npm - @bgord/bun - Versions diffs - 1.9.0 → 1.9.2 - Mend

@bgord/bun 1.9.0 → 1.9.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (546) hide show

package/dist/basic-auth-password.vo.d.ts +1 -1
package/dist/basic-auth-password.vo.d.ts.map +1 -1
package/dist/basic-auth-password.vo.js +1 -1
package/dist/basic-auth-password.vo.js.map +1 -1
package/dist/basic-auth-username.vo.d.ts +1 -1
package/dist/basic-auth-username.vo.d.ts.map +1 -1
package/dist/basic-auth-username.vo.js +1 -1
package/dist/basic-auth-username.vo.js.map +1 -1
package/dist/binary.vo.d.ts +1 -1
package/dist/binary.vo.d.ts.map +1 -1
package/dist/binary.vo.js +1 -1
package/dist/binary.vo.js.map +1 -1
package/dist/cache-subject-segment-env.strategy.d.ts +3 -3
package/dist/client-ip.vo.d.ts +1 -1
package/dist/client-ip.vo.d.ts.map +1 -1
package/dist/client-ip.vo.js +1 -1
package/dist/client-ip.vo.js.map +1 -1
package/dist/client-user-agent.vo.d.ts +1 -1
package/dist/client-user-agent.vo.d.ts.map +1 -1
package/dist/client-user-agent.vo.js +1 -1
package/dist/client-user-agent.vo.js.map +1 -1
package/dist/command.types.d.ts +1 -1
package/dist/command.types.d.ts.map +1 -1
package/dist/commit-sha-value.vo.d.ts +1 -1
package/dist/commit-sha-value.vo.d.ts.map +1 -1
package/dist/commit-sha-value.vo.js +1 -1
package/dist/commit-sha-value.vo.js.map +1 -1
package/dist/correlation-id.vo.d.ts +1 -1
package/dist/correlation-id.vo.d.ts.map +1 -1
package/dist/dispatching-event-store.d.ts +1 -1
package/dist/dispatching-event-store.d.ts.map +1 -1
package/dist/encryption-key-value.vo.d.ts +1 -1
package/dist/encryption-key-value.vo.d.ts.map +1 -1
package/dist/encryption-key-value.vo.js +1 -1
package/dist/encryption-key-value.vo.js.map +1 -1
package/dist/environment-loader-encrypted.adapter.d.ts +4 -4
package/dist/environment-loader-encrypted.adapter.d.ts.map +1 -1
package/dist/environment-loader-noop.adapter.d.ts +3 -3
package/dist/environment-loader-noop.adapter.d.ts.map +1 -1
package/dist/environment-loader-process-safe.adapter.d.ts +4 -4
package/dist/environment-loader-process-safe.adapter.d.ts.map +1 -1
package/dist/environment-loader-process.adapter.d.ts +4 -4
package/dist/environment-loader-process.adapter.d.ts.map +1 -1
package/dist/environment-loader.port.d.ts +3 -3
package/dist/environment-loader.port.d.ts.map +1 -1
package/dist/event-envelope.d.ts +1 -1
package/dist/event-envelope.d.ts.map +1 -1
package/dist/event-envelope.js +1 -1
package/dist/event-envelope.js.map +1 -1
package/dist/event-handler-bare.strategy.d.ts +1 -1
package/dist/event-handler-bare.strategy.d.ts.map +1 -1
package/dist/event-handler-noop.strategy.d.ts +1 -1
package/dist/event-handler-noop.strategy.d.ts.map +1 -1
package/dist/event-handler-with-logger.strategy.d.ts +1 -1
package/dist/event-handler-with-logger.strategy.d.ts.map +1 -1
package/dist/event-handler.strategy.d.ts +1 -1
package/dist/event-handler.strategy.d.ts.map +1 -1
package/dist/event-store.d.ts +1 -1
package/dist/event-store.d.ts.map +1 -1
package/dist/event-stream.vo.d.ts +1 -1
package/dist/event-stream.vo.d.ts.map +1 -1
package/dist/event-stream.vo.js +1 -1
package/dist/event-stream.vo.js.map +1 -1
package/dist/event.types.d.ts +1 -1
package/dist/event.types.d.ts.map +1 -1
package/dist/hash-value.vo.d.ts +1 -1
package/dist/hash-value.vo.d.ts.map +1 -1
package/dist/hash-value.vo.js +1 -1
package/dist/hash-value.vo.js.map +1 -1
package/dist/hcaptcha-secret-key.vo.d.ts +1 -1
package/dist/hcaptcha-secret-key.vo.d.ts.map +1 -1
package/dist/hcaptcha-secret-key.vo.js +1 -1
package/dist/hcaptcha-secret-key.vo.js.map +1 -1
package/dist/hcaptcha-site-key.vo.d.ts +1 -1
package/dist/hcaptcha-site-key.vo.d.ts.map +1 -1
package/dist/hcaptcha-site-key.vo.js +1 -1
package/dist/hcaptcha-site-key.vo.js.map +1 -1
package/dist/healthcheck.service.d.ts +3 -3
package/dist/logger-winston-local.adapter.d.ts.map +1 -1
package/dist/logger-winston-local.adapter.js +2 -1
package/dist/logger-winston-local.adapter.js.map +1 -1
package/dist/logger-winston-production.adapter.d.ts.map +1 -1
package/dist/logger-winston-production.adapter.js +3 -2
package/dist/logger-winston-production.adapter.js.map +1 -1
package/dist/logger-winston.adapter.d.ts +2 -2
package/dist/logger.port.d.ts +3 -3
package/dist/logger.port.d.ts.map +1 -1
package/dist/logger.port.js +1 -1
package/dist/logger.port.js.map +1 -1
package/dist/mailer-content-html.vo.d.ts +1 -1
package/dist/mailer-content-html.vo.d.ts.map +1 -1
package/dist/mailer-content-html.vo.js +1 -1
package/dist/mailer-content-html.vo.js.map +1 -1
package/dist/mailer-subject.vo.d.ts +1 -1
package/dist/mailer-subject.vo.d.ts.map +1 -1
package/dist/mailer-subject.vo.js +1 -1
package/dist/mailer-subject.vo.js.map +1 -1
package/dist/modules/history/events/HISTORY_CLEARED_EVENT.d.ts +1 -1
package/dist/modules/history/events/HISTORY_CLEARED_EVENT.d.ts.map +1 -1
package/dist/modules/history/events/HISTORY_CLEARED_EVENT.js +1 -1
package/dist/modules/history/events/HISTORY_CLEARED_EVENT.js.map +1 -1
package/dist/modules/history/events/HISTORY_POPULATED_EVENT.d.ts +1 -1
package/dist/modules/history/events/HISTORY_POPULATED_EVENT.d.ts.map +1 -1
package/dist/modules/history/events/HISTORY_POPULATED_EVENT.js +1 -1
package/dist/modules/history/events/HISTORY_POPULATED_EVENT.js.map +1 -1
package/dist/modules/history/value-objects/history-created-at.d.ts +1 -1
package/dist/modules/history/value-objects/history-created-at.d.ts.map +1 -1
package/dist/modules/history/value-objects/history-operation.d.ts +1 -1
package/dist/modules/history/value-objects/history-operation.d.ts.map +1 -1
package/dist/modules/history/value-objects/history-operation.js +1 -1
package/dist/modules/history/value-objects/history-operation.js.map +1 -1
package/dist/modules/history/value-objects/history-payload.d.ts +1 -1
package/dist/modules/history/value-objects/history-payload.d.ts.map +1 -1
package/dist/modules/history/value-objects/history-payload.js +1 -1
package/dist/modules/history/value-objects/history-payload.js.map +1 -1
package/dist/modules/history/value-objects/history-subject.d.ts +1 -1
package/dist/modules/history/value-objects/history-subject.d.ts.map +1 -1
package/dist/modules/history/value-objects/history-subject.js +1 -1
package/dist/modules/history/value-objects/history-subject.js.map +1 -1
package/dist/modules/history/value-objects/history.d.ts +1 -1
package/dist/modules/history/value-objects/history.d.ts.map +1 -1
package/dist/modules/history/value-objects/history.js +1 -1
package/dist/modules/history/value-objects/history.js.map +1 -1
package/dist/modules/preferences/commands/SET_USER_LANGUAGE_COMMAND.d.ts +1 -1
package/dist/modules/preferences/commands/SET_USER_LANGUAGE_COMMAND.d.ts.map +1 -1
package/dist/modules/preferences/commands/SET_USER_LANGUAGE_COMMAND.js +1 -1
package/dist/modules/preferences/commands/SET_USER_LANGUAGE_COMMAND.js.map +1 -1
package/dist/modules/preferences/events/USER_LANGUAGE_SET_EVENT.d.ts +1 -1
package/dist/modules/preferences/events/USER_LANGUAGE_SET_EVENT.d.ts.map +1 -1
package/dist/modules/preferences/events/USER_LANGUAGE_SET_EVENT.js +1 -1
package/dist/modules/preferences/events/USER_LANGUAGE_SET_EVENT.js.map +1 -1
package/dist/modules/system/events/HOUR_HAS_PASSED_EVENT.d.ts +1 -1
package/dist/modules/system/events/HOUR_HAS_PASSED_EVENT.d.ts.map +1 -1
package/dist/modules/system/events/HOUR_HAS_PASSED_EVENT.js +1 -1
package/dist/modules/system/events/HOUR_HAS_PASSED_EVENT.js.map +1 -1
package/dist/modules/system/events/MINUTE_HAS_PASSED_EVENT.d.ts +1 -1
package/dist/modules/system/events/MINUTE_HAS_PASSED_EVENT.d.ts.map +1 -1
package/dist/modules/system/events/MINUTE_HAS_PASSED_EVENT.js +1 -1
package/dist/modules/system/events/MINUTE_HAS_PASSED_EVENT.js.map +1 -1
package/dist/modules/system/events/SECURITY_VIOLATION_DETECTED_EVENT.d.ts +1 -1
package/dist/modules/system/events/SECURITY_VIOLATION_DETECTED_EVENT.d.ts.map +1 -1
package/dist/modules/system/events/SECURITY_VIOLATION_DETECTED_EVENT.js +1 -1
package/dist/modules/system/events/SECURITY_VIOLATION_DETECTED_EVENT.js.map +1 -1
package/dist/node-env.vo.d.ts +11 -9
package/dist/node-env.vo.d.ts.map +1 -1
package/dist/node-env.vo.js +10 -3
package/dist/node-env.vo.js.map +1 -1
package/dist/nonce-value.vo.d.ts +1 -1
package/dist/nonce-value.vo.d.ts.map +1 -1
package/dist/nonce-value.vo.js +1 -1
package/dist/nonce-value.vo.js.map +1 -1
package/dist/port.vo.d.ts +1 -1
package/dist/port.vo.d.ts.map +1 -1
package/dist/port.vo.js +1 -1
package/dist/port.vo.js.map +1 -1
package/dist/prerequisite-verifier-timezone-utc.adapter.d.ts +1 -1
package/dist/prerequisite-verifier-timezone-utc.adapter.d.ts.map +1 -1
package/dist/prerequisite-verifier-timezone-utc.adapter.js +1 -1
package/dist/prerequisite-verifier-timezone-utc.adapter.js.map +1 -1
package/dist/recaptcha-secret-key.vo.d.ts +1 -1
package/dist/recaptcha-secret-key.vo.d.ts.map +1 -1
package/dist/recaptcha-secret-key.vo.js +1 -1
package/dist/recaptcha-secret-key.vo.js.map +1 -1
package/dist/recaptcha-site-key.vo.d.ts +1 -1
package/dist/recaptcha-site-key.vo.d.ts.map +1 -1
package/dist/recaptcha-site-key.vo.js +1 -1
package/dist/recaptcha-site-key.vo.js.map +1 -1
package/dist/security-countermeasure-name.vo.d.ts +1 -1
package/dist/security-countermeasure-name.vo.d.ts.map +1 -1
package/dist/security-countermeasure-name.vo.js +1 -1
package/dist/security-countermeasure-name.vo.js.map +1 -1
package/dist/security-rule-name.vo.d.ts +1 -1
package/dist/security-rule-name.vo.d.ts.map +1 -1
package/dist/security-rule-name.vo.js +1 -1
package/dist/security-rule-name.vo.js.map +1 -1
package/dist/smtp-host.vo.d.ts +1 -1
package/dist/smtp-host.vo.d.ts.map +1 -1
package/dist/smtp-host.vo.js +1 -1
package/dist/smtp-host.vo.js.map +1 -1
package/dist/smtp-pass.vo.d.ts +1 -1
package/dist/smtp-pass.vo.d.ts.map +1 -1
package/dist/smtp-pass.vo.js +1 -1
package/dist/smtp-pass.vo.js.map +1 -1
package/dist/smtp-port.vo.d.ts +1 -1
package/dist/smtp-port.vo.d.ts.map +1 -1
package/dist/smtp-user.vo.d.ts +1 -1
package/dist/smtp-user.vo.d.ts.map +1 -1
package/dist/smtp-user.vo.js +1 -1
package/dist/smtp-user.vo.js.map +1 -1
package/dist/tsconfig.tsbuildinfo +1 -1
package/dist/uuid.vo.d.ts +1 -1
package/dist/uuid.vo.d.ts.map +1 -1
package/dist/uuid.vo.js +1 -1
package/dist/uuid.vo.js.map +1 -1
package/package.json +4 -3
package/src/antivirus-clamav.adapter.ts +34 -0
package/src/antivirus-noop.adapter.ts +8 -0
package/src/antivirus.port.ts +9 -0
package/src/api-version.middleware.ts +31 -0
package/src/basic-auth-password.vo.ts +17 -0
package/src/basic-auth-username.vo.ts +17 -0
package/src/basic-auth.service.ts +14 -0
package/src/better-auth-logger.service.ts +45 -0
package/src/binary.vo.ts +22 -0
package/src/bots.vo.ts +132 -0
package/src/build-info-repository-file.strategy.ts +23 -0
package/src/build-info-repository-noop.strategy.ts +16 -0
package/src/build-info-repository-package-json.strategy.ts +25 -0
package/src/build-info-repository.strategy.ts +13 -0
package/src/cache-file.service.ts +37 -0
package/src/cache-repository-lru-cache.adapter.ts +58 -0
package/src/cache-repository-node-cache.adapter.ts +32 -0
package/src/cache-repository-noop.adapter.ts +15 -0
package/src/cache-repository.port.ts +11 -0
package/src/cache-resolver-simple.strategy.ts +33 -0
package/src/cache-resolver.strategy.ts +17 -0
package/src/cache-response.middleware.ts +51 -0
package/src/cache-subject-application-resolver.vo.ts +34 -0
package/src/cache-subject-request-resolver.vo.ts +37 -0
package/src/cache-subject-segment-application.strategy.ts +7 -0
package/src/cache-subject-segment-build.strategy.ts +14 -0
package/src/cache-subject-segment-cookie.strategy.ts +14 -0
package/src/cache-subject-segment-env.strategy.ts +10 -0
package/src/cache-subject-segment-fixed.strategy.ts +12 -0
package/src/cache-subject-segment-header.strategy.ts +13 -0
package/src/cache-subject-segment-ip.strategy.ts +9 -0
package/src/cache-subject-segment-path.strategy.ts +8 -0
package/src/cache-subject-segment-query.strategy.ts +18 -0
package/src/cache-subject-segment-request.strategy.ts +9 -0
package/src/cache-subject-segment-user.strategy.ts +8 -0
package/src/certificate-inspector-noop.adapter.ts +10 -0
package/src/certificate-inspector-tls.adapter.ts +42 -0
package/src/certificate-inspector.port.ts +7 -0
package/src/checksum.service.ts +12 -0
package/src/client-from-hono.adapter.ts +20 -0
package/src/client-ip.vo.ts +17 -0
package/src/client-user-agent.vo.ts +17 -0
package/src/client.vo.ts +52 -0
package/src/clock-fixed.adapter.ts +14 -0
package/src/clock-offset.adapter.ts +15 -0
package/src/clock-system.adapter.ts +8 -0
package/src/clock.port.ts +5 -0
package/src/command-envelope.ts +16 -0
package/src/command-logger.service.ts +23 -0
package/src/command.types.ts +13 -0
package/src/commit-sha-value.vo.ts +18 -0
package/src/commit-sha.vo.ts +29 -0
package/src/context.middleware.ts +24 -0
package/src/correlation-id.vo.ts +6 -0
package/src/correlation-storage.service.ts +31 -0
package/src/crypto-aes-gcm.service.ts +37 -0
package/src/crypto-key-provider-file.adapter.ts +29 -0
package/src/crypto-key-provider-memory.adapter.ts +17 -0
package/src/crypto-key-provider-noop.adapter.ts +9 -0
package/src/crypto-key-provider-with-cache.adapter.ts +28 -0
package/src/crypto-key-provider.port.ts +3 -0
package/src/csv-stringifier.adapter.ts +8 -0
package/src/csv-stringifier.port.ts +8 -0
package/src/disk-space-checker-bun.adapter.ts +18 -0
package/src/disk-space-checker-noop.adapter.ts +10 -0
package/src/disk-space-checker.port.ts +5 -0
package/src/dispatching-event-store.ts +36 -0
package/src/encryption-aes-gcm.adapter.ts +57 -0
package/src/encryption-iv.vo.ts +9 -0
package/src/encryption-key-value.vo.ts +18 -0
package/src/encryption-key.vo.ts +41 -0
package/src/encryption-noop.adapter.ts +18 -0
package/src/encryption.port.ts +12 -0
package/src/environment-file-parser.service.ts +35 -0
package/src/environment-loader-encrypted.adapter.ts +31 -0
package/src/environment-loader-noop.adapter.ts +16 -0
package/src/environment-loader-process-safe.adapter.ts +35 -0
package/src/environment-loader-process.adapter.ts +16 -0
package/src/environment-loader.port.ts +8 -0
package/src/etag-extractor.middleware.ts +18 -0
package/src/event-bus-like.types.ts +10 -0
package/src/event-envelope.ts +27 -0
package/src/event-handler-bare.strategy.ts +9 -0
package/src/event-handler-noop.strategy.ts +9 -0
package/src/event-handler-with-logger.strategy.ts +31 -0
package/src/event-handler.strategy.ts +8 -0
package/src/event-logger.service.ts +23 -0
package/src/event-loop-lag.service.ts +32 -0
package/src/event-loop-utilization.service.ts +21 -0
package/src/event-publisher.types.ts +3 -0
package/src/event-store-like.types.ts +3 -0
package/src/event-store.ts +64 -0
package/src/event-stream.vo.ts +14 -0
package/src/event.types.ts +16 -0
package/src/file-cleaner-bun-forgiving.adapter.ts +10 -0
package/src/file-cleaner-bun.adapter.ts +8 -0
package/src/file-cleaner-noop.adapter.ts +6 -0
package/src/file-cleaner.port.ts +5 -0
package/src/file-draft-zip.service.ts +34 -0
package/src/file-draft.service.ts +33 -0
package/src/file-reader-json-bun-forgiving.adapter.ts +14 -0
package/src/file-reader-json-bun.adapter.ts +10 -0
package/src/file-reader-json-noop.adapter.ts +12 -0
package/src/file-reader-json-with-cache.adapter.ts +34 -0
package/src/file-reader-json.port.ts +7 -0
package/src/file-renamer-fs-forgiving.adapter.ts +17 -0
package/src/file-renamer-fs.adapter.ts +15 -0
package/src/file-renamer-noop.adapter.ts +9 -0
package/src/file-renamer.port.ts +8 -0
package/src/file-uploader.middleware.ts +39 -0
package/src/graceful-shutdown.service.ts +68 -0
package/src/gzip-bun.adapter.ts +12 -0
package/src/gzip-noop.adapter.ts +7 -0
package/src/gzip-stream.adapter.ts +19 -0
package/src/gzip.port.ts +10 -0
package/src/hash-content-noop.strategy.ts +8 -0
package/src/hash-content-sha256-bun.strategy.ts +11 -0
package/src/hash-content.strategy.ts +5 -0
package/src/hash-file-noop.adapter.ts +14 -0
package/src/hash-file-sha256-bun.adapter.ts +23 -0
package/src/hash-file.port.ts +13 -0
package/src/hash-value.vo.ts +15 -0
package/src/hash.vo.ts +29 -0
package/src/hcaptcha-secret-key.vo.ts +15 -0
package/src/hcaptcha-site-key.vo.ts +12 -0
package/src/healthcheck.service.ts +138 -0
package/src/http-logger.middleware.ts +100 -0
package/src/i18n.service.ts +62 -0
package/src/id-provider-crypto.adapter.ts +8 -0
package/src/id-provider-deterministic.adapter.ts +21 -0
package/src/id-provider.port.ts +5 -0
package/src/image-alpha-noop.adapter.ts +7 -0
package/src/image-alpha-sharp.adapter.ts +38 -0
package/src/image-alpha.port.ts +19 -0
package/src/image-blur-noop.adapter.ts +7 -0
package/src/image-blur-sharp.adapter.ts +33 -0
package/src/image-blur.port.ts +18 -0
package/src/image-compressor-noop.adapter.ts +7 -0
package/src/image-compressor-sharp.adapter.ts +36 -0
package/src/image-compressor.port.ts +18 -0
package/src/image-exif-clear-noop.adapter.ts +7 -0
package/src/image-exif-clear-sharp.adapter.ts +30 -0
package/src/image-exif-clear.port.ts +16 -0
package/src/image-formatter-noop.adapter.ts +10 -0
package/src/image-formatter-sharp.adapter.ts +40 -0
package/src/image-formatter.port.ts +17 -0
package/src/image-info-noop.adapter.ts +15 -0
package/src/image-info-sharp.adapter.ts +27 -0
package/src/image-info.port.ts +12 -0
package/src/image-processor-noop.adapter.ts +10 -0
package/src/image-processor-sharp.adapter.ts +60 -0
package/src/image-processor.port.ts +25 -0
package/src/image-resizer-noop.adapter.ts +7 -0
package/src/image-resizer-sharp.adapter.ts +41 -0
package/src/image-resizer.port.ts +18 -0
package/src/in-flight-requests-tracker.service.ts +22 -0
package/src/in-flight-requests.middleware.ts +15 -0
package/src/index.ts +307 -0
package/src/instrumentation.service.ts +39 -0
package/src/invariant-error-handler.service.ts +22 -0
package/src/invariant.service.ts +27 -0
package/src/job-handler-bare.strategy.ts +15 -0
package/src/job-handler-noop.strategy.ts +9 -0
package/src/job-handler-with-logger.strategy.ts +44 -0
package/src/job-handler.strategy.ts +10 -0
package/src/jobs.service.ts +16 -0
package/src/logger-format-error.service.ts +27 -0
package/src/logger-noop.adapter.ts +17 -0
package/src/logger-winston-local.adapter.ts +24 -0
package/src/logger-winston-production.adapter.ts +38 -0
package/src/logger-winston.adapter.ts +63 -0
package/src/logger.port.ts +64 -0
package/src/mailer-content-html.vo.ts +11 -0
package/src/mailer-noop.adapter.ts +21 -0
package/src/mailer-smtp-with-logger.adapter.ts +33 -0
package/src/mailer-smtp.adapter.ts +33 -0
package/src/mailer-subject.vo.ts +10 -0
package/src/mailer.port.ts +6 -0
package/src/maintenance-mode.middleware.ts +15 -0
package/src/memory-consumption.service.ts +23 -0
package/src/modules/history/event-handlers/index.ts +2 -0
package/src/modules/history/event-handlers/onHistoryClearedEvent.ts +6 -0
package/src/modules/history/event-handlers/onHistoryPopulatedEvent.ts +10 -0
package/src/modules/history/events/HISTORY_CLEARED_EVENT.ts +13 -0
package/src/modules/history/events/HISTORY_POPULATED_EVENT.ts +17 -0
package/src/modules/history/events/index.ts +2 -0
package/src/modules/history/index.ts +4 -0
package/src/modules/history/ports/history-projection.ts +7 -0
package/src/modules/history/ports/history-reader.ts +5 -0
package/src/modules/history/ports/history-writer.ts +7 -0
package/src/modules/history/ports/index.ts +3 -0
package/src/modules/history/value-objects/history-created-at.ts +6 -0
package/src/modules/history/value-objects/history-id.ts +3 -0
package/src/modules/history/value-objects/history-operation.ts +12 -0
package/src/modules/history/value-objects/history-payload.ts +15 -0
package/src/modules/history/value-objects/history-subject.ts +14 -0
package/src/modules/history/value-objects/history.ts +26 -0
package/src/modules/history/value-objects/index.ts +6 -0
package/src/modules/preferences/command-handlers/handleSetUserLanguageCommand.ts +36 -0
package/src/modules/preferences/command-handlers/index.ts +1 -0
package/src/modules/preferences/commands/SET_USER_LANGUAGE_COMMAND.ts +14 -0
package/src/modules/preferences/commands/index.ts +1 -0
package/src/modules/preferences/events/USER_LANGUAGE_SET_EVENT.ts +14 -0
package/src/modules/preferences/events/index.ts +1 -0
package/src/modules/preferences/index.ts +7 -0
package/src/modules/preferences/invariants/index.ts +1 -0
package/src/modules/preferences/invariants/user-language-has-changed.ts +26 -0
package/src/modules/preferences/open-host-queries/index.ts +1 -0
package/src/modules/preferences/open-host-queries/user-language.ts +23 -0
package/src/modules/preferences/ports/index.ts +2 -0
package/src/modules/preferences/ports/user-language-query.ts +5 -0
package/src/modules/preferences/ports/user-language-resolver.ts +22 -0
package/src/modules/preferences/value-objects/index.ts +1 -0
package/src/modules/preferences/value-objects/supported-languages-set.ts +17 -0
package/src/modules/system/events/HOUR_HAS_PASSED_EVENT.ts +13 -0
package/src/modules/system/events/MINUTE_HAS_PASSED_EVENT.ts +13 -0
package/src/modules/system/events/SECURITY_VIOLATION_DETECTED_EVENT.ts +23 -0
package/src/modules/system/events/index.ts +3 -0
package/src/modules/system/index.ts +2 -0
package/src/modules/system/services/index.ts +2 -0
package/src/modules/system/services/passage-of-time-hourly.service.ts +35 -0
package/src/modules/system/services/passage-of-time-minute.service.ts +35 -0
package/src/node-env.vo.ts +12 -0
package/src/nonce-provider-crypto.adapter.ts +18 -0
package/src/nonce-provider-deterministic.adapter.ts +21 -0
package/src/nonce-provider-noop.adapter.ts +8 -0
package/src/nonce-provider.port.ts +5 -0
package/src/nonce-value.vo.ts +18 -0
package/src/pdf-generator-noop.adapter.ts +23 -0
package/src/pdf-generator.port.ts +5 -0
package/src/ping.service.ts +7 -0
package/src/port.vo.ts +14 -0
package/src/prerequisite-runner-startup.service.ts +44 -0
package/src/prerequisite-verifier-binary.adapter.ts +21 -0
package/src/prerequisite-verifier-bun.adapter.ts +21 -0
package/src/prerequisite-verifier-clock-drift.adapter.ts +32 -0
package/src/prerequisite-verifier-directory.adapter.ts +48 -0
package/src/prerequisite-verifier-dns.adapter.ts +20 -0
package/src/prerequisite-verifier-external-api.adapter.ts +20 -0
package/src/prerequisite-verifier-file.adapter.ts +49 -0
package/src/prerequisite-verifier-jobs.adapter.ts +15 -0
package/src/prerequisite-verifier-log-file.adapter.ts +29 -0
package/src/prerequisite-verifier-mailer.adapter.ts +22 -0
package/src/prerequisite-verifier-memory.adapter.ts +22 -0
package/src/prerequisite-verifier-node.adapter.ts +21 -0
package/src/prerequisite-verifier-os.adapter.ts +22 -0
package/src/prerequisite-verifier-outside-connectivity.adapter.ts +23 -0
package/src/prerequisite-verifier-port.adapter.ts +23 -0
package/src/prerequisite-verifier-ram.adapter.ts +20 -0
package/src/prerequisite-verifier-running-user.adapter.ts +17 -0
package/src/prerequisite-verifier-self.adapter.ts +11 -0
package/src/prerequisite-verifier-space.adapter.ts +32 -0
package/src/prerequisite-verifier-sqlite.adapter.ts +25 -0
package/src/prerequisite-verifier-ssl-certificate-expiry.adapter.ts +28 -0
package/src/prerequisite-verifier-timezone-utc.adapter.ts +20 -0
package/src/prerequisite-verifier-translations.adapter.ts +65 -0
package/src/prerequisite-verifier-with-cache.adapter.ts +35 -0
package/src/prerequisite-verifier-with-fail-safe.adapter.ts +37 -0
package/src/prerequisite-verifier-with-logger.adapter.ts +51 -0
package/src/prerequisite-verifier-with-retry.adapter.ts +35 -0
package/src/prerequisite-verifier-with-timeout.adapter.ts +31 -0
package/src/prerequisite-verifier.decorator.ts +49 -0
package/src/prerequisite-verifier.port.ts +38 -0
package/src/prerequisite.vo.ts +28 -0
package/src/recaptcha-secret-key.vo.ts +15 -0
package/src/recaptcha-site-key.vo.ts +12 -0
package/src/redactor-compact-array.strategy.ts +10 -0
package/src/redactor-compact-object.strategy.ts +25 -0
package/src/redactor-composite.strategy.ts +9 -0
package/src/redactor-mask.strategy.ts +38 -0
package/src/redactor-noop.strategy.ts +7 -0
package/src/redactor.strategy.ts +3 -0
package/src/remote-file-storage-disk.adapter.ts +72 -0
package/src/remote-file-storage-noop.adapter.ts +70 -0
package/src/remote-file-storage.port.ts +17 -0
package/src/retry-backoff-exponential.strategy.ts +10 -0
package/src/retry-backoff-fibonacci.strategy.ts +16 -0
package/src/retry-backoff-linear.strategy.ts +10 -0
package/src/retry-backoff-noop.strategy.ts +8 -0
package/src/retry-backoff.strategy.ts +5 -0
package/src/retry.service.ts +37 -0
package/src/safe-parse-body.service.ts +12 -0
package/src/sealer-aes-gcm.adapter.ts +38 -0
package/src/sealer-noop.adapter.ts +11 -0
package/src/sealer.port.ts +4 -0
package/src/security-context.vo.ts +13 -0
package/src/security-countermeasure-ban.strategy.ts +63 -0
package/src/security-countermeasure-mirage.strategy.ts +31 -0
package/src/security-countermeasure-name.vo.ts +22 -0
package/src/security-countermeasure-noop.strategy.ts +12 -0
package/src/security-countermeasure-report.strategy.ts +27 -0
package/src/security-countermeasure-tarpit.strategy.ts +31 -0
package/src/security-countermeasure.strategy.ts +16 -0
package/src/security-policy.vo.ts +9 -0
package/src/security-rule-and.strategy.ts +25 -0
package/src/security-rule-bait-routes.strategy.ts +15 -0
package/src/security-rule-fail.strategy.ts +12 -0
package/src/security-rule-honey-pot-field.strategy.ts +20 -0
package/src/security-rule-name.vo.ts +22 -0
package/src/security-rule-or.strategy.ts +25 -0
package/src/security-rule-pass.strategy.ts +12 -0
package/src/security-rule-user-agent.strategy.ts +20 -0
package/src/security-rule-violation-threshold.strategy.ts +50 -0
package/src/security-rule.strategy.ts +8 -0
package/src/setup.service.ts +102 -0
package/src/shield-api-key.strategy.ts +20 -0
package/src/shield-auth.strategy.ts +38 -0
package/src/shield-basic-auth.strategy.ts +17 -0
package/src/shield-csrf.strategy.ts +23 -0
package/src/shield-hcaptcha-local.strategy.ts +22 -0
package/src/shield-hcaptcha.strategy.ts +24 -0
package/src/shield-noop.strategy.ts +6 -0
package/src/shield-rate-limit.strategy.ts +41 -0
package/src/shield-recaptcha.strategy.ts +49 -0
package/src/shield-security.strategy.ts +80 -0
package/src/shield-timeout.strategy.ts +19 -0
package/src/shield.strategy.ts +5 -0
package/src/simulated-error.middleware.ts +8 -0
package/src/sleeper-noop.adapter.ts +5 -0
package/src/sleeper-system.adapter.ts +8 -0
package/src/sleeper.port.ts +5 -0
package/src/slower.middleware.ts +14 -0
package/src/smtp-host.vo.ts +17 -0
package/src/smtp-pass.vo.ts +17 -0
package/src/smtp-port.vo.ts +5 -0
package/src/smtp-user.vo.ts +17 -0
package/src/ssr.ts +57 -0
package/src/static-files.service.ts +85 -0
package/src/stopwatch.service.ts +30 -0
package/src/temporary-file-absolute.adapter.ts +31 -0
package/src/temporary-file-noop.adapter.ts +16 -0
package/src/temporary-file.port.ts +9 -0
package/src/time-zone-offset.middleware.ts +24 -0
package/src/timekeeper-google.adapter.ts +18 -0
package/src/timekeeper-noop.adapter.ts +12 -0
package/src/timekeeper.port.ts +5 -0
package/src/timeout-cancellable-runner-bare.adapter.ts +35 -0
package/src/timeout-cancellable-runner-noop.adapter.ts +9 -0
package/src/timeout-cancellable-runner.port.ts +7 -0
package/src/timeout-runner-bare.adapter.ts +23 -0
package/src/timeout-runner-error.adapter.ts +8 -0
package/src/timeout-runner-monitor.adapter.ts +24 -0
package/src/timeout-runner-noop.adapter.ts +8 -0
package/src/timeout-runner.port.ts +7 -0
package/src/to-event-map.types.ts +3 -0
package/src/translations.service.ts +20 -0
package/src/uptime.service.ts +17 -0
package/src/uuid.vo.ts +7 -0
package/src/visitor-id-client.strategy.ts +20 -0
package/src/visitor-id.strategy.ts +5 -0
package/src/weak-etag-extractor.middleware.ts +17 -0

package/src/redactor-mask.strategy.ts ADDED Viewed

@@ -0,0 +1,38 @@
+import cloneDeepWith from "lodash/cloneDeepWith";
+import type { RedactorStrategy } from "./redactor.strategy";
+export class RedactorMaskStrategy implements RedactorStrategy {
+  static readonly DEFAULT_KEYS: readonly string[] = [
+    "authorization",
+    "cookie",
+    "set-cookie",
+    "x-api-key",
+    "apikey",
+    "token",
+    "accesstoken",
+    "refreshtoken",
+    "password",
+    "currentpassword",
+    "newpassword",
+    "passwordconfirmation",
+    "clientsecret",
+    "secret",
+    "otp",
+    "code",
+  ];
+  private readonly keys: Set<string>;
+  constructor(keys?: readonly string[]) {
+    this.keys = keys?.length
+      ? new Set(keys.map((key) => key.toLowerCase()))
+      : new Set(RedactorMaskStrategy.DEFAULT_KEYS);
+  }
+  redact<T>(input: T): T {
+    return cloneDeepWith(input, (_value, key) => {
+      if (typeof key === "string" && this.keys.has(key.toLowerCase())) return "***";
+      return undefined;
+    });
+  }
+}

package/src/redactor-noop.strategy.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import type { RedactorStrategy } from "./redactor.strategy";
+export class RedactorNoopStrategy implements RedactorStrategy {
+  redact<T>(input: T): T {
+    return input;
+  }
+}

package/src/redactor.strategy.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export interface RedactorStrategy {
+  redact<T>(value: T): T;
+}

package/src/remote-file-storage-disk.adapter.ts ADDED Viewed

@@ -0,0 +1,72 @@
+import fs from "node:fs/promises";
+import * as tools from "@bgord/tools";
+import type { FileCleanerPort } from "./file-cleaner.port";
+import type { FileRenamerPort } from "./file-renamer.port";
+import type { HashFilePort } from "./hash-file.port";
+import type {
+  RemoteFileStoragePort,
+  RemoteHeadResult,
+  RemotePutFromPathInput,
+  RemotePutFromPathResult,
+} from "./remote-file-storage.port";
+type RemoteFileStorageDiskConfig = { root: tools.DirectoryPathAbsoluteType };
+type Dependencies = { HashFile: HashFilePort; FileCleaner: FileCleanerPort; FileRenamer: FileRenamerPort };
+export class RemoteFileStorageDiskAdapter implements RemoteFileStoragePort {
+  constructor(
+    private readonly config: RemoteFileStorageDiskConfig,
+    private readonly deps: Dependencies,
+  ) {}
+  private resolveKeyToAbsoluteFilePath(key: tools.ObjectKeyType): tools.FilePathAbsolute {
+    const parts = key.split("/");
+    const filename = tools.Filename.fromString(parts.pop() as string);
+    const directory = tools.DirectoryPathAbsoluteSchema.parse(`${this.config.root}/${parts.join("/")}`);
+    return tools.FilePathAbsolute.fromPartsSafe(directory, filename);
+  }
+  async putFromPath(input: RemotePutFromPathInput): Promise<RemotePutFromPathResult> {
+    const final = this.resolveKeyToAbsoluteFilePath(input.key);
+    const temporary = final.withFilename(final.getFilename().withSuffix("-part"));
+    await fs.mkdir(final.getDirectory(), { recursive: true });
+    const source = Bun.file(input.path.get());
+    await Bun.write(temporary.get(), source);
+    await this.deps.FileRenamer.rename(temporary, final);
+    return this.deps.HashFile.hash(final);
+  }
+  async head(key: tools.ObjectKeyType): Promise<RemoteHeadResult> {
+    const path = this.resolveKeyToAbsoluteFilePath(key);
+    try {
+      return { exists: true, ...(await this.deps.HashFile.hash(path)) };
+    } catch {
+      return { exists: false };
+    }
+  }
+  async getStream(key: tools.ObjectKeyType): Promise<ReadableStream | null> {
+    const path = this.resolveKeyToAbsoluteFilePath(key);
+    try {
+      return Bun.file(path.get()).stream();
+    } catch {
+      return null;
+    }
+  }
+  async delete(key: tools.ObjectKeyType): Promise<void> {
+    await this.deps.FileCleaner.delete(this.resolveKeyToAbsoluteFilePath(key));
+  }
+  get root() {
+    return this.config.root;
+  }
+}

package/src/remote-file-storage-noop.adapter.ts ADDED Viewed

@@ -0,0 +1,70 @@
+import * as tools from "@bgord/tools";
+import type { ClockPort } from "./clock.port";
+import { Hash } from "./hash.vo";
+import type { LoggerPort } from "./logger.port";
+import type {
+  RemoteFileStoragePort,
+  RemoteHeadResult,
+  RemotePutFromPathInput,
+  RemotePutFromPathResult,
+} from "./remote-file-storage.port";
+type Dependencies = { Logger: LoggerPort; Clock: ClockPort };
+type RemoteFileStorageNoopConfig = { root: tools.DirectoryPathAbsoluteType };
+export class RemoteFileStorageNoopAdapter implements RemoteFileStoragePort {
+  private readonly base = { component: "infra", operation: "RemoteFileStorageNoopAdapter" };
+  constructor(
+    private readonly config: RemoteFileStorageNoopConfig,
+    private readonly deps: Dependencies,
+  ) {}
+  async putFromPath(input: RemotePutFromPathInput): Promise<RemotePutFromPathResult> {
+    this.deps.Logger.info({
+      message: "[NOOP] RemoteFileStorageNoopAdapter putFromPath",
+      metadata: { input },
+      ...this.base,
+    });
+    return {
+      etag: Hash.fromString("0000000000000000000000000000000000000000000000000000000000000000"),
+      size: tools.Size.fromBytes(10),
+      lastModified: this.deps.Clock.now(),
+      mime: tools.MIMES.text,
+    };
+  }
+  async head(key: tools.ObjectKeyType): Promise<RemoteHeadResult> {
+    this.deps.Logger.info({
+      message: "[NOOP] RemoteFileStorageNoopAdapter head",
+      metadata: { key },
+      ...this.base,
+    });
+    return { exists: false };
+  }
+  async getStream(key: tools.ObjectKeyType): Promise<ReadableStream | null> {
+    this.deps.Logger.info({
+      message: "[NOOP] RemoteFileStorageNoopAdapter getStream",
+      metadata: { key },
+      ...this.base,
+    });
+    return null;
+  }
+  async delete(key: tools.ObjectKeyType): Promise<void> {
+    this.deps.Logger.info({
+      message: "[NOOP] RemoteFileStorageNoopAdapter delete",
+      metadata: { key },
+      ...this.base,
+    });
+  }
+  get root() {
+    return this.config.root;
+  }
+}

package/src/remote-file-storage.port.ts ADDED Viewed

@@ -0,0 +1,17 @@
+import type * as tools from "@bgord/tools";
+import type { HashFileResult } from "./hash-file.port";
+export type RemotePutFromPathInput = {
+  key: tools.ObjectKeyType;
+  path: tools.FilePathRelative | tools.FilePathAbsolute;
+};
+export type RemotePutFromPathResult = HashFileResult;
+export type RemoteHeadResult = { exists: false } | ({ exists: true } & HashFileResult);
+export interface RemoteFileStoragePort {
+  putFromPath(input: RemotePutFromPathInput): Promise<RemotePutFromPathResult>;
+  head(key: tools.ObjectKeyType): Promise<RemoteHeadResult>;
+  getStream(key: tools.ObjectKeyType): Promise<ReadableStream | null>;
+  delete(key: tools.ObjectKeyType): Promise<void>;
+  get root(): tools.DirectoryPathAbsoluteType;
+}

package/src/retry-backoff-exponential.strategy.ts ADDED Viewed

@@ -0,0 +1,10 @@
+import * as tools from "@bgord/tools";
+import type { RetryBackoffStrategy } from "./retry-backoff.strategy";
+export class RetryBackoffExponentialStrategy implements RetryBackoffStrategy {
+  constructor(private readonly delay: tools.Duration) {}
+  next(attempt: tools.IntegerPositiveType) {
+    return this.delay.times(tools.MultiplicationFactor.parse(2 ** (attempt - 1)));
+  }
+}

package/src/retry-backoff-fibonacci.strategy.ts ADDED Viewed

@@ -0,0 +1,16 @@
+import * as tools from "@bgord/tools";
+import type { RetryBackoffStrategy } from "./retry-backoff.strategy";
+export class RetryBackoffFibonacciStrategy implements RetryBackoffStrategy {
+  constructor(private readonly delay: tools.Duration) {}
+  next(attempt: tools.IntegerPositiveType) {
+    return this.delay.times(tools.MultiplicationFactor.parse(this.fibonacci(attempt)));
+  }
+  private fibonacci(n: number): number {
+    if (n === 0) return 0;
+    if (n === 1) return 1;
+    return this.fibonacci(n - 1) + this.fibonacci(n - 2);
+  }
+}

package/src/retry-backoff-linear.strategy.ts ADDED Viewed

@@ -0,0 +1,10 @@
+import * as tools from "@bgord/tools";
+import type { RetryBackoffStrategy } from "./retry-backoff.strategy";
+export class RetryBackoffLinearStrategy implements RetryBackoffStrategy {
+  constructor(private readonly delay: tools.Duration) {}
+  next(attempt: tools.IntegerPositiveType) {
+    return this.delay.times(tools.MultiplicationFactor.parse(attempt));
+  }
+}

package/src/retry-backoff-noop.strategy.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import * as tools from "@bgord/tools";
+import type { RetryBackoffStrategy } from "./retry-backoff.strategy";
+export class RetryBackoffNoopStrategy implements RetryBackoffStrategy {
+  next() {
+    return tools.Duration.Ms(0);
+  }
+}

package/src/retry-backoff.strategy.ts ADDED Viewed

@@ -0,0 +1,5 @@
+import type * as tools from "@bgord/tools";
+export interface RetryBackoffStrategy {
+  next(attempt: tools.IntegerPositiveType): tools.Duration;
+}

package/src/retry.service.ts ADDED Viewed

@@ -0,0 +1,37 @@
+import * as tools from "@bgord/tools";
+import type { RetryBackoffStrategy } from "./retry-backoff.strategy";
+import type { SleeperPort } from "./sleeper.port";
+type Dependencies = { Sleeper: SleeperPort };
+export type RetryConfigType = {
+  max: tools.IntegerPositiveType;
+  backoff: RetryBackoffStrategy;
+  when?: (error: unknown) => boolean;
+};
+export const RetryError = { InvalidMax: "retry.invalid.max" };
+export class Retry {
+  constructor(private readonly deps: Dependencies) {}
+  async run<T>(action: () => Promise<T>, config: RetryConfigType): Promise<T> {
+    if (config.max < 1) throw new Error(RetryError.InvalidMax);
+    let lastError: unknown;
+    for (let attempt = 1; attempt <= config.max; attempt++) {
+      try {
+        return await action();
+      } catch (error) {
+        lastError = error;
+        if (attempt === config.max || (config.when && !config.when(error))) break;
+        await this.deps.Sleeper.wait(config.backoff.next(tools.IntegerPositive.parse(attempt)));
+      }
+    }
+    throw lastError;
+  }
+}

package/src/safe-parse-body.service.ts ADDED Viewed

@@ -0,0 +1,12 @@
+import type hono from "hono";
+export async function safeParseBody(c: hono.Context): Promise<any> {
+  try {
+    const rawBody = await c.req.text();
+    if (!rawBody.trim()) return {};
+    return JSON.parse(rawBody);
+  } catch {
+    return {};
+  }
+}

package/src/sealer-aes-gcm.adapter.ts ADDED Viewed

@@ -0,0 +1,38 @@
+import { CryptoAesGcm } from "./crypto-aes-gcm.service";
+import type { CryptoKeyProviderPort } from "./crypto-key-provider.port";
+import { EncryptionIV } from "./encryption-iv.vo";
+import type { SealerPort } from "./sealer.port";
+type Dependencies = { CryptoKeyProvider: CryptoKeyProviderPort };
+export const SealerAesGcmAdapterError = { InvalidPayload: "sealer.aes.gcm.adapter.invalid.payload" };
+export class SealerAesGcmAdapter implements SealerPort {
+  private static readonly PREFIX = "sealed:gcm:";
+  constructor(private readonly deps: Dependencies) {}
+  async seal(value: unknown): Promise<string> {
+    const key = await this.deps.CryptoKeyProvider.get();
+    const iv = EncryptionIV.generate();
+    const plaintext = new TextEncoder().encode(JSON.stringify(value));
+    const payload = await CryptoAesGcm.encrypt(key, plaintext.buffer, iv);
+    return SealerAesGcmAdapter.PREFIX + Buffer.from(payload).toString("base64");
+  }
+  async unseal(value: string): Promise<unknown> {
+    if (!value.startsWith(SealerAesGcmAdapter.PREFIX)) {
+      throw new Error(SealerAesGcmAdapterError.InvalidPayload);
+    }
+    const key = await this.deps.CryptoKeyProvider.get();
+    const bytes = Buffer.from(value.slice(SealerAesGcmAdapter.PREFIX.length), "base64");
+    const decrypted = await CryptoAesGcm.decrypt(key, bytes);
+    return JSON.parse(new TextDecoder().decode(decrypted));
+  }
+}

package/src/sealer-noop.adapter.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import type { SealerPort } from "./sealer.port";
+export class SealerNoopAdapter implements SealerPort {
+  async seal(value: unknown): Promise<string> {
+    return `sealed:${JSON.stringify(value)}`;
+  }
+  async unseal(value: string): Promise<unknown> {
+    return JSON.parse(value.replace("sealed:", ""));
+  }
+}

package/src/sealer.port.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export interface SealerPort {
+  seal(value: unknown): Promise<string>;
+  unseal(value: string): Promise<unknown>;
+}

package/src/security-context.vo.ts ADDED Viewed

@@ -0,0 +1,13 @@
+import type { Client } from "./client.vo";
+import type { SecurityCountermeasureNameType } from "./security-countermeasure-name.vo";
+import type { SecurityRuleNameType } from "./security-rule-name.vo";
+import type { UUIDType } from "./uuid.vo";
+export class SecurityContext {
+  constructor(
+    readonly rule: SecurityRuleNameType,
+    readonly countermeasure: SecurityCountermeasureNameType,
+    readonly client: Client,
+    readonly userId: UUIDType | undefined,
+  ) {}
+}

package/src/security-countermeasure-ban.strategy.ts ADDED Viewed

@@ -0,0 +1,63 @@
+import type { ContentfulStatusCode } from "hono/utils/http-status";
+import type { ClockPort } from "./clock.port";
+import { CorrelationStorage } from "./correlation-storage.service";
+import { createEventEnvelope } from "./event-envelope";
+import type { EventStoreLike } from "./event-store-like.types";
+import type { IdProviderPort } from "./id-provider.port";
+import type { LoggerPort } from "./logger.port";
+import {
+  SECURITY_VIOLATION_DETECTED_EVENT,
+  SecurityViolationDetectedEvent,
+  type SecurityViolationDetectedEventType,
+} from "./modules/system/events/SECURITY_VIOLATION_DETECTED_EVENT";
+import type { SecurityContext } from "./security-context.vo";
+import type { SecurityAction, SecurityCountermeasureStrategy } from "./security-countermeasure.strategy";
+import { SecurityCountermeasureName } from "./security-countermeasure-name.vo";
+type Dependencies = {
+  IdProvider: IdProviderPort;
+  Clock: ClockPort;
+  Logger: LoggerPort;
+  EventStore: EventStoreLike<SecurityViolationDetectedEventType>;
+};
+export const SecurityCountermeasureBanStrategyError = {
+  Executed: "security.countermeasure.ban.strategy.executed",
+};
+export class SecurityCountermeasureBanStrategy implements SecurityCountermeasureStrategy {
+  constructor(
+    private readonly deps: Dependencies,
+    private readonly config: { response: { status: ContentfulStatusCode } } = { response: { status: 403 } },
+  ) {}
+  async execute(context: SecurityContext): Promise<SecurityAction> {
+    const action = {
+      kind: "deny",
+      reason: SecurityCountermeasureBanStrategyError.Executed,
+      ...this.config,
+    } as const;
+    this.deps.Logger.info({
+      message: "Security countermeasure ban",
+      component: "security",
+      operation: "security_countermeasure_ban",
+      correlationId: CorrelationStorage.get(),
+      metadata: context,
+    });
+    const event = SecurityViolationDetectedEvent.parse({
+      ...createEventEnvelope("security", this.deps),
+      name: SECURITY_VIOLATION_DETECTED_EVENT,
+      payload: { ...context, countermeasure: this.name, action: action.kind },
+    } satisfies SecurityViolationDetectedEventType);
+    await this.deps.EventStore.save([event]);
+    return action;
+  }
+  get name() {
+    return SecurityCountermeasureName.parse("ban");
+  }
+}

package/src/security-countermeasure-mirage.strategy.ts ADDED Viewed

@@ -0,0 +1,31 @@
+import type { ContentfulStatusCode } from "hono/utils/http-status";
+import { CorrelationStorage } from "./correlation-storage.service";
+import type { LoggerPort } from "./logger.port";
+import type { SecurityContext } from "./security-context.vo";
+import type { SecurityAction, SecurityCountermeasureStrategy } from "./security-countermeasure.strategy";
+import { SecurityCountermeasureName } from "./security-countermeasure-name.vo";
+type Dependencies = { Logger: LoggerPort };
+export class SecurityCountermeasureMirageStrategy implements SecurityCountermeasureStrategy {
+  constructor(
+    private readonly deps: Dependencies,
+    private readonly config: { response: { status: ContentfulStatusCode } } = { response: { status: 200 } },
+  ) {}
+  async execute(context: SecurityContext): Promise<SecurityAction> {
+    this.deps.Logger.info({
+      message: "Security countermeasure mirage",
+      component: "security",
+      operation: "security_countermeasure_mirage",
+      correlationId: CorrelationStorage.get(),
+      metadata: context,
+    });
+    return { kind: "mirage", ...this.config };
+  }
+  get name() {
+    return SecurityCountermeasureName.parse("mirage");
+  }
+}

package/src/security-countermeasure-name.vo.ts ADDED Viewed

@@ -0,0 +1,22 @@
+import * as z from "zod/v4";
+export const SecurityCountermeasureNameError = {
+  Type: "security.countermeasure.name.type",
+  Empty: "security.countermeasure.name.empty",
+  TooLong: "security.countermeasure.name.too.long",
+  BadChars: "security.countermeasure.name.bad.chars",
+};
+// One to sixty four letters, digits, or underscores
+const CHARS_WHITELIST = /^[a-zA-Z0-9_]{1,64}$/;
+// Stryker disable all
+export const SecurityCountermeasureName = z
+  // Stryker restore all
+  .string(SecurityCountermeasureNameError.Type)
+  .min(1, SecurityCountermeasureNameError.Empty)
+  .max(64, SecurityCountermeasureNameError.TooLong)
+  .regex(CHARS_WHITELIST, SecurityCountermeasureNameError.BadChars)
+  .brand("SecurityCountermeasureName");
+export type SecurityCountermeasureNameType = z.infer<typeof SecurityCountermeasureName>;

package/src/security-countermeasure-noop.strategy.ts ADDED Viewed

@@ -0,0 +1,12 @@
+import type { SecurityAction, SecurityCountermeasureStrategy } from "./security-countermeasure.strategy";
+import { SecurityCountermeasureName } from "./security-countermeasure-name.vo";
+export class SecurityCountermeasureNoopStrategy implements SecurityCountermeasureStrategy {
+  async execute(): Promise<SecurityAction> {
+    return { kind: "allow" };
+  }
+  get name() {
+    return SecurityCountermeasureName.parse("noop");
+  }
+}

package/src/security-countermeasure-report.strategy.ts ADDED Viewed

@@ -0,0 +1,27 @@
+import { CorrelationStorage } from "./correlation-storage.service";
+import type { LoggerPort } from "./logger.port";
+import type { SecurityContext } from "./security-context.vo";
+import type { SecurityAction, SecurityCountermeasureStrategy } from "./security-countermeasure.strategy";
+import { SecurityCountermeasureName } from "./security-countermeasure-name.vo";
+type Dependencies = { Logger: LoggerPort };
+export class SecurityCountermeasureReportStrategy implements SecurityCountermeasureStrategy {
+  constructor(private readonly deps: Dependencies) {}
+  async execute(context: SecurityContext): Promise<SecurityAction> {
+    this.deps.Logger.info({
+      message: "Security countermeasure report",
+      component: "security",
+      operation: "security_countermeasure_report",
+      correlationId: CorrelationStorage.get(),
+      metadata: context,
+    });
+    return { kind: "allow" };
+  }
+  get name() {
+    return SecurityCountermeasureName.parse("report");
+  }
+}

package/src/security-countermeasure-tarpit.strategy.ts ADDED Viewed

@@ -0,0 +1,31 @@
+import type * as tools from "@bgord/tools";
+import { CorrelationStorage } from "./correlation-storage.service";
+import type { LoggerPort } from "./logger.port";
+import type { SecurityContext } from "./security-context.vo";
+import type { SecurityAction, SecurityCountermeasureStrategy } from "./security-countermeasure.strategy";
+import { SecurityCountermeasureName } from "./security-countermeasure-name.vo";
+type Dependencies = { Logger: LoggerPort };
+export class SecurityCountermeasureTarpitStrategy implements SecurityCountermeasureStrategy {
+  constructor(
+    private readonly deps: Dependencies,
+    private readonly config: { duration: tools.Duration; after: SecurityAction },
+  ) {}
+  async execute(context: SecurityContext): Promise<SecurityAction> {
+    this.deps.Logger.info({
+      message: "Security countermeasure tarpit",
+      component: "security",
+      operation: "security_countermeasure_tarpit",
+      correlationId: CorrelationStorage.get(),
+      metadata: context,
+    });
+    return { kind: "delay", ...this.config };
+  }
+  get name() {
+    return SecurityCountermeasureName.parse("tarpit");
+  }
+}

package/src/security-countermeasure.strategy.ts ADDED Viewed

@@ -0,0 +1,16 @@
+import type * as tools from "@bgord/tools";
+import type { ContentfulStatusCode } from "hono/utils/http-status";
+import type { SecurityContext } from "./security-context.vo";
+import type { SecurityCountermeasureNameType } from "./security-countermeasure-name.vo";
+export type SecurityAction =
+  | { kind: "allow" }
+  | { kind: "deny"; reason: string; response: { status: ContentfulStatusCode } }
+  | { kind: "delay"; duration: tools.Duration; after: SecurityAction }
+  | { kind: "mirage"; response: { status: ContentfulStatusCode } };
+export interface SecurityCountermeasureStrategy {
+  execute(context: SecurityContext): Promise<SecurityAction>;
+  get name(): SecurityCountermeasureNameType;
+}

package/src/security-policy.vo.ts ADDED Viewed

@@ -0,0 +1,9 @@
+import type { SecurityCountermeasureStrategy } from "./security-countermeasure.strategy";
+import type { SecurityRuleStrategy } from "./security-rule.strategy";
+export class SecurityPolicy {
+  constructor(
+    readonly rule: SecurityRuleStrategy,
+    readonly countermeasure: SecurityCountermeasureStrategy,
+  ) {}
+}

package/src/security-rule-and.strategy.ts ADDED Viewed

@@ -0,0 +1,25 @@
+import type { Context } from "hono";
+import type { SecurityRuleStrategy } from "./security-rule.strategy";
+import { SecurityRuleName } from "./security-rule-name.vo";
+export const SecurityRuleAndStrategyError = {
+  MissingRules: "security.rule.and.adapter.error.missing.rules",
+  MaxRules: "security.rule.and.adapter.error.max.rules",
+};
+export class SecurityRuleAndStrategy implements SecurityRuleStrategy {
+  constructor(private readonly rules: SecurityRuleStrategy[]) {
+    if (rules.length === 0) throw new Error(SecurityRuleAndStrategyError.MissingRules);
+    if (rules.length > 5) throw new Error(SecurityRuleAndStrategyError.MaxRules);
+  }
+  async isViolated(c: Context) {
+    const reports = await Promise.all(this.rules.map((rule) => rule.isViolated(c)));
+    return reports.every(Boolean);
+  }
+  get name() {
+    return SecurityRuleName.parse(`and_${this.rules.map((rule) => rule.name).join("_")}`);
+  }
+}

package/src/security-rule-bait-routes.strategy.ts ADDED Viewed

@@ -0,0 +1,15 @@
+import type { Context } from "hono";
+import type { SecurityRuleStrategy } from "./security-rule.strategy";
+import { SecurityRuleName } from "./security-rule-name.vo";
+export class SecurityRuleBaitRoutesStrategy implements SecurityRuleStrategy {
+  constructor(private readonly routes: string[]) {}
+  async isViolated(c: Context) {
+    return this.routes.includes(c.req.path);
+  }
+  get name() {
+    return SecurityRuleName.parse("bait_routes");
+  }
+}