@blamejs/blamejs-shop 0.0.44

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (1220) hide show
  1. package/CHANGELOG.md +87 -0
  2. package/LICENSE +17 -0
  3. package/README.md +117 -0
  4. package/SECURITY.md +139 -0
  5. package/lib/admin.js +952 -0
  6. package/lib/analytics.js +267 -0
  7. package/lib/cart.js +279 -0
  8. package/lib/catalog-import.js +344 -0
  9. package/lib/catalog.js +769 -0
  10. package/lib/checkout.js +320 -0
  11. package/lib/config.js +151 -0
  12. package/lib/customers.js +322 -0
  13. package/lib/email.js +242 -0
  14. package/lib/externaldb-d1.js +283 -0
  15. package/lib/index.js +57 -0
  16. package/lib/inventory-alerts.js +198 -0
  17. package/lib/newsletter.js +142 -0
  18. package/lib/order.js +380 -0
  19. package/lib/payment.js +318 -0
  20. package/lib/pricing.js +185 -0
  21. package/lib/r2-bridge.js +169 -0
  22. package/lib/shipping.js +185 -0
  23. package/lib/storefront.js +2160 -0
  24. package/lib/subscriptions.js +410 -0
  25. package/lib/tax.js +161 -0
  26. package/lib/theme.js +194 -0
  27. package/lib/vendor/MANIFEST.json +19 -0
  28. package/lib/vendor/blamejs/.clusterfuzzlite/Dockerfile +23 -0
  29. package/lib/vendor/blamejs/.clusterfuzzlite/build.sh +34 -0
  30. package/lib/vendor/blamejs/.clusterfuzzlite/project.yaml +16 -0
  31. package/lib/vendor/blamejs/.dockerignore +45 -0
  32. package/lib/vendor/blamejs/.gitattributes +42 -0
  33. package/lib/vendor/blamejs/.github/CODEOWNERS +4 -0
  34. package/lib/vendor/blamejs/.github/FUNDING.yml +2 -0
  35. package/lib/vendor/blamejs/.github/ISSUE_TEMPLATE/bug_report.md +58 -0
  36. package/lib/vendor/blamejs/.github/ISSUE_TEMPLATE/config.yml +8 -0
  37. package/lib/vendor/blamejs/.github/ISSUE_TEMPLATE/feature_request.md +99 -0
  38. package/lib/vendor/blamejs/.github/PULL_REQUEST_TEMPLATE.md +77 -0
  39. package/lib/vendor/blamejs/.github/dependabot.yml +37 -0
  40. package/lib/vendor/blamejs/.github/workflows/actions-lint.yml +148 -0
  41. package/lib/vendor/blamejs/.github/workflows/cflite_batch.yml +107 -0
  42. package/lib/vendor/blamejs/.github/workflows/cflite_pr.yml +122 -0
  43. package/lib/vendor/blamejs/.github/workflows/ci.yml +511 -0
  44. package/lib/vendor/blamejs/.github/workflows/codeql.yml +50 -0
  45. package/lib/vendor/blamejs/.github/workflows/npm-publish.yml +655 -0
  46. package/lib/vendor/blamejs/.github/workflows/release-container.yml +406 -0
  47. package/lib/vendor/blamejs/.github/workflows/scorecard.yml +101 -0
  48. package/lib/vendor/blamejs/.github/workflows/sha-to-tag-verify.yml +134 -0
  49. package/lib/vendor/blamejs/.gitignore +102 -0
  50. package/lib/vendor/blamejs/.gitleaks.toml +166 -0
  51. package/lib/vendor/blamejs/.hadolint.yaml +18 -0
  52. package/lib/vendor/blamejs/.npmrc +5 -0
  53. package/lib/vendor/blamejs/.pinact.yaml +17 -0
  54. package/lib/vendor/blamejs/ARCHITECTURE.md +158 -0
  55. package/lib/vendor/blamejs/CHANGELOG.md +1351 -0
  56. package/lib/vendor/blamejs/CODE_OF_CONDUCT.md +86 -0
  57. package/lib/vendor/blamejs/CONTRIBUTING.md +156 -0
  58. package/lib/vendor/blamejs/GOVERNANCE.md +201 -0
  59. package/lib/vendor/blamejs/LICENSE +201 -0
  60. package/lib/vendor/blamejs/LTS-CALENDAR.md +29 -0
  61. package/lib/vendor/blamejs/MIGRATING.md +29 -0
  62. package/lib/vendor/blamejs/NOTICE +81 -0
  63. package/lib/vendor/blamejs/README.md +304 -0
  64. package/lib/vendor/blamejs/SECURITY.md +432 -0
  65. package/lib/vendor/blamejs/api-snapshot.json +48709 -0
  66. package/lib/vendor/blamejs/assets/BlameJS_Logo.png +0 -0
  67. package/lib/vendor/blamejs/assets/BlameJS_Logo.svg +129 -0
  68. package/lib/vendor/blamejs/bench/README.md +77 -0
  69. package/lib/vendor/blamejs/bench/_helpers.js +70 -0
  70. package/lib/vendor/blamejs/bench/baseline.json +183 -0
  71. package/lib/vendor/blamejs/bench/crypto-hash.bench.js +19 -0
  72. package/lib/vendor/blamejs/bench/crypto-symmetric.bench.js +28 -0
  73. package/lib/vendor/blamejs/bench/run.js +140 -0
  74. package/lib/vendor/blamejs/bench/safe-json.bench.js +31 -0
  75. package/lib/vendor/blamejs/bin/blamejs.js +13 -0
  76. package/lib/vendor/blamejs/docker/caddy/Caddyfile +46 -0
  77. package/lib/vendor/blamejs/docker/coredns/Corefile +37 -0
  78. package/lib/vendor/blamejs/docker/haproxy/haproxy.cfg +52 -0
  79. package/lib/vendor/blamejs/docker/init/generate-certs.sh +118 -0
  80. package/lib/vendor/blamejs/docker/keycloak/realm-blamejs-test.json +87 -0
  81. package/lib/vendor/blamejs/docker/mitmproxy/config.yaml +16 -0
  82. package/lib/vendor/blamejs/docker/mongo/init-tls.sh +17 -0
  83. package/lib/vendor/blamejs/docker/mysql/my.cnf +12 -0
  84. package/lib/vendor/blamejs/docker/nats/nats.conf +33 -0
  85. package/lib/vendor/blamejs/docker/postgres/init-tls.sh +17 -0
  86. package/lib/vendor/blamejs/docker/postgres/postgresql.conf +18 -0
  87. package/lib/vendor/blamejs/docker/rabbitmq/rabbitmq.conf +18 -0
  88. package/lib/vendor/blamejs/docker/redis/redis.conf +15 -0
  89. package/lib/vendor/blamejs/docker/squid/squid.conf +24 -0
  90. package/lib/vendor/blamejs/docker/syslog/syslog-ng.conf +34 -0
  91. package/lib/vendor/blamejs/docker-compose.test.yml +545 -0
  92. package/lib/vendor/blamejs/docs/cis-postgres-crosswalk.md +102 -0
  93. package/lib/vendor/blamejs/docs/cis-sqlite-equivalent.md +92 -0
  94. package/lib/vendor/blamejs/eslint.config.mjs +204 -0
  95. package/lib/vendor/blamejs/examples/wiki/Caddyfile +40 -0
  96. package/lib/vendor/blamejs/examples/wiki/DEPLOY.md +218 -0
  97. package/lib/vendor/blamejs/examples/wiki/Dockerfile +120 -0
  98. package/lib/vendor/blamejs/examples/wiki/README.md +157 -0
  99. package/lib/vendor/blamejs/examples/wiki/cli-snapshot.json +250 -0
  100. package/lib/vendor/blamejs/examples/wiki/docker-compose.prod.yml +231 -0
  101. package/lib/vendor/blamejs/examples/wiki/docker-compose.yml +166 -0
  102. package/lib/vendor/blamejs/examples/wiki/env-snapshot.json +217 -0
  103. package/lib/vendor/blamejs/examples/wiki/lib/auto-site-entries.js +139 -0
  104. package/lib/vendor/blamejs/examples/wiki/lib/build-app.js +555 -0
  105. package/lib/vendor/blamejs/examples/wiki/lib/harvest-cli.js +507 -0
  106. package/lib/vendor/blamejs/examples/wiki/lib/harvest-env-vars.js +435 -0
  107. package/lib/vendor/blamejs/examples/wiki/lib/harvest-errors.js +282 -0
  108. package/lib/vendor/blamejs/examples/wiki/lib/harvest-vendored-deps.js +321 -0
  109. package/lib/vendor/blamejs/examples/wiki/lib/nav.js +15 -0
  110. package/lib/vendor/blamejs/examples/wiki/lib/opts-resolver.js +75 -0
  111. package/lib/vendor/blamejs/examples/wiki/lib/page-generator.js +508 -0
  112. package/lib/vendor/blamejs/examples/wiki/lib/section.js +276 -0
  113. package/lib/vendor/blamejs/examples/wiki/lib/source-comment-block-validator.js +587 -0
  114. package/lib/vendor/blamejs/examples/wiki/lib/source-doc-parser.js +318 -0
  115. package/lib/vendor/blamejs/examples/wiki/lib/symbol-index.js +122 -0
  116. package/lib/vendor/blamejs/examples/wiki/migrations/0001-pages-schema.js +74 -0
  117. package/lib/vendor/blamejs/examples/wiki/package.json +18 -0
  118. package/lib/vendor/blamejs/examples/wiki/public/img/blamejs-logo.png +0 -0
  119. package/lib/vendor/blamejs/examples/wiki/public/img/blamejs-logo.svg +129 -0
  120. package/lib/vendor/blamejs/examples/wiki/public/robots.txt +5 -0
  121. package/lib/vendor/blamejs/examples/wiki/public/vendor/MANIFEST.json +30 -0
  122. package/lib/vendor/blamejs/examples/wiki/public/vendor/prism.css +1 -0
  123. package/lib/vendor/blamejs/examples/wiki/public/vendor/prism.js +15 -0
  124. package/lib/vendor/blamejs/examples/wiki/public/wiki.css +1250 -0
  125. package/lib/vendor/blamejs/examples/wiki/routes/admin.js +366 -0
  126. package/lib/vendor/blamejs/examples/wiki/routes/integration.js +230 -0
  127. package/lib/vendor/blamejs/examples/wiki/routes/pages.js +266 -0
  128. package/lib/vendor/blamejs/examples/wiki/scripts/backfill-module-metadata.js +214 -0
  129. package/lib/vendor/blamejs/examples/wiki/seeders/prod/0001-default-pages.js +35 -0
  130. package/lib/vendor/blamejs/examples/wiki/seeders/prod/pages/_index.js +34 -0
  131. package/lib/vendor/blamejs/examples/wiki/seeders/prod/pages/api.js +76 -0
  132. package/lib/vendor/blamejs/examples/wiki/server.js +129 -0
  133. package/lib/vendor/blamejs/examples/wiki/site.config.js +197 -0
  134. package/lib/vendor/blamejs/examples/wiki/snippets/README.md +38 -0
  135. package/lib/vendor/blamejs/examples/wiki/snippets/auth/password-hash.example.js +15 -0
  136. package/lib/vendor/blamejs/examples/wiki/src/editor.js +103 -0
  137. package/lib/vendor/blamejs/examples/wiki/src/wiki.js +349 -0
  138. package/lib/vendor/blamejs/examples/wiki/test/AUDIT.md +155 -0
  139. package/lib/vendor/blamejs/examples/wiki/test/codebase-patterns.test.js +594 -0
  140. package/lib/vendor/blamejs/examples/wiki/test/e2e.js +741 -0
  141. package/lib/vendor/blamejs/examples/wiki/test/find-missing-pages.js +254 -0
  142. package/lib/vendor/blamejs/examples/wiki/test/integration.js +391 -0
  143. package/lib/vendor/blamejs/examples/wiki/test/validate-cli-snapshot.js +379 -0
  144. package/lib/vendor/blamejs/examples/wiki/test/validate-env-snapshot.js +346 -0
  145. package/lib/vendor/blamejs/examples/wiki/test/validate-nav-coverage.js +212 -0
  146. package/lib/vendor/blamejs/examples/wiki/test/validate-site-coverage.js +252 -0
  147. package/lib/vendor/blamejs/examples/wiki/test/validate-source-comment-blocks.js +107 -0
  148. package/lib/vendor/blamejs/examples/wiki/views/_layout.html +115 -0
  149. package/lib/vendor/blamejs/examples/wiki/views/admin/api-keys.html +51 -0
  150. package/lib/vendor/blamejs/examples/wiki/views/admin/dashboard.html +22 -0
  151. package/lib/vendor/blamejs/examples/wiki/views/admin/edit.html +17 -0
  152. package/lib/vendor/blamejs/examples/wiki/views/home.html +85 -0
  153. package/lib/vendor/blamejs/examples/wiki/views/login.html +18 -0
  154. package/lib/vendor/blamejs/examples/wiki/views/page.html +5 -0
  155. package/lib/vendor/blamejs/examples/wiki/views/partials/nav.html +13 -0
  156. package/lib/vendor/blamejs/examples/wiki/views/search.html +19 -0
  157. package/lib/vendor/blamejs/examples/wiki/wiki.config.js +15 -0
  158. package/lib/vendor/blamejs/fuzz/README.md +137 -0
  159. package/lib/vendor/blamejs/fuzz/_expected.js +35 -0
  160. package/lib/vendor/blamejs/fuzz/guard-agent-registry.fuzz.js +22 -0
  161. package/lib/vendor/blamejs/fuzz/guard-csv.fuzz.js +16 -0
  162. package/lib/vendor/blamejs/fuzz/guard-csv_seed_corpus/01-basic.csv +3 -0
  163. package/lib/vendor/blamejs/fuzz/guard-csv_seed_corpus/02-formula.csv +1 -0
  164. package/lib/vendor/blamejs/fuzz/guard-csv_seed_corpus/03-hyperlink.csv +1 -0
  165. package/lib/vendor/blamejs/fuzz/guard-dsn.fuzz.js +22 -0
  166. package/lib/vendor/blamejs/fuzz/guard-email.fuzz.js +16 -0
  167. package/lib/vendor/blamejs/fuzz/guard-email_seed_corpus/01-basic.eml +5 -0
  168. package/lib/vendor/blamejs/fuzz/guard-envelope.fuzz.js +24 -0
  169. package/lib/vendor/blamejs/fuzz/guard-event-bus-payload.fuzz.js +24 -0
  170. package/lib/vendor/blamejs/fuzz/guard-event-bus-topic.fuzz.js +20 -0
  171. package/lib/vendor/blamejs/fuzz/guard-html.fuzz.js +16 -0
  172. package/lib/vendor/blamejs/fuzz/guard-html_seed_corpus/01-basic.html +1 -0
  173. package/lib/vendor/blamejs/fuzz/guard-html_seed_corpus/02-script.html +1 -0
  174. package/lib/vendor/blamejs/fuzz/guard-html_seed_corpus/03-event.html +1 -0
  175. package/lib/vendor/blamejs/fuzz/guard-html_seed_corpus/04-jsurl.html +1 -0
  176. package/lib/vendor/blamejs/fuzz/guard-idempotency-key.fuzz.js +20 -0
  177. package/lib/vendor/blamejs/fuzz/guard-imap-command.fuzz.js +35 -0
  178. package/lib/vendor/blamejs/fuzz/guard-jmap.fuzz.js +41 -0
  179. package/lib/vendor/blamejs/fuzz/guard-json.fuzz.js +16 -0
  180. package/lib/vendor/blamejs/fuzz/guard-json_seed_corpus/01-basic.json +1 -0
  181. package/lib/vendor/blamejs/fuzz/guard-json_seed_corpus/02-proto.json +1 -0
  182. package/lib/vendor/blamejs/fuzz/guard-json_seed_corpus/03-dupkey.json +1 -0
  183. package/lib/vendor/blamejs/fuzz/guard-json_seed_corpus/04-nan.json +1 -0
  184. package/lib/vendor/blamejs/fuzz/guard-json_seed_corpus/05-bom.json +1 -0
  185. package/lib/vendor/blamejs/fuzz/guard-list-id.fuzz.js +21 -0
  186. package/lib/vendor/blamejs/fuzz/guard-list-unsubscribe.fuzz.js +25 -0
  187. package/lib/vendor/blamejs/fuzz/guard-mail-compose.fuzz.js +22 -0
  188. package/lib/vendor/blamejs/fuzz/guard-mail-move.fuzz.js +22 -0
  189. package/lib/vendor/blamejs/fuzz/guard-mail-query.fuzz.js +27 -0
  190. package/lib/vendor/blamejs/fuzz/guard-mail-reply.fuzz.js +23 -0
  191. package/lib/vendor/blamejs/fuzz/guard-mail-sieve.fuzz.js +36 -0
  192. package/lib/vendor/blamejs/fuzz/guard-managesieve-command.fuzz.js +26 -0
  193. package/lib/vendor/blamejs/fuzz/guard-markdown.fuzz.js +16 -0
  194. package/lib/vendor/blamejs/fuzz/guard-markdown_seed_corpus/01-basic.md +2 -0
  195. package/lib/vendor/blamejs/fuzz/guard-markdown_seed_corpus/02-jsurl.md +1 -0
  196. package/lib/vendor/blamejs/fuzz/guard-markdown_seed_corpus/03-jsimg.md +1 -0
  197. package/lib/vendor/blamejs/fuzz/guard-message-id.fuzz.js +26 -0
  198. package/lib/vendor/blamejs/fuzz/guard-pop3-command.fuzz.js +23 -0
  199. package/lib/vendor/blamejs/fuzz/guard-posture-chain.fuzz.js +22 -0
  200. package/lib/vendor/blamejs/fuzz/guard-saga-config.fuzz.js +32 -0
  201. package/lib/vendor/blamejs/fuzz/guard-smtp-command.fuzz.js +27 -0
  202. package/lib/vendor/blamejs/fuzz/guard-snapshot-envelope.fuzz.js +22 -0
  203. package/lib/vendor/blamejs/fuzz/guard-stream-args.fuzz.js +22 -0
  204. package/lib/vendor/blamejs/fuzz/guard-svg.fuzz.js +16 -0
  205. package/lib/vendor/blamejs/fuzz/guard-svg_seed_corpus/01-basic.svg +1 -0
  206. package/lib/vendor/blamejs/fuzz/guard-svg_seed_corpus/02-script.svg +1 -0
  207. package/lib/vendor/blamejs/fuzz/guard-tenant-id.fuzz.js +20 -0
  208. package/lib/vendor/blamejs/fuzz/guard-trace-context.fuzz.js +30 -0
  209. package/lib/vendor/blamejs/fuzz/guard-xml.fuzz.js +16 -0
  210. package/lib/vendor/blamejs/fuzz/guard-xml_seed_corpus/01-basic.xml +1 -0
  211. package/lib/vendor/blamejs/fuzz/guard-xml_seed_corpus/02-xxe.xml +1 -0
  212. package/lib/vendor/blamejs/fuzz/guard-yaml.fuzz.js +16 -0
  213. package/lib/vendor/blamejs/fuzz/guard-yaml_seed_corpus/01-basic.yaml +2 -0
  214. package/lib/vendor/blamejs/fuzz/guard-yaml_seed_corpus/02-anchor.yaml +2 -0
  215. package/lib/vendor/blamejs/fuzz/guard-yaml_seed_corpus/03-norway.yaml +1 -0
  216. package/lib/vendor/blamejs/fuzz/guard-yaml_seed_corpus/04-multidoc.yaml +4 -0
  217. package/lib/vendor/blamejs/fuzz/parsers__safe-ini.fuzz.js +16 -0
  218. package/lib/vendor/blamejs/fuzz/parsers__safe-ini_seed_corpus/01-basic.ini +2 -0
  219. package/lib/vendor/blamejs/fuzz/parsers__safe-toml.fuzz.js +16 -0
  220. package/lib/vendor/blamejs/fuzz/parsers__safe-toml_seed_corpus/01-basic.toml +4 -0
  221. package/lib/vendor/blamejs/fuzz/parsers__safe-xml.fuzz.js +16 -0
  222. package/lib/vendor/blamejs/fuzz/parsers__safe-xml_seed_corpus/01-basic.xml +1 -0
  223. package/lib/vendor/blamejs/fuzz/parsers__safe-yaml.fuzz.js +16 -0
  224. package/lib/vendor/blamejs/fuzz/parsers__safe-yaml_seed_corpus/01-basic.yaml +4 -0
  225. package/lib/vendor/blamejs/fuzz/safe-decompress.fuzz.js +49 -0
  226. package/lib/vendor/blamejs/fuzz/safe-dns.fuzz.js +29 -0
  227. package/lib/vendor/blamejs/fuzz/safe-ical.fuzz.js +16 -0
  228. package/lib/vendor/blamejs/fuzz/safe-icap.fuzz.js +42 -0
  229. package/lib/vendor/blamejs/fuzz/safe-json.fuzz.js +25 -0
  230. package/lib/vendor/blamejs/fuzz/safe-json_seed_corpus/01-object.txt +1 -0
  231. package/lib/vendor/blamejs/fuzz/safe-json_seed_corpus/02-array.txt +1 -0
  232. package/lib/vendor/blamejs/fuzz/safe-json_seed_corpus/03-string.txt +1 -0
  233. package/lib/vendor/blamejs/fuzz/safe-json_seed_corpus/04-proto.txt +1 -0
  234. package/lib/vendor/blamejs/fuzz/safe-json_seed_corpus/05-deep.txt +1 -0
  235. package/lib/vendor/blamejs/fuzz/safe-jsonpath.fuzz.js +16 -0
  236. package/lib/vendor/blamejs/fuzz/safe-jsonpath_seed_corpus/01-basic.txt +1 -0
  237. package/lib/vendor/blamejs/fuzz/safe-jsonpath_seed_corpus/02-filter.txt +1 -0
  238. package/lib/vendor/blamejs/fuzz/safe-jsonpath_seed_corpus/03-deepscan.txt +1 -0
  239. package/lib/vendor/blamejs/fuzz/safe-jsonpath_seed_corpus/04-slice.txt +1 -0
  240. package/lib/vendor/blamejs/fuzz/safe-mime.fuzz.js +27 -0
  241. package/lib/vendor/blamejs/fuzz/safe-mount-info.fuzz.js +33 -0
  242. package/lib/vendor/blamejs/fuzz/safe-sieve.fuzz.js +28 -0
  243. package/lib/vendor/blamejs/fuzz/safe-smtp.fuzz.js +64 -0
  244. package/lib/vendor/blamejs/fuzz/safe-url.fuzz.js +16 -0
  245. package/lib/vendor/blamejs/fuzz/safe-url_seed_corpus/01-basic.txt +1 -0
  246. package/lib/vendor/blamejs/fuzz/safe-url_seed_corpus/02-userinfo.txt +1 -0
  247. package/lib/vendor/blamejs/fuzz/safe-url_seed_corpus/03-dangerous.txt +1 -0
  248. package/lib/vendor/blamejs/fuzz/safe-url_seed_corpus/04-data.txt +1 -0
  249. package/lib/vendor/blamejs/fuzz/safe-url_seed_corpus/05-ipv6.txt +1 -0
  250. package/lib/vendor/blamejs/fuzz/safe-url_seed_corpus/06-idn.txt +1 -0
  251. package/lib/vendor/blamejs/fuzz/safe-vcard.fuzz.js +16 -0
  252. package/lib/vendor/blamejs/index.js +678 -0
  253. package/lib/vendor/blamejs/keys/release-pqc-pub.json +7 -0
  254. package/lib/vendor/blamejs/lib/_test/crypto-fixtures.js +67 -0
  255. package/lib/vendor/blamejs/lib/a2a-tasks.js +598 -0
  256. package/lib/vendor/blamejs/lib/a2a.js +407 -0
  257. package/lib/vendor/blamejs/lib/acme.js +1448 -0
  258. package/lib/vendor/blamejs/lib/agent-audit.js +45 -0
  259. package/lib/vendor/blamejs/lib/agent-event-bus.js +382 -0
  260. package/lib/vendor/blamejs/lib/agent-idempotency.js +497 -0
  261. package/lib/vendor/blamejs/lib/agent-orchestrator.js +717 -0
  262. package/lib/vendor/blamejs/lib/agent-posture-chain.js +366 -0
  263. package/lib/vendor/blamejs/lib/agent-saga.js +321 -0
  264. package/lib/vendor/blamejs/lib/agent-snapshot.js +676 -0
  265. package/lib/vendor/blamejs/lib/agent-stream.js +269 -0
  266. package/lib/vendor/blamejs/lib/agent-tenant.js +632 -0
  267. package/lib/vendor/blamejs/lib/agent-trace.js +281 -0
  268. package/lib/vendor/blamejs/lib/ai-adverse-decision.js +184 -0
  269. package/lib/vendor/blamejs/lib/ai-content-detect.js +268 -0
  270. package/lib/vendor/blamejs/lib/ai-input.js +201 -0
  271. package/lib/vendor/blamejs/lib/ai-model-manifest.js +363 -0
  272. package/lib/vendor/blamejs/lib/ai-pref.js +340 -0
  273. package/lib/vendor/blamejs/lib/api-key.js +721 -0
  274. package/lib/vendor/blamejs/lib/api-snapshot.js +458 -0
  275. package/lib/vendor/blamejs/lib/app-shutdown.js +557 -0
  276. package/lib/vendor/blamejs/lib/app.js +365 -0
  277. package/lib/vendor/blamejs/lib/archive.js +547 -0
  278. package/lib/vendor/blamejs/lib/arg-parser.js +697 -0
  279. package/lib/vendor/blamejs/lib/argon2-builtin.js +173 -0
  280. package/lib/vendor/blamejs/lib/asn1-der.js +424 -0
  281. package/lib/vendor/blamejs/lib/asyncapi-bindings.js +160 -0
  282. package/lib/vendor/blamejs/lib/asyncapi-traits.js +143 -0
  283. package/lib/vendor/blamejs/lib/asyncapi.js +575 -0
  284. package/lib/vendor/blamejs/lib/atomic-file.js +1023 -0
  285. package/lib/vendor/blamejs/lib/audit-chain.js +266 -0
  286. package/lib/vendor/blamejs/lib/audit-daily-review.js +389 -0
  287. package/lib/vendor/blamejs/lib/audit-sign.js +751 -0
  288. package/lib/vendor/blamejs/lib/audit-tools.js +1113 -0
  289. package/lib/vendor/blamejs/lib/audit.js +1671 -0
  290. package/lib/vendor/blamejs/lib/auth/aal.js +169 -0
  291. package/lib/vendor/blamejs/lib/auth/access-lock.js +220 -0
  292. package/lib/vendor/blamejs/lib/auth/acr-vocabulary.js +265 -0
  293. package/lib/vendor/blamejs/lib/auth/ato-kill-switch.js +112 -0
  294. package/lib/vendor/blamejs/lib/auth/auth-time-tracker.js +111 -0
  295. package/lib/vendor/blamejs/lib/auth/bot-challenge.js +573 -0
  296. package/lib/vendor/blamejs/lib/auth/ciba.js +637 -0
  297. package/lib/vendor/blamejs/lib/auth/dpop.js +516 -0
  298. package/lib/vendor/blamejs/lib/auth/elevation-grant.js +306 -0
  299. package/lib/vendor/blamejs/lib/auth/fal.js +229 -0
  300. package/lib/vendor/blamejs/lib/auth/fido-mds3.js +681 -0
  301. package/lib/vendor/blamejs/lib/auth/jwt-external.js +519 -0
  302. package/lib/vendor/blamejs/lib/auth/jwt.js +430 -0
  303. package/lib/vendor/blamejs/lib/auth/lockout.js +449 -0
  304. package/lib/vendor/blamejs/lib/auth/oauth.js +2141 -0
  305. package/lib/vendor/blamejs/lib/auth/oid4vci.js +657 -0
  306. package/lib/vendor/blamejs/lib/auth/oid4vp.js +531 -0
  307. package/lib/vendor/blamejs/lib/auth/openid-federation.js +600 -0
  308. package/lib/vendor/blamejs/lib/auth/passkey.js +676 -0
  309. package/lib/vendor/blamejs/lib/auth/password.js +693 -0
  310. package/lib/vendor/blamejs/lib/auth/saml.js +2109 -0
  311. package/lib/vendor/blamejs/lib/auth/sd-jwt-vc-disclosure.js +95 -0
  312. package/lib/vendor/blamejs/lib/auth/sd-jwt-vc-holder.js +225 -0
  313. package/lib/vendor/blamejs/lib/auth/sd-jwt-vc-issuer.js +197 -0
  314. package/lib/vendor/blamejs/lib/auth/sd-jwt-vc.js +728 -0
  315. package/lib/vendor/blamejs/lib/auth/status-list.js +272 -0
  316. package/lib/vendor/blamejs/lib/auth/step-up-policy.js +335 -0
  317. package/lib/vendor/blamejs/lib/auth/step-up.js +454 -0
  318. package/lib/vendor/blamejs/lib/auth-bot-challenge.js +505 -0
  319. package/lib/vendor/blamejs/lib/auth-header.js +148 -0
  320. package/lib/vendor/blamejs/lib/backup/bundle.js +265 -0
  321. package/lib/vendor/blamejs/lib/backup/crypto.js +176 -0
  322. package/lib/vendor/blamejs/lib/backup/index.js +1001 -0
  323. package/lib/vendor/blamejs/lib/backup/manifest.js +443 -0
  324. package/lib/vendor/blamejs/lib/boot-gates.js +174 -0
  325. package/lib/vendor/blamejs/lib/breach-deadline.js +272 -0
  326. package/lib/vendor/blamejs/lib/break-glass.js +1753 -0
  327. package/lib/vendor/blamejs/lib/budr.js +205 -0
  328. package/lib/vendor/blamejs/lib/bundler.js +461 -0
  329. package/lib/vendor/blamejs/lib/cache-redis.js +256 -0
  330. package/lib/vendor/blamejs/lib/cache-status.js +288 -0
  331. package/lib/vendor/blamejs/lib/cache.js +1331 -0
  332. package/lib/vendor/blamejs/lib/calendar.js +1240 -0
  333. package/lib/vendor/blamejs/lib/canonical-json.js +143 -0
  334. package/lib/vendor/blamejs/lib/cdn-cache-control.js +473 -0
  335. package/lib/vendor/blamejs/lib/cert.js +763 -0
  336. package/lib/vendor/blamejs/lib/chain-writer.js +259 -0
  337. package/lib/vendor/blamejs/lib/circuit-breaker.js +101 -0
  338. package/lib/vendor/blamejs/lib/cli-helpers.js +237 -0
  339. package/lib/vendor/blamejs/lib/cli.js +2328 -0
  340. package/lib/vendor/blamejs/lib/client-hints.js +318 -0
  341. package/lib/vendor/blamejs/lib/cloud-events.js +277 -0
  342. package/lib/vendor/blamejs/lib/cluster-provider-db.js +317 -0
  343. package/lib/vendor/blamejs/lib/cluster-storage.js +351 -0
  344. package/lib/vendor/blamejs/lib/cluster.js +1017 -0
  345. package/lib/vendor/blamejs/lib/cms-codec.js +826 -0
  346. package/lib/vendor/blamejs/lib/codepoint-class.js +262 -0
  347. package/lib/vendor/blamejs/lib/compliance-ai-act-logging.js +190 -0
  348. package/lib/vendor/blamejs/lib/compliance-ai-act-prohibited.js +205 -0
  349. package/lib/vendor/blamejs/lib/compliance-ai-act-risk.js +189 -0
  350. package/lib/vendor/blamejs/lib/compliance-ai-act-transparency.js +200 -0
  351. package/lib/vendor/blamejs/lib/compliance-ai-act.js +821 -0
  352. package/lib/vendor/blamejs/lib/compliance-eaa.js +204 -0
  353. package/lib/vendor/blamejs/lib/compliance-sanctions-aliases.js +167 -0
  354. package/lib/vendor/blamejs/lib/compliance-sanctions-fetcher.js +206 -0
  355. package/lib/vendor/blamejs/lib/compliance-sanctions-fuzzy.js +297 -0
  356. package/lib/vendor/blamejs/lib/compliance-sanctions.js +569 -0
  357. package/lib/vendor/blamejs/lib/compliance.js +1558 -0
  358. package/lib/vendor/blamejs/lib/config-drift.js +426 -0
  359. package/lib/vendor/blamejs/lib/config.js +446 -0
  360. package/lib/vendor/blamejs/lib/consent.js +369 -0
  361. package/lib/vendor/blamejs/lib/constants.js +209 -0
  362. package/lib/vendor/blamejs/lib/content-credentials.js +704 -0
  363. package/lib/vendor/blamejs/lib/cookies.js +560 -0
  364. package/lib/vendor/blamejs/lib/cra-report.js +299 -0
  365. package/lib/vendor/blamejs/lib/credential-hash.js +394 -0
  366. package/lib/vendor/blamejs/lib/crypto-field.js +1017 -0
  367. package/lib/vendor/blamejs/lib/crypto-hpke-pq.js +187 -0
  368. package/lib/vendor/blamejs/lib/crypto-hpke.js +256 -0
  369. package/lib/vendor/blamejs/lib/crypto.js +1908 -0
  370. package/lib/vendor/blamejs/lib/csp.js +271 -0
  371. package/lib/vendor/blamejs/lib/csv.js +418 -0
  372. package/lib/vendor/blamejs/lib/daemon.js +481 -0
  373. package/lib/vendor/blamejs/lib/dark-patterns.js +488 -0
  374. package/lib/vendor/blamejs/lib/data-act.js +328 -0
  375. package/lib/vendor/blamejs/lib/db-collection.js +587 -0
  376. package/lib/vendor/blamejs/lib/db-declare-row-policy.js +267 -0
  377. package/lib/vendor/blamejs/lib/db-declare-view.js +420 -0
  378. package/lib/vendor/blamejs/lib/db-file-lifecycle.js +333 -0
  379. package/lib/vendor/blamejs/lib/db-query.js +802 -0
  380. package/lib/vendor/blamejs/lib/db-role-context.js +50 -0
  381. package/lib/vendor/blamejs/lib/db-schema.js +322 -0
  382. package/lib/vendor/blamejs/lib/db.js +3111 -0
  383. package/lib/vendor/blamejs/lib/dbsc.js +299 -0
  384. package/lib/vendor/blamejs/lib/ddl-change-control.js +523 -0
  385. package/lib/vendor/blamejs/lib/deprecate.js +377 -0
  386. package/lib/vendor/blamejs/lib/dev.js +405 -0
  387. package/lib/vendor/blamejs/lib/dora.js +402 -0
  388. package/lib/vendor/blamejs/lib/dr-runbook.js +368 -0
  389. package/lib/vendor/blamejs/lib/dsr.js +1188 -0
  390. package/lib/vendor/blamejs/lib/dual-control.js +526 -0
  391. package/lib/vendor/blamejs/lib/early-hints.js +212 -0
  392. package/lib/vendor/blamejs/lib/error-page.js +420 -0
  393. package/lib/vendor/blamejs/lib/events.js +214 -0
  394. package/lib/vendor/blamejs/lib/external-db-migrate.js +659 -0
  395. package/lib/vendor/blamejs/lib/external-db.js +1877 -0
  396. package/lib/vendor/blamejs/lib/fapi2.js +394 -0
  397. package/lib/vendor/blamejs/lib/fda-21cfr11.js +395 -0
  398. package/lib/vendor/blamejs/lib/fdx.js +370 -0
  399. package/lib/vendor/blamejs/lib/fedcm.js +264 -0
  400. package/lib/vendor/blamejs/lib/file-type.js +360 -0
  401. package/lib/vendor/blamejs/lib/file-upload.js +1256 -0
  402. package/lib/vendor/blamejs/lib/flag-cache.js +136 -0
  403. package/lib/vendor/blamejs/lib/flag-evaluation-context.js +135 -0
  404. package/lib/vendor/blamejs/lib/flag-providers.js +279 -0
  405. package/lib/vendor/blamejs/lib/flag-targeting.js +210 -0
  406. package/lib/vendor/blamejs/lib/flag.js +346 -0
  407. package/lib/vendor/blamejs/lib/forms.js +525 -0
  408. package/lib/vendor/blamejs/lib/framework-error.js +724 -0
  409. package/lib/vendor/blamejs/lib/framework-schema.js +845 -0
  410. package/lib/vendor/blamejs/lib/framework-sha1-hibp.js +34 -0
  411. package/lib/vendor/blamejs/lib/fsm.js +469 -0
  412. package/lib/vendor/blamejs/lib/gate-contract.js +1661 -0
  413. package/lib/vendor/blamejs/lib/gdpr-ropa.js +261 -0
  414. package/lib/vendor/blamejs/lib/graphql-federation.js +234 -0
  415. package/lib/vendor/blamejs/lib/guard-agent-registry.js +179 -0
  416. package/lib/vendor/blamejs/lib/guard-all.js +555 -0
  417. package/lib/vendor/blamejs/lib/guard-archive.js +901 -0
  418. package/lib/vendor/blamejs/lib/guard-auth.js +451 -0
  419. package/lib/vendor/blamejs/lib/guard-cidr.js +676 -0
  420. package/lib/vendor/blamejs/lib/guard-csv.js +1176 -0
  421. package/lib/vendor/blamejs/lib/guard-domain.js +814 -0
  422. package/lib/vendor/blamejs/lib/guard-dsn.js +382 -0
  423. package/lib/vendor/blamejs/lib/guard-email.js +951 -0
  424. package/lib/vendor/blamejs/lib/guard-envelope.js +294 -0
  425. package/lib/vendor/blamejs/lib/guard-event-bus-payload.js +217 -0
  426. package/lib/vendor/blamejs/lib/guard-event-bus-topic.js +150 -0
  427. package/lib/vendor/blamejs/lib/guard-filename.js +956 -0
  428. package/lib/vendor/blamejs/lib/guard-graphql.js +731 -0
  429. package/lib/vendor/blamejs/lib/guard-html-wcag-aria.js +164 -0
  430. package/lib/vendor/blamejs/lib/guard-html-wcag-forms.js +144 -0
  431. package/lib/vendor/blamejs/lib/guard-html-wcag-tables.js +154 -0
  432. package/lib/vendor/blamejs/lib/guard-html-wcag-tagwalk.js +44 -0
  433. package/lib/vendor/blamejs/lib/guard-html-wcag.js +470 -0
  434. package/lib/vendor/blamejs/lib/guard-html.js +1209 -0
  435. package/lib/vendor/blamejs/lib/guard-idempotency-key.js +151 -0
  436. package/lib/vendor/blamejs/lib/guard-image.js +584 -0
  437. package/lib/vendor/blamejs/lib/guard-imap-command.js +337 -0
  438. package/lib/vendor/blamejs/lib/guard-jmap.js +321 -0
  439. package/lib/vendor/blamejs/lib/guard-json.js +935 -0
  440. package/lib/vendor/blamejs/lib/guard-jsonpath.js +512 -0
  441. package/lib/vendor/blamejs/lib/guard-jwt.js +772 -0
  442. package/lib/vendor/blamejs/lib/guard-list-id.js +318 -0
  443. package/lib/vendor/blamejs/lib/guard-list-unsubscribe.js +412 -0
  444. package/lib/vendor/blamejs/lib/guard-mail-compose.js +282 -0
  445. package/lib/vendor/blamejs/lib/guard-mail-move.js +202 -0
  446. package/lib/vendor/blamejs/lib/guard-mail-query.js +310 -0
  447. package/lib/vendor/blamejs/lib/guard-mail-reply.js +172 -0
  448. package/lib/vendor/blamejs/lib/guard-mail-sieve.js +207 -0
  449. package/lib/vendor/blamejs/lib/guard-managesieve-command.js +566 -0
  450. package/lib/vendor/blamejs/lib/guard-markdown.js +768 -0
  451. package/lib/vendor/blamejs/lib/guard-message-id.js +267 -0
  452. package/lib/vendor/blamejs/lib/guard-mime.js +609 -0
  453. package/lib/vendor/blamejs/lib/guard-oauth.js +650 -0
  454. package/lib/vendor/blamejs/lib/guard-pdf.js +569 -0
  455. package/lib/vendor/blamejs/lib/guard-pop3-command.js +317 -0
  456. package/lib/vendor/blamejs/lib/guard-posture-chain.js +201 -0
  457. package/lib/vendor/blamejs/lib/guard-regex.js +632 -0
  458. package/lib/vendor/blamejs/lib/guard-saga-config.js +157 -0
  459. package/lib/vendor/blamejs/lib/guard-shell.js +522 -0
  460. package/lib/vendor/blamejs/lib/guard-smtp-command.js +594 -0
  461. package/lib/vendor/blamejs/lib/guard-snapshot-envelope.js +168 -0
  462. package/lib/vendor/blamejs/lib/guard-stream-args.js +166 -0
  463. package/lib/vendor/blamejs/lib/guard-svg.js +1163 -0
  464. package/lib/vendor/blamejs/lib/guard-template.js +490 -0
  465. package/lib/vendor/blamejs/lib/guard-tenant-id.js +138 -0
  466. package/lib/vendor/blamejs/lib/guard-time.js +586 -0
  467. package/lib/vendor/blamejs/lib/guard-trace-context.js +172 -0
  468. package/lib/vendor/blamejs/lib/guard-uuid.js +548 -0
  469. package/lib/vendor/blamejs/lib/guard-xml.js +666 -0
  470. package/lib/vendor/blamejs/lib/guard-yaml.js +726 -0
  471. package/lib/vendor/blamejs/lib/hal.js +125 -0
  472. package/lib/vendor/blamejs/lib/handlers.js +350 -0
  473. package/lib/vendor/blamejs/lib/honeytoken.js +168 -0
  474. package/lib/vendor/blamejs/lib/html-balance.js +347 -0
  475. package/lib/vendor/blamejs/lib/http-client-cache.js +923 -0
  476. package/lib/vendor/blamejs/lib/http-client-cookie-jar.js +519 -0
  477. package/lib/vendor/blamejs/lib/http-client.js +2152 -0
  478. package/lib/vendor/blamejs/lib/http-message-signature.js +589 -0
  479. package/lib/vendor/blamejs/lib/http2-teardown.js +34 -0
  480. package/lib/vendor/blamejs/lib/i18n-messageformat.js +398 -0
  481. package/lib/vendor/blamejs/lib/i18n.js +931 -0
  482. package/lib/vendor/blamejs/lib/iab-mspa.js +257 -0
  483. package/lib/vendor/blamejs/lib/iab-tcf.js +461 -0
  484. package/lib/vendor/blamejs/lib/importmap-integrity.js +90 -0
  485. package/lib/vendor/blamejs/lib/inbox.js +435 -0
  486. package/lib/vendor/blamejs/lib/incident-report.js +314 -0
  487. package/lib/vendor/blamejs/lib/ip-utils.js +102 -0
  488. package/lib/vendor/blamejs/lib/jobs.js +185 -0
  489. package/lib/vendor/blamejs/lib/jose-jwe-experimental.js +228 -0
  490. package/lib/vendor/blamejs/lib/jsonapi.js +230 -0
  491. package/lib/vendor/blamejs/lib/keychain.js +865 -0
  492. package/lib/vendor/blamejs/lib/lazy-require.js +48 -0
  493. package/lib/vendor/blamejs/lib/legal-hold.js +374 -0
  494. package/lib/vendor/blamejs/lib/local-db-thin.js +321 -0
  495. package/lib/vendor/blamejs/lib/log-stream-cloudwatch.js +369 -0
  496. package/lib/vendor/blamejs/lib/log-stream-local.js +146 -0
  497. package/lib/vendor/blamejs/lib/log-stream-otlp-grpc.js +410 -0
  498. package/lib/vendor/blamejs/lib/log-stream-otlp.js +286 -0
  499. package/lib/vendor/blamejs/lib/log-stream-syslog.js +310 -0
  500. package/lib/vendor/blamejs/lib/log-stream-webhook.js +199 -0
  501. package/lib/vendor/blamejs/lib/log-stream.js +584 -0
  502. package/lib/vendor/blamejs/lib/log.js +625 -0
  503. package/lib/vendor/blamejs/lib/lro.js +200 -0
  504. package/lib/vendor/blamejs/lib/mail-agent.js +786 -0
  505. package/lib/vendor/blamejs/lib/mail-arc-sign.js +417 -0
  506. package/lib/vendor/blamejs/lib/mail-arf.js +343 -0
  507. package/lib/vendor/blamejs/lib/mail-auth.js +2144 -0
  508. package/lib/vendor/blamejs/lib/mail-bimi.js +1047 -0
  509. package/lib/vendor/blamejs/lib/mail-bounce.js +955 -0
  510. package/lib/vendor/blamejs/lib/mail-crypto-pgp.js +1286 -0
  511. package/lib/vendor/blamejs/lib/mail-crypto-smime.js +789 -0
  512. package/lib/vendor/blamejs/lib/mail-crypto.js +108 -0
  513. package/lib/vendor/blamejs/lib/mail-dav.js +1224 -0
  514. package/lib/vendor/blamejs/lib/mail-deploy.js +1119 -0
  515. package/lib/vendor/blamejs/lib/mail-dkim.js +1250 -0
  516. package/lib/vendor/blamejs/lib/mail-greylist.js +448 -0
  517. package/lib/vendor/blamejs/lib/mail-helo.js +473 -0
  518. package/lib/vendor/blamejs/lib/mail-journal.js +435 -0
  519. package/lib/vendor/blamejs/lib/mail-mdn.js +424 -0
  520. package/lib/vendor/blamejs/lib/mail-rbl.js +392 -0
  521. package/lib/vendor/blamejs/lib/mail-require-tls.js +198 -0
  522. package/lib/vendor/blamejs/lib/mail-scan.js +502 -0
  523. package/lib/vendor/blamejs/lib/mail-send-deliver.js +629 -0
  524. package/lib/vendor/blamejs/lib/mail-server-imap.js +1858 -0
  525. package/lib/vendor/blamejs/lib/mail-server-jmap.js +1565 -0
  526. package/lib/vendor/blamejs/lib/mail-server-managesieve.js +908 -0
  527. package/lib/vendor/blamejs/lib/mail-server-mx.js +969 -0
  528. package/lib/vendor/blamejs/lib/mail-server-pop3.js +915 -0
  529. package/lib/vendor/blamejs/lib/mail-server-rate-limit.js +315 -0
  530. package/lib/vendor/blamejs/lib/mail-server-registry.js +378 -0
  531. package/lib/vendor/blamejs/lib/mail-server-submission.js +1396 -0
  532. package/lib/vendor/blamejs/lib/mail-server-tls.js +445 -0
  533. package/lib/vendor/blamejs/lib/mail-sieve.js +557 -0
  534. package/lib/vendor/blamejs/lib/mail-spam-score.js +284 -0
  535. package/lib/vendor/blamejs/lib/mail-srs.js +248 -0
  536. package/lib/vendor/blamejs/lib/mail-store-fts.js +394 -0
  537. package/lib/vendor/blamejs/lib/mail-store.js +929 -0
  538. package/lib/vendor/blamejs/lib/mail-unsubscribe.js +400 -0
  539. package/lib/vendor/blamejs/lib/mail.js +1971 -0
  540. package/lib/vendor/blamejs/lib/mcp-tool-registry.js +473 -0
  541. package/lib/vendor/blamejs/lib/mcp.js +950 -0
  542. package/lib/vendor/blamejs/lib/metrics.js +1503 -0
  543. package/lib/vendor/blamejs/lib/middleware/age-gate.js +177 -0
  544. package/lib/vendor/blamejs/lib/middleware/ai-act-disclosure.js +203 -0
  545. package/lib/vendor/blamejs/lib/middleware/api-encrypt.js +981 -0
  546. package/lib/vendor/blamejs/lib/middleware/assetlinks.js +137 -0
  547. package/lib/vendor/blamejs/lib/middleware/asyncapi-serve.js +171 -0
  548. package/lib/vendor/blamejs/lib/middleware/attach-user.js +220 -0
  549. package/lib/vendor/blamejs/lib/middleware/bearer-auth.js +293 -0
  550. package/lib/vendor/blamejs/lib/middleware/body-parser.js +1519 -0
  551. package/lib/vendor/blamejs/lib/middleware/bot-disclose.js +183 -0
  552. package/lib/vendor/blamejs/lib/middleware/bot-guard.js +217 -0
  553. package/lib/vendor/blamejs/lib/middleware/clear-site-data.js +122 -0
  554. package/lib/vendor/blamejs/lib/middleware/compose-pipeline.js +355 -0
  555. package/lib/vendor/blamejs/lib/middleware/compression.js +489 -0
  556. package/lib/vendor/blamejs/lib/middleware/cookies.js +130 -0
  557. package/lib/vendor/blamejs/lib/middleware/cors.js +386 -0
  558. package/lib/vendor/blamejs/lib/middleware/csp-nonce.js +388 -0
  559. package/lib/vendor/blamejs/lib/middleware/csp-report.js +167 -0
  560. package/lib/vendor/blamejs/lib/middleware/csrf-protect.js +499 -0
  561. package/lib/vendor/blamejs/lib/middleware/daily-byte-quota.js +243 -0
  562. package/lib/vendor/blamejs/lib/middleware/db-role-for.js +304 -0
  563. package/lib/vendor/blamejs/lib/middleware/dpop.js +402 -0
  564. package/lib/vendor/blamejs/lib/middleware/error-handler.js +69 -0
  565. package/lib/vendor/blamejs/lib/middleware/fetch-metadata.js +168 -0
  566. package/lib/vendor/blamejs/lib/middleware/flag-context.js +110 -0
  567. package/lib/vendor/blamejs/lib/middleware/gpc.js +153 -0
  568. package/lib/vendor/blamejs/lib/middleware/headers.js +242 -0
  569. package/lib/vendor/blamejs/lib/middleware/health.js +438 -0
  570. package/lib/vendor/blamejs/lib/middleware/host-allowlist.js +189 -0
  571. package/lib/vendor/blamejs/lib/middleware/idempotency-key.js +964 -0
  572. package/lib/vendor/blamejs/lib/middleware/index.js +183 -0
  573. package/lib/vendor/blamejs/lib/middleware/nel.js +214 -0
  574. package/lib/vendor/blamejs/lib/middleware/network-allowlist.js +237 -0
  575. package/lib/vendor/blamejs/lib/middleware/no-cache.js +106 -0
  576. package/lib/vendor/blamejs/lib/middleware/openapi-serve.js +177 -0
  577. package/lib/vendor/blamejs/lib/middleware/protected-resource-metadata.js +277 -0
  578. package/lib/vendor/blamejs/lib/middleware/rate-limit.js +556 -0
  579. package/lib/vendor/blamejs/lib/middleware/request-id.js +79 -0
  580. package/lib/vendor/blamejs/lib/middleware/request-log.js +205 -0
  581. package/lib/vendor/blamejs/lib/middleware/require-aal.js +138 -0
  582. package/lib/vendor/blamejs/lib/middleware/require-auth.js +144 -0
  583. package/lib/vendor/blamejs/lib/middleware/require-bound-key.js +290 -0
  584. package/lib/vendor/blamejs/lib/middleware/require-content-type.js +113 -0
  585. package/lib/vendor/blamejs/lib/middleware/require-methods.js +97 -0
  586. package/lib/vendor/blamejs/lib/middleware/require-mtls.js +212 -0
  587. package/lib/vendor/blamejs/lib/middleware/require-step-up.js +226 -0
  588. package/lib/vendor/blamejs/lib/middleware/scim-server.js +375 -0
  589. package/lib/vendor/blamejs/lib/middleware/security-headers.js +285 -0
  590. package/lib/vendor/blamejs/lib/middleware/security-txt.js +170 -0
  591. package/lib/vendor/blamejs/lib/middleware/span-http-server.js +280 -0
  592. package/lib/vendor/blamejs/lib/middleware/speculation-rules.js +323 -0
  593. package/lib/vendor/blamejs/lib/middleware/sse.js +200 -0
  594. package/lib/vendor/blamejs/lib/middleware/trace-log-correlation.js +167 -0
  595. package/lib/vendor/blamejs/lib/middleware/trace-propagate.js +148 -0
  596. package/lib/vendor/blamejs/lib/middleware/tus-upload.js +749 -0
  597. package/lib/vendor/blamejs/lib/middleware/web-app-manifest.js +164 -0
  598. package/lib/vendor/blamejs/lib/migration-files.js +37 -0
  599. package/lib/vendor/blamejs/lib/migrations.js +385 -0
  600. package/lib/vendor/blamejs/lib/mime-parse.js +198 -0
  601. package/lib/vendor/blamejs/lib/money.js +699 -0
  602. package/lib/vendor/blamejs/lib/mtls-ca.js +572 -0
  603. package/lib/vendor/blamejs/lib/mtls-engine-default.js +501 -0
  604. package/lib/vendor/blamejs/lib/network-byte-quota.js +308 -0
  605. package/lib/vendor/blamejs/lib/network-dns-resolver.js +533 -0
  606. package/lib/vendor/blamejs/lib/network-dns.js +1930 -0
  607. package/lib/vendor/blamejs/lib/network-heartbeat.js +425 -0
  608. package/lib/vendor/blamejs/lib/network-nts.js +574 -0
  609. package/lib/vendor/blamejs/lib/network-proxy.js +265 -0
  610. package/lib/vendor/blamejs/lib/network-smtp-policy.js +836 -0
  611. package/lib/vendor/blamejs/lib/network-tls.js +3126 -0
  612. package/lib/vendor/blamejs/lib/network.js +346 -0
  613. package/lib/vendor/blamejs/lib/nis2-report.js +181 -0
  614. package/lib/vendor/blamejs/lib/nist-crosswalk.js +293 -0
  615. package/lib/vendor/blamejs/lib/nonce-store.js +177 -0
  616. package/lib/vendor/blamejs/lib/notify.js +683 -0
  617. package/lib/vendor/blamejs/lib/ntp-check.js +458 -0
  618. package/lib/vendor/blamejs/lib/numeric-bounds.js +111 -0
  619. package/lib/vendor/blamejs/lib/numeric-checks.js +40 -0
  620. package/lib/vendor/blamejs/lib/object-store/azure-blob-bucket-ops.js +349 -0
  621. package/lib/vendor/blamejs/lib/object-store/azure-blob.js +488 -0
  622. package/lib/vendor/blamejs/lib/object-store/gcs-bucket-ops.js +351 -0
  623. package/lib/vendor/blamejs/lib/object-store/gcs.js +515 -0
  624. package/lib/vendor/blamejs/lib/object-store/http-put.js +153 -0
  625. package/lib/vendor/blamejs/lib/object-store/http-request.js +38 -0
  626. package/lib/vendor/blamejs/lib/object-store/index.js +197 -0
  627. package/lib/vendor/blamejs/lib/object-store/local.js +163 -0
  628. package/lib/vendor/blamejs/lib/object-store/sigv4-bucket-ops.js +1133 -0
  629. package/lib/vendor/blamejs/lib/object-store/sigv4.js +957 -0
  630. package/lib/vendor/blamejs/lib/observability-otlp-exporter.js +420 -0
  631. package/lib/vendor/blamejs/lib/observability-tracer.js +395 -0
  632. package/lib/vendor/blamejs/lib/observability.js +720 -0
  633. package/lib/vendor/blamejs/lib/openapi-paths-builder.js +248 -0
  634. package/lib/vendor/blamejs/lib/openapi-schema-walk.js +192 -0
  635. package/lib/vendor/blamejs/lib/openapi-security.js +169 -0
  636. package/lib/vendor/blamejs/lib/openapi-yaml.js +154 -0
  637. package/lib/vendor/blamejs/lib/openapi.js +489 -0
  638. package/lib/vendor/blamejs/lib/otel-export.js +278 -0
  639. package/lib/vendor/blamejs/lib/outbox.js +547 -0
  640. package/lib/vendor/blamejs/lib/pagination.js +542 -0
  641. package/lib/vendor/blamejs/lib/parsers/index.js +91 -0
  642. package/lib/vendor/blamejs/lib/parsers/safe-env.js +642 -0
  643. package/lib/vendor/blamejs/lib/parsers/safe-ini.js +293 -0
  644. package/lib/vendor/blamejs/lib/parsers/safe-toml.js +784 -0
  645. package/lib/vendor/blamejs/lib/parsers/safe-xml.js +390 -0
  646. package/lib/vendor/blamejs/lib/parsers/safe-yaml.js +1015 -0
  647. package/lib/vendor/blamejs/lib/permissions.js +793 -0
  648. package/lib/vendor/blamejs/lib/pick.js +105 -0
  649. package/lib/vendor/blamejs/lib/pqc-agent.js +351 -0
  650. package/lib/vendor/blamejs/lib/pqc-gate.js +279 -0
  651. package/lib/vendor/blamejs/lib/pqc-software.js +271 -0
  652. package/lib/vendor/blamejs/lib/problem-details.js +482 -0
  653. package/lib/vendor/blamejs/lib/process-spawn.js +196 -0
  654. package/lib/vendor/blamejs/lib/promise-pool.js +162 -0
  655. package/lib/vendor/blamejs/lib/protobuf-encoder.js +190 -0
  656. package/lib/vendor/blamejs/lib/protocol-dispatcher.js +161 -0
  657. package/lib/vendor/blamejs/lib/public-suffix.js +403 -0
  658. package/lib/vendor/blamejs/lib/pubsub-cluster.js +154 -0
  659. package/lib/vendor/blamejs/lib/pubsub-redis.js +167 -0
  660. package/lib/vendor/blamejs/lib/pubsub.js +463 -0
  661. package/lib/vendor/blamejs/lib/queue-local.js +476 -0
  662. package/lib/vendor/blamejs/lib/queue-redis.js +745 -0
  663. package/lib/vendor/blamejs/lib/queue-sqs.js +319 -0
  664. package/lib/vendor/blamejs/lib/queue.js +1016 -0
  665. package/lib/vendor/blamejs/lib/redact.js +1007 -0
  666. package/lib/vendor/blamejs/lib/redis-client.js +520 -0
  667. package/lib/vendor/blamejs/lib/render.js +285 -0
  668. package/lib/vendor/blamejs/lib/request-helpers.js +767 -0
  669. package/lib/vendor/blamejs/lib/resource-access-lock.js +116 -0
  670. package/lib/vendor/blamejs/lib/restore-bundle.js +340 -0
  671. package/lib/vendor/blamejs/lib/restore-rollback.js +365 -0
  672. package/lib/vendor/blamejs/lib/restore.js +409 -0
  673. package/lib/vendor/blamejs/lib/retention.js +640 -0
  674. package/lib/vendor/blamejs/lib/retry.js +523 -0
  675. package/lib/vendor/blamejs/lib/router.js +1289 -0
  676. package/lib/vendor/blamejs/lib/safe-async.js +1184 -0
  677. package/lib/vendor/blamejs/lib/safe-buffer.js +562 -0
  678. package/lib/vendor/blamejs/lib/safe-decompress.js +297 -0
  679. package/lib/vendor/blamejs/lib/safe-dns.js +665 -0
  680. package/lib/vendor/blamejs/lib/safe-ical.js +634 -0
  681. package/lib/vendor/blamejs/lib/safe-icap.js +502 -0
  682. package/lib/vendor/blamejs/lib/safe-json.js +946 -0
  683. package/lib/vendor/blamejs/lib/safe-jsonpath.js +285 -0
  684. package/lib/vendor/blamejs/lib/safe-mime.js +831 -0
  685. package/lib/vendor/blamejs/lib/safe-mount-info.js +306 -0
  686. package/lib/vendor/blamejs/lib/safe-path.js +254 -0
  687. package/lib/vendor/blamejs/lib/safe-redirect.js +106 -0
  688. package/lib/vendor/blamejs/lib/safe-schema.js +1810 -0
  689. package/lib/vendor/blamejs/lib/safe-sieve.js +684 -0
  690. package/lib/vendor/blamejs/lib/safe-smtp.js +185 -0
  691. package/lib/vendor/blamejs/lib/safe-sql.js +363 -0
  692. package/lib/vendor/blamejs/lib/safe-url.js +428 -0
  693. package/lib/vendor/blamejs/lib/safe-vcard.js +473 -0
  694. package/lib/vendor/blamejs/lib/sandbox-worker.js +135 -0
  695. package/lib/vendor/blamejs/lib/sandbox.js +358 -0
  696. package/lib/vendor/blamejs/lib/scheduler.js +827 -0
  697. package/lib/vendor/blamejs/lib/sd-notify.js +269 -0
  698. package/lib/vendor/blamejs/lib/sec-cyber.js +214 -0
  699. package/lib/vendor/blamejs/lib/security-assert.js +395 -0
  700. package/lib/vendor/blamejs/lib/seeders.js +620 -0
  701. package/lib/vendor/blamejs/lib/self-update-standalone-verifier.js +309 -0
  702. package/lib/vendor/blamejs/lib/self-update.js +804 -0
  703. package/lib/vendor/blamejs/lib/server-timing.js +174 -0
  704. package/lib/vendor/blamejs/lib/session-device-binding.js +431 -0
  705. package/lib/vendor/blamejs/lib/session-stores.js +138 -0
  706. package/lib/vendor/blamejs/lib/session.js +1162 -0
  707. package/lib/vendor/blamejs/lib/slug.js +381 -0
  708. package/lib/vendor/blamejs/lib/sse.js +349 -0
  709. package/lib/vendor/blamejs/lib/ssrf-guard.js +792 -0
  710. package/lib/vendor/blamejs/lib/standard-webhooks.js +183 -0
  711. package/lib/vendor/blamejs/lib/static.js +1249 -0
  712. package/lib/vendor/blamejs/lib/storage.js +1272 -0
  713. package/lib/vendor/blamejs/lib/stream-throttle.js +235 -0
  714. package/lib/vendor/blamejs/lib/structured-fields.js +244 -0
  715. package/lib/vendor/blamejs/lib/subject.js +667 -0
  716. package/lib/vendor/blamejs/lib/tcpa-10dlc.js +175 -0
  717. package/lib/vendor/blamejs/lib/template.js +931 -0
  718. package/lib/vendor/blamejs/lib/tenant-quota.js +545 -0
  719. package/lib/vendor/blamejs/lib/test-harness.js +275 -0
  720. package/lib/vendor/blamejs/lib/testing.js +1185 -0
  721. package/lib/vendor/blamejs/lib/time.js +578 -0
  722. package/lib/vendor/blamejs/lib/tls-exporter.js +239 -0
  723. package/lib/vendor/blamejs/lib/totp.js +318 -0
  724. package/lib/vendor/blamejs/lib/tracing.js +546 -0
  725. package/lib/vendor/blamejs/lib/uuid.js +207 -0
  726. package/lib/vendor/blamejs/lib/validate-opts.js +381 -0
  727. package/lib/vendor/blamejs/lib/vault/index.js +638 -0
  728. package/lib/vendor/blamejs/lib/vault/passphrase-ops.js +311 -0
  729. package/lib/vendor/blamejs/lib/vault/passphrase-source.js +198 -0
  730. package/lib/vendor/blamejs/lib/vault/rotate.js +803 -0
  731. package/lib/vendor/blamejs/lib/vault/seal-pem-file.js +471 -0
  732. package/lib/vendor/blamejs/lib/vault/wrap.js +296 -0
  733. package/lib/vendor/blamejs/lib/vault-aad.js +259 -0
  734. package/lib/vendor/blamejs/lib/vendor/.vendor-data-pubkey +4 -0
  735. package/lib/vendor/blamejs/lib/vendor/MANIFEST.json +161 -0
  736. package/lib/vendor/blamejs/lib/vendor/bimi-trust-anchors.data.js +68 -0
  737. package/lib/vendor/blamejs/lib/vendor/bimi-trust-anchors.pem +33 -0
  738. package/lib/vendor/blamejs/lib/vendor/common-passwords-top-10000.data.js +1325 -0
  739. package/lib/vendor/blamejs/lib/vendor/common-passwords-top-10000.txt +10002 -0
  740. package/lib/vendor/blamejs/lib/vendor/noble-ciphers.cjs +9 -0
  741. package/lib/vendor/blamejs/lib/vendor/noble-post-quantum.cjs +18 -0
  742. package/lib/vendor/blamejs/lib/vendor/pki.cjs +181 -0
  743. package/lib/vendor/blamejs/lib/vendor/public-suffix-list.dat +16382 -0
  744. package/lib/vendor/blamejs/lib/vendor/public-suffix-list.data.js +5881 -0
  745. package/lib/vendor/blamejs/lib/vendor/simplewebauthn-server.cjs +328 -0
  746. package/lib/vendor/blamejs/lib/vendor/vendor-data-pubkey.js +16 -0
  747. package/lib/vendor/blamejs/lib/vendor-data.js +520 -0
  748. package/lib/vendor/blamejs/lib/vex.js +630 -0
  749. package/lib/vendor/blamejs/lib/watcher.js +608 -0
  750. package/lib/vendor/blamejs/lib/web-push-vapid.js +322 -0
  751. package/lib/vendor/blamejs/lib/webhook.js +977 -0
  752. package/lib/vendor/blamejs/lib/websocket-channels.js +327 -0
  753. package/lib/vendor/blamejs/lib/websocket.js +1561 -0
  754. package/lib/vendor/blamejs/lib/wiki-concepts.js +338 -0
  755. package/lib/vendor/blamejs/lib/worker-pool.js +464 -0
  756. package/lib/vendor/blamejs/lib/ws-client.js +978 -0
  757. package/lib/vendor/blamejs/lib/xml-c14n.js +506 -0
  758. package/lib/vendor/blamejs/memory/specs/node-26-map-getorinsert-migration.md +164 -0
  759. package/lib/vendor/blamejs/oss-fuzz/projects/blamejs/Dockerfile +19 -0
  760. package/lib/vendor/blamejs/oss-fuzz/projects/blamejs/README.md +88 -0
  761. package/lib/vendor/blamejs/oss-fuzz/projects/blamejs/build.sh +26 -0
  762. package/lib/vendor/blamejs/oss-fuzz/projects/blamejs/project.yaml +28 -0
  763. package/lib/vendor/blamejs/package.json +81 -0
  764. package/lib/vendor/blamejs/release-notes/v0.0.x.json +310 -0
  765. package/lib/vendor/blamejs/release-notes/v0.1.x.json +1798 -0
  766. package/lib/vendor/blamejs/release-notes/v0.10.x.json +1288 -0
  767. package/lib/vendor/blamejs/release-notes/v0.11.x.json +2551 -0
  768. package/lib/vendor/blamejs/release-notes/v0.12.0.json +64 -0
  769. package/lib/vendor/blamejs/release-notes/v0.12.1.json +32 -0
  770. package/lib/vendor/blamejs/release-notes/v0.12.2.json +45 -0
  771. package/lib/vendor/blamejs/release-notes/v0.2.x.json +706 -0
  772. package/lib/vendor/blamejs/release-notes/v0.3.x.json +786 -0
  773. package/lib/vendor/blamejs/release-notes/v0.4.x.json +588 -0
  774. package/lib/vendor/blamejs/release-notes/v0.5.x.json +390 -0
  775. package/lib/vendor/blamejs/release-notes/v0.6.x.json +1947 -0
  776. package/lib/vendor/blamejs/release-notes/v0.7.x.json +3811 -0
  777. package/lib/vendor/blamejs/release-notes/v0.8.x.json +3318 -0
  778. package/lib/vendor/blamejs/release-notes/v0.9.x.json +2257 -0
  779. package/lib/vendor/blamejs/scripts/build-vendored-sbom.js +325 -0
  780. package/lib/vendor/blamejs/scripts/check-api-snapshot.js +62 -0
  781. package/lib/vendor/blamejs/scripts/check-changelog-extract.js +108 -0
  782. package/lib/vendor/blamejs/scripts/check-pack-against-gitignore.js +83 -0
  783. package/lib/vendor/blamejs/scripts/check-services.js +483 -0
  784. package/lib/vendor/blamejs/scripts/check-vendor-currency.js +349 -0
  785. package/lib/vendor/blamejs/scripts/consolidate-release-notes.js +216 -0
  786. package/lib/vendor/blamejs/scripts/gen-migrating.js +275 -0
  787. package/lib/vendor/blamejs/scripts/generate-changelog-entry.js +577 -0
  788. package/lib/vendor/blamejs/scripts/generate-release-signing-key.js +79 -0
  789. package/lib/vendor/blamejs/scripts/publish-dep-confusion-placeholder.sh +101 -0
  790. package/lib/vendor/blamejs/scripts/refresh-api-snapshot.js +31 -0
  791. package/lib/vendor/blamejs/scripts/refresh-vendor-manifest.js +132 -0
  792. package/lib/vendor/blamejs/scripts/release.js +652 -0
  793. package/lib/vendor/blamejs/scripts/sha3-digest.js +62 -0
  794. package/lib/vendor/blamejs/scripts/sign-release-artifact.js +92 -0
  795. package/lib/vendor/blamejs/scripts/test-integration.js +181 -0
  796. package/lib/vendor/blamejs/scripts/test-wiki-integration.js +126 -0
  797. package/lib/vendor/blamejs/scripts/validate-source-comment-blocks.js +77 -0
  798. package/lib/vendor/blamejs/scripts/vendor-data-gen.js +186 -0
  799. package/lib/vendor/blamejs/scripts/vendor-data-keygen.js +101 -0
  800. package/lib/vendor/blamejs/scripts/vendor-update.sh +278 -0
  801. package/lib/vendor/blamejs/test/00-primitives.js +19075 -0
  802. package/lib/vendor/blamejs/test/10-state.js +622 -0
  803. package/lib/vendor/blamejs/test/20-db.js +561 -0
  804. package/lib/vendor/blamejs/test/30-chain.js +2110 -0
  805. package/lib/vendor/blamejs/test/40-consumers.js +2453 -0
  806. package/lib/vendor/blamejs/test/50-integration.js +486 -0
  807. package/lib/vendor/blamejs/test/_helpers.js +10 -0
  808. package/lib/vendor/blamejs/test/_smoke-worker.js +69 -0
  809. package/lib/vendor/blamejs/test/fixtures/exploit-corpus/corpus.json +368 -0
  810. package/lib/vendor/blamejs/test/fixtures/http-client-stream-payload.txt +2 -0
  811. package/lib/vendor/blamejs/test/fixtures/worker-pool/echo.js +52 -0
  812. package/lib/vendor/blamejs/test/helpers/_codebase-shingle-worker.js +24 -0
  813. package/lib/vendor/blamejs/test/helpers/_codebase-shingle.js +203 -0
  814. package/lib/vendor/blamejs/test/helpers/_shape-match.js +513 -0
  815. package/lib/vendor/blamejs/test/helpers/check.js +36 -0
  816. package/lib/vendor/blamejs/test/helpers/cluster.js +70 -0
  817. package/lib/vendor/blamejs/test/helpers/db.js +143 -0
  818. package/lib/vendor/blamejs/test/helpers/drivers.js +207 -0
  819. package/lib/vendor/blamejs/test/helpers/fs-watch.js +101 -0
  820. package/lib/vendor/blamejs/test/helpers/http.js +14 -0
  821. package/lib/vendor/blamejs/test/helpers/index.js +93 -0
  822. package/lib/vendor/blamejs/test/helpers/json-round-trip.js +120 -0
  823. package/lib/vendor/blamejs/test/helpers/mocks.js +20 -0
  824. package/lib/vendor/blamejs/test/helpers/otel.js +13 -0
  825. package/lib/vendor/blamejs/test/helpers/services.js +380 -0
  826. package/lib/vendor/blamejs/test/helpers/wait.js +206 -0
  827. package/lib/vendor/blamejs/test/integration/cache.test.js +235 -0
  828. package/lib/vendor/blamejs/test/integration/cluster-provider-mysql.test.js +174 -0
  829. package/lib/vendor/blamejs/test/integration/federation-auth.test.js +611 -0
  830. package/lib/vendor/blamejs/test/integration/http-client.test.js +129 -0
  831. package/lib/vendor/blamejs/test/integration/log-stream.test.js +219 -0
  832. package/lib/vendor/blamejs/test/integration/mail-crypto-smime.test.js +181 -0
  833. package/lib/vendor/blamejs/test/integration/mail-dkim.test.js +152 -0
  834. package/lib/vendor/blamejs/test/integration/mail-smtp.test.js +161 -0
  835. package/lib/vendor/blamejs/test/integration/mtls-ca.test.js +289 -0
  836. package/lib/vendor/blamejs/test/integration/network-dns.test.js +123 -0
  837. package/lib/vendor/blamejs/test/integration/network-heartbeat.test.js +101 -0
  838. package/lib/vendor/blamejs/test/integration/ntp-check.test.js +89 -0
  839. package/lib/vendor/blamejs/test/integration/object-store-sigv4.test.js +403 -0
  840. package/lib/vendor/blamejs/test/integration/pqc-pkcs8-forward-compat.test.js +271 -0
  841. package/lib/vendor/blamejs/test/integration/pubsub.test.js +137 -0
  842. package/lib/vendor/blamejs/test/integration/queue-redis.test.js +352 -0
  843. package/lib/vendor/blamejs/test/integration/redis-client-tls.test.js +96 -0
  844. package/lib/vendor/blamejs/test/integration/ssrf-guard.test.js +98 -0
  845. package/lib/vendor/blamejs/test/integration/websocket-permessage-deflate.test.js +261 -0
  846. package/lib/vendor/blamejs/test/integration/ws-client-roundtrip.test.js +230 -0
  847. package/lib/vendor/blamejs/test/layer-0-primitives/a2a-tasks.test.js +211 -0
  848. package/lib/vendor/blamejs/test/layer-0-primitives/a2a.test.js +59 -0
  849. package/lib/vendor/blamejs/test/layer-0-primitives/access-lock.test.js +136 -0
  850. package/lib/vendor/blamejs/test/layer-0-primitives/acme.test.js +219 -0
  851. package/lib/vendor/blamejs/test/layer-0-primitives/age-gate.test.js +69 -0
  852. package/lib/vendor/blamejs/test/layer-0-primitives/agent-event-bus.test.js +266 -0
  853. package/lib/vendor/blamejs/test/layer-0-primitives/agent-idempotency.test.js +262 -0
  854. package/lib/vendor/blamejs/test/layer-0-primitives/agent-orchestrator.test.js +390 -0
  855. package/lib/vendor/blamejs/test/layer-0-primitives/agent-posture-chain.test.js +174 -0
  856. package/lib/vendor/blamejs/test/layer-0-primitives/agent-saga.test.js +279 -0
  857. package/lib/vendor/blamejs/test/layer-0-primitives/agent-snapshot.test.js +322 -0
  858. package/lib/vendor/blamejs/test/layer-0-primitives/agent-stream.test.js +227 -0
  859. package/lib/vendor/blamejs/test/layer-0-primitives/agent-tenant.test.js +302 -0
  860. package/lib/vendor/blamejs/test/layer-0-primitives/agent-trace.test.js +150 -0
  861. package/lib/vendor/blamejs/test/layer-0-primitives/ai-adverse-decision.test.js +44 -0
  862. package/lib/vendor/blamejs/test/layer-0-primitives/ai-content-detect.test.js +150 -0
  863. package/lib/vendor/blamejs/test/layer-0-primitives/ai-input.test.js +50 -0
  864. package/lib/vendor/blamejs/test/layer-0-primitives/ai-model-manifest.test.js +96 -0
  865. package/lib/vendor/blamejs/test/layer-0-primitives/ai-pref.test.js +76 -0
  866. package/lib/vendor/blamejs/test/layer-0-primitives/api-encrypt.test.js +1080 -0
  867. package/lib/vendor/blamejs/test/layer-0-primitives/app-shutdown.test.js +311 -0
  868. package/lib/vendor/blamejs/test/layer-0-primitives/archive-zip-stream.test.js +291 -0
  869. package/lib/vendor/blamejs/test/layer-0-primitives/archive.test.js +140 -0
  870. package/lib/vendor/blamejs/test/layer-0-primitives/arg-parser.test.js +267 -0
  871. package/lib/vendor/blamejs/test/layer-0-primitives/asn1-der.test.js +108 -0
  872. package/lib/vendor/blamejs/test/layer-0-primitives/asyncapi.test.js +929 -0
  873. package/lib/vendor/blamejs/test/layer-0-primitives/atomic-file-conflict-path.test.js +80 -0
  874. package/lib/vendor/blamejs/test/layer-0-primitives/audit-cve-defensive.test.js +176 -0
  875. package/lib/vendor/blamejs/test/layer-0-primitives/audit-daily-review.test.js +132 -0
  876. package/lib/vendor/blamejs/test/layer-0-primitives/audit-export-cadf.test.js +97 -0
  877. package/lib/vendor/blamejs/test/layer-0-primitives/audit-framework-namespaces.test.js +141 -0
  878. package/lib/vendor/blamejs/test/layer-0-primitives/audit-segregation.test.js +115 -0
  879. package/lib/vendor/blamejs/test/layer-0-primitives/audit-sign-ml-dsa-65.test.js +163 -0
  880. package/lib/vendor/blamejs/test/layer-0-primitives/audit-use-store.test.js +246 -0
  881. package/lib/vendor/blamejs/test/layer-0-primitives/auth-bot-challenge-verifier.test.js +485 -0
  882. package/lib/vendor/blamejs/test/layer-0-primitives/auth-bot-challenge.test.js +331 -0
  883. package/lib/vendor/blamejs/test/layer-0-primitives/auth-jwt-defenses.test.js +352 -0
  884. package/lib/vendor/blamejs/test/layer-0-primitives/auth-lockout.test.js +572 -0
  885. package/lib/vendor/blamejs/test/layer-0-primitives/auth-password-audit.test.js +61 -0
  886. package/lib/vendor/blamejs/test/layer-0-primitives/azure-blob-bucket-ops.test.js +258 -0
  887. package/lib/vendor/blamejs/test/layer-0-primitives/backup-manifest-signature.test.js +105 -0
  888. package/lib/vendor/blamejs/test/layer-0-primitives/backup-worker.test.js +34 -0
  889. package/lib/vendor/blamejs/test/layer-0-primitives/bearer-auth.test.js +107 -0
  890. package/lib/vendor/blamejs/test/layer-0-primitives/body-parser-chunked-malformed.test.js +131 -0
  891. package/lib/vendor/blamejs/test/layer-0-primitives/body-parser-smuggling.test.js +118 -0
  892. package/lib/vendor/blamejs/test/layer-0-primitives/boot-gates.test.js +85 -0
  893. package/lib/vendor/blamejs/test/layer-0-primitives/breach-deadline.test.js +38 -0
  894. package/lib/vendor/blamejs/test/layer-0-primitives/break-glass.test.js +861 -0
  895. package/lib/vendor/blamejs/test/layer-0-primitives/budr.test.js +55 -0
  896. package/lib/vendor/blamejs/test/layer-0-primitives/bundler-engine.test.js +209 -0
  897. package/lib/vendor/blamejs/test/layer-0-primitives/cache-status.test.js +129 -0
  898. package/lib/vendor/blamejs/test/layer-0-primitives/cache.test.js +871 -0
  899. package/lib/vendor/blamejs/test/layer-0-primitives/calendar.test.js +891 -0
  900. package/lib/vendor/blamejs/test/layer-0-primitives/canonical-json-jcs.test.js +43 -0
  901. package/lib/vendor/blamejs/test/layer-0-primitives/cdn-cache-control.test.js +243 -0
  902. package/lib/vendor/blamejs/test/layer-0-primitives/cert.test.js +550 -0
  903. package/lib/vendor/blamejs/test/layer-0-primitives/clear-site-data.test.js +107 -0
  904. package/lib/vendor/blamejs/test/layer-0-primitives/cli-api-key.test.js +147 -0
  905. package/lib/vendor/blamejs/test/layer-0-primitives/cli-audit-verify-chain.test.js +104 -0
  906. package/lib/vendor/blamejs/test/layer-0-primitives/cli-backup.test.js +135 -0
  907. package/lib/vendor/blamejs/test/layer-0-primitives/cli-config-drift.test.js +67 -0
  908. package/lib/vendor/blamejs/test/layer-0-primitives/cli-erase.test.js +75 -0
  909. package/lib/vendor/blamejs/test/layer-0-primitives/cli-file-type.test.js +98 -0
  910. package/lib/vendor/blamejs/test/layer-0-primitives/cli-helpers.test.js +145 -0
  911. package/lib/vendor/blamejs/test/layer-0-primitives/cli-mtls.test.js +133 -0
  912. package/lib/vendor/blamejs/test/layer-0-primitives/cli-password.test.js +97 -0
  913. package/lib/vendor/blamejs/test/layer-0-primitives/cli-restore.test.js +160 -0
  914. package/lib/vendor/blamejs/test/layer-0-primitives/cli-retention.test.js +84 -0
  915. package/lib/vendor/blamejs/test/layer-0-primitives/cli-security.test.js +69 -0
  916. package/lib/vendor/blamejs/test/layer-0-primitives/cli-vault.test.js +142 -0
  917. package/lib/vendor/blamejs/test/layer-0-primitives/client-hints.test.js +133 -0
  918. package/lib/vendor/blamejs/test/layer-0-primitives/cms-codec.test.js +237 -0
  919. package/lib/vendor/blamejs/test/layer-0-primitives/codebase-patterns.test.js +9600 -0
  920. package/lib/vendor/blamejs/test/layer-0-primitives/compliance-ai-act.test.js +575 -0
  921. package/lib/vendor/blamejs/test/layer-0-primitives/compliance-cascade.test.js +89 -0
  922. package/lib/vendor/blamejs/test/layer-0-primitives/compliance-eaa.test.js +36 -0
  923. package/lib/vendor/blamejs/test/layer-0-primitives/compliance-sanctions.test.js +712 -0
  924. package/lib/vendor/blamejs/test/layer-0-primitives/compliance.test.js +278 -0
  925. package/lib/vendor/blamejs/test/layer-0-primitives/config-drift.test.js +97 -0
  926. package/lib/vendor/blamejs/test/layer-0-primitives/config.test.js +424 -0
  927. package/lib/vendor/blamejs/test/layer-0-primitives/content-credentials.test.js +94 -0
  928. package/lib/vendor/blamejs/test/layer-0-primitives/cors.test.js +357 -0
  929. package/lib/vendor/blamejs/test/layer-0-primitives/cra-report.test.js +31 -0
  930. package/lib/vendor/blamejs/test/layer-0-primitives/credential-hash.test.js +226 -0
  931. package/lib/vendor/blamejs/test/layer-0-primitives/crypto-base64url.test.js +86 -0
  932. package/lib/vendor/blamejs/test/layer-0-primitives/crypto-envelope.test.js +85 -0
  933. package/lib/vendor/blamejs/test/layer-0-primitives/crypto-hash-files-parallel.test.js +193 -0
  934. package/lib/vendor/blamejs/test/layer-0-primitives/crypto-hash-stream.test.js +98 -0
  935. package/lib/vendor/blamejs/test/layer-0-primitives/crypto-hpke-pq.test.js +132 -0
  936. package/lib/vendor/blamejs/test/layer-0-primitives/crypto-hpke.test.js +155 -0
  937. package/lib/vendor/blamejs/test/layer-0-primitives/crypto-mlkem768-x25519.test.js +129 -0
  938. package/lib/vendor/blamejs/test/layer-0-primitives/crypto-namespace-hash.test.js +0 -0
  939. package/lib/vendor/blamejs/test/layer-0-primitives/crypto-random-int.test.js +72 -0
  940. package/lib/vendor/blamejs/test/layer-0-primitives/csp-builder.test.js +96 -0
  941. package/lib/vendor/blamejs/test/layer-0-primitives/csp-nonce.test.js +401 -0
  942. package/lib/vendor/blamejs/test/layer-0-primitives/csp-report.test.js +34 -0
  943. package/lib/vendor/blamejs/test/layer-0-primitives/csv.test.js +180 -0
  944. package/lib/vendor/blamejs/test/layer-0-primitives/daemon.test.js +210 -0
  945. package/lib/vendor/blamejs/test/layer-0-primitives/daily-byte-quota.test.js +153 -0
  946. package/lib/vendor/blamejs/test/layer-0-primitives/dark-patterns.test.js +66 -0
  947. package/lib/vendor/blamejs/test/layer-0-primitives/data-act.test.js +74 -0
  948. package/lib/vendor/blamejs/test/layer-0-primitives/db-collection-extensions.test.js +226 -0
  949. package/lib/vendor/blamejs/test/layer-0-primitives/db-collection.test.js +136 -0
  950. package/lib/vendor/blamejs/test/layer-0-primitives/db-init-extensions.test.js +165 -0
  951. package/lib/vendor/blamejs/test/layer-0-primitives/db-query-cross-schema.test.js +150 -0
  952. package/lib/vendor/blamejs/test/layer-0-primitives/db-query-extensions.test.js +191 -0
  953. package/lib/vendor/blamejs/test/layer-0-primitives/db-role-for.test.js +228 -0
  954. package/lib/vendor/blamejs/test/layer-0-primitives/db-vacuum.test.js +55 -0
  955. package/lib/vendor/blamejs/test/layer-0-primitives/db-worm.test.js +89 -0
  956. package/lib/vendor/blamejs/test/layer-0-primitives/ddl-change-control.test.js +184 -0
  957. package/lib/vendor/blamejs/test/layer-0-primitives/declare-row-policy.test.js +203 -0
  958. package/lib/vendor/blamejs/test/layer-0-primitives/declare-view.test.js +303 -0
  959. package/lib/vendor/blamejs/test/layer-0-primitives/dns-dnssec-algorithm.test.js +163 -0
  960. package/lib/vendor/blamejs/test/layer-0-primitives/dns-null-mx.test.js +39 -0
  961. package/lib/vendor/blamejs/test/layer-0-primitives/dora.test.js +165 -0
  962. package/lib/vendor/blamejs/test/layer-0-primitives/dr-runbook.test.js +59 -0
  963. package/lib/vendor/blamejs/test/layer-0-primitives/dsr-state-rules.test.js +55 -0
  964. package/lib/vendor/blamejs/test/layer-0-primitives/dsr.test.js +786 -0
  965. package/lib/vendor/blamejs/test/layer-0-primitives/dual-control.test.js +105 -0
  966. package/lib/vendor/blamejs/test/layer-0-primitives/early-hints.test.js +147 -0
  967. package/lib/vendor/blamejs/test/layer-0-primitives/events.test.js +105 -0
  968. package/lib/vendor/blamejs/test/layer-0-primitives/exploit-replay.test.js +243 -0
  969. package/lib/vendor/blamejs/test/layer-0-primitives/external-db-hardening.test.js +181 -0
  970. package/lib/vendor/blamejs/test/layer-0-primitives/external-db-migrate.test.js +190 -0
  971. package/lib/vendor/blamejs/test/layer-0-primitives/external-db-routing.test.js +531 -0
  972. package/lib/vendor/blamejs/test/layer-0-primitives/fal.test.js +118 -0
  973. package/lib/vendor/blamejs/test/layer-0-primitives/fapi2.test.js +89 -0
  974. package/lib/vendor/blamejs/test/layer-0-primitives/fda-21cfr11.test.js +156 -0
  975. package/lib/vendor/blamejs/test/layer-0-primitives/fdx.test.js +79 -0
  976. package/lib/vendor/blamejs/test/layer-0-primitives/fedcm-dbsc.test.js +216 -0
  977. package/lib/vendor/blamejs/test/layer-0-primitives/federation-vc-suite.test.js +434 -0
  978. package/lib/vendor/blamejs/test/layer-0-primitives/fido-mds3.test.js +432 -0
  979. package/lib/vendor/blamejs/test/layer-0-primitives/file-type.test.js +81 -0
  980. package/lib/vendor/blamejs/test/layer-0-primitives/flag.test.js +887 -0
  981. package/lib/vendor/blamejs/test/layer-0-primitives/forensic-snapshot.test.js +51 -0
  982. package/lib/vendor/blamejs/test/layer-0-primitives/fsm.test.js +375 -0
  983. package/lib/vendor/blamejs/test/layer-0-primitives/gcs-bucket-ops.test.js +321 -0
  984. package/lib/vendor/blamejs/test/layer-0-primitives/gdpr-ropa.test.js +41 -0
  985. package/lib/vendor/blamejs/test/layer-0-primitives/graphql-federation.test.js +32 -0
  986. package/lib/vendor/blamejs/test/layer-0-primitives/guard-agent-registry.test.js +87 -0
  987. package/lib/vendor/blamejs/test/layer-0-primitives/guard-all.test.js +328 -0
  988. package/lib/vendor/blamejs/test/layer-0-primitives/guard-archive.test.js +339 -0
  989. package/lib/vendor/blamejs/test/layer-0-primitives/guard-csv.test.js +694 -0
  990. package/lib/vendor/blamejs/test/layer-0-primitives/guard-dsn.test.js +296 -0
  991. package/lib/vendor/blamejs/test/layer-0-primitives/guard-email.test.js +234 -0
  992. package/lib/vendor/blamejs/test/layer-0-primitives/guard-envelope.test.js +192 -0
  993. package/lib/vendor/blamejs/test/layer-0-primitives/guard-event-bus-payload.test.js +89 -0
  994. package/lib/vendor/blamejs/test/layer-0-primitives/guard-event-bus-topic.test.js +71 -0
  995. package/lib/vendor/blamejs/test/layer-0-primitives/guard-filename.test.js +386 -0
  996. package/lib/vendor/blamejs/test/layer-0-primitives/guard-html-wcag.test.js +859 -0
  997. package/lib/vendor/blamejs/test/layer-0-primitives/guard-html.test.js +357 -0
  998. package/lib/vendor/blamejs/test/layer-0-primitives/guard-idempotency-key.test.js +92 -0
  999. package/lib/vendor/blamejs/test/layer-0-primitives/guard-imap-command.test.js +0 -0
  1000. package/lib/vendor/blamejs/test/layer-0-primitives/guard-jmap.test.js +174 -0
  1001. package/lib/vendor/blamejs/test/layer-0-primitives/guard-json.test.js +317 -0
  1002. package/lib/vendor/blamejs/test/layer-0-primitives/guard-list-id.test.js +199 -0
  1003. package/lib/vendor/blamejs/test/layer-0-primitives/guard-list-unsubscribe.test.js +214 -0
  1004. package/lib/vendor/blamejs/test/layer-0-primitives/guard-mail-compose.test.js +111 -0
  1005. package/lib/vendor/blamejs/test/layer-0-primitives/guard-mail-move.test.js +110 -0
  1006. package/lib/vendor/blamejs/test/layer-0-primitives/guard-mail-query.test.js +112 -0
  1007. package/lib/vendor/blamejs/test/layer-0-primitives/guard-mail-reply.test.js +86 -0
  1008. package/lib/vendor/blamejs/test/layer-0-primitives/guard-mail-sieve.test.js +92 -0
  1009. package/lib/vendor/blamejs/test/layer-0-primitives/guard-managesieve-command.test.js +301 -0
  1010. package/lib/vendor/blamejs/test/layer-0-primitives/guard-markdown.test.js +265 -0
  1011. package/lib/vendor/blamejs/test/layer-0-primitives/guard-message-id.test.js +0 -0
  1012. package/lib/vendor/blamejs/test/layer-0-primitives/guard-pop3-command.test.js +161 -0
  1013. package/lib/vendor/blamejs/test/layer-0-primitives/guard-posture-chain.test.js +100 -0
  1014. package/lib/vendor/blamejs/test/layer-0-primitives/guard-saga-config.test.js +79 -0
  1015. package/lib/vendor/blamejs/test/layer-0-primitives/guard-smtp-command.test.js +269 -0
  1016. package/lib/vendor/blamejs/test/layer-0-primitives/guard-snapshot-envelope.test.js +89 -0
  1017. package/lib/vendor/blamejs/test/layer-0-primitives/guard-stream-args.test.js +78 -0
  1018. package/lib/vendor/blamejs/test/layer-0-primitives/guard-svg.test.js +288 -0
  1019. package/lib/vendor/blamejs/test/layer-0-primitives/guard-tenant-id.test.js +69 -0
  1020. package/lib/vendor/blamejs/test/layer-0-primitives/guard-trace-context.test.js +102 -0
  1021. package/lib/vendor/blamejs/test/layer-0-primitives/guard-xml.test.js +202 -0
  1022. package/lib/vendor/blamejs/test/layer-0-primitives/guard-yaml.test.js +203 -0
  1023. package/lib/vendor/blamejs/test/layer-0-primitives/hal.test.js +51 -0
  1024. package/lib/vendor/blamejs/test/layer-0-primitives/honeytoken.test.js +50 -0
  1025. package/lib/vendor/blamejs/test/layer-0-primitives/html-balance.test.js +37 -0
  1026. package/lib/vendor/blamejs/test/layer-0-primitives/http-client-cache.test.js +692 -0
  1027. package/lib/vendor/blamejs/test/layer-0-primitives/http-client-stream.test.js +280 -0
  1028. package/lib/vendor/blamejs/test/layer-0-primitives/http-message-signature.test.js +225 -0
  1029. package/lib/vendor/blamejs/test/layer-0-primitives/i18n-messageformat.test.js +203 -0
  1030. package/lib/vendor/blamejs/test/layer-0-primitives/i18n.test.js +991 -0
  1031. package/lib/vendor/blamejs/test/layer-0-primitives/iab-mspa.test.js +63 -0
  1032. package/lib/vendor/blamejs/test/layer-0-primitives/iab-tcf.test.js +73 -0
  1033. package/lib/vendor/blamejs/test/layer-0-primitives/idempotency-key.test.js +612 -0
  1034. package/lib/vendor/blamejs/test/layer-0-primitives/importmap-integrity.test.js +56 -0
  1035. package/lib/vendor/blamejs/test/layer-0-primitives/inbox.test.js +166 -0
  1036. package/lib/vendor/blamejs/test/layer-0-primitives/incident-report.test.js +29 -0
  1037. package/lib/vendor/blamejs/test/layer-0-primitives/jose-jwe-experimental.test.js +121 -0
  1038. package/lib/vendor/blamejs/test/layer-0-primitives/json-api.test.js +58 -0
  1039. package/lib/vendor/blamejs/test/layer-0-primitives/json-round-trip-helper.test.js +110 -0
  1040. package/lib/vendor/blamejs/test/layer-0-primitives/jwt-external.test.js +159 -0
  1041. package/lib/vendor/blamejs/test/layer-0-primitives/keychain.test.js +0 -0
  1042. package/lib/vendor/blamejs/test/layer-0-primitives/legal-hold.test.js +118 -0
  1043. package/lib/vendor/blamejs/test/layer-0-primitives/local-db-thin.test.js +150 -0
  1044. package/lib/vendor/blamejs/test/layer-0-primitives/log-stream-cloudwatch.test.js +489 -0
  1045. package/lib/vendor/blamejs/test/layer-0-primitives/log-stream-otlp-grpc.test.js +207 -0
  1046. package/lib/vendor/blamejs/test/layer-0-primitives/log-stream-otlp.test.js +283 -0
  1047. package/lib/vendor/blamejs/test/layer-0-primitives/lro.test.js +65 -0
  1048. package/lib/vendor/blamejs/test/layer-0-primitives/mail-agent.test.js +417 -0
  1049. package/lib/vendor/blamejs/test/layer-0-primitives/mail-arf.test.js +208 -0
  1050. package/lib/vendor/blamejs/test/layer-0-primitives/mail-auth.test.js +910 -0
  1051. package/lib/vendor/blamejs/test/layer-0-primitives/mail-bimi.test.js +502 -0
  1052. package/lib/vendor/blamejs/test/layer-0-primitives/mail-bounce.test.js +680 -0
  1053. package/lib/vendor/blamejs/test/layer-0-primitives/mail-canspam.test.js +128 -0
  1054. package/lib/vendor/blamejs/test/layer-0-primitives/mail-crypto-pgp-experimental.test.js +149 -0
  1055. package/lib/vendor/blamejs/test/layer-0-primitives/mail-crypto-pgp.test.js +323 -0
  1056. package/lib/vendor/blamejs/test/layer-0-primitives/mail-crypto-smime.test.js +297 -0
  1057. package/lib/vendor/blamejs/test/layer-0-primitives/mail-dav.test.js +514 -0
  1058. package/lib/vendor/blamejs/test/layer-0-primitives/mail-deploy-tlsrpt.test.js +369 -0
  1059. package/lib/vendor/blamejs/test/layer-0-primitives/mail-deploy.test.js +199 -0
  1060. package/lib/vendor/blamejs/test/layer-0-primitives/mail-dkim.test.js +627 -0
  1061. package/lib/vendor/blamejs/test/layer-0-primitives/mail-feedback-id.test.js +56 -0
  1062. package/lib/vendor/blamejs/test/layer-0-primitives/mail-greylist.test.js +217 -0
  1063. package/lib/vendor/blamejs/test/layer-0-primitives/mail-helo.test.js +283 -0
  1064. package/lib/vendor/blamejs/test/layer-0-primitives/mail-journal.test.js +217 -0
  1065. package/lib/vendor/blamejs/test/layer-0-primitives/mail-mdn.test.js +334 -0
  1066. package/lib/vendor/blamejs/test/layer-0-primitives/mail-rbl.test.js +271 -0
  1067. package/lib/vendor/blamejs/test/layer-0-primitives/mail-require-tls.test.js +128 -0
  1068. package/lib/vendor/blamejs/test/layer-0-primitives/mail-scan.test.js +215 -0
  1069. package/lib/vendor/blamejs/test/layer-0-primitives/mail-send-deliver.test.js +336 -0
  1070. package/lib/vendor/blamejs/test/layer-0-primitives/mail-server-imap.test.js +732 -0
  1071. package/lib/vendor/blamejs/test/layer-0-primitives/mail-server-jmap.test.js +840 -0
  1072. package/lib/vendor/blamejs/test/layer-0-primitives/mail-server-managesieve.test.js +130 -0
  1073. package/lib/vendor/blamejs/test/layer-0-primitives/mail-server-mx.test.js +285 -0
  1074. package/lib/vendor/blamejs/test/layer-0-primitives/mail-server-pop3.test.js +74 -0
  1075. package/lib/vendor/blamejs/test/layer-0-primitives/mail-server-rate-limit.test.js +112 -0
  1076. package/lib/vendor/blamejs/test/layer-0-primitives/mail-server-registry.test.js +229 -0
  1077. package/lib/vendor/blamejs/test/layer-0-primitives/mail-server-submission.test.js +394 -0
  1078. package/lib/vendor/blamejs/test/layer-0-primitives/mail-server-tls.test.js +147 -0
  1079. package/lib/vendor/blamejs/test/layer-0-primitives/mail-sieve.test.js +151 -0
  1080. package/lib/vendor/blamejs/test/layer-0-primitives/mail-spam-score.test.js +204 -0
  1081. package/lib/vendor/blamejs/test/layer-0-primitives/mail-srs.test.js +152 -0
  1082. package/lib/vendor/blamejs/test/layer-0-primitives/mail-store-fts.test.js +279 -0
  1083. package/lib/vendor/blamejs/test/layer-0-primitives/mail-store.test.js +323 -0
  1084. package/lib/vendor/blamejs/test/layer-0-primitives/mail-unsubscribe.test.js +165 -0
  1085. package/lib/vendor/blamejs/test/layer-0-primitives/mail.test.js +439 -0
  1086. package/lib/vendor/blamejs/test/layer-0-primitives/mcp-tool-registry.test.js +202 -0
  1087. package/lib/vendor/blamejs/test/layer-0-primitives/mcp.test.js +155 -0
  1088. package/lib/vendor/blamejs/test/layer-0-primitives/metrics-shadow-registry.test.js +112 -0
  1089. package/lib/vendor/blamejs/test/layer-0-primitives/metrics-snapshot.test.js +224 -0
  1090. package/lib/vendor/blamejs/test/layer-0-primitives/middleware-compose-pipeline.test.js +278 -0
  1091. package/lib/vendor/blamejs/test/layer-0-primitives/money.test.js +376 -0
  1092. package/lib/vendor/blamejs/test/layer-0-primitives/mtls-ca-paths.test.js +89 -0
  1093. package/lib/vendor/blamejs/test/layer-0-primitives/nel.test.js +200 -0
  1094. package/lib/vendor/blamejs/test/layer-0-primitives/network-allowlist.test.js +106 -0
  1095. package/lib/vendor/blamejs/test/layer-0-primitives/network-byte-quota.test.js +133 -0
  1096. package/lib/vendor/blamejs/test/layer-0-primitives/network-dns-resolver.test.js +372 -0
  1097. package/lib/vendor/blamejs/test/layer-0-primitives/network-dns.test.js +635 -0
  1098. package/lib/vendor/blamejs/test/layer-0-primitives/network-heartbeat-passive.test.js +128 -0
  1099. package/lib/vendor/blamejs/test/layer-0-primitives/network-tls-build-options.test.js +130 -0
  1100. package/lib/vendor/blamejs/test/layer-0-primitives/network-tls-ct-inclusion.test.js +179 -0
  1101. package/lib/vendor/blamejs/test/layer-0-primitives/network-tls.test.js +447 -0
  1102. package/lib/vendor/blamejs/test/layer-0-primitives/network.test.js +369 -0
  1103. package/lib/vendor/blamejs/test/layer-0-primitives/nis2-report.test.js +21 -0
  1104. package/lib/vendor/blamejs/test/layer-0-primitives/nist-crosswalk.test.js +42 -0
  1105. package/lib/vendor/blamejs/test/layer-0-primitives/no-cache.test.js +98 -0
  1106. package/lib/vendor/blamejs/test/layer-0-primitives/notify.test.js +707 -0
  1107. package/lib/vendor/blamejs/test/layer-0-primitives/numeric-bounds.test.js +142 -0
  1108. package/lib/vendor/blamejs/test/layer-0-primitives/oauth-callback.test.js +72 -0
  1109. package/lib/vendor/blamejs/test/layer-0-primitives/observability-tracing.test.js +597 -0
  1110. package/lib/vendor/blamejs/test/layer-0-primitives/observability.test.js +190 -0
  1111. package/lib/vendor/blamejs/test/layer-0-primitives/openapi.test.js +877 -0
  1112. package/lib/vendor/blamejs/test/layer-0-primitives/otel-export.test.js +257 -0
  1113. package/lib/vendor/blamejs/test/layer-0-primitives/pagination.test.js +522 -0
  1114. package/lib/vendor/blamejs/test/layer-0-primitives/parsers-standalone.test.js +216 -0
  1115. package/lib/vendor/blamejs/test/layer-0-primitives/passkey.test.js +324 -0
  1116. package/lib/vendor/blamejs/test/layer-0-primitives/permissions.test.js +546 -0
  1117. package/lib/vendor/blamejs/test/layer-0-primitives/pqc-agent-curve.test.js +153 -0
  1118. package/lib/vendor/blamejs/test/layer-0-primitives/pqc-software.test.js +94 -0
  1119. package/lib/vendor/blamejs/test/layer-0-primitives/problem-details.test.js +195 -0
  1120. package/lib/vendor/blamejs/test/layer-0-primitives/process-spawn.test.js +62 -0
  1121. package/lib/vendor/blamejs/test/layer-0-primitives/promise-pool.test.js +93 -0
  1122. package/lib/vendor/blamejs/test/layer-0-primitives/protected-resource-metadata.test.js +68 -0
  1123. package/lib/vendor/blamejs/test/layer-0-primitives/protobuf-encoder.test.js +138 -0
  1124. package/lib/vendor/blamejs/test/layer-0-primitives/protocol-dispatcher.test.js +174 -0
  1125. package/lib/vendor/blamejs/test/layer-0-primitives/public-suffix.test.js +197 -0
  1126. package/lib/vendor/blamejs/test/layer-0-primitives/pubsub.test.js +232 -0
  1127. package/lib/vendor/blamejs/test/layer-0-primitives/queue-dlq-extend-lease.test.js +178 -0
  1128. package/lib/vendor/blamejs/test/layer-0-primitives/queue-flow-repeat.test.js +322 -0
  1129. package/lib/vendor/blamejs/test/layer-0-primitives/queue-priority-rate-progress.test.js +266 -0
  1130. package/lib/vendor/blamejs/test/layer-0-primitives/queue-sqs.test.js +300 -0
  1131. package/lib/vendor/blamejs/test/layer-0-primitives/rate-limit-cluster.test.js +338 -0
  1132. package/lib/vendor/blamejs/test/layer-0-primitives/rate-limit-registry.test.js +75 -0
  1133. package/lib/vendor/blamejs/test/layer-0-primitives/redact-dlp.test.js +246 -0
  1134. package/lib/vendor/blamejs/test/layer-0-primitives/redis-client.test.js +130 -0
  1135. package/lib/vendor/blamejs/test/layer-0-primitives/request-helpers.test.js +335 -0
  1136. package/lib/vendor/blamejs/test/layer-0-primitives/request-log.test.js +170 -0
  1137. package/lib/vendor/blamejs/test/layer-0-primitives/require-auth-cache-control.test.js +93 -0
  1138. package/lib/vendor/blamejs/test/layer-0-primitives/require-mtls.test.js +34 -0
  1139. package/lib/vendor/blamejs/test/layer-0-primitives/resource-access-lock.test.js +52 -0
  1140. package/lib/vendor/blamejs/test/layer-0-primitives/retention-floor.test.js +67 -0
  1141. package/lib/vendor/blamejs/test/layer-0-primitives/retry.test.js +535 -0
  1142. package/lib/vendor/blamejs/test/layer-0-primitives/router-cross-origin-redirect.test.js +0 -0
  1143. package/lib/vendor/blamejs/test/layer-0-primitives/router-tls0rtt.test.js +128 -0
  1144. package/lib/vendor/blamejs/test/layer-0-primitives/safe-async-loops.test.js +163 -0
  1145. package/lib/vendor/blamejs/test/layer-0-primitives/safe-async-parallel.test.js +170 -0
  1146. package/lib/vendor/blamejs/test/layer-0-primitives/safe-decompress.test.js +248 -0
  1147. package/lib/vendor/blamejs/test/layer-0-primitives/safe-dns.test.js +451 -0
  1148. package/lib/vendor/blamejs/test/layer-0-primitives/safe-ical.test.js +289 -0
  1149. package/lib/vendor/blamejs/test/layer-0-primitives/safe-icap.test.js +206 -0
  1150. package/lib/vendor/blamejs/test/layer-0-primitives/safe-jsonpath.test.js +104 -0
  1151. package/lib/vendor/blamejs/test/layer-0-primitives/safe-mime.test.js +339 -0
  1152. package/lib/vendor/blamejs/test/layer-0-primitives/safe-mount-info.test.js +180 -0
  1153. package/lib/vendor/blamejs/test/layer-0-primitives/safe-path.test.js +78 -0
  1154. package/lib/vendor/blamejs/test/layer-0-primitives/safe-sieve.test.js +123 -0
  1155. package/lib/vendor/blamejs/test/layer-0-primitives/safe-smtp.test.js +95 -0
  1156. package/lib/vendor/blamejs/test/layer-0-primitives/safe-url-idn-homograph.test.js +77 -0
  1157. package/lib/vendor/blamejs/test/layer-0-primitives/safe-vcard.test.js +257 -0
  1158. package/lib/vendor/blamejs/test/layer-0-primitives/saml-slo.test.js +249 -0
  1159. package/lib/vendor/blamejs/test/layer-0-primitives/sandbox.test.js +228 -0
  1160. package/lib/vendor/blamejs/test/layer-0-primitives/scheduler-exactly-once.test.js +238 -0
  1161. package/lib/vendor/blamejs/test/layer-0-primitives/scim-server.test.js +92 -0
  1162. package/lib/vendor/blamejs/test/layer-0-primitives/sd-jwt-vc.test.js +700 -0
  1163. package/lib/vendor/blamejs/test/layer-0-primitives/sd-notify.test.js +67 -0
  1164. package/lib/vendor/blamejs/test/layer-0-primitives/sec-cyber.test.js +85 -0
  1165. package/lib/vendor/blamejs/test/layer-0-primitives/security-assert.test.js +107 -0
  1166. package/lib/vendor/blamejs/test/layer-0-primitives/security-headers.test.js +175 -0
  1167. package/lib/vendor/blamejs/test/layer-0-primitives/seeders.test.js +816 -0
  1168. package/lib/vendor/blamejs/test/layer-0-primitives/self-update-standalone-verifier.test.js +168 -0
  1169. package/lib/vendor/blamejs/test/layer-0-primitives/self-update.test.js +302 -0
  1170. package/lib/vendor/blamejs/test/layer-0-primitives/server-timing.test.js +93 -0
  1171. package/lib/vendor/blamejs/test/layer-0-primitives/session-device-binding.test.js +247 -0
  1172. package/lib/vendor/blamejs/test/layer-0-primitives/session-extensions.test.js +295 -0
  1173. package/lib/vendor/blamejs/test/layer-0-primitives/shape-match.test.js +142 -0
  1174. package/lib/vendor/blamejs/test/layer-0-primitives/sigv4-bucket-ops.test.js +952 -0
  1175. package/lib/vendor/blamejs/test/layer-0-primitives/sigv4-multipart-sse.test.js +441 -0
  1176. package/lib/vendor/blamejs/test/layer-0-primitives/slug.test.js +330 -0
  1177. package/lib/vendor/blamejs/test/layer-0-primitives/smtp-policy.test.js +233 -0
  1178. package/lib/vendor/blamejs/test/layer-0-primitives/source-comment-blocks.test.js +105 -0
  1179. package/lib/vendor/blamejs/test/layer-0-primitives/speculation-rules.test.js +319 -0
  1180. package/lib/vendor/blamejs/test/layer-0-primitives/sse.test.js +148 -0
  1181. package/lib/vendor/blamejs/test/layer-0-primitives/ssrf-guard.test.js +283 -0
  1182. package/lib/vendor/blamejs/test/layer-0-primitives/standard-webhooks.test.js +67 -0
  1183. package/lib/vendor/blamejs/test/layer-0-primitives/static.test.js +266 -0
  1184. package/lib/vendor/blamejs/test/layer-0-primitives/step-up.test.js +487 -0
  1185. package/lib/vendor/blamejs/test/layer-0-primitives/storage-chunk-scratch.test.js +0 -0
  1186. package/lib/vendor/blamejs/test/layer-0-primitives/storage-presigned-url.test.js +773 -0
  1187. package/lib/vendor/blamejs/test/layer-0-primitives/stream-throttle.test.js +173 -0
  1188. package/lib/vendor/blamejs/test/layer-0-primitives/structured-fields.test.js +180 -0
  1189. package/lib/vendor/blamejs/test/layer-0-primitives/tcpa-10dlc.test.js +66 -0
  1190. package/lib/vendor/blamejs/test/layer-0-primitives/tenant-quota.test.js +89 -0
  1191. package/lib/vendor/blamejs/test/layer-0-primitives/test-coverage.test.js +571 -0
  1192. package/lib/vendor/blamejs/test/layer-0-primitives/test-harness.test.js +190 -0
  1193. package/lib/vendor/blamejs/test/layer-0-primitives/testing-request.test.js +119 -0
  1194. package/lib/vendor/blamejs/test/layer-0-primitives/testing.test.js +522 -0
  1195. package/lib/vendor/blamejs/test/layer-0-primitives/time.test.js +151 -0
  1196. package/lib/vendor/blamejs/test/layer-0-primitives/tls-exporter.test.js +168 -0
  1197. package/lib/vendor/blamejs/test/layer-0-primitives/tls-ocsp-ct.test.js +275 -0
  1198. package/lib/vendor/blamejs/test/layer-0-primitives/tls-ocsp-verify.test.js +105 -0
  1199. package/lib/vendor/blamejs/test/layer-0-primitives/tls-pinset-drift.test.js +35 -0
  1200. package/lib/vendor/blamejs/test/layer-0-primitives/tls-preferred-groups.test.js +81 -0
  1201. package/lib/vendor/blamejs/test/layer-0-primitives/tracing.test.js +280 -0
  1202. package/lib/vendor/blamejs/test/layer-0-primitives/uuid.test.js +93 -0
  1203. package/lib/vendor/blamejs/test/layer-0-primitives/vault-aad.test.js +277 -0
  1204. package/lib/vendor/blamejs/test/layer-0-primitives/vault-seal-pem-file.test.js +252 -0
  1205. package/lib/vendor/blamejs/test/layer-0-primitives/vendor-data.test.js +149 -0
  1206. package/lib/vendor/blamejs/test/layer-0-primitives/vendor-manifest.test.js +92 -0
  1207. package/lib/vendor/blamejs/test/layer-0-primitives/vex.test.js +661 -0
  1208. package/lib/vendor/blamejs/test/layer-0-primitives/watcher.test.js +308 -0
  1209. package/lib/vendor/blamejs/test/layer-0-primitives/web-push-vapid.test.js +144 -0
  1210. package/lib/vendor/blamejs/test/layer-0-primitives/webhook.test.js +674 -0
  1211. package/lib/vendor/blamejs/test/layer-0-primitives/websocket-channels.test.js +360 -0
  1212. package/lib/vendor/blamejs/test/layer-0-primitives/worker-pool.test.js +302 -0
  1213. package/lib/vendor/blamejs/test/layer-0-primitives/ws-client.test.js +349 -0
  1214. package/lib/vendor/blamejs/test/layer-1-state/api-key.test.js +717 -0
  1215. package/lib/vendor/blamejs/test/layer-5-integration/bundler-output.test.js +444 -0
  1216. package/lib/vendor/blamejs/test/layer-5-integration/guard-host-integration.test.js +597 -0
  1217. package/lib/vendor/blamejs/test/layer-5-integration/security-chaos.test.js +308 -0
  1218. package/lib/vendor/blamejs/test/smoke.js +431 -0
  1219. package/lib/webhooks.js +305 -0
  1220. package/package.json +43 -0
package/lib/vendor/blamejs/lib/dsr.js ADDED
@@ -0,0 +1,1188 @@
1
+ "use strict";
2
+ /**
3
+ * @module b.dsr
4
+ * @nav Compliance
5
+ * @title Dsr
6
+ *
7
+ * @intro
8
+ * Data Subject Rights workflow (GDPR Art 15-22, CCPA opt-out /
9
+ * right-to-know / right-to-delete) — ticket lifecycle, deadline
10
+ * tracking, source-by-source export.
11
+ *
12
+ * Coordinates the operator's response to GDPR Articles 15-22 /
13
+ * CCPA / CPRA / LGPD / PIPEDA / UK-GDPR data-subject requests.
14
+ * The framework owns the ticket state machine, deadline
15
+ * computation, audit emission, and source orchestration. The
16
+ * operator owns the storage backend (declares a `ticketStore`
17
+ * that satisfies the `{ insert, get, list, update }` shape) and
18
+ * the per-source `query` / `erase` callbacks.
19
+ *
20
+ * Ticket states: `pending` -> `in_progress` -> (`completed` |
21
+ * `partially_completed` | `cancelled` | `rejected` | `expired`).
22
+ *
23
+ * Posture-aware deadlines: gdpr/uk-gdpr/pipeda-ca = 30 days,
24
+ * ccpa = 45 days, lgpd-br/pipl-cn = 15 days. Operators override
25
+ * per-ticket via `submit({ deadlineMs })`.
26
+ *
27
+ * Verification ladder (GDPR Art 12(6) / CCPA §1798.140(y)):
28
+ * minimal / secondary / strong. Erasure + portability +
29
+ * rectification default to `secondary`; the framework refuses
30
+ * `process()` when the actual level is below the per-type floor.
31
+ *
32
+ * @card
33
+ * Data Subject Rights workflow (GDPR Art 15-22, CCPA opt-out / right-to-know / right-to-delete) — ticket lifecycle, deadline tracking, source-by-source export.
34
+ */
35
+ /*
36
+ * Original prose retained as a compact reference:
37
+ *
38
+ * var dsr = b.dsr.create({
39
+ * ticketStore: dsrTickets, // operator-supplied storage
40
+ * posture: "gdpr", // sets default deadline (1mo)
41
+ * identityResolver: async function (input) {
42
+ * // takes operator-form input; returns canonical subject
43
+ * return { subjectId, email, phone, aliases };
44
+ * },
45
+ * sources: [
46
+ * {
47
+ * name: "users",
48
+ * query: async function (subj) { return rowsAboutSubj; },
49
+ * erase: async function (subj) { return { deletedIds: [...] }; },
50
+ * },
51
+ * {
52
+ * name: "orders",
53
+ * query: async function (subj) { ... },
54
+ * erase: async function (subj) { ... },
55
+ * // CCPA §1798.105(d) — sale records may be retained for legal
56
+ * // dispute purposes; flag the source so erasure produces a
57
+ * // partial-success outcome.
58
+ * eraseExclusions: ["legal-hold"],
59
+ * },
60
+ * ],
61
+ * audit: true,
62
+ * retentionFloorMs: C.TIME.days(30), // export TTL
63
+ * });
64
+ *
65
+ * // Operator route: subject submits a request
66
+ * var ticket = await dsr.submit({
67
+ * type: "access", // | "erasure" | "portability" |
68
+ * // "rectification" | "restriction" |
69
+ * // "object" | "automated-decision"
70
+ * subject: { email: "alice@example.com" },
71
+ * reason: "user-initiated via web form",
72
+ * // optional — operator-side workflow ID for cross-ref
73
+ * externalRef: "case-ZD-12345",
74
+ * });
75
+ *
76
+ * // Operator route: admin processes a queued ticket
77
+ * var result = await dsr.process(ticket.id, {
78
+ * actor: "compliance@example.com",
79
+ * verifyContext: { mfaVerified: true, attestation: "..." },
80
+ * });
81
+ *
82
+ * // Cancel before processing (operator chooses; subject withdraws)
83
+ * await dsr.cancel(ticket.id, {
84
+ * actor: "compliance@example.com",
85
+ * reason: "subject withdrew on phone call",
86
+ * });
87
+ *
88
+ * Ticket state machine:
89
+ * pending → in_progress → (completed | partially_completed | cancelled | rejected)
90
+ *
91
+ * Audit emissions (audit namespace `dsr`):
92
+ * dsr.ticket.submitted — every submit()
93
+ * dsr.ticket.in_progress — every process() entry
94
+ * dsr.ticket.completed — every successful process() exit
95
+ * dsr.ticket.partial — process() with at least one source failure
96
+ * dsr.ticket.cancelled — every cancel()
97
+ * dsr.ticket.rejected — process() refuses (verify-context fail / unsupported)
98
+ * dsr.ticket.expired — ticket past deadline without completion
99
+ * dsr.source.queried — per-source successful query
100
+ * dsr.source.erased — per-source successful erase
101
+ * dsr.source.failed — per-source failure
102
+ *
103
+ * Posture-aware deadline (operator may override per-ticket):
104
+ * gdpr — 1 month (Art. 12(3)); extendable +2 months for complexity
105
+ * ccpa — 45 calendar days; extendable +45 days
106
+ * lgpd-br — 15 days for data subjects' requests (LGPD Art. 19)
107
+ * pipeda-ca — 30 days
108
+ * uk-gdpr — 1 month (mirrors GDPR)
109
+ * default — 30 days
110
+ */
111
+
112
+ var C = require("./constants");
113
+ var bCrypto = require("./crypto");
114
+ var lazyRequire = require("./lazy-require");
115
+ var validateOpts = require("./validate-opts");
116
+ var safeSql = require("./safe-sql");
117
+ var { defineClass } = require("./framework-error");
118
+
119
+ var DsrError = defineClass("DsrError", { alwaysPermanent: true });
120
+
121
+ var audit = lazyRequire(function () { return require("./audit"); });
122
+ var observability = lazyRequire(function () { return require("./observability"); });
123
+
124
+ var VALID_REQUEST_TYPES = Object.freeze([
125
+ "access", // GDPR Art. 15 / CCPA §1798.110
126
+ "erasure", // GDPR Art. 17 / CCPA §1798.105
127
+ "portability", // GDPR Art. 20 / CCPA §1798.130
128
+ "rectification", // GDPR Art. sixteen
129
+ "restriction", // GDPR Art. 18
130
+ "object", // GDPR Art. 21
131
+ "automated-decision", // GDPR Art. 22 — review of automated decision
132
+ ]);
133
+
134
+ var VALID_STATES = Object.freeze([
135
+ "pending",
136
+ "in_progress",
137
+ "completed",
138
+ "partially_completed",
139
+ "cancelled",
140
+ "rejected",
141
+ "expired",
142
+ ]);
143
+
144
+ var TERMINAL_STATES = Object.freeze({
145
+ completed: true,
146
+ partially_completed: true,
147
+ cancelled: true,
148
+ rejected: true,
149
+ expired: true,
150
+ });
151
+
152
+ // Per-posture default deadline. Operators with ambiguity (multi-region
153
+ // deployments) pass an explicit `deadlineMs` to submit().
154
+ // Verification level — operator-side controls for the identity ladder
155
+ // per GDPR Art. 12(6) ("the controller may request the provision of
156
+ // additional information necessary to confirm the identity of the
157
+ // data subject").
158
+ //
159
+ // "minimal" — controller relies on operator's identity-resolver
160
+ // (e.g. session-bound user lookup); no extra step.
161
+ // "secondary" — controller requires a second factor (email-link
162
+ // challenge, phone OTP, MFA recheck) verified at
163
+ // request submission time.
164
+ // "strong" — controller requires a notarised attestation /
165
+ // in-person verification step (typically required
166
+ // for healthcare / minor's data).
167
+ var VALID_VERIFICATION_LEVELS = Object.freeze([
168
+ "minimal",
169
+ "secondary",
170
+ "strong",
171
+ ]);
172
+
173
+ // For each request type, the minimum verification level the framework
174
+ // recommends. Operators override per-ticket via opts.verificationLevel
175
+ // but cannot drop BELOW the matrix.
176
+ var TYPE_MIN_VERIFICATION = Object.freeze({
177
+ "access": "minimal", // GDPR Recital sixty-four — provide info if identity confirmed
178
+ "erasure": "secondary", // irreversible — second factor recommended
179
+ "portability": "secondary", // mass export — second factor recommended
180
+ "rectification": "secondary", // data integrity impact
181
+ "restriction": "minimal",
182
+ "object": "minimal",
183
+ "automated-decision": "minimal",
184
+ });
185
+
186
+ var POSTURE_DEADLINE_MS = Object.freeze({
187
+ "gdpr": C.TIME.days(30), // GDPR Art. 12(3) — 1 month
188
+ "uk-gdpr": C.TIME.days(30), // UK ICO — mirrors GDPR
189
+ "ccpa": C.TIME.days(45), // CCPA — 45 calendar days
190
+ "lgpd-br": C.TIME.days(15), // LGPD Art. 19 — 15 days
191
+ "pipeda-ca": C.TIME.days(30), // PIPEDA — 30 days
192
+ "appi-jp": C.TIME.days(30), // APPI — typical 30-day handling
193
+ "pdpa-sg": C.TIME.days(30), // PDPA — 30 days
194
+ "pipl-cn": C.TIME.days(15), // PIPL — 15 days
195
+ "default": C.TIME.days(30),
196
+ });
197
+
198
+ // Operator extends without modifying the table (exported for tests
199
+ // + extension). Read-only at module scope.
200
+ function _deadlineForPosture(posture) {
201
+ if (typeof posture !== "string") return POSTURE_DEADLINE_MS["default"];
202
+ return POSTURE_DEADLINE_MS[posture] || POSTURE_DEADLINE_MS["default"];
203
+ }
204
+
205
+ function _now() { return Date.now(); }
206
+
207
+ function _isTerminal(state) { return TERMINAL_STATES[state] === true; }
208
+
209
+ function _validateTicketStore(store) {
210
+ if (!store || typeof store !== "object") return false;
211
+ return ["insert", "get", "list", "update"].every(function (m) {
212
+ return typeof store[m] === "function";
213
+ });
214
+ }
215
+
216
+ function _validateSource(s) {
217
+ if (!s || typeof s !== "object") return false;
218
+ if (typeof s.name !== "string" || s.name.length === 0) return false;
219
+ if (typeof s.query !== "function" && typeof s.erase !== "function") return false;
220
+ return true;
221
+ }
222
+
223
+ /**
224
+ * @primitive b.dsr.create
225
+ * @signature b.dsr.create(opts)
226
+ * @since 0.8.0
227
+ * @status stable
228
+ * @compliance gdpr, ccpa
229
+ * @related b.dsr.memoryTicketStore, b.dsr.dbTicketStore
230
+ *
231
+ * Build a Data Subject Rights workflow handle. Wires the ticket
232
+ * store, identity resolver, and per-source query/erase callbacks
233
+ * into one coordinator that exposes `submit`, `process`, `cancel`,
234
+ * `reject`, `expireOverdue`, `buildReceipt`, and
235
+ * `buildPortabilityBundle`. Posture (`gdpr`, `ccpa`, `lgpd-br`,
236
+ * `uk-gdpr`, `pipeda-ca`, etc.) sets the default deadline; the
237
+ * framework refuses `process()` when the actual verification level
238
+ * is below the per-type floor.
239
+ *
240
+ * @opts
241
+ * ticketStore: { insert, get, list, update },
242
+ * posture: string, // "gdpr" | "ccpa" | "lgpd-br" | ...
243
+ * identityResolver: async function (input) -> resolvedSubject,
244
+ * sources: [{ name, query?, erase?, eraseExclusions? }],
245
+ * audit: boolean, // default true
246
+ * retentionFloorMs: number, // export TTL; default 30 days
247
+ * deadlineMs: number, // overrides posture default
248
+ * verificationLevel: "minimal" | "secondary" | "strong",
249
+ * minVerificationByType: { erasure: "secondary", ... },
250
+ * receiptSigner: async function (receipt) -> { issuer, algorithm, signature },
251
+ *
252
+ * @example
253
+ * var dsr = b.dsr.create({
254
+ * ticketStore: b.dsr.memoryTicketStore(),
255
+ * posture: "gdpr",
256
+ * identityResolver: async function (input) {
257
+ * return { subjectId: "u-42", email: input.email, phone: null };
258
+ * },
259
+ * sources: [{
260
+ * name: "users",
261
+ * query: async function (subj) { return [{ email: subj.email }]; },
262
+ * erase: async function (subj) { return { deletedIds: [subj.subjectId] }; },
263
+ * }],
264
+ * });
265
+ * var ticket = await dsr.submit({
266
+ * type: "access",
267
+ * subject: { email: "alice@example.com" },
268
+ * reason: "user-initiated",
269
+ * });
270
+ * var processed = await dsr.process(ticket.id, {
271
+ * actor: "compliance@example.com",
272
+ * verificationLevel: "secondary",
273
+ * });
274
+ * processed.status;
275
+ * // → "completed"
276
+ */
277
+ function create(opts) {
278
+ validateOpts.requireObject(opts, "dsr", DsrError);
279
+ validateOpts(opts, [
280
+ "ticketStore", "posture", "identityResolver",
281
+ "sources", "audit", "retentionFloorMs",
282
+ "deadlineMs", "observability",
283
+ "verificationLevel", "verifyContext",
284
+ "receiptSigner", "minVerificationByType",
285
+ ], "dsr.create");
286
+
287
+ if (!_validateTicketStore(opts.ticketStore)) {
288
+ throw new DsrError("dsr/bad-store",
289
+ "dsr.create: ticketStore must implement { insert, get, list, update }");
290
+ }
291
+ if (typeof opts.identityResolver !== "function") {
292
+ throw new DsrError("dsr/bad-identity",
293
+ "dsr.create: identityResolver must be an async function");
294
+ }
295
+ if (!Array.isArray(opts.sources) || opts.sources.length === 0) {
296
+ throw new DsrError("dsr/no-sources",
297
+ "dsr.create: sources must be a non-empty array");
298
+ }
299
+ for (var i = 0; i < opts.sources.length; i++) {
300
+ if (!_validateSource(opts.sources[i])) {
301
+ throw new DsrError("dsr/bad-source",
302
+ "dsr.create: sources[" + i + "] missing name or query/erase function");
303
+ }
304
+ }
305
+ if (opts.posture !== undefined && typeof opts.posture !== "string") {
306
+ throw new DsrError("dsr/bad-posture",
307
+ "dsr.create: posture must be a string");
308
+ }
309
+ validateOpts.optionalPositiveFinite(opts.retentionFloorMs,
310
+ "dsr.create: retentionFloorMs", DsrError, "dsr/bad-opts");
311
+ validateOpts.optionalPositiveFinite(opts.deadlineMs,
312
+ "dsr.create: deadlineMs", DsrError, "dsr/bad-opts");
313
+
314
+ var store = opts.ticketStore;
315
+ var posture = opts.posture || "default";
316
+ var auditOn = opts.audit !== false;
317
+ var defaultDeadlineMs = opts.deadlineMs || _deadlineForPosture(posture);
318
+ var retentionFloorMs = opts.retentionFloorMs || C.TIME.days(30);
319
+
320
+ var defaultVerificationLevel = opts.verificationLevel || null;
321
+ if (defaultVerificationLevel !== null &&
322
+ VALID_VERIFICATION_LEVELS.indexOf(defaultVerificationLevel) === -1) {
323
+ throw new DsrError("dsr/bad-verification-level",
324
+ "dsr.create: verificationLevel must be one of " +
325
+ VALID_VERIFICATION_LEVELS.join(", "));
326
+ }
327
+ var minVerificationByType = Object.assign({}, TYPE_MIN_VERIFICATION,
328
+ opts.minVerificationByType || {});
329
+ // Validate operator override values
330
+ var overrideKeys = Object.keys(minVerificationByType);
331
+ for (var ki = 0; ki < overrideKeys.length; ki++) {
332
+ if (VALID_VERIFICATION_LEVELS.indexOf(minVerificationByType[overrideKeys[ki]]) === -1) {
333
+ throw new DsrError("dsr/bad-min-verification",
334
+ "dsr.create: minVerificationByType[" + overrideKeys[ki] +
335
+ "] must be one of " + VALID_VERIFICATION_LEVELS.join(", "));
336
+ }
337
+ }
338
+ validateOpts.optionalFunction(opts.receiptSigner,
339
+ "dsr.create: receiptSigner", DsrError, "dsr/bad-opts");
340
+
341
+ function _levelOrdinal(lvl) {
342
+ return VALID_VERIFICATION_LEVELS.indexOf(lvl);
343
+ }
344
+ function _isVerificationOk(actualLevel, requiredLevel) {
345
+ return _levelOrdinal(actualLevel) >= _levelOrdinal(requiredLevel);
346
+ }
347
+
348
+ // Source registry — keyed by name for O(1) lookup
349
+ var sources = Object.create(null);
350
+ for (var s = 0; s < opts.sources.length; s++) {
351
+ sources[opts.sources[s].name] = opts.sources[s];
352
+ }
353
+
354
+ function _emitAudit(action, outcome, metadata) {
355
+ if (!auditOn) return;
356
+ try {
357
+ audit().safeEmit({
358
+ action: action,
359
+ outcome: outcome === "ok" ? "success" : outcome === "fail" ? "failure" : outcome === "warn" ? "success" : outcome,
360
+ metadata: metadata || {},
361
+ });
362
+ } catch (_e) { /* drop-silent — audit sink */ }
363
+ }
364
+
365
+ function _emitMetric(verb, n, labels) {
366
+ try { observability().safeEvent("dsr." + verb, n || 1, labels || {}); }
367
+ catch (_e) { /* drop-silent */ }
368
+ }
369
+
370
+ function _newTicketId() {
371
+ var ts = String(Date.now()).slice(-7); // allow:raw-byte-literal — last 7 chars of unix-ms timestamp; collision-resistant when paired with the random suffix
372
+ var rnd = bCrypto.generateBytes(C.BYTES.bytes(6)).toString("hex").toUpperCase();
373
+ return "DSR-" + ts + "-" + rnd;
374
+ }
375
+
376
+ async function submit(input) {
377
+ if (!input || typeof input !== "object") {
378
+ throw new DsrError("dsr/bad-submit", "submit: input must be an object");
379
+ }
380
+ if (VALID_REQUEST_TYPES.indexOf(input.type) === -1) {
381
+ throw new DsrError("dsr/bad-type",
382
+ "submit: type must be one of " + VALID_REQUEST_TYPES.join(", ") +
383
+ " (got " + JSON.stringify(input.type) + ")");
384
+ }
385
+ if (!input.subject || typeof input.subject !== "object") {
386
+ throw new DsrError("dsr/bad-subject",
387
+ "submit: subject must be an object");
388
+ }
389
+
390
+ // Resolve canonical subject identity
391
+ var resolved;
392
+ try { resolved = await opts.identityResolver(input.subject); }
393
+ catch (e) {
394
+ _emitAudit("dsr.ticket.rejected", "fail", {
395
+ reason: "identity-resolver-failed",
396
+ error: (e && e.message) || String(e),
397
+ });
398
+ throw new DsrError("dsr/identity-resolver-failed",
399
+ "submit: identityResolver threw: " + ((e && e.message) || String(e)));
400
+ }
401
+ if (!resolved || typeof resolved !== "object") {
402
+ throw new DsrError("dsr/identity-not-resolved",
403
+ "submit: identityResolver returned non-object (subject not found?)");
404
+ }
405
+
406
+ var deadlineMs = (typeof input.deadlineMs === "number" && isFinite(input.deadlineMs))
407
+ ? input.deadlineMs
408
+ : defaultDeadlineMs;
409
+
410
+ var now = _now();
411
+ var submitVerificationLevel = input.verificationLevel || defaultVerificationLevel || null;
412
+ if (submitVerificationLevel !== null &&
413
+ VALID_VERIFICATION_LEVELS.indexOf(submitVerificationLevel) === -1) {
414
+ throw new DsrError("dsr/bad-verification-level",
415
+ "submit: verificationLevel must be one of " +
416
+ VALID_VERIFICATION_LEVELS.join(", "));
417
+ }
418
+ var ticket = {
419
+ id: _newTicketId(),
420
+ type: input.type,
421
+ subject: resolved,
422
+ submittedBy: input.submittedBy || null,
423
+ reason: input.reason || null,
424
+ externalRef: input.externalRef || null,
425
+ status: "pending",
426
+ submittedAt: now,
427
+ deadlineAt: now + deadlineMs,
428
+ processedAt: null,
429
+ result: null,
430
+ sourceResults: [],
431
+ posture: posture,
432
+ retentionUntil: now + retentionFloorMs,
433
+ verificationLevel: submitVerificationLevel,
434
+ verifyContext: null,
435
+ };
436
+ await store.insert(ticket);
437
+ _emitAudit("dsr.ticket.submitted", "ok", {
438
+ id: ticket.id,
439
+ type: ticket.type,
440
+ posture: posture,
441
+ deadlineAt: ticket.deadlineAt,
442
+ });
443
+ _emitMetric("submitted", 1, { type: ticket.type, posture: posture });
444
+ return ticket;
445
+ }
446
+
447
+ async function process(ticketId, opts2) {
448
+ opts2 = opts2 || {};
449
+ var ticket = await store.get(ticketId);
450
+ if (!ticket) {
451
+ throw new DsrError("dsr/not-found", "process: ticket " + ticketId + " not found");
452
+ }
453
+ if (_isTerminal(ticket.status)) {
454
+ throw new DsrError("dsr/terminal-state",
455
+ "process: ticket " + ticketId + " is in terminal state " + ticket.status);
456
+ }
457
+ if (ticket.status === "in_progress") {
458
+ throw new DsrError("dsr/already-in-progress",
459
+ "process: ticket " + ticketId + " is already in progress");
460
+ }
461
+
462
+ // Identity-verification ladder per GDPR Article 12(6) / CCPA
463
+ // §1798.140(y). The operator passes the verification level
464
+ // they completed at submission/process time; the framework
465
+ // refuses processing if it's below the per-type floor.
466
+ var requiredLevel = minVerificationByType[ticket.type] || "minimal";
467
+ var actualLevel = (opts2 && opts2.verificationLevel) ||
468
+ ticket.verificationLevel ||
469
+ defaultVerificationLevel ||
470
+ "minimal";
471
+ if (VALID_VERIFICATION_LEVELS.indexOf(actualLevel) === -1) {
472
+ throw new DsrError("dsr/bad-verification-level",
473
+ "process: verificationLevel must be one of " +
474
+ VALID_VERIFICATION_LEVELS.join(", "));
475
+ }
476
+ if (!_isVerificationOk(actualLevel, requiredLevel)) {
477
+ _emitAudit("dsr.ticket.rejected", "fail", {
478
+ id: ticket.id, type: ticket.type,
479
+ reason: "insufficient-verification",
480
+ required: requiredLevel, actual: actualLevel,
481
+ });
482
+ throw new DsrError("dsr/insufficient-verification",
483
+ "process: ticket " + ticketId + " requires verification level " +
484
+ requiredLevel + " but actual is " + actualLevel +
485
+ " (operator must complete the additional verification step before re-processing)");
486
+ }
487
+ ticket.verificationLevel = actualLevel;
488
+ ticket.verifyContext = opts2.verifyContext || null;
489
+
490
+ // Mark in_progress before any source dispatch — protects against
491
+ // concurrent processors picking the same ticket.
492
+ ticket.status = "in_progress";
493
+ ticket.startedAt = _now();
494
+ ticket.processor = opts2.actor || null;
495
+ await store.update(ticket.id, ticket);
496
+ _emitAudit("dsr.ticket.in_progress", "ok", {
497
+ id: ticket.id,
498
+ type: ticket.type,
499
+ actor: opts2.actor || null,
500
+ });
501
+
502
+ var sourceResults = [];
503
+ var anyFailed = false;
504
+ var totalRows = 0;
505
+ var deletedTotal = 0;
506
+
507
+ var sourceNames = Object.keys(sources);
508
+ for (var i = 0; i < sourceNames.length; i++) {
509
+ var src = sources[sourceNames[i]];
510
+ var sourceResult = {
511
+ name: src.name,
512
+ outcome: "skipped",
513
+ rows: null,
514
+ deleted: null,
515
+ error: null,
516
+ };
517
+ try {
518
+ if (ticket.type === "access" || ticket.type === "portability" ||
519
+ ticket.type === "rectification") {
520
+ if (typeof src.query === "function") {
521
+ var rows = await src.query(ticket.subject);
522
+ sourceResult.outcome = "queried";
523
+ sourceResult.rows = Array.isArray(rows) ? rows.length : (rows ? 1 : 0);
524
+ sourceResult.data = rows; // operator-side responsibility to redact
525
+ totalRows += sourceResult.rows;
526
+ _emitAudit("dsr.source.queried", "ok", {
527
+ ticketId: ticket.id, source: src.name, rows: sourceResult.rows,
528
+ });
529
+ }
530
+ } else if (ticket.type === "erasure") {
531
+ if (typeof src.erase === "function") {
532
+ var eraseResult = await src.erase(ticket.subject);
533
+ var deleted = (eraseResult && Array.isArray(eraseResult.deletedIds))
534
+ ? eraseResult.deletedIds.length
535
+ : (typeof (eraseResult && eraseResult.deleted) === "number"
536
+ ? eraseResult.deleted : 0);
537
+ sourceResult.outcome = "erased";
538
+ sourceResult.deleted = deleted;
539
+ sourceResult.deletedIds = (eraseResult && eraseResult.deletedIds) || null;
540
+ sourceResult.exclusions = (eraseResult && eraseResult.exclusions) ||
541
+ src.eraseExclusions || null;
542
+ deletedTotal += deleted;
543
+ _emitAudit("dsr.source.erased", "ok", {
544
+ ticketId: ticket.id, source: src.name, deleted: deleted,
545
+ });
546
+ }
547
+ } else if (ticket.type === "restriction") {
548
+ // Restriction is operator-side: we mark the source as "noted"
549
+ // so the operator's downstream code skips processing for the
550
+ // subject. The framework records the restriction; enforcement
551
+ // is operator code that reads sourceResults.
552
+ sourceResult.outcome = "marked-restricted";
553
+ } else if (ticket.type === "object") {
554
+ // Object to processing — same shape as restriction but different
555
+ // outcome label so audits read correctly.
556
+ sourceResult.outcome = "marked-objection";
557
+ } else if (ticket.type === "automated-decision") {
558
+ // Operator-side: log a review-required marker
559
+ sourceResult.outcome = "marked-automated-decision-review";
560
+ }
561
+ } catch (e) {
562
+ anyFailed = true;
563
+ sourceResult.outcome = "failed";
564
+ sourceResult.error = (e && e.message) || String(e);
565
+ _emitAudit("dsr.source.failed", "fail", {
566
+ ticketId: ticket.id, source: src.name,
567
+ error: sourceResult.error,
568
+ });
569
+ }
570
+ sourceResults.push(sourceResult);
571
+ }
572
+
573
+ var finalStatus = anyFailed ? "partially_completed" : "completed";
574
+ ticket.status = finalStatus;
575
+ ticket.processedAt = _now();
576
+ ticket.sourceResults = sourceResults;
577
+ ticket.result = {
578
+ type: ticket.type,
579
+ anyFailed: anyFailed,
580
+ totalRowsFound: totalRows,
581
+ totalDeleted: deletedTotal,
582
+ sources: sourceResults.map(function (r) {
583
+ return {
584
+ name: r.name, outcome: r.outcome,
585
+ rows: r.rows, deleted: r.deleted,
586
+ error: r.error,
587
+ };
588
+ }),
589
+ };
590
+ await store.update(ticket.id, ticket);
591
+ _emitAudit(anyFailed ? "dsr.ticket.partial" : "dsr.ticket.completed",
592
+ anyFailed ? "warn" : "ok",
593
+ { id: ticket.id, type: ticket.type, totalRows: totalRows,
594
+ totalDeleted: deletedTotal, anyFailed: anyFailed });
595
+ _emitMetric(anyFailed ? "partial" : "completed", 1, { type: ticket.type });
596
+ return ticket;
597
+ }
598
+
599
+ async function cancel(ticketId, opts2) {
600
+ opts2 = opts2 || {};
601
+ var ticket = await store.get(ticketId);
602
+ if (!ticket) {
603
+ throw new DsrError("dsr/not-found", "cancel: ticket " + ticketId + " not found");
604
+ }
605
+ if (_isTerminal(ticket.status)) {
606
+ throw new DsrError("dsr/terminal-state",
607
+ "cancel: ticket " + ticketId + " is in terminal state " + ticket.status);
608
+ }
609
+ ticket.status = "cancelled";
610
+ ticket.cancelledAt = _now();
611
+ ticket.cancelledBy = opts2.actor || null;
612
+ ticket.cancelReason = opts2.reason || null;
613
+ await store.update(ticket.id, ticket);
614
+ _emitAudit("dsr.ticket.cancelled", "ok", {
615
+ id: ticket.id, type: ticket.type, actor: opts2.actor || null,
616
+ reason: opts2.reason || null,
617
+ });
618
+ _emitMetric("cancelled", 1, { type: ticket.type });
619
+ return ticket;
620
+ }
621
+
622
+ async function reject(ticketId, opts2) {
623
+ opts2 = opts2 || {};
624
+ if (typeof opts2.reason !== "string" || opts2.reason.length === 0) {
625
+ throw new DsrError("dsr/bad-reject",
626
+ "reject: opts.reason is required (operator must record the rejection rationale)");
627
+ }
628
+ var ticket = await store.get(ticketId);
629
+ if (!ticket) {
630
+ throw new DsrError("dsr/not-found", "reject: ticket " + ticketId + " not found");
631
+ }
632
+ if (_isTerminal(ticket.status)) {
633
+ throw new DsrError("dsr/terminal-state",
634
+ "reject: ticket " + ticketId + " is in terminal state " + ticket.status);
635
+ }
636
+ ticket.status = "rejected";
637
+ ticket.rejectedAt = _now();
638
+ ticket.rejectedBy = opts2.actor || null;
639
+ ticket.rejectReason = opts2.reason;
640
+ await store.update(ticket.id, ticket);
641
+ _emitAudit("dsr.ticket.rejected", "ok", {
642
+ id: ticket.id, type: ticket.type, actor: opts2.actor || null,
643
+ reason: opts2.reason,
644
+ });
645
+ _emitMetric("rejected", 1, { type: ticket.type });
646
+ return ticket;
647
+ }
648
+
649
+ async function get(ticketId) {
650
+ return await store.get(ticketId);
651
+ }
652
+
653
+ async function listBySubject(subject) {
654
+ if (!subject || typeof subject !== "object") return [];
655
+ return await store.list({ subject: subject });
656
+ }
657
+
658
+ async function listByStatus(status) {
659
+ if (VALID_STATES.indexOf(status) === -1) {
660
+ throw new DsrError("dsr/bad-status",
661
+ "listByStatus: status must be one of " + VALID_STATES.join(", "));
662
+ }
663
+ return await store.list({ status: status });
664
+ }
665
+
666
+ async function expireOverdue() {
667
+ // Sweep tickets whose deadline has passed without terminal state.
668
+ // Operator runs this on a schedule (e.g. via b.scheduler).
669
+ var now = _now();
670
+ var pending = await store.list({ status: "pending" });
671
+ var inFlight = await store.list({ status: "in_progress" });
672
+ var candidates = [].concat(pending || [], inFlight || []);
673
+ var expired = [];
674
+ for (var i = 0; i < candidates.length; i++) {
675
+ var t = candidates[i];
676
+ if (typeof t.deadlineAt === "number" && t.deadlineAt < now) {
677
+ t.status = "expired";
678
+ t.expiredAt = now;
679
+ await store.update(t.id, t);
680
+ _emitAudit("dsr.ticket.expired", "warn", {
681
+ id: t.id, type: t.type,
682
+ deadlineAt: t.deadlineAt,
683
+ });
684
+ expired.push(t);
685
+ }
686
+ }
687
+ return expired;
688
+ }
689
+
690
+ // Build an operator-signed receipt for a completed/cancelled/rejected
691
+ // ticket. The receipt is the canonical "I did the thing" artifact
692
+ // the operator gives to the subject + retains for compliance audit.
693
+ // Receipt shape:
694
+ // {
695
+ // schema: "blamejs.dsr.receipt/1",
696
+ // ticketId, type, status,
697
+ // subject: { subjectId, email, phone },
698
+ // posture, verificationLevel,
699
+ // submittedAt, processedAt | cancelledAt | rejectedAt,
700
+ // deadlineAt,
701
+ // summary: { totalRowsFound?, totalDeleted?, sources?[],
702
+ // cancelReason?, rejectReason? },
703
+ // issuedAt, issuer (from receiptSigner.issuer),
704
+ // signature: base64url-encoded operator signature when
705
+ // receiptSigner is provided
706
+ // }
707
+ async function buildReceipt(ticketId) {
708
+ var ticket = await store.get(ticketId);
709
+ if (!ticket) {
710
+ throw new DsrError("dsr/not-found",
711
+ "buildReceipt: ticket " + ticketId + " not found");
712
+ }
713
+ if (!_isTerminal(ticket.status)) {
714
+ throw new DsrError("dsr/not-terminal",
715
+ "buildReceipt: ticket must be in terminal state (got " +
716
+ ticket.status + ")");
717
+ }
718
+ var summary = {};
719
+ if (ticket.status === "completed" || ticket.status === "partially_completed") {
720
+ summary.totalRowsFound = (ticket.result && ticket.result.totalRowsFound) || 0;
721
+ summary.totalDeleted = (ticket.result && ticket.result.totalDeleted) || 0;
722
+ summary.sources = (ticket.result && ticket.result.sources) || [];
723
+ } else if (ticket.status === "cancelled") {
724
+ summary.cancelReason = ticket.cancelReason || null;
725
+ } else if (ticket.status === "rejected") {
726
+ summary.rejectReason = ticket.rejectReason || null;
727
+ } else if (ticket.status === "expired") {
728
+ summary.deadlineAt = ticket.deadlineAt;
729
+ }
730
+ var receipt = {
731
+ schema: "blamejs.dsr.receipt/1",
732
+ ticketId: ticket.id,
733
+ type: ticket.type,
734
+ status: ticket.status,
735
+ subject: {
736
+ subjectId: ticket.subject.subjectId || null,
737
+ email: ticket.subject.email || null,
738
+ phone: ticket.subject.phone || null,
739
+ },
740
+ posture: ticket.posture,
741
+ verificationLevel: ticket.verificationLevel || "minimal",
742
+ submittedAt: ticket.submittedAt,
743
+ processedAt: ticket.processedAt || null,
744
+ cancelledAt: ticket.cancelledAt || null,
745
+ rejectedAt: ticket.rejectedAt || null,
746
+ expiredAt: ticket.expiredAt || null,
747
+ deadlineAt: ticket.deadlineAt,
748
+ summary: summary,
749
+ issuedAt: _now(),
750
+ };
751
+ if (typeof opts.receiptSigner === "function") {
752
+ try {
753
+ var sigResult = await opts.receiptSigner(receipt);
754
+ receipt.issuer = (sigResult && sigResult.issuer) || null;
755
+ receipt.algorithm = (sigResult && sigResult.algorithm) || null;
756
+ receipt.signature = (sigResult && sigResult.signature) || null;
757
+ } catch (e) {
758
+ // Signer failure is operator-side; return unsigned receipt
759
+ // with a marker so the caller can decide how to handle.
760
+ receipt.signatureError = (e && e.message) || String(e);
761
+ }
762
+ }
763
+ return receipt;
764
+ }
765
+
766
+ // Build a portability bundle from a completed access/portability
767
+ // ticket. Operators wire this into their export endpoint; the
768
+ // framework structures the output as a JSON envelope.
769
+ function buildPortabilityBundle(ticket) {
770
+ if (!ticket || ticket.type === undefined) {
771
+ throw new DsrError("dsr/bad-ticket", "buildPortabilityBundle: ticket required");
772
+ }
773
+ if (ticket.type !== "access" && ticket.type !== "portability") {
774
+ throw new DsrError("dsr/wrong-type",
775
+ "buildPortabilityBundle: ticket.type must be 'access' or 'portability'");
776
+ }
777
+ if (!_isTerminal(ticket.status) || ticket.status === "cancelled" ||
778
+ ticket.status === "rejected" || ticket.status === "expired") {
779
+ throw new DsrError("dsr/not-completed",
780
+ "buildPortabilityBundle: ticket must be in completed/partially_completed state");
781
+ }
782
+ var bundle = {
783
+ schema: "blamejs.dsr.portability/1",
784
+ ticketId: ticket.id,
785
+ type: ticket.type,
786
+ subject: {
787
+ subjectId: ticket.subject.subjectId || null,
788
+ email: ticket.subject.email || null,
789
+ phone: ticket.subject.phone || null,
790
+ },
791
+ generatedAt: _now(),
792
+ retentionUntil: ticket.retentionUntil,
793
+ data: {},
794
+ };
795
+ var results = ticket.sourceResults || [];
796
+ for (var i = 0; i < results.length; i++) {
797
+ var r = results[i];
798
+ if (r.outcome === "queried" && r.data !== undefined) {
799
+ bundle.data[r.name] = r.data;
800
+ }
801
+ }
802
+ return bundle;
803
+ }
804
+
805
+ return {
806
+ submit: submit,
807
+ process: process,
808
+ cancel: cancel,
809
+ reject: reject,
810
+ get: get,
811
+ listBySubject: listBySubject,
812
+ listByStatus: listByStatus,
813
+ expireOverdue: expireOverdue,
814
+ buildReceipt: buildReceipt,
815
+ buildPortabilityBundle: buildPortabilityBundle,
816
+ // Test hooks
817
+ _deadlineForPosture: _deadlineForPosture,
818
+ _isTerminal: _isTerminal,
819
+ _isVerificationOk: _isVerificationOk,
820
+ };
821
+ }
822
+
823
+ /**
824
+ * @primitive b.dsr.memoryTicketStore
825
+ * @signature b.dsr.memoryTicketStore()
826
+ * @since 0.8.0
827
+ * @status stable
828
+ * @related b.dsr.create, b.dsr.dbTicketStore
829
+ *
830
+ * In-memory ticket store — operator dev / test scaffold. Production
831
+ * operators wire `b.dsr.dbTicketStore` (or their own b.externalDb-
832
+ * backed store). The shape is the contract: `{ insert(ticket),
833
+ * get(id), list(filter), update(id, ticket) }`. The returned store
834
+ * also exposes `_size()` for tests.
835
+ *
836
+ * @example
837
+ * var store = b.dsr.memoryTicketStore();
838
+ * await store.insert({ id: "DSR-1", status: "pending", subject: {} });
839
+ * var t = await store.get("DSR-1");
840
+ * t.status;
841
+ * // → "pending"
842
+ * var pending = await store.list({ status: "pending" });
843
+ * pending.length;
844
+ * // → 1
845
+ */
846
+ function memoryTicketStore() {
847
+ var byId = new Map();
848
+ return {
849
+ insert: async function (ticket) {
850
+ if (byId.has(ticket.id)) {
851
+ throw new DsrError("dsr/duplicate-ticket-id",
852
+ "memoryTicketStore: duplicate ticket id " + ticket.id);
853
+ }
854
+ byId.set(ticket.id, Object.assign({}, ticket));
855
+ },
856
+ get: async function (id) {
857
+ var t = byId.get(id);
858
+ return t ? Object.assign({}, t) : null;
859
+ },
860
+ list: async function (filter) {
861
+ filter = filter || {};
862
+ var out = [];
863
+ for (var entry of byId) {
864
+ var t = entry[1];
865
+ if (filter.status && t.status !== filter.status) continue;
866
+ if (filter.subject) {
867
+ if (filter.subject.email && t.subject.email !== filter.subject.email) continue;
868
+ if (filter.subject.subjectId && t.subject.subjectId !== filter.subject.subjectId) continue;
869
+ }
870
+ out.push(Object.assign({}, t));
871
+ }
872
+ return out;
873
+ },
874
+ update: async function (id, ticket) {
875
+ if (!byId.has(id)) {
876
+ throw new DsrError("dsr/ticket-not-found",
877
+ "memoryTicketStore: ticket " + id + " not found for update");
878
+ }
879
+ byId.set(id, Object.assign({}, ticket));
880
+ },
881
+ _size: function () { return byId.size; },
882
+ };
883
+ }
884
+
885
+ /**
886
+ * @primitive b.dsr.dbTicketStore
887
+ * @signature b.dsr.dbTicketStore(opts)
888
+ * @since 0.8.0
889
+ * @status stable
890
+ * @compliance gdpr, ccpa
891
+ * @related b.dsr.create, b.dsr.memoryTicketStore
892
+ *
893
+ * Production-grade ticket store backed by `b.db`. Auto-provisions
894
+ * the table on first use, indexes on `subject_email` and `status`,
895
+ * persists the full ticket as a JSON payload column, and exposes
896
+ * `purgeExpired(asOfMs?)` for retention-floor enforcement.
897
+ *
898
+ * @opts
899
+ * db: b.db-shaped handle (`{ runSql, prepare }`),
900
+ * table: string, // SQL identifier; defaults to "dsr_tickets"
901
+ *
902
+ * @example
903
+ * var store = b.dsr.dbTicketStore({ db: b.db.handle(), table: "dsr_tickets" });
904
+ * await store.insert({
905
+ * id: "DSR-1234567-DEADBEEF",
906
+ * type: "erasure",
907
+ * status: "pending",
908
+ * subject: { subjectId: "u-42", email: "alice@example.com" },
909
+ * submittedAt: Date.now(),
910
+ * deadlineAt: Date.now() + 30 * 86400 * 1000,
911
+ * retentionUntil: Date.now() + 30 * 86400 * 1000,
912
+ * });
913
+ * var purged = await store.purgeExpired();
914
+ * typeof purged;
915
+ * // → "number"
916
+ */
917
+ // b.db-backed ticket store — production operators wire this against
918
+ // the framework's SQLite engine. The store auto-provisions a single
919
+ // table (default name `dsr_tickets`) with the canonical column set:
920
+ //
921
+ // id TEXT PRIMARY KEY
922
+ // type TEXT NOT NULL
923
+ // status TEXT NOT NULL
924
+ // subject_id TEXT
925
+ // subject_email TEXT
926
+ // subject_phone TEXT
927
+ // submitted_at INTEGER NOT NULL
928
+ // deadline_at INTEGER NOT NULL
929
+ // processed_at INTEGER
930
+ // verification_level TEXT
931
+ // posture TEXT
932
+ // payload TEXT -- full JSON for the ticket
933
+ //
934
+ // Indexed on subject_email and status for the common list-by-subject
935
+ // and list-by-status queries.
936
+ function dbTicketStore(opts) {
937
+ opts = opts || {};
938
+ var db = opts.db;
939
+ if (!db || typeof db.runSql !== "function" || typeof db.prepare !== "function") {
940
+ throw new DsrError("dsr/bad-db",
941
+ "dbTicketStore: opts.db must be a b.db-shaped handle (with runSql + prepare)");
942
+ }
943
+ var tableRaw = opts.table || "dsr_tickets";
944
+ var qTable, qEmailIdx, qStatusIdx;
945
+ try {
946
+ qTable = safeSql.quoteIdentifier(tableRaw, "sqlite");
947
+ qEmailIdx = safeSql.quoteIdentifier(tableRaw + "_email_idx", "sqlite");
948
+ qStatusIdx = safeSql.quoteIdentifier(tableRaw + "_status_idx", "sqlite");
949
+ } catch (sqlErr) {
950
+ throw new DsrError("dsr/bad-table",
951
+ "dbTicketStore: table must be a valid SQL identifier: " +
952
+ (sqlErr && sqlErr.message ? sqlErr.message : String(sqlErr)));
953
+ }
954
+
955
+ // Auto-provision schema if not already present. Idempotent.
956
+ function ensureSchema() {
957
+ db.runSql("CREATE TABLE IF NOT EXISTS " + qTable + " (" +
958
+ "id TEXT PRIMARY KEY, " +
959
+ "type TEXT NOT NULL, " +
960
+ "status TEXT NOT NULL, " +
961
+ "subject_id TEXT, " +
962
+ "subject_email TEXT, " +
963
+ "subject_phone TEXT, " +
964
+ "submitted_at INTEGER NOT NULL, " +
965
+ "deadline_at INTEGER NOT NULL, " +
966
+ "processed_at INTEGER, " +
967
+ "verification_level TEXT, " +
968
+ "posture TEXT, " +
969
+ "payload TEXT NOT NULL" +
970
+ ")");
971
+ db.runSql("CREATE INDEX IF NOT EXISTS " + qEmailIdx + " ON " +
972
+ qTable + " (subject_email)");
973
+ db.runSql("CREATE INDEX IF NOT EXISTS " + qStatusIdx + " ON " +
974
+ qTable + " (status)");
975
+ }
976
+ ensureSchema();
977
+
978
+ return {
979
+ insert: async function (ticket) {
980
+ var stmt = db.prepare("INSERT INTO " + qTable +
981
+ " (id, type, status, subject_id, subject_email, subject_phone, " +
982
+ " submitted_at, deadline_at, processed_at, verification_level, posture, payload) " +
983
+ " VALUES ($id, $type, $status, $sid, $email, $phone, $submittedAt, " +
984
+ " $deadlineAt, $processedAt, $verLevel, $posture, $payload)");
985
+ stmt.run({
986
+ $id: ticket.id,
987
+ $type: ticket.type,
988
+ $status: ticket.status,
989
+ $sid: (ticket.subject && ticket.subject.subjectId) || null,
990
+ $email: (ticket.subject && ticket.subject.email) || null,
991
+ $phone: (ticket.subject && ticket.subject.phone) || null,
992
+ $submittedAt: ticket.submittedAt,
993
+ $deadlineAt: ticket.deadlineAt,
994
+ $processedAt: ticket.processedAt || null,
995
+ $verLevel: ticket.verificationLevel || null,
996
+ $posture: ticket.posture || null,
997
+ $payload: JSON.stringify(ticket),
998
+ });
999
+ },
1000
+ get: async function (id) {
1001
+ var rows = db.prepare("SELECT payload FROM " + qTable + " WHERE id = $id")
1002
+ .all({ $id: id });
1003
+ if (!rows || rows.length === 0) return null;
1004
+ return JSON.parse(rows[0].payload); // allow:bare-json-parse — payload was JSON.stringify-ed by this same store, never from operator/network input
1005
+ },
1006
+ list: async function (filter) {
1007
+ filter = filter || {};
1008
+ var sql = "SELECT payload FROM " + qTable;
1009
+ var conds = [];
1010
+ var params = {};
1011
+ if (filter.status) {
1012
+ conds.push("status = $status");
1013
+ params.$status = filter.status;
1014
+ }
1015
+ if (filter.subject) {
1016
+ if (filter.subject.email) {
1017
+ conds.push("subject_email = $email");
1018
+ params.$email = filter.subject.email;
1019
+ }
1020
+ if (filter.subject.subjectId) {
1021
+ conds.push("subject_id = $sid");
1022
+ params.$sid = filter.subject.subjectId;
1023
+ }
1024
+ }
1025
+ if (conds.length > 0) sql += " WHERE " + conds.join(" AND ");
1026
+ sql += " ORDER BY submitted_at DESC";
1027
+ var rows = db.prepare(sql).all(params);
1028
+ return rows.map(function (r) { return JSON.parse(r.payload); }); // allow:bare-json-parse — payload was JSON.stringify-ed by this same store, never from operator/network input
1029
+ },
1030
+ update: async function (id, ticket) {
1031
+ var stmt = db.prepare("UPDATE " + qTable + " SET " +
1032
+ " type = $type, status = $status, subject_id = $sid, " +
1033
+ " subject_email = $email, subject_phone = $phone, " +
1034
+ " submitted_at = $submittedAt, deadline_at = $deadlineAt, " +
1035
+ " processed_at = $processedAt, verification_level = $verLevel, " +
1036
+ " posture = $posture, payload = $payload " +
1037
+ " WHERE id = $id");
1038
+ var info = stmt.run({
1039
+ $id: id,
1040
+ $type: ticket.type,
1041
+ $status: ticket.status,
1042
+ $sid: (ticket.subject && ticket.subject.subjectId) || null,
1043
+ $email: (ticket.subject && ticket.subject.email) || null,
1044
+ $phone: (ticket.subject && ticket.subject.phone) || null,
1045
+ $submittedAt: ticket.submittedAt,
1046
+ $deadlineAt: ticket.deadlineAt,
1047
+ $processedAt: ticket.processedAt || null,
1048
+ $verLevel: ticket.verificationLevel || null,
1049
+ $posture: ticket.posture || null,
1050
+ $payload: JSON.stringify(ticket),
1051
+ });
1052
+ if (info && info.changes === 0) {
1053
+ throw new DsrError("dsr/ticket-not-found",
1054
+ "dbTicketStore: ticket " + id + " not found for update");
1055
+ }
1056
+ },
1057
+ purgeExpired: async function (asOfMs) {
1058
+ // Bulk-delete tickets in terminal states whose retentionUntil
1059
+ // is in the past. Returns the number of rows removed.
1060
+ var asOf = (typeof asOfMs === "number" && isFinite(asOfMs)) ? asOfMs : Date.now();
1061
+ var rows = db.prepare("SELECT id, payload FROM " + qTable +
1062
+ " WHERE status IN ('completed','partially_completed','cancelled','rejected','expired')").all({});
1063
+ var purged = 0;
1064
+ var del = db.prepare("DELETE FROM " + qTable + " WHERE id = $id");
1065
+ for (var i = 0; i < rows.length; i++) {
1066
+ try {
1067
+ var t = JSON.parse(rows[i].payload); // allow:bare-json-parse — payload was JSON.stringify-ed by this same store, never from operator/network input
1068
+ if (t.retentionUntil && t.retentionUntil < asOf) {
1069
+ del.run({ $id: rows[i].id });
1070
+ purged += 1;
1071
+ }
1072
+ } catch (_e) { /* malformed payload — leave it */ }
1073
+ }
1074
+ return purged;
1075
+ },
1076
+ _table: tableRaw,
1077
+ _ensureSchema: ensureSchema,
1078
+ };
1079
+ }
1080
+
1081
+ // ---- v0.8.77 — US state-law DSR drift registry -------------------
1082
+ //
1083
+ // Each US state consumer-privacy law expresses the same DSR core
1084
+ // (access / deletion / correction / portability) but with per-state
1085
+ // drift on three knobs: cure-period (days between operator-receipt
1086
+ // and statutory-deadline-to-respond), profiling-opt-out
1087
+ // (right-to-limit-automated-decision-making variants), and minor-
1088
+ // consent (age threshold + opt-in vs. opt-out vs. parental-VPC).
1089
+ //
1090
+ // `b.dsr.stateRules(state)` returns the metadata; operators feed it
1091
+ // into their own DSR ticket-routing layer to surface "this VA
1092
+ // resident's correction request must be acknowledged within 45 days
1093
+ // with one 45-day extension".
1094
+
1095
+ // State DSR rule table — `responseDays` / `extensionDays` / `cureDays`
1096
+ // are integer day-counts from per-state statutes (not durations in
1097
+ // seconds/ms). allow:raw-time-literal — statute-defined day counts.
1098
+ var STATE_RULES = Object.freeze({
1099
+ "vcdpa": { posture: "vcdpa", state: "VA", responseDays: 45, extensionDays: 45, cureDays: 30, profilingOptOut: true, minorOptIn: 13, notes: "Cure right sunset 2025-01-01" }, // allow:raw-time-literal
1100
+ "co-cpa": { posture: "co-cpa", state: "CO", responseDays: 45, extensionDays: 45, cureDays: 60, profilingOptOut: true, minorOptIn: 13, notes: "Cure right sunset 2025-01-01; UOOM (GPC) mandatory" }, // allow:raw-time-literal
1101
+ "ctdpa": { posture: "ctdpa", state: "CT", responseDays: 45, extensionDays: 45, cureDays: 60, profilingOptOut: true, minorOptIn: 13, notes: "Cure right sunset 2025-01-01; GPC mandatory" }, // allow:raw-time-literal
1102
+ "ucpa": { posture: "ucpa", state: "UT", responseDays: 45, extensionDays: 45, cureDays: 30, profilingOptOut: false, minorOptIn: 13, notes: "Narrowest scope; no cure-period sunset" }, // allow:raw-time-literal
1103
+ "tdpsa": { posture: "tdpsa", state: "TX", responseDays: 45, extensionDays: 45, cureDays: 30, profilingOptOut: true, minorOptIn: 13, notes: "Small-business carve-out applies" }, // allow:raw-time-literal
1104
+ "or-cpa": { posture: "or-cpa", state: "OR", responseDays: 45, extensionDays: 45, cureDays: 60, profilingOptOut: true, minorOptIn: 13, notes: "Specific-third-party-name DSR enhancement" }, // allow:raw-time-literal
1105
+ "mt-cdpa": { posture: "mt-cdpa", state: "MT", responseDays: 45, extensionDays: 45, cureDays: 60, profilingOptOut: true, minorOptIn: 13, notes: "Cure period sunsets 2026-04-01" }, // allow:raw-time-literal
1106
+ "ia-icdpa": { posture: "ia-icdpa", state: "IA", responseDays: 90, extensionDays: 45, cureDays: 90, profilingOptOut: false, minorOptIn: null, notes: "Weakest framework — longest response, no profiling opt-out" }, // allow:raw-time-literal
1107
+ "in-indpa": { posture: "in-indpa", state: "IN", responseDays: 45, extensionDays: 45, cureDays: 30, profilingOptOut: true, minorOptIn: 13, notes: "Effective 2026-01-01" }, // allow:raw-time-literal
1108
+ "de-dpdpa": { posture: "de-dpdpa", state: "DE", responseDays: 45, extensionDays: 45, cureDays: 60, profilingOptOut: true, minorOptIn: 13, notes: "Effective 2026-01-01" }, // allow:raw-time-literal
1109
+ "nh-nhpa": { posture: "nh-nhpa", state: "NH", responseDays: 45, extensionDays: 45, cureDays: 60, profilingOptOut: true, minorOptIn: 13, notes: "Effective 2026-01-01; cure right sunset 2026-01-01" }, // allow:raw-time-literal
1110
+ "nj-njdpa": { posture: "nj-njdpa", state: "NJ", responseDays: 45, extensionDays: 45, cureDays: 30, profilingOptOut: true, minorOptIn: 17, notes: "Under-17 opt-in default" }, // allow:raw-time-literal
1111
+ "ky-kcdpa": { posture: "ky-kcdpa", state: "KY", responseDays: 45, extensionDays: 45, cureDays: 30, profilingOptOut: true, minorOptIn: 13, notes: "Effective 2026-01-01" }, // allow:raw-time-literal
1112
+ "tn-tipa": { posture: "tn-tipa", state: "TN", responseDays: 45, extensionDays: 45, cureDays: 60, profilingOptOut: true, minorOptIn: 13, notes: "NIST CSF safe-harbor available" }, // allow:raw-time-literal
1113
+ "mn-mncdpa": { posture: "mn-mncdpa", state: "MN", responseDays: 45, extensionDays: 45, cureDays: 30, profilingOptOut: true, minorOptIn: 13, notes: "Effective 2026-07-31; profiling opt-out for consequential decisions" }, // allow:raw-time-literal
1114
+ "ri-ricpa": { posture: "ri-ricpa", state: "RI", responseDays: 45, extensionDays: 45, cureDays: 0, profilingOptOut: true, minorOptIn: 13, notes: "Effective 2026-01-01; no cure period" }, // allow:raw-time-literal
1115
+ "ne-dpa": { posture: "ne-dpa", state: "NE", responseDays: 45, extensionDays: 45, cureDays: 30, profilingOptOut: true, minorOptIn: 13, notes: "Effective 2025-01-01" }, // allow:raw-time-literal
1116
+ "nv-sb370": { posture: "nv-sb370", state: "NV", responseDays: 60, extensionDays: 30, cureDays: 0, profilingOptOut: false, minorOptIn: null, notes: "Consumer-health data only" }, // allow:raw-time-literal
1117
+ "ca-aadc": { posture: "ca-aadc", state: "CA", responseDays: 0, extensionDays: 0, cureDays: 90, profilingOptOut: true, minorOptIn: 18, notes: "Under-18 default-high-privacy; partial preliminary injunction NetChoice v. Bonta" }, // allow:raw-time-literal
1118
+ "ct-sb3": { posture: "ct-sb3", state: "CT", responseDays: 45, extensionDays: 45, cureDays: 60, profilingOptOut: false, minorOptIn: null, notes: "Consumer-health data only" }, // allow:raw-time-literal
1119
+ "tx-cubi": { posture: "tx-cubi", state: "TX", responseDays: 0, extensionDays: 0, cureDays: 0, profilingOptOut: false, minorOptIn: null, notes: "Biometric-only; private-right-of-action absent" }, // allow:raw-time-literal
1120
+ "modpa": { posture: "modpa", state: "MD", responseDays: 45, extensionDays: 45, cureDays: 60, profilingOptOut: true, minorOptIn: 13, notes: "Strict data-minimization; effective 2026-10-01" }, // allow:raw-time-literal
1121
+ "quebec-25": { posture: "quebec-25", state: "QC", responseDays: 30, extensionDays: 30, cureDays: 0, profilingOptOut: true, minorOptIn: 14, notes: "DPIA + automated-decision opt-out; FR-language obligations" }, // allow:raw-time-literal
1122
+ "fl-fdbr": { posture: "fl-fdbr", state: "FL", responseDays: 45, extensionDays: 15, cureDays: 30, profilingOptOut: true, minorOptIn: 13, notes: "Narrow scope ($1B+ revenue threshold); effective 2024-07-01; AG-only enforcement" }, // allow:raw-time-literal
1123
+ });
1124
+
1125
+ /**
1126
+ * @primitive b.dsr.stateRules
1127
+ * @signature b.dsr.stateRules(state)
1128
+ * @since 0.8.77
1129
+ * @related b.compliance.describe
1130
+ *
1131
+ * Returns per-state DSR rules: response window, extension period,
1132
+ * cure period (statutory grace before enforcement attaches),
1133
+ * profiling-opt-out availability, and minor-consent age threshold.
1134
+ * `state` accepts either the posture name (`"vcdpa"`) or the
1135
+ * 2-letter state abbreviation (`"VA"`). Returns null when unknown.
1136
+ *
1137
+ * @example
1138
+ * var rules = b.dsr.stateRules("vcdpa");
1139
+ * // rules.responseDays → 45
1140
+ * // rules.cureDays → 30
1141
+ * // rules.profilingOptOut → true
1142
+ */
1143
+ function stateRules(state) {
1144
+ if (typeof state !== "string" || state.length === 0) return null;
1145
+ // Direct posture-name lookup first
1146
+ if (STATE_RULES[state]) return Object.assign({}, STATE_RULES[state]);
1147
+ // 2-letter state abbreviation lookup (case-insensitive)
1148
+ var u = state.toUpperCase();
1149
+ var keys = Object.keys(STATE_RULES);
1150
+ for (var i = 0; i < keys.length; i++) {
1151
+ if (STATE_RULES[keys[i]].state === u) {
1152
+ return Object.assign({}, STATE_RULES[keys[i]]);
1153
+ }
1154
+ }
1155
+ return null;
1156
+ }
1157
+
1158
+ /**
1159
+ * @primitive b.dsr.listStateRules
1160
+ * @signature b.dsr.listStateRules()
1161
+ * @since 0.8.77
1162
+ *
1163
+ * Returns every state-rule entry as an array (useful for admin UI
1164
+ * cure-period dashboards / operator-facing matrices).
1165
+ *
1166
+ * @example
1167
+ * var all = b.dsr.listStateRules();
1168
+ * // → [{ posture: "vcdpa", state: "VA", responseDays: 45, ... }, ...]
1169
+ */
1170
+ function listStateRules() {
1171
+ return Object.keys(STATE_RULES).map(function (k) {
1172
+ return Object.assign({}, STATE_RULES[k]);
1173
+ });
1174
+ }
1175
+
1176
+ module.exports = {
1177
+ create: create,
1178
+ memoryTicketStore: memoryTicketStore,
1179
+ dbTicketStore: dbTicketStore,
1180
+ VALID_REQUEST_TYPES: VALID_REQUEST_TYPES,
1181
+ VALID_STATES: VALID_STATES,
1182
+ VALID_VERIFICATION_LEVELS: VALID_VERIFICATION_LEVELS,
1183
+ TYPE_MIN_VERIFICATION: TYPE_MIN_VERIFICATION,
1184
+ POSTURE_DEADLINE_MS: POSTURE_DEADLINE_MS,
1185
+ stateRules: stateRules,
1186
+ listStateRules: listStateRules,
1187
+ DsrError: DsrError,
1188
+ };