAG,EAAE,SAAS;SACf;QAED,mCAAmC;QACnC;YACE,OAAO,EAAE,6CAA6C;YACtD,QAAQ,EAAE,KAAc;YACxB,QAAQ,EAAE,wBAAwB;YAClC,GAAG,EAAE,SAAS;SACf;KACF,CAAC;IAEe,gBAAgB,GAAG;QAClC,eAAe;QACf,IAAI;QACJ,KAAK;QACL,MAAM;QACN,OAAO;QACP,QAAQ;QACR,KAAK;QACL,SAAS;QACT,gBAAgB;QAChB,IAAI;KACL,CAAC;IAEF;;OAEG;IACH,KAAK,CAAC,YAAY,CAAC,cAAsB,GAAG;QAC1C,MAAM,MAAM,GAAoB,EAAE,CAAC;QACnC,MAAM,KAAK,GAAG,IAAI,CAAC,WAAW,CAAC,WAAW,CAAC,CAAC;QAE5C,OAAO,CAAC,GAAG,CAAC,iCAAiC,KAAK,CAAC,MAAM,WAAW,CAAC,CAAC;QAEtE,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;YACzB,IAAI,IAAI,CAAC,eAAe,CAAC,IAAI,CAAC,EAAE,CAAC;gBAC/B,MAAM,UAAU,GAAG,MAAM,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,CAAC;gBAC9C,MAAM,CAAC,IAAI,CAAC,GAAG,UAAU,CAAC,CAAC;YAC7B,CAAC;QACH,CAAC;QAED,oBAAoB;QACpB,MAAM,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,gBAAgB,CAAC,WAAW,CAAC,CAAC,CAAC;QACnD,MAAM,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,kBAAkB,CAAC,WAAW,CAAC,CAAC,CAAC;QACrD,MAAM,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,iBAAiB,CAAC,WAAW,CAAC,CAAC,CAAC;QAEpD,MAAM,OAAO,GAAG,IAAI,CAAC,eAAe,CAAC,MAAM,CAAC,CAAC;QAC7C,MAAM,KAAK,GAAG,IAAI,CAAC,sBAAsB,CAAC,MAAM,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC;QAEhE,OAAO;YACL,UAAU,EAAE,KAAK,CAAC,MAAM;YACxB,MAAM;YACN,OAAO;YACP,KAAK;SACN,CAAC;IACJ,CAAC;IAEO,WAAW,CAAC,OAAe;QACjC,MAAM,KAAK,GAAa,EAAE,CAAC;QAE3B,MAAM,QAAQ,GAAG,CAAC,WAAmB,EAAE,EAAE;YACvC,MAAM,KAAK,GAAG,WAAW,CAAC,WAAW,CAAC,CAAC;YAEvC,KAAK,MAAM,IAAI,IAAI,KAAK,EAAE,CAAC;gBACzB,MAAM,QAAQ,GAAG,IAAI,CAAC,WAAW,EAAE,IAAI,CAAC,CAAC;gBACzC,MAAM,IAAI,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC;gBAEhC,IAAI,IAAI,CAAC,WAAW,EAAE,IAAI,CAAC,IAAI,CAAC,mBAAmB,CAAC,IAAI,CAAC,EAAE,CAAC;oBAC1D,QAAQ,CAAC,QAAQ,CAAC,CAAC;gBACrB,CAAC;qBAAM,IAAI,IAAI,CAAC,MAAM,EAAE,EAAE,CAAC;oBACzB,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;gBACvB,CAAC;YACH,CAAC;QACH,CAAC,CAAC;QAEF,QAAQ,CAAC,OAAO,CAAC,CAAC;QAClB,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,mBAAmB,CAAC,OAAe;QACzC,MAAM,QAAQ,GAAG;YACf,cAAc;YACd,MAAM;YACN,MAAM;YACN,OAAO;YACP,OAAO;YACP,OAAO;YACP,UAAU;SACX,CAAC;QACF,OAAO,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,CAAC;IACpC,CAAC;IAEO,eAAe,CAAC,QAAgB;QACtC,MAAM,eAAe,GAAG,CAAC,KAAK,EAAE,MAAM,EAAE,KAAK,EAAE,MAAM,EAAE,OAAO,EAAE,KAAK,CAAC,CAAC;QACvE,MAAM,eAAe,GAAG,CAAC,WAAW,EAAE,WAAW,EAAE,WAAW,CAAC,CAAC;QAEhE,uDAAuD;QACvD,IAAI,eAAe,CAAC,IAAI,CAAC,CAAC,OAAO,EAAE,EAAE,CAAC,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE,CAAC;YAC9D,OAAO,KAAK,CAAC;QACf,CAAC;QAED,OAAO,eAAe,CAAC,IAAI,CAAC,CAAC,GAAG,EAAE,EAAE,CAAC,QAAQ,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC;IAC/D,CAAC;IAEO,KAAK,CAAC,SAAS,CAAC,QAAgB;QACtC,MAAM,MAAM,GAAoB,EAAE,CAAC;QAEnC,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YAChD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;YAElC,gCAAgC;YAChC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;gBACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;gBACtB,MAAM,UAAU,GAAG,CAAC,GAAG,CAAC,CAAC;gBAEzB,KAAK,MAAM,EAAE,OAAO,EAAE,QAAQ,EAAE,QAAQ,EAAE,GAAG,EAAE,IAAI,IAAI;qBACpD,iBAAiB,EAAE,CAAC;oBACrB,MAAM,OAAO,GAAG,IAAI,EAAE,KAAK,CAAC,OAAO,CAAC,CAAC;oBACrC,IAAI,OAAO,IAAI,IAAI,EAAE,CAAC;wBACpB,4DAA4D;wBAC5D,IAAI,IAAI,CAAC,eAAe,CAAC,QAAQ,EAAE,IAAI,EAAE,QAAQ,CAAC,EAAE,CAAC;4BACnD,SAAS;wBACX,CAAC;wBAED,MAAM,CAAC,IAAI,CAAC;4BACV,QAAQ;4BACR,QAAQ;4BACR,IAAI,EAAE,QAAQ;4BACd,IAAI,EAAE,UAAU;4BAChB,WAAW,EAAE,2CAA2C,OAAO,EAAE;4BACjE,cAAc,EAAE,IAAI,CAAC,4BAA4B,CAAC,QAAQ,CAAC;4BAC3D,GAAG;yBACJ,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;YACH,CAAC;YAED,yBAAyB;YACzB,IAAI,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,KAAK,CAAC,EAAE,CAAC;gBACzD,MAAM,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,YAAY,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC,CAAC;YACvD,CAAC;YAED,yBAAyB;YACzB,MAAM,CAAC,IAAI,CAAC,GAAG,IAAI,CAAC,oBAAoB,CAAC,QAAQ,CAAC,CAAC,CAAC;QACtD,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,IAAI,CAAC;gBACV,QAAQ,EAAE,QAAQ;gBAClB,QAAQ,EAAE,aAAa;gBACvB,IAAI,EAAE,QAAQ;gBACd,WAAW,EAAE,yBAAyB,KAAK,EAAE;gBAC7C,cAAc,EAAE,2CAA2C;aAC5D,CAAC,CAAC;QACL,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,eAAe,CACrB,QAAgB,EAChB,IAAwB,EACxB,QAAgB;QAEhB,IAAI,CAAC,IAAI;YAAE,OAAO,KAAK,CAAC;QAExB,MAAM,QAAQ,GAAG,IAAc,CAAC;QAEhC,mFAAmF;QACnF,IACE,QAAQ,CAAC,QAAQ,CAAC,qBAAqB,CAAC;YACxC,QAAQ,KAAK,gBAAgB,EAC7B,CAAC;YACD,OAAO,IAAI,CAAC;QACd,CAAC;QAED,mEAAmE;QACnE,IACE,QAAQ,CAAC,QAAQ,CAAC,WAAW,CAAC;YAC9B,QAAQ,KAAK,gBAAgB;YAC7B,QAAQ,CAAC,QAAQ,CAAC,OAAO,CAAC,EAC1B,CAAC;YACD,OAAO,CACL,QAAQ,CAAC,QAAQ,CAAC,SAAS,CAAC;gBAC5B,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC;gBAC3B,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAC5B,CAAC;QACJ,CAAC;QAED,gEAAgE;QAChE,IAAI,QAAQ,CAAC,QAAQ,CAAC,iBAAiB,CAAC,IAAI,QAAQ,KAAK,gBAAgB,EAAE,CAAC;YAC1E,OAAO,CACL,QAAQ,CAAC,QAAQ,CAAC,2BAA2B,CAAC;gBAC9C,QAAQ,CAAC,QAAQ,CAAC,+BAA+B,CAAC,CACnD,CAAC;QACJ,CAAC;QAED,OAAO,KAAK,CAAC;IACf,CAAC;IAEO,YAAY,CAAC,OAAe,EAAE,QAAgB;QACpD,MAAM,MAAM,GAAoB,EAAE,CAAC;QAEnC,KAAK,MAAM,eAAe,IAAI,IAAI,CAAC,gBAAgB,EAAE,CAAC;YACpD,MAAM,cAAc,GAAG;gBACrB,IAAI,MAAM,CAAC,qBAAqB,eAAe,MAAM,EAAE,GAAG,CAAC;gBAC3D,IAAI,MAAM,CAAC,yBAAyB,eAAe,aAAa,EAAE,GAAG,CAAC;gBACtE,IAAI,MAAM,CAAC,WAAW,eAAe,EAAE,EAAE,GAAG,CAAC;aAC9C,CAAC;YAEF,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;gBACrC,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;oBAC1B,MAAM,CAAC,IAAI,CAAC;wBACV,QAAQ,EAAE,QAAQ;wBAClB,QAAQ,EAAE,mBAAmB;wBAC7B,IAAI,EAAE,QAAQ;wBACd,WAAW,EAAE,0CAA0C,eAAe,EAAE;wBACxE,cAAc,EACZ,sDAAsD;wBACxD,GAAG,EAAE,SAAS;qBACf,CAAC,CAAC;oBACH,MAAM,CAAC,uCAAuC;gBAChD,CAAC;YACH,CAAC;QACH,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,oBAAoB,CAAC,QAAgB;QAC3C,MAAM,MAAM,GAAoB,EAAE,CAAC;QAEnC,IAAI,CAAC;YACH,MAAM,IAAI,GAAG,QAAQ,CAAC,QAAQ,CAAC,CAAC;YAChC,MAAM,IAAI,GAAG,IAAI,CAAC,IAAI,CAAC;YAEvB,iCAAiC;YACjC,IAAI,IAAI,GAAG,QAAQ,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,CAAC;gBAC5B,MAAM,CAAC,IAAI,CAAC;oBACV,QAAQ,EAAE,MAAM;oBAChB,QAAQ,EAAE,kBAAkB;oBAC5B,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,wBAAwB;oBACrC,cAAc,EACZ,gEAAgE;oBAClE,GAAG,EAAE,SAAS;iBACf,CAAC,CAAC;YACL,CAAC;YAED,wDAAwD;YACxD,IAAI,IAAI,GAAG,QAAQ,CAAC,KAAK,EAAE,CAAC,CAAC,IAAI,QAAQ,CAAC,QAAQ,CAAC,QAAQ,CAAC,EAAE,CAAC;gBAC7D,MAAM,CAAC,IAAI,CAAC;oBACV,QAAQ,EAAE,QAAQ;oBAClB,QAAQ,EAAE,kBAAkB;oBAC5B,IAAI,EAAE,QAAQ;oBACd,WAAW,EAAE,4CAA4C;oBACzD,cAAc,EAAE,+CAA+C;oBAC/D,GAAG,EAAE,SAAS;iBACf,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,+BAA+B;QACjC,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,gBAAgB,CAAC,WAAmB;QAC1C,MAAM,MAAM,GAAoB,EAAE,CAAC;QAEnC,IAAI,CAAC;YACH,MAAM,WAAW,GAAG,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC,CAAC;YACtD,MAAM,WAAW,GAAG,IAAI,CAAC,KAAK,CAAC,YAAY,CAAC,WAAW,EAAE,OAAO,CAAC,CAAC,CAAC;YAEnE,oCAAoC;YACpC,MAAM,OAAO,GAAG;gBACd,GAAG,WAAW,CAAC,YAAY;gBAC3B,GAAG,WAAW,CAAC,eAAe;aAC/B,CAAC;YACF,KAAK,MAAM,CAAC,GAAG,EAAE,OAAO,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,CAAC,EAAE,CAAC;gBACrD,IACE,OAAO,OAAO,KAAK,QAAQ;oBAC3B,CAAC,OAAO,CAAC,QAAQ,CAAC,GAAG,CAAC,IAAI,OAAO,CAAC,QAAQ,CAAC,QAAQ,CAAC,CAAC,EACrD,CAAC;oBACD,MAAM,CAAC,IAAI,CAAC;wBACV,QAAQ,EAAE,QAAQ;wBAClB,QAAQ,EAAE,uBAAuB;wBACjC,IAAI,EAAE,WAAW;wBACjB,WAAW,EAAE,mCAAmC,GAAG,KAAK,OAAO,EAAE;wBACjE,cAAc,EACZ,0DAA0D;wBAC5D,GAAG,EAAE,UAAU;qBAChB,CAAC,CAAC;gBACL,CAAC;YACH,CAAC;YAED,qCAAqC;YACrC,MAAM,OAAO,GAAG,WAAW,CAAC,OAAO,IAAI,EAAE,CAAC;YAC1C,IAAI,CAAC,OAAO,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,gBAAgB,CAAC,EAAE,CAAC;gBACpD,MAAM,CAAC,IAAI,CAAC;oBACV,QAAQ,EAAE,KAAK;oBACf,QAAQ,EAAE,oBAAoB;oBAC9B,IAAI,EAAE,WAAW;oBACjB,WAAW,EAAE,gCAAgC;oBAC7C,cAAc,EACZ,0DAA0D;iBAC7D,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,MAAM,CAAC,IAAI,CAAC;gBACV,QAAQ,EAAE,QAAQ;gBAClB,QAAQ,EAAE,eAAe;gBACzB,IAAI,EAAE,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC;gBACvC,WAAW,EAAE,8BAA8B;gBAC3C,cAAc,EAAE,6CAA6C;aAC9D,CAAC,CAAC;QACL,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,kBAAkB,CAAC,WAAmB;QAC5C,MAAM,MAAM,GAAoB,EAAE,CAAC;QAEnC,MAAM,WAAW,GAAG;YAClB,+BAA+B;YAC/B,aAAa;YACb,MAAM;SACP,CAAC;QAEF,KAAK,MAAM,UAAU,IAAI,WAAW,EAAE,CAAC;YACrC,MAAM,UAAU,GAAG,IAAI,CAAC,WAAW,EAAE,UAAU,CAAC,CAAC;YACjD,IAAI,CAAC;gBACH,MAAM,OAAO,GAAG,YAAY,CAAC,UAAU,EAAE,OAAO,CAAC,CAAC;gBAElD,8BAA8B;gBAC9B,MAAM,cAAc,GAAG;oBACrB,oCAAoC;oBACpC,uCAAuC;oBACvC,kCAAkC;oBAClC,iCAAiC;iBAClC,CAAC;gBAEF,KAAK,MAAM,OAAO,IAAI,cAAc,EAAE,CAAC;oBACrC,IAAI,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,EAAE,CAAC;wBAC1B,MAAM,CAAC,IAAI,CAAC;4BACV,QAAQ,EAAE,MAAM;4BAChB,QAAQ,EAAE,mBAAmB;4BAC7B,IAAI,EAAE,UAAU;4BAChB,WAAW,EACT,uDAAuD;4BACzD,cAAc,EACZ,uDAAuD;4BACzD,GAAG,EAAE,SAAS;yBACf,CAAC,CAAC;wBACH,MAAM;oBACR,CAAC;gBACH,CAAC;YACH,CAAC;YAAC,OAAO,KAAK,EAAE,CAAC;gBACf,6CAA6C;YAC/C,CAAC;QACH,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,iBAAiB,CAAC,WAAmB;QAC3C,MAAM,MAAM,GAAoB,EAAE,CAAC;QAEnC,IAAI,CAAC;YACH,MAAM,eAAe,GAAG,IAAI,CAAC,WAAW,EAAE,mBAAmB,CAAC,CAAC;YAC/D,MAAM,YAAY,GAAG,IAAI,CAAC,WAAW,EAAE,WAAW,CAAC,CAAC;YAEpD,IACE,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAC,MAAM,EAAE;gBACnC,CAAC,QAAQ,CAAC,YAAY,CAAC,CAAC,MAAM,EAAE,EAChC,CAAC;gBACD,MAAM,CAAC,IAAI,CAAC;oBACV,QAAQ,EAAE,QAAQ;oBAClB,QAAQ,EAAE,uBAAuB;oBACjC,IAAI,EAAE,IAAI,CAAC,WAAW,EAAE,cAAc,CAAC;oBACvC,WAAW,EAAE,mDAAmD;oBAChE,cAAc,EACZ,qEAAqE;oBACvE,GAAG,EAAE,UAAU;iBAChB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAAC,OAAO,KAAK,EAAE,CAAC;YACf,wBAAwB;QAC1B,CAAC;QAED,OAAO,MAAM,CAAC;IAChB,CAAC;IAEO,4BAA4B,CAAC,QAAgB;QACnD,MAAM,eAAe,GAA2B;YAC9C,gBAAgB,EACd,2DAA2D;YAC7D,mBAAmB,EACjB,mEAAmE;YACrE,eAAe,EACb,2DAA2D;YAC7D,gBAAgB,EACd,2DAA2D;YAC7D,mBAAmB,EACjB,2DAA2D;YAC7D,mBAAmB,EACjB,uDAAuD;YACzD,wBAAwB,EACtB,4DAA4D;YAC9D,kBAAkB,EAChB,2DAA2D;YAC7D,eAAe,EACb,8DAA8D;YAChE,iBAAiB,EAAE,uCAAuC;YAC1D,mBAAmB,EAAE,mDAAmD;YACxE,kBAAkB,EAChB,sDAAsD;SACzD,CAAC;QAEF,OAAO,CACL,eAAe,CAAC,QAAQ,CAAC;YACzB,oDAAoD,CACrD,CAAC;IACJ,CAAC;IAEO,eAAe,CAAC,MAAuB;QAC7C,MAAM,OAAO,GAAG;YACd,QAAQ,EAAE,CAAC;YACX,IAAI,EAAE,CAAC;YACP,MAAM,EAAE,CAAC;YACT,GAAG,EAAE,CAAC;YACN,IAAI,EAAE,CAAC;SACR,CAAC;QAEF,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC,EAAE,CAAC;QAC5B,CAAC;QAED,OAAO,OAAO,CAAC;IACjB,CAAC;IAEO,sBAAsB,CAC5B,MAAuB,EACvB,UAAkB;QAElB,IAAI,KAAK,GAAG,GAAG,CAAC;QAEhB,4BAA4B;QAC5B,MAAM,OAAO,GAAG;YACd,QAAQ,EAAE,EAAE;YACZ,IAAI,EAAE,EAAE;YACR,MAAM,EAAE,CAAC;YACT,GAAG,EAAE,CAAC;YACN,IAAI,EAAE,CAAC;SACR,CAAC;QAEF,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;YAC3B,KAAK,IAAI,OAAO,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QACnC,CAAC;QAED,4DAA4D;QAC5D,IAAI,UAAU,GAAG,EAAE,EAAE,CAAC;YACpB,KAAK,IAAI,CAAC,CAAC;QACb,CAAC;QAED,OAAO,IAAI,CAAC,GAAG,CAAC,CAAC,EAAE,IAAI,CAAC,GAAG,CAAC,GAAG,EAAE,KAAK,CAAC,CAAC,CAAC;IAC3C,CAAC;IAED;;OAEG;IACH,cAAc,CAAC,MAA2B;QACxC,IAAI,MAAM,GAAG;;kBAEC,IAAI,IAAI,EAAE,CAAC,WAAW,EAAE;;qBAErB,MAAM,CAAC,UAAU;sBAChB,MAAM,CAAC,KAAK;;;;yBAIT,MAAM,CAAC,OAAO,CAAC,QAAQ;uBACzB,MAAM,CAAC,OAAO,CAAC,IAAI;yBACjB,MAAM,CAAC,OAAO,CAAC,MAAM;sBACxB,MAAM,CAAC,OAAO,CAAC,GAAG;uBACjB,MAAM,CAAC,OAAO,CAAC,IAAI;;;;CAIzC,CAAC;QAEE,IAAI,MAAM,CAAC,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;YAC/B,MAAM,IAAI,iCAAiC,CAAC;QAC9C,CAAC;aAAM,CAAC;YACN,2BAA2B;YAC3B,MAAM,aAAa,GAAG,MAAM,CAAC,MAAM,CAAC,MAAM,CACxC,CAAC,MAAM,EAAE,KAAK,EAAE,EAAE;gBAChB,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC;oBAAE,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAC,GAAG,EAAE,CAAC;gBACzD,MAAM,CAAC,KAAK,CAAC,QAAQ,CAAE,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;gBACpC,OAAO,MAAM,CAAC;YAChB,CAAC,EACD,EAAqC,CACtC,CAAC;YAEF,KAAK,MAAM,CAAC,QAAQ,EAAE,MAAM,CAAC,IAAI,MAAM,CAAC,OAAO,CAAC,aAAa,CAAC,EAAE,CAAC;gBAC/D,MAAM,IAAI,OAAO,QAAQ,CAAC,WAAW,EAAE,cAAc,MAAM,CAAC,MAAM,OAAO,CAAC;gBAC1E,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;oBAC3B,MAAM,IAAI,KAAK,KAAK,CAAC,QAAQ,CAAC,WAAW,EAAE,WAAW,KAAK,CAAC,IAAI,KAAK,KAAK,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,KAAK,CAAC,IAAI,EAAE,CAAC,CAAC,CAAC,EAAE,IAAI,CAAC;oBAC5G,MAAM,IAAI,GAAG,KAAK,CAAC,WAAW,IAAI,CAAC;oBACnC,MAAM,IAAI,MAAM,KAAK,CAAC,cAAc,IAAI,CAAC;oBACzC,IAAI,KAAK,CAAC,GAAG,EAAE,CAAC;wBACd,MAAM,IAAI,WAAW,KAAK,CAAC,GAAG,IAAI,CAAC;oBACrC,CAAC;oBACD,MAAM,IAAI,IAAI,CAAC;gBACjB,CAAC;YACH,CAAC;QACH,CAAC;QAED,MAAM,IAAI;;;;;;;;;;;;;;;;;;CAkBb,CAAC;QAEE,OAAO,MAAM,CAAC;IAChB,CAAC;CACF;AAED,4BAA4B;AAC5B,MAAM,CAAC,MAAM,eAAe,GAAG,IAAI,eAAe,EAAE,CAAC"}

package/dist/plugin/security/security-hardener.d.ts ADDED Viewed

@@ -0,0 +1,63 @@
+/**
+ * StringRay Framework v1.0.0 - Security Hardening Module
+ *
+ * Implements additional security measures and hardening for the framework.
+ * Addresses vulnerabilities identified during security audit.
+ *
+ * @version 1.0.0
+ * @since 2026-01-07
+ */
+import { SecurityIssue } from "./security-auditor";
+export interface SecurityHardeningConfig {
+    enableInputValidation: boolean;
+    enableRateLimiting: boolean;
+    enableAuditLogging: boolean;
+    enableSecureHeaders: boolean;
+    maxRequestSizeBytes: number;
+    rateLimitWindowMs: number;
+    rateLimitMaxRequests: number;
+}
+export declare class SecurityHardener {
+    private config;
+    constructor(config?: Partial<SecurityHardeningConfig>);
+    /**
+     * Apply security hardening based on audit results
+     */
+    hardenSecurity(auditResult: {
+        issues: SecurityIssue[];
+    }): Promise<{
+        appliedFixes: string[];
+        remainingIssues: SecurityIssue[];
+    }>;
+    private applyFixForIssue;
+    private fixHardcodedSecrets;
+    private fixFilePermissions;
+    private fixDependencyManagement;
+    private addInputValidation;
+    /**
+     * Add security headers to HTTP responses
+     */
+    addSecurityHeaders(headers: Record<string, string>): Record<string, string>;
+    /**
+     * Validate input data
+     */
+    validateInput(input: any, schema: any): {
+        valid: boolean;
+        errors: string[];
+    };
+    /**
+     * Check rate limiting
+     */
+    checkRateLimit(identifier: string, requests: Map<string, number[]>): boolean;
+    /**
+     * Log security events
+     */
+    logSecurityEvent(event: {
+        type: string;
+        severity: "low" | "medium" | "high" | "critical";
+        message: string;
+        metadata?: Record<string, any>;
+    }): void;
+}
+export declare const securityHardener: SecurityHardener;
+//# sourceMappingURL=security-hardener.d.ts.map

package/dist/plugin/security/security-hardener.d.ts.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"security-hardener.d.ts","sourceRoot":"","sources":["../../../src/security/security-hardener.ts"],"names":[],"mappings":"AAAA;;;;;;;;GAQG;AAEH,OAAO,EAAE,aAAa,EAAE,MAAM,oBAAoB,CAAC;AAGnD,MAAM,WAAW,uBAAuB;IACtC,qBAAqB,EAAE,OAAO,CAAC;IAC/B,kBAAkB,EAAE,OAAO,CAAC;IAC5B,kBAAkB,EAAE,OAAO,CAAC;IAC5B,mBAAmB,EAAE,OAAO,CAAC;IAC7B,mBAAmB,EAAE,MAAM,CAAC;IAC5B,iBAAiB,EAAE,MAAM,CAAC;IAC1B,oBAAoB,EAAE,MAAM,CAAC;CAC9B;AAED,qBAAa,gBAAgB;IAC3B,OAAO,CAAC,MAAM,CAA0B;gBAE5B,MAAM,GAAE,OAAO,CAAC,uBAAuB,CAAM;IAazD;;OAEG;IACG,cAAc,CAAC,WAAW,EAAE;QAAE,MAAM,EAAE,aAAa,EAAE,CAAA;KAAE,GAAG,OAAO,CAAC;QACtE,YAAY,EAAE,MAAM,EAAE,CAAC;QACvB,eAAe,EAAE,aAAa,EAAE,CAAC;KAClC,CAAC;YAoBY,gBAAgB;YAqBhB,mBAAmB;YAcnB,kBAAkB;YAmBlB,uBAAuB;YAkBvB,kBAAkB;IAkBhC;;OAEG;IACH,kBAAkB,CAAC,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,GAAG,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC;IAc3E;;OAEG;IACH,aAAa,CAAC,KAAK,EAAE,GAAG,EAAE,MAAM,EAAE,GAAG,GAAG;QAAE,KAAK,EAAE,OAAO,CAAC;QAAC,MAAM,EAAE,MAAM,EAAE,CAAA;KAAE;IAkC5E;;OAEG;IACH,cAAc,CAAC,UAAU,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,CAAC,MAAM,EAAE,MAAM,EAAE,CAAC,GAAG,OAAO;IAmB5E;;OAEG;IACH,gBAAgB,CAAC,KAAK,EAAE;QACtB,IAAI,EAAE,MAAM,CAAC;QACb,QAAQ,EAAE,KAAK,GAAG,QAAQ,GAAG,MAAM,GAAG,UAAU,CAAC;QACjD,OAAO,EAAE,MAAM,CAAC;QAChB,QAAQ,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAC;KAChC,GAAG,IAAI;CAeT;AAGD,eAAO,MAAM,gBAAgB,kBAAyB,CAAC"}