vaspera 2.8.0 → 2.9.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +109 -7
- package/README.md +111 -7
- package/dist/__tests__/agents/adversary/tactics/api.test.d.ts +5 -0
- package/dist/__tests__/agents/adversary/tactics/api.test.d.ts.map +1 -0
- package/dist/__tests__/agents/adversary/tactics/api.test.js +369 -0
- package/dist/__tests__/agents/adversary/tactics/api.test.js.map +1 -0
- package/dist/__tests__/agents/adversary/tactics/llm.test.d.ts +5 -0
- package/dist/__tests__/agents/adversary/tactics/llm.test.d.ts.map +1 -0
- package/dist/__tests__/agents/adversary/tactics/llm.test.js +409 -0
- package/dist/__tests__/agents/adversary/tactics/llm.test.js.map +1 -0
- package/dist/__tests__/agents/adversary/tactics/registry.test.d.ts +7 -0
- package/dist/__tests__/agents/adversary/tactics/registry.test.d.ts.map +1 -0
- package/dist/__tests__/agents/adversary/tactics/registry.test.js +74 -0
- package/dist/__tests__/agents/adversary/tactics/registry.test.js.map +1 -0
- package/dist/__tests__/agents/adversary/tactics/web-app.test.d.ts +7 -0
- package/dist/__tests__/agents/adversary/tactics/web-app.test.d.ts.map +1 -0
- package/dist/__tests__/agents/adversary/tactics/web-app.test.js +374 -0
- package/dist/__tests__/agents/adversary/tactics/web-app.test.js.map +1 -0
- package/dist/__tests__/compliance-bundle.test.d.ts +9 -0
- package/dist/__tests__/compliance-bundle.test.d.ts.map +1 -0
- package/dist/__tests__/compliance-bundle.test.js +344 -0
- package/dist/__tests__/compliance-bundle.test.js.map +1 -0
- package/dist/__tests__/healthcare-compliance.test.d.ts +9 -0
- package/dist/__tests__/healthcare-compliance.test.d.ts.map +1 -0
- package/dist/__tests__/healthcare-compliance.test.js +233 -0
- package/dist/__tests__/healthcare-compliance.test.js.map +1 -0
- package/dist/action/diff-mode.d.ts +124 -8
- package/dist/action/diff-mode.d.ts.map +1 -1
- package/dist/action/diff-mode.js +384 -65
- package/dist/action/diff-mode.js.map +1 -1
- package/dist/action/diff-mode.test.js +3 -3
- package/dist/action/diff-mode.test.js.map +1 -1
- package/dist/action/pr-comment.test.js +1 -0
- package/dist/action/pr-comment.test.js.map +1 -1
- package/dist/action/sarif-upload.test.js +1 -0
- package/dist/action/sarif-upload.test.js.map +1 -1
- package/dist/agents/adversary/config.d.ts +25 -4
- package/dist/agents/adversary/config.d.ts.map +1 -1
- package/dist/agents/adversary/config.js +38 -8
- package/dist/agents/adversary/config.js.map +1 -1
- package/dist/agents/adversary/index.d.ts +7 -0
- package/dist/agents/adversary/index.d.ts.map +1 -1
- package/dist/agents/adversary/index.js +83 -1
- package/dist/agents/adversary/index.js.map +1 -1
- package/dist/agents/adversary/reporting/compliance-mapper.d.ts +108 -0
- package/dist/agents/adversary/reporting/compliance-mapper.d.ts.map +1 -0
- package/dist/agents/adversary/reporting/compliance-mapper.js +391 -0
- package/dist/agents/adversary/reporting/compliance-mapper.js.map +1 -0
- package/dist/agents/adversary/reporting/index.d.ts +10 -0
- package/dist/agents/adversary/reporting/index.d.ts.map +1 -0
- package/dist/agents/adversary/reporting/index.js +10 -0
- package/dist/agents/adversary/reporting/index.js.map +1 -0
- package/dist/agents/adversary/reporting/poc-generator.d.ts +44 -0
- package/dist/agents/adversary/reporting/poc-generator.d.ts.map +1 -0
- package/dist/agents/adversary/reporting/poc-generator.js +308 -0
- package/dist/agents/adversary/reporting/poc-generator.js.map +1 -0
- package/dist/agents/adversary/tactics/api.d.ts +13 -0
- package/dist/agents/adversary/tactics/api.d.ts.map +1 -0
- package/dist/agents/adversary/tactics/api.js +815 -0
- package/dist/agents/adversary/tactics/api.js.map +1 -0
- package/dist/agents/adversary/tactics/auth.d.ts +13 -0
- package/dist/agents/adversary/tactics/auth.d.ts.map +1 -0
- package/dist/agents/adversary/tactics/auth.js +676 -0
- package/dist/agents/adversary/tactics/auth.js.map +1 -0
- package/dist/agents/adversary/tactics/index.d.ts +129 -0
- package/dist/agents/adversary/tactics/index.d.ts.map +1 -0
- package/dist/agents/adversary/tactics/index.js +199 -0
- package/dist/agents/adversary/tactics/index.js.map +1 -0
- package/dist/agents/adversary/tactics/infra.d.ts +13 -0
- package/dist/agents/adversary/tactics/infra.d.ts.map +1 -0
- package/dist/agents/adversary/tactics/infra.js +827 -0
- package/dist/agents/adversary/tactics/infra.js.map +1 -0
- package/dist/agents/adversary/tactics/injection.d.ts +12 -0
- package/dist/agents/adversary/tactics/injection.d.ts.map +1 -0
- package/dist/agents/adversary/tactics/injection.js +549 -0
- package/dist/agents/adversary/tactics/injection.js.map +1 -0
- package/dist/agents/adversary/tactics/llm.d.ts +13 -0
- package/dist/agents/adversary/tactics/llm.d.ts.map +1 -0
- package/dist/agents/adversary/tactics/llm.js +767 -0
- package/dist/agents/adversary/tactics/llm.js.map +1 -0
- package/dist/agents/adversary/tactics/web-app.d.ts +13 -0
- package/dist/agents/adversary/tactics/web-app.d.ts.map +1 -0
- package/dist/agents/adversary/tactics/web-app.js +717 -0
- package/dist/agents/adversary/tactics/web-app.js.map +1 -0
- package/dist/agents/adversary/types.d.ts +66 -10
- package/dist/agents/adversary/types.d.ts.map +1 -1
- package/dist/agents/zero-day-hunter.d.ts +1 -1
- package/dist/agents/zero-day-hunter.d.ts.map +1 -1
- package/dist/analysis/data-flow.d.ts +154 -0
- package/dist/analysis/data-flow.d.ts.map +1 -0
- package/dist/analysis/data-flow.js +393 -0
- package/dist/analysis/data-flow.js.map +1 -0
- package/dist/analysis/index.d.ts +9 -0
- package/dist/analysis/index.d.ts.map +1 -0
- package/dist/analysis/index.js +9 -0
- package/dist/analysis/index.js.map +1 -0
- package/dist/badge-service/index.d.ts +144 -0
- package/dist/badge-service/index.d.ts.map +1 -0
- package/dist/badge-service/index.js +206 -0
- package/dist/badge-service/index.js.map +1 -0
- package/dist/certification/types.d.ts +1 -1
- package/dist/certification/types.d.ts.map +1 -1
- package/dist/certification/types.js.map +1 -1
- package/dist/commands/certification/certify.d.ts.map +1 -1
- package/dist/commands/certification/certify.js +18 -4
- package/dist/commands/certification/certify.js.map +1 -1
- package/dist/compliance/attestation.d.ts +39 -0
- package/dist/compliance/attestation.d.ts.map +1 -0
- package/dist/compliance/attestation.js +364 -0
- package/dist/compliance/attestation.js.map +1 -0
- package/dist/compliance/cfr42-part2.d.ts +42 -0
- package/dist/compliance/cfr42-part2.d.ts.map +1 -0
- package/dist/compliance/cfr42-part2.js +408 -0
- package/dist/compliance/cfr42-part2.js.map +1 -0
- package/dist/compliance/compliance-bundle.d.ts +100 -0
- package/dist/compliance/compliance-bundle.d.ts.map +1 -0
- package/dist/compliance/compliance-bundle.js +210 -0
- package/dist/compliance/compliance-bundle.js.map +1 -0
- package/dist/compliance/healthcare-bundle.d.ts +68 -0
- package/dist/compliance/healthcare-bundle.d.ts.map +1 -0
- package/dist/compliance/healthcare-bundle.js +104 -0
- package/dist/compliance/healthcare-bundle.js.map +1 -0
- package/dist/compliance/hipaa.d.ts.map +1 -1
- package/dist/compliance/hipaa.js +14 -11
- package/dist/compliance/hipaa.js.map +1 -1
- package/dist/compliance/index.d.ts +10 -2
- package/dist/compliance/index.d.ts.map +1 -1
- package/dist/compliance/index.js +9 -3
- package/dist/compliance/index.js.map +1 -1
- package/dist/compliance/mapper.d.ts.map +1 -1
- package/dist/compliance/mapper.js +3 -17
- package/dist/compliance/mapper.js.map +1 -1
- package/dist/compliance/nist-800-53.d.ts +22 -6
- package/dist/compliance/nist-800-53.d.ts.map +1 -1
- package/dist/compliance/nist-800-53.js +264 -272
- package/dist/compliance/nist-800-53.js.map +1 -1
- package/dist/compliance/report.d.ts +31 -2
- package/dist/compliance/report.d.ts.map +1 -1
- package/dist/compliance/report.js +255 -4
- package/dist/compliance/report.js.map +1 -1
- package/dist/compliance/types.d.ts +1 -1
- package/dist/compliance/types.d.ts.map +1 -1
- package/dist/config/flags.d.ts +12 -12
- package/dist/cost/index.d.ts +1 -1
- package/dist/cost/index.d.ts.map +1 -1
- package/dist/cost/index.js +1 -1
- package/dist/cost/index.js.map +1 -1
- package/dist/cost/tracker.d.ts +64 -0
- package/dist/cost/tracker.d.ts.map +1 -1
- package/dist/cost/tracker.js +165 -0
- package/dist/cost/tracker.js.map +1 -1
- package/dist/eval/fixtures/healthcare/audit-gaps.d.ts +28 -0
- package/dist/eval/fixtures/healthcare/audit-gaps.d.ts.map +1 -0
- package/dist/eval/fixtures/healthcare/audit-gaps.js +90 -0
- package/dist/eval/fixtures/healthcare/audit-gaps.js.map +1 -0
- package/dist/eval/fixtures/healthcare/consent-bypass.d.ts +31 -0
- package/dist/eval/fixtures/healthcare/consent-bypass.d.ts.map +1 -0
- package/dist/eval/fixtures/healthcare/consent-bypass.js +61 -0
- package/dist/eval/fixtures/healthcare/consent-bypass.js.map +1 -0
- package/dist/eval/fixtures/healthcare/phi-in-logs.d.ts +24 -0
- package/dist/eval/fixtures/healthcare/phi-in-logs.d.ts.map +1 -0
- package/dist/eval/fixtures/healthcare/phi-in-logs.js +41 -0
- package/dist/eval/fixtures/healthcare/phi-in-logs.js.map +1 -0
- package/dist/evidence/collector.d.ts +21 -0
- package/dist/evidence/collector.d.ts.map +1 -0
- package/dist/evidence/collector.js +340 -0
- package/dist/evidence/collector.js.map +1 -0
- package/dist/evidence/index.d.ts +11 -0
- package/dist/evidence/index.d.ts.map +1 -0
- package/dist/evidence/index.js +12 -0
- package/dist/evidence/index.js.map +1 -0
- package/dist/evidence/store.d.ts +39 -0
- package/dist/evidence/store.d.ts.map +1 -0
- package/dist/evidence/store.js +173 -0
- package/dist/evidence/store.js.map +1 -0
- package/dist/evidence/types.d.ts +175 -0
- package/dist/evidence/types.d.ts.map +1 -0
- package/dist/evidence/types.js +9 -0
- package/dist/evidence/types.js.map +1 -0
- package/dist/exporters/checkmarx.d.ts +18 -0
- package/dist/exporters/checkmarx.d.ts.map +1 -0
- package/dist/exporters/checkmarx.js +203 -0
- package/dist/exporters/checkmarx.js.map +1 -0
- package/dist/exporters/index.d.ts +22 -0
- package/dist/exporters/index.d.ts.map +1 -0
- package/dist/exporters/index.js +41 -0
- package/dist/exporters/index.js.map +1 -0
- package/dist/exporters/snyk.d.ts +18 -0
- package/dist/exporters/snyk.d.ts.map +1 -0
- package/dist/exporters/snyk.js +119 -0
- package/dist/exporters/snyk.js.map +1 -0
- package/dist/exporters/sonarqube.d.ts +18 -0
- package/dist/exporters/sonarqube.d.ts.map +1 -0
- package/dist/exporters/sonarqube.js +125 -0
- package/dist/exporters/sonarqube.js.map +1 -0
- package/dist/exporters/types.d.ts +190 -0
- package/dist/exporters/types.d.ts.map +1 -0
- package/dist/exporters/types.js +9 -0
- package/dist/exporters/types.js.map +1 -0
- package/dist/frontier/index.d.ts +12 -0
- package/dist/frontier/index.d.ts.map +1 -0
- package/dist/frontier/index.js +12 -0
- package/dist/frontier/index.js.map +1 -0
- package/dist/frontier/orchestrator.d.ts +73 -0
- package/dist/frontier/orchestrator.d.ts.map +1 -0
- package/dist/frontier/orchestrator.js +312 -0
- package/dist/frontier/orchestrator.js.map +1 -0
- package/dist/frontier/providers/stub.d.ts +32 -0
- package/dist/frontier/providers/stub.d.ts.map +1 -0
- package/dist/frontier/providers/stub.js +66 -0
- package/dist/frontier/providers/stub.js.map +1 -0
- package/dist/frontier/types.d.ts +318 -0
- package/dist/frontier/types.d.ts.map +1 -0
- package/dist/frontier/types.js +27 -0
- package/dist/frontier/types.js.map +1 -0
- package/dist/history/index.d.ts +13 -0
- package/dist/history/index.d.ts.map +1 -0
- package/dist/history/index.js +15 -0
- package/dist/history/index.js.map +1 -0
- package/dist/history/store.d.ts +74 -0
- package/dist/history/store.d.ts.map +1 -0
- package/dist/history/store.js +399 -0
- package/dist/history/store.js.map +1 -0
- package/dist/history/types.d.ts +282 -0
- package/dist/history/types.d.ts.map +1 -0
- package/dist/history/types.js +41 -0
- package/dist/history/types.js.map +1 -0
- package/dist/history/verify.d.ts +44 -0
- package/dist/history/verify.d.ts.map +1 -0
- package/dist/history/verify.js +230 -0
- package/dist/history/verify.js.map +1 -0
- package/dist/index.d.ts.map +1 -1
- package/dist/index.js +515 -19
- package/dist/index.js.map +1 -1
- package/dist/multimodel/index.d.ts +1 -0
- package/dist/multimodel/index.d.ts.map +1 -1
- package/dist/multimodel/index.js +2 -0
- package/dist/multimodel/index.js.map +1 -1
- package/dist/multimodel/leaderboard.d.ts +116 -0
- package/dist/multimodel/leaderboard.d.ts.map +1 -0
- package/dist/multimodel/leaderboard.js +262 -0
- package/dist/multimodel/leaderboard.js.map +1 -0
- package/dist/observability/otel.d.ts.map +1 -1
- package/dist/observability/otel.js +1 -3
- package/dist/observability/otel.js.map +1 -1
- package/dist/plugins/loader.js +1 -1
- package/dist/plugins/loader.js.map +1 -1
- package/dist/scanners/agent/agent-chain-analysis.d.ts +152 -0
- package/dist/scanners/agent/agent-chain-analysis.d.ts.map +1 -0
- package/dist/scanners/agent/agent-chain-analysis.js +438 -0
- package/dist/scanners/agent/agent-chain-analysis.js.map +1 -0
- package/dist/scanners/agent/payloads/index.d.ts +2 -1
- package/dist/scanners/agent/payloads/index.d.ts.map +1 -1
- package/dist/scanners/agent/payloads/index.js +25 -6
- package/dist/scanners/agent/payloads/index.js.map +1 -1
- package/dist/scanners/agent/prompt-injection-fuzzer.d.ts.map +1 -1
- package/dist/scanners/agent/prompt-injection-fuzzer.js +14 -0
- package/dist/scanners/agent/prompt-injection-fuzzer.js.map +1 -1
- package/dist/scanners/agent/types.d.ts +5 -5
- package/dist/scanners/agent/types.d.ts.map +1 -1
- package/dist/scanners/agent/types.js.map +1 -1
- package/dist/scanners/cache.d.ts +156 -0
- package/dist/scanners/cache.d.ts.map +1 -0
- package/dist/scanners/cache.js +462 -0
- package/dist/scanners/cache.js.map +1 -0
- package/dist/scanners/dependencies.js +4 -4
- package/dist/scanners/dependencies.js.map +1 -1
- package/dist/scanners/gosec.d.ts.map +1 -1
- package/dist/scanners/gosec.js +47 -9
- package/dist/scanners/gosec.js.map +1 -1
- package/dist/scanners/healthcare.d.ts +29 -0
- package/dist/scanners/healthcare.d.ts.map +1 -0
- package/dist/scanners/healthcare.js +526 -0
- package/dist/scanners/healthcare.js.map +1 -0
- package/dist/scanners/index.d.ts +1 -0
- package/dist/scanners/index.d.ts.map +1 -1
- package/dist/scanners/index.js +33 -0
- package/dist/scanners/index.js.map +1 -1
- package/dist/scanners/index.test.js +6 -6
- package/dist/scanners/index.test.js.map +1 -1
- package/dist/scanners/secrets.js +4 -4
- package/dist/scanners/secrets.js.map +1 -1
- package/dist/scanners/semgrep.js +5 -5
- package/dist/scanners/semgrep.js.map +1 -1
- package/dist/scanners/types.d.ts +1 -1
- package/dist/scanners/types.d.ts.map +1 -1
- package/dist/scanners/types.js +1 -0
- package/dist/scanners/types.js.map +1 -1
- package/dist/scanners/typescript.test.js +1 -1
- package/dist/scanners/typescript.test.js.map +1 -1
- package/dist/telemetry/index.d.ts +10 -0
- package/dist/telemetry/index.d.ts.map +1 -0
- package/dist/telemetry/index.js +10 -0
- package/dist/telemetry/index.js.map +1 -0
- package/dist/telemetry/registry.d.ts +178 -0
- package/dist/telemetry/registry.d.ts.map +1 -0
- package/dist/telemetry/registry.js +297 -0
- package/dist/telemetry/registry.js.map +1 -0
- package/dist/telemetry/usage.d.ts +197 -0
- package/dist/telemetry/usage.d.ts.map +1 -0
- package/dist/telemetry/usage.js +252 -0
- package/dist/telemetry/usage.js.map +1 -0
- package/package.json +2 -6
|
@@ -0,0 +1,374 @@
|
|
|
1
|
+
/**
|
|
2
|
+
* Tests for Web Application Tactics Module
|
|
3
|
+
*
|
|
4
|
+
* @module __tests__/agents/adversary/tactics/web-app
|
|
5
|
+
*/
|
|
6
|
+
import { describe, it, expect } from "vitest";
|
|
7
|
+
import { webAppTactic } from "../../../../agents/adversary/tactics/web-app.js";
|
|
8
|
+
// ============================================================================
|
|
9
|
+
// Test Helpers
|
|
10
|
+
// ============================================================================
|
|
11
|
+
function createFileContext(content, relativePath = "test.tsx") {
|
|
12
|
+
return {
|
|
13
|
+
path: `/project/${relativePath}`,
|
|
14
|
+
relativePath,
|
|
15
|
+
content,
|
|
16
|
+
language: "typescript",
|
|
17
|
+
lines: content.split("\n"),
|
|
18
|
+
};
|
|
19
|
+
}
|
|
20
|
+
function createConfig() {
|
|
21
|
+
return {
|
|
22
|
+
model: "claude-sonnet-4-20250514",
|
|
23
|
+
aggressiveness: "active",
|
|
24
|
+
focusAreas: ["web-app"],
|
|
25
|
+
maxAnalysisTime: 300000,
|
|
26
|
+
generatePoC: true,
|
|
27
|
+
};
|
|
28
|
+
}
|
|
29
|
+
// ============================================================================
|
|
30
|
+
// XSS Tests
|
|
31
|
+
// ============================================================================
|
|
32
|
+
describe("Web App Tactics - XSS Detection", () => {
|
|
33
|
+
const config = createConfig();
|
|
34
|
+
it("should detect stored XSS via dangerouslySetInnerHTML", async () => {
|
|
35
|
+
const code = `
|
|
36
|
+
export function Comment({ data }) {
|
|
37
|
+
return (
|
|
38
|
+
<div dangerouslySetInnerHTML={{ __html: data.comment }} />
|
|
39
|
+
);
|
|
40
|
+
}`;
|
|
41
|
+
const file = createFileContext(code, "components/Comment.tsx");
|
|
42
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
43
|
+
expect(findings.length).toBeGreaterThan(0);
|
|
44
|
+
const xssFindings = findings.filter((f) => f.patternId === "xss-stored-dangerouslysetinnerhtml");
|
|
45
|
+
expect(xssFindings.length).toBeGreaterThan(0);
|
|
46
|
+
expect(xssFindings[0].severity).toBe("critical");
|
|
47
|
+
expect(xssFindings[0].cweIds).toContain("CWE-79");
|
|
48
|
+
});
|
|
49
|
+
it("should not flag sanitized dangerouslySetInnerHTML", async () => {
|
|
50
|
+
const code = `
|
|
51
|
+
import DOMPurify from 'dompurify';
|
|
52
|
+
|
|
53
|
+
export function Comment({ data }) {
|
|
54
|
+
return (
|
|
55
|
+
<div dangerouslySetInnerHTML={{ __html: DOMPurify.sanitize(data.comment) }} />
|
|
56
|
+
);
|
|
57
|
+
}`;
|
|
58
|
+
const file = createFileContext(code, "components/Comment.tsx");
|
|
59
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
60
|
+
const xssFindings = findings.filter((f) => f.patternId === "xss-stored-dangerouslysetinnerhtml");
|
|
61
|
+
expect(xssFindings.length).toBe(0);
|
|
62
|
+
});
|
|
63
|
+
it("should detect stored XSS via innerHTML", async () => {
|
|
64
|
+
const code = `
|
|
65
|
+
function renderComment(comment) {
|
|
66
|
+
const div = document.getElementById('comment');
|
|
67
|
+
div.innerHTML = req.body.commentText;
|
|
68
|
+
}`;
|
|
69
|
+
const file = createFileContext(code, "public/script.js");
|
|
70
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
71
|
+
const xssFindings = findings.filter((f) => f.patternId === "xss-stored-innerhtml");
|
|
72
|
+
expect(xssFindings.length).toBeGreaterThan(0);
|
|
73
|
+
expect(xssFindings[0].severity).toBe("critical");
|
|
74
|
+
});
|
|
75
|
+
it("should detect reflected XSS via query parameter", async () => {
|
|
76
|
+
const code = `
|
|
77
|
+
app.get('/search', (req, res) => {
|
|
78
|
+
res.send('<h1>Results for: ' + req.query.q + '</h1>');
|
|
79
|
+
});`;
|
|
80
|
+
const file = createFileContext(code, "routes/search.ts");
|
|
81
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
82
|
+
const xssFindings = findings.filter((f) => f.patternId === "xss-reflected-query-param");
|
|
83
|
+
expect(xssFindings.length).toBeGreaterThan(0);
|
|
84
|
+
expect(xssFindings[0].severity).toBe("high");
|
|
85
|
+
});
|
|
86
|
+
it("should detect DOM XSS via location.hash", async () => {
|
|
87
|
+
const code = `
|
|
88
|
+
function updateContent() {
|
|
89
|
+
document.getElementById('content').innerHTML = location.hash.slice(1);
|
|
90
|
+
}`;
|
|
91
|
+
const file = createFileContext(code, "public/app.js");
|
|
92
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
93
|
+
const xssFindings = findings.filter((f) => f.patternId === "xss-dom-location-hash");
|
|
94
|
+
expect(xssFindings.length).toBeGreaterThan(0);
|
|
95
|
+
expect(xssFindings[0].severity).toBe("high");
|
|
96
|
+
});
|
|
97
|
+
it("should detect DOM XSS via postMessage", async () => {
|
|
98
|
+
const code = `
|
|
99
|
+
window.addEventListener('message', (event) => {
|
|
100
|
+
document.body.innerHTML = event.data;
|
|
101
|
+
});`;
|
|
102
|
+
const file = createFileContext(code, "public/iframe.js");
|
|
103
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
104
|
+
const xssFindings = findings.filter((f) => f.patternId === "xss-dom-postmessage");
|
|
105
|
+
expect(xssFindings.length).toBeGreaterThan(0);
|
|
106
|
+
expect(xssFindings[0].severity).toBe("high");
|
|
107
|
+
});
|
|
108
|
+
});
|
|
109
|
+
// ============================================================================
|
|
110
|
+
// CSRF Tests
|
|
111
|
+
// ============================================================================
|
|
112
|
+
describe("Web App Tactics - CSRF Detection", () => {
|
|
113
|
+
const config = createConfig();
|
|
114
|
+
it("should detect missing CSRF token on POST endpoint", async () => {
|
|
115
|
+
const code = `
|
|
116
|
+
router.post('/api/profile/update', async (req, res) => {
|
|
117
|
+
await db.users.update({ id: req.user.id, email: req.body.email });
|
|
118
|
+
res.json({ success: true });
|
|
119
|
+
});`;
|
|
120
|
+
const file = createFileContext(code, "routes/profile.ts");
|
|
121
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
122
|
+
const csrfFindings = findings.filter((f) => f.patternId === "csrf-missing-token");
|
|
123
|
+
expect(csrfFindings.length).toBeGreaterThan(0);
|
|
124
|
+
expect(csrfFindings[0].severity).toBe("high");
|
|
125
|
+
expect(csrfFindings[0].cweIds).toContain("CWE-352");
|
|
126
|
+
});
|
|
127
|
+
it("should not flag endpoint with CSRF protection", async () => {
|
|
128
|
+
const code = `
|
|
129
|
+
router.post('/api/profile/update', csrfProtection, async (req, res) => {
|
|
130
|
+
if (!req.csrfToken()) return res.status(403).end();
|
|
131
|
+
await db.users.update({ id: req.user.id, email: req.body.email });
|
|
132
|
+
res.json({ success: true });
|
|
133
|
+
});`;
|
|
134
|
+
const file = createFileContext(code, "routes/profile.ts");
|
|
135
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
136
|
+
const csrfFindings = findings.filter((f) => f.patternId === "csrf-missing-token");
|
|
137
|
+
expect(csrfFindings.length).toBe(0);
|
|
138
|
+
});
|
|
139
|
+
it("should detect disabled CSRF protection", async () => {
|
|
140
|
+
const code = `
|
|
141
|
+
app.use(csrf({ csrf: false }));`;
|
|
142
|
+
const file = createFileContext(code, "middleware/security.ts");
|
|
143
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
144
|
+
const csrfFindings = findings.filter((f) => f.patternId === "csrf-disabled");
|
|
145
|
+
expect(csrfFindings.length).toBeGreaterThan(0);
|
|
146
|
+
});
|
|
147
|
+
it("should detect SameSite=None cookies", async () => {
|
|
148
|
+
const code = `
|
|
149
|
+
res.cookie('session', token, {
|
|
150
|
+
httpOnly: true,
|
|
151
|
+
secure: true,
|
|
152
|
+
sameSite: 'none'
|
|
153
|
+
});`;
|
|
154
|
+
const file = createFileContext(code, "auth/session.ts");
|
|
155
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
156
|
+
const csrfFindings = findings.filter((f) => f.patternId === "csrf-samesite-none");
|
|
157
|
+
expect(csrfFindings.length).toBeGreaterThan(0);
|
|
158
|
+
expect(csrfFindings[0].severity).toBe("medium");
|
|
159
|
+
});
|
|
160
|
+
});
|
|
161
|
+
// ============================================================================
|
|
162
|
+
// Clickjacking Tests
|
|
163
|
+
// ============================================================================
|
|
164
|
+
describe("Web App Tactics - Clickjacking Detection", () => {
|
|
165
|
+
const config = createConfig();
|
|
166
|
+
it("should detect missing X-Frame-Options", async () => {
|
|
167
|
+
const code = `
|
|
168
|
+
app.use(helmet({
|
|
169
|
+
contentSecurityPolicy: true,
|
|
170
|
+
hsts: true
|
|
171
|
+
}));`;
|
|
172
|
+
const file = createFileContext(code, "middleware/security.ts");
|
|
173
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
174
|
+
const clickjackingFindings = findings.filter((f) => f.patternId === "clickjacking-no-frame-options");
|
|
175
|
+
expect(clickjackingFindings.length).toBeGreaterThan(0);
|
|
176
|
+
expect(clickjackingFindings[0].severity).toBe("medium");
|
|
177
|
+
expect(clickjackingFindings[0].cweIds).toContain("CWE-1021");
|
|
178
|
+
});
|
|
179
|
+
it("should detect disabled frameguard", async () => {
|
|
180
|
+
const code = `
|
|
181
|
+
app.use(helmet({
|
|
182
|
+
frameguard: false
|
|
183
|
+
}));`;
|
|
184
|
+
const file = createFileContext(code, "middleware/security.ts");
|
|
185
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
186
|
+
const clickjackingFindings = findings.filter((f) => f.patternId === "clickjacking-frame-options-disabled");
|
|
187
|
+
expect(clickjackingFindings.length).toBeGreaterThan(0);
|
|
188
|
+
});
|
|
189
|
+
});
|
|
190
|
+
// ============================================================================
|
|
191
|
+
// Open Redirect Tests
|
|
192
|
+
// ============================================================================
|
|
193
|
+
describe("Web App Tactics - Open Redirect Detection", () => {
|
|
194
|
+
const config = createConfig();
|
|
195
|
+
it("should detect open redirect via query parameter", async () => {
|
|
196
|
+
const code = `
|
|
197
|
+
app.get('/redirect', (req, res) => {
|
|
198
|
+
res.redirect(req.query.url);
|
|
199
|
+
});`;
|
|
200
|
+
const file = createFileContext(code, "routes/redirect.ts");
|
|
201
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
202
|
+
const redirectFindings = findings.filter((f) => f.patternId === "open-redirect-query-param");
|
|
203
|
+
expect(redirectFindings.length).toBeGreaterThan(0);
|
|
204
|
+
expect(redirectFindings[0].severity).toBe("medium");
|
|
205
|
+
expect(redirectFindings[0].cweIds).toContain("CWE-601");
|
|
206
|
+
});
|
|
207
|
+
it("should not flag whitelisted redirects", async () => {
|
|
208
|
+
const code = `
|
|
209
|
+
app.get('/redirect', (req, res) => {
|
|
210
|
+
const url = req.query.url;
|
|
211
|
+
if (allowedUrls.includes(url)) {
|
|
212
|
+
res.redirect(url);
|
|
213
|
+
}
|
|
214
|
+
});`;
|
|
215
|
+
const file = createFileContext(code, "routes/redirect.ts");
|
|
216
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
217
|
+
const redirectFindings = findings.filter((f) => f.patternId === "open-redirect-query-param");
|
|
218
|
+
expect(redirectFindings.length).toBe(0);
|
|
219
|
+
});
|
|
220
|
+
it("should detect post-login open redirect", async () => {
|
|
221
|
+
const code = `
|
|
222
|
+
async function login(req, res) {
|
|
223
|
+
await authenticateUser(req.body);
|
|
224
|
+
res.redirect(req.query.returnUrl);
|
|
225
|
+
}`;
|
|
226
|
+
const file = createFileContext(code, "auth/login.ts");
|
|
227
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
228
|
+
const redirectFindings = findings.filter((f) => f.patternId === "open-redirect-post-login");
|
|
229
|
+
expect(redirectFindings.length).toBeGreaterThan(0);
|
|
230
|
+
expect(redirectFindings[0].severity).toBe("high");
|
|
231
|
+
});
|
|
232
|
+
});
|
|
233
|
+
// ============================================================================
|
|
234
|
+
// CORS Tests
|
|
235
|
+
// ============================================================================
|
|
236
|
+
describe("Web App Tactics - CORS Misconfiguration Detection", () => {
|
|
237
|
+
const config = createConfig();
|
|
238
|
+
it("should detect reflected origin in CORS", async () => {
|
|
239
|
+
const code = `
|
|
240
|
+
app.use((req, res, next) => {
|
|
241
|
+
res.setHeader('Access-Control-Allow-Origin', req.headers.origin);
|
|
242
|
+
next();
|
|
243
|
+
});`;
|
|
244
|
+
const file = createFileContext(code, "middleware/cors.ts");
|
|
245
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
246
|
+
const corsFindings = findings.filter((f) => f.patternId === "cors-reflect-origin");
|
|
247
|
+
expect(corsFindings.length).toBeGreaterThan(0);
|
|
248
|
+
expect(corsFindings[0].severity).toBe("high");
|
|
249
|
+
expect(corsFindings[0].cweIds).toContain("CWE-942");
|
|
250
|
+
});
|
|
251
|
+
it("should detect null origin allowed", async () => {
|
|
252
|
+
const code = `
|
|
253
|
+
res.setHeader('Access-Control-Allow-Origin', 'null');`;
|
|
254
|
+
const file = createFileContext(code, "api/cors.ts");
|
|
255
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
256
|
+
const corsFindings = findings.filter((f) => f.patternId === "cors-null-origin");
|
|
257
|
+
expect(corsFindings.length).toBeGreaterThan(0);
|
|
258
|
+
});
|
|
259
|
+
it("should detect wildcard with credentials", async () => {
|
|
260
|
+
const code = `
|
|
261
|
+
res.setHeader('Access-Control-Allow-Origin', '*');
|
|
262
|
+
res.setHeader('Access-Control-Allow-Credentials', 'true');`;
|
|
263
|
+
const file = createFileContext(code, "api/public.ts");
|
|
264
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
265
|
+
const corsFindings = findings.filter((f) => f.patternId === "cors-wildcard-credentials");
|
|
266
|
+
expect(corsFindings.length).toBeGreaterThan(0);
|
|
267
|
+
expect(corsFindings[0].severity).toBe("high");
|
|
268
|
+
});
|
|
269
|
+
});
|
|
270
|
+
// ============================================================================
|
|
271
|
+
// PoC Generation Tests
|
|
272
|
+
// ============================================================================
|
|
273
|
+
describe("Web App Tactics - PoC Generation", () => {
|
|
274
|
+
const config = createConfig();
|
|
275
|
+
it("should generate PoC for stored XSS", async () => {
|
|
276
|
+
const code = `<div dangerouslySetInnerHTML={{ __html: props.comment }} />`;
|
|
277
|
+
const file = createFileContext(code, "components/Comment.tsx");
|
|
278
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
279
|
+
const xssFinding = findings.find((f) => f.patternId === "xss-stored-dangerouslysetinnerhtml");
|
|
280
|
+
expect(xssFinding).toBeDefined();
|
|
281
|
+
if (xssFinding) {
|
|
282
|
+
const poc = await webAppTactic.generatePoC(xssFinding);
|
|
283
|
+
expect(poc).toBeDefined();
|
|
284
|
+
expect(poc?.steps.length).toBeGreaterThan(0);
|
|
285
|
+
expect(poc?.payload).toBeDefined();
|
|
286
|
+
expect(poc?.safeTestInstructions).toBeDefined();
|
|
287
|
+
}
|
|
288
|
+
});
|
|
289
|
+
it("should generate PoC for CSRF", async () => {
|
|
290
|
+
const code = `router.post('/api/transfer', async (req, res) => {
|
|
291
|
+
await transfer(req.body);
|
|
292
|
+
});`;
|
|
293
|
+
const file = createFileContext(code, "routes/banking.ts");
|
|
294
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
295
|
+
const csrfFinding = findings.find((f) => f.patternId === "csrf-missing-token");
|
|
296
|
+
expect(csrfFinding).toBeDefined();
|
|
297
|
+
if (csrfFinding) {
|
|
298
|
+
const poc = await webAppTactic.generatePoC(csrfFinding);
|
|
299
|
+
expect(poc).toBeDefined();
|
|
300
|
+
expect(poc?.steps.length).toBeGreaterThan(0);
|
|
301
|
+
expect(poc?.payload).toContain("form");
|
|
302
|
+
}
|
|
303
|
+
});
|
|
304
|
+
it("should generate PoC for open redirect", async () => {
|
|
305
|
+
const code = `res.redirect(req.query.next);`;
|
|
306
|
+
const file = createFileContext(code, "auth/callback.ts");
|
|
307
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
308
|
+
const redirectFinding = findings.find((f) => f.patternId === "open-redirect-query-param");
|
|
309
|
+
expect(redirectFinding).toBeDefined();
|
|
310
|
+
if (redirectFinding) {
|
|
311
|
+
const poc = await webAppTactic.generatePoC(redirectFinding);
|
|
312
|
+
expect(poc).toBeDefined();
|
|
313
|
+
expect(poc?.steps.length).toBeGreaterThan(0);
|
|
314
|
+
expect(poc?.expectedResult.toLowerCase()).toContain("redirect");
|
|
315
|
+
}
|
|
316
|
+
});
|
|
317
|
+
});
|
|
318
|
+
// ============================================================================
|
|
319
|
+
// False Positive Tests
|
|
320
|
+
// ============================================================================
|
|
321
|
+
describe("Web App Tactics - False Positive Filtering", () => {
|
|
322
|
+
const config = createConfig();
|
|
323
|
+
it("should skip test files", async () => {
|
|
324
|
+
const code = `
|
|
325
|
+
test('should render comment', () => {
|
|
326
|
+
const html = '<script>alert(1)</script>';
|
|
327
|
+
element.innerHTML = html;
|
|
328
|
+
});`;
|
|
329
|
+
const file = createFileContext(code, "components/Comment.test.tsx");
|
|
330
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
331
|
+
expect(findings.length).toBe(0);
|
|
332
|
+
});
|
|
333
|
+
it("should skip comments", async () => {
|
|
334
|
+
const code = `
|
|
335
|
+
// Example: dangerouslySetInnerHTML={{ __html: userContent }}
|
|
336
|
+
// This would be vulnerable if used in production`;
|
|
337
|
+
const file = createFileContext(code, "docs/security.ts");
|
|
338
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
339
|
+
expect(findings.length).toBe(0);
|
|
340
|
+
});
|
|
341
|
+
it("should skip sanitized content", async () => {
|
|
342
|
+
const code = `
|
|
343
|
+
const sanitized = sanitizeHtml(userInput);
|
|
344
|
+
element.innerHTML = sanitized;`;
|
|
345
|
+
const file = createFileContext(code, "utils/dom.ts");
|
|
346
|
+
const findings = await webAppTactic.analyzeFile(file, config);
|
|
347
|
+
const xssFindings = findings.filter((f) => f.patternId.startsWith("xss-"));
|
|
348
|
+
expect(xssFindings.length).toBe(0);
|
|
349
|
+
});
|
|
350
|
+
});
|
|
351
|
+
// ============================================================================
|
|
352
|
+
// Prompt Enhancement Tests
|
|
353
|
+
// ============================================================================
|
|
354
|
+
describe("Web App Tactics - Prompt Enhancement", () => {
|
|
355
|
+
it("should provide comprehensive prompt enhancement", () => {
|
|
356
|
+
const enhancement = webAppTactic.getPromptEnhancement();
|
|
357
|
+
expect(enhancement).toContain("XSS");
|
|
358
|
+
expect(enhancement).toContain("CSRF");
|
|
359
|
+
expect(enhancement).toContain("Clickjacking");
|
|
360
|
+
expect(enhancement).toContain("Open Redirect");
|
|
361
|
+
expect(enhancement).toContain("CORS");
|
|
362
|
+
expect(enhancement).toContain("sanitization");
|
|
363
|
+
expect(enhancement).toContain("encoding");
|
|
364
|
+
});
|
|
365
|
+
it("should specify relevant file patterns", () => {
|
|
366
|
+
const patterns = webAppTactic.getRelevantFilePatterns();
|
|
367
|
+
expect(patterns).toContain("**/components/**");
|
|
368
|
+
expect(patterns).toContain("**/pages/**");
|
|
369
|
+
expect(patterns).toContain("**/*.tsx");
|
|
370
|
+
expect(patterns).toContain("**/*.jsx");
|
|
371
|
+
expect(patterns).toContain("**/*.vue");
|
|
372
|
+
});
|
|
373
|
+
});
|
|
374
|
+
//# sourceMappingURL=web-app.test.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"web-app.test.js","sourceRoot":"","sources":["../../../../../src/__tests__/agents/adversary/tactics/web-app.test.ts"],"names":[],"mappings":"AAAA;;;;GAIG;AAEH,OAAO,EAAE,QAAQ,EAAE,EAAE,EAAE,MAAM,EAAE,MAAM,QAAQ,CAAC;AAC9C,OAAO,EAAE,YAAY,EAAE,MAAM,iDAAiD,CAAC;AAI/E,+EAA+E;AAC/E,eAAe;AACf,+EAA+E;AAE/E,SAAS,iBAAiB,CAAC,OAAe,EAAE,eAAuB,UAAU;IAC3E,OAAO;QACL,IAAI,EAAE,YAAY,YAAY,EAAE;QAChC,YAAY;QACZ,OAAO;QACP,QAAQ,EAAE,YAAY;QACtB,KAAK,EAAE,OAAO,CAAC,KAAK,CAAC,IAAI,CAAC;KAC3B,CAAC;AACJ,CAAC;AAED,SAAS,YAAY;IACnB,OAAO;QACL,KAAK,EAAE,0BAA0B;QACjC,cAAc,EAAE,QAAQ;QACxB,UAAU,EAAE,CAAC,SAAS,CAAC;QACvB,eAAe,EAAE,MAAM;QACvB,WAAW,EAAE,IAAI;KAClB,CAAC;AACJ,CAAC;AAED,+EAA+E;AAC/E,YAAY;AACZ,+EAA+E;AAE/E,QAAQ,CAAC,iCAAiC,EAAE,GAAG,EAAE;IAC/C,MAAM,MAAM,GAAG,YAAY,EAAE,CAAC;IAE9B,EAAE,CAAC,sDAAsD,EAAE,KAAK,IAAI,EAAE;QACpE,MAAM,IAAI,GAAG;;;;;EAKf,CAAC;QAEC,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,wBAAwB,CAAC,CAAC;QAC/D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC3C,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,oCAAoC,CAAC,CAAC;QACjG,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QACjD,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,QAAQ,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;QACjE,MAAM,IAAI,GAAG;;;;;;;EAOf,CAAC;QAEC,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,wBAAwB,CAAC,CAAC;QAC/D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,oCAAoC,CAAC,CAAC;QACjG,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACrC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;QACtD,MAAM,IAAI,GAAG;;;;EAIf,CAAC;QAEC,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,kBAAkB,CAAC,CAAC;QACzD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,sBAAsB,CAAC,CAAC;QACnF,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;IACnD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,iDAAiD,EAAE,KAAK,IAAI,EAAE;QAC/D,MAAM,IAAI,GAAG;;;IAGb,CAAC;QAED,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,kBAAkB,CAAC,CAAC;QACzD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,2BAA2B,CAAC,CAAC;QACxF,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;QACvD,MAAM,IAAI,GAAG;;;EAGf,CAAC;QAEC,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,eAAe,CAAC,CAAC;QACtD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,uBAAuB,CAAC,CAAC;QACpF,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uCAAuC,EAAE,KAAK,IAAI,EAAE;QACrD,MAAM,IAAI,GAAG;;;IAGb,CAAC;QAED,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,kBAAkB,CAAC,CAAC;QACzD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,qBAAqB,CAAC,CAAC;QAClF,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC9C,MAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAC/C,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,+EAA+E;AAC/E,aAAa;AACb,+EAA+E;AAE/E,QAAQ,CAAC,kCAAkC,EAAE,GAAG,EAAE;IAChD,MAAM,MAAM,GAAG,YAAY,EAAE,CAAC;IAE9B,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;QACjE,MAAM,IAAI,GAAG;;;;IAIb,CAAC;QAED,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,mBAAmB,CAAC,CAAC;QAC1D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,YAAY,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,oBAAoB,CAAC,CAAC;QAClF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC/C,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC9C,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;IACtD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,+CAA+C,EAAE,KAAK,IAAI,EAAE;QAC7D,MAAM,IAAI,GAAG;;;;;IAKb,CAAC;QAED,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,mBAAmB,CAAC,CAAC;QAC1D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,YAAY,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,oBAAoB,CAAC,CAAC;QAClF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACtC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;QACtD,MAAM,IAAI,GAAG;gCACe,CAAC;QAE7B,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,wBAAwB,CAAC,CAAC;QAC/D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,YAAY,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,eAAe,CAAC,CAAC;QAC7E,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;IACjD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,qCAAqC,EAAE,KAAK,IAAI,EAAE;QACnD,MAAM,IAAI,GAAG;;;;;IAKb,CAAC;QAED,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,iBAAiB,CAAC,CAAC;QACxD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,YAAY,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,oBAAoB,CAAC,CAAC;QAClF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC/C,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAClD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,+EAA+E;AAC/E,qBAAqB;AACrB,+EAA+E;AAE/E,QAAQ,CAAC,0CAA0C,EAAE,GAAG,EAAE;IACxD,MAAM,MAAM,GAAG,YAAY,EAAE,CAAC;IAE9B,EAAE,CAAC,uCAAuC,EAAE,KAAK,IAAI,EAAE;QACrD,MAAM,IAAI,GAAG;;;;KAIZ,CAAC;QAEF,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,wBAAwB,CAAC,CAAC;QAC/D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,oBAAoB,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,+BAA+B,CAAC,CAAC;QACrG,MAAM,CAAC,oBAAoB,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QACvD,MAAM,CAAC,oBAAoB,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACxD,MAAM,CAAC,oBAAoB,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAC/D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mCAAmC,EAAE,KAAK,IAAI,EAAE;QACjD,MAAM,IAAI,GAAG;;;KAGZ,CAAC;QAEF,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,wBAAwB,CAAC,CAAC;QAC/D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,oBAAoB,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,qCAAqC,CAAC,CAAC;QAC3G,MAAM,CAAC,oBAAoB,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;IACzD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,+EAA+E;AAC/E,sBAAsB;AACtB,+EAA+E;AAE/E,QAAQ,CAAC,2CAA2C,EAAE,GAAG,EAAE;IACzD,MAAM,MAAM,GAAG,YAAY,EAAE,CAAC;IAE9B,EAAE,CAAC,iDAAiD,EAAE,KAAK,IAAI,EAAE;QAC/D,MAAM,IAAI,GAAG;;;IAGb,CAAC;QAED,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,oBAAoB,CAAC,CAAC;QAC3D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,gBAAgB,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,2BAA2B,CAAC,CAAC;QAC7F,MAAM,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QACnD,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;QACpD,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;IAC1D,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uCAAuC,EAAE,KAAK,IAAI,EAAE;QACrD,MAAM,IAAI,GAAG;;;;;;IAMb,CAAC;QAED,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,oBAAoB,CAAC,CAAC;QAC3D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,gBAAgB,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,2BAA2B,CAAC,CAAC;QAC7F,MAAM,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAC1C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;QACtD,MAAM,IAAI,GAAG;;;;EAIf,CAAC;QAEC,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,eAAe,CAAC,CAAC;QACtD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,gBAAgB,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,0BAA0B,CAAC,CAAC;QAC5F,MAAM,CAAC,gBAAgB,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QACnD,MAAM,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IACpD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,+EAA+E;AAC/E,aAAa;AACb,+EAA+E;AAE/E,QAAQ,CAAC,mDAAmD,EAAE,GAAG,EAAE;IACjE,MAAM,MAAM,GAAG,YAAY,EAAE,CAAC;IAE9B,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;QACtD,MAAM,IAAI,GAAG;;;;IAIb,CAAC;QAED,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,oBAAoB,CAAC,CAAC;QAC3D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,YAAY,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,qBAAqB,CAAC,CAAC;QACnF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC/C,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;QAC9C,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,SAAS,CAAC,SAAS,CAAC,CAAC;IACtD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,mCAAmC,EAAE,KAAK,IAAI,EAAE;QACjD,MAAM,IAAI,GAAG;sDACqC,CAAC;QAEnD,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,aAAa,CAAC,CAAC;QACpD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,YAAY,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,kBAAkB,CAAC,CAAC;QAChF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;IACjD,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;QACvD,MAAM,IAAI,GAAG;;2DAE0C,CAAC;QAExD,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,eAAe,CAAC,CAAC;QACtD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,YAAY,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,2BAA2B,CAAC,CAAC;QACzF,MAAM,CAAC,YAAY,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;QAC/C,MAAM,CAAC,YAAY,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,CAAC,IAAI,CAAC,MAAM,CAAC,CAAC;IAChD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,+EAA+E;AAC/E,uBAAuB;AACvB,+EAA+E;AAE/E,QAAQ,CAAC,kCAAkC,EAAE,GAAG,EAAE;IAChD,MAAM,MAAM,GAAG,YAAY,EAAE,CAAC;IAE9B,EAAE,CAAC,oCAAoC,EAAE,KAAK,IAAI,EAAE;QAClD,MAAM,IAAI,GAAG,6DAA6D,CAAC;QAC3E,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,wBAAwB,CAAC,CAAC;QAC/D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,UAAU,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,oCAAoC,CAAC,CAAC;QAC9F,MAAM,CAAC,UAAU,CAAC,CAAC,WAAW,EAAE,CAAC;QAEjC,IAAI,UAAU,EAAE,CAAC;YACf,MAAM,GAAG,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,UAAU,CAAC,CAAC;YACvD,MAAM,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,CAAC;YAC1B,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;YAC7C,MAAM,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC,WAAW,EAAE,CAAC;YACnC,MAAM,CAAC,GAAG,EAAE,oBAAoB,CAAC,CAAC,WAAW,EAAE,CAAC;QAClD,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,8BAA8B,EAAE,KAAK,IAAI,EAAE;QAC5C,MAAM,IAAI,GAAG;;IAEb,CAAC;QACD,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,mBAAmB,CAAC,CAAC;QAC1D,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,WAAW,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,oBAAoB,CAAC,CAAC;QAC/E,MAAM,CAAC,WAAW,CAAC,CAAC,WAAW,EAAE,CAAC;QAElC,IAAI,WAAW,EAAE,CAAC;YAChB,MAAM,GAAG,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,WAAW,CAAC,CAAC;YACxD,MAAM,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,CAAC;YAC1B,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;YAC7C,MAAM,CAAC,GAAG,EAAE,OAAO,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;QACzC,CAAC;IACH,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uCAAuC,EAAE,KAAK,IAAI,EAAE;QACrD,MAAM,IAAI,GAAG,+BAA+B,CAAC;QAC7C,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,kBAAkB,CAAC,CAAC;QACzD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,eAAe,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,2BAA2B,CAAC,CAAC;QAC1F,MAAM,CAAC,eAAe,CAAC,CAAC,WAAW,EAAE,CAAC;QAEtC,IAAI,eAAe,EAAE,CAAC;YACpB,MAAM,GAAG,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC;YAC5D,MAAM,CAAC,GAAG,CAAC,CAAC,WAAW,EAAE,CAAC;YAC1B,MAAM,CAAC,GAAG,EAAE,KAAK,CAAC,MAAM,CAAC,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC;YAC7C,MAAM,CAAC,GAAG,EAAE,cAAc,CAAC,WAAW,EAAE,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QAClE,CAAC;IACH,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,+EAA+E;AAC/E,uBAAuB;AACvB,+EAA+E;AAE/E,QAAQ,CAAC,4CAA4C,EAAE,GAAG,EAAE;IAC1D,MAAM,MAAM,GAAG,YAAY,EAAE,CAAC;IAE9B,EAAE,CAAC,wBAAwB,EAAE,KAAK,IAAI,EAAE;QACtC,MAAM,IAAI,GAAG;;;;IAIb,CAAC;QAED,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,6BAA6B,CAAC,CAAC;QACpE,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,sBAAsB,EAAE,KAAK,IAAI,EAAE;QACpC,MAAM,IAAI,GAAG;;kDAEiC,CAAC;QAE/C,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,kBAAkB,CAAC,CAAC;QACzD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IAClC,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,+BAA+B,EAAE,KAAK,IAAI,EAAE;QAC7C,MAAM,IAAI,GAAG;;+BAEc,CAAC;QAE5B,MAAM,IAAI,GAAG,iBAAiB,CAAC,IAAI,EAAE,cAAc,CAAC,CAAC;QACrD,MAAM,QAAQ,GAAG,MAAM,YAAY,CAAC,WAAW,CAAC,IAAI,EAAE,MAAM,CAAC,CAAC;QAE9D,MAAM,WAAW,GAAG,QAAQ,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,MAAM,CAAC,CAAC,CAAC;QAC3E,MAAM,CAAC,WAAW,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC;IACrC,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC;AAEH,+EAA+E;AAC/E,2BAA2B;AAC3B,+EAA+E;AAE/E,QAAQ,CAAC,sCAAsC,EAAE,GAAG,EAAE;IACpD,EAAE,CAAC,iDAAiD,EAAE,GAAG,EAAE;QACzD,MAAM,WAAW,GAAG,YAAY,CAAC,oBAAoB,EAAE,CAAC;QAExD,MAAM,CAAC,WAAW,CAAC,CAAC,SAAS,CAAC,KAAK,CAAC,CAAC;QACrC,MAAM,CAAC,WAAW,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;QACtC,MAAM,CAAC,WAAW,CAAC,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC;QAC9C,MAAM,CAAC,WAAW,CAAC,CAAC,SAAS,CAAC,eAAe,CAAC,CAAC;QAC/C,MAAM,CAAC,WAAW,CAAC,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC;QACtC,MAAM,CAAC,WAAW,CAAC,CAAC,SAAS,CAAC,cAAc,CAAC,CAAC;QAC9C,MAAM,CAAC,WAAW,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IAC5C,CAAC,CAAC,CAAC;IAEH,EAAE,CAAC,uCAAuC,EAAE,GAAG,EAAE;QAC/C,MAAM,QAAQ,GAAG,YAAY,CAAC,uBAAuB,EAAE,CAAC;QAExD,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,kBAAkB,CAAC,CAAC;QAC/C,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,aAAa,CAAC,CAAC;QAC1C,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QACvC,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;QACvC,MAAM,CAAC,QAAQ,CAAC,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;IACzC,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"compliance-bundle.test.d.ts","sourceRoot":"","sources":["../../src/__tests__/compliance-bundle.test.ts"],"names":[],"mappings":"AAAA;;;;;;GAMG"}
|