@blindfold/sdk 1.0.0 → 1.1.0

package/LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2026 Blindfold
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

package/README.md

@@ -4,7 +4,11 @@ The official JavaScript/TypeScript SDK for Blindfold - The Privacy API for AI.
 
 Securely tokenize, mask, redact, and encrypt sensitive data (PII) before sending it to LLMs or third-party services.
 
-## Installation
+## How to use it
+
+### 1. Install SDK
+
+Javascript/ Typescript
 
 ```bash
 npm install @blindfold/sdk
@@ -14,7 +18,21 @@ yarn add @blindfold/sdk
 pnpm add @blindfold/sdk
 ```
 
-## Usage
+Python SDK
+
+```bash
+pip install blindfold-sdk
+```
+
+### 2. Get Blindfold API key
+
+1. Sign up to Blindfold here.
+1. Sign up to Blindfold [here](https://www.blindfold.dev/).
+3. Get your API key [here](https://app.blindfold.dev/api-keys).
+3. Set environment variable with your API key
+```
+BLINDFOLD_API_KEY=sk-***
+```     
 
 ### Initialization
 
@@ -30,38 +48,46 @@ const client = new Blindfold({
 
 ### Tokenize (Reversible)
 
-Replace sensitive data with reversible tokens (e.g., `<PERSON_1>`).
+Replace sensitive data with reversible tokens (e.g., `<Person_1>`).
 
 ```typescript
 const response = await client.tokenize(
   "Contact John Doe at john@example.com",
   {
+    // Optional: Use a pre-configured policy
+    policy: 'gdpr_eu',  // or 'hipaa_us', 'basic'
     // Optional: Filter specific entities
-    entities: ['PERSON', 'EMAIL_ADDRESS'],
+    entities: ['person', 'email address'],
     // Optional: Set confidence threshold
     score_threshold: 0.4
   }
 );
 
-console.log(response.text); 
-// "Contact <PERSON_1> at <EMAIL_ADDRESS_1>"
+console.log(response.text);
+// "Contact <Person_1> at <Email Address_1>"
 
 console.log(response.mapping);
-// { "<PERSON_1>": "John Doe", "<EMAIL_ADDRESS_1>": "john@example.com" }
+// { "<Person_1>": "John Doe", "<Email Address_1>": "john@example.com" }
 ```
 
 ### Detokenize
 
 Restore original values from tokens.
 
+**⚡ Note:** Detokenization is performed **client-side** for better performance, security, and offline support. No API call is made.
+
 ```typescript
-const original = await client.detokenize(
-  "AI response for <PERSON_1>",
+// No await needed - runs locally!
+const original = client.detokenize(
+  "AI response for <Person_1>",
   response.mapping
 );
 
 console.log(original.text);
 // "AI response for John Doe"
+
+console.log(original.replacements_made);
+// 1
 ```
 
 ### Mask
@@ -90,7 +116,7 @@ Permanently remove sensitive data.
 const response = await client.redact(
   "My password is secret123",
   {
-    entities: ['PASSWORD'] // If supported
+    entities: ['person', 'email address']
   }
 );
 ```
@@ -143,17 +169,19 @@ const response = await client.encrypt(
 ### Entity Types
 
 Common supported entities:
-- `PERSON`
-- `EMAIL_ADDRESS`
-- `PHONE_NUMBER`
-- `CREDIT_CARD`
-- `IP_ADDRESS`
-- `LOCATION`
-- `DATE_TIME`
-- `URL`
-- `IBAN_CODE`
-- `US_SSN`
-- `MEDICAL_LICENSE`
+- `person`
+- `email address`
+- `phone number`
+- `credit card number`
+- `ip address`
+- `address`
+- `date of birth`
+- `organization`
+- `iban`
+- `social security number`
+- `medical condition`
+- `passport number`
+- `driver's license number`
 
 ### Error Handling
 

package/dist/index.d.mts

@@ -4,10 +4,14 @@
 interface BlindfoldConfig {
     /** API key for authentication */
     apiKey: string;
-    /** Base URL for the API (default: http://localhost:8000/api/public/v1) */
+    /** Base URL for the API (default: https://api.blindfold.dev/api/public/v1) */
     baseUrl?: string;
     /** Optional user ID to track who is making the request */
     userId?: string;
+    /** Maximum number of retries on transient errors (default: 2, 0 to disable) */
+    maxRetries?: number;
+    /** Initial delay in seconds before first retry (default: 0.5) */
+    retryDelay?: number;
 }
 /**
  * Configuration options for tokenization
@@ -17,12 +21,34 @@ interface TokenizeConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
+}
+/**
+ * Configuration options for detection (no text transformation)
+ */
+interface DetectConfig {
+    /** List of entities to detect */
+    entities?: string[];
+    /** Minimum confidence score for entity detection (0.0-1.0) */
+    score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
+}
+/**
+ * Response from detect endpoint
+ */
+interface DetectResponse {
+    /** List of detected entities */
+    detected_entities: DetectedEntity[];
+    /** Count of detected entities */
+    entities_count: number;
 }
 /**
  * Detected entity information
  */
 interface DetectedEntity {
-    /** Entity type (e.g., PERSON, EMAIL_ADDRESS) */
+    /** Entity type (e.g., "person", "email address", "phone number") */
     entity_type: string;
     /** Original text of the entity */
     text: string;
@@ -65,6 +91,8 @@ interface RedactConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from redact endpoint
@@ -91,6 +119,8 @@ interface MaskConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from mask endpoint
@@ -113,6 +143,8 @@ interface SynthesizeConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from synthesis endpoint
@@ -139,6 +171,8 @@ interface HashConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from hash endpoint
@@ -161,6 +195,8 @@ interface EncryptConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from encrypt endpoint
@@ -188,11 +224,14 @@ declare class Blindfold {
     private apiKey;
     private baseUrl;
     private userId?;
+    private maxRetries;
+    private retryDelay;
     /**
      * Create a new Blindfold client
      * @param config - Configuration options
      */
     constructor(config: BlindfoldConfig);
+    private retryWait;
     /**
      * Make an authenticated request to the API
      */
@@ -204,13 +243,28 @@ declare class Blindfold {
      * @returns Promise with tokenized text and mapping
      */
     tokenize(text: string, config?: TokenizeConfig): Promise<TokenizeResponse>;
+    /**
+     * Detect PII in text without modifying it
+     *
+     * Returns only the detected entities with their types, positions,
+     * and confidence scores. The original text is not transformed.
+     *
+     * @param text - Text to analyze for PII
+     * @param config - Optional configuration (entities, score_threshold, policy)
+     * @returns Promise with detected entities
+     */
+    detect(text: string, config?: DetectConfig): Promise<DetectResponse>;
     /**
      * Detokenize text by replacing tokens with original values
+     *
+     * This method performs detokenization CLIENT-SIDE for better performance,
+     * security, and to work offline. No API call is made.
+     *
      * @param text - Tokenized text
      * @param mapping - Token mapping from tokenize response
-     * @returns Promise with original text
+     * @returns DetokenizeResponse with original text
      */
-    detokenize(text: string, mapping: Record<string, string>): Promise<DetokenizeResponse>;
+    detokenize(text: string, mapping: Record<string, string>): DetokenizeResponse;
     /**
      * Redact (permanently remove) sensitive information from text
      *
@@ -272,8 +326,8 @@ declare class AuthenticationError extends BlindfoldError {
  */
 declare class APIError extends BlindfoldError {
     statusCode: number;
-    responseBody?: any;
-    constructor(message: string, statusCode: number, responseBody?: any);
+    responseBody?: unknown;
+    constructor(message: string, statusCode: number, responseBody?: unknown);
 }
 /**
  * Error thrown when network request fails
@@ -282,4 +336,4 @@ declare class NetworkError extends BlindfoldError {
     constructor(message?: string);
 }
 
-export { APIError, type APIErrorResponse, AuthenticationError, Blindfold, type BlindfoldConfig, BlindfoldError, type DetectedEntity, type DetokenizeResponse, NetworkError, type TokenizeConfig, type TokenizeResponse };
+export { APIError, type APIErrorResponse, AuthenticationError, Blindfold, type BlindfoldConfig, BlindfoldError, type DetectConfig, type DetectResponse, type DetectedEntity, type DetokenizeResponse, NetworkError, type TokenizeConfig, type TokenizeResponse };

package/dist/index.d.ts

@@ -4,10 +4,14 @@
 interface BlindfoldConfig {
     /** API key for authentication */
     apiKey: string;
-    /** Base URL for the API (default: http://localhost:8000/api/public/v1) */
+    /** Base URL for the API (default: https://api.blindfold.dev/api/public/v1) */
     baseUrl?: string;
     /** Optional user ID to track who is making the request */
     userId?: string;
+    /** Maximum number of retries on transient errors (default: 2, 0 to disable) */
+    maxRetries?: number;
+    /** Initial delay in seconds before first retry (default: 0.5) */
+    retryDelay?: number;
 }
 /**
  * Configuration options for tokenization
@@ -17,12 +21,34 @@ interface TokenizeConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
+}
+/**
+ * Configuration options for detection (no text transformation)
+ */
+interface DetectConfig {
+    /** List of entities to detect */
+    entities?: string[];
+    /** Minimum confidence score for entity detection (0.0-1.0) */
+    score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
+}
+/**
+ * Response from detect endpoint
+ */
+interface DetectResponse {
+    /** List of detected entities */
+    detected_entities: DetectedEntity[];
+    /** Count of detected entities */
+    entities_count: number;
 }
 /**
  * Detected entity information
  */
 interface DetectedEntity {
-    /** Entity type (e.g., PERSON, EMAIL_ADDRESS) */
+    /** Entity type (e.g., "person", "email address", "phone number") */
     entity_type: string;
     /** Original text of the entity */
     text: string;
@@ -65,6 +91,8 @@ interface RedactConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from redact endpoint
@@ -91,6 +119,8 @@ interface MaskConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from mask endpoint
@@ -113,6 +143,8 @@ interface SynthesizeConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from synthesis endpoint
@@ -139,6 +171,8 @@ interface HashConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from hash endpoint
@@ -161,6 +195,8 @@ interface EncryptConfig {
     entities?: string[];
     /** Minimum confidence score for entity detection (0.0-1.0) */
     score_threshold?: number;
+    /** Policy name to use for detection configuration (e.g., 'gdpr_eu', 'hipaa_us', 'basic') */
+    policy?: string;
 }
 /**
  * Response from encrypt endpoint
@@ -188,11 +224,14 @@ declare class Blindfold {
     private apiKey;
     private baseUrl;
     private userId?;
+    private maxRetries;
+    private retryDelay;
     /**
      * Create a new Blindfold client
      * @param config - Configuration options
      */
     constructor(config: BlindfoldConfig);
+    private retryWait;
     /**
      * Make an authenticated request to the API
      */
@@ -204,13 +243,28 @@ declare class Blindfold {
      * @returns Promise with tokenized text and mapping
      */
     tokenize(text: string, config?: TokenizeConfig): Promise<TokenizeResponse>;
+    /**
+     * Detect PII in text without modifying it
+     *
+     * Returns only the detected entities with their types, positions,
+     * and confidence scores. The original text is not transformed.
+     *
+     * @param text - Text to analyze for PII
+     * @param config - Optional configuration (entities, score_threshold, policy)
+     * @returns Promise with detected entities
+     */
+    detect(text: string, config?: DetectConfig): Promise<DetectResponse>;
     /**
      * Detokenize text by replacing tokens with original values
+     *
+     * This method performs detokenization CLIENT-SIDE for better performance,
+     * security, and to work offline. No API call is made.
+     *
      * @param text - Tokenized text
      * @param mapping - Token mapping from tokenize response
-     * @returns Promise with original text
+     * @returns DetokenizeResponse with original text
      */
-    detokenize(text: string, mapping: Record<string, string>): Promise<DetokenizeResponse>;
+    detokenize(text: string, mapping: Record<string, string>): DetokenizeResponse;
     /**
      * Redact (permanently remove) sensitive information from text
      *
@@ -272,8 +326,8 @@ declare class AuthenticationError extends BlindfoldError {
  */
 declare class APIError extends BlindfoldError {
     statusCode: number;
-    responseBody?: any;
-    constructor(message: string, statusCode: number, responseBody?: any);
+    responseBody?: unknown;
+    constructor(message: string, statusCode: number, responseBody?: unknown);
 }
 /**
  * Error thrown when network request fails
@@ -282,4 +336,4 @@ declare class NetworkError extends BlindfoldError {
     constructor(message?: string);
 }
 
-export { APIError, type APIErrorResponse, AuthenticationError, Blindfold, type BlindfoldConfig, BlindfoldError, type DetectedEntity, type DetokenizeResponse, NetworkError, type TokenizeConfig, type TokenizeResponse };
+export { APIError, type APIErrorResponse, AuthenticationError, Blindfold, type BlindfoldConfig, BlindfoldError, type DetectConfig, type DetectResponse, type DetectedEntity, type DetokenizeResponse, NetworkError, type TokenizeConfig, type TokenizeResponse };

package/dist/index.js

@@ -34,6 +34,10 @@ var NetworkError = class _NetworkError extends BlindfoldError {
 
 // src/client.ts
 var DEFAULT_BASE_URL = "https://api.blindfold.dev/api/public/v1";
+var RETRYABLE_STATUS_CODES = /* @__PURE__ */ new Set([429, 500, 502, 503, 504]);
+function sleep(ms) {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}
 var Blindfold = class {
   /**
    * Create a new Blindfold client
@@ -43,6 +47,19 @@ var Blindfold = class {
     this.apiKey = config.apiKey;
     this.baseUrl = config.baseUrl || DEFAULT_BASE_URL;
     this.userId = config.userId;
+    this.maxRetries = config.maxRetries ?? 2;
+    this.retryDelay = config.retryDelay ?? 0.5;
+  }
+  retryWait(attempt, error) {
+    if (error && error.statusCode === 429) {
+      const body = error.responseBody;
+      if (body && typeof body.retry_after === "number") {
+        return body.retry_after * 1e3;
+      }
+    }
+    const delay = this.retryDelay * 2 ** attempt * 1e3;
+    const jitter = delay * 0.1 * Math.random();
+    return delay + jitter;
   }
   /**
    * Make an authenticated request to the API
@@ -56,43 +73,63 @@ var Blindfold = class {
     if (this.userId) {
       headers["X-Blindfold-User-Id"] = this.userId;
     }
-    try {
-      const response = await fetch(url, {
-        method,
-        headers,
-        body: body ? JSON.stringify(body) : void 0
-      });
-      if (response.status === 401 || response.status === 403) {
-        throw new AuthenticationError(
-          "Authentication failed. Please check your API key."
-        );
-      }
-      if (!response.ok) {
-        let errorMessage = `API request failed with status ${response.status}`;
-        let responseBody;
-        try {
-          responseBody = await response.json();
-          const errorData = responseBody;
-          errorMessage = errorData.detail || errorData.message || errorMessage;
-        } catch {
-          errorMessage = `${errorMessage}: ${response.statusText}`;
+    let lastError = new NetworkError("Request failed");
+    for (let attempt = 0; attempt <= this.maxRetries; attempt++) {
+      try {
+        const response = await fetch(url, {
+          method,
+          headers,
+          body: body ? JSON.stringify(body) : void 0
+        });
+        if (response.status === 401 || response.status === 403) {
+          throw new AuthenticationError("Authentication failed. Please check your API key.");
         }
-        throw new APIError(errorMessage, response.status, responseBody);
-      }
-      return await response.json();
-    } catch (error) {
-      if (error instanceof AuthenticationError || error instanceof APIError) {
-        throw error;
-      }
-      if (error instanceof TypeError && error.message.includes("fetch")) {
-        throw new NetworkError(
-          "Network request failed. Please check your connection and the API URL."
-        );
+        if (!response.ok) {
+          let errorMessage = `API request failed with status ${response.status}`;
+          let responseBody;
+          try {
+            responseBody = await response.json();
+            const errorData = responseBody;
+            errorMessage = errorData.detail || errorData.message || errorMessage;
+          } catch {
+            errorMessage = `${errorMessage}: ${response.statusText}`;
+          }
+          throw new APIError(errorMessage, response.status, responseBody);
+        }
+        return await response.json();
+      } catch (error) {
+        if (error instanceof AuthenticationError) {
+          throw error;
+        }
+        if (error instanceof APIError) {
+          if (RETRYABLE_STATUS_CODES.has(error.statusCode) && attempt < this.maxRetries) {
+            await sleep(this.retryWait(attempt, error));
+            continue;
+          }
+          throw error;
+        }
+        if (error instanceof NetworkError) {
+          lastError = error;
+          if (attempt < this.maxRetries) {
+            await sleep(this.retryWait(attempt));
+            continue;
+          }
+          throw error;
+        }
+        if (error instanceof TypeError && error.message.includes("fetch")) {
+          lastError = new NetworkError(
+            "Network request failed. Please check your connection and the API URL."
+          );
+          if (attempt < this.maxRetries) {
+            await sleep(this.retryWait(attempt));
+            continue;
+          }
+          throw lastError;
+        }
+        throw new NetworkError(error instanceof Error ? error.message : "Unknown error occurred");
       }
-      throw new NetworkError(
-        error instanceof Error ? error.message : "Unknown error occurred"
-      );
     }
+    throw lastError;
   }
   /**
    * Tokenize text by replacing sensitive information with tokens
@@ -106,17 +143,49 @@ var Blindfold = class {
       ...config
     });
   }
+  /**
+   * Detect PII in text without modifying it
+   *
+   * Returns only the detected entities with their types, positions,
+   * and confidence scores. The original text is not transformed.
+   *
+   * @param text - Text to analyze for PII
+   * @param config - Optional configuration (entities, score_threshold, policy)
+   * @returns Promise with detected entities
+   */
+  async detect(text, config) {
+    return this.request("/detect", "POST", {
+      text,
+      ...config
+    });
+  }
   /**
    * Detokenize text by replacing tokens with original values
+   *
+   * This method performs detokenization CLIENT-SIDE for better performance,
+   * security, and to work offline. No API call is made.
+   *
    * @param text - Tokenized text
    * @param mapping - Token mapping from tokenize response
-   * @returns Promise with original text
+   * @returns DetokenizeResponse with original text
    */
-  async detokenize(text, mapping) {
-    return this.request("/detokenize", "POST", {
-      text,
-      mapping
-    });
+  detokenize(text, mapping) {
+    let result = text;
+    let replacements = 0;
+    const sortedTokens = Object.keys(mapping).sort((a, b) => b.length - a.length);
+    for (const token of sortedTokens) {
+      const originalValue = mapping[token];
+      const regex = new RegExp(token.replace(/[.*+?^${}()|[\]\\]/g, "\\$&"), "g");
+      const matches = result.match(regex);
+      if (matches) {
+        result = result.replace(regex, originalValue);
+        replacements += matches.length;
+      }
+    }
+    return {
+      text: result,
+      replacements_made: replacements
+    };
   }
   /**
    * Redact (permanently remove) sensitive information from text

package/dist/index.js.map

@@ -1 +1 @@
-{"version":3,"sources":["../src/errors.ts","../src/client.ts"],"names":[],"mappings":";;;AAGO,IAAM,cAAA,GAAN,MAAM,eAAA,SAAuB,KAAA,CAAM;AAAA,EACxC,YAAY,OAAA,EAAiB;AAC3B,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,gBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,eAAA,CAAe,SAAS,CAAA;AAAA,EACtD;AACF;AAKO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,cAAA,CAAe;AAAA,EACtD,WAAA,CAAY,UAAkB,mDAAA,EAAqD;AACjF,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF;AAKO,IAAM,QAAA,GAAN,MAAM,SAAA,SAAiB,cAAA,CAAe;AAAA,EAI3C,WAAA,CAAY,OAAA,EAAiB,UAAA,EAAoB,YAAA,EAAoB;AACnE,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,UAAA;AACZ,IAAA,IAAA,CAAK,UAAA,GAAa,UAAA;AAClB,IAAA,IAAA,CAAK,YAAA,GAAe,YAAA;AACpB,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,SAAA,CAAS,SAAS,CAAA;AAAA,EAChD;AACF;AAKO,IAAM,YAAA,GAAN,MAAM,aAAA,SAAqB,cAAA,CAAe;AAAA,EAC/C,WAAA,CAAY,UAAkB,uDAAA,EAAyD;AACrF,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,aAAA,CAAa,SAAS,CAAA;AAAA,EACpD;AACF;;;AC5BA,IAAM,gBAAA,GAAmB,yCAAA;AAKlB,IAAM,YAAN,MAAgB;AAAA;AAAA;AAAA;AAAA;AAAA,EASrB,YAAY,MAAA,EAAyB;AACnC,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AACrB,IAAA,IAAA,CAAK,OAAA,GAAU,OAAO,OAAA,IAAW,gBAAA;AACjC,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AAAA,EACvB;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,OAAA,CACZ,QAAA,EACA,MAAA,EACA,IAAA,EACY;AACZ,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,QAAQ,CAAA,CAAA;AAEtC,IAAA,MAAM,OAAA,GAAkC;AAAA,MACtC,cAAA,EAAgB,kBAAA;AAAA,MAChB,aAAa,IAAA,CAAK;AAAA,KACpB;AAEA,IAAA,IAAI,KAAK,MAAA,EAAQ;AACf,MAAA,OAAA,CAAQ,qBAAqB,IAAI,IAAA,CAAK,MAAA;AAAA,IACxC;AAEA,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA;AAAA,QACA,OAAA;AAAA,QACA,IAAA,EAAM,IAAA,GAAO,IAAA,CAAK,SAAA,CAAU,IAAI,CAAA,GAAI,KAAA;AAAA,OACrC,CAAA;AAGD,MAAA,IAAI,QAAA,CAAS,MAAA,KAAW,GAAA,IAAO,QAAA,CAAS,WAAW,GAAA,EAAK;AACtD,QAAA,MAAM,IAAI,mBAAA;AAAA,UACR;AAAA,SACF;AAAA,MACF;AAGA,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,IAAI,YAAA,GAAe,CAAA,+BAAA,EAAkC,QAAA,CAAS,MAAM,CAAA,CAAA;AACpE,QAAA,IAAI,YAAA;AAEJ,QAAA,IAAI;AACF,UAAA,YAAA,GAAe,MAAM,SAAS,IAAA,EAAK;AACnC,UAAA,MAAM,SAAA,GAAY,YAAA;AAClB,UAAA,YAAA,GAAe,SAAA,CAAU,MAAA,IAAU,SAAA,CAAU,OAAA,IAAW,YAAA;AAAA,QAC1D,CAAA,CAAA,MAAQ;AAEN,UAAA,YAAA,GAAe,CAAA,EAAG,YAAY,CAAA,EAAA,EAAK,QAAA,CAAS,UAAU,CAAA,CAAA;AAAA,QACxD;AAEA,QAAA,MAAM,IAAI,QAAA,CAAS,YAAA,EAAc,QAAA,CAAS,QAAQ,YAAY,CAAA;AAAA,MAChE;AAEA,MAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,IAC9B,SAAS,KAAA,EAAO;AAEd,MAAA,IACE,KAAA,YAAiB,mBAAA,IACjB,KAAA,YAAiB,QAAA,EACjB;AACA,QAAA,MAAM,KAAA;AAAA,MACR;AAGA,MAAA,IAAI,iBAAiB,SAAA,IAAa,KAAA,CAAM,OAAA,CAAQ,QAAA,CAAS,OAAO,CAAA,EAAG;AACjE,QAAA,MAAM,IAAI,YAAA;AAAA,UACR;AAAA,SACF;AAAA,MACF;AAGA,MAAA,MAAM,IAAI,YAAA;AAAA,QACR,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,OAAA,GAAU;AAAA,OAC3C;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,QAAA,CACJ,IAAA,EACA,MAAA,EAC2B;AAC3B,IAAA,OAAO,IAAA,CAAK,OAAA,CAA0B,WAAA,EAAa,MAAA,EAAQ;AAAA,MACzD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,UAAA,CACJ,IAAA,EACA,OAAA,EAC6B;AAC7B,IAAA,OAAO,IAAA,CAAK,OAAA,CAA4B,aAAA,EAAe,MAAA,EAAQ;AAAA,MAC7D,IAAA;AAAA,MACA;AAAA,KACD,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,MAAA,CACJ,IAAA,EACA,MAAA,EACyB;AACzB,IAAA,OAAO,IAAA,CAAK,OAAA,CAAwB,SAAA,EAAW,MAAA,EAAQ;AAAA,MACrD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CACJ,IAAA,EACA,MAAA,EACuB;AACvB,IAAA,OAAO,IAAA,CAAK,OAAA,CAAsB,OAAA,EAAS,MAAA,EAAQ;AAAA,MACjD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAA,CACJ,IAAA,EACA,MAAA,EAC6B;AAC7B,IAAA,OAAO,IAAA,CAAK,OAAA,CAA4B,aAAA,EAAe,MAAA,EAAQ;AAAA,MAC7D,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CACJ,IAAA,EACA,MAAA,EACuB;AACvB,IAAA,OAAO,IAAA,CAAK,OAAA,CAAsB,OAAA,EAAS,MAAA,EAAQ;AAAA,MACjD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,OAAA,CACJ,IAAA,EACA,MAAA,EAC0B;AAC1B,IAAA,OAAO,IAAA,CAAK,OAAA,CAAyB,UAAA,EAAY,MAAA,EAAQ;AAAA,MACvD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AACF","file":"index.js","sourcesContent":["/**\n * Base error class for Blindfold SDK\n */\nexport class BlindfoldError extends Error {\n  constructor(message: string) {\n    super(message)\n    this.name = 'BlindfoldError'\n    Object.setPrototypeOf(this, BlindfoldError.prototype)\n  }\n}\n\n/**\n * Error thrown when authentication fails\n */\nexport class AuthenticationError extends BlindfoldError {\n  constructor(message: string = 'Authentication failed. Please check your API key.') {\n    super(message)\n    this.name = 'AuthenticationError'\n    Object.setPrototypeOf(this, AuthenticationError.prototype)\n  }\n}\n\n/**\n * Error thrown when API request fails\n */\nexport class APIError extends BlindfoldError {\n  statusCode: number\n  responseBody?: any\n\n  constructor(message: string, statusCode: number, responseBody?: any) {\n    super(message)\n    this.name = 'APIError'\n    this.statusCode = statusCode\n    this.responseBody = responseBody\n    Object.setPrototypeOf(this, APIError.prototype)\n  }\n}\n\n/**\n * Error thrown when network request fails\n */\nexport class NetworkError extends BlindfoldError {\n  constructor(message: string = 'Network request failed. Please check your connection.') {\n    super(message)\n    this.name = 'NetworkError'\n    Object.setPrototypeOf(this, NetworkError.prototype)\n  }\n}\n","import type {\n  BlindfoldConfig,\n  TokenizeConfig,\n  TokenizeResponse,\n  DetokenizeResponse,\n  RedactConfig,\n  RedactResponse,\n  MaskConfig,\n  MaskResponse,\n  SynthesizeConfig,\n  SynthesizeResponse,\n  HashConfig,\n  HashResponse,\n  EncryptConfig,\n  EncryptResponse,\n  APIErrorResponse,\n} from './types'\nimport { AuthenticationError, APIError, NetworkError } from './errors'\n\nconst DEFAULT_BASE_URL = 'https://api.blindfold.dev/api/public/v1'\n\n/**\n * Blindfold client for tokenization and detokenization\n */\nexport class Blindfold {\n  private apiKey: string\n  private baseUrl: string\n  private userId?: string\n\n  /**\n   * Create a new Blindfold client\n   * @param config - Configuration options\n   */\n  constructor(config: BlindfoldConfig) {\n    this.apiKey = config.apiKey\n    this.baseUrl = config.baseUrl || DEFAULT_BASE_URL\n    this.userId = config.userId\n  }\n\n  /**\n   * Make an authenticated request to the API\n   */\n  private async request<T>(\n    endpoint: string,\n    method: string,\n    body?: any\n  ): Promise<T> {\n    const url = `${this.baseUrl}${endpoint}`\n\n    const headers: Record<string, string> = {\n      'Content-Type': 'application/json',\n      'X-API-Key': this.apiKey,\n    }\n\n    if (this.userId) {\n      headers['X-Blindfold-User-Id'] = this.userId\n    }\n\n    try {\n      const response = await fetch(url, {\n        method,\n        headers,\n        body: body ? JSON.stringify(body) : undefined,\n      })\n\n      // Handle authentication errors\n      if (response.status === 401 || response.status === 403) {\n        throw new AuthenticationError(\n          'Authentication failed. Please check your API key.'\n        )\n      }\n\n      // Handle other error responses\n      if (!response.ok) {\n        let errorMessage = `API request failed with status ${response.status}`\n        let responseBody: any\n\n        try {\n          responseBody = await response.json()\n          const errorData = responseBody as APIErrorResponse\n          errorMessage = errorData.detail || errorData.message || errorMessage\n        } catch {\n          // If we can't parse the error response, use the status text\n          errorMessage = `${errorMessage}: ${response.statusText}`\n        }\n\n        throw new APIError(errorMessage, response.status, responseBody)\n      }\n\n      return (await response.json()) as T\n    } catch (error) {\n      // Re-throw our custom errors\n      if (\n        error instanceof AuthenticationError ||\n        error instanceof APIError\n      ) {\n        throw error\n      }\n\n      // Handle network errors\n      if (error instanceof TypeError && error.message.includes('fetch')) {\n        throw new NetworkError(\n          'Network request failed. Please check your connection and the API URL.'\n        )\n      }\n\n      // Handle other errors\n      throw new NetworkError(\n        error instanceof Error ? error.message : 'Unknown error occurred'\n      )\n    }\n  }\n\n  /**\n   * Tokenize text by replacing sensitive information with tokens\n   * @param text - Text to tokenize\n   * @param config - Optional configuration\n   * @returns Promise with tokenized text and mapping\n   */\n  async tokenize(\n    text: string,\n    config?: TokenizeConfig\n  ): Promise<TokenizeResponse> {\n    return this.request<TokenizeResponse>('/tokenize', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Detokenize text by replacing tokens with original values\n   * @param text - Tokenized text\n   * @param mapping - Token mapping from tokenize response\n   * @returns Promise with original text\n   */\n  async detokenize(\n    text: string,\n    mapping: Record<string, string>\n  ): Promise<DetokenizeResponse> {\n    return this.request<DetokenizeResponse>('/detokenize', 'POST', {\n      text,\n      mapping,\n    })\n  }\n\n  /**\n   * Redact (permanently remove) sensitive information from text\n   *\n   * WARNING: Redaction is irreversible - original data cannot be restored!\n   *\n   * @param text - Text to redact\n   * @param config - Optional configuration (masking_char, entities)\n   * @returns Promise with redacted text and detected entities\n   */\n  async redact(\n    text: string,\n    config?: RedactConfig\n  ): Promise<RedactResponse> {\n    return this.request<RedactResponse>('/redact', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Mask (partially hide) sensitive information from text\n   *\n   * @param text - Text to mask\n   * @param config - Optional configuration (chars_to_show, from_end, masking_char, entities)\n   * @returns Promise with masked text and detected entities\n   */\n  async mask(\n    text: string,\n    config?: MaskConfig\n  ): Promise<MaskResponse> {\n    return this.request<MaskResponse>('/mask', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Synthesize (replace real data with synthetic fake data)\n   *\n   * @param text - Text to synthesize\n   * @param config - Optional configuration (language, entities)\n   * @returns Promise with synthetic text and detected entities\n   */\n  async synthesize(\n    text: string,\n    config?: SynthesizeConfig\n  ): Promise<SynthesizeResponse> {\n    return this.request<SynthesizeResponse>('/synthesize', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Hash (replace with deterministic hash values)\n   *\n   * @param text - Text to hash\n   * @param config - Optional configuration (hash_type, hash_prefix, hash_length, entities)\n   * @returns Promise with hashed text and detected entities\n   */\n  async hash(\n    text: string,\n    config?: HashConfig\n  ): Promise<HashResponse> {\n    return this.request<HashResponse>('/hash', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Encrypt (reversibly protect) sensitive data in text using AES encryption\n   *\n   * @param text - Text to encrypt\n   * @param config - Optional configuration (encryption_key, entities)\n   * @returns Promise with encrypted text and detected entities\n   */\n  async encrypt(\n    text: string,\n    config?: EncryptConfig\n  ): Promise<EncryptResponse> {\n    return this.request<EncryptResponse>('/encrypt', 'POST', {\n      text,\n      ...config,\n    })\n  }\n}\n"]}
+{"version":3,"sources":["../src/errors.ts","../src/client.ts"],"names":[],"mappings":";;;AAGO,IAAM,cAAA,GAAN,MAAM,eAAA,SAAuB,KAAA,CAAM;AAAA,EACxC,YAAY,OAAA,EAAiB;AAC3B,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,gBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,eAAA,CAAe,SAAS,CAAA;AAAA,EACtD;AACF;AAKO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,cAAA,CAAe;AAAA,EACtD,WAAA,CAAY,UAAkB,mDAAA,EAAqD;AACjF,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF;AAKO,IAAM,QAAA,GAAN,MAAM,SAAA,SAAiB,cAAA,CAAe;AAAA,EAI3C,WAAA,CAAY,OAAA,EAAiB,UAAA,EAAoB,YAAA,EAAwB;AACvE,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,UAAA;AACZ,IAAA,IAAA,CAAK,UAAA,GAAa,UAAA;AAClB,IAAA,IAAA,CAAK,YAAA,GAAe,YAAA;AACpB,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,SAAA,CAAS,SAAS,CAAA;AAAA,EAChD;AACF;AAKO,IAAM,YAAA,GAAN,MAAM,aAAA,SAAqB,cAAA,CAAe;AAAA,EAC/C,WAAA,CAAY,UAAkB,uDAAA,EAAyD;AACrF,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,aAAA,CAAa,SAAS,CAAA;AAAA,EACpD;AACF;;;AC1BA,IAAM,gBAAA,GAAmB,yCAAA;AACzB,IAAM,sBAAA,uBAA6B,GAAA,CAAI,CAAC,KAAK,GAAA,EAAK,GAAA,EAAK,GAAA,EAAK,GAAG,CAAC,CAAA;AAEhE,SAAS,MAAM,EAAA,EAA2B;AACxC,EAAA,OAAO,IAAI,OAAA,CAAQ,CAAC,YAAY,UAAA,CAAW,OAAA,EAAS,EAAE,CAAC,CAAA;AACzD;AAKO,IAAM,YAAN,MAAgB;AAAA;AAAA;AAAA;AAAA;AAAA,EAWrB,YAAY,MAAA,EAAyB;AACnC,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AACrB,IAAA,IAAA,CAAK,OAAA,GAAU,OAAO,OAAA,IAAW,gBAAA;AACjC,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AACrB,IAAA,IAAA,CAAK,UAAA,GAAa,OAAO,UAAA,IAAc,CAAA;AACvC,IAAA,IAAA,CAAK,UAAA,GAAa,OAAO,UAAA,IAAc,GAAA;AAAA,EACzC;AAAA,EAEQ,SAAA,CAAU,SAAiB,KAAA,EAA0B;AAC3D,IAAA,IAAI,KAAA,IAAS,KAAA,CAAM,UAAA,KAAe,GAAA,EAAK;AACrC,MAAA,MAAM,OAAO,KAAA,CAAM,YAAA;AACnB,MAAA,IAAI,IAAA,IAAQ,OAAO,IAAA,CAAK,WAAA,KAAgB,QAAA,EAAU;AAChD,QAAA,OAAO,KAAK,WAAA,GAAc,GAAA;AAAA,MAC5B;AAAA,IACF;AACA,IAAA,MAAM,KAAA,GAAQ,IAAA,CAAK,UAAA,GAAc,CAAA,IAAK,OAAA,GAAW,GAAA;AACjD,IAAA,MAAM,MAAA,GAAS,KAAA,GAAQ,GAAA,GAAM,IAAA,CAAK,MAAA,EAAO;AACzC,IAAA,OAAO,KAAA,GAAQ,MAAA;AAAA,EACjB;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,OAAA,CACZ,QAAA,EACA,MAAA,EACA,IAAA,EACY;AACZ,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,QAAQ,CAAA,CAAA;AAEtC,IAAA,MAAM,OAAA,GAAkC;AAAA,MACtC,cAAA,EAAgB,kBAAA;AAAA,MAChB,aAAa,IAAA,CAAK;AAAA,KACpB;AAEA,IAAA,IAAI,KAAK,MAAA,EAAQ;AACf,MAAA,OAAA,CAAQ,qBAAqB,IAAI,IAAA,CAAK,MAAA;AAAA,IACxC;AAEA,IAAA,IAAI,SAAA,GAAmB,IAAI,YAAA,CAAa,gBAAgB,CAAA;AAExD,IAAA,KAAA,IAAS,OAAA,GAAU,CAAA,EAAG,OAAA,IAAW,IAAA,CAAK,YAAY,OAAA,EAAA,EAAW;AAC3D,MAAA,IAAI;AACF,QAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,UAChC,MAAA;AAAA,UACA,OAAA;AAAA,UACA,IAAA,EAAM,IAAA,GAAO,IAAA,CAAK,SAAA,CAAU,IAAI,CAAA,GAAI,KAAA;AAAA,SACrC,CAAA;AAGD,QAAA,IAAI,QAAA,CAAS,MAAA,KAAW,GAAA,IAAO,QAAA,CAAS,WAAW,GAAA,EAAK;AACtD,UAAA,MAAM,IAAI,oBAAoB,mDAAmD,CAAA;AAAA,QACnF;AAGA,QAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,UAAA,IAAI,YAAA,GAAe,CAAA,+BAAA,EAAkC,QAAA,CAAS,MAAM,CAAA,CAAA;AACpE,UAAA,IAAI,YAAA;AAEJ,UAAA,IAAI;AACF,YAAA,YAAA,GAAe,MAAM,SAAS,IAAA,EAAK;AACnC,YAAA,MAAM,SAAA,GAAY,YAAA;AAClB,YAAA,YAAA,GAAe,SAAA,CAAU,MAAA,IAAU,SAAA,CAAU,OAAA,IAAW,YAAA;AAAA,UAC1D,CAAA,CAAA,MAAQ;AAEN,YAAA,YAAA,GAAe,CAAA,EAAG,YAAY,CAAA,EAAA,EAAK,QAAA,CAAS,UAAU,CAAA,CAAA;AAAA,UACxD;AAEA,UAAA,MAAM,IAAI,QAAA,CAAS,YAAA,EAAc,QAAA,CAAS,QAAQ,YAAY,CAAA;AAAA,QAChE;AAEA,QAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,MAC9B,SAAS,KAAA,EAAO;AAEd,QAAA,IAAI,iBAAiB,mBAAA,EAAqB;AACxC,UAAA,MAAM,KAAA;AAAA,QACR;AAGA,QAAA,IAAI,iBAAiB,QAAA,EAAU;AAC7B,UAAA,IAAI,uBAAuB,GAAA,CAAI,KAAA,CAAM,UAAU,CAAA,IAAK,OAAA,GAAU,KAAK,UAAA,EAAY;AAC7E,YAAA,MAAM,KAAA,CAAM,IAAA,CAAK,SAAA,CAAU,OAAA,EAAS,KAAK,CAAC,CAAA;AAC1C,YAAA;AAAA,UACF;AACA,UAAA,MAAM,KAAA;AAAA,QACR;AAGA,QAAA,IAAI,iBAAiB,YAAA,EAAc;AACjC,UAAA,SAAA,GAAY,KAAA;AACZ,UAAA,IAAI,OAAA,GAAU,KAAK,UAAA,EAAY;AAC7B,YAAA,MAAM,KAAA,CAAM,IAAA,CAAK,SAAA,CAAU,OAAO,CAAC,CAAA;AACnC,YAAA;AAAA,UACF;AACA,UAAA,MAAM,KAAA;AAAA,QACR;AAGA,QAAA,IAAI,iBAAiB,SAAA,IAAa,KAAA,CAAM,OAAA,CAAQ,QAAA,CAAS,OAAO,CAAA,EAAG;AACjE,UAAA,SAAA,GAAY,IAAI,YAAA;AAAA,YACd;AAAA,WACF;AACA,UAAA,IAAI,OAAA,GAAU,KAAK,UAAA,EAAY;AAC7B,YAAA,MAAM,KAAA,CAAM,IAAA,CAAK,SAAA,CAAU,OAAO,CAAC,CAAA;AACnC,YAAA;AAAA,UACF;AACA,UAAA,MAAM,SAAA;AAAA,QACR;AAGA,QAAA,MAAM,IAAI,YAAA,CAAa,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,UAAU,wBAAwB,CAAA;AAAA,MAC1F;AAAA,IACF;AAEA,IAAA,MAAM,SAAA;AAAA,EACR;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,QAAA,CAAS,IAAA,EAAc,MAAA,EAAoD;AAC/E,IAAA,OAAO,IAAA,CAAK,OAAA,CAA0B,WAAA,EAAa,MAAA,EAAQ;AAAA,MACzD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,MAAA,CAAO,IAAA,EAAc,MAAA,EAAgD;AACzE,IAAA,OAAO,IAAA,CAAK,OAAA,CAAwB,SAAA,EAAW,MAAA,EAAQ;AAAA,MACrD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,UAAA,CAAW,MAAc,OAAA,EAAqD;AAC5E,IAAA,IAAI,MAAA,GAAS,IAAA;AACb,IAAA,IAAI,YAAA,GAAe,CAAA;AAGnB,IAAA,MAAM,YAAA,GAAe,MAAA,CAAO,IAAA,CAAK,OAAO,CAAA,CAAE,IAAA,CAAK,CAAC,CAAA,EAAG,CAAA,KAAM,CAAA,CAAE,MAAA,GAAS,CAAA,CAAE,MAAM,CAAA;AAE5E,IAAA,KAAA,MAAW,SAAS,YAAA,EAAc;AAChC,MAAA,MAAM,aAAA,GAAgB,QAAQ,KAAK,CAAA;AACnC,MAAA,MAAM,KAAA,GAAQ,IAAI,MAAA,CAAO,KAAA,CAAM,QAAQ,qBAAA,EAAuB,MAAM,GAAG,GAAG,CAAA;AAC1E,MAAA,MAAM,OAAA,GAAU,MAAA,CAAO,KAAA,CAAM,KAAK,CAAA;AAElC,MAAA,IAAI,OAAA,EAAS;AACX,QAAA,MAAA,GAAS,MAAA,CAAO,OAAA,CAAQ,KAAA,EAAO,aAAa,CAAA;AAC5C,QAAA,YAAA,IAAgB,OAAA,CAAQ,MAAA;AAAA,MAC1B;AAAA,IACF;AAEA,IAAA,OAAO;AAAA,MACL,IAAA,EAAM,MAAA;AAAA,MACN,iBAAA,EAAmB;AAAA,KACrB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,MAAA,CAAO,IAAA,EAAc,MAAA,EAAgD;AACzE,IAAA,OAAO,IAAA,CAAK,OAAA,CAAwB,SAAA,EAAW,MAAA,EAAQ;AAAA,MACrD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CAAK,IAAA,EAAc,MAAA,EAA4C;AACnE,IAAA,OAAO,IAAA,CAAK,OAAA,CAAsB,OAAA,EAAS,MAAA,EAAQ;AAAA,MACjD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAA,CAAW,IAAA,EAAc,MAAA,EAAwD;AACrF,IAAA,OAAO,IAAA,CAAK,OAAA,CAA4B,aAAA,EAAe,MAAA,EAAQ;AAAA,MAC7D,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CAAK,IAAA,EAAc,MAAA,EAA4C;AACnE,IAAA,OAAO,IAAA,CAAK,OAAA,CAAsB,OAAA,EAAS,MAAA,EAAQ;AAAA,MACjD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,OAAA,CAAQ,IAAA,EAAc,MAAA,EAAkD;AAC5E,IAAA,OAAO,IAAA,CAAK,OAAA,CAAyB,UAAA,EAAY,MAAA,EAAQ;AAAA,MACvD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AACF","file":"index.js","sourcesContent":["/**\n * Base error class for Blindfold SDK\n */\nexport class BlindfoldError extends Error {\n  constructor(message: string) {\n    super(message)\n    this.name = 'BlindfoldError'\n    Object.setPrototypeOf(this, BlindfoldError.prototype)\n  }\n}\n\n/**\n * Error thrown when authentication fails\n */\nexport class AuthenticationError extends BlindfoldError {\n  constructor(message: string = 'Authentication failed. Please check your API key.') {\n    super(message)\n    this.name = 'AuthenticationError'\n    Object.setPrototypeOf(this, AuthenticationError.prototype)\n  }\n}\n\n/**\n * Error thrown when API request fails\n */\nexport class APIError extends BlindfoldError {\n  statusCode: number\n  responseBody?: unknown\n\n  constructor(message: string, statusCode: number, responseBody?: unknown) {\n    super(message)\n    this.name = 'APIError'\n    this.statusCode = statusCode\n    this.responseBody = responseBody\n    Object.setPrototypeOf(this, APIError.prototype)\n  }\n}\n\n/**\n * Error thrown when network request fails\n */\nexport class NetworkError extends BlindfoldError {\n  constructor(message: string = 'Network request failed. Please check your connection.') {\n    super(message)\n    this.name = 'NetworkError'\n    Object.setPrototypeOf(this, NetworkError.prototype)\n  }\n}\n","import type {\n  BlindfoldConfig,\n  DetectConfig,\n  DetectResponse,\n  TokenizeConfig,\n  TokenizeResponse,\n  DetokenizeResponse,\n  RedactConfig,\n  RedactResponse,\n  MaskConfig,\n  MaskResponse,\n  SynthesizeConfig,\n  SynthesizeResponse,\n  HashConfig,\n  HashResponse,\n  EncryptConfig,\n  EncryptResponse,\n  APIErrorResponse,\n} from './types'\nimport { AuthenticationError, APIError, NetworkError } from './errors'\n\nconst DEFAULT_BASE_URL = 'https://api.blindfold.dev/api/public/v1'\nconst RETRYABLE_STATUS_CODES = new Set([429, 500, 502, 503, 504])\n\nfunction sleep(ms: number): Promise<void> {\n  return new Promise((resolve) => setTimeout(resolve, ms))\n}\n\n/**\n * Blindfold client for tokenization and detokenization\n */\nexport class Blindfold {\n  private apiKey: string\n  private baseUrl: string\n  private userId?: string\n  private maxRetries: number\n  private retryDelay: number\n\n  /**\n   * Create a new Blindfold client\n   * @param config - Configuration options\n   */\n  constructor(config: BlindfoldConfig) {\n    this.apiKey = config.apiKey\n    this.baseUrl = config.baseUrl || DEFAULT_BASE_URL\n    this.userId = config.userId\n    this.maxRetries = config.maxRetries ?? 2\n    this.retryDelay = config.retryDelay ?? 0.5\n  }\n\n  private retryWait(attempt: number, error?: APIError): number {\n    if (error && error.statusCode === 429) {\n      const body = error.responseBody as Record<string, unknown> | undefined\n      if (body && typeof body.retry_after === 'number') {\n        return body.retry_after * 1000\n      }\n    }\n    const delay = this.retryDelay * (2 ** attempt) * 1000\n    const jitter = delay * 0.1 * Math.random()\n    return delay + jitter\n  }\n\n  /**\n   * Make an authenticated request to the API\n   */\n  private async request<T>(\n    endpoint: string,\n    method: string,\n    body?: Record<string, unknown>\n  ): Promise<T> {\n    const url = `${this.baseUrl}${endpoint}`\n\n    const headers: Record<string, string> = {\n      'Content-Type': 'application/json',\n      'X-API-Key': this.apiKey,\n    }\n\n    if (this.userId) {\n      headers['X-Blindfold-User-Id'] = this.userId\n    }\n\n    let lastError: Error = new NetworkError('Request failed')\n\n    for (let attempt = 0; attempt <= this.maxRetries; attempt++) {\n      try {\n        const response = await fetch(url, {\n          method,\n          headers,\n          body: body ? JSON.stringify(body) : undefined,\n        })\n\n        // Handle authentication errors\n        if (response.status === 401 || response.status === 403) {\n          throw new AuthenticationError('Authentication failed. Please check your API key.')\n        }\n\n        // Handle other error responses\n        if (!response.ok) {\n          let errorMessage = `API request failed with status ${response.status}`\n          let responseBody: unknown\n\n          try {\n            responseBody = await response.json()\n            const errorData = responseBody as APIErrorResponse\n            errorMessage = errorData.detail || errorData.message || errorMessage\n          } catch {\n            // If we can't parse the error response, use the status text\n            errorMessage = `${errorMessage}: ${response.statusText}`\n          }\n\n          throw new APIError(errorMessage, response.status, responseBody)\n        }\n\n        return (await response.json()) as T\n      } catch (error) {\n        // Never retry auth errors\n        if (error instanceof AuthenticationError) {\n          throw error\n        }\n\n        // Retry retryable API errors\n        if (error instanceof APIError) {\n          if (RETRYABLE_STATUS_CODES.has(error.statusCode) && attempt < this.maxRetries) {\n            await sleep(this.retryWait(attempt, error))\n            continue\n          }\n          throw error\n        }\n\n        // Retry network errors\n        if (error instanceof NetworkError) {\n          lastError = error\n          if (attempt < this.maxRetries) {\n            await sleep(this.retryWait(attempt))\n            continue\n          }\n          throw error\n        }\n\n        // Handle raw fetch errors (network failures)\n        if (error instanceof TypeError && error.message.includes('fetch')) {\n          lastError = new NetworkError(\n            'Network request failed. Please check your connection and the API URL.'\n          )\n          if (attempt < this.maxRetries) {\n            await sleep(this.retryWait(attempt))\n            continue\n          }\n          throw lastError\n        }\n\n        // Non-retryable unknown errors\n        throw new NetworkError(error instanceof Error ? error.message : 'Unknown error occurred')\n      }\n    }\n\n    throw lastError\n  }\n\n  /**\n   * Tokenize text by replacing sensitive information with tokens\n   * @param text - Text to tokenize\n   * @param config - Optional configuration\n   * @returns Promise with tokenized text and mapping\n   */\n  async tokenize(text: string, config?: TokenizeConfig): Promise<TokenizeResponse> {\n    return this.request<TokenizeResponse>('/tokenize', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Detect PII in text without modifying it\n   *\n   * Returns only the detected entities with their types, positions,\n   * and confidence scores. The original text is not transformed.\n   *\n   * @param text - Text to analyze for PII\n   * @param config - Optional configuration (entities, score_threshold, policy)\n   * @returns Promise with detected entities\n   */\n  async detect(text: string, config?: DetectConfig): Promise<DetectResponse> {\n    return this.request<DetectResponse>('/detect', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Detokenize text by replacing tokens with original values\n   *\n   * This method performs detokenization CLIENT-SIDE for better performance,\n   * security, and to work offline. No API call is made.\n   *\n   * @param text - Tokenized text\n   * @param mapping - Token mapping from tokenize response\n   * @returns DetokenizeResponse with original text\n   */\n  detokenize(text: string, mapping: Record<string, string>): DetokenizeResponse {\n    let result = text\n    let replacements = 0\n\n    // Sort tokens by length (longest first) to avoid partial replacements\n    const sortedTokens = Object.keys(mapping).sort((a, b) => b.length - a.length)\n\n    for (const token of sortedTokens) {\n      const originalValue = mapping[token]\n      const regex = new RegExp(token.replace(/[.*+?^${}()|[\\]\\\\]/g, '\\\\$&'), 'g')\n      const matches = result.match(regex)\n\n      if (matches) {\n        result = result.replace(regex, originalValue)\n        replacements += matches.length\n      }\n    }\n\n    return {\n      text: result,\n      replacements_made: replacements,\n    }\n  }\n\n  /**\n   * Redact (permanently remove) sensitive information from text\n   *\n   * WARNING: Redaction is irreversible - original data cannot be restored!\n   *\n   * @param text - Text to redact\n   * @param config - Optional configuration (masking_char, entities)\n   * @returns Promise with redacted text and detected entities\n   */\n  async redact(text: string, config?: RedactConfig): Promise<RedactResponse> {\n    return this.request<RedactResponse>('/redact', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Mask (partially hide) sensitive information from text\n   *\n   * @param text - Text to mask\n   * @param config - Optional configuration (chars_to_show, from_end, masking_char, entities)\n   * @returns Promise with masked text and detected entities\n   */\n  async mask(text: string, config?: MaskConfig): Promise<MaskResponse> {\n    return this.request<MaskResponse>('/mask', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Synthesize (replace real data with synthetic fake data)\n   *\n   * @param text - Text to synthesize\n   * @param config - Optional configuration (language, entities)\n   * @returns Promise with synthetic text and detected entities\n   */\n  async synthesize(text: string, config?: SynthesizeConfig): Promise<SynthesizeResponse> {\n    return this.request<SynthesizeResponse>('/synthesize', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Hash (replace with deterministic hash values)\n   *\n   * @param text - Text to hash\n   * @param config - Optional configuration (hash_type, hash_prefix, hash_length, entities)\n   * @returns Promise with hashed text and detected entities\n   */\n  async hash(text: string, config?: HashConfig): Promise<HashResponse> {\n    return this.request<HashResponse>('/hash', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Encrypt (reversibly protect) sensitive data in text using AES encryption\n   *\n   * @param text - Text to encrypt\n   * @param config - Optional configuration (encryption_key, entities)\n   * @returns Promise with encrypted text and detected entities\n   */\n  async encrypt(text: string, config?: EncryptConfig): Promise<EncryptResponse> {\n    return this.request<EncryptResponse>('/encrypt', 'POST', {\n      text,\n      ...config,\n    })\n  }\n}\n"]}

package/dist/index.mjs

@@ -32,6 +32,10 @@ var NetworkError = class _NetworkError extends BlindfoldError {
 
 // src/client.ts
 var DEFAULT_BASE_URL = "https://api.blindfold.dev/api/public/v1";
+var RETRYABLE_STATUS_CODES = /* @__PURE__ */ new Set([429, 500, 502, 503, 504]);
+function sleep(ms) {
+  return new Promise((resolve) => setTimeout(resolve, ms));
+}
 var Blindfold = class {
   /**
    * Create a new Blindfold client
@@ -41,6 +45,19 @@ var Blindfold = class {
     this.apiKey = config.apiKey;
     this.baseUrl = config.baseUrl || DEFAULT_BASE_URL;
     this.userId = config.userId;
+    this.maxRetries = config.maxRetries ?? 2;
+    this.retryDelay = config.retryDelay ?? 0.5;
+  }
+  retryWait(attempt, error) {
+    if (error && error.statusCode === 429) {
+      const body = error.responseBody;
+      if (body && typeof body.retry_after === "number") {
+        return body.retry_after * 1e3;
+      }
+    }
+    const delay = this.retryDelay * 2 ** attempt * 1e3;
+    const jitter = delay * 0.1 * Math.random();
+    return delay + jitter;
   }
   /**
    * Make an authenticated request to the API
@@ -54,43 +71,63 @@ var Blindfold = class {
     if (this.userId) {
       headers["X-Blindfold-User-Id"] = this.userId;
     }
-    try {
-      const response = await fetch(url, {
-        method,
-        headers,
-        body: body ? JSON.stringify(body) : void 0
-      });
-      if (response.status === 401 || response.status === 403) {
-        throw new AuthenticationError(
-          "Authentication failed. Please check your API key."
-        );
-      }
-      if (!response.ok) {
-        let errorMessage = `API request failed with status ${response.status}`;
-        let responseBody;
-        try {
-          responseBody = await response.json();
-          const errorData = responseBody;
-          errorMessage = errorData.detail || errorData.message || errorMessage;
-        } catch {
-          errorMessage = `${errorMessage}: ${response.statusText}`;
+    let lastError = new NetworkError("Request failed");
+    for (let attempt = 0; attempt <= this.maxRetries; attempt++) {
+      try {
+        const response = await fetch(url, {
+          method,
+          headers,
+          body: body ? JSON.stringify(body) : void 0
+        });
+        if (response.status === 401 || response.status === 403) {
+          throw new AuthenticationError("Authentication failed. Please check your API key.");
         }
-        throw new APIError(errorMessage, response.status, responseBody);
-      }
-      return await response.json();
-    } catch (error) {
-      if (error instanceof AuthenticationError || error instanceof APIError) {
-        throw error;
-      }
-      if (error instanceof TypeError && error.message.includes("fetch")) {
-        throw new NetworkError(
-          "Network request failed. Please check your connection and the API URL."
-        );
+        if (!response.ok) {
+          let errorMessage = `API request failed with status ${response.status}`;
+          let responseBody;
+          try {
+            responseBody = await response.json();
+            const errorData = responseBody;
+            errorMessage = errorData.detail || errorData.message || errorMessage;
+          } catch {
+            errorMessage = `${errorMessage}: ${response.statusText}`;
+          }
+          throw new APIError(errorMessage, response.status, responseBody);
+        }
+        return await response.json();
+      } catch (error) {
+        if (error instanceof AuthenticationError) {
+          throw error;
+        }
+        if (error instanceof APIError) {
+          if (RETRYABLE_STATUS_CODES.has(error.statusCode) && attempt < this.maxRetries) {
+            await sleep(this.retryWait(attempt, error));
+            continue;
+          }
+          throw error;
+        }
+        if (error instanceof NetworkError) {
+          lastError = error;
+          if (attempt < this.maxRetries) {
+            await sleep(this.retryWait(attempt));
+            continue;
+          }
+          throw error;
+        }
+        if (error instanceof TypeError && error.message.includes("fetch")) {
+          lastError = new NetworkError(
+            "Network request failed. Please check your connection and the API URL."
+          );
+          if (attempt < this.maxRetries) {
+            await sleep(this.retryWait(attempt));
+            continue;
+          }
+          throw lastError;
+        }
+        throw new NetworkError(error instanceof Error ? error.message : "Unknown error occurred");
       }
-      throw new NetworkError(
-        error instanceof Error ? error.message : "Unknown error occurred"
-      );
     }
+    throw lastError;
   }
   /**
    * Tokenize text by replacing sensitive information with tokens
@@ -104,17 +141,49 @@ var Blindfold = class {
       ...config
     });
   }
+  /**
+   * Detect PII in text without modifying it
+   *
+   * Returns only the detected entities with their types, positions,
+   * and confidence scores. The original text is not transformed.
+   *
+   * @param text - Text to analyze for PII
+   * @param config - Optional configuration (entities, score_threshold, policy)
+   * @returns Promise with detected entities
+   */
+  async detect(text, config) {
+    return this.request("/detect", "POST", {
+      text,
+      ...config
+    });
+  }
   /**
    * Detokenize text by replacing tokens with original values
+   *
+   * This method performs detokenization CLIENT-SIDE for better performance,
+   * security, and to work offline. No API call is made.
+   *
    * @param text - Tokenized text
    * @param mapping - Token mapping from tokenize response
-   * @returns Promise with original text
+   * @returns DetokenizeResponse with original text
    */
-  async detokenize(text, mapping) {
-    return this.request("/detokenize", "POST", {
-      text,
-      mapping
-    });
+  detokenize(text, mapping) {
+    let result = text;
+    let replacements = 0;
+    const sortedTokens = Object.keys(mapping).sort((a, b) => b.length - a.length);
+    for (const token of sortedTokens) {
+      const originalValue = mapping[token];
+      const regex = new RegExp(token.replace(/[.*+?^${}()|[\]\\]/g, "\\$&"), "g");
+      const matches = result.match(regex);
+      if (matches) {
+        result = result.replace(regex, originalValue);
+        replacements += matches.length;
+      }
+    }
+    return {
+      text: result,
+      replacements_made: replacements
+    };
   }
   /**
    * Redact (permanently remove) sensitive information from text

package/dist/index.mjs.map

@@ -1 +1 @@
-{"version":3,"sources":["../src/errors.ts","../src/client.ts"],"names":[],"mappings":";AAGO,IAAM,cAAA,GAAN,MAAM,eAAA,SAAuB,KAAA,CAAM;AAAA,EACxC,YAAY,OAAA,EAAiB;AAC3B,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,gBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,eAAA,CAAe,SAAS,CAAA;AAAA,EACtD;AACF;AAKO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,cAAA,CAAe;AAAA,EACtD,WAAA,CAAY,UAAkB,mDAAA,EAAqD;AACjF,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF;AAKO,IAAM,QAAA,GAAN,MAAM,SAAA,SAAiB,cAAA,CAAe;AAAA,EAI3C,WAAA,CAAY,OAAA,EAAiB,UAAA,EAAoB,YAAA,EAAoB;AACnE,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,UAAA;AACZ,IAAA,IAAA,CAAK,UAAA,GAAa,UAAA;AAClB,IAAA,IAAA,CAAK,YAAA,GAAe,YAAA;AACpB,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,SAAA,CAAS,SAAS,CAAA;AAAA,EAChD;AACF;AAKO,IAAM,YAAA,GAAN,MAAM,aAAA,SAAqB,cAAA,CAAe;AAAA,EAC/C,WAAA,CAAY,UAAkB,uDAAA,EAAyD;AACrF,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,aAAA,CAAa,SAAS,CAAA;AAAA,EACpD;AACF;;;AC5BA,IAAM,gBAAA,GAAmB,yCAAA;AAKlB,IAAM,YAAN,MAAgB;AAAA;AAAA;AAAA;AAAA;AAAA,EASrB,YAAY,MAAA,EAAyB;AACnC,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AACrB,IAAA,IAAA,CAAK,OAAA,GAAU,OAAO,OAAA,IAAW,gBAAA;AACjC,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AAAA,EACvB;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,OAAA,CACZ,QAAA,EACA,MAAA,EACA,IAAA,EACY;AACZ,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,QAAQ,CAAA,CAAA;AAEtC,IAAA,MAAM,OAAA,GAAkC;AAAA,MACtC,cAAA,EAAgB,kBAAA;AAAA,MAChB,aAAa,IAAA,CAAK;AAAA,KACpB;AAEA,IAAA,IAAI,KAAK,MAAA,EAAQ;AACf,MAAA,OAAA,CAAQ,qBAAqB,IAAI,IAAA,CAAK,MAAA;AAAA,IACxC;AAEA,IAAA,IAAI;AACF,MAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,QAChC,MAAA;AAAA,QACA,OAAA;AAAA,QACA,IAAA,EAAM,IAAA,GAAO,IAAA,CAAK,SAAA,CAAU,IAAI,CAAA,GAAI,KAAA;AAAA,OACrC,CAAA;AAGD,MAAA,IAAI,QAAA,CAAS,MAAA,KAAW,GAAA,IAAO,QAAA,CAAS,WAAW,GAAA,EAAK;AACtD,QAAA,MAAM,IAAI,mBAAA;AAAA,UACR;AAAA,SACF;AAAA,MACF;AAGA,MAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,QAAA,IAAI,YAAA,GAAe,CAAA,+BAAA,EAAkC,QAAA,CAAS,MAAM,CAAA,CAAA;AACpE,QAAA,IAAI,YAAA;AAEJ,QAAA,IAAI;AACF,UAAA,YAAA,GAAe,MAAM,SAAS,IAAA,EAAK;AACnC,UAAA,MAAM,SAAA,GAAY,YAAA;AAClB,UAAA,YAAA,GAAe,SAAA,CAAU,MAAA,IAAU,SAAA,CAAU,OAAA,IAAW,YAAA;AAAA,QAC1D,CAAA,CAAA,MAAQ;AAEN,UAAA,YAAA,GAAe,CAAA,EAAG,YAAY,CAAA,EAAA,EAAK,QAAA,CAAS,UAAU,CAAA,CAAA;AAAA,QACxD;AAEA,QAAA,MAAM,IAAI,QAAA,CAAS,YAAA,EAAc,QAAA,CAAS,QAAQ,YAAY,CAAA;AAAA,MAChE;AAEA,MAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,IAC9B,SAAS,KAAA,EAAO;AAEd,MAAA,IACE,KAAA,YAAiB,mBAAA,IACjB,KAAA,YAAiB,QAAA,EACjB;AACA,QAAA,MAAM,KAAA;AAAA,MACR;AAGA,MAAA,IAAI,iBAAiB,SAAA,IAAa,KAAA,CAAM,OAAA,CAAQ,QAAA,CAAS,OAAO,CAAA,EAAG;AACjE,QAAA,MAAM,IAAI,YAAA;AAAA,UACR;AAAA,SACF;AAAA,MACF;AAGA,MAAA,MAAM,IAAI,YAAA;AAAA,QACR,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,OAAA,GAAU;AAAA,OAC3C;AAAA,IACF;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,QAAA,CACJ,IAAA,EACA,MAAA,EAC2B;AAC3B,IAAA,OAAO,IAAA,CAAK,OAAA,CAA0B,WAAA,EAAa,MAAA,EAAQ;AAAA,MACzD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,UAAA,CACJ,IAAA,EACA,OAAA,EAC6B;AAC7B,IAAA,OAAO,IAAA,CAAK,OAAA,CAA4B,aAAA,EAAe,MAAA,EAAQ;AAAA,MAC7D,IAAA;AAAA,MACA;AAAA,KACD,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,MAAA,CACJ,IAAA,EACA,MAAA,EACyB;AACzB,IAAA,OAAO,IAAA,CAAK,OAAA,CAAwB,SAAA,EAAW,MAAA,EAAQ;AAAA,MACrD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CACJ,IAAA,EACA,MAAA,EACuB;AACvB,IAAA,OAAO,IAAA,CAAK,OAAA,CAAsB,OAAA,EAAS,MAAA,EAAQ;AAAA,MACjD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAA,CACJ,IAAA,EACA,MAAA,EAC6B;AAC7B,IAAA,OAAO,IAAA,CAAK,OAAA,CAA4B,aAAA,EAAe,MAAA,EAAQ;AAAA,MAC7D,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CACJ,IAAA,EACA,MAAA,EACuB;AACvB,IAAA,OAAO,IAAA,CAAK,OAAA,CAAsB,OAAA,EAAS,MAAA,EAAQ;AAAA,MACjD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,OAAA,CACJ,IAAA,EACA,MAAA,EAC0B;AAC1B,IAAA,OAAO,IAAA,CAAK,OAAA,CAAyB,UAAA,EAAY,MAAA,EAAQ;AAAA,MACvD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AACF","file":"index.mjs","sourcesContent":["/**\n * Base error class for Blindfold SDK\n */\nexport class BlindfoldError extends Error {\n  constructor(message: string) {\n    super(message)\n    this.name = 'BlindfoldError'\n    Object.setPrototypeOf(this, BlindfoldError.prototype)\n  }\n}\n\n/**\n * Error thrown when authentication fails\n */\nexport class AuthenticationError extends BlindfoldError {\n  constructor(message: string = 'Authentication failed. Please check your API key.') {\n    super(message)\n    this.name = 'AuthenticationError'\n    Object.setPrototypeOf(this, AuthenticationError.prototype)\n  }\n}\n\n/**\n * Error thrown when API request fails\n */\nexport class APIError extends BlindfoldError {\n  statusCode: number\n  responseBody?: any\n\n  constructor(message: string, statusCode: number, responseBody?: any) {\n    super(message)\n    this.name = 'APIError'\n    this.statusCode = statusCode\n    this.responseBody = responseBody\n    Object.setPrototypeOf(this, APIError.prototype)\n  }\n}\n\n/**\n * Error thrown when network request fails\n */\nexport class NetworkError extends BlindfoldError {\n  constructor(message: string = 'Network request failed. Please check your connection.') {\n    super(message)\n    this.name = 'NetworkError'\n    Object.setPrototypeOf(this, NetworkError.prototype)\n  }\n}\n","import type {\n  BlindfoldConfig,\n  TokenizeConfig,\n  TokenizeResponse,\n  DetokenizeResponse,\n  RedactConfig,\n  RedactResponse,\n  MaskConfig,\n  MaskResponse,\n  SynthesizeConfig,\n  SynthesizeResponse,\n  HashConfig,\n  HashResponse,\n  EncryptConfig,\n  EncryptResponse,\n  APIErrorResponse,\n} from './types'\nimport { AuthenticationError, APIError, NetworkError } from './errors'\n\nconst DEFAULT_BASE_URL = 'https://api.blindfold.dev/api/public/v1'\n\n/**\n * Blindfold client for tokenization and detokenization\n */\nexport class Blindfold {\n  private apiKey: string\n  private baseUrl: string\n  private userId?: string\n\n  /**\n   * Create a new Blindfold client\n   * @param config - Configuration options\n   */\n  constructor(config: BlindfoldConfig) {\n    this.apiKey = config.apiKey\n    this.baseUrl = config.baseUrl || DEFAULT_BASE_URL\n    this.userId = config.userId\n  }\n\n  /**\n   * Make an authenticated request to the API\n   */\n  private async request<T>(\n    endpoint: string,\n    method: string,\n    body?: any\n  ): Promise<T> {\n    const url = `${this.baseUrl}${endpoint}`\n\n    const headers: Record<string, string> = {\n      'Content-Type': 'application/json',\n      'X-API-Key': this.apiKey,\n    }\n\n    if (this.userId) {\n      headers['X-Blindfold-User-Id'] = this.userId\n    }\n\n    try {\n      const response = await fetch(url, {\n        method,\n        headers,\n        body: body ? JSON.stringify(body) : undefined,\n      })\n\n      // Handle authentication errors\n      if (response.status === 401 || response.status === 403) {\n        throw new AuthenticationError(\n          'Authentication failed. Please check your API key.'\n        )\n      }\n\n      // Handle other error responses\n      if (!response.ok) {\n        let errorMessage = `API request failed with status ${response.status}`\n        let responseBody: any\n\n        try {\n          responseBody = await response.json()\n          const errorData = responseBody as APIErrorResponse\n          errorMessage = errorData.detail || errorData.message || errorMessage\n        } catch {\n          // If we can't parse the error response, use the status text\n          errorMessage = `${errorMessage}: ${response.statusText}`\n        }\n\n        throw new APIError(errorMessage, response.status, responseBody)\n      }\n\n      return (await response.json()) as T\n    } catch (error) {\n      // Re-throw our custom errors\n      if (\n        error instanceof AuthenticationError ||\n        error instanceof APIError\n      ) {\n        throw error\n      }\n\n      // Handle network errors\n      if (error instanceof TypeError && error.message.includes('fetch')) {\n        throw new NetworkError(\n          'Network request failed. Please check your connection and the API URL.'\n        )\n      }\n\n      // Handle other errors\n      throw new NetworkError(\n        error instanceof Error ? error.message : 'Unknown error occurred'\n      )\n    }\n  }\n\n  /**\n   * Tokenize text by replacing sensitive information with tokens\n   * @param text - Text to tokenize\n   * @param config - Optional configuration\n   * @returns Promise with tokenized text and mapping\n   */\n  async tokenize(\n    text: string,\n    config?: TokenizeConfig\n  ): Promise<TokenizeResponse> {\n    return this.request<TokenizeResponse>('/tokenize', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Detokenize text by replacing tokens with original values\n   * @param text - Tokenized text\n   * @param mapping - Token mapping from tokenize response\n   * @returns Promise with original text\n   */\n  async detokenize(\n    text: string,\n    mapping: Record<string, string>\n  ): Promise<DetokenizeResponse> {\n    return this.request<DetokenizeResponse>('/detokenize', 'POST', {\n      text,\n      mapping,\n    })\n  }\n\n  /**\n   * Redact (permanently remove) sensitive information from text\n   *\n   * WARNING: Redaction is irreversible - original data cannot be restored!\n   *\n   * @param text - Text to redact\n   * @param config - Optional configuration (masking_char, entities)\n   * @returns Promise with redacted text and detected entities\n   */\n  async redact(\n    text: string,\n    config?: RedactConfig\n  ): Promise<RedactResponse> {\n    return this.request<RedactResponse>('/redact', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Mask (partially hide) sensitive information from text\n   *\n   * @param text - Text to mask\n   * @param config - Optional configuration (chars_to_show, from_end, masking_char, entities)\n   * @returns Promise with masked text and detected entities\n   */\n  async mask(\n    text: string,\n    config?: MaskConfig\n  ): Promise<MaskResponse> {\n    return this.request<MaskResponse>('/mask', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Synthesize (replace real data with synthetic fake data)\n   *\n   * @param text - Text to synthesize\n   * @param config - Optional configuration (language, entities)\n   * @returns Promise with synthetic text and detected entities\n   */\n  async synthesize(\n    text: string,\n    config?: SynthesizeConfig\n  ): Promise<SynthesizeResponse> {\n    return this.request<SynthesizeResponse>('/synthesize', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Hash (replace with deterministic hash values)\n   *\n   * @param text - Text to hash\n   * @param config - Optional configuration (hash_type, hash_prefix, hash_length, entities)\n   * @returns Promise with hashed text and detected entities\n   */\n  async hash(\n    text: string,\n    config?: HashConfig\n  ): Promise<HashResponse> {\n    return this.request<HashResponse>('/hash', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Encrypt (reversibly protect) sensitive data in text using AES encryption\n   *\n   * @param text - Text to encrypt\n   * @param config - Optional configuration (encryption_key, entities)\n   * @returns Promise with encrypted text and detected entities\n   */\n  async encrypt(\n    text: string,\n    config?: EncryptConfig\n  ): Promise<EncryptResponse> {\n    return this.request<EncryptResponse>('/encrypt', 'POST', {\n      text,\n      ...config,\n    })\n  }\n}\n"]}
+{"version":3,"sources":["../src/errors.ts","../src/client.ts"],"names":[],"mappings":";AAGO,IAAM,cAAA,GAAN,MAAM,eAAA,SAAuB,KAAA,CAAM;AAAA,EACxC,YAAY,OAAA,EAAiB;AAC3B,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,gBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,eAAA,CAAe,SAAS,CAAA;AAAA,EACtD;AACF;AAKO,IAAM,mBAAA,GAAN,MAAM,oBAAA,SAA4B,cAAA,CAAe;AAAA,EACtD,WAAA,CAAY,UAAkB,mDAAA,EAAqD;AACjF,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,qBAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,oBAAA,CAAoB,SAAS,CAAA;AAAA,EAC3D;AACF;AAKO,IAAM,QAAA,GAAN,MAAM,SAAA,SAAiB,cAAA,CAAe;AAAA,EAI3C,WAAA,CAAY,OAAA,EAAiB,UAAA,EAAoB,YAAA,EAAwB;AACvE,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,UAAA;AACZ,IAAA,IAAA,CAAK,UAAA,GAAa,UAAA;AAClB,IAAA,IAAA,CAAK,YAAA,GAAe,YAAA;AACpB,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,SAAA,CAAS,SAAS,CAAA;AAAA,EAChD;AACF;AAKO,IAAM,YAAA,GAAN,MAAM,aAAA,SAAqB,cAAA,CAAe;AAAA,EAC/C,WAAA,CAAY,UAAkB,uDAAA,EAAyD;AACrF,IAAA,KAAA,CAAM,OAAO,CAAA;AACb,IAAA,IAAA,CAAK,IAAA,GAAO,cAAA;AACZ,IAAA,MAAA,CAAO,cAAA,CAAe,IAAA,EAAM,aAAA,CAAa,SAAS,CAAA;AAAA,EACpD;AACF;;;AC1BA,IAAM,gBAAA,GAAmB,yCAAA;AACzB,IAAM,sBAAA,uBAA6B,GAAA,CAAI,CAAC,KAAK,GAAA,EAAK,GAAA,EAAK,GAAA,EAAK,GAAG,CAAC,CAAA;AAEhE,SAAS,MAAM,EAAA,EAA2B;AACxC,EAAA,OAAO,IAAI,OAAA,CAAQ,CAAC,YAAY,UAAA,CAAW,OAAA,EAAS,EAAE,CAAC,CAAA;AACzD;AAKO,IAAM,YAAN,MAAgB;AAAA;AAAA;AAAA;AAAA;AAAA,EAWrB,YAAY,MAAA,EAAyB;AACnC,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AACrB,IAAA,IAAA,CAAK,OAAA,GAAU,OAAO,OAAA,IAAW,gBAAA;AACjC,IAAA,IAAA,CAAK,SAAS,MAAA,CAAO,MAAA;AACrB,IAAA,IAAA,CAAK,UAAA,GAAa,OAAO,UAAA,IAAc,CAAA;AACvC,IAAA,IAAA,CAAK,UAAA,GAAa,OAAO,UAAA,IAAc,GAAA;AAAA,EACzC;AAAA,EAEQ,SAAA,CAAU,SAAiB,KAAA,EAA0B;AAC3D,IAAA,IAAI,KAAA,IAAS,KAAA,CAAM,UAAA,KAAe,GAAA,EAAK;AACrC,MAAA,MAAM,OAAO,KAAA,CAAM,YAAA;AACnB,MAAA,IAAI,IAAA,IAAQ,OAAO,IAAA,CAAK,WAAA,KAAgB,QAAA,EAAU;AAChD,QAAA,OAAO,KAAK,WAAA,GAAc,GAAA;AAAA,MAC5B;AAAA,IACF;AACA,IAAA,MAAM,KAAA,GAAQ,IAAA,CAAK,UAAA,GAAc,CAAA,IAAK,OAAA,GAAW,GAAA;AACjD,IAAA,MAAM,MAAA,GAAS,KAAA,GAAQ,GAAA,GAAM,IAAA,CAAK,MAAA,EAAO;AACzC,IAAA,OAAO,KAAA,GAAQ,MAAA;AAAA,EACjB;AAAA;AAAA;AAAA;AAAA,EAKA,MAAc,OAAA,CACZ,QAAA,EACA,MAAA,EACA,IAAA,EACY;AACZ,IAAA,MAAM,GAAA,GAAM,CAAA,EAAG,IAAA,CAAK,OAAO,GAAG,QAAQ,CAAA,CAAA;AAEtC,IAAA,MAAM,OAAA,GAAkC;AAAA,MACtC,cAAA,EAAgB,kBAAA;AAAA,MAChB,aAAa,IAAA,CAAK;AAAA,KACpB;AAEA,IAAA,IAAI,KAAK,MAAA,EAAQ;AACf,MAAA,OAAA,CAAQ,qBAAqB,IAAI,IAAA,CAAK,MAAA;AAAA,IACxC;AAEA,IAAA,IAAI,SAAA,GAAmB,IAAI,YAAA,CAAa,gBAAgB,CAAA;AAExD,IAAA,KAAA,IAAS,OAAA,GAAU,CAAA,EAAG,OAAA,IAAW,IAAA,CAAK,YAAY,OAAA,EAAA,EAAW;AAC3D,MAAA,IAAI;AACF,QAAA,MAAM,QAAA,GAAW,MAAM,KAAA,CAAM,GAAA,EAAK;AAAA,UAChC,MAAA;AAAA,UACA,OAAA;AAAA,UACA,IAAA,EAAM,IAAA,GAAO,IAAA,CAAK,SAAA,CAAU,IAAI,CAAA,GAAI,KAAA;AAAA,SACrC,CAAA;AAGD,QAAA,IAAI,QAAA,CAAS,MAAA,KAAW,GAAA,IAAO,QAAA,CAAS,WAAW,GAAA,EAAK;AACtD,UAAA,MAAM,IAAI,oBAAoB,mDAAmD,CAAA;AAAA,QACnF;AAGA,QAAA,IAAI,CAAC,SAAS,EAAA,EAAI;AAChB,UAAA,IAAI,YAAA,GAAe,CAAA,+BAAA,EAAkC,QAAA,CAAS,MAAM,CAAA,CAAA;AACpE,UAAA,IAAI,YAAA;AAEJ,UAAA,IAAI;AACF,YAAA,YAAA,GAAe,MAAM,SAAS,IAAA,EAAK;AACnC,YAAA,MAAM,SAAA,GAAY,YAAA;AAClB,YAAA,YAAA,GAAe,SAAA,CAAU,MAAA,IAAU,SAAA,CAAU,OAAA,IAAW,YAAA;AAAA,UAC1D,CAAA,CAAA,MAAQ;AAEN,YAAA,YAAA,GAAe,CAAA,EAAG,YAAY,CAAA,EAAA,EAAK,QAAA,CAAS,UAAU,CAAA,CAAA;AAAA,UACxD;AAEA,UAAA,MAAM,IAAI,QAAA,CAAS,YAAA,EAAc,QAAA,CAAS,QAAQ,YAAY,CAAA;AAAA,QAChE;AAEA,QAAA,OAAQ,MAAM,SAAS,IAAA,EAAK;AAAA,MAC9B,SAAS,KAAA,EAAO;AAEd,QAAA,IAAI,iBAAiB,mBAAA,EAAqB;AACxC,UAAA,MAAM,KAAA;AAAA,QACR;AAGA,QAAA,IAAI,iBAAiB,QAAA,EAAU;AAC7B,UAAA,IAAI,uBAAuB,GAAA,CAAI,KAAA,CAAM,UAAU,CAAA,IAAK,OAAA,GAAU,KAAK,UAAA,EAAY;AAC7E,YAAA,MAAM,KAAA,CAAM,IAAA,CAAK,SAAA,CAAU,OAAA,EAAS,KAAK,CAAC,CAAA;AAC1C,YAAA;AAAA,UACF;AACA,UAAA,MAAM,KAAA;AAAA,QACR;AAGA,QAAA,IAAI,iBAAiB,YAAA,EAAc;AACjC,UAAA,SAAA,GAAY,KAAA;AACZ,UAAA,IAAI,OAAA,GAAU,KAAK,UAAA,EAAY;AAC7B,YAAA,MAAM,KAAA,CAAM,IAAA,CAAK,SAAA,CAAU,OAAO,CAAC,CAAA;AACnC,YAAA;AAAA,UACF;AACA,UAAA,MAAM,KAAA;AAAA,QACR;AAGA,QAAA,IAAI,iBAAiB,SAAA,IAAa,KAAA,CAAM,OAAA,CAAQ,QAAA,CAAS,OAAO,CAAA,EAAG;AACjE,UAAA,SAAA,GAAY,IAAI,YAAA;AAAA,YACd;AAAA,WACF;AACA,UAAA,IAAI,OAAA,GAAU,KAAK,UAAA,EAAY;AAC7B,YAAA,MAAM,KAAA,CAAM,IAAA,CAAK,SAAA,CAAU,OAAO,CAAC,CAAA;AACnC,YAAA;AAAA,UACF;AACA,UAAA,MAAM,SAAA;AAAA,QACR;AAGA,QAAA,MAAM,IAAI,YAAA,CAAa,KAAA,YAAiB,KAAA,GAAQ,KAAA,CAAM,UAAU,wBAAwB,CAAA;AAAA,MAC1F;AAAA,IACF;AAEA,IAAA,MAAM,SAAA;AAAA,EACR;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAM,QAAA,CAAS,IAAA,EAAc,MAAA,EAAoD;AAC/E,IAAA,OAAO,IAAA,CAAK,OAAA,CAA0B,WAAA,EAAa,MAAA,EAAQ;AAAA,MACzD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,MAAM,MAAA,CAAO,IAAA,EAAc,MAAA,EAAgD;AACzE,IAAA,OAAO,IAAA,CAAK,OAAA,CAAwB,SAAA,EAAW,MAAA,EAAQ;AAAA,MACrD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAYA,UAAA,CAAW,MAAc,OAAA,EAAqD;AAC5E,IAAA,IAAI,MAAA,GAAS,IAAA;AACb,IAAA,IAAI,YAAA,GAAe,CAAA;AAGnB,IAAA,MAAM,YAAA,GAAe,MAAA,CAAO,IAAA,CAAK,OAAO,CAAA,CAAE,IAAA,CAAK,CAAC,CAAA,EAAG,CAAA,KAAM,CAAA,CAAE,MAAA,GAAS,CAAA,CAAE,MAAM,CAAA;AAE5E,IAAA,KAAA,MAAW,SAAS,YAAA,EAAc;AAChC,MAAA,MAAM,aAAA,GAAgB,QAAQ,KAAK,CAAA;AACnC,MAAA,MAAM,KAAA,GAAQ,IAAI,MAAA,CAAO,KAAA,CAAM,QAAQ,qBAAA,EAAuB,MAAM,GAAG,GAAG,CAAA;AAC1E,MAAA,MAAM,OAAA,GAAU,MAAA,CAAO,KAAA,CAAM,KAAK,CAAA;AAElC,MAAA,IAAI,OAAA,EAAS;AACX,QAAA,MAAA,GAAS,MAAA,CAAO,OAAA,CAAQ,KAAA,EAAO,aAAa,CAAA;AAC5C,QAAA,YAAA,IAAgB,OAAA,CAAQ,MAAA;AAAA,MAC1B;AAAA,IACF;AAEA,IAAA,OAAO;AAAA,MACL,IAAA,EAAM,MAAA;AAAA,MACN,iBAAA,EAAmB;AAAA,KACrB;AAAA,EACF;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAWA,MAAM,MAAA,CAAO,IAAA,EAAc,MAAA,EAAgD;AACzE,IAAA,OAAO,IAAA,CAAK,OAAA,CAAwB,SAAA,EAAW,MAAA,EAAQ;AAAA,MACrD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CAAK,IAAA,EAAc,MAAA,EAA4C;AACnE,IAAA,OAAO,IAAA,CAAK,OAAA,CAAsB,OAAA,EAAS,MAAA,EAAQ;AAAA,MACjD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,UAAA,CAAW,IAAA,EAAc,MAAA,EAAwD;AACrF,IAAA,OAAO,IAAA,CAAK,OAAA,CAA4B,aAAA,EAAe,MAAA,EAAQ;AAAA,MAC7D,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,IAAA,CAAK,IAAA,EAAc,MAAA,EAA4C;AACnE,IAAA,OAAO,IAAA,CAAK,OAAA,CAAsB,OAAA,EAAS,MAAA,EAAQ;AAAA,MACjD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EASA,MAAM,OAAA,CAAQ,IAAA,EAAc,MAAA,EAAkD;AAC5E,IAAA,OAAO,IAAA,CAAK,OAAA,CAAyB,UAAA,EAAY,MAAA,EAAQ;AAAA,MACvD,IAAA;AAAA,MACA,GAAG;AAAA,KACJ,CAAA;AAAA,EACH;AACF","file":"index.mjs","sourcesContent":["/**\n * Base error class for Blindfold SDK\n */\nexport class BlindfoldError extends Error {\n  constructor(message: string) {\n    super(message)\n    this.name = 'BlindfoldError'\n    Object.setPrototypeOf(this, BlindfoldError.prototype)\n  }\n}\n\n/**\n * Error thrown when authentication fails\n */\nexport class AuthenticationError extends BlindfoldError {\n  constructor(message: string = 'Authentication failed. Please check your API key.') {\n    super(message)\n    this.name = 'AuthenticationError'\n    Object.setPrototypeOf(this, AuthenticationError.prototype)\n  }\n}\n\n/**\n * Error thrown when API request fails\n */\nexport class APIError extends BlindfoldError {\n  statusCode: number\n  responseBody?: unknown\n\n  constructor(message: string, statusCode: number, responseBody?: unknown) {\n    super(message)\n    this.name = 'APIError'\n    this.statusCode = statusCode\n    this.responseBody = responseBody\n    Object.setPrototypeOf(this, APIError.prototype)\n  }\n}\n\n/**\n * Error thrown when network request fails\n */\nexport class NetworkError extends BlindfoldError {\n  constructor(message: string = 'Network request failed. Please check your connection.') {\n    super(message)\n    this.name = 'NetworkError'\n    Object.setPrototypeOf(this, NetworkError.prototype)\n  }\n}\n","import type {\n  BlindfoldConfig,\n  DetectConfig,\n  DetectResponse,\n  TokenizeConfig,\n  TokenizeResponse,\n  DetokenizeResponse,\n  RedactConfig,\n  RedactResponse,\n  MaskConfig,\n  MaskResponse,\n  SynthesizeConfig,\n  SynthesizeResponse,\n  HashConfig,\n  HashResponse,\n  EncryptConfig,\n  EncryptResponse,\n  APIErrorResponse,\n} from './types'\nimport { AuthenticationError, APIError, NetworkError } from './errors'\n\nconst DEFAULT_BASE_URL = 'https://api.blindfold.dev/api/public/v1'\nconst RETRYABLE_STATUS_CODES = new Set([429, 500, 502, 503, 504])\n\nfunction sleep(ms: number): Promise<void> {\n  return new Promise((resolve) => setTimeout(resolve, ms))\n}\n\n/**\n * Blindfold client for tokenization and detokenization\n */\nexport class Blindfold {\n  private apiKey: string\n  private baseUrl: string\n  private userId?: string\n  private maxRetries: number\n  private retryDelay: number\n\n  /**\n   * Create a new Blindfold client\n   * @param config - Configuration options\n   */\n  constructor(config: BlindfoldConfig) {\n    this.apiKey = config.apiKey\n    this.baseUrl = config.baseUrl || DEFAULT_BASE_URL\n    this.userId = config.userId\n    this.maxRetries = config.maxRetries ?? 2\n    this.retryDelay = config.retryDelay ?? 0.5\n  }\n\n  private retryWait(attempt: number, error?: APIError): number {\n    if (error && error.statusCode === 429) {\n      const body = error.responseBody as Record<string, unknown> | undefined\n      if (body && typeof body.retry_after === 'number') {\n        return body.retry_after * 1000\n      }\n    }\n    const delay = this.retryDelay * (2 ** attempt) * 1000\n    const jitter = delay * 0.1 * Math.random()\n    return delay + jitter\n  }\n\n  /**\n   * Make an authenticated request to the API\n   */\n  private async request<T>(\n    endpoint: string,\n    method: string,\n    body?: Record<string, unknown>\n  ): Promise<T> {\n    const url = `${this.baseUrl}${endpoint}`\n\n    const headers: Record<string, string> = {\n      'Content-Type': 'application/json',\n      'X-API-Key': this.apiKey,\n    }\n\n    if (this.userId) {\n      headers['X-Blindfold-User-Id'] = this.userId\n    }\n\n    let lastError: Error = new NetworkError('Request failed')\n\n    for (let attempt = 0; attempt <= this.maxRetries; attempt++) {\n      try {\n        const response = await fetch(url, {\n          method,\n          headers,\n          body: body ? JSON.stringify(body) : undefined,\n        })\n\n        // Handle authentication errors\n        if (response.status === 401 || response.status === 403) {\n          throw new AuthenticationError('Authentication failed. Please check your API key.')\n        }\n\n        // Handle other error responses\n        if (!response.ok) {\n          let errorMessage = `API request failed with status ${response.status}`\n          let responseBody: unknown\n\n          try {\n            responseBody = await response.json()\n            const errorData = responseBody as APIErrorResponse\n            errorMessage = errorData.detail || errorData.message || errorMessage\n          } catch {\n            // If we can't parse the error response, use the status text\n            errorMessage = `${errorMessage}: ${response.statusText}`\n          }\n\n          throw new APIError(errorMessage, response.status, responseBody)\n        }\n\n        return (await response.json()) as T\n      } catch (error) {\n        // Never retry auth errors\n        if (error instanceof AuthenticationError) {\n          throw error\n        }\n\n        // Retry retryable API errors\n        if (error instanceof APIError) {\n          if (RETRYABLE_STATUS_CODES.has(error.statusCode) && attempt < this.maxRetries) {\n            await sleep(this.retryWait(attempt, error))\n            continue\n          }\n          throw error\n        }\n\n        // Retry network errors\n        if (error instanceof NetworkError) {\n          lastError = error\n          if (attempt < this.maxRetries) {\n            await sleep(this.retryWait(attempt))\n            continue\n          }\n          throw error\n        }\n\n        // Handle raw fetch errors (network failures)\n        if (error instanceof TypeError && error.message.includes('fetch')) {\n          lastError = new NetworkError(\n            'Network request failed. Please check your connection and the API URL.'\n          )\n          if (attempt < this.maxRetries) {\n            await sleep(this.retryWait(attempt))\n            continue\n          }\n          throw lastError\n        }\n\n        // Non-retryable unknown errors\n        throw new NetworkError(error instanceof Error ? error.message : 'Unknown error occurred')\n      }\n    }\n\n    throw lastError\n  }\n\n  /**\n   * Tokenize text by replacing sensitive information with tokens\n   * @param text - Text to tokenize\n   * @param config - Optional configuration\n   * @returns Promise with tokenized text and mapping\n   */\n  async tokenize(text: string, config?: TokenizeConfig): Promise<TokenizeResponse> {\n    return this.request<TokenizeResponse>('/tokenize', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Detect PII in text without modifying it\n   *\n   * Returns only the detected entities with their types, positions,\n   * and confidence scores. The original text is not transformed.\n   *\n   * @param text - Text to analyze for PII\n   * @param config - Optional configuration (entities, score_threshold, policy)\n   * @returns Promise with detected entities\n   */\n  async detect(text: string, config?: DetectConfig): Promise<DetectResponse> {\n    return this.request<DetectResponse>('/detect', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Detokenize text by replacing tokens with original values\n   *\n   * This method performs detokenization CLIENT-SIDE for better performance,\n   * security, and to work offline. No API call is made.\n   *\n   * @param text - Tokenized text\n   * @param mapping - Token mapping from tokenize response\n   * @returns DetokenizeResponse with original text\n   */\n  detokenize(text: string, mapping: Record<string, string>): DetokenizeResponse {\n    let result = text\n    let replacements = 0\n\n    // Sort tokens by length (longest first) to avoid partial replacements\n    const sortedTokens = Object.keys(mapping).sort((a, b) => b.length - a.length)\n\n    for (const token of sortedTokens) {\n      const originalValue = mapping[token]\n      const regex = new RegExp(token.replace(/[.*+?^${}()|[\\]\\\\]/g, '\\\\$&'), 'g')\n      const matches = result.match(regex)\n\n      if (matches) {\n        result = result.replace(regex, originalValue)\n        replacements += matches.length\n      }\n    }\n\n    return {\n      text: result,\n      replacements_made: replacements,\n    }\n  }\n\n  /**\n   * Redact (permanently remove) sensitive information from text\n   *\n   * WARNING: Redaction is irreversible - original data cannot be restored!\n   *\n   * @param text - Text to redact\n   * @param config - Optional configuration (masking_char, entities)\n   * @returns Promise with redacted text and detected entities\n   */\n  async redact(text: string, config?: RedactConfig): Promise<RedactResponse> {\n    return this.request<RedactResponse>('/redact', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Mask (partially hide) sensitive information from text\n   *\n   * @param text - Text to mask\n   * @param config - Optional configuration (chars_to_show, from_end, masking_char, entities)\n   * @returns Promise with masked text and detected entities\n   */\n  async mask(text: string, config?: MaskConfig): Promise<MaskResponse> {\n    return this.request<MaskResponse>('/mask', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Synthesize (replace real data with synthetic fake data)\n   *\n   * @param text - Text to synthesize\n   * @param config - Optional configuration (language, entities)\n   * @returns Promise with synthetic text and detected entities\n   */\n  async synthesize(text: string, config?: SynthesizeConfig): Promise<SynthesizeResponse> {\n    return this.request<SynthesizeResponse>('/synthesize', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Hash (replace with deterministic hash values)\n   *\n   * @param text - Text to hash\n   * @param config - Optional configuration (hash_type, hash_prefix, hash_length, entities)\n   * @returns Promise with hashed text and detected entities\n   */\n  async hash(text: string, config?: HashConfig): Promise<HashResponse> {\n    return this.request<HashResponse>('/hash', 'POST', {\n      text,\n      ...config,\n    })\n  }\n\n  /**\n   * Encrypt (reversibly protect) sensitive data in text using AES encryption\n   *\n   * @param text - Text to encrypt\n   * @param config - Optional configuration (encryption_key, entities)\n   * @returns Promise with encrypted text and detected entities\n   */\n  async encrypt(text: string, config?: EncryptConfig): Promise<EncryptResponse> {\n    return this.request<EncryptResponse>('/encrypt', 'POST', {\n      text,\n      ...config,\n    })\n  }\n}\n"]}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@blindfold/sdk",
-  "version": "1.0.0",
+  "version": "1.1.0",
   "description": "JavaScript/TypeScript SDK for Blindfold Gateway",
   "main": "./dist/index.js",
   "module": "./dist/index.mjs",
@@ -13,24 +13,61 @@
     }
   },
   "files": [
-    "dist"
+    "dist",
+    "README.md"
   ],
   "scripts": {
     "build": "tsup",
     "dev": "tsup --watch",
-    "type-check": "tsc --noEmit"
+    "type-check": "tsc --noEmit",
+    "test": "jest",
+    "test:watch": "jest --watch",
+    "test:coverage": "jest --coverage",
+    "lint": "eslint src tests --ext .ts",
+    "lint:fix": "eslint src tests --ext .ts --fix",
+    "format": "prettier --write \"src/**/*.ts\" \"tests/**/*.ts\"",
+    "format:check": "prettier --check \"src/**/*.ts\" \"tests/**/*.ts\"",
+    "clean": "rm -rf dist",
+    "prepublishOnly": "npm run clean && npm run build && npm run test",
+    "validate": "npm run type-check && npm run lint && npm run test"
   },
   "keywords": [
     "blindfold",
     "tokenization",
     "pii",
-    "security"
+    "security",
+    "privacy",
+    "gdpr",
+    "hipaa",
+    "llm",
+    "ai"
   ],
-  "author": "",
+  "author": "Blindfold Team",
   "license": "MIT",
+  "repository": {
+    "type": "git",
+    "url": "git+https://github.com/blindfold-dev/blindfold-github.git",
+    "directory": "packages/js-sdk"
+  },
+  "bugs": {
+    "url": "https://github.com/blindfold-dev/blindfold-github/issues"
+  },
+  "homepage": "https://blindfold.dev",
   "devDependencies": {
+    "@types/jest": "^29.5.11",
     "@types/node": "^20.10.0",
+    "@typescript-eslint/eslint-plugin": "^6.18.0",
+    "@typescript-eslint/parser": "^6.18.0",
+    "eslint": "^8.56.0",
+    "eslint-config-prettier": "^9.1.0",
+    "eslint-plugin-prettier": "^5.1.2",
+    "jest": "^29.7.0",
+    "prettier": "^3.1.1",
+    "ts-jest": "^29.1.1",
     "tsup": "^8.0.1",
     "typescript": "^5.3.3"
+  },
+  "engines": {
+    "node": ">=16.0.0"
   }
 }