pangea-sdk 6.2.0b1__py3-none-any.whl → 6.2.0b2__py3-none-any.whl

pangea/services/ai_guard.py

@@ -1,9 +1,13 @@
 from __future__ import annotations
 
-from typing import Any, Dict, Generic, List, Literal, Optional, TypeVar, overload
+from collections.abc import Mapping
+from typing import Annotated, Generic, Literal, Optional, Union, overload
+
+from pydantic import BaseModel, ConfigDict, Field, RootModel
+from typing_extensions import TypeVar
 
 from pangea.config import PangeaConfig
-from pangea.response import APIRequestModel, APIResponseModel, PangeaResponse, PangeaResponseResult
+from pangea.response import APIRequestModel, APIResponseModel, PangeaDateTime, PangeaResponse, PangeaResponseResult
 from pangea.services.base import ServiceBase
 
 # This is named "prompt injection" in the API spec even though it is also used
@@ -24,14 +28,14 @@ class CodeDetectionOverride(APIRequestModel):
 
 class LanguageDetectionOverride(APIRequestModel):
     disabled: Optional[bool] = None
-    allow: Optional[List[str]] = None
-    block: Optional[List[str]] = None
-    report: Optional[List[str]] = None
+    allow: Optional[list[str]] = None
+    block: Optional[list[str]] = None
+    report: Optional[list[str]] = None
 
 
 class TopicDetectionOverride(APIRequestModel):
     disabled: Optional[bool] = None
-    block: Optional[List[str]] = None
+    block: Optional[list[str]] = None
 
 
 class PromptInjectionOverride(APIRequestModel):
@@ -179,7 +183,7 @@ class PromptInjectionResult(APIResponseModel):
     action: str
     """The action taken by this Detector"""
 
-    analyzer_responses: List[AnalyzerResponse]
+    analyzer_responses: list[AnalyzerResponse]
     """Triggered prompt injection analyzers."""
 
 
@@ -192,20 +196,20 @@ class PiiEntity(APIResponseModel):
 
 
 class PiiEntityResult(APIResponseModel):
-    entities: List[PiiEntity]
+    entities: list[PiiEntity]
     """Detected redaction rules."""
 
 
 class MaliciousEntity(APIResponseModel):
     type: str
     value: str
-    action: str
+    action: Optional[str] = None
     start_pos: Optional[int] = None
-    raw: Optional[Dict[str, Any]] = None
+    raw: Optional[dict[str, object]] = None
 
 
 class MaliciousEntityResult(APIResponseModel):
-    entities: List[MaliciousEntity]
+    entities: list[MaliciousEntity]
     """Detected harmful items."""
 
 
@@ -215,11 +219,11 @@ class CustomEntity(APIResponseModel):
     action: str
     """The action taken on this Entity"""
     start_pos: Optional[int] = None
-    raw: Optional[Dict[str, Any]] = None
+    raw: Optional[dict[str, object]] = None
 
 
 class CustomEntityResult(APIResponseModel):
-    entities: List[CustomEntity]
+    entities: list[CustomEntity]
     """Detected redaction rules."""
 
 
@@ -233,7 +237,7 @@ class SecretsEntity(APIResponseModel):
 
 
 class SecretsEntityResult(APIResponseModel):
-    entities: List[SecretsEntity]
+    entities: list[SecretsEntity]
     """Detected redaction rules."""
 
 
@@ -266,9 +270,9 @@ class TextGuardDetectors(APIResponseModel):
     prompt_injection: Optional[TextGuardDetector[PromptInjectionResult]] = None
     pii_entity: Optional[TextGuardDetector[PiiEntityResult]] = None
     malicious_entity: Optional[TextGuardDetector[MaliciousEntityResult]] = None
-    custom_entity: Optional[TextGuardDetector[Any]] = None
+    custom_entity: Optional[TextGuardDetector[object]] = None
     secrets_detection: Optional[TextGuardDetector[SecretsEntityResult]] = None
-    profanity_and_toxicity: Optional[TextGuardDetector[Any]] = None
+    profanity_and_toxicity: Optional[TextGuardDetector[object]] = None
     language_detection: Optional[TextGuardDetector[LanguageDetectionResult]] = None
     topic_detection: Optional[TextGuardDetector[TopicDetectionResult]] = None
     code_detection: Optional[TextGuardDetector[CodeDetectionResult]] = None
@@ -297,6 +301,405 @@ class TextGuardResult(PangeaResponseResult, Generic[_T]):
     """
 
 
+class Areas(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    text_guard: bool
+
+
+class AuditDataActivityConfig(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: bool
+    audit_service_config_id: str
+    areas: Areas
+
+
+class PromptGuard(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: Optional[bool] = None
+    config_id: Optional[str] = None
+    confidence_threshold: Optional[float] = None
+
+
+class IpIntel(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: Optional[bool] = None
+    config_id: Optional[str] = None
+    reputation_provider: Optional[str] = None
+    risk_threshold: Optional[float] = None
+
+
+class UserIntel(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: Optional[bool] = None
+    config_id: Optional[str] = None
+    breach_provider: Optional[str] = None
+
+
+class UrlIntel(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: Optional[bool] = None
+    config_id: Optional[str] = None
+    reputation_provider: Optional[str] = None
+    risk_threshold: Optional[float] = None
+
+
+class DomainIntel(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: Optional[bool] = None
+    config_id: Optional[str] = None
+    reputation_provider: Optional[str] = None
+    risk_threshold: Optional[float] = None
+
+
+class FileScan(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: Optional[bool] = None
+    config_id: Optional[str] = None
+    scan_provider: Optional[str] = None
+    risk_threshold: Optional[float] = None
+
+
+class Redact(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: Optional[bool] = None
+    config_id: Optional[str] = None
+
+
+class Vault(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    config_id: Optional[str] = None
+
+
+class Lingua(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: Optional[bool] = None
+
+
+class Code(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    enabled: Optional[bool] = None
+
+
+class ConnectionsConfig(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    prompt_guard: Optional[PromptGuard] = None
+    ip_intel: Optional[IpIntel] = None
+    user_intel: Optional[UserIntel] = None
+    url_intel: Optional[UrlIntel] = None
+    domain_intel: Optional[DomainIntel] = None
+    file_scan: Optional[FileScan] = None
+    redact: Optional[Redact] = None
+    vault: Optional[Vault] = None
+    lingua: Optional[Lingua] = None
+    code: Optional[Code] = None
+
+
+class PartialMasking(BaseModel):
+    masking_type: Optional[Literal["unmask", "mask"]] = "unmask"
+    unmasked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    unmasked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    chars_to_ignore: Optional[list[CharsToIgnoreItem]] = None
+    masking_char: Annotated[Optional[str], Field(max_length=1, min_length=1)] = "*"
+
+
+class RuleRedactionConfig1(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    redaction_type: Literal[
+        "mask",
+        "partial_masking",
+        "replacement",
+        "hash",
+        "detect_only",
+        "fpe",
+        "mask",
+        "detect_only",
+    ]
+    redaction_value: Optional[str] = None
+    partial_masking: Optional[PartialMasking] = None
+    hash: Optional[Hash] = None
+    fpe_alphabet: Optional[
+        Literal[
+            "numeric",
+            "alphalower",
+            "alphaupper",
+            "alpha",
+            "alphanumericlower",
+            "alphanumericupper",
+            "alphanumeric",
+        ]
+    ] = None
+
+
+class PartialMasking1(BaseModel):
+    masking_type: Optional[Literal["unmask", "mask"]] = "unmask"
+    unmasked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    unmasked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    chars_to_ignore: Optional[list[CharsToIgnoreItem]] = None
+    masking_char: Annotated[Optional[str], Field(max_length=1, min_length=1)] = "*"
+
+
+class RuleRedactionConfig2(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    redaction_type: Literal["replacement"]
+    redaction_value: str
+    partial_masking: Optional[PartialMasking1] = None
+    hash: Optional[Hash] = None
+    fpe_alphabet: Optional[
+        Literal[
+            "numeric",
+            "alphalower",
+            "alphaupper",
+            "alpha",
+            "alphanumericlower",
+            "alphanumericupper",
+            "alphanumeric",
+        ]
+    ] = None
+
+
+class PartialMasking2(BaseModel):
+    masking_type: Optional[Literal["unmask", "mask"]] = "unmask"
+    unmasked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    unmasked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    chars_to_ignore: Optional[list[CharsToIgnoreItem]] = None
+    masking_char: Annotated[Optional[str], Field(max_length=1, min_length=1)] = "*"
+
+
+class RuleRedactionConfig3(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    redaction_type: Literal["partial_masking"]
+    redaction_value: str
+    partial_masking: PartialMasking2
+    hash: Optional[Hash] = None
+    fpe_alphabet: Optional[
+        Literal[
+            "numeric",
+            "alphalower",
+            "alphaupper",
+            "alpha",
+            "alphanumericlower",
+            "alphanumericupper",
+            "alphanumeric",
+        ]
+    ] = None
+
+
+class PartialMasking3(BaseModel):
+    masking_type: Optional[Literal["unmask", "mask"]] = "unmask"
+    unmasked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    unmasked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    chars_to_ignore: Optional[list[CharsToIgnoreItem]] = None
+    masking_char: Annotated[Optional[str], Field(max_length=1, min_length=1)] = "*"
+
+
+class RuleRedactionConfig4(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    redaction_type: Literal["hash"]
+    redaction_value: str
+    partial_masking: PartialMasking3
+    hash: Optional[Hash] = None
+    fpe_alphabet: Optional[
+        Literal[
+            "numeric",
+            "alphalower",
+            "alphaupper",
+            "alpha",
+            "alphanumericlower",
+            "alphanumericupper",
+            "alphanumeric",
+        ]
+    ] = None
+
+
+class CharsToIgnoreItem(RootModel[str]):
+    root: Annotated[str, Field(max_length=1, min_length=1)]
+
+
+class PartialMasking4(BaseModel):
+    masking_type: Optional[Literal["unmask", "mask"]] = "unmask"
+    unmasked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    unmasked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_left: Annotated[Optional[int], Field(ge=0)] = None
+    masked_from_right: Annotated[Optional[int], Field(ge=0)] = None
+    chars_to_ignore: Optional[list[CharsToIgnoreItem]] = None
+    masking_char: Annotated[Optional[str], Field(max_length=1, min_length=1)] = "*"
+
+
+class Hash(BaseModel):
+    hash_type: Literal["md5", "sha256"]
+    """The type of hashing algorithm"""
+
+
+class RuleRedactionConfig5(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    redaction_type: Literal["fpe"]
+    redaction_value: str
+    partial_masking: PartialMasking4
+    hash: Optional[Hash] = None
+    fpe_alphabet: Optional[
+        Literal[
+            "numeric",
+            "alphalower",
+            "alphaupper",
+            "alpha",
+            "alphanumericlower",
+            "alphanumericupper",
+            "alphanumeric",
+        ]
+    ] = None
+
+
+class Rule(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+    redact_rule_id: str
+    redaction: Union[
+        RuleRedactionConfig1,
+        RuleRedactionConfig2,
+        RuleRedactionConfig3,
+        RuleRedactionConfig4,
+        RuleRedactionConfig5,
+    ]
+    block: Optional[bool] = None
+    disabled: Optional[bool] = None
+    reputation_check: Optional[bool] = None
+    transform_if_malicious: Optional[bool] = None
+
+
+class Settings(BaseModel):
+    rules: Optional[list[Rule]] = None
+
+
+class DetectorSetting(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    detector_name: str
+    state: Literal["disabled", "enabled"]
+    settings: Settings
+
+
+class RedactConnectorSettings(BaseModel):
+    fpe_tweak_vault_secret_id: Optional[str] = None
+
+
+class ConnectorSettings(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    redact: Optional[RedactConnectorSettings] = None
+
+
+class RecipeConfig(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    name: str
+    description: str
+    version: Optional[str] = ""
+    detectors: Optional[list[DetectorSetting]] = None
+    """Setting for Detectors"""
+    connector_settings: Optional[ConnectorSettings] = None
+
+
+class ServiceConfig(PangeaResponseResult):
+    id: Optional[str] = None
+    name: Optional[str] = None
+    audit_data_activity: Optional[AuditDataActivityConfig] = None
+    connections: Optional[ConnectionsConfig] = None
+    recipes: Optional[dict[str, RecipeConfig]] = None
+
+
+class ServiceConfigFilter(BaseModel):
+    model_config = ConfigDict(extra="forbid")
+
+    id: Optional[str] = None
+    """
+    Only records where id equals this value.
+    """
+    id__contains: Optional[list[str]] = None
+    """
+    Only records where id includes each substring.
+    """
+    id__in: Optional[list[str]] = None
+    """
+    Only records where id equals one of the provided substrings.
+    """
+    created_at: Optional[PangeaDateTime] = None
+    """
+    Only records where created_at equals this value.
+    """
+    created_at__gt: Optional[PangeaDateTime] = None
+    """
+    Only records where created_at is greater than this value.
+    """
+    created_at__gte: Optional[PangeaDateTime] = None
+    """
+    Only records where created_at is greater than or equal to this value.
+    """
+    created_at__lt: Optional[PangeaDateTime] = None
+    """
+    Only records where created_at is less than this value.
+    """
+    created_at__lte: Optional[PangeaDateTime] = None
+    """
+    Only records where created_at is less than or equal to this value.
+    """
+    updated_at: Optional[PangeaDateTime] = None
+    """
+    Only records where updated_at equals this value.
+    """
+    updated_at__gt: Optional[PangeaDateTime] = None
+    """
+    Only records where updated_at is greater than this value.
+    """
+    updated_at__gte: Optional[PangeaDateTime] = None
+    """
+    Only records where updated_at is greater than or equal to this value.
+    """
+    updated_at__lt: Optional[PangeaDateTime] = None
+    """
+    Only records where updated_at is less than this value.
+    """
+    updated_at__lte: Optional[PangeaDateTime] = None
+    """
+    Only records where updated_at is less than or equal to this value.
+    """
+
+
+class ServiceConfigsPage(PangeaResponseResult):
+    count: Optional[int] = None
+    """The total number of service configs matched by the list request."""
+    last: Optional[str] = None
+    """
+    Used to fetch the next page of the current listing when provided in a
+    repeated request's last parameter.
+    """
+    items: Optional[list[ServiceConfig]] = None
+
+
 class AIGuard(ServiceBase):
     """AI Guard service client.
 
@@ -455,3 +858,81 @@ class AIGuard(ServiceBase):
                 "log_fields": log_fields,
             },
         )
+
+    def get_service_config(self, id: str) -> PangeaResponse[ServiceConfig]:
+        """
+        OperationId: ai_guard_post_v1beta_config
+        """
+        return self.request.post("v1beta/config", data={"id": id}, result_class=ServiceConfig)
+
+    def create_service_config(
+        self,
+        name: str,
+        *,
+        id: str | None = None,
+        audit_data_activity: AuditDataActivityConfig | None = None,
+        connections: ConnectionsConfig | None = None,
+        recipes: Mapping[str, RecipeConfig] | None = None,
+    ) -> PangeaResponse[ServiceConfig]:
+        """
+        OperationId: ai_guard_post_v1beta_config_create
+        """
+        return self.request.post(
+            "v1beta/config/create",
+            data={
+                "name": name,
+                "id": id,
+                "audit_data_activity": audit_data_activity,
+                "connections": connections,
+                "recipes": recipes,
+            },
+            result_class=ServiceConfig,
+        )
+
+    def update_service_config(
+        self,
+        id: str,
+        name: str,
+        *,
+        audit_data_activity: AuditDataActivityConfig | None = None,
+        connections: ConnectionsConfig | None = None,
+        recipes: Mapping[str, RecipeConfig] | None = None,
+    ) -> PangeaResponse[ServiceConfig]:
+        """
+        OperationId: ai_guard_post_v1beta_config_update
+        """
+        return self.request.post(
+            "v1beta/config/update",
+            data={
+                "id": id,
+                "name": name,
+                "audit_data_activity": audit_data_activity,
+                "connections": connections,
+                "recipes": recipes,
+            },
+            result_class=ServiceConfig,
+        )
+
+    def delete_service_config(self, id: str) -> PangeaResponse[ServiceConfig]:
+        """
+        OperationId: ai_guard_post_v1beta_config_delete
+        """
+        return self.request.post("v1beta/config/delete", data={"id": id}, result_class=ServiceConfig)
+
+    def list_service_configs(
+        self,
+        *,
+        filter: ServiceConfigFilter | None = None,
+        last: str | None = None,
+        order: Literal["asc", "desc"] | None = None,
+        order_by: Literal["id", "created_at", "updated_at"] | None = None,
+        size: int | None = None,
+    ) -> PangeaResponse[ServiceConfigsPage]:
+        """
+        OperationId: ai_guard_post_v1beta_config_list
+        """
+        return self.request.post(
+            "v1beta/config/list",
+            data={"filter": filter, "last": last, "order": order, "order_by": order_by, "size": size},
+            result_class=ServiceConfigsPage,
+        )

pangea/services/audit/audit.py

@@ -1,9 +1,14 @@
 # Copyright 2022 Pangea Cyber Corporation
 # Author: Pangea Cyber Corporation
+
+# TODO: Modernize.
+# ruff: noqa: UP006, UP035
+
 from __future__ import annotations
 
 import datetime
 import json
+from collections.abc import Mapping
 from typing import Any, Dict, Iterable, List, Optional, Sequence, Set, Tuple, Union, cast, overload
 
 from pydantic import TypeAdapter
@@ -63,7 +68,7 @@ from pangea.utils import canonicalize_nested_json
 
 class AuditBase:
     def __init__(
-        self, private_key_file: str = "", public_key_info: dict[str, str] = {}, tenant_id: str | None = None
+        self, private_key_file: str = "", public_key_info: Mapping[str, str] = {}, tenant_id: str | None = None
     ) -> None:
         self.pub_roots: Dict[int, PublishedRoot] = {}
         self.buffer_data: Optional[str] = None
@@ -98,7 +103,7 @@ class AuditBase:
         return input  # type: ignore[return-value]
 
     def _process_log(self, event: dict, sign_local: bool) -> LogEvent:
-        if event.get("tenant_id", None) is None and self.tenant_id:
+        if event.get("tenant_id") is None and self.tenant_id:
             event["tenant_id"] = self.tenant_id
 
         event = {k: v for k, v in event.items() if v is not None}
@@ -229,10 +234,7 @@ class AuditBase:
         tree_sizes.add(result.root.size)
         tree_sizes.difference_update(self.pub_roots.keys())
 
-        if tree_sizes:
-            arweave_roots = get_arweave_published_roots(result.root.tree_name, tree_sizes)
-        else:
-            arweave_roots = {}
+        arweave_roots = get_arweave_published_roots(result.root.tree_name, tree_sizes) if tree_sizes else {}
 
         return tree_sizes, arweave_roots
 
@@ -393,7 +395,7 @@ class Audit(ServiceBase, AuditBase):
         token: str,
         config: PangeaConfig | None = None,
         private_key_file: str = "",
-        public_key_info: dict[str, str] = {},
+        public_key_info: Mapping[str, str] = {},
         tenant_id: str | None = None,
         logger_name: str = "pangea",
         config_id: str | None = None,
@@ -465,7 +467,7 @@ class Audit(ServiceBase, AuditBase):
             A PangeaResponse where the hash of event data and optional verbose
                 results are returned in the response.result field.
                 Available response fields can be found in our
-                [API documentation](https://pangea.cloud/docs/api/audit#/v1/log).
+                [API documentation](https://pangea.cloud/docs/api/audit#/v1/log-post).
 
         Examples:
             log_response = audit.log(
@@ -513,7 +515,7 @@ class Audit(ServiceBase, AuditBase):
         Returns:
             A PangeaResponse where the hash of event data and optional verbose
                 results are returned in the response.result field.
-                Available response fields can be found in our [API documentation](https://pangea.cloud/docs/api/audit#/v1/log).
+                Available response fields can be found in our [API documentation](https://pangea.cloud/docs/api/audit#/v1/log-post).
 
         Examples:
             response = audit.log_event({"message": "hello world"}, verbose=True)
@@ -551,7 +553,7 @@ class Audit(ServiceBase, AuditBase):
         Returns:
             A PangeaResponse where the hash of event data and optional verbose
                 results are returned in the response.result field.
-                Available response fields can be found in our [API documentation](https://pangea.cloud/docs/api/audit#/v2/log).
+                Available response fields can be found in our [API documentation](https://pangea.cloud/docs/api/audit#/v2/log-post).
 
         Examples:
             log_response = audit.log_bulk(
@@ -592,7 +594,7 @@ class Audit(ServiceBase, AuditBase):
         Returns:
             A PangeaResponse where the hash of event data and optional verbose
                 results are returned in the response.result field.
-                Available response fields can be found in our [API documentation](https://pangea.cloud/docs/api/audit#/v2/log_async).
+                Available response fields can be found in our [API documentation](https://pangea.cloud/docs/api/audit#/v2/log_async-post).
 
         Examples:
             log_response = audit.log_bulk_async(
@@ -667,8 +669,8 @@ class Audit(ServiceBase, AuditBase):
 
         Returns:
             A PangeaResponse[SearchOutput] where the first page of matched events is returned in the
-                response.result field. Available response fields can be found in our [API documentation](https://pangea.cloud/docs/api/audit#/v1/search).
-                Pagination can be found in the [search results endpoint](https://pangea.cloud/docs/api/audit#/v1/results).
+                response.result field. Available response fields can be found in our [API documentation](https://pangea.cloud/docs/api/audit#/v1/search-post).
+                Pagination can be found in the [search results endpoint](https://pangea.cloud/docs/api/audit#/v1/results-post).
 
         Examples:
             response = audit.search(

pangea/services/audit/models.py

@@ -1,5 +1,9 @@
 # Copyright 2022 Pangea Cyber Corporation
 # Author: Pangea Cyber Corporation
+
+# TODO: Modernize.
+# ruff: noqa: UP006, UP035
+
 from __future__ import annotations
 
 import datetime