npm - @blamejs/core - Versions diffs - 0.7.98 → 0.7.100 - Mend

@blamejs/core 0.7.98 → 0.7.100

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/CHANGELOG.md CHANGED Viewed

@@ -8,6 +8,10 @@ upgrading across more than a few patches at a time.
 ## v0.7.x
+- **0.7.100** (2026-05-06) — `b.network.tls.expiryMonitor({ intervalMs, windowMs, onExpiring })` — periodic CA-trust-store expiry monitor. Runs `expiringSoon(windowMs)` on a schedule; emits `network.tls.ca.expiry_check` audit event on every check (with `expiring` count + `total` CA count), `network.tls.ca.expiring` audit event when any CA falls inside the window, and the matching `network.tls.ca.expiring` observability counter. Optional `onExpiring(rows)` operator hook fires on every check that surfaces expiring CAs so operators can wire pager / Slack alerts. Audit metadata captures the expiring CA labels + the earliest `validTo` timestamp so dashboards can compute "days until first expiry" without re-querying. Returns a handle with `.stop()` for graceful shutdown. Closes the v0.7.26 OCSP/CT batch's continuous-trust-monitoring follow-up.
+- **0.7.99** (2026-05-06) — `b.db.integrityCheck()` + `b.db.integrityMonitor({ intervalMs, ... })` — periodic SQLite corruption detection. **`b.db.integrityCheck()`** runs `PRAGMA integrity_check` against the live database and returns `"ok"` on a healthy database, or an array of corruption description strings on damage. Operators wire this into `/healthz` handlers or one-off CLI checks. **`b.db.integrityMonitor({ intervalMs, onCorruption })`** runs the check on a schedule (24h default), emits `system.db.integrity_ok` / `system.db.integrity_corrupt` audit events, and fires the `db.integrity_check_ok` / `db.integrity_check_corrupt` observability counters. Optional `onCorruption(issues)` operator hook fires on every corrupt-result so operators can wire pager alerts. The previous boot-time-only integrity check (added in v0.7.79) continues to run unchanged at db.init; the monitor is for long-running deployments where filesystem-level corruption can develop after boot. Returns a handle with `.stop()` for graceful shutdown.
 - **0.7.98** (2026-05-06) — `b.ntpCheck.monitor({ intervalMs, ... })` — periodic clock-drift monitor that runs `checkDrift` on a schedule and emits audit + observability events on threshold crossings. Returns a handle with `.stop()` for graceful shutdown. Audit emissions: `system.ntp.checked` (every check), `system.ntp.drift_warn` (drift exceeds warn threshold), `system.ntp.drift_fatal` (drift exceeds fatal threshold), `system.ntp.unreachable` (every server in the list failed to respond). Observability event: `ntp.drift_ms` gauge on every successful check, labeled with the responding server. Optional `onDrift(result)` operator hook fires on every warning/fatal check so operators can wire pager / Slack notifications. The previous boot-time-only `b.ntpCheck.bootCheck` continues to run unchanged at db.init; the monitor is for long-running deployments where clock-drift can develop after boot (container with no RTC sync, ntpd stopped after boot, etc.). Closes the v0.7.79 audit-batch slice for continuous time integrity.
 - **0.7.97** (2026-05-06) — `b.compliance` lookup helpers. **`b.compliance.posturesByDomain(domain)`** returns every posture matching the named domain (`"privacy"` / `"health"` / `"payment"` / `"cybersecurity"` / `"financial-reporting"` / `"financial-resilience"` / `"product-cybersecurity"` / `"ai-governance"` / `"biometrics"` / `"audit-attestation"`). **`b.compliance.posturesByJurisdiction(jurisdiction)`** returns postures matching the ISO 3166 alpha-2 code, `EU`, or `international` — useful for multi-region deployments that resolve different posture configs per region. **`b.compliance.list()`** returns every posture as a `{ posture, name, citation, jurisdiction, domain }` row in canonical `KNOWN_POSTURES` order — admin UIs render the full set as a dropdown / table without iterating REGIME_MAP keys themselves. All three helpers are pure functions over the v0.7.94 REGIME_MAP and stay in sync with it as new postures land.

package/lib/db.js CHANGED Viewed

@@ -59,6 +59,7 @@ var dbSchema = require("./db-schema");
 var { defineClass } = require("./framework-error");
 var { boot } = require("./log");
 var lazyRequire = require("./lazy-require");
+var observability = require("./observability");
 var ntpCheck = lazyRequire(function () { return require("./ntp-check"); });
 var safeAsync = require("./safe-async");
 var safeEnv = require("./parsers/safe-env");
@@ -1213,6 +1214,80 @@ module.exports = {
   // the snapshot source. Safe to call any time; no-op when no encPath
   // (plain mode) or when the plaintext DB doesn't exist.
   flushToDisk:         encryptToDisk,
+  // integrityCheck — runs PRAGMA integrity_check against the live db
+  // and returns "ok" on success, an array of corruption lines
+  // otherwise. Operators wire this into a periodic monitor or a
+  // /healthz handler.
+  integrityCheck:      function () {
+    _requireInit();
+    var rows = database.prepare("PRAGMA integrity_check").all();
+    if (rows.length === 1 && rows[0] && rows[0].integrity_check === "ok") return "ok";
+    return rows.map(function (r) { return r && r.integrity_check; }).filter(Boolean);
+  },
+  // integrityMonitor — periodic PRAGMA integrity_check runner. Returns
+  // a handle with .stop() for graceful shutdown. Audit emission on
+  // every check; observability event on corruption.
+  //
+  //   var mon = b.db.integrityMonitor({
+  //     intervalMs: C.TIME.hours(6),
+  //     onCorruption: function (issues) { /* operator hook — alerts */ },
+  //   });
+  //   ...
+  //   mon.stop();
+  //
+  // Audit emissions:
+  //   system.db.integrity_ok        — every clean check
+  //   system.db.integrity_corrupt   — corruption detected
+  //
+  // Observability event: db.integrity_check_ok counter on every clean
+  // check, db.integrity_check_corrupt counter on corruption.
+  integrityMonitor: function (opts) {
+    _requireInit();
+    opts = opts || {};
+    var intervalMs = opts.intervalMs || C.TIME.hours(24);
+    if (typeof intervalMs !== "number" || !isFinite(intervalMs) || intervalMs <= 0) {
+      throw new TypeError("db.integrityMonitor: intervalMs must be a positive finite number");
+    }
+    var auditOn = opts.audit !== false;
+    function _tick() {
+      var rows;
+      try { rows = database.prepare("PRAGMA integrity_check").all(); }
+      catch (_e) {
+        try { observability.safeEvent("db.integrity_check_failed", 1, {}); }
+        catch (_e2) { /* drop-silent */ }
+        return;
+      }
+      var ok = rows.length === 1 && rows[0] && rows[0].integrity_check === "ok";
+      if (ok) {
+        try { observability.safeEvent("db.integrity_check_ok", 1, {}); }
+        catch (_e) { /* drop-silent */ }
+        if (auditOn) {
+          try { audit.safeEmit({
+            action: "system.db.integrity_ok", outcome: "ok", metadata: {},
+          }); } catch (_e) { /* drop-silent */ }
+        }
+        return;
+      }
+      var issues = rows.map(function (r) { return r && r.integrity_check; }).filter(Boolean);
+      try { observability.safeEvent("db.integrity_check_corrupt", 1, {}); }
+      catch (_e) { /* drop-silent */ }
+      if (auditOn) {
+        try { audit.safeEmit({
+          action: "system.db.integrity_corrupt", outcome: "fail",
+          metadata: { issueCount: issues.length },
+        }); } catch (_e) { /* drop-silent */ }
+      }
+      if (typeof opts.onCorruption === "function") {
+        try { opts.onCorruption(issues); } catch (_e) { /* operator hook */ }
+      }
+    }
+    var handle = safeAsync.repeating(_tick, intervalMs, { name: "db-integrity-monitor" });
+    return {
+      stop: function () { if (handle) { handle.stop(); handle = null; } },
+    };
+  },
   // purgeAuditChain — narrow-purpose DELETE for audit-tools.purge.
   // Drops the BEFORE-DELETE append-only trigger inside a transaction,
   // executes the deletion, then re-installs the trigger so the

package/lib/network-tls.js CHANGED Viewed

@@ -9,6 +9,7 @@ var C = require("./constants");
 var safeBuffer = require("./safe-buffer");
 var validateOpts = require("./validate-opts");
 var lazyRequire = require("./lazy-require");
+var safeAsync = require("./safe-async");
 var { defineClass } = require("./framework-error");
 var TlsTrustError = defineClass("TlsTrustError", { alwaysPermanent: true });
@@ -248,6 +249,82 @@ function expiringSoon(windowMs) {
   });
 }
+// expiryMonitor — periodic check that emits audit + observability
+// events when any CA in the trust store falls inside the expiry
+// window. Returns a handle with .stop() for graceful shutdown.
+//
+//   var mon = b.network.tls.expiryMonitor({
+//     intervalMs:   C.TIME.hours(6),
+//     windowMs:     C.TIME.days(30),
+//     onExpiring:   function (rows) { /* operator hook — alerts */ },
+//   });
+//   ...
+//   mon.stop();
+//
+// Audit emissions:
+//   network.tls.ca.expiry_check  — every check, reports total + expiring count
+//   network.tls.ca.expiring      — when expiringSoon(windowMs) > 0
+//
+// Observability event: network.tls.ca.expiring counter labeled with
+// the count.
+function expiryMonitor(opts) {
+  opts = opts || {};
+  var intervalMs = opts.intervalMs;
+  var windowMs   = opts.windowMs;
+  var auditOn    = opts.audit !== false;
+  if (typeof intervalMs !== "number" || !isFinite(intervalMs) || intervalMs <= 0) {
+    throw new TlsTrustError("tls/bad-interval",
+      "tls.expiryMonitor: intervalMs must be a positive finite number");
+  }
+  if (typeof windowMs !== "number" || !isFinite(windowMs) || windowMs <= 0) {
+    throw new TlsTrustError("tls/bad-window",
+      "tls.expiryMonitor: windowMs must be a positive finite number");
+  }
+  function _tick() {
+    var rows;
+    try { rows = expiringSoon(windowMs); }
+    catch (_e) { return; }
+    if (auditOn) {
+      try {
+        audit().safeEmit({
+          action:  "network.tls.ca.expiry_check",
+          outcome: rows.length > 0 ? "warn" : "ok",
+          metadata: { total: STATE.cas.length, expiring: rows.length, windowMs: windowMs },
+        });
+      } catch (_e) { /* drop-silent */ }
+    }
+    if (rows.length > 0) {
+      try { observability().safeEvent("network.tls.ca.expiring", rows.length, {}); }
+      catch (_e) { /* drop-silent */ }
+      if (auditOn) {
+        try {
+          audit().safeEmit({
+            action:  "network.tls.ca.expiring",
+            outcome: "warn",
+            metadata: {
+              count:   rows.length,
+              labels:  rows.map(function (r) { return r.label; }),
+              earliestValidTo: rows.reduce(function (acc, r) {
+                var ms = r.validTo ? Date.parse(r.validTo) : Infinity;
+                return ms < acc ? ms : acc;
+              }, Infinity),
+            },
+          });
+        } catch (_e) { /* drop-silent */ }
+      }
+      if (typeof opts.onExpiring === "function") {
+        try { opts.onExpiring(rows); } catch (_e) { /* operator hook */ }
+      }
+    }
+  }
+  var handle = safeAsync.repeating(_tick, intervalMs, { name: "tls-expiry-monitor" });
+  return {
+    stop: function () { if (handle) { handle.stop(); handle = null; } },
+  };
+}
 function captureBaselineFingerprints() {
   STATE.baselineFingerprints = STATE.cas.map(function (e) { return e.meta.fingerprint256; });
 }
@@ -1557,6 +1634,7 @@ module.exports = {
   clearAll:            clearAll,
   purgeExpired:        purgeExpired,
   expiringSoon:        expiringSoon,
+  expiryMonitor:       expiryMonitor,
   useSystemTrust:      useSystemTrust,
   isSystemTrustEnabled: isSystemTrustEnabled,
   getTrustStore:       getTrustStore,

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@blamejs/core",
-  "version": "0.7.98",
+  "version": "0.7.100",
   "description": "The Node framework that owns its stack.",
   "license": "Apache-2.0",
   "author": "blamejs contributors",

package/sbom.cyclonedx.json CHANGED Viewed

@@ -2,10 +2,10 @@
   "$schema": "http://cyclonedx.org/schema/bom-1.5.schema.json",
   "bomFormat": "CycloneDX",
   "specVersion": "1.5",
-  "serialNumber": "urn:uuid:387ca63b-9d87-46d5-a7a5-ff7e577e0bd3",
+  "serialNumber": "urn:uuid:41d841af-2890-4424-89ab-7b411b784c39",
   "version": 1,
   "metadata": {
-    "timestamp": "2026-05-06T09:03:18.727Z",
+    "timestamp": "2026-05-06T09:26:08.410Z",
     "lifecycles": [
       {
         "phase": "build"
@@ -19,14 +19,14 @@
       }
     ],
     "component": {
-      "bom-ref": "@blamejs/core@0.7.98",
+      "bom-ref": "@blamejs/core@0.7.100",
       "type": "library",
       "name": "blamejs",
-      "version": "0.7.98",
+      "version": "0.7.100",
       "scope": "required",
       "author": "blamejs contributors",
       "description": "The Node framework that owns its stack.",
-      "purl": "pkg:npm/%40blamejs/core@0.7.98",
+      "purl": "pkg:npm/%40blamejs/core@0.7.100",
       "properties": [],
       "externalReferences": [
         {
@@ -54,7 +54,7 @@
   "components": [],
   "dependencies": [
     {
-      "ref": "@blamejs/core@0.7.98",
+      "ref": "@blamejs/core@0.7.100",
       "dependsOn": []
     }
   ]