supply-chain-guard 2.0.0 → 3.1.0

package/dist/github-actions-scanner.js

@@ -0,0 +1,420 @@
+"use strict";
+/**
+ * GitHub Actions Workflow Scanner
+ *
+ * Scans .github/workflows/*.yml files for CI/CD pipeline attack indicators
+ * including remote code execution, secrets exfiltration, compromised action
+ * references, unpinned versions, and encoded payloads.
+ */
+var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    var desc = Object.getOwnPropertyDescriptor(m, k);
+    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
+      desc = { enumerable: true, get: function() { return m[k]; } };
+    }
+    Object.defineProperty(o, k2, desc);
+}) : (function(o, m, k, k2) {
+    if (k2 === undefined) k2 = k;
+    o[k2] = m[k];
+}));
+var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
+    Object.defineProperty(o, "default", { enumerable: true, value: v });
+}) : function(o, v) {
+    o["default"] = v;
+});
+var __importStar = (this && this.__importStar) || (function () {
+    var ownKeys = function(o) {
+        ownKeys = Object.getOwnPropertyNames || function (o) {
+            var ar = [];
+            for (var k in o) if (Object.prototype.hasOwnProperty.call(o, k)) ar[ar.length] = k;
+            return ar;
+        };
+        return ownKeys(o);
+    };
+    return function (mod) {
+        if (mod && mod.__esModule) return mod;
+        var result = {};
+        if (mod != null) for (var k = ownKeys(mod), i = 0; i < k.length; i++) if (k[i] !== "default") __createBinding(result, mod, k[i]);
+        __setModuleDefault(result, mod);
+        return result;
+    };
+})();
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.scanGitHubActionsWorkflows = scanGitHubActionsWorkflows;
+const fs = __importStar(require("node:fs"));
+const path = __importStar(require("node:path"));
+/**
+ * Patterns for detecting dangerous content in GitHub Actions workflow files.
+ */
+const WORKFLOW_PATTERNS = [
+    // Remote content piped to shell execution
+    {
+        pattern: "curl\\s+[^|]*\\|\\s*(?:bash|sh|zsh|node|python|perl|ruby)",
+        description: "Remote content fetched with curl and piped to shell execution",
+        severity: "high",
+        rule: "GHA_CURL_PIPE_EXEC",
+    },
+    {
+        pattern: "wget\\s+[^|]*\\|\\s*(?:bash|sh|zsh|node|python|perl|ruby)",
+        description: "Remote content fetched with wget and piped to shell execution",
+        severity: "high",
+        rule: "GHA_WGET_PIPE_EXEC",
+    },
+    {
+        pattern: "curl\\s+.*-o\\s+\\S+.*&&.*(?:bash|sh|chmod\\s+\\+x)",
+        description: "Remote script downloaded and executed in workflow",
+        severity: "high",
+        rule: "GHA_CURL_DOWNLOAD_EXEC",
+    },
+    {
+        pattern: "wget\\s+.*-O\\s+\\S+.*&&.*(?:bash|sh|chmod\\s+\\+x)",
+        description: "Remote script downloaded with wget and executed in workflow",
+        severity: "high",
+        rule: "GHA_WGET_DOWNLOAD_EXEC",
+    },
+    // Secrets exfiltration via network
+    {
+        pattern: "\\$\\{\\{\\s*secrets\\.[^}]+\\}\\}.*curl",
+        description: "Secret value passed to curl command (potential exfiltration)",
+        severity: "high",
+        rule: "GHA_SECRET_CURL",
+    },
+    {
+        pattern: "curl.*\\$\\{\\{\\s*secrets\\.[^}]+\\}\\}",
+        description: "Secret value sent via curl request (potential exfiltration)",
+        severity: "high",
+        rule: "GHA_SECRET_CURL",
+    },
+    {
+        pattern: "\\$\\{\\{\\s*secrets\\.[^}]+\\}\\}.*wget",
+        description: "Secret value passed to wget command (potential exfiltration)",
+        severity: "high",
+        rule: "GHA_SECRET_WGET",
+    },
+    {
+        pattern: "wget.*\\$\\{\\{\\s*secrets\\.[^}]+\\}\\}",
+        description: "Secret value sent via wget request (potential exfiltration)",
+        severity: "high",
+        rule: "GHA_SECRET_WGET",
+    },
+    // Base64 encoded payloads
+    {
+        pattern: "echo\\s+[A-Za-z0-9+/=]{20,}\\s*\\|\\s*base64\\s+(?:-d|--decode)",
+        description: "Base64 encoded payload decoded and potentially executed in workflow",
+        severity: "high",
+        rule: "GHA_BASE64_PAYLOAD",
+    },
+    {
+        pattern: "base64\\s+(?:-d|--decode)\\s*.*\\|\\s*(?:bash|sh|node|python)",
+        description: "Base64 decoded content piped to shell execution",
+        severity: "high",
+        rule: "GHA_BASE64_EXEC",
+    },
+    {
+        pattern: "\\batob\\s*\\(",
+        description: "JavaScript base64 decoding (atob) in workflow run block",
+        severity: "medium",
+        rule: "GHA_ATOB_USAGE",
+    },
+    // Environment variable exfiltration
+    {
+        pattern: "\\benv\\b.*\\bcurl\\b|\\bcurl\\b.*\\benv\\b",
+        description: "Environment variables referenced alongside curl (potential exfiltration)",
+        severity: "medium",
+        rule: "GHA_ENV_EXFIL",
+    },
+    // Suspicious shell patterns
+    {
+        pattern: "\\beval\\s*\\$\\(",
+        description: "eval with command substitution in workflow (dynamic code execution)",
+        severity: "high",
+        rule: "GHA_EVAL_SUBSHELL",
+    },
+    {
+        pattern: "\\beval\\s+[\"']",
+        description: "eval of string content in workflow run block",
+        severity: "medium",
+        rule: "GHA_EVAL_STRING",
+    },
+];
+/** Well-known official or trusted GitHub Action owners. */
+const TRUSTED_ACTION_OWNERS = new Set([
+    "actions",
+    "github",
+    "docker",
+    "azure",
+    "aws-actions",
+    "google-github-actions",
+    "hashicorp",
+    "gradle",
+    "ruby",
+    "peaceiris",
+    "codecov",
+    "softprops",
+    "peter-evans",
+    "JamesIves",
+]);
+/** Branch-like refs that indicate an unpinned action version. */
+const UNPINNED_REF_PATTERN = /^(main|master|dev|develop|latest|HEAD|trunk)$/;
+/** Pattern matching a full SHA commit hash (40 hex chars). */
+const SHA_PATTERN = /^[0-9a-fA-F]{40}$/;
+/**
+ * Scan a directory for GitHub Actions workflow files and return findings.
+ * Called from the main scanner during directory scans.
+ */
+function scanGitHubActionsWorkflows(dir) {
+    const findings = [];
+    const workflowDir = path.join(dir, ".github", "workflows");
+    if (!fs.existsSync(workflowDir)) {
+        return findings;
+    }
+    let entries;
+    try {
+        entries = fs.readdirSync(workflowDir, { withFileTypes: true });
+    }
+    catch {
+        return findings;
+    }
+    for (const entry of entries) {
+        if (!entry.isFile())
+            continue;
+        const ext = path.extname(entry.name).toLowerCase();
+        if (ext !== ".yml" && ext !== ".yaml")
+            continue;
+        const filePath = path.join(workflowDir, entry.name);
+        const relativePath = path.join(".github", "workflows", entry.name);
+        try {
+            const content = fs.readFileSync(filePath, "utf-8");
+            scanWorkflowContent(content, relativePath, findings);
+        }
+        catch {
+            // Skip unreadable files
+        }
+    }
+    return findings;
+}
+/**
+ * Scan workflow file content for suspicious patterns.
+ */
+function scanWorkflowContent(content, relativePath, findings) {
+    const lines = content.split("\n");
+    // Check line-by-line patterns in run: blocks and general content
+    checkWorkflowPatterns(lines, relativePath, findings);
+    // Check action references (uses: directives)
+    checkActionReferences(lines, relativePath, findings);
+    // Check for secrets sent to external URLs across multi-line run blocks
+    checkSecretsExfiltration(lines, relativePath, findings);
+}
+/**
+ * Check workflow content against known dangerous patterns.
+ */
+function checkWorkflowPatterns(lines, relativePath, findings) {
+    for (const pattern of WORKFLOW_PATTERNS) {
+        const regex = new RegExp(pattern.pattern, pattern.flags ?? "i");
+        for (let i = 0; i < lines.length; i++) {
+            const line = lines[i] ?? "";
+            const match = regex.exec(line);
+            if (match) {
+                findings.push({
+                    rule: pattern.rule,
+                    description: pattern.description,
+                    severity: pattern.severity,
+                    file: relativePath,
+                    line: i + 1,
+                    match: truncateMatch(match[0]),
+                    recommendation: getWorkflowRecommendation(pattern.rule),
+                });
+            }
+        }
+    }
+}
+/**
+ * Check action references for compromised or unpinned actions.
+ */
+function checkActionReferences(lines, relativePath, findings) {
+    const usesRegex = /^\s*-?\s*uses:\s*([^\s#]+)/;
+    for (let i = 0; i < lines.length; i++) {
+        const line = lines[i] ?? "";
+        const match = usesRegex.exec(line);
+        if (!match)
+            continue;
+        const actionRef = match[1] ?? "";
+        // Skip docker:// and local ./ references
+        if (actionRef.startsWith("docker://") || actionRef.startsWith("./")) {
+            continue;
+        }
+        // Parse owner/repo@ref
+        const atIndex = actionRef.indexOf("@");
+        if (atIndex === -1)
+            continue;
+        const actionPath = actionRef.substring(0, atIndex);
+        const ref = actionRef.substring(atIndex + 1);
+        const owner = actionPath.split("/")[0] ?? "";
+        // Check for unpinned versions (branch names instead of SHAs or semver tags)
+        if (UNPINNED_REF_PATTERN.test(ref)) {
+            findings.push({
+                rule: "GHA_UNPINNED_ACTION",
+                description: `Action "${actionRef}" uses a branch reference (@${ref}) instead of a pinned commit SHA or version tag. Branch references can be changed at any time.`,
+                severity: "medium",
+                file: relativePath,
+                line: i + 1,
+                match: truncateMatch(actionRef),
+                recommendation: "Pin actions to a specific commit SHA (e.g., @abc123def...) or a version tag (e.g., @v2.1.0) to prevent supply-chain attacks via mutable references.",
+            });
+        }
+        // Check for non-SHA refs (semver tags are acceptable but less secure than SHAs)
+        if (!SHA_PATTERN.test(ref) && !UNPINNED_REF_PATTERN.test(ref)) {
+            // Only flag non-semver patterns or very short tags as info
+            const isSemver = /^v?\d+(\.\d+){0,2}$/.test(ref);
+            if (isSemver && !TRUSTED_ACTION_OWNERS.has(owner)) {
+                findings.push({
+                    rule: "GHA_TAG_NOT_SHA",
+                    description: `Action "${actionRef}" uses a version tag instead of a commit SHA. Tags can be force-pushed to point to different commits.`,
+                    severity: "low",
+                    file: relativePath,
+                    line: i + 1,
+                    match: truncateMatch(actionRef),
+                    recommendation: "Consider pinning this action to a full commit SHA for maximum security. Tags can be moved to point to malicious code.",
+                });
+            }
+        }
+        // Check for non-official/untrusted action owners
+        if (!TRUSTED_ACTION_OWNERS.has(owner)) {
+            // Only flag as info if it has a SHA pin, medium otherwise
+            const isPinnedToSha = SHA_PATTERN.test(ref);
+            findings.push({
+                rule: "GHA_THIRD_PARTY_ACTION",
+                description: `Action "${actionRef}" is from third-party owner "${owner}". Third-party actions can be compromised.`,
+                severity: isPinnedToSha ? "info" : "low",
+                file: relativePath,
+                line: i + 1,
+                match: truncateMatch(actionRef),
+                recommendation: isPinnedToSha
+                    ? `Third-party action pinned to SHA. Periodically verify the SHA matches trusted code for "${actionPath}".`
+                    : `Pin "${actionRef}" to a specific commit SHA and audit the action source code before use.`,
+            });
+        }
+    }
+}
+/**
+ * Check for secrets being sent to external URLs in run blocks.
+ * Looks for multi-line run: blocks that contain both secret references
+ * and outbound network calls.
+ */
+function checkSecretsExfiltration(lines, relativePath, findings) {
+    const secretPattern = /\$\{\{\s*secrets\.\w+\s*\}\}/;
+    const networkPattern = /\b(?:curl|wget|fetch|nc|ncat|netcat)\b/;
+    const envExportPattern = /^\s*\w+:\s*\$\{\{\s*secrets\.\w+/;
+    // Track env: blocks that export secrets and subsequent run: blocks
+    let inRunBlock = false;
+    let runBlockStart = -1;
+    let runBlockHasSecrets = false;
+    let runBlockHasNetwork = false;
+    let runBlockIndent = 0;
+    // Also track env-exported secrets at step/job level
+    let envSecretsExported = false;
+    for (let i = 0; i < lines.length; i++) {
+        const line = lines[i] ?? "";
+        // Check env: blocks for secret exports
+        if (envExportPattern.test(line)) {
+            envSecretsExported = true;
+        }
+        // Detect start of run: block
+        const runMatch = /^(\s*)(?:-\s+)?run:\s*[|>]?\s*$/.exec(line);
+        const inlineRunMatch = /^(\s*)(?:-\s+)?run:\s+(.+)$/.exec(line);
+        if (runMatch) {
+            inRunBlock = true;
+            runBlockStart = i;
+            runBlockIndent = (runMatch[1] ?? "").length;
+            runBlockHasSecrets = false;
+            runBlockHasNetwork = false;
+            continue;
+        }
+        if (inlineRunMatch) {
+            // Single-line run: - already caught by WORKFLOW_PATTERNS
+            inRunBlock = false;
+            continue;
+        }
+        if (inRunBlock) {
+            // Check if we've left the block (dedented or empty non-continuation)
+            const lineIndent = line.length - line.trimStart().length;
+            if (line.trim().length > 0 && lineIndent <= runBlockIndent && !/^\s+/.test(line)) {
+                // Exited run block
+                if (runBlockHasSecrets && runBlockHasNetwork) {
+                    // Already caught by line-level patterns if on same line;
+                    // this catches split across lines
+                    const alreadyFound = findings.some((f) => (f.rule === "GHA_SECRET_CURL" || f.rule === "GHA_SECRET_WGET") &&
+                        f.file === relativePath &&
+                        f.line !== undefined &&
+                        f.line >= runBlockStart + 1 &&
+                        f.line <= i);
+                    if (!alreadyFound) {
+                        findings.push({
+                            rule: "GHA_SECRET_EXFIL_MULTILINE",
+                            description: "Secrets and network commands found in the same run block (potential exfiltration across multiple lines)",
+                            severity: "high",
+                            file: relativePath,
+                            line: runBlockStart + 1,
+                            recommendation: "Review this run block. Secrets combined with network commands in the same step can indicate credential exfiltration.",
+                        });
+                    }
+                }
+                inRunBlock = false;
+            }
+            if (inRunBlock) {
+                if (secretPattern.test(line))
+                    runBlockHasSecrets = true;
+                if (networkPattern.test(line))
+                    runBlockHasNetwork = true;
+                // Also check if env-exported secrets are used with network
+                if (envSecretsExported && networkPattern.test(line)) {
+                    runBlockHasSecrets = true;
+                }
+            }
+        }
+    }
+    // Handle case where run block extends to end of file
+    if (inRunBlock && runBlockHasSecrets && runBlockHasNetwork) {
+        const alreadyFound = findings.some((f) => (f.rule === "GHA_SECRET_CURL" || f.rule === "GHA_SECRET_WGET") &&
+            f.file === relativePath);
+        if (!alreadyFound) {
+            findings.push({
+                rule: "GHA_SECRET_EXFIL_MULTILINE",
+                description: "Secrets and network commands found in the same run block (potential exfiltration across multiple lines)",
+                severity: "high",
+                file: relativePath,
+                line: runBlockStart + 1,
+                recommendation: "Review this run block. Secrets combined with network commands in the same step can indicate credential exfiltration.",
+            });
+        }
+    }
+}
+/**
+ * Get recommendation text for a workflow-specific rule.
+ */
+function getWorkflowRecommendation(rule) {
+    const map = {
+        GHA_CURL_PIPE_EXEC: "Do not pipe remote content directly to a shell. Download the script, verify its checksum, then execute.",
+        GHA_WGET_PIPE_EXEC: "Do not pipe remote content directly to a shell. Download the script, verify its checksum, then execute.",
+        GHA_CURL_DOWNLOAD_EXEC: "Verify downloaded scripts with checksums before execution. Prefer using pinned GitHub Actions instead.",
+        GHA_WGET_DOWNLOAD_EXEC: "Verify downloaded scripts with checksums before execution. Prefer using pinned GitHub Actions instead.",
+        GHA_SECRET_CURL: "Secrets should never be sent to external URLs. Review this workflow step for credential exfiltration.",
+        GHA_SECRET_WGET: "Secrets should never be sent to external URLs via wget. Review this workflow step for credential exfiltration.",
+        GHA_BASE64_PAYLOAD: "Base64 encoded payloads in CI workflows are suspicious. Decode and inspect the content before running.",
+        GHA_BASE64_EXEC: "Decoding base64 content and piping to a shell is a common attack vector. Inspect the encoded content.",
+        GHA_ATOB_USAGE: "Base64 decoding in workflow run blocks may indicate obfuscated payloads. Review the decoded content.",
+        GHA_ENV_EXFIL: "Environment variables combined with network tools may indicate data exfiltration. Review the workflow step.",
+        GHA_EVAL_SUBSHELL: "eval with command substitution enables dynamic code execution. This is rarely needed in CI workflows.",
+        GHA_EVAL_STRING: "eval of string content in workflows can execute injected code. Prefer direct commands.",
+    };
+    return map[rule] ?? "Review this finding and assess whether it represents legitimate CI/CD functionality.";
+}
+/**
+ * Truncate a match string for display.
+ */
+function truncateMatch(match, maxLen = 120) {
+    if (match.length <= maxLen)
+        return match;
+    return match.substring(0, maxLen) + "...";
+}
+//# sourceMappingURL=github-actions-scanner.js.map

package/dist/github-actions-scanner.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"github-actions-scanner.js","sourceRoot":"","sources":["../src/github-actions-scanner.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AA2IH,gEAgCC;AAzKD,4CAA8B;AAC9B,gDAAkC;AAGlC;;GAEG;AACH,MAAM,iBAAiB,GAMlB;IACH,0CAA0C;IAC1C;QACE,OAAO,EAAE,2DAA2D;QACpE,WAAW,EAAE,+DAA+D;QAC5E,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IACD;QACE,OAAO,EAAE,2DAA2D;QACpE,WAAW,EAAE,+DAA+D;QAC5E,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IACD;QACE,OAAO,EAAE,qDAAqD;QAC9D,WAAW,EAAE,mDAAmD;QAChE,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,wBAAwB;KAC/B;IACD;QACE,OAAO,EAAE,qDAAqD;QAC9D,WAAW,EAAE,6DAA6D;QAC1E,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,wBAAwB;KAC/B;IAED,mCAAmC;IACnC;QACE,OAAO,EAAE,0CAA0C;QACnD,WAAW,EAAE,8DAA8D;QAC3E,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IACD;QACE,OAAO,EAAE,0CAA0C;QACnD,WAAW,EAAE,6DAA6D;QAC1E,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IACD;QACE,OAAO,EAAE,0CAA0C;QACnD,WAAW,EAAE,8DAA8D;QAC3E,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IACD;QACE,OAAO,EAAE,0CAA0C;QACnD,WAAW,EAAE,6DAA6D;QAC1E,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IAED,0BAA0B;IAC1B;QACE,OAAO,EAAE,iEAAiE;QAC1E,WAAW,EAAE,qEAAqE;QAClF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IACD;QACE,OAAO,EAAE,+DAA+D;QACxE,WAAW,EAAE,iDAAiD;QAC9D,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IACD;QACE,OAAO,EAAE,gBAAgB;QACzB,WAAW,EAAE,yDAAyD;QACtE,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,gBAAgB;KACvB;IAED,oCAAoC;IACpC;QACE,OAAO,EAAE,6CAA6C;QACtD,WAAW,EAAE,0EAA0E;QACvF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,eAAe;KACtB;IAED,4BAA4B;IAC5B;QACE,OAAO,EAAE,mBAAmB;QAC5B,WAAW,EAAE,qEAAqE;QAClF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EAAE,8CAA8C;QAC3D,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,iBAAiB;KACxB;CACF,CAAC;AAEF,2DAA2D;AAC3D,MAAM,qBAAqB,GAAG,IAAI,GAAG,CAAC;IACpC,SAAS;IACT,QAAQ;IACR,QAAQ;IACR,OAAO;IACP,aAAa;IACb,uBAAuB;IACvB,WAAW;IACX,QAAQ;IACR,MAAM;IACN,WAAW;IACX,SAAS;IACT,WAAW;IACX,aAAa;IACb,WAAW;CACZ,CAAC,CAAC;AAEH,iEAAiE;AACjE,MAAM,oBAAoB,GAAG,+CAA+C,CAAC;AAE7E,8DAA8D;AAC9D,MAAM,WAAW,GAAG,mBAAmB,CAAC;AAExC;;;GAGG;AACH,SAAgB,0BAA0B,CAAC,GAAW;IACpD,MAAM,QAAQ,GAAc,EAAE,CAAC;IAC/B,MAAM,WAAW,GAAG,IAAI,CAAC,IAAI,CAAC,GAAG,EAAE,SAAS,EAAE,WAAW,CAAC,CAAC;IAE3D,IAAI,CAAC,EAAE,CAAC,UAAU,CAAC,WAAW,CAAC,EAAE,CAAC;QAChC,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,IAAI,OAAoB,CAAC;IACzB,IAAI,CAAC;QACH,OAAO,GAAG,EAAE,CAAC,WAAW,CAAC,WAAW,EAAE,EAAE,aAAa,EAAE,IAAI,EAAE,CAAC,CAAC;IACjE,CAAC;IAAC,MAAM,CAAC;QACP,OAAO,QAAQ,CAAC;IAClB,CAAC;IAED,KAAK,MAAM,KAAK,IAAI,OAAO,EAAE,CAAC;QAC5B,IAAI,CAAC,KAAK,CAAC,MAAM,EAAE;YAAE,SAAS;QAC9B,MAAM,GAAG,GAAG,IAAI,CAAC,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC,WAAW,EAAE,CAAC;QACnD,IAAI,GAAG,KAAK,MAAM,IAAI,GAAG,KAAK,OAAO;YAAE,SAAS;QAEhD,MAAM,QAAQ,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;QACpD,MAAM,YAAY,GAAG,IAAI,CAAC,IAAI,CAAC,SAAS,EAAE,WAAW,EAAE,KAAK,CAAC,IAAI,CAAC,CAAC;QAEnE,IAAI,CAAC;YACH,MAAM,OAAO,GAAG,EAAE,CAAC,YAAY,CAAC,QAAQ,EAAE,OAAO,CAAC,CAAC;YACnD,mBAAmB,CAAC,OAAO,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC;QACvD,CAAC;QAAC,MAAM,CAAC;YACP,wBAAwB;QAC1B,CAAC;IACH,CAAC;IAED,OAAO,QAAQ,CAAC;AAClB,CAAC;AAED;;GAEG;AACH,SAAS,mBAAmB,CAC1B,OAAe,EACf,YAAoB,EACpB,QAAmB;IAEnB,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAElC,iEAAiE;IACjE,qBAAqB,CAAC,KAAK,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC;IAErD,6CAA6C;IAC7C,qBAAqB,CAAC,KAAK,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC;IAErD,uEAAuE;IACvE,wBAAwB,CAAC,KAAK,EAAE,YAAY,EAAE,QAAQ,CAAC,CAAC;AAC1D,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB,CAC5B,KAAe,EACf,YAAoB,EACpB,QAAmB;IAEnB,KAAK,MAAM,OAAO,IAAI,iBAAiB,EAAE,CAAC;QACxC,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,OAAO,CAAC,OAAO,EAAE,OAAO,CAAC,KAAK,IAAI,GAAG,CAAC,CAAC;QAEhE,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;YACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;YAC5B,MAAM,KAAK,GAAG,KAAK,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YAC/B,IAAI,KAAK,EAAE,CAAC;gBACV,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,OAAO,CAAC,IAAI;oBAClB,WAAW,EAAE,OAAO,CAAC,WAAW;oBAChC,QAAQ,EAAE,OAAO,CAAC,QAAQ;oBAC1B,IAAI,EAAE,YAAY;oBAClB,IAAI,EAAE,CAAC,GAAG,CAAC;oBACX,KAAK,EAAE,aAAa,CAAC,KAAK,CAAC,CAAC,CAAC,CAAC;oBAC9B,cAAc,EAAE,yBAAyB,CAAC,OAAO,CAAC,IAAI,CAAC;iBACxD,CAAC,CAAC;YACL,CAAC;QACH,CAAC;IACH,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,qBAAqB,CAC5B,KAAe,EACf,YAAoB,EACpB,QAAmB;IAEnB,MAAM,SAAS,GAAG,4BAA4B,CAAC;IAE/C,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAC5B,MAAM,KAAK,GAAG,SAAS,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QACnC,IAAI,CAAC,KAAK;YAAE,SAAS;QAErB,MAAM,SAAS,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAEjC,yCAAyC;QACzC,IAAI,SAAS,CAAC,UAAU,CAAC,WAAW,CAAC,IAAI,SAAS,CAAC,UAAU,CAAC,IAAI,CAAC,EAAE,CAAC;YACpE,SAAS;QACX,CAAC;QAED,uBAAuB;QACvB,MAAM,OAAO,GAAG,SAAS,CAAC,OAAO,CAAC,GAAG,CAAC,CAAC;QACvC,IAAI,OAAO,KAAK,CAAC,CAAC;YAAE,SAAS;QAE7B,MAAM,UAAU,GAAG,SAAS,CAAC,SAAS,CAAC,CAAC,EAAE,OAAO,CAAC,CAAC;QACnD,MAAM,GAAG,GAAG,SAAS,CAAC,SAAS,CAAC,OAAO,GAAG,CAAC,CAAC,CAAC;QAC7C,MAAM,KAAK,GAAG,UAAU,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAE7C,4EAA4E;QAC5E,IAAI,oBAAoB,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YACnC,QAAQ,CAAC,IAAI,CAAC;gBACZ,IAAI,EAAE,qBAAqB;gBAC3B,WAAW,EAAE,WAAW,SAAS,+BAA+B,GAAG,gGAAgG;gBACnK,QAAQ,EAAE,QAAQ;gBAClB,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,CAAC,GAAG,CAAC;gBACX,KAAK,EAAE,aAAa,CAAC,SAAS,CAAC;gBAC/B,cAAc,EACZ,qJAAqJ;aACxJ,CAAC,CAAC;QACL,CAAC;QAED,gFAAgF;QAChF,IAAI,CAAC,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,oBAAoB,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC;YAC9D,2DAA2D;YAC3D,MAAM,QAAQ,GAAG,qBAAqB,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YACjD,IAAI,QAAQ,IAAI,CAAC,qBAAqB,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;gBAClD,QAAQ,CAAC,IAAI,CAAC;oBACZ,IAAI,EAAE,iBAAiB;oBACvB,WAAW,EAAE,WAAW,SAAS,uGAAuG;oBACxI,QAAQ,EAAE,KAAK;oBACf,IAAI,EAAE,YAAY;oBAClB,IAAI,EAAE,CAAC,GAAG,CAAC;oBACX,KAAK,EAAE,aAAa,CAAC,SAAS,CAAC;oBAC/B,cAAc,EACZ,uHAAuH;iBAC1H,CAAC,CAAC;YACL,CAAC;QACH,CAAC;QAED,iDAAiD;QACjD,IAAI,CAAC,qBAAqB,CAAC,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC;YACtC,0DAA0D;YAC1D,MAAM,aAAa,GAAG,WAAW,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC;YAC5C,QAAQ,CAAC,IAAI,CAAC;gBACZ,IAAI,EAAE,wBAAwB;gBAC9B,WAAW,EAAE,WAAW,SAAS,gCAAgC,KAAK,4CAA4C;gBAClH,QAAQ,EAAE,aAAa,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,KAAK;gBACxC,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,CAAC,GAAG,CAAC;gBACX,KAAK,EAAE,aAAa,CAAC,SAAS,CAAC;gBAC/B,cAAc,EAAE,aAAa;oBAC3B,CAAC,CAAC,2FAA2F,UAAU,IAAI;oBAC3G,CAAC,CAAC,QAAQ,SAAS,yEAAyE;aAC/F,CAAC,CAAC;QACL,CAAC;IACH,CAAC;AACH,CAAC;AAED;;;;GAIG;AACH,SAAS,wBAAwB,CAC/B,KAAe,EACf,YAAoB,EACpB,QAAmB;IAEnB,MAAM,aAAa,GAAG,8BAA8B,CAAC;IACrD,MAAM,cAAc,GAAG,wCAAwC,CAAC;IAChE,MAAM,gBAAgB,GAAG,kCAAkC,CAAC;IAE5D,mEAAmE;IACnE,IAAI,UAAU,GAAG,KAAK,CAAC;IACvB,IAAI,aAAa,GAAG,CAAC,CAAC,CAAC;IACvB,IAAI,kBAAkB,GAAG,KAAK,CAAC;IAC/B,IAAI,kBAAkB,GAAG,KAAK,CAAC;IAC/B,IAAI,cAAc,GAAG,CAAC,CAAC;IAEvB,oDAAoD;IACpD,IAAI,kBAAkB,GAAG,KAAK,CAAC;IAE/B,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,KAAK,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE,CAAC;QACtC,MAAM,IAAI,GAAG,KAAK,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC;QAE5B,uCAAuC;QACvC,IAAI,gBAAgB,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;YAChC,kBAAkB,GAAG,IAAI,CAAC;QAC5B,CAAC;QAED,6BAA6B;QAC7B,MAAM,QAAQ,GAAG,iCAAiC,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAC9D,MAAM,cAAc,GAAG,6BAA6B,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;QAEhE,IAAI,QAAQ,EAAE,CAAC;YACb,UAAU,GAAG,IAAI,CAAC;YAClB,aAAa,GAAG,CAAC,CAAC;YAClB,cAAc,GAAG,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAC,MAAM,CAAC;YAC5C,kBAAkB,GAAG,KAAK,CAAC;YAC3B,kBAAkB,GAAG,KAAK,CAAC;YAC3B,SAAS;QACX,CAAC;QAED,IAAI,cAAc,EAAE,CAAC;YACnB,yDAAyD;YACzD,UAAU,GAAG,KAAK,CAAC;YACnB,SAAS;QACX,CAAC;QAED,IAAI,UAAU,EAAE,CAAC;YACf,qEAAqE;YACrE,MAAM,UAAU,GAAG,IAAI,CAAC,MAAM,GAAG,IAAI,CAAC,SAAS,EAAE,CAAC,MAAM,CAAC;YACzD,IAAI,IAAI,CAAC,IAAI,EAAE,CAAC,MAAM,GAAG,CAAC,IAAI,UAAU,IAAI,cAAc,IAAI,CAAC,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;gBACjF,mBAAmB;gBACnB,IAAI,kBAAkB,IAAI,kBAAkB,EAAE,CAAC;oBAC7C,yDAAyD;oBACzD,kCAAkC;oBAClC,MAAM,YAAY,GAAG,QAAQ,CAAC,IAAI,CAChC,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,CAAC,IAAI,KAAK,iBAAiB,IAAI,CAAC,CAAC,IAAI,KAAK,iBAAiB,CAAC;wBAC9D,CAAC,CAAC,IAAI,KAAK,YAAY;wBACvB,CAAC,CAAC,IAAI,KAAK,SAAS;wBACpB,CAAC,CAAC,IAAI,IAAI,aAAa,GAAG,CAAC;wBAC3B,CAAC,CAAC,IAAI,IAAI,CAAC,CACd,CAAC;oBACF,IAAI,CAAC,YAAY,EAAE,CAAC;wBAClB,QAAQ,CAAC,IAAI,CAAC;4BACZ,IAAI,EAAE,4BAA4B;4BAClC,WAAW,EAAE,yGAAyG;4BACtH,QAAQ,EAAE,MAAM;4BAChB,IAAI,EAAE,YAAY;4BAClB,IAAI,EAAE,aAAa,GAAG,CAAC;4BACvB,cAAc,EACZ,sHAAsH;yBACzH,CAAC,CAAC;oBACL,CAAC;gBACH,CAAC;gBACD,UAAU,GAAG,KAAK,CAAC;YACrB,CAAC;YAED,IAAI,UAAU,EAAE,CAAC;gBACf,IAAI,aAAa,CAAC,IAAI,CAAC,IAAI,CAAC;oBAAE,kBAAkB,GAAG,IAAI,CAAC;gBACxD,IAAI,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC;oBAAE,kBAAkB,GAAG,IAAI,CAAC;gBAEzD,2DAA2D;gBAC3D,IAAI,kBAAkB,IAAI,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;oBACpD,kBAAkB,GAAG,IAAI,CAAC;gBAC5B,CAAC;YACH,CAAC;QACH,CAAC;IACH,CAAC;IAED,qDAAqD;IACrD,IAAI,UAAU,IAAI,kBAAkB,IAAI,kBAAkB,EAAE,CAAC;QAC3D,MAAM,YAAY,GAAG,QAAQ,CAAC,IAAI,CAChC,CAAC,CAAC,EAAE,EAAE,CACJ,CAAC,CAAC,CAAC,IAAI,KAAK,iBAAiB,IAAI,CAAC,CAAC,IAAI,KAAK,iBAAiB,CAAC;YAC9D,CAAC,CAAC,IAAI,KAAK,YAAY,CAC1B,CAAC;QACF,IAAI,CAAC,YAAY,EAAE,CAAC;YAClB,QAAQ,CAAC,IAAI,CAAC;gBACZ,IAAI,EAAE,4BAA4B;gBAClC,WAAW,EAAE,yGAAyG;gBACtH,QAAQ,EAAE,MAAM;gBAChB,IAAI,EAAE,YAAY;gBAClB,IAAI,EAAE,aAAa,GAAG,CAAC;gBACvB,cAAc,EACZ,sHAAsH;aACzH,CAAC,CAAC;QACL,CAAC;IACH,CAAC;AACH,CAAC;AAED;;GAEG;AACH,SAAS,yBAAyB,CAAC,IAAY;IAC7C,MAAM,GAAG,GAA2B;QAClC,kBAAkB,EAChB,yGAAyG;QAC3G,kBAAkB,EAChB,yGAAyG;QAC3G,sBAAsB,EACpB,wGAAwG;QAC1G,sBAAsB,EACpB,wGAAwG;QAC1G,eAAe,EACb,uGAAuG;QACzG,eAAe,EACb,gHAAgH;QAClH,kBAAkB,EAChB,wGAAwG;QAC1G,eAAe,EACb,uGAAuG;QACzG,cAAc,EACZ,sGAAsG;QACxG,aAAa,EACX,6GAA6G;QAC/G,iBAAiB,EACf,uGAAuG;QACzG,eAAe,EACb,wFAAwF;KAC3F,CAAC;IACF,OAAO,GAAG,CAAC,IAAI,CAAC,IAAI,sFAAsF,CAAC;AAC7G,CAAC;AAED;;GAEG;AACH,SAAS,aAAa,CAAC,KAAa,EAAE,MAAM,GAAG,GAAG;IAChD,IAAI,KAAK,CAAC,MAAM,IAAI,MAAM;QAAE,OAAO,KAAK,CAAC;IACzC,OAAO,KAAK,CAAC,SAAS,CAAC,CAAC,EAAE,MAAM,CAAC,GAAG,KAAK,CAAC;AAC5C,CAAC"}

package/dist/index.d.ts

@@ -9,8 +9,9 @@ export { scanNpmPackage } from "./npm-scanner.js";
 export { scanPypiPackage } from "./pypi-scanner.js";
 export { scanVscodeExtension } from "./vscode-scanner.js";
 export { scanDependencyConfusion } from "./dependency-confusion.js";
-export { monitorWallet, checkWallet, formatAlert } from "./solana-monitor.js";
+export { monitorWallet, checkWallet, formatAlert, loadWatchlist, saveWatchlist, addToWatchlist, removeFromWatchlist, listWatchlist, monitorWatchlist, } from "./solana-monitor.js";
 export { formatReport } from "./reporter.js";
 export { checkLockfile } from "./lockfile-checker.js";
-export type { Finding, ScanReport, ScanOptions, ScanSummary, Severity, NpmPackageInfo, SolanaMonitorOptions, SolanaTransaction, PatternEntry, } from "./types.js";
+export { scanGitHubActionsWorkflows } from "./github-actions-scanner.js";
+export type { Finding, ScanReport, ScanOptions, ScanSummary, Severity, NpmPackageInfo, SolanaMonitorOptions, SolanaTransaction, PatternEntry, WatchlistEntry, WatchlistConfig, WatchlistAlert, } from "./types.js";
 //# sourceMappingURL=index.d.ts.map

package/dist/index.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,cAAc,CAAC;AACpC,OAAO,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAC1D,OAAO,EAAE,uBAAuB,EAAE,MAAM,2BAA2B,CAAC;AACpE,OAAO,EAAE,aAAa,EAAE,WAAW,EAAE,WAAW,EAAE,MAAM,qBAAqB,CAAC;AAC9E,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAC7C,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AACtD,YAAY,EACV,OAAO,EACP,UAAU,EACV,WAAW,EACX,WAAW,EACX,QAAQ,EACR,cAAc,EACd,oBAAoB,EACpB,iBAAiB,EACjB,YAAY,GACb,MAAM,YAAY,CAAC"}
+{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,EAAE,IAAI,EAAE,MAAM,cAAc,CAAC;AACpC,OAAO,EAAE,cAAc,EAAE,MAAM,kBAAkB,CAAC;AAClD,OAAO,EAAE,eAAe,EAAE,MAAM,mBAAmB,CAAC;AACpD,OAAO,EAAE,mBAAmB,EAAE,MAAM,qBAAqB,CAAC;AAC1D,OAAO,EAAE,uBAAuB,EAAE,MAAM,2BAA2B,CAAC;AACpE,OAAO,EACL,aAAa,EACb,WAAW,EACX,WAAW,EACX,aAAa,EACb,aAAa,EACb,cAAc,EACd,mBAAmB,EACnB,aAAa,EACb,gBAAgB,GACjB,MAAM,qBAAqB,CAAC;AAC7B,OAAO,EAAE,YAAY,EAAE,MAAM,eAAe,CAAC;AAC7C,OAAO,EAAE,aAAa,EAAE,MAAM,uBAAuB,CAAC;AACtD,OAAO,EAAE,0BAA0B,EAAE,MAAM,6BAA6B,CAAC;AACzE,YAAY,EACV,OAAO,EACP,UAAU,EACV,WAAW,EACX,WAAW,EACX,QAAQ,EACR,cAAc,EACd,oBAAoB,EACpB,iBAAiB,EACjB,YAAY,EACZ,cAAc,EACd,eAAe,EACf,cAAc,GACf,MAAM,YAAY,CAAC"}

package/dist/index.js

@@ -6,7 +6,7 @@
  * Detects GlassWorm and similar malware campaigns.
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.checkLockfile = exports.formatReport = exports.formatAlert = exports.checkWallet = exports.monitorWallet = exports.scanDependencyConfusion = exports.scanVscodeExtension = exports.scanPypiPackage = exports.scanNpmPackage = exports.scan = void 0;
+exports.scanGitHubActionsWorkflows = exports.checkLockfile = exports.formatReport = exports.monitorWatchlist = exports.listWatchlist = exports.removeFromWatchlist = exports.addToWatchlist = exports.saveWatchlist = exports.loadWatchlist = exports.formatAlert = exports.checkWallet = exports.monitorWallet = exports.scanDependencyConfusion = exports.scanVscodeExtension = exports.scanPypiPackage = exports.scanNpmPackage = exports.scan = void 0;
 var scanner_js_1 = require("./scanner.js");
 Object.defineProperty(exports, "scan", { enumerable: true, get: function () { return scanner_js_1.scan; } });
 var npm_scanner_js_1 = require("./npm-scanner.js");
@@ -21,8 +21,16 @@ var solana_monitor_js_1 = require("./solana-monitor.js");
 Object.defineProperty(exports, "monitorWallet", { enumerable: true, get: function () { return solana_monitor_js_1.monitorWallet; } });
 Object.defineProperty(exports, "checkWallet", { enumerable: true, get: function () { return solana_monitor_js_1.checkWallet; } });
 Object.defineProperty(exports, "formatAlert", { enumerable: true, get: function () { return solana_monitor_js_1.formatAlert; } });
+Object.defineProperty(exports, "loadWatchlist", { enumerable: true, get: function () { return solana_monitor_js_1.loadWatchlist; } });
+Object.defineProperty(exports, "saveWatchlist", { enumerable: true, get: function () { return solana_monitor_js_1.saveWatchlist; } });
+Object.defineProperty(exports, "addToWatchlist", { enumerable: true, get: function () { return solana_monitor_js_1.addToWatchlist; } });
+Object.defineProperty(exports, "removeFromWatchlist", { enumerable: true, get: function () { return solana_monitor_js_1.removeFromWatchlist; } });
+Object.defineProperty(exports, "listWatchlist", { enumerable: true, get: function () { return solana_monitor_js_1.listWatchlist; } });
+Object.defineProperty(exports, "monitorWatchlist", { enumerable: true, get: function () { return solana_monitor_js_1.monitorWatchlist; } });
 var reporter_js_1 = require("./reporter.js");
 Object.defineProperty(exports, "formatReport", { enumerable: true, get: function () { return reporter_js_1.formatReport; } });
 var lockfile_checker_js_1 = require("./lockfile-checker.js");
 Object.defineProperty(exports, "checkLockfile", { enumerable: true, get: function () { return lockfile_checker_js_1.checkLockfile; } });
+var github_actions_scanner_js_1 = require("./github-actions-scanner.js");
+Object.defineProperty(exports, "scanGitHubActionsWorkflows", { enumerable: true, get: function () { return github_actions_scanner_js_1.scanGitHubActionsWorkflows; } });
 //# sourceMappingURL=index.js.map

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;AAEH,2CAAoC;AAA3B,kGAAA,IAAI,OAAA;AACb,mDAAkD;AAAzC,gHAAA,cAAc,OAAA;AACvB,qDAAoD;AAA3C,kHAAA,eAAe,OAAA;AACxB,yDAA0D;AAAjD,wHAAA,mBAAmB,OAAA;AAC5B,qEAAoE;AAA3D,kIAAA,uBAAuB,OAAA;AAChC,yDAA8E;AAArE,kHAAA,aAAa,OAAA;AAAE,gHAAA,WAAW,OAAA;AAAE,gHAAA,WAAW,OAAA;AAChD,6CAA6C;AAApC,2GAAA,YAAY,OAAA;AACrB,6DAAsD;AAA7C,oHAAA,aAAa,OAAA"}
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../src/index.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;AAEH,2CAAoC;AAA3B,kGAAA,IAAI,OAAA;AACb,mDAAkD;AAAzC,gHAAA,cAAc,OAAA;AACvB,qDAAoD;AAA3C,kHAAA,eAAe,OAAA;AACxB,yDAA0D;AAAjD,wHAAA,mBAAmB,OAAA;AAC5B,qEAAoE;AAA3D,kIAAA,uBAAuB,OAAA;AAChC,yDAU6B;AAT3B,kHAAA,aAAa,OAAA;AACb,gHAAA,WAAW,OAAA;AACX,gHAAA,WAAW,OAAA;AACX,kHAAA,aAAa,OAAA;AACb,kHAAA,aAAa,OAAA;AACb,mHAAA,cAAc,OAAA;AACd,wHAAA,mBAAmB,OAAA;AACnB,kHAAA,aAAa,OAAA;AACb,qHAAA,gBAAgB,OAAA;AAElB,6CAA6C;AAApC,2GAAA,YAAY,OAAA;AACrB,6DAAsD;AAA7C,oHAAA,aAAa,OAAA;AACtB,yEAAyE;AAAhE,uIAAA,0BAA0B,OAAA"}

package/dist/patterns.d.ts

@@ -32,6 +32,8 @@ export declare const PYPI_SETUP_FILES: Set<string>;
 export declare const PYPI_INSTALL_HOOK_PATTERNS: PatternEntry[];
 /** Python file extensions to scan */
 export declare const PYTHON_EXTENSIONS: Set<string>;
+/** Known typosquatted PyPI package name patterns */
+export declare const PYPI_TYPOSQUAT_PATTERNS: string[];
 /** File extensions that indicate binary/native addons */
 export declare const BINARY_EXTENSIONS: Set<string>;
 /** Patterns in install scripts that indicate prebuilt binary downloads */

package/dist/patterns.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"patterns.d.ts","sourceRoot":"","sources":["../src/patterns.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AAMzD,uCAAuC;AACvC,eAAO,MAAM,iBAAiB,UAAsB,CAAC;AAErD,0DAA0D;AAC1D,eAAO,MAAM,gBAAgB,EAAE,MAAM,EAGpC,CAAC;AAEF,+CAA+C;AAC/C,eAAO,MAAM,kBAAkB,EAAE,MAAM,EAItC,CAAC;AAMF,eAAO,MAAM,aAAa,EAAE,YAAY,EAkHvC,CAAC;AAMF,8CAA8C;AAC9C,eAAO,MAAM,gBAAgB,EAAE,KAAK,CAAC;IACnC,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,QAAQ,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;CACd,CAeA,CAAC;AAMF,uDAAuD;AACvD,eAAO,MAAM,kBAAkB,EAAE,YAAY,EAqC5C,CAAC;AAMF,uEAAuE;AACvE,eAAO,MAAM,0BAA0B,EAAE,MAAM,EAY9C,CAAC;AAMF,eAAO,MAAM,iBAAiB,EAAE,YAAY,EA0H3C,CAAC;AAMF,+DAA+D;AAC/D,eAAO,MAAM,kBAAkB,EAAE,YAAY,EA8G5C,CAAC;AAEF,kDAAkD;AAClD,eAAO,MAAM,gBAAgB,aAI3B,CAAC;AAEH,mDAAmD;AACnD,eAAO,MAAM,0BAA0B,EAAE,YAAY,EA6BpD,CAAC;AAEF,qCAAqC;AACrC,eAAO,MAAM,iBAAiB,aAI5B,CAAC;AAMH,yDAAyD;AACzD,eAAO,MAAM,iBAAiB,aAO5B,CAAC;AAEH,0EAA0E;AAC1E,eAAO,MAAM,wBAAwB,EAAE,YAAY,EA8BlD,CAAC;AAEF,uDAAuD;AACvD,eAAO,MAAM,qBAAqB,aA+BhC,CAAC;AAMH,eAAO,MAAM,qBAAqB,EAAE,YAAY,EAyF/C,CAAC;AAMF,eAAO,MAAM,oBAAoB,aAc/B,CAAC;AAEH,gFAAgF;AAChF,eAAO,MAAM,aAAa,QAAkB,CAAC"}
+{"version":3,"file":"patterns.d.ts","sourceRoot":"","sources":["../src/patterns.ts"],"names":[],"mappings":"AAAA;;;;;GAKG;AAEH,OAAO,KAAK,EAAE,YAAY,EAAE,QAAQ,EAAE,MAAM,YAAY,CAAC;AAMzD,uCAAuC;AACvC,eAAO,MAAM,iBAAiB,UAAsB,CAAC;AAErD,0DAA0D;AAC1D,eAAO,MAAM,gBAAgB,EAAE,MAAM,EAGpC,CAAC;AAEF,+CAA+C;AAC/C,eAAO,MAAM,kBAAkB,EAAE,MAAM,EAItC,CAAC;AAMF,eAAO,MAAM,aAAa,EAAE,YAAY,EAkHvC,CAAC;AAMF,8CAA8C;AAC9C,eAAO,MAAM,gBAAgB,EAAE,KAAK,CAAC;IACnC,OAAO,EAAE,MAAM,CAAC;IAChB,WAAW,EAAE,MAAM,CAAC;IACpB,QAAQ,EAAE,QAAQ,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;CACd,CAeA,CAAC;AAMF,uDAAuD;AACvD,eAAO,MAAM,kBAAkB,EAAE,YAAY,EAqC5C,CAAC;AAMF,uEAAuE;AACvE,eAAO,MAAM,0BAA0B,EAAE,MAAM,EAY9C,CAAC;AAMF,eAAO,MAAM,iBAAiB,EAAE,YAAY,EA0H3C,CAAC;AAMF,+DAA+D;AAC/D,eAAO,MAAM,kBAAkB,EAAE,YAAY,EAkJ5C,CAAC;AAEF,kDAAkD;AAClD,eAAO,MAAM,gBAAgB,aAI3B,CAAC;AAEH,mDAAmD;AACnD,eAAO,MAAM,0BAA0B,EAAE,YAAY,EAoCpD,CAAC;AAEF,qCAAqC;AACrC,eAAO,MAAM,iBAAiB,aAI5B,CAAC;AAEH,oDAAoD;AACpD,eAAO,MAAM,uBAAuB,EAAE,MAAM,EAc3C,CAAC;AAMF,yDAAyD;AACzD,eAAO,MAAM,iBAAiB,aAO5B,CAAC;AAEH,0EAA0E;AAC1E,eAAO,MAAM,wBAAwB,EAAE,YAAY,EA8BlD,CAAC;AAEF,uDAAuD;AACvD,eAAO,MAAM,qBAAqB,aA+BhC,CAAC;AAMH,eAAO,MAAM,qBAAqB,EAAE,YAAY,EAyF/C,CAAC;AAMF,eAAO,MAAM,oBAAoB,aAc/B,CAAC;AAEH,gFAAgF;AAChF,eAAO,MAAM,aAAa,QAAkB,CAAC"}

package/dist/patterns.js

@@ -6,7 +6,7 @@
  * Add new patterns, wallet addresses, or domain patterns as they are discovered.
  */
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.MAX_FILE_SIZE = exports.SCANNABLE_EXTENSIONS = exports.BEACON_MINER_PATTERNS = exports.KNOWN_NATIVE_PACKAGES = exports.BINARY_DOWNLOAD_PATTERNS = exports.BINARY_EXTENSIONS = exports.PYTHON_EXTENSIONS = exports.PYPI_INSTALL_HOOK_PATTERNS = exports.PYPI_SETUP_FILES = exports.PYPI_FILE_PATTERNS = exports.CAMPAIGN_PATTERNS = exports.MALICIOUS_PACKAGE_PATTERNS = exports.SUSPICIOUS_SCRIPTS = exports.SUSPICIOUS_FILES = exports.FILE_PATTERNS = exports.C2_DOMAIN_PATTERNS = exports.KNOWN_C2_WALLETS = exports.GLASSWORM_MARKERS = void 0;
+exports.MAX_FILE_SIZE = exports.SCANNABLE_EXTENSIONS = exports.BEACON_MINER_PATTERNS = exports.KNOWN_NATIVE_PACKAGES = exports.BINARY_DOWNLOAD_PATTERNS = exports.BINARY_EXTENSIONS = exports.PYPI_TYPOSQUAT_PATTERNS = exports.PYTHON_EXTENSIONS = exports.PYPI_INSTALL_HOOK_PATTERNS = exports.PYPI_SETUP_FILES = exports.PYPI_FILE_PATTERNS = exports.CAMPAIGN_PATTERNS = exports.MALICIOUS_PACKAGE_PATTERNS = exports.SUSPICIOUS_SCRIPTS = exports.SUSPICIOUS_FILES = exports.FILE_PATTERNS = exports.C2_DOMAIN_PATTERNS = exports.KNOWN_C2_WALLETS = exports.GLASSWORM_MARKERS = void 0;
 // ---------------------------------------------------------------------------
 // GlassWorm-specific IOCs
 // ---------------------------------------------------------------------------
@@ -409,6 +409,38 @@ exports.PYPI_FILE_PATTERNS = [
         severity: "high",
         rule: "PYPI_HOSTNAME_EXFIL",
     },
+    // Install command class override
+    {
+        name: "python-install-class-override",
+        pattern: "class\\s+\\w+\\s*\\(\\s*(?:install|develop|bdist_egg|egg_info|sdist)\\s*\\)",
+        description: "Custom command class inheriting from setuptools install/develop command",
+        severity: "medium",
+        rule: "PYPI_INSTALL_CLASS_OVERRIDE",
+    },
+    // marshal.loads (bytecode deserialization)
+    {
+        name: "python-marshal-loads",
+        pattern: "marshal\\.loads\\s*\\(",
+        description: "marshal.loads() detected (bytecode deserialization, common obfuscation)",
+        severity: "high",
+        rule: "PYPI_MARSHAL_LOADS",
+    },
+    // exec with marshal.loads
+    {
+        name: "python-exec-marshal",
+        pattern: "exec\\s*\\(\\s*marshal\\.loads\\s*\\(",
+        description: "exec(marshal.loads()) detected (executing deserialized bytecode payload)",
+        severity: "critical",
+        rule: "PYPI_EXEC_MARSHAL",
+    },
+    // base64.b64decode combined with exec (various arrangements on same line)
+    {
+        name: "python-b64decode-exec-combined",
+        pattern: "base64\\.b64decode\\s*\\([^)]*\\).*\\bexec\\b|\\bexec\\b.*base64\\.b64decode",
+        description: "base64.b64decode combined with exec on the same line (obfuscated execution)",
+        severity: "critical",
+        rule: "PYPI_B64_EXEC_COMBINED",
+    },
 ];
 /** Setup file names to check for install hooks */
 exports.PYPI_SETUP_FILES = new Set([
@@ -446,6 +478,13 @@ exports.PYPI_INSTALL_HOOK_PATTERNS = [
         severity: "low",
         rule: "PYPI_CUSTOM_SDIST",
     },
+    {
+        name: "setup-cmdclass-build-ext",
+        pattern: "cmdclass\\s*=\\s*\\{[^}]*['\"]build_ext['\"]",
+        description: "Custom build_ext command class detected (code runs during native extension build)",
+        severity: "low",
+        rule: "PYPI_CUSTOM_BUILD_EXT",
+    },
 ];
 /** Python file extensions to scan */
 exports.PYTHON_EXTENSIONS = new Set([
@@ -453,6 +492,22 @@ exports.PYTHON_EXTENSIONS = new Set([
     ".pyw",
     ".pyi",
 ]);
+/** Known typosquatted PyPI package name patterns */
+exports.PYPI_TYPOSQUAT_PATTERNS = [
+    // Typosquats of popular PyPI packages
+    "^(reqeusts|requsets|r3quests|reequests|requets)$",
+    "^(crypt0graphy|crytography|cryptograhpy)$",
+    "^(python-dateutill|python3-dateutil|py-dateutil)$",
+    "^(numppy|numpi|numpie)$",
+    "^(pandsa|pands)$",
+    "^(djang0|dajngo|djnago)$",
+    "^(urlib3|urllib33)$",
+    "^(colourama|colrama|coloram)$",
+    "^(setuptool|setuptoolss)$",
+    "^(flaskk|flaask|fl4sk)$",
+    // Very long single-word lowercase names
+    "^[a-z]{20,}$",
+];
 // ---------------------------------------------------------------------------
 // Binary / native addon detection (T-007)
 // ---------------------------------------------------------------------------

package/dist/patterns.js.map

@@ -1 +1 @@
-{"version":3,"file":"patterns.js","sourceRoot":"","sources":["../src/patterns.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;AAIH,8EAA8E;AAC9E,0BAA0B;AAC1B,8EAA8E;AAE9E,uCAAuC;AAC1B,QAAA,iBAAiB,GAAG,CAAC,iBAAiB,CAAC,CAAC;AAErD,0DAA0D;AAC7C,QAAA,gBAAgB,GAAa;AACxC,6DAA6D;AAC7D,0DAA0D;CAC3D,CAAC;AAEF,+CAA+C;AAClC,QAAA,kBAAkB,GAAa;IAC1C,qCAAqC;IACrC,gCAAgC;IAChC,iCAAiC;CAClC,CAAC;AAEF,8EAA8E;AAC9E,gCAAgC;AAChC,8EAA8E;AAEjE,QAAA,aAAa,GAAmB;IAC3C,mBAAmB;IACnB;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,iBAAiB;QAC1B,WAAW,EAAE,6CAA6C;QAC1D,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,kBAAkB;KACzB;IAED,kEAAkE;IAClE;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EACL,mHAAmH;QACrH,WAAW,EACT,+EAA+E;QACjF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IAED,6BAA6B;IAC7B;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,4BAA4B;QACrC,WAAW,EAAE,2DAA2D;QACxE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,WAAW;KAClB;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,qCAAqC;QAC9C,WAAW,EACT,sEAAsE;QACxE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,aAAa;KACpB;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,uCAAuC;QAChD,WAAW,EACT,oEAAoE;QACtE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,eAAe;KACtB;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,mEAAmE;QAC5E,WAAW,EAAE,2BAA2B;QACxC,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,UAAU;KACjB;IACD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EACL,iEAAiE;QACnE,WAAW,EAAE,4BAA4B;QACzC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,cAAc;KACrB;IAED,uBAAuB;IACvB;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,6BAA6B;QACtC,WAAW,EAAE,8DAA8D;QAC3E,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,+BAA+B;QACxC,WAAW,EACT,6DAA6D;QAC/D,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,YAAY;KACnB;IAED,uBAAuB;IACvB;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EACL,yCAAyC;QAC3C,WAAW,EAAE,yDAAyD;QACtE,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,WAAW;KAClB;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,mDAAmD;QACrD,WAAW,EACT,qEAAqE;QACvE,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,sBAAsB;KAC7B;IAED,uBAAuB;IACvB;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EACL,8EAA8E;QAChF,WAAW,EACT,uFAAuF;QACzF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,kBAAkB;KACzB;IACD;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,8BAA8B;QACvC,WAAW,EAAE,8CAA8C;QAC3D,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,kBAAkB;KACzB;CACF,CAAC;AAEF,8EAA8E;AAC9E,wBAAwB;AACxB,8EAA8E;AAE9E,8CAA8C;AACjC,QAAA,gBAAgB,GAKxB;IACH;QACE,OAAO,EAAE,UAAU;QACnB,WAAW,EACT,mEAAmE;QACrE,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IACD;QACE,OAAO,EAAE,eAAe;QACxB,WAAW,EACT,8EAA8E;QAChF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,sBAAsB;KAC7B;CACF,CAAC;AAEF,8EAA8E;AAC9E,yBAAyB;AACzB,8EAA8E;AAE9E,uDAAuD;AAC1C,QAAA,kBAAkB,GAAmB;IAChD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,uDAAuD;QACpE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,kBAAkB;KACzB;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,uDAAuD;QACpE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,kBAAkB;KACzB;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,mDAAmD;QAC5D,WAAW,EACT,gEAAgE;QAClE,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,0DAA0D;QACvE,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,gCAAgC;QACzC,WAAW,EAAE,4CAA4C;QACzD,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,wBAAwB;KAC/B;CACF,CAAC;AAEF,8EAA8E;AAC9E,4CAA4C;AAC5C,8EAA8E;AAE9E,uEAAuE;AAC1D,QAAA,0BAA0B,GAAa;IAClD,gCAAgC;IAChC,yCAAyC;IACzC,uCAAuC;IACvC,wBAAwB;IACxB,+BAA+B;IAE/B,8DAA8D;IAC9D,cAAc,EAAE,wCAAwC;IAExD,qDAAqD;IACrD,8GAA8G;CAC/G,CAAC;AAEF,8EAA8E;AAC9E,+DAA+D;AAC/D,8EAA8E;AAEjE,QAAA,iBAAiB,GAAmB;IAC/C,4CAA4C;IAC5C;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,YAAY;QACrB,WAAW,EACT,+EAA+E;QACjF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,cAAc;KACrB;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,YAAY;QACrB,WAAW,EACT,4FAA4F;QAC9F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,eAAe;KACtB;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EACL,yFAAyF;QAC3F,WAAW,EACT,uFAAuF;QACzF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,6EAA6E;QAC/E,WAAW,EACT,wGAAwG;QAC1G,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IAED,gCAAgC;IAChC;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EACL,kDAAkD;QACpD,WAAW,EACT,+FAA+F;QACjG,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EACL,2HAA2H;QAC7H,WAAW,EACT,6FAA6F;QAC/F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,eAAe;KACtB;IAED,8BAA8B;IAC9B;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EACT,sEAAsE;QACxE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,cAAc;KACrB;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,+BAA+B;QACxC,WAAW,EACT,8FAA8F;QAChG,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,sBAAsB;KAC7B;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EACL,6GAA6G;QAC/G,WAAW,EACT,gHAAgH;QAClH,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;KAC9B;IAED,8BAA8B;IAC9B;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EACL,yJAAyJ;QAC3J,WAAW,EACT,mFAAmF;QACrF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EACL,+FAA+F;QACjG,WAAW,EACT,gGAAgG;QAClG,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,wBAAwB;KAC/B;IAED,4BAA4B;IAC5B;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,WAAW;QACpB,WAAW,EACT,6FAA6F;QAC/F,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,4BAA4B;QAClC,OAAO,EACL,sGAAsG;QACxG,WAAW,EACT,gFAAgF;QAClF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,oBAAoB;KAC3B;CACF,CAAC;AAEF,8EAA8E;AAC9E,uDAAuD;AACvD,8EAA8E;AAE9E,+DAA+D;AAClD,QAAA,kBAAkB,GAAmB;IAChD,0CAA0C;IAC1C;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,oBAAoB;QAC7B,WAAW,EAAE,qFAAqF;QAClG,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,gEAAgE;QACzE,WAAW,EAAE,yFAAyF;QACtG,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IAED,oBAAoB;IACpB;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,8EAA8E;QACvF,WAAW,EAAE,0EAA0E;QACvF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,8EAA8E;QACvF,WAAW,EAAE,0EAA0E;QACvF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,mEAAmE;QAChF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IAED,0BAA0B;IAC1B;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,8CAA8C;QACvD,WAAW,EAAE,+EAA+E;QAC5F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,8CAA8C;QACvD,WAAW,EAAE,+DAA+D;QAC5E,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,oBAAoB;KAC3B;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,+CAA+C;QACxD,WAAW,EAAE,6DAA6D;QAC1E,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,qBAAqB;KAC5B;IAED,kCAAkC;IAClC;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,gFAAgF;QAC7F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,gCAAgC;QACzC,WAAW,EAAE,8DAA8D;QAC3E,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,qBAAqB;KAC5B;IAED,qCAAqC;IACrC;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,mFAAmF;QAC5F,WAAW,EAAE,4EAA4E;QACzF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,uBAAuB;KAC9B;IACD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,uEAAuE;QACpF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,qBAAqB;KAC5B;IAED,uCAAuC;IACvC;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,iEAAiE;QAC1E,WAAW,EAAE,wFAAwF;QACrG,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;KAC9B;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,gEAAgE;QACzE,WAAW,EAAE,kFAAkF;QAC/F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,qBAAqB;KAC5B;CACF,CAAC;AAEF,kDAAkD;AACrC,QAAA,gBAAgB,GAAG,IAAI,GAAG,CAAC;IACtC,UAAU;IACV,WAAW;IACX,gBAAgB;CACjB,CAAC,CAAC;AAEH,mDAAmD;AACtC,QAAA,0BAA0B,GAAmB;IACxD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,4CAA4C;QACrD,WAAW,EAAE,sEAAsE;QACnF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,qBAAqB;KAC5B;IACD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,4CAA4C;QACrD,WAAW,EAAE,yEAAyE;QACtF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,qBAAqB;KAC5B;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,6CAA6C;QACtD,WAAW,EAAE,uFAAuF;QACpG,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,sBAAsB;KAC7B;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,0CAA0C;QACnD,WAAW,EAAE,kFAAkF;QAC/F,QAAQ,EAAE,KAAK;QACf,IAAI,EAAE,mBAAmB;KAC1B;CACF,CAAC;AAEF,qCAAqC;AACxB,QAAA,iBAAiB,GAAG,IAAI,GAAG,CAAC;IACvC,KAAK;IACL,MAAM;IACN,MAAM;CACP,CAAC,CAAC;AAEH,8EAA8E;AAC9E,0CAA0C;AAC1C,8EAA8E;AAE9E,yDAAyD;AAC5C,QAAA,iBAAiB,GAAG,IAAI,GAAG,CAAC;IACvC,OAAO;IACP,KAAK;IACL,MAAM;IACN,QAAQ;IACR,MAAM;IACN,MAAM;CACP,CAAC,CAAC;AAEH,0EAA0E;AAC7D,QAAA,wBAAwB,GAAmB;IACtD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,yBAAyB;QAClC,WAAW,EAAE,kEAAkE;QAC/E,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,wBAAwB;KAC/B;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,8BAA8B;QACvC,WAAW,EAAE,sDAAsD;QACnE,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,yBAAyB;KAChC;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EACL,gEAAgE;QAClE,WAAW,EAAE,wDAAwD;QACrE,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,wBAAwB;KAC/B;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,qBAAqB;QAC9B,WAAW,EAAE,gDAAgD;QAC7D,QAAQ,EAAE,KAAK;QACf,IAAI,EAAE,uBAAuB;KAC9B;CACF,CAAC;AAEF,uDAAuD;AAC1C,QAAA,qBAAqB,GAAG,IAAI,GAAG,CAAC;IAC3C,gBAAgB;IAChB,OAAO;IACP,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,SAAS;IACT,WAAW;IACX,UAAU;IACV,SAAS;IACT,cAAc;IACd,KAAK;IACL,WAAW;IACX,OAAO;IACP,iBAAiB;IACjB,QAAQ;IACR,UAAU;IACV,YAAY;IACZ,gBAAgB;IAChB,cAAc;IACd,WAAW;IACX,UAAU;IACV,cAAc;IACd,SAAS;IACT,eAAe;IACf,WAAW;IACX,MAAM;IACN,QAAQ;IACR,KAAK;IACL,kBAAkB;IAClB,YAAY;CACb,CAAC,CAAC;AAEH,8EAA8E;AAC9E,oDAAoD;AACpD,8EAA8E;AAEjE,QAAA,qBAAqB,GAAmB;IACnD,0CAA0C;IAC1C;QACE,IAAI,EAAE,0BAA0B;QAChC,OAAO,EACL,4FAA4F;QAC9F,WAAW,EACT,gHAAgH;QAClH,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;KAC9B;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EACL,4EAA4E;QAC9E,WAAW,EACT,qFAAqF;QACvF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,sBAAsB;KAC7B;IAED,wBAAwB;IACxB;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EACL,8BAA8B;QAChC,WAAW,EACT,sGAAsG;QACxG,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,wBAAwB;KAC/B;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,+MAA+M;QACjN,WAAW,EACT,qFAAqF;QACvF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,6GAA6G;QAC/G,WAAW,EACT,uFAAuF;QACzF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,8DAA8D;QAChE,WAAW,EACT,0EAA0E;QAC5E,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,mBAAmB;KAC1B;IAED,mCAAmC;IACnC;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,qFAAqF;QACvF,WAAW,EACT,0GAA0G;QAC5G,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,2BAA2B;KAClC;IAED,qEAAqE;IACrE;QACE,IAAI,EAAE,gCAAgC;QACtC,OAAO,EACL,6JAA6J;QAC/J,WAAW,EACT,oHAAoH;QACtH,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,6BAA6B;KACpC;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,uGAAuG;QACzG,WAAW,EACT,gHAAgH;QAClH,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,4BAA4B;KACnC;CACF,CAAC;AAEF,8EAA8E;AAC9E,0BAA0B;AAC1B,8EAA8E;AAEjE,QAAA,oBAAoB,GAAG,IAAI,GAAG,CAAC;IAC1C,KAAK;IACL,KAAK;IACL,MAAM;IACN,MAAM;IACN,MAAM;IACN,MAAM;IACN,KAAK;IACL,KAAK;IACL,OAAO;IACP,OAAO;IACP,MAAM;IACN,OAAO;IACP,OAAO;CACR,CAAC,CAAC;AAEH,gFAAgF;AACnE,QAAA,aAAa,GAAG,CAAC,GAAG,IAAI,GAAG,IAAI,CAAC,CAAC,OAAO"}
+{"version":3,"file":"patterns.js","sourceRoot":"","sources":["../src/patterns.ts"],"names":[],"mappings":";AAAA;;;;;GAKG;;;AAIH,8EAA8E;AAC9E,0BAA0B;AAC1B,8EAA8E;AAE9E,uCAAuC;AAC1B,QAAA,iBAAiB,GAAG,CAAC,iBAAiB,CAAC,CAAC;AAErD,0DAA0D;AAC7C,QAAA,gBAAgB,GAAa;AACxC,6DAA6D;AAC7D,0DAA0D;CAC3D,CAAC;AAEF,+CAA+C;AAClC,QAAA,kBAAkB,GAAa;IAC1C,qCAAqC;IACrC,gCAAgC;IAChC,iCAAiC;CAClC,CAAC;AAEF,8EAA8E;AAC9E,gCAAgC;AAChC,8EAA8E;AAEjE,QAAA,aAAa,GAAmB;IAC3C,mBAAmB;IACnB;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,iBAAiB;QAC1B,WAAW,EAAE,6CAA6C;QAC1D,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,kBAAkB;KACzB;IAED,kEAAkE;IAClE;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EACL,mHAAmH;QACrH,WAAW,EACT,+EAA+E;QACjF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IAED,6BAA6B;IAC7B;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,4BAA4B;QACrC,WAAW,EAAE,2DAA2D;QACxE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,WAAW;KAClB;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,qCAAqC;QAC9C,WAAW,EACT,sEAAsE;QACxE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,aAAa;KACpB;IACD;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EAAE,uCAAuC;QAChD,WAAW,EACT,oEAAoE;QACtE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,eAAe;KACtB;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,mEAAmE;QAC5E,WAAW,EAAE,2BAA2B;QACxC,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,UAAU;KACjB;IACD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EACL,iEAAiE;QACnE,WAAW,EAAE,4BAA4B;QACzC,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,cAAc;KACrB;IAED,uBAAuB;IACvB;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,6BAA6B;QACtC,WAAW,EAAE,8DAA8D;QAC3E,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,YAAY;QAClB,OAAO,EAAE,+BAA+B;QACxC,WAAW,EACT,6DAA6D;QAC/D,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,YAAY;KACnB;IAED,uBAAuB;IACvB;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EACL,yCAAyC;QAC3C,WAAW,EAAE,yDAAyD;QACtE,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,WAAW;KAClB;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,mDAAmD;QACrD,WAAW,EACT,qEAAqE;QACvE,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,sBAAsB;KAC7B;IAED,uBAAuB;IACvB;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EACL,8EAA8E;QAChF,WAAW,EACT,uFAAuF;QACzF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,kBAAkB;KACzB;IACD;QACE,IAAI,EAAE,WAAW;QACjB,OAAO,EAAE,8BAA8B;QACvC,WAAW,EAAE,8CAA8C;QAC3D,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,kBAAkB;KACzB;CACF,CAAC;AAEF,8EAA8E;AAC9E,wBAAwB;AACxB,8EAA8E;AAE9E,8CAA8C;AACjC,QAAA,gBAAgB,GAKxB;IACH;QACE,OAAO,EAAE,UAAU;QACnB,WAAW,EACT,mEAAmE;QACrE,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IACD;QACE,OAAO,EAAE,eAAe;QACxB,WAAW,EACT,8EAA8E;QAChF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,sBAAsB;KAC7B;CACF,CAAC;AAEF,8EAA8E;AAC9E,yBAAyB;AACzB,8EAA8E;AAE9E,uDAAuD;AAC1C,QAAA,kBAAkB,GAAmB;IAChD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,uDAAuD;QACpE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,kBAAkB;KACzB;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,uDAAuD;QACpE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,kBAAkB;KACzB;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EAAE,mDAAmD;QAC5D,WAAW,EACT,gEAAgE;QAClE,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,0DAA0D;QACvE,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,gCAAgC;QACzC,WAAW,EAAE,4CAA4C;QACzD,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,wBAAwB;KAC/B;CACF,CAAC;AAEF,8EAA8E;AAC9E,4CAA4C;AAC5C,8EAA8E;AAE9E,uEAAuE;AAC1D,QAAA,0BAA0B,GAAa;IAClD,gCAAgC;IAChC,yCAAyC;IACzC,uCAAuC;IACvC,wBAAwB;IACxB,+BAA+B;IAE/B,8DAA8D;IAC9D,cAAc,EAAE,wCAAwC;IAExD,qDAAqD;IACrD,8GAA8G;CAC/G,CAAC;AAEF,8EAA8E;AAC9E,+DAA+D;AAC/D,8EAA8E;AAEjE,QAAA,iBAAiB,GAAmB;IAC/C,4CAA4C;IAC5C;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,YAAY;QACrB,WAAW,EACT,+EAA+E;QACjF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,cAAc;KACrB;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EAAE,YAAY;QACrB,WAAW,EACT,4FAA4F;QAC9F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,eAAe;KACtB;IACD;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EACL,yFAAyF;QAC3F,WAAW,EACT,uFAAuF;QACzF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,6EAA6E;QAC/E,WAAW,EACT,wGAAwG;QAC1G,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IAED,gCAAgC;IAChC;QACE,IAAI,EAAE,mBAAmB;QACzB,OAAO,EACL,kDAAkD;QACpD,WAAW,EACT,+FAA+F;QACjG,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,eAAe;QACrB,OAAO,EACL,2HAA2H;QAC7H,WAAW,EACT,6FAA6F;QAC/F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,eAAe;KACtB;IAED,8BAA8B;IAC9B;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,kBAAkB;QAC3B,WAAW,EACT,sEAAsE;QACxE,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,cAAc;KACrB;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,+BAA+B;QACxC,WAAW,EACT,8FAA8F;QAChG,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,sBAAsB;KAC7B;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EACL,6GAA6G;QAC/G,WAAW,EACT,gHAAgH;QAClH,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;KAC9B;IAED,8BAA8B;IAC9B;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EACL,yJAAyJ;QAC3J,WAAW,EACT,mFAAmF;QACrF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,8BAA8B;QACpC,OAAO,EACL,+FAA+F;QACjG,WAAW,EACT,gGAAgG;QAClG,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,wBAAwB;KAC/B;IAED,4BAA4B;IAC5B;QACE,IAAI,EAAE,gBAAgB;QACtB,OAAO,EAAE,WAAW;QACpB,WAAW,EACT,6FAA6F;QAC/F,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,4BAA4B;QAClC,OAAO,EACL,sGAAsG;QACxG,WAAW,EACT,gFAAgF;QAClF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,oBAAoB;KAC3B;CACF,CAAC;AAEF,8EAA8E;AAC9E,uDAAuD;AACvD,8EAA8E;AAE9E,+DAA+D;AAClD,QAAA,kBAAkB,GAAmB;IAChD,0CAA0C;IAC1C;QACE,IAAI,EAAE,iBAAiB;QACvB,OAAO,EAAE,oBAAoB;QAC7B,WAAW,EAAE,qFAAqF;QAClG,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,gBAAgB;KACvB;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,gEAAgE;QACzE,WAAW,EAAE,yFAAyF;QACtG,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,iBAAiB;KACxB;IAED,oBAAoB;IACpB;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,8EAA8E;QACvF,WAAW,EAAE,0EAA0E;QACvF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,8EAA8E;QACvF,WAAW,EAAE,0EAA0E;QACvF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,+BAA+B;QACxC,WAAW,EAAE,mEAAmE;QAChF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IAED,0BAA0B;IAC1B;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,8CAA8C;QACvD,WAAW,EAAE,+EAA+E;QAC5F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,8CAA8C;QACvD,WAAW,EAAE,+DAA+D;QAC5E,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,oBAAoB;KAC3B;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,+CAA+C;QACxD,WAAW,EAAE,6DAA6D;QAC1E,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,qBAAqB;KAC5B;IAED,kCAAkC;IAClC;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,gFAAgF;QAC7F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,gCAAgC;QACzC,WAAW,EAAE,8DAA8D;QAC3E,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,qBAAqB;KAC5B;IAED,qCAAqC;IACrC;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,mFAAmF;QAC5F,WAAW,EAAE,4EAA4E;QACzF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,uBAAuB;KAC9B;IACD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,mCAAmC;QAC5C,WAAW,EAAE,uEAAuE;QACpF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,qBAAqB;KAC5B;IAED,uCAAuC;IACvC;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,iEAAiE;QAC1E,WAAW,EAAE,wFAAwF;QACrG,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;KAC9B;IACD;QACE,IAAI,EAAE,uBAAuB;QAC7B,OAAO,EAAE,gEAAgE;QACzE,WAAW,EAAE,kFAAkF;QAC/F,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,qBAAqB;KAC5B;IAED,iCAAiC;IACjC;QACE,IAAI,EAAE,+BAA+B;QACrC,OAAO,EAAE,6EAA6E;QACtF,WAAW,EAAE,yEAAyE;QACtF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,6BAA6B;KACpC;IAED,2CAA2C;IAC3C;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,wBAAwB;QACjC,WAAW,EAAE,yEAAyE;QACtF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,oBAAoB;KAC3B;IAED,0BAA0B;IAC1B;QACE,IAAI,EAAE,qBAAqB;QAC3B,OAAO,EAAE,uCAAuC;QAChD,WAAW,EAAE,0EAA0E;QACvF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,mBAAmB;KAC1B;IAED,0EAA0E;IAC1E;QACE,IAAI,EAAE,gCAAgC;QACtC,OAAO,EAAE,8EAA8E;QACvF,WAAW,EAAE,6EAA6E;QAC1F,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,wBAAwB;KAC/B;CACF,CAAC;AAEF,kDAAkD;AACrC,QAAA,gBAAgB,GAAG,IAAI,GAAG,CAAC;IACtC,UAAU;IACV,WAAW;IACX,gBAAgB;CACjB,CAAC,CAAC;AAEH,mDAAmD;AACtC,QAAA,0BAA0B,GAAmB;IACxD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,4CAA4C;QACrD,WAAW,EAAE,sEAAsE;QACnF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,qBAAqB;KAC5B;IACD;QACE,IAAI,EAAE,wBAAwB;QAC9B,OAAO,EAAE,4CAA4C;QACrD,WAAW,EAAE,yEAAyE;QACtF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,qBAAqB;KAC5B;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EAAE,6CAA6C;QACtD,WAAW,EAAE,uFAAuF;QACpG,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,sBAAsB;KAC7B;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EAAE,0CAA0C;QACnD,WAAW,EAAE,kFAAkF;QAC/F,QAAQ,EAAE,KAAK;QACf,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,0BAA0B;QAChC,OAAO,EAAE,8CAA8C;QACvD,WAAW,EAAE,mFAAmF;QAChG,QAAQ,EAAE,KAAK;QACf,IAAI,EAAE,uBAAuB;KAC9B;CACF,CAAC;AAEF,qCAAqC;AACxB,QAAA,iBAAiB,GAAG,IAAI,GAAG,CAAC;IACvC,KAAK;IACL,MAAM;IACN,MAAM;CACP,CAAC,CAAC;AAEH,oDAAoD;AACvC,QAAA,uBAAuB,GAAa;IAC/C,sCAAsC;IACtC,kDAAkD;IAClD,2CAA2C;IAC3C,mDAAmD;IACnD,yBAAyB;IACzB,kBAAkB;IAClB,0BAA0B;IAC1B,qBAAqB;IACrB,+BAA+B;IAC/B,2BAA2B;IAC3B,yBAAyB;IACzB,wCAAwC;IACxC,cAAc;CACf,CAAC;AAEF,8EAA8E;AAC9E,0CAA0C;AAC1C,8EAA8E;AAE9E,yDAAyD;AAC5C,QAAA,iBAAiB,GAAG,IAAI,GAAG,CAAC;IACvC,OAAO;IACP,KAAK;IACL,MAAM;IACN,QAAQ;IACR,MAAM;IACN,MAAM;CACP,CAAC,CAAC;AAEH,0EAA0E;AAC7D,QAAA,wBAAwB,GAAmB;IACtD;QACE,IAAI,EAAE,cAAc;QACpB,OAAO,EAAE,yBAAyB;QAClC,WAAW,EAAE,kEAAkE;QAC/E,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,wBAAwB;KAC/B;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,8BAA8B;QACvC,WAAW,EAAE,sDAAsD;QACnE,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,yBAAyB;KAChC;IACD;QACE,IAAI,EAAE,sBAAsB;QAC5B,OAAO,EACL,gEAAgE;QAClE,WAAW,EAAE,wDAAwD;QACrE,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,wBAAwB;KAC/B;IACD;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EAAE,qBAAqB;QAC9B,WAAW,EAAE,gDAAgD;QAC7D,QAAQ,EAAE,KAAK;QACf,IAAI,EAAE,uBAAuB;KAC9B;CACF,CAAC;AAEF,uDAAuD;AAC1C,QAAA,qBAAqB,GAAG,IAAI,GAAG,CAAC;IAC3C,gBAAgB;IAChB,OAAO;IACP,QAAQ;IACR,QAAQ;IACR,QAAQ;IACR,SAAS;IACT,WAAW;IACX,UAAU;IACV,SAAS;IACT,cAAc;IACd,KAAK;IACL,WAAW;IACX,OAAO;IACP,iBAAiB;IACjB,QAAQ;IACR,UAAU;IACV,YAAY;IACZ,gBAAgB;IAChB,cAAc;IACd,WAAW;IACX,UAAU;IACV,cAAc;IACd,SAAS;IACT,eAAe;IACf,WAAW;IACX,MAAM;IACN,QAAQ;IACR,KAAK;IACL,kBAAkB;IAClB,YAAY;CACb,CAAC,CAAC;AAEH,8EAA8E;AAC9E,oDAAoD;AACpD,8EAA8E;AAEjE,QAAA,qBAAqB,GAAmB;IACnD,0CAA0C;IAC1C;QACE,IAAI,EAAE,0BAA0B;QAChC,OAAO,EACL,4FAA4F;QAC9F,WAAW,EACT,gHAAgH;QAClH,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,uBAAuB;KAC9B;IACD;QACE,IAAI,EAAE,yBAAyB;QAC/B,OAAO,EACL,4EAA4E;QAC9E,WAAW,EACT,qFAAqF;QACvF,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,sBAAsB;KAC7B;IAED,wBAAwB;IACxB;QACE,IAAI,EAAE,kBAAkB;QACxB,OAAO,EACL,8BAA8B;QAChC,WAAW,EACT,sGAAsG;QACxG,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,wBAAwB;KAC/B;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,+MAA+M;QACjN,WAAW,EACT,qFAAqF;QACvF,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,6GAA6G;QAC/G,WAAW,EACT,uFAAuF;QACzF,QAAQ,EAAE,MAAM;QAChB,IAAI,EAAE,mBAAmB;KAC1B;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,8DAA8D;QAChE,WAAW,EACT,0EAA0E;QAC5E,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,mBAAmB;KAC1B;IAED,mCAAmC;IACnC;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,qFAAqF;QACvF,WAAW,EACT,0GAA0G;QAC5G,QAAQ,EAAE,QAAQ;QAClB,IAAI,EAAE,2BAA2B;KAClC;IAED,qEAAqE;IACrE;QACE,IAAI,EAAE,gCAAgC;QACtC,OAAO,EACL,6JAA6J;QAC/J,WAAW,EACT,oHAAoH;QACtH,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,6BAA6B;KACpC;IACD;QACE,IAAI,EAAE,oBAAoB;QAC1B,OAAO,EACL,uGAAuG;QACzG,WAAW,EACT,gHAAgH;QAClH,QAAQ,EAAE,UAAU;QACpB,IAAI,EAAE,4BAA4B;KACnC;CACF,CAAC;AAEF,8EAA8E;AAC9E,0BAA0B;AAC1B,8EAA8E;AAEjE,QAAA,oBAAoB,GAAG,IAAI,GAAG,CAAC;IAC1C,KAAK;IACL,KAAK;IACL,MAAM;IACN,MAAM;IACN,MAAM;IACN,MAAM;IACN,KAAK;IACL,KAAK;IACL,OAAO;IACP,OAAO;IACP,MAAM;IACN,OAAO;IACP,OAAO;CACR,CAAC,CAAC;AAEH,gFAAgF;AACnE,QAAA,aAAa,GAAG,CAAC,GAAG,IAAI,GAAG,IAAI,CAAC,CAAC,OAAO"}