@blamejs/core 0.9.16 → 0.9.18
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +2 -0
- package/MIGRATING.md +23 -1
- package/lib/acme.js +2 -2
- package/lib/api-snapshot.js +1 -1
- package/lib/app-shutdown.js +2 -2
- package/lib/app.js +2 -2
- package/lib/argon2-builtin.js +1 -1
- package/lib/atomic-file.js +8 -8
- package/lib/audit-sign.js +3 -3
- package/lib/audit-tools.js +2 -2
- package/lib/auth/dpop.js +1 -1
- package/lib/auth/elevation-grant.js +1 -1
- package/lib/auth/jwt-external.js +1 -1
- package/lib/auth/jwt.js +1 -1
- package/lib/auth/oauth.js +1 -1
- package/lib/auth/status-list.js +1 -1
- package/lib/backup/bundle.js +2 -2
- package/lib/backup/index.js +7 -7
- package/lib/bundler.js +4 -4
- package/lib/cli.js +1 -1
- package/lib/cloud-events.js +1 -1
- package/lib/compliance-sanctions.js +1 -1
- package/lib/crypto-hpke.js +1 -1
- package/lib/crypto.js +3 -3
- package/lib/daemon.js +2 -2
- package/lib/db-file-lifecycle.js +5 -5
- package/lib/db-schema.js +1 -1
- package/lib/db.js +2 -2
- package/lib/dev.js +5 -5
- package/lib/dr-runbook.js +2 -2
- package/lib/external-db-migrate.js +1 -1
- package/lib/flag-evaluation-context.js +1 -1
- package/lib/flag-providers.js +1 -1
- package/lib/http-client.js +11 -11
- package/lib/http-message-signature.js +1 -1
- package/lib/keychain.js +2 -2
- package/lib/local-db-thin.js +2 -2
- package/lib/log-stream-local.js +3 -3
- package/lib/log-stream-syslog.js +4 -4
- package/lib/mail-arc-sign.js +1 -1
- package/lib/mail-dkim.js +1 -1
- package/lib/mail.js +5 -5
- package/lib/middleware/asyncapi-serve.js +1 -1
- package/lib/middleware/body-parser.js +4 -4
- package/lib/middleware/openapi-serve.js +1 -1
- package/lib/middleware/tus-upload.js +1 -1
- package/lib/migrations.js +1 -1
- package/lib/mtls-ca.js +4 -4
- package/lib/network-smtp-policy.js +1 -1
- package/lib/ntp-check.js +1 -1
- package/lib/object-store/azure-blob.js +3 -3
- package/lib/object-store/gcs.js +3 -3
- package/lib/object-store/http-put.js +1 -1
- package/lib/object-store/local.js +3 -3
- package/lib/object-store/sigv4-bucket-ops.js +1 -1
- package/lib/object-store/sigv4.js +3 -3
- package/lib/observability.js +1 -1
- package/lib/process-spawn.js +2 -2
- package/lib/restore-bundle.js +2 -2
- package/lib/restore-rollback.js +4 -4
- package/lib/restore.js +3 -3
- package/lib/retry.js +1 -1
- package/lib/router.js +4 -4
- package/lib/safe-url.js +2 -2
- package/lib/sandbox.js +1 -1
- package/lib/security-assert.js +1 -1
- package/lib/seeders.js +2 -2
- package/lib/self-update-standalone-verifier.js +2 -2
- package/lib/self-update.js +5 -5
- package/lib/session-device-binding.js +1 -1
- package/lib/storage.js +1 -1
- package/lib/template.js +2 -2
- package/lib/totp.js +1 -1
- package/lib/vault/index.js +2 -2
- package/lib/vault/passphrase-ops.js +2 -2
- package/lib/vault/passphrase-source.js +2 -2
- package/lib/vault/rotate.js +7 -7
- package/lib/vault/seal-pem-file.js +8 -8
- package/lib/vendor-data.js +1 -1
- package/lib/watcher.js +4 -4
- package/lib/webhook.js +1 -1
- package/lib/websocket.js +3 -3
- package/lib/ws-client.js +6 -6
- package/package.json +1 -1
- package/sbom.cdx.json +6 -6
package/lib/log-stream-local.js
CHANGED
|
@@ -23,9 +23,9 @@
|
|
|
23
23
|
* fileNamePrefix: 'blamejs'
|
|
24
24
|
* }
|
|
25
25
|
*/
|
|
26
|
-
var nodeFs = require("fs");
|
|
27
|
-
var nodePath = require("path");
|
|
28
|
-
var zlib = require("zlib");
|
|
26
|
+
var nodeFs = require("node:fs");
|
|
27
|
+
var nodePath = require("node:path");
|
|
28
|
+
var zlib = require("node:zlib");
|
|
29
29
|
var atomicFile = require("./atomic-file");
|
|
30
30
|
var C = require("./constants");
|
|
31
31
|
var { boot } = require("./log");
|
package/lib/log-stream-syslog.js
CHANGED
|
@@ -27,10 +27,10 @@
|
|
|
27
27
|
* reconnect and replay them on the new connection. UDP is best-effort
|
|
28
28
|
* (datagrams that race a closed socket are dropped to onDrop).
|
|
29
29
|
*/
|
|
30
|
-
var dgram = require("dgram");
|
|
31
|
-
var net = require("net");
|
|
32
|
-
var os = require("os");
|
|
33
|
-
var nodeTls = require("tls");
|
|
30
|
+
var dgram = require("node:dgram");
|
|
31
|
+
var net = require("node:net");
|
|
32
|
+
var os = require("node:os");
|
|
33
|
+
var nodeTls = require("node:tls");
|
|
34
34
|
var C = require("./constants");
|
|
35
35
|
var { boot } = require("./log");
|
|
36
36
|
var safeAsync = require("./safe-async");
|
package/lib/mail-arc-sign.js
CHANGED
|
@@ -48,7 +48,7 @@
|
|
|
48
48
|
* hop: `dkim.arc.signed`.
|
|
49
49
|
*/
|
|
50
50
|
|
|
51
|
-
var nodeCrypto = require("crypto");
|
|
51
|
+
var nodeCrypto = require("node:crypto");
|
|
52
52
|
var lazyRequire = require("./lazy-require");
|
|
53
53
|
var validateOpts = require("./validate-opts");
|
|
54
54
|
var safeBuffer = require("./safe-buffer");
|
package/lib/mail-dkim.js
CHANGED
|
@@ -40,7 +40,7 @@
|
|
|
40
40
|
*/
|
|
41
41
|
var lazyRequire = require("./lazy-require");
|
|
42
42
|
var audit = lazyRequire(function () { return require("./audit"); });
|
|
43
|
-
var nodeCrypto = require("crypto");
|
|
43
|
+
var nodeCrypto = require("node:crypto");
|
|
44
44
|
var safeBuffer = require("./safe-buffer");
|
|
45
45
|
var validateOpts = require("./validate-opts");
|
|
46
46
|
var { FrameworkError } = require("./framework-error");
|
package/lib/mail.js
CHANGED
|
@@ -68,11 +68,11 @@ var dkim = require("./mail-dkim");
|
|
|
68
68
|
var mailAuth = require("./mail-auth");
|
|
69
69
|
var mailBimi = require("./mail-bimi");
|
|
70
70
|
var mailUnsubscribe = require("./mail-unsubscribe");
|
|
71
|
-
var net = lazyRequire(function () { return require("net"); });
|
|
71
|
+
var net = lazyRequire(function () { return require("node:net"); });
|
|
72
72
|
var networkDns = lazyRequire(function () { return require("./network-dns"); });
|
|
73
|
-
var nodeUrl = require("url");
|
|
73
|
+
var nodeUrl = require("node:url");
|
|
74
74
|
var numericBounds = require("./numeric-bounds");
|
|
75
|
-
var nodeTls = lazyRequire(function () { return require("tls"); });
|
|
75
|
+
var nodeTls = lazyRequire(function () { return require("node:tls"); });
|
|
76
76
|
var safeJson = require("./safe-json");
|
|
77
77
|
var safeSchema = require("./safe-schema");
|
|
78
78
|
var validateOpts = require("./validate-opts");
|
|
@@ -221,7 +221,7 @@ async function reverseDns(ip) {
|
|
|
221
221
|
// the original input. RFC 8601 §3 says the forward query must use
|
|
222
222
|
// the same family as the source; mismatched families don't count
|
|
223
223
|
// as confirmation.
|
|
224
|
-
var net = require("net");
|
|
224
|
+
var net = require("node:net");
|
|
225
225
|
var forwardAddrs = [];
|
|
226
226
|
try {
|
|
227
227
|
if (net.isIPv6(ip)) {
|
|
@@ -916,7 +916,7 @@ function _messageRequires8BitMime(message) {
|
|
|
916
916
|
// resultOrder applies).
|
|
917
917
|
function _autoDetectFamily() {
|
|
918
918
|
try {
|
|
919
|
-
var os = require("os");
|
|
919
|
+
var os = require("node:os");
|
|
920
920
|
var ifaces = os.networkInterfaces();
|
|
921
921
|
var hasV6 = false;
|
|
922
922
|
var hasV4 = false;
|
|
@@ -19,7 +19,7 @@
|
|
|
19
19
|
* paths / methods.
|
|
20
20
|
*/
|
|
21
21
|
|
|
22
|
-
var nodeCrypto = require("crypto");
|
|
22
|
+
var nodeCrypto = require("node:crypto");
|
|
23
23
|
var validateOpts = require("../validate-opts");
|
|
24
24
|
var lazyRequire = require("../lazy-require");
|
|
25
25
|
var { defineClass } = require("../framework-error");
|
|
@@ -100,7 +100,7 @@
|
|
|
100
100
|
* dots collapsed, control characters stripped, length capped at 255.
|
|
101
101
|
* Tmp file path is generated by the framework, never derived from
|
|
102
102
|
* the operator-supplied filename — so a malicious filename can't
|
|
103
|
-
* collide with a sensitive
|
|
103
|
+
* collide with a sensitive path.
|
|
104
104
|
* - Multipart parser refuses fields whose `name` is in POISONED_KEYS
|
|
105
105
|
* (consistent with the JSON path).
|
|
106
106
|
* - Tmp files set with mode 0o600, parent dir created with 0o700.
|
|
@@ -108,9 +108,9 @@
|
|
|
108
108
|
* error) so a crashing handler doesn't leak files.
|
|
109
109
|
*/
|
|
110
110
|
|
|
111
|
-
var nodeFs = require("fs");
|
|
112
|
-
var os = require("os");
|
|
113
|
-
var nodePath = require("path");
|
|
111
|
+
var nodeFs = require("node:fs");
|
|
112
|
+
var os = require("node:os");
|
|
113
|
+
var nodePath = require("node:path");
|
|
114
114
|
var nodeCrypto = require("node:crypto");
|
|
115
115
|
var atomicFile = require("../atomic-file");
|
|
116
116
|
var bCrypto = require("../crypto");
|
|
@@ -25,7 +25,7 @@
|
|
|
25
25
|
* which omits the CORS header.
|
|
26
26
|
*/
|
|
27
27
|
|
|
28
|
-
var nodeCrypto = require("crypto");
|
|
28
|
+
var nodeCrypto = require("node:crypto");
|
|
29
29
|
var validateOpts = require("../validate-opts");
|
|
30
30
|
var lazyRequire = require("../lazy-require");
|
|
31
31
|
var { defineClass } = require("../framework-error");
|
|
@@ -40,7 +40,7 @@
|
|
|
40
40
|
* cannot satisfy.
|
|
41
41
|
*/
|
|
42
42
|
|
|
43
|
-
var nodeCrypto = require("crypto"); // for createHash() in checksum extension
|
|
43
|
+
var nodeCrypto = require("node:crypto"); // for createHash() in checksum extension
|
|
44
44
|
var C = require("../constants");
|
|
45
45
|
var bCrypto = require("../crypto");
|
|
46
46
|
var lazyRequire = require("../lazy-require");
|
package/lib/migrations.js
CHANGED
package/lib/mtls-ca.js
CHANGED
|
@@ -52,8 +52,8 @@
|
|
|
52
52
|
* Mutual TLS Certificate Authority — internal CA cert issuance, mTLS gate setup, fingerprint pinning.
|
|
53
53
|
*/
|
|
54
54
|
|
|
55
|
-
var nodeFs = require("fs");
|
|
56
|
-
var nodePath = require("path");
|
|
55
|
+
var nodeFs = require("node:fs");
|
|
56
|
+
var nodePath = require("node:path");
|
|
57
57
|
var nodeCrypto = require("node:crypto");
|
|
58
58
|
var atomicFile = require("./atomic-file");
|
|
59
59
|
var C = require("./constants");
|
|
@@ -324,9 +324,9 @@ function create(opts) {
|
|
|
324
324
|
// so a genuinely-broken filesystem state surfaces in operator logs
|
|
325
325
|
// rather than getting silently swallowed.
|
|
326
326
|
try { if (nodeFs.existsSync(keyTmp)) nodeFs.unlinkSync(keyTmp); }
|
|
327
|
-
catch (cleanupErr) { caLog.debug("cleanup-failed", { op: "
|
|
327
|
+
catch (cleanupErr) { caLog.debug("cleanup-failed", { op: "fs.unlinkSync", path: keyTmp, error: cleanupErr.message }); }
|
|
328
328
|
try { if (nodeFs.existsSync(certTmp)) nodeFs.unlinkSync(certTmp); }
|
|
329
|
-
catch (cleanupErr) { caLog.debug("cleanup-failed", { op: "
|
|
329
|
+
catch (cleanupErr) { caLog.debug("cleanup-failed", { op: "fs.unlinkSync", path: certTmp, error: cleanupErr.message }); }
|
|
330
330
|
throw new MtlsCaError("mtls-ca/commit-failed",
|
|
331
331
|
"atomic CA commit failed: " + ((e && e.message) || String(e)));
|
|
332
332
|
}
|
|
@@ -53,7 +53,7 @@
|
|
|
53
53
|
|
|
54
54
|
var dns = require("node:dns");
|
|
55
55
|
var dnsPromises = dns.promises;
|
|
56
|
-
var nodeCrypto = require("crypto");
|
|
56
|
+
var nodeCrypto = require("node:crypto");
|
|
57
57
|
var zlib = require("node:zlib");
|
|
58
58
|
var asn1 = require("./asn1-der");
|
|
59
59
|
var lazyRequire = require("./lazy-require");
|
package/lib/ntp-check.js
CHANGED
|
@@ -44,7 +44,7 @@
|
|
|
44
44
|
* @card
|
|
45
45
|
* Boot-time clock-drift verification against an external NTP / NTS-KE reference.
|
|
46
46
|
*/
|
|
47
|
-
var dgram = require("dgram");
|
|
47
|
+
var dgram = require("node:dgram");
|
|
48
48
|
var C = require("./constants");
|
|
49
49
|
var lazyRequire = require("./lazy-require");
|
|
50
50
|
var safeAsync = require("./safe-async");
|
|
@@ -30,9 +30,9 @@
|
|
|
30
30
|
* - PutBlock + PutBlockList (multipart for >256MB blobs) is not
|
|
31
31
|
* implemented; uploads above that ceiling will fail at the API.
|
|
32
32
|
*/
|
|
33
|
-
var nodeCrypto = require("crypto");
|
|
34
|
-
var { URL } = require("url");
|
|
35
|
-
var { Readable } = require("stream");
|
|
33
|
+
var nodeCrypto = require("node:crypto");
|
|
34
|
+
var { URL } = require("node:url");
|
|
35
|
+
var { Readable } = require("node:stream");
|
|
36
36
|
var safeXml = require("../parsers/safe-xml");
|
|
37
37
|
var sharedRequest = require("./http-request");
|
|
38
38
|
var C = require("../constants");
|
package/lib/object-store/gcs.js
CHANGED
|
@@ -22,9 +22,9 @@
|
|
|
22
22
|
* https://cloud.google.com/storage/docs/json_api/v1
|
|
23
23
|
* https://developers.google.com/identity/protocols/oauth2/service-account
|
|
24
24
|
*/
|
|
25
|
-
var nodeFs = require("fs");
|
|
26
|
-
var nodeCrypto = require("crypto");
|
|
27
|
-
var { Readable } = require("stream");
|
|
25
|
+
var nodeFs = require("node:fs");
|
|
26
|
+
var nodeCrypto = require("node:crypto");
|
|
27
|
+
var { Readable } = require("node:stream");
|
|
28
28
|
var safeJson = require("../safe-json");
|
|
29
29
|
var C = require("../constants");
|
|
30
30
|
var numericBounds = require("../numeric-bounds");
|
|
@@ -16,7 +16,7 @@
|
|
|
16
16
|
* Errors are surfaced as object-store errors with statusCode set so the
|
|
17
17
|
* retry layer can classify retryable vs permanent.
|
|
18
18
|
*/
|
|
19
|
-
var { Readable } = require("stream");
|
|
19
|
+
var { Readable } = require("node:stream");
|
|
20
20
|
var { ObjectStoreError } = require("../framework-error");
|
|
21
21
|
var safeUrl = require("../safe-url");
|
|
22
22
|
var sharedRequest = require("./http-request");
|
|
@@ -4,15 +4,15 @@
|
|
|
4
4
|
*
|
|
5
5
|
* Implements the uniform protocol surface (put / get / getStream / delete /
|
|
6
6
|
* head / list) against a directory tree. Streaming is via Node's native
|
|
7
|
-
*
|
|
7
|
+
* fs.createReadStream / createWriteStream — no in-memory buffering of
|
|
8
8
|
* full files.
|
|
9
9
|
*
|
|
10
10
|
* Path safety: every key resolves under the configured rootDir, with an
|
|
11
11
|
* alphanumeric + `_-./` charset whitelist and explicit rejection of any
|
|
12
12
|
* path that escapes rootDir after resolution.
|
|
13
13
|
*/
|
|
14
|
-
var nodeFs = require("fs");
|
|
15
|
-
var nodePath = require("path");
|
|
14
|
+
var nodeFs = require("node:fs");
|
|
15
|
+
var nodePath = require("node:path");
|
|
16
16
|
var atomicFile = require("../atomic-file");
|
|
17
17
|
var cluster = require("../cluster");
|
|
18
18
|
var { ObjectStoreError } = require("../framework-error");
|
|
@@ -49,7 +49,7 @@
|
|
|
49
49
|
* with codes (BUCKET_INVALID_NAME, INVALID_LIFECYCLE, INVALID_CORS_RULE,
|
|
50
50
|
* BUCKET_ALREADY_OWNED, BUCKET_NOT_EMPTY, etc.).
|
|
51
51
|
*/
|
|
52
|
-
var nodeCrypto = require("crypto");
|
|
52
|
+
var nodeCrypto = require("node:crypto");
|
|
53
53
|
var C = require("../constants");
|
|
54
54
|
var requestHelpers = require("../request-helpers");
|
|
55
55
|
var sigv4 = require("./sigv4");
|
|
@@ -23,9 +23,9 @@
|
|
|
23
23
|
* Reference:
|
|
24
24
|
* https://docs.aws.amazon.com/general/latest/gr/sigv4_signing.html
|
|
25
25
|
*/
|
|
26
|
-
var nodeCrypto = require("crypto");
|
|
27
|
-
var { URL } = require("url");
|
|
28
|
-
var { Readable } = require("stream");
|
|
26
|
+
var nodeCrypto = require("node:crypto");
|
|
27
|
+
var { URL } = require("node:url");
|
|
28
|
+
var { Readable } = require("node:stream");
|
|
29
29
|
var safeXml = require("../parsers/safe-xml");
|
|
30
30
|
var sharedRequest = require("./http-request");
|
|
31
31
|
var C = require("../constants");
|
package/lib/observability.js
CHANGED
|
@@ -469,7 +469,7 @@ function _buildTraceparent(opts) {
|
|
|
469
469
|
return "00-" + traceId + "-" + parentId + "-" + flags;
|
|
470
470
|
}
|
|
471
471
|
|
|
472
|
-
var _nodeCryptoForTrace = require("crypto");
|
|
472
|
+
var _nodeCryptoForTrace = require("node:crypto");
|
|
473
473
|
|
|
474
474
|
function _newTraceId() {
|
|
475
475
|
var hex = _nodeCryptoForTrace.randomBytes(_TRACE_ID_BYTES).toString("hex");
|
package/lib/process-spawn.js
CHANGED
|
@@ -171,8 +171,8 @@ function spawn(command, args, opts) {
|
|
|
171
171
|
filtered = built.filtered;
|
|
172
172
|
}
|
|
173
173
|
delete spawnOpts.allowEnv;
|
|
174
|
-
var
|
|
175
|
-
var child =
|
|
174
|
+
var childProcess = require("node:child_process");
|
|
175
|
+
var child = childProcess.spawn(command, args || [], spawnOpts);
|
|
176
176
|
try {
|
|
177
177
|
audit().safeEmit({
|
|
178
178
|
action: "process.spawn",
|
package/lib/restore-bundle.js
CHANGED
|
@@ -45,8 +45,8 @@
|
|
|
45
45
|
* Backup-bundle reader — verify the manifest signature, list bundle contents without decrypting, and cherry-pick a restore subset to a staging directory the caller atomically swaps into place.
|
|
46
46
|
*/
|
|
47
47
|
|
|
48
|
-
var nodeFs = require("fs");
|
|
49
|
-
var nodePath = require("path");
|
|
48
|
+
var nodeFs = require("node:fs");
|
|
49
|
+
var nodePath = require("node:path");
|
|
50
50
|
var atomicFile = require("./atomic-file");
|
|
51
51
|
var backupCrypto = require("./backup/crypto");
|
|
52
52
|
var backupManifest = require("./backup/manifest");
|
package/lib/restore-rollback.js
CHANGED
|
@@ -6,7 +6,7 @@
|
|
|
6
6
|
*
|
|
7
7
|
* @intro
|
|
8
8
|
* Backup-restore safety net — atomic dataDir swap with a versioned
|
|
9
|
-
* rollback
|
|
9
|
+
* rollback path. The primitive `b.restore` calls to put a
|
|
10
10
|
* freshly-decrypted bundle into place: filesystem rename is atomic
|
|
11
11
|
* on POSIX (and on Windows when nothing has the dir open), so the
|
|
12
12
|
* swap either fully completes or the previous `dataDir` is
|
|
@@ -39,11 +39,11 @@
|
|
|
39
39
|
* corrupting state.
|
|
40
40
|
*
|
|
41
41
|
* @card
|
|
42
|
-
* Backup-restore safety net — atomic dataDir swap with a versioned rollback
|
|
42
|
+
* Backup-restore safety net — atomic dataDir swap with a versioned rollback path.
|
|
43
43
|
*/
|
|
44
44
|
|
|
45
|
-
var nodeFs = require("fs");
|
|
46
|
-
var nodePath = require("path");
|
|
45
|
+
var nodeFs = require("node:fs");
|
|
46
|
+
var nodePath = require("node:path");
|
|
47
47
|
var atomicFile = require("./atomic-file");
|
|
48
48
|
var C = require("./constants");
|
|
49
49
|
var numericBounds = require("./numeric-bounds");
|
package/lib/restore.js
CHANGED
|
@@ -51,9 +51,9 @@
|
|
|
51
51
|
* manual recovery)
|
|
52
52
|
*/
|
|
53
53
|
|
|
54
|
-
var nodeFs = require("fs");
|
|
55
|
-
var os = require("os");
|
|
56
|
-
var nodePath = require("path");
|
|
54
|
+
var nodeFs = require("node:fs");
|
|
55
|
+
var os = require("node:os");
|
|
56
|
+
var nodePath = require("node:path");
|
|
57
57
|
var C = require("./constants");
|
|
58
58
|
var bCrypto = require("./crypto");
|
|
59
59
|
var numericChecks = require("./numeric-checks");
|
package/lib/retry.js
CHANGED
|
@@ -39,7 +39,7 @@
|
|
|
39
39
|
|
|
40
40
|
var C = require("./constants");
|
|
41
41
|
var lazyRequire = require("./lazy-require");
|
|
42
|
-
var nodeCrypto = require("crypto");
|
|
42
|
+
var nodeCrypto = require("node:crypto");
|
|
43
43
|
var numericChecks = require("./numeric-checks");
|
|
44
44
|
// safe-async re-exports withRetry + CircuitBreaker from this module, so a
|
|
45
45
|
// direct top-level require would create a cycle. Lazy-require defers the
|
package/lib/router.js
CHANGED
|
@@ -32,10 +32,10 @@
|
|
|
32
32
|
* @card
|
|
33
33
|
* HTTP route registration + dispatch.
|
|
34
34
|
*/
|
|
35
|
-
var http = require("http");
|
|
36
|
-
var http2 = require("http2");
|
|
37
|
-
var nodeFs = require("fs");
|
|
38
|
-
var nodePath = require("path");
|
|
35
|
+
var http = require("node:http");
|
|
36
|
+
var http2 = require("node:http2");
|
|
37
|
+
var nodeFs = require("node:fs");
|
|
38
|
+
var nodePath = require("node:path");
|
|
39
39
|
var C = require("./constants");
|
|
40
40
|
var requestHelpers = require("./request-helpers");
|
|
41
41
|
var lazyRequire = require("./lazy-require");
|
package/lib/safe-url.js
CHANGED
|
@@ -49,8 +49,8 @@ var codepointClass = require("./codepoint-class");
|
|
|
49
49
|
var lazyRequire = require("./lazy-require");
|
|
50
50
|
var numericBounds = require("./numeric-bounds");
|
|
51
51
|
var { FrameworkError } = require("./framework-error");
|
|
52
|
-
var nodeUrl = require("url");
|
|
53
|
-
var { URL } = require("url");
|
|
52
|
+
var nodeUrl = require("node:url");
|
|
53
|
+
var { URL } = require("node:url");
|
|
54
54
|
|
|
55
55
|
var audit = lazyRequire(function () { return require("./audit"); });
|
|
56
56
|
|
package/lib/sandbox.js
CHANGED
|
@@ -78,7 +78,7 @@
|
|
|
78
78
|
* arbitrary source from the public internet.
|
|
79
79
|
*/
|
|
80
80
|
|
|
81
|
-
var nodePath = require("path");
|
|
81
|
+
var nodePath = require("node:path");
|
|
82
82
|
var lazyRequire = require("./lazy-require");
|
|
83
83
|
var validateOpts = require("./validate-opts");
|
|
84
84
|
var numericBounds = require("./numeric-bounds");
|
package/lib/security-assert.js
CHANGED
|
@@ -67,7 +67,7 @@
|
|
|
67
67
|
* non-function extra entry, etc.) so the operator catches typos at
|
|
68
68
|
* boot, not at the moment they were trying to gate the boot.
|
|
69
69
|
*/
|
|
70
|
-
var nodeFs = require("fs");
|
|
70
|
+
var nodeFs = require("node:fs");
|
|
71
71
|
var nodeTls = require("node:tls");
|
|
72
72
|
var lazyRequire = require("./lazy-require");
|
|
73
73
|
var safeEnv = require("./parsers/safe-env");
|
package/lib/seeders.js
CHANGED
|
@@ -15,7 +15,7 @@
|
|
|
15
15
|
*
|
|
16
16
|
* module.exports = {
|
|
17
17
|
* description: "Create default admin user for local dev",
|
|
18
|
-
* // Optional — when omitted, the env is inferred from the
|
|
18
|
+
* // Optional — when omitted, the env is inferred from the path.
|
|
19
19
|
* // When present, this seed only applies under one of these envs.
|
|
20
20
|
* envs: ["dev", "test"],
|
|
21
21
|
* // Default false — applied once and recorded in registry.
|
|
@@ -54,7 +54,7 @@
|
|
|
54
54
|
* applied state)
|
|
55
55
|
*/
|
|
56
56
|
|
|
57
|
-
var nodePath = require("path");
|
|
57
|
+
var nodePath = require("node:path");
|
|
58
58
|
var atomicFile = require("./atomic-file");
|
|
59
59
|
var C = require("./constants");
|
|
60
60
|
var dbSchema = require("./db-schema");
|
|
@@ -83,8 +83,8 @@
|
|
|
83
83
|
* or systemd `install.sh`. node:crypto + node:fs only.
|
|
84
84
|
*/
|
|
85
85
|
|
|
86
|
-
var nodeCrypto = require("crypto");
|
|
87
|
-
var nodeFs = require("fs");
|
|
86
|
+
var nodeCrypto = require("node:crypto");
|
|
87
|
+
var nodeFs = require("node:fs");
|
|
88
88
|
|
|
89
89
|
// _streamHashAndVerify — read the asset in 64 KiB chunks, feed each
|
|
90
90
|
// chunk into sha256, sha3-512, AND the signature verifier in parallel.
|
package/lib/self-update.js
CHANGED
|
@@ -47,16 +47,16 @@
|
|
|
47
47
|
* Framework / vendored-deps integrity check plus version pinning — refuses to install a new build when the asset's detached signature does not verify against the operator-supplied public key, or when the vendored SHA the new build would ship does not match the manifest the opera...
|
|
48
48
|
*/
|
|
49
49
|
|
|
50
|
-
var nodeFs = require("fs");
|
|
51
|
-
var nodePath = require("path");
|
|
52
|
-
var nodeCrypto = require("crypto");
|
|
50
|
+
var nodeFs = require("node:fs");
|
|
51
|
+
var nodePath = require("node:path");
|
|
52
|
+
var nodeCrypto = require("node:crypto");
|
|
53
53
|
var numericBounds = require("./numeric-bounds");
|
|
54
54
|
var atomicFile = require("./atomic-file");
|
|
55
55
|
var validateOpts = require("./validate-opts");
|
|
56
56
|
var bCrypto = require("./crypto");
|
|
57
57
|
var httpClient = require("./http-client");
|
|
58
58
|
var safeJson = require("./safe-json");
|
|
59
|
-
var { URL: NodeUrl } = require("url");
|
|
59
|
+
var { URL: NodeUrl } = require("node:url");
|
|
60
60
|
var lazyRequire = require("./lazy-require");
|
|
61
61
|
var C = require("./constants");
|
|
62
62
|
var standaloneVerifier = require("./self-update-standalone-verifier");
|
|
@@ -178,7 +178,7 @@ function _matchAsset(name, pattern, fallback) {
|
|
|
178
178
|
* Fetch a releases feed and report whether a newer tag is available.
|
|
179
179
|
* Tags are compared semver-style with a leading `v` stripped. When
|
|
180
180
|
* `opts.etag` is supplied an `If-None-Match` header makes a 304 a fast
|
|
181
|
-
* "no update"
|
|
181
|
+
* "no update" path. The match against asset and signature URLs uses
|
|
182
182
|
* `opts.assetPattern` and `opts.signaturePattern` (RegExp or substring)
|
|
183
183
|
* with conservative fallbacks. Throws SelfUpdateError on a non-2xx
|
|
184
184
|
* upstream, malformed JSON, or unexpected shape.
|
|
@@ -70,7 +70,7 @@
|
|
|
70
70
|
|
|
71
71
|
var C = require("./constants");
|
|
72
72
|
var bCrypto = require("./crypto");
|
|
73
|
-
var nodeCrypto = require("crypto");
|
|
73
|
+
var nodeCrypto = require("node:crypto");
|
|
74
74
|
var lazyRequire = require("./lazy-require");
|
|
75
75
|
var requestHelpers = require("./request-helpers");
|
|
76
76
|
var validateOpts = require("./validate-opts");
|
package/lib/storage.js
CHANGED
|
@@ -399,7 +399,7 @@ async function getFileStream(key, sealedKey, opts) {
|
|
|
399
399
|
// to the consumer. Chunked-encryption with per-chunk AEAD would let us
|
|
400
400
|
// stream end-to-end, but at the cost of finer-grained tampering windows.
|
|
401
401
|
var buf = await getFileBuffer(key, sealedKey, opts);
|
|
402
|
-
return require("stream").Readable.from(buf);
|
|
402
|
+
return require("node:stream").Readable.from(buf);
|
|
403
403
|
}
|
|
404
404
|
|
|
405
405
|
/**
|
package/lib/template.js
CHANGED
|
@@ -89,8 +89,8 @@
|
|
|
89
89
|
* is the second line: even if a template loaded, it can't execute
|
|
90
90
|
* arbitrary JS — only the limited expression grammar above.
|
|
91
91
|
*/
|
|
92
|
-
var nodeFs = require("fs");
|
|
93
|
-
var nodePath = require("path");
|
|
92
|
+
var nodeFs = require("node:fs");
|
|
93
|
+
var nodePath = require("node:path");
|
|
94
94
|
var lazyRequire = require("./lazy-require");
|
|
95
95
|
var validateOpts = require("./validate-opts");
|
|
96
96
|
|
package/lib/totp.js
CHANGED
|
@@ -59,7 +59,7 @@
|
|
|
59
59
|
* operators should choose an authenticator that does (Authy,
|
|
60
60
|
* 1Password, Bitwarden, Aegis, Microsoft Authenticator all do).
|
|
61
61
|
*/
|
|
62
|
-
var nodeCrypto = require("crypto");
|
|
62
|
+
var nodeCrypto = require("node:crypto");
|
|
63
63
|
var C = require("./constants");
|
|
64
64
|
var { generateBytes, generateToken, timingSafeEqual } = require("./crypto");
|
|
65
65
|
var { AuthError } = require("./framework-error");
|
package/lib/vault/index.js
CHANGED
|
@@ -62,8 +62,8 @@
|
|
|
62
62
|
* @card
|
|
63
63
|
* Sealed keystore that anchors every other framework subsystem holding secrets at rest: db field encryption, encrypted session storage, audit-log signing keys, OAuth refresh tokens, anything that flows through `b.vault.seal` / `b.vault.unseal`.
|
|
64
64
|
*/
|
|
65
|
-
var nodeFs = require("fs");
|
|
66
|
-
var nodePath = require("path");
|
|
65
|
+
var nodeFs = require("node:fs");
|
|
66
|
+
var nodePath = require("node:path");
|
|
67
67
|
var atomicFile = require("../atomic-file");
|
|
68
68
|
var C = require("../constants");
|
|
69
69
|
var { generateEncryptionKeyPair, encrypt, decrypt } = require("../crypto");
|
|
@@ -35,8 +35,8 @@
|
|
|
35
35
|
* with the original file untouched.
|
|
36
36
|
*/
|
|
37
37
|
|
|
38
|
-
var nodeFs = require("fs");
|
|
39
|
-
var nodePath = require("path");
|
|
38
|
+
var nodeFs = require("node:fs");
|
|
39
|
+
var nodePath = require("node:path");
|
|
40
40
|
var atomicFile = require("../atomic-file");
|
|
41
41
|
var vaultWrap = require("./wrap");
|
|
42
42
|
var { defineClass } = require("../framework-error");
|
|
@@ -23,8 +23,8 @@
|
|
|
23
23
|
* exposure to later env-dump surfaces. This doesn't zero the memory
|
|
24
24
|
* (JavaScript can't) but does remove the env-object reference.
|
|
25
25
|
*/
|
|
26
|
-
var nodeFs = require("fs");
|
|
27
|
-
var readline = require("readline");
|
|
26
|
+
var nodeFs = require("node:fs");
|
|
27
|
+
var readline = require("node:readline");
|
|
28
28
|
var safeEnv = require("../parsers/safe-env");
|
|
29
29
|
var safeBuffer = require("../safe-buffer");
|
|
30
30
|
|
package/lib/vault/rotate.js
CHANGED
|
@@ -48,8 +48,8 @@
|
|
|
48
48
|
* sampler skips them.
|
|
49
49
|
*/
|
|
50
50
|
|
|
51
|
-
var nodeFs = require("fs");
|
|
52
|
-
var nodePath = require("path");
|
|
51
|
+
var nodeFs = require("node:fs");
|
|
52
|
+
var nodePath = require("node:path");
|
|
53
53
|
var { DatabaseSync } = require("node:sqlite");
|
|
54
54
|
var atomicFile = require("../atomic-file");
|
|
55
55
|
var safeSql = require("../safe-sql");
|
|
@@ -709,9 +709,9 @@ async function rotate(opts) {
|
|
|
709
709
|
// one for this run); log at debug so the cleanup attempt isn't
|
|
710
710
|
// silently swallowed when something genuinely unexpected fails.
|
|
711
711
|
try { nodeFs.unlinkSync(tmpDbPath + "-wal"); }
|
|
712
|
-
catch (e) { rotateLog.debug("cleanup-failed", { op: "
|
|
712
|
+
catch (e) { rotateLog.debug("cleanup-failed", { op: "fs.unlinkSync", path: tmpDbPath + "-wal", error: e.message }); }
|
|
713
713
|
try { nodeFs.unlinkSync(tmpDbPath + "-shm"); }
|
|
714
|
-
catch (e) { rotateLog.debug("cleanup-failed", { op: "
|
|
714
|
+
catch (e) { rotateLog.debug("cleanup-failed", { op: "fs.unlinkSync", path: tmpDbPath + "-shm", error: e.message }); }
|
|
715
715
|
|
|
716
716
|
var rotatedBytes = nodeFs.readFileSync(tmpDbPath);
|
|
717
717
|
nodeFs.writeFileSync(nodePath.join(stagingDir, paths.encryptedDb),
|
|
@@ -729,11 +729,11 @@ async function rotate(opts) {
|
|
|
729
729
|
} finally {
|
|
730
730
|
vdb.close();
|
|
731
731
|
try { nodeFs.unlinkSync(verifyTmp); }
|
|
732
|
-
catch (e) { rotateLog.debug("cleanup-failed", { op: "
|
|
732
|
+
catch (e) { rotateLog.debug("cleanup-failed", { op: "fs.unlinkSync", path: verifyTmp, error: e.message }); }
|
|
733
733
|
try { nodeFs.unlinkSync(verifyTmp + "-wal"); }
|
|
734
|
-
catch (e) { rotateLog.debug("cleanup-failed", { op: "
|
|
734
|
+
catch (e) { rotateLog.debug("cleanup-failed", { op: "fs.unlinkSync", path: verifyTmp + "-wal", error: e.message }); }
|
|
735
735
|
try { nodeFs.unlinkSync(verifyTmp + "-shm"); }
|
|
736
|
-
catch (e) { rotateLog.debug("cleanup-failed", { op: "
|
|
736
|
+
catch (e) { rotateLog.debug("cleanup-failed", { op: "fs.unlinkSync", path: verifyTmp + "-shm", error: e.message }); }
|
|
737
737
|
}
|
|
738
738
|
if (!verifyResult.ok) {
|
|
739
739
|
throw new VaultRotateError("vault-rotate/verify-failed",
|