@blamejs/core 0.9.14 → 0.9.16

package/lib/object-store/index.js

@@ -29,11 +29,11 @@
  */
 var localProto             = require("./local");
 var httpPutProto           = require("./http-put");
-var sigv4Proto             = require("./sigv4");
+var sigv4                  = require("./sigv4");
 var sigv4BucketOps         = require("./sigv4-bucket-ops");
-var gcsProto               = require("./gcs");
+var gcs                    = require("./gcs");
 var gcsBucketOps           = require("./gcs-bucket-ops");
-var azureBlobProto         = require("./azure-blob");
+var azureBlob              = require("./azure-blob");
 var azureBlobBucketOps     = require("./azure-blob-bucket-ops");
 var retryHelper            = require("../retry");
 var protocolDispatcher     = require("../protocol-dispatcher");
@@ -47,9 +47,9 @@ var dispatcher = protocolDispatcher.create({
   protocols: {
     "local":      localProto,
     "http-put":   httpPutProto,
-    "sigv4":      sigv4Proto,
-    "gcs":        gcsProto,
-    "azure-blob": azureBlobProto,
+    "sigv4":      sigv4,
+    "gcs":        gcs,
+    "azure-blob": azureBlob,
   },
   deferred:         {},
   fallbackProtocol: "local",

package/lib/object-store/local.js

@@ -4,15 +4,15 @@
  *
  * Implements the uniform protocol surface (put / get / getStream / delete /
  * head / list) against a directory tree. Streaming is via Node's native
- * fs.createReadStream / createWriteStream — no in-memory buffering of
+ * nodeFs.createReadStream / createWriteStream — no in-memory buffering of
  * full files.
  *
  * Path safety: every key resolves under the configured rootDir, with an
  * alphanumeric + `_-./` charset whitelist and explicit rejection of any
  * path that escapes rootDir after resolution.
  */
-var fs = require("fs");
-var path = require("path");
+var nodeFs = require("fs");
+var nodePath = require("path");
 var atomicFile = require("../atomic-file");
 var cluster = require("../cluster");
 var { ObjectStoreError } = require("../framework-error");
@@ -24,10 +24,10 @@ function _resolveSafe(rootDir, key) {
     throw _err("INVALID_KEY", "key must be a non-empty string", true);
   }
   if (key.includes("\0")) throw _err("INVALID_KEY", "null byte in key", true);
-  if (path.isAbsolute(key)) throw _err("INVALID_KEY", "absolute key not allowed", true);
+  if (nodePath.isAbsolute(key)) throw _err("INVALID_KEY", "absolute key not allowed", true);
   if (!SAFE_KEY.test(key)) throw _err("INVALID_KEY", "invalid characters in key", true);
-  var full = path.resolve(rootDir, key);
-  var withSep = rootDir.endsWith(path.sep) ? rootDir : rootDir + path.sep;
+  var full = nodePath.resolve(rootDir, key);
+  var withSep = rootDir.endsWith(nodePath.sep) ? rootDir : rootDir + nodePath.sep;
   if (full !== rootDir && !full.startsWith(withSep)) {
     throw _err("INVALID_KEY", "key escapes rootDir", true);
   }
@@ -40,14 +40,14 @@ function create(config) {
   if (!config || !config.rootDir) {
     throw new Error("local protocol requires { rootDir }");
   }
-  var rootDir = path.resolve(config.rootDir);
-  if (!fs.existsSync(rootDir)) fs.mkdirSync(rootDir, { recursive: true });
+  var rootDir = nodePath.resolve(config.rootDir);
+  if (!nodeFs.existsSync(rootDir)) nodeFs.mkdirSync(rootDir, { recursive: true });
 
   function put(key, body, _opts) {
     cluster.requireLeader();
     var full = _resolveSafe(rootDir, key);
-    var dir = path.dirname(full);
-    if (!fs.existsSync(dir)) fs.mkdirSync(dir, { recursive: true });
+    var dir = nodePath.dirname(full);
+    if (!nodeFs.existsSync(dir)) nodeFs.mkdirSync(dir, { recursive: true });
 
     if (Buffer.isBuffer(body)) {
       atomicFile.writeSync(full, body);
@@ -56,7 +56,7 @@ function create(config) {
     if (body && typeof body.pipe === "function") {
       // Streaming put — pipe directly to disk
       return new Promise(function (resolve, reject) {
-        var ws = fs.createWriteStream(full);
+        var ws = nodeFs.createWriteStream(full);
         var bytes = 0;
         body.on("data", function (chunk) { bytes += chunk.length; });
         body.pipe(ws);
@@ -75,26 +75,26 @@ function create(config) {
 
   function get(key) {
     var full = _resolveSafe(rootDir, key);
-    if (!fs.existsSync(full)) {
+    if (!nodeFs.existsSync(full)) {
       return Promise.reject(_err("NOT_FOUND", "key not found: " + key, true));
     }
-    return Promise.resolve(fs.readFileSync(full));
+    return Promise.resolve(nodeFs.readFileSync(full));
   }
 
   function getStream(key) {
     var full = _resolveSafe(rootDir, key);
-    if (!fs.existsSync(full)) {
+    if (!nodeFs.existsSync(full)) {
       throw _err("NOT_FOUND", "key not found: " + key, true);
     }
-    return fs.createReadStream(full);
+    return nodeFs.createReadStream(full);
   }
 
   function head(key) {
     var full = _resolveSafe(rootDir, key);
-    if (!fs.existsSync(full)) {
+    if (!nodeFs.existsSync(full)) {
       return Promise.reject(_err("NOT_FOUND", "key not found: " + key, true));
     }
-    var stat = fs.statSync(full);
+    var stat = nodeFs.statSync(full);
     return Promise.resolve({
       size:         stat.size,
       lastModified: stat.mtimeMs,
@@ -104,8 +104,8 @@ function create(config) {
   function deleteKey(key) {
     cluster.requireLeader();
     var full = _resolveSafe(rootDir, key);
-    if (!fs.existsSync(full)) return Promise.resolve(false);
-    fs.unlinkSync(full);
+    if (!nodeFs.existsSync(full)) return Promise.resolve(false);
+    nodeFs.unlinkSync(full);
     return Promise.resolve(true);
   }
 

package/lib/object-store/sigv4.js

@@ -29,7 +29,7 @@ var { Readable } = require("stream");
 var safeXml = require("../parsers/safe-xml");
 var sharedRequest = require("./http-request");
 var C = require("../constants");
-var nb = require("../numeric-bounds");
+var numericBounds = require("../numeric-bounds");
 var requestHelpers = require("../request-helpers");
 var { ObjectStoreError } = require("../framework-error");
 var safeUrl = require("../safe-url");
@@ -821,10 +821,10 @@ function create(config) {
         "POST-form policy enforces body size via the content-length-range condition; " +
         "use presignedUploadUrl if size enforcement is not needed", true);
     }
-    if (opts.minBytes !== undefined && !nb.isNonNegativeFiniteInt(opts.minBytes)) {
+    if (opts.minBytes !== undefined && !numericBounds.isNonNegativeFiniteInt(opts.minBytes)) {
       throw _err("INVALID_MIN_BYTES",
         "presignedUploadPolicy: minBytes must be a non-negative finite integer; got " +
-        nb.shape(opts.minBytes), true);
+        numericBounds.shape(opts.minBytes), true);
     }
     var minBytes = opts.minBytes !== undefined ? opts.minBytes : 0;
     var expiresIn = opts.expiresIn != null ? opts.expiresIn : PRESIGN_DEFAULT_EXPIRES_SECONDS;

package/lib/observability-tracer.js

@@ -73,14 +73,14 @@
  */
 
 var bCrypto = require("./crypto");
-var constants = require("./constants");
+var C = require("./constants");
 var lazyRequire = require("./lazy-require");
 var safeBuffer = require("./safe-buffer");
 var validateOpts = require("./validate-opts");
 var { defineClass } = require("./framework-error");
 
-var TRACE_ID_BYTES = constants.BYTES.bytes(16);                                    // W3C §3.2.2.3 — 128-bit trace-id
-var SPAN_ID_BYTES  = constants.BYTES.bytes(8);                                     // W3C §3.2.2.4 — 64-bit span-id
+var TRACE_ID_BYTES = C.BYTES.bytes(16);                                    // W3C §3.2.2.3 — 128-bit trace-id
+var SPAN_ID_BYTES  = C.BYTES.bytes(8);                                     // W3C §3.2.2.4 — 64-bit span-id
 
 var TracerError = defineClass("TracerError", { alwaysPermanent: true });
 
@@ -168,7 +168,7 @@ function create(opts) {
   var resource = Object.assign({
     "service.name": opts.service,
   }, opts.resource || {});
-  var scope = opts.scope || { name: "blamejs", version: constants.version || null };
+  var scope = opts.scope || { name: "blamejs", version: C.version || null };
   var maxAttributes = opts.maxAttributes || DEFAULT_MAX_ATTRIBUTES;
   var maxEvents     = opts.maxEvents     || DEFAULT_MAX_EVENTS;
   var maxAttrValLen = opts.maxAttributeValueLength || DEFAULT_MAX_ATTR_VALUE_LEN;

package/lib/otel-export.js

@@ -41,7 +41,7 @@
  */
 var C = require("./constants");
 var canonicalJson = require("./canonical-json");
-var defaultHttpClient = require("./http-client");
+var httpClient = require("./http-client");
 var safeAsync = require("./safe-async");
 var validateOpts = require("./validate-opts");
 var { defineClass } = require("./framework-error");
@@ -110,7 +110,7 @@ function create(opts) {
     throw new OtelExportError("otel-export/bad-interval",
       "create: intervalMs must be a non-negative finite number");
   }
-  var httpClient = opts.httpClient || defaultHttpClient;
+  var effectiveHttpClient = opts.httpClient || httpClient;
   var scopeName = (opts.scope && opts.scope.name) || "blamejs";
   var scopeVersion = (opts.scope && opts.scope.version) || "0.5.x";
   var resourceAttrs = Object.assign({ "service.name": serviceName },
@@ -220,7 +220,7 @@ function create(opts) {
     if (!payload) return { sent: false, reason: "no-data" };
     var body = JSON.stringify(payload);
     try {
-      var res = await httpClient.request({
+      var res = await effectiveHttpClient.request({
         method:  "POST",
         url:     endpoint,
         headers: Object.assign({ "Content-Type": "application/json" }, headers),

package/lib/pagination.js

@@ -49,8 +49,8 @@
 var nodeCrypto = require("node:crypto");
 var C = require("./constants");
 var canonicalJson = require("./canonical-json");
-var crypto = require("./crypto");
-var nb = require("./numeric-bounds");
+var bCrypto = require("./crypto");
+var numericBounds = require("./numeric-bounds");
 var safeJson = require("./safe-json");
 var safeSql = require("./safe-sql");
 var { defineClass } = require("./framework-error");
@@ -185,7 +185,7 @@ function decodeCursor(token, secret) {
     throw new PaginationError("pagination/bad-cursor", "cursor base64 decode failed");
   }
   var expected = _tag(sb, json);
-  if (!crypto.timingSafeEqual(tag, expected)) {
+  if (!bCrypto.timingSafeEqual(tag, expected)) {
     throw new PaginationError("pagination/cursor-tag-mismatch",
       "cursor HMAC verification failed (tampered or wrong secret)");
   }
@@ -205,9 +205,9 @@ function decodeCursor(token, secret) {
 }
 
 function _resolveLimit(opts) {
-  nb.requirePositiveFiniteIntIfPresent(opts.max,
+  numericBounds.requirePositiveFiniteIntIfPresent(opts.max,
     "max", PaginationError, "pagination/bad-opt");
-  nb.requirePositiveFiniteIntIfPresent(opts.default,
+  numericBounds.requirePositiveFiniteIntIfPresent(opts.default,
     "default", PaginationError, "pagination/bad-opt");
   var max = opts.max || DEFAULT_MAX_LIMIT;
   var def = opts.default || DEFAULT_LIMIT;

package/lib/parsers/safe-env.js

@@ -68,7 +68,7 @@ var { boot } = require("../log");
 // (transitively) vault, which leaves safe-env's module.exports
 // half-built when vault first reaches readVar. Defer audit resolution
 // until the first emit-driven call.
-var auditModule = lazyRequire(function () { return require("../audit"); });
+var audit = lazyRequire(function () { return require("../audit"); });
 
 var log = boot("env");
 
@@ -519,11 +519,11 @@ function _writeAuditRows(filepath, diff) {
   // we're a follower, audit.record will throw NotLeaderError. Catch
   // explicitly: a follower's local config-load shouldn't crash because
   // the cluster's audit chain belongs to the leader.
-  var audit = auditModule();   // resolve the lazy-required audit module
+  var auditInst = audit();   // resolve the lazy-required audit module
 
   function _safeRecord(action, metadata) {
     try {
-      audit.emit({
+      auditInst.emit({
         actor:    { kind: "system", id: "config-loader" },
         action:   action,
         outcome:  "success",

package/lib/parsers/safe-xml.js

@@ -40,7 +40,7 @@
  */
 
 var C = require("../constants");
-var nb = require("../numeric-bounds");
+var numericBounds = require("../numeric-bounds");
 var safeBuffer = require("../safe-buffer");
 var { FrameworkError } = require("../framework-error");
 
@@ -77,10 +77,10 @@ var BUILT_IN_ENTITIES = { lt: "<", gt: ">", amp: "&", quot: "\"", apos: "'" };
 
 function _validateAndCap(name, value, defaultValue, ceiling) {
   if (value === undefined) return defaultValue;
-  if (!nb.isPositiveFiniteInt(value)) {
+  if (!numericBounds.isPositiveFiniteInt(value)) {
     throw new SafeXmlError("xml/bad-opt",
       "xml.parse: " + name + " must be a positive finite integer; got " +
-      nb.shape(value));
+      numericBounds.shape(value));
   }
   return Math.min(value, ceiling);
 }

package/lib/pqc-gate.js

@@ -39,7 +39,7 @@
 var net = require("node:net");
 var C = require("./constants");
 var { PQC_GROUPS } = require("./constants");
-var nb = require("./numeric-bounds");
+var numericBounds = require("./numeric-bounds");
 var validateOpts = require("./validate-opts");
 var { boot } = require("./log");
 
@@ -155,14 +155,14 @@ function create(opts) {
   }
   var internalHost = typeof opts.internalHost === "string" ? opts.internalHost : "127.0.0.1";
   var bypass       = Array.isArray(opts.bypass) ? opts.bypass.slice() : DEFAULT_BYPASS.slice();
-  if (opts.clientHelloTimeoutMs !== undefined && !nb.isPositiveFiniteInt(opts.clientHelloTimeoutMs)) {
+  if (opts.clientHelloTimeoutMs !== undefined && !numericBounds.isPositiveFiniteInt(opts.clientHelloTimeoutMs)) {
     throw new Error("pqc-gate: clientHelloTimeoutMs must be a positive finite integer; got " +
-      nb.shape(opts.clientHelloTimeoutMs));
+      numericBounds.shape(opts.clientHelloTimeoutMs));
   }
   var clientHelloTimeoutMs = opts.clientHelloTimeoutMs || DEFAULT_CLIENTHELLO_TIMEOUT_MS;
-  if (opts.maxClientHelloBytes !== undefined && !nb.isPositiveFiniteInt(opts.maxClientHelloBytes)) {
+  if (opts.maxClientHelloBytes !== undefined && !numericBounds.isPositiveFiniteInt(opts.maxClientHelloBytes)) {
     throw new Error("pqc-gate: maxClientHelloBytes must be a positive finite integer; got " +
-      nb.shape(opts.maxClientHelloBytes));
+      numericBounds.shape(opts.maxClientHelloBytes));
   }
   var maxClientHelloBytes  = opts.maxClientHelloBytes || DEFAULT_MAX_CLIENTHELLO_BYTES;
   var log = opts.log || null;

package/lib/pubsub-redis.js

@@ -22,7 +22,7 @@
  * conventions of its own.
  */
 var C = require("./constants");
-var fwCrypto = require("./crypto");
+var bCrypto = require("./crypto");
 var lazyRequire = require("./lazy-require");
 var redisClient = require("./redis-client");
 var safeJson = require("./safe-json");
@@ -39,7 +39,7 @@ function create(opts) {
   // the local dispatch synchronously before awaiting the remote
   // write — without this filter every same-instance publish would
   // double-fire local handlers).
-  var instanceNonce = fwCrypto.generateToken(C.BYTES.bytes(8));
+  var instanceNonce = bCrypto.generateToken(C.BYTES.bytes(8));
 
   var clientOpts = redisClient.pickClientOpts(opts, "redis");
 

package/lib/queue-local.js

@@ -35,7 +35,7 @@ var C = require("./constants");
 var { generateToken } = require("./crypto");
 var cryptoField = require("./crypto-field");
 var lazyRequire = require("./lazy-require");
-var nb = require("./numeric-bounds");
+var numericBounds = require("./numeric-bounds");
 var safeJson = require("./safe-json");
 var scheduler = require("./scheduler");
 var { QueueError } = require("./framework-error");
@@ -388,10 +388,10 @@ function create(_config) {
     opts = opts || {};
     var limit = 100;
     if (opts.limit !== undefined) {
-      if (!nb.isPositiveFiniteInt(opts.limit)) {
+      if (!numericBounds.isPositiveFiniteInt(opts.limit)) {
         throw new QueueError("queue/bad-opt",
           "queue.dlqList: limit must be a positive finite integer; got " +
-            nb.shape(opts.limit), true);
+            numericBounds.shape(opts.limit), true);
       }
       limit = opts.limit;
     }

package/lib/queue.js

@@ -43,7 +43,7 @@
  */
 var C = require("./constants");
 var clusterStorage = require("./cluster-storage");
-var crypto = require("./crypto");
+var bCrypto = require("./crypto");
 var lazyRequire = require("./lazy-require");
 var { boot } = require("./log");
 var numericChecks = require("./numeric-checks");
@@ -877,7 +877,7 @@ function enqueueFlow(spec) {
     return Promise.reject(e);
   }
 
-  var flowId = "flow-" + crypto.generateToken(C.BYTES.bytes(8));
+  var flowId = "flow-" + bCrypto.generateToken(C.BYTES.bytes(8));
 
   return observability.tap("queue.enqueueFlow",
     { queueName: spec.queueName, flowId: flowId, childCount: spec.children.length },

package/lib/redis-client.js

@@ -25,8 +25,8 @@
  * callers can branch on transport vs server-side errors.
  */
 var net = require("node:net");
-var tls = require("node:tls");
-var url = require("node:url");
+var nodeTls = require("node:tls");
+var nodeUrl = require("node:url");
 var C = require("./constants");
 var safeAsync = require("./safe-async");
 var validateOpts = require("./validate-opts");
@@ -319,7 +319,7 @@ function create(opts) {
           var tlsConnectOpts = { host: host, port: port };
           if (servername) tlsConnectOpts.servername = servername;
           if (caBundle)   tlsConnectOpts.ca = caBundle;
-          sock = tls.connect(tlsConnectOpts, onOk);
+          sock = nodeTls.connect(tlsConnectOpts, onOk);
         } else {
           sock = net.connect({ host: host, port: port }, onOk);
         }
@@ -457,7 +457,7 @@ function create(opts) {
 // Empty-username + non-empty password is the legacy single-arg AUTH form.
 function _parseRedisUrl(s) {
   var u;
-  try { u = new url.URL(s); }
+  try { u = new nodeUrl.URL(s); }
   catch (e) {
     throw _err("BAD_URL", "redis url parse failed: " + ((e && e.message) || String(e)));
   }

package/lib/restore-bundle.js

@@ -45,8 +45,8 @@
  *   Backup-bundle reader — verify the manifest signature, list bundle contents without decrypting, and cherry-pick a restore subset to a staging directory the caller atomically swaps into place.
  */
 
-var fs = require("fs");
-var path = require("path");
+var nodeFs = require("fs");
+var nodePath = require("path");
 var atomicFile = require("./atomic-file");
 var backupCrypto = require("./backup/crypto");
 var backupManifest = require("./backup/manifest");
@@ -65,7 +65,7 @@ function _cleanupStaging(stagingDir) {
   // Best-effort recursive remove — if cleanup fails, surface that to
   // the caller via stderr but never override the original error
   // we're already throwing.
-  try { fs.rmSync(stagingDir, { recursive: true, force: true }); }
+  try { nodeFs.rmSync(stagingDir, { recursive: true, force: true }); }
   catch (_e) { /* best-effort */ }
 }
 
@@ -123,12 +123,12 @@ function _cleanupStaging(stagingDir) {
 async function extract(opts) {
   var t0 = Date.now();
   opts = opts || {};
-  if (typeof opts.bundleDir !== "string" || !fs.existsSync(opts.bundleDir)) {
+  if (typeof opts.bundleDir !== "string" || !nodeFs.existsSync(opts.bundleDir)) {
     throw new RestoreBundleError("restore-bundle/no-bundle",
       "extract: opts.bundleDir is required and must exist");
   }
   validateOpts.requireNonEmptyString(opts.stagingDir, "extract: opts.stagingDir", RestoreBundleError, "restore-bundle/no-staging");
-  if (fs.existsSync(opts.stagingDir)) {
+  if (nodeFs.existsSync(opts.stagingDir)) {
     throw new RestoreBundleError("restore-bundle/staging-exists",
       "extract: stagingDir already exists: " + opts.stagingDir +
       " (refusing to merge into existing directory — pick a fresh path)");
@@ -145,14 +145,14 @@ async function extract(opts) {
 
   // 1. Read + parse + validate manifest
   _emit(progress, { phase: "read_manifest" });
-  var manifestPath = path.join(bundleDir, "manifest.json");
-  if (!fs.existsSync(manifestPath)) {
+  var manifestPath = nodePath.join(bundleDir, "manifest.json");
+  if (!nodeFs.existsSync(manifestPath)) {
     throw new RestoreBundleError("restore-bundle/missing-manifest",
       "extract: bundleDir has no manifest.json — bundle is incomplete or not a blamejs backup");
   }
   var manifest;
   try {
-    manifest = backupManifest.parse(fs.readFileSync(manifestPath, "utf8"));
+    manifest = backupManifest.parse(nodeFs.readFileSync(manifestPath, "utf8"));
   } catch (e) {
     if (e && e.isBackupManifestError) throw e;
     throw new RestoreBundleError("restore-bundle/bad-manifest",
@@ -215,13 +215,13 @@ async function extract(opts) {
         continue;
       }
 
-      var blobPath = path.join(bundleDir, entry.encryptedPath);
-      if (!fs.existsSync(blobPath)) {
+      var blobPath = nodePath.join(bundleDir, entry.encryptedPath);
+      if (!nodeFs.existsSync(blobPath)) {
         throw new RestoreBundleError("restore-bundle/missing-blob",
           "extract: manifest references '" + entry.encryptedPath +
           "' but the bundle has no such file");
       }
-      var blob = fs.readFileSync(blobPath);
+      var blob = nodeFs.readFileSync(blobPath);
       if (blob.length !== entry.encryptedSize) {
         throw new RestoreBundleError("restore-bundle/size-mismatch",
           "extract: blob '" + entry.encryptedPath + "' has size " + blob.length +
@@ -257,8 +257,8 @@ async function extract(opts) {
           " — bundle is corrupted or manifest tampered");
       }
 
-      var destPath = path.join(stagingDir, entry.relativePath);
-      atomicFile.ensureDir(path.dirname(destPath));
+      var destPath = nodePath.join(stagingDir, entry.relativePath);
+      atomicFile.ensureDir(nodePath.dirname(destPath));
       atomicFile.writeSync(destPath, plaintext, { fileMode: 0o600 });
 
       fileCount++;
@@ -321,16 +321,16 @@ async function extract(opts) {
  */
 function inspect(opts) {
   opts = opts || {};
-  if (typeof opts.bundleDir !== "string" || !fs.existsSync(opts.bundleDir)) {
+  if (typeof opts.bundleDir !== "string" || !nodeFs.existsSync(opts.bundleDir)) {
     throw new RestoreBundleError("restore-bundle/no-bundle",
       "inspect: opts.bundleDir is required and must exist");
   }
-  var manifestPath = path.join(opts.bundleDir, "manifest.json");
-  if (!fs.existsSync(manifestPath)) {
+  var manifestPath = nodePath.join(opts.bundleDir, "manifest.json");
+  if (!nodeFs.existsSync(manifestPath)) {
     throw new RestoreBundleError("restore-bundle/missing-manifest",
       "inspect: bundleDir has no manifest.json");
   }
-  return backupManifest.parse(fs.readFileSync(manifestPath, "utf8"));
+  return backupManifest.parse(nodeFs.readFileSync(manifestPath, "utf8"));
 }
 
 module.exports = {